last executing test programs:

16.4077003s ago: executing program 2 (id=1323):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x14, 0x2, 0x6, 0x201}, 0x14}}, 0x0)
socketpair(0x9, 0x800, 0xb11, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="3400000013000500000000000000000007000000", @ANYRES32=r4, @ANYBLOB="000000000000000014001a80100004800c000180080001"], 0x34}}, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(r1, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x84, r5, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x28ca}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x5}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x6}]}, @IPVS_CMD_ATTR_SERVICE={0x2c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x1a}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3b}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x800e}]}, 0x84}, 0x1, 0x0, 0x0, 0x24000081}, 0x4040804)

16.283392801s ago: executing program 2 (id=1325):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000e00)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000440)="d4", 0x1}], 0x1}], 0x1, 0x0)
recvmsg(r1, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/74, 0x4a}], 0x1, 0x0, 0x50000}, 0x0)

15.836010089s ago: executing program 2 (id=1328):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x2, 0x1}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0xfffffffffffffc2b}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005345c0f63cdc2e82818254950ee03568b8809a1f04c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab66c1aae9314d7381fcfeb970bea672010000000000000043144648a07a975bd89dc398712376610faa54f12495b4659be8673086f6f3543205d4bc4ce05b8b961103673dff7f158052e62bfbdcddde6985f3f1ac5d9a94cc53207899762a07282a1914452d11858e795a3ca30a101af5574f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5ed44039aab46419496362e54cfad05b4004ac71a003d7b85d07191bed4e5a8908263722d4146f7ed569985439baa355cf3d8731f5e7a237bc06d035a8d601f21746d880819f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c5b9f87d988c9fbd2b9d9b4e2d71753b1549fa734f0b2e5fcf9549804cddad721971637f9c9730a9cc384eed30345979db9c93e1c52f42cad0a4d4f9436d3f39b0ed09c395dc6e970366087a8e4daeeb1b017006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f710c490ecd085d2811a7555c53030000007f00000000bfa6478eb96b079c277e2910b7ccdc3d672ed34aa65278c549e2abb549ad954884289130bc71cee2b7de62bf48129ae1af052a2d46a6165eb0954dac7265f1f425735acf6377793946b3229e861d8ea49806b3b533345d36ecef9df700000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c000000aaae37f044bcadeb0f6846582b7653665aa336db9f0384d3c7ddf79c2e0000000000000000000000000000000000000000000000e154aa0d3e41986a668ee1e5ef93a8ceac75f44aae95e26742f895f287111f8ee86f7e3ffb63cfb0e345cf7fc63dd2b0d30977899c6f03640040af4db71f7452bfc79a05118d8bb42b63b195771e42f9942ec626bd4b5461b74324012164e8"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r2, r1, 0x2, 0x0, 0x4000}, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r5}, &(0x7f0000000a00), &(0x7f0000000a40)=r4}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r5}, &(0x7f0000000880), &(0x7f00000008c0)=r4}, 0x20)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
unshare(0x6020400)
ioctl$FICLONERANGE(r6, 0x4020940d, &(0x7f00000016c0)={{r7}})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$SEG6_CMD_DUMPHMAC(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x0, 0x301}, 0x14}}, 0x0)

15.620068697s ago: executing program 2 (id=1332):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
socket$kcm(0x29, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r3=>0x0})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000008c0)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=r3], 0x90}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x13, 0xfffffc78, 0x5, 0x8, 0x1, 0x1, 0xed93, '\x00', r3, 0xffffffffffffffff, 0x5, 0x4, 0x5}, 0x48)
sendfile(r1, r5, &(0x7f00000000c0)=0x2, 0x8)

15.271913149s ago: executing program 2 (id=1335):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x7, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000001b6110f8ff000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa000000000000080047de00240000000000019078ac1e0001ffffffff07074ae0000002001200907800000000"], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
write(r2, &(0x7f0000000040)="3a03000019002551075c0165ff0ffc02802000030004", 0x16)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x240, 0x0, 0x0, 0x148, 0x0, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@multicast2, @multicast1, 0x0, 0x0, 'macvtap0\x00', 'virt_wifi0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x4, {0x0, 0x0, 0x10}}}}}, @RTA_OIF={0x8, 0x4, r7}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001500)=@newsa={0x154, 0x10, 0x0, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, @in6=@remote, 0x0, 0x0, 0x3, 0xfffd, 0x0, 0x0, 0x0, 0x0, r7}, {@in6=@remote, 0x0, 0x32}, @in=@multicast2, {0x0, 0x7}, {0x0, 0xff}, {0x0, 0x0, 0x1}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in=@multicast1}}]}, 0x154}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r9 = socket(0x0, 0x4, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_IPV6_PKTINFO(r9, 0x29, 0x32, &(0x7f00000002c0)={@empty}, 0x14)
sendmsg$TIPC_NL_NET_SET(r10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000fdfffff70f4000003000078008000200060000000c0003"], 0x44}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r11 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r11, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSFLAGS1(r11, 0x40047459, &(0x7f00000000c0)=0x41)
ioctl$PPPIOCSFLAGS1(r11, 0x40047459, &(0x7f0000000240)=0x420)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)

2.815473349s ago: executing program 3 (id=1411):
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0x1}, 0x4)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000010000b7080000000000007b8af8ff00000000ad080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r5, 0x4)
sendmsg$inet(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x500}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r1, &(0x7f00000000c0)={0x1d, r6}, 0x18)
sendmsg$can_j1939(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x11)
connect$can_j1939(r1, &(0x7f0000000140)={0x1d, r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc080a00000000000000000000020000000900010073797a3000000000140000001100010000000000000000000000000a000000000000"], 0x48}}, 0x0)
sendmsg$can_j1939(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)="4480502ac1216c3f00", 0x9}}, 0x0)
setsockopt$sock_int(r1, 0x1, 0x4b, &(0x7f0000000240)=0x7ff, 0x4)
readv(r1, &(0x7f0000003a00), 0x0)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r9, 0x10e, 0xb, &(0x7f0000000000)=0x40b, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000001000000000000bdd4d4edc78b50d5f503caa700000000000f200000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0xb, 0x0, 0x0, 0x0, 0x0, '\x00', r6}, 0x90)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000940)=ANY=[@ANYBLOB, @ANYRES16=r10, @ANYBLOB="010000000000000000002300000004000280"], 0x18}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000980)=ANY=[@ANYBLOB="20000000260007010000000000000000037c00000c000180080029000000000030de2668ddd6e192d24f4bf1e987c4c7dc3106c06650239916754bc73994d3a61db99283042635b6b8f1165d71c616d6c0f5db5b1e223e7c2b80ba10a5f0d03989e8d737adfc7f7ae390078c4fa4d2257f2c30878180194bedd535feb1c5471f4a90ebafc2b4ffef32456dab59a8e6bd2dfd15ca84cb015dcca8049580a5deef7d406869fe6051b7f5a850c7ed24b5ef5f4e0e6aea9dbf05807ff36d9200"/199], 0x20}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r11, <r12=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x2, 0x11, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000900000000000918110000980726ef1241d9196862aa1f909dda6a455fad794b70cf6883e52ce3b1e8c13e45f6751e62afa8cea19270cd6ac52dfd296bb2b0aa0bed580cf8e9", @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018200000", @ANYRES32=r12, @ANYRESOCT=r5], &(0x7f0000000000)='GPL\x00', 0xa, 0xe2, &(0x7f00000001c0)=""/226, 0x0, 0x44}, 0x90)

2.744354355s ago: executing program 3 (id=1412):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x5, 0x8, 0x8, 0x105}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f00000005c0)}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000740)={@map, 0xffffffffffffffff, 0x25, 0x14}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000e80)={0x3, 0x0, 0x1000}, 0x10, 0x1b471, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000001640)=[{0x0, 0x1, 0x0, 0xb}, {0x5}, {0x2, 0x0, 0x9, 0xc}], 0x10, 0x1}, 0x90)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x4e20, @local}, {0x2, 0x4e20, @remote}, {0x2, 0x4e23, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x3f})
ioctl$sock_inet_SIOCADDRT(r5, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x4, 0x0, @rand_addr=0x64010101}, {0x2, 0x4e23, @remote}, 0x184, 0x0, 0x0, 0x0, 0xffff})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_FRAME(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2cc, r12, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_FRAME={0x2b0, 0x33, @beacon={{{}, {}, @device_b, @device_b}, 0x0, @random, 0x0, @void, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}, [{0xdd, 0xb7, "31851c27f0515dccb7554d54162c7b9db37edff2415d5589b53027d4db2f9527a9858f2910b19c7737136d933c4cb8b186a2cb77d33dc186120309d0107aae1822ca939dc88880a147e71f89f5936e8d68041d7e8bcc0f1b2831ed25db982a9cd8fcd5160c5cdc0cbe25dce28dc9925779fc4799284de17406d9ac3b5e35515e37ca5568297e0d3e19d80a5d5addb3184fec9543e41f70eb1bcd9a87da2f4b39e15dca2e549f43749edc5d2150d9349f08894e39ac26f6"}, {0xdd, 0xba, "1cb11f4c9767b25df19d1cb86cc9f4059996ff0021375555251d74cf6f777d24ac2b13bbd9b9d6f27b608e3a58d27ba7b7e16a8e13f0d8f288fa3e9a5e6c9ba0bd7028c0866f7cec56d3e0ae5cb3c8963c4d6e991fbd1547b046152bed86b40dc529d6663ed96a2f54759ca9fd4841407c6fb63f588fed1344890b04c3914826eaa5b022f53aa9fb6bffaa0370be496fc201cd5b33db589eb87730dee906175a89a626342c521f0b18b5cb5ed9de356bf155e503ca39d841b335"}, {0xdd, 0x25, "523a4aa23e4123ca5c555c2b2bf412911511b4b39a758f6e3a496d64414c19f01ba62cf366"}, {0xdd, 0xf, "0941a0e096d40b7d3b60bec79aa8aa"}, {0xdd, 0x3f, "7b1f666daa2c5732ac642cd918aea5ee68d9287e589b7d5326dd3b2bfb9e3d1679ee7c57f9ddfe7cc6179e25076e5fbf36bd5882a567a92f5c2ba4e5d1fe2e"}, {0xdd, 0xb, "0da71e815422994325dfec"}, {0xdd, 0x6b, "30d8ac98fdedffdf2ad390d8c532101bdebf905f4f96a12b5400578c02f802cac6cedd077c38a52b4fb790de3ab2c28eed8f45baef37217a654a07159fd6efe9fc5a4effdb0327c0802a3a873e92979e62ab34d31a748ae171a86d656075c5a8c88eaba15c64afa0d2a1d2"}, {0xdd, 0x6, "4f3fef835ea8"}]}}]}, 0x2cc}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x4030582b, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

2.50813968s ago: executing program 0 (id=1414):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x303, 0x400300, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0)

2.367590145s ago: executing program 0 (id=1416):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x28, 0x1, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x1f, &(0x7f0000000000), 0x4)
getsockopt$inet_tcp_buf(r1, 0x6, 0x1c, 0x0, &(0x7f00000000c0))
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @empty}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c00000010000104000900"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000024001280090001007866726d0000000014000280080001000400000008000200020000000a00020000000000000000000a000100aaaaaaaaaabb0000"], 0x5c}}, 0x0)
connect$packet(r0, &(0x7f0000000100)={0x28, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5021900000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000060a09040000000000000000020000000900020073797a32000000000900010073797a300000000014000480100001800b000100657874686472000200000000c74c95eda775a90a00"/111], 0x68}}, 0x0)
connect$packet(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, 0x1, 0x8, 0x6, @multicast}, 0x14)
r4 = socket(0x2, 0xa, 0x0)
close(0xffffffffffffffff)
recvmmsg(r4, 0x0, 0x0, 0x0, 0x0)
accept$packet(r4, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0)
r5 = socket$inet(0x2, 0x6, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
shutdown(r5, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
writev(r6, &(0x7f0000000400)=[{&(0x7f00000000c0)="390000001000111867090707a640400f0021ff3f31000000170a001700000000040037000900030001372564b758b9a64411f6bb744dc48f57", 0x39}], 0x1)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x9, 0x9, 0x2, 0x9, 0x42}, 0x48)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000280), r8)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x4, &(0x7f0000000240)={{r7}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20)
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_route(0x10, 0x3, 0x0)

2.132147862s ago: executing program 1 (id=1418):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000006c0), r1)
sendmsg$IEEE802154_LLSEC_DEL_KEY(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)={0x3c, r2, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc}]}, 0x3c}}, 0x0)
write$binfmt_script(r0, &(0x7f0000000100), 0xfecc)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000000000000000000400000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FIB_RESULT={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
ioctl$int_in(0xffffffffffffffff, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(0x0, r4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_GET_DAEMON(r6, &(0x7f0000000440)={0x0, 0x1400, &(0x7f0000000400)={&(0x7f0000001500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r5, @ANYBLOB="0d03000000000000000004"], 0x14}}, 0x0)

2.019672328s ago: executing program 4 (id=1419):
socket$key(0xf, 0x3, 0x2)
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@ipv4_newrule={0x2c, 0x20, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e20, 0x4e20}}, @FRA_GENERIC_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e21, 0x4e22}}]}, 0x2c}}, 0x0)
shutdown(r2, 0x0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r1, 0x84, 0xf, &(0x7f0000000800)={<r4=>0x0, @in={{0x2, 0x4e24, @multicast2}}, 0xa, 0x8, 0x3, 0x8001, 0xedd8}, &(0x7f00000008c0)=0x98)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={r4, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e23, @private=0xa010101}]}, &(0x7f00000007c0)=0x10)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmmsg$inet6(r1, &(0x7f0000000740)=[{{&(0x7f0000000080)={0xa, 0x4e24, 0x9, @private0, 0x18}, 0x1c, &(0x7f0000000100)=[{&(0x7f00000001c0)="11f5d87262efcd319065635d76f3a0dfce9cd784682c8eea7499e4303295e393a40e3c35308070eae941a8f4ff0e658201f8e25cd7325a16f9c9cb7815c579e74336907b9c6eb0a3578ba77ff02c2cebbe03ce9dddca765d9f7d3d7709c28ef0da7a417fe88aaae958b7fea961c0220648dbc646104de65a3c59624f7da4242bb1bba92f7c75f8b12b63ca50e769040e73207ca60a806d77d7b8845e178f83853b3ab71af65f26095eeba211f2", 0xad}, {&(0x7f0000000380)="177d12f7b7d4037ec9e98ccee231abe4de8922e0b6e0a8ca04607aed083d3d5ffed8f5c86e87f5f65b49685659975374c993b87097a9e22dafd1234fd1315080b848f52a66ca0344a08cad33b4c8f1258c8efb479be2c4cb2049d61ce893b5bcdbee69af4a3b651cd0b97a2cbbce6bc0da073c4b4522a09c220f27ce812a80aa3ddda040804860fc02cfa735e8c2cef13f5211f63f72bac5c4ba63ec9fbe8d591689b88f909dc148a874a98d3c79f12817e825c71b29de95cb39099b543646e7c50e4ead73960c785907", 0xca}], 0x2, &(0x7f0000000140)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x2}}], 0x18}}, {{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000280)="809486b8e072d73bd9c161e65e874196693c489a923dae4e6be07b386987d1d42a6c1d06a71ba1a6acb16f020386c2e1318597827ca801a92506a9b46d588956c35e7f65794a41a0faf33e1ac362fd73e51b5c3f0d24c9ad83711352cec27d6e0c13870e0579aa91f79e2f19603fbae6dc0dbe46e40ccbefe47816094657e1ae3ac74b60ccf500ddbbe1812c71b4f3de427812d37f3942c2a039f979458f29de52675146de2e737332aae51416923875a60ee4b4", 0xb4}, {&(0x7f0000000480)="0dc0fdd656e2ab850ac46776bb72a4b1699f4ddaaf258a22c6eb2493276c9e4feefc1b7f5dce51ad0cd12081dd58c0c5ef6d8df3aa13522eb06a3c3138c9ebf502447f2de480f5b901fb7abd198e", 0x4e}, {&(0x7f0000000500)}, {&(0x7f0000000540)="543e881d172d955affa024a868b7762f1189b612e9165969758551417cec48abf29508040e4b332eacf68195e226953b1aeb5c3ec08a9346ba89c584c7f03653900faab1eca54003a4912b05ebd07769", 0x50}], 0x4, &(0x7f0000000600)=[@rthdrdstopts={{0xd0, 0x29, 0x37, {0x0, 0x16, '\x00', [@generic={0xb, 0xa5, "7b02cc24a30b9341b361abeefe5522bf2a5df7ce915f11fc8adde79b4c1a870f406e7c1df9f745aa7e22bd72c229f776146ecc4ab64f337d12378a0fc0ef6fa0d99135acfea5baa7c22ce4c953c841c6635cc578403435b28a433726c8da9a8237323d793067e1fe32adb03b309f7a45d4f9e2d3b749e3478cb89e4756e57a9f0a28388deeec9e33c8023ab2af94463561567eeb67b2e306c89543c4c88de183c46136e43c"}, @jumbo={0xc2, 0x4, 0x5}, @jumbo={0xc2, 0x4, 0x7fffffff}, @pad1]}}}, @hoplimit={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0x5}}, @rthdr={{0x18, 0x29, 0x39, {0x2f, 0x0, 0x2}}}], 0x118}}], 0x2, 0x24004041)
getsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0xd, &(0x7f0000000000)=@assoc_value, &(0x7f0000000340)=0x8)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000340)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r6, 0x84, 0x71, &(0x7f00000000c0)={r8}, &(0x7f0000000180)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(r2, 0x84, 0x71, &(0x7f00000000c0)={r8, 0x31}, &(0x7f0000000500)=0xfffffdbb)
close(r0)

2.004561522s ago: executing program 1 (id=1420):
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x10, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000240), r0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001e00)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xb20, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x90)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newlink={0x68, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x614}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @dev}}, @IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}, @IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x8}]}}}, @IFLA_MTU={0x8, 0x4, 0x44}]}, 0x68}, 0x9}, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000100)=[{{&(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}, {{&(0x7f0000000180)=@pppol2tpv3={0x1e, 0x4, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0}}], 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90524fc600d00030009000100ff3582c137153e370248018058650000d1bd", 0x33fe0}], 0x1}, 0x0)

1.891271703s ago: executing program 0 (id=1421):
unshare(0x20000400)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001900000020000180140002006e657464657673696d30000000000000080003"], 0x34}}, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x7, 0x0, &(0x7f0000000180))
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
preadv(r4, &(0x7f00000013c0)=[{&(0x7f0000000040)=""/20, 0x14}], 0x1, 0x0, 0x0)
getsockopt$netrom_NETROM_N2(r4, 0x103, 0x3, &(0x7f0000000240)=0x4, &(0x7f00000002c0)=0x4)
getsockname$ax25(r4, &(0x7f0000000340)={{0x3, @rose}, [@null, @rose, @default, @remote, @rose, @remote, @null, @rose]}, &(0x7f0000000200)=0x48)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$ENABLE_STATS(0x20, &(0x7f00000013c0), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000ed57911975f1c2464a000000000000000000008500"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{0x1, <r5=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)}, 0x20)
r6 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000003c0)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000100), &(0x7f0000000280)='%-010d \x00'}, 0x20)
close(r7)
r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000a40)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x3, 0x4}, 0x48)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000ac0)={0x0, 0x3, 0x10}, 0xc)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000b80)={{0x1, <r10=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000b40)}, 0x20)
r11 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000bc0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x5}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d40)={0x11, 0x19, &(0x7f0000000780)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, [@ringbuf_query, @ringbuf_query, @kfunc={0x85, 0x0, 0x2, 0x0, 0x2}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xffffffffffffffff}, @map_fd={0x18, 0x1, 0x1, 0x0, r7}]}, &(0x7f0000000880)='GPL\x00', 0x8, 0xc6, &(0x7f00000008c0)=""/198, 0x41100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000009c0)={0x5, 0x4}, 0x8, 0x10, &(0x7f0000000a00)={0x5, 0x6, 0xffffff81, 0x800}, 0x10, 0x0, 0x0, 0xa, &(0x7f0000000c40)=[0xffffffffffffffff, r8, r9, r10, r11], &(0x7f0000000c80)=[{0x3, 0x4, 0x6, 0xc}, {0x3, 0x5, 0x1, 0x3}, {0x4, 0x4, 0x7, 0x3}, {0x5, 0x5, 0x7, 0x2}, {0x1, 0x4, 0x6, 0x7}, {0x0, 0x2, 0x4, 0x4}, {0x5, 0x2, 0xc, 0x3}, {0x0, 0x5, 0xb, 0xb}, {0x5, 0x1, 0x8, 0x1}, {0x0, 0x2, 0xd, 0x5}], 0x10, 0x100}, 0x90)
r12 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x2, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r12}}, {}, [@printk={@p, {}, {0x5}, {0x7, 0x0, 0x3}, {}, {}, {0x16, 0x9}}], {{}, {0x5}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r13 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000940)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
openat$cgroup_ro(r13, &(0x7f0000000080)='memory.current\x00', 0x26e1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000380))
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

1.744152231s ago: executing program 1 (id=1422):
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000", @ANYRES16=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00 '], 0x14}}, 0x0)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @remote}, 0x10)
getsockopt$inet_mptcp_buf(r0, 0x11c, 0x2, &(0x7f00000000c0)=""/63, &(0x7f0000000100)=0x3f)
unshare(0x20040600)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x341600, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x0)

1.720564233s ago: executing program 0 (id=1423):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x5, 0x8, 0x8, 0x105}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f0000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000e80)={0x3, 0x0, 0x1000}, 0x10, 0x1b471, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000001640)=[{0x0, 0x1, 0x0, 0xb}, {0x5}, {0x2, 0x0, 0x9, 0xc}], 0x10, 0x1}, 0x90)
socket$inet_udplite(0x2, 0x2, 0x88)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x4, 0x0, @rand_addr=0x64010101}, {0x2, 0x4e23, @remote}, 0x184, 0x0, 0x0, 0x0, 0xffff})
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2d0, r9, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_FRAME={0x2b1, 0x33, @beacon={{{}, {}, @device_b, @device_b}, 0x0, @random, 0x0, @void, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}, [{0xdd, 0xb7, "31851c27f0515dccb7554d54162c7b9db37edff2415d5589b53027d4db2f9527a9858f2910b19c7737136d933c4cb8b186a2cb77d33dc186120309d0107aae1822ca939dc88880a147e71f89f5936e8d68041d7e8bcc0f1b2831ed25db982a9cd8fcd5160c5cdc0cbe25dce28dc9925779fc4799284de17406d9ac3b5e35515e37ca5568297e0d3e19d80a5d5addb3184fec9543e41f70eb1bcd9a87da2f4b39e15dca2e549f43749edc5d2150d9349f08894e39ac26f6"}, {0xdd, 0xba, "1cb11f4c9767b25df19d1cb86cc9f4059996ff0021375555251d74cf6f777d24ac2b13bbd9b9d6f27b608e3a58d27ba7b7e16a8e13f0d8f288fa3e9a5e6c9ba0bd7028c0866f7cec56d3e0ae5cb3c8963c4d6e991fbd1547b046152bed86b40dc529d6663ed96a2f54759ca9fd4841407c6fb63f588fed1344890b04c3914826eaa5b022f53aa9fb6bffaa0370be496fc201cd5b33db589eb87730dee906175a89a626342c521f0b18b5cb5ed9de356bf155e503ca39d841b335"}, {0xdd, 0x25, "523a4aa23e4123ca5c555c2b2bf412911511b4b39a758f6e3a496d64414c19f01ba62cf366"}, {0xdd, 0x12, "0941a0e096d40b7d3b60bec79aa8aaa3f566"}, {0xdd, 0x3f, "7b1f666daa2c5732ac642cd918aea5ee68d9287e589b7d5326dd3b2bfb9e3d1679ee7c57f9ddfe7cc6179e25076e5fbf36bd5882a567a92f5c2ba4e5d1fe2e"}, {0xdd, 0x9, "0da71e815422994325"}, {0xdd, 0x6b, "30d8ac98fdedffdf2ad390d8c532101bdebf905f4f96a12b5400578c02f802cac6cedd077c38a52b4fb790de3ab2c28eed8f45baef37217a654a07159fd6efe9fc5a4effdb0327c0802a3a873e92979e62ab34d31a748ae171a86d656075c5a8c88eaba15c64afa0d2a1d2"}, {0xdd, 0x6, "4f3fef835ea8"}]}}]}, 0x2d0}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.708857011s ago: executing program 3 (id=1424):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x5, 0x8, 0x8, 0x105}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f00000005c0)}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000740)={@map, 0xffffffffffffffff, 0x25, 0x14}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f0000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000e80)={0x3, 0x0, 0x1000}, 0x10, 0x1b471, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000001640)=[{0x0, 0x1, 0x0, 0xb}, {0x5}, {0x2, 0x0, 0x9, 0xc}], 0x10, 0x1}, 0x90)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x4e20, @local}, {0x2, 0x4e20, @remote}, {0x2, 0x4e23, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x3f})
ioctl$sock_inet_SIOCADDRT(r5, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x4, 0x0, @rand_addr=0x64010101}, {0x2, 0x4e23, @remote}, 0x184, 0x0, 0x0, 0x0, 0xffff})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_FRAME(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2c4, r12, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_FRAME={0x2a8, 0x33, @beacon={{{}, {}, @device_b, @device_b}, 0x0, @random, 0x0, @void, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}, [{0xdd, 0xb7, "31851c27f0515dccb7554d54162c7b9db37edff2415d5589b53027d4db2f9527a9858f2910b19c7737136d933c4cb8b186a2cb77d33dc186120309d0107aae1822ca939dc88880a147e71f89f5936e8d68041d7e8bcc0f1b2831ed25db982a9cd8fcd5160c5cdc0cbe25dce28dc9925779fc4799284de17406d9ac3b5e35515e37ca5568297e0d3e19d80a5d5addb3184fec9543e41f70eb1bcd9a87da2f4b39e15dca2e549f43749edc5d2150d9349f08894e39ac26f6"}, {0xdd, 0xaf, "1cb11f4c9767b25df19d1cb86cc9f4059996ff0021375555251d74cf6f777d24ac2b13bbd9b9d6f27b608e3a58d27ba7b7e16a8e13f0d8f288fa3e9a5e6c9ba0bd7028c0866f7cec56d3e0ae5cb3c8963c4d6e991fbd1547b046152bed86b40dc529d6663ed96a2f54759ca9fd4841407c6fb63f588fed1344890b04c3914826eaa5b022f53aa9fb6bffaa0370be496fc201cd5b33db589eb87730dee906175a89a626342c521f0b18b5cb5ed9de35"}, {0xdd, 0x25, "523a4aa23e4123ca5c555c2b2bf412911511b4b39a758f6e3a496d64414c19f01ba62cf366"}, {0xdd, 0x12, "0941a0e096d40b7d3b60bec79aa8aaa3f566"}, {0xdd, 0x3f, "7b1f666daa2c5732ac642cd918aea5ee68d9287e589b7d5326dd3b2bfb9e3d1679ee7c57f9ddfe7cc6179e25076e5fbf36bd5882a567a92f5c2ba4e5d1fe2e"}, {0xdd, 0xb, "0da71e815422994325dfec"}, {0xdd, 0x6b, "30d8ac98fdedffdf2ad390d8c532101bdebf905f4f96a12b5400578c02f802cac6cedd077c38a52b4fb790de3ab2c28eed8f45baef37217a654a07159fd6efe9fc5a4effdb0327c0802a3a873e92979e62ab34d31a748ae171a86d656075c5a8c88eaba15c64afa0d2a1d2"}, {0xdd, 0x6, "4f3fef835ea8"}]}}]}, 0x2c4}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x4030582b, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.627952286s ago: executing program 4 (id=1425):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
recvmmsg(r1, &(0x7f0000001e80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000540)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000080)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x7}, 0x10)
close(r3)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000010000e1850000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0xffff41c0, 0x0, r4, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x6, 0x3, 0x4}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x2c, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x57f, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x40}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x25}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @btf_id={0x18, 0x2541d4aaa418bd1a, 0x3, 0x0, 0x3}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000280)='syzkaller\x00', 0x6, 0x10, &(0x7f00000002c0)=""/16, 0x40f00, 0x24, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x4, 0x4, 0x4, 0x100}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000500)=[r4, r4, r6], &(0x7f0000000540)=[{0x1, 0x2, 0x8, 0xb}], 0x10, 0xffffffff}, 0x90)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="20000000051421060000000000000c00080001"], 0x20}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6010104000580600fe80000000000000000000000000e7bafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="64c20000907800001e047400040200098bfbd54ae56dd0080a0000000000000000fe04f98913127232407c80067615774fdbb46eb86cc8131262d84b71a9e1d36fef5f99892a462f25000000"], 0x0)

1.602855243s ago: executing program 2 (id=1335):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x7, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000001b6110f8ff000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xb}, 0x90)
syz_emit_ethernet(0x32, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa000000000000080047de00240000000000019078ac1e0001ffffffff07074ae0000002001200907800000000"], 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000030000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
write(r2, &(0x7f0000000040)="3a03000019002551075c0165ff0ffc02802000030004", 0x16)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.effective_cpus\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x240, 0x0, 0x0, 0x148, 0x0, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@multicast2, @multicast1, 0x0, 0x0, 'macvtap0\x00', 'virt_wifi0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000200)={'batadv_slave_0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x4, {0x0, 0x0, 0x10}}}}}, @RTA_OIF={0x8, 0x4, r7}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}}, 0x0)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001500)=@newsa={0x154, 0x10, 0x0, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @local}, @in6=@remote, 0x0, 0x0, 0x3, 0xfffd, 0x0, 0x0, 0x0, 0x0, r7}, {@in6=@remote, 0x0, 0x32}, @in=@multicast2, {0x0, 0x7}, {0x0, 0xff}, {0x0, 0x0, 0x1}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x4, {0x0, 0x0, 0x0, @in=@multicast1}}]}, 0x154}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r9 = socket(0x0, 0x4, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_IPV6_PKTINFO(r9, 0x29, 0x32, &(0x7f00000002c0)={@empty}, 0x14)
sendmsg$TIPC_NL_NET_SET(r10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000780)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000000fdfffff70f4000003000078008000200060000000c0003"], 0x44}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r11 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r11, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCSFLAGS1(r11, 0x40047459, &(0x7f00000000c0)=0x41)
ioctl$PPPIOCSFLAGS1(r11, 0x40047459, &(0x7f0000000240)=0x420)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)

779.257538ms ago: executing program 1 (id=1426):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_opts(r0, 0x29, 0x36, &(0x7f0000000040)=@fragment, 0x8)
getsockopt$inet6_opts(r0, 0x29, 0x36, 0xfffffffffffffffe, &(0x7f0000000840)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x36}}, 0x3, 0x0, 0x4, 0x1}}, 0x2e)
r3 = epoll_create(0x689)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f00000000c0)={0x10000000})
socket$netlink(0x10, 0x3, 0x4)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x0, 0x11, r4, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000047970085000000310000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1d}, 0x90)
accept4$inet(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, @local}, &(0x7f0000000140)=0x10, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r5)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r6, 0x0)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r8 = accept(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f0000000180)=ANY=[], 0xfffffdef}}, 0x404c8c0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f0000000900)=[{&(0x7f0000000640)="7786b83c25f4449907fe6c440862a276ad7e7f0ef6db65795273fa99407c6d75e1702b53ec6b5be867a954cf34c602c4cbf909fe9dcdf1b8b62cd43cd28f27db0032d187add764b96a4dbe3b75ab597822b417e20ddd6cf20086d68028148d2a78b17644c85e016ffe91d554124981314f3d72ff9e76e95a9251f3e82610a29283cc86dbc2d64074233349d5c4d49668da17418e7614cf34586a11b7341e07f9", 0xa0}, {&(0x7f0000000800)="164324c24347d88f1cd7ff8375717102bf7cf9e8f53c1cbf95fb8e14b586dfeac46842a37f68be61a2ffb1b698a9387912b2e97edecd8724b90f818ad8b9ac0f767ee8c2fbebeb5712a5a304a101457b553eacb85a1357c970df741f05f30a09b45ca8dd512199d85c9af26d63685b7cb9694993726141918b4c51d6de98b37161a2120581b1a145c0891f7ecced8d796befa7f96469edfe2e845f85150df1243950ee9786c971561c29f9344195e71f726573a061a92c24b5645892fe7f14233a3dab558e1499058a56ab54e2dbf50c5ab2a436dbca13f0019242358285fd", 0xdf}, {&(0x7f0000000940)="1cf3157ffe3b25b0cddbb0dd7d1668cee03da0ae0108c7e186392e9b86839e3a5bea396f4065a88b31fd1b672f6624e76ce7993f5df54aeeca3831a9cfc6aee6710af6952fe4d1c9443a781fb1984fdff06b337d57979fc77e4984be1a2cac2c24821c364d92bb6ce6bdaebf18e424d82eccbf6e609f177dc7a0452651c88142424b0ade0f8a878b42c618795d9713ac5fb90636c751027536213552a3975c7bb51c53bbe3e45b1e1e9e", 0xaa}], 0x3)
socket$inet6(0xa, 0xa, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4), 0x1c)

727.111331ms ago: executing program 4 (id=1427):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x303, 0x400300, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0)

666.621358ms ago: executing program 4 (id=1428):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)

605.452184ms ago: executing program 3 (id=1429):
unshare(0x20000400)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400400142603600e122f00160006000400a8000600200005400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x13)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000002180), 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, &(0x7f0000000480), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xd, &(0x7f0000000340)=ANY=[@ANYRESDEC=r2, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r3}, 0x10)
socket(0x15, 0x5, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000140)={0xfffffff7, 0x0, 0x0, 0x1})
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x404c890, 0x0, 0x4c)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x1, 0x12)
mkdirat$cgroup(r4, &(0x7f00000000c0)='syz1\x00', 0x1ff)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000080), 0x12)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000100)=0x1, 0x12)

500.667421ms ago: executing program 0 (id=1430):
r0 = bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, r0}, 0x90)
r2 = socket(0x11, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000005c0)={'gre0\x00'})
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r4=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x2, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080005000000100000000000", @ANYRES32, @ANYBLOB="00000000000000016608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x6, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x8}, 0x90)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB="48040000", @ANYRES16=r5, @ANYBLOB="01e5c300000000fb04003b1c210008000300", @ANYRES32=r4, @ANYBLOB="2c0433005000de295b3acba52ee4080211000001505050505050"], 0x448}}, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x1e, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000200)={'wlan1\x00'})
setsockopt$packet_int(r2, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r2, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="03011400a0dc430000000800ad0001140000002f2600ac14141fe001e502808a8972bd0b72e410820c521b061fe4fdfe4b449430ebb52997e36e039b1e598825f80100a3c06376c330760bfe6f6297c63215d73193db4e453bf9f153a167d50261a6"], 0xdd12}], 0x1}, 0x0)
close(0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x50)

440.15808ms ago: executing program 4 (id=1431):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x7fffffff}, 0x10)
sendmsg$kcm(r0, &(0x7f00000016c0)={0x0, 0x600, &(0x7f00000000c0)=[{&(0x7f0000000040)="1c0000004a008104e00f80ecdb4cb9020a", 0x11}, {&(0x7f0000001700)="0c74c75350f4a590e15c61", 0xb}], 0x2, 0x0, 0x0, 0x10}, 0x0)

373.156721ms ago: executing program 1 (id=1432):
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x0, {0x41}}, 0x10, 0x0}, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x10, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000240), r0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001e00)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xb20, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, 0x0, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x90)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@newlink={0x68, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x614}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x30, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @dev}}, @IFLA_GENEVE_UDP_ZERO_CSUM6_RX={0x5}, @IFLA_GENEVE_UDP_ZERO_CSUM6_TX={0x5}, @IFLA_GENEVE_LABEL={0x8, 0xb, 0x1, 0x0, 0x8}]}}}, @IFLA_MTU={0x8, 0x4, 0x44}]}, 0x68}, 0x9}, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000000100)=[{{&(0x7f0000000000)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x80, 0x0, 0x0, 0x0, 0x0, 0x1000000}}, {{&(0x7f0000000180)=@pppol2tpv3={0x1e, 0x4, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}}}, 0x80, 0x0}}], 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="0401020028000b05d25a806f8c6394f90524fc600d00030009000100ff3582c137153e370248018058650000d1bd", 0x33fe0}], 0x1}, 0x0)

293.01911ms ago: executing program 3 (id=1433):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e00000085000000080000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0x1}, 0x4)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000000c0)={'erspan0\x00', &(0x7f0000000540)={'sit0\x00', 0x0, 0x10, 0x7800, 0x25d, 0x7, {{0x1b, 0x4, 0x3, 0x1, 0x6c, 0x66, 0x0, 0x1, 0x29, 0x0, @loopback, @local, {[@timestamp_addr={0x44, 0x4}, @timestamp={0x44, 0x20, 0xf8, 0x0, 0x2, [0x120, 0x0, 0xbe, 0x9, 0x9, 0x4, 0x9]}, @timestamp_addr={0x44, 0x14, 0xde, 0x1, 0x9, [{@multicast2, 0x8}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7}]}, @rr={0x7, 0x1f, 0x97, [@rand_addr=0x64010101, @loopback, @private=0xa010101, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @loopback, @initdev={0xac, 0x1e, 0x0, 0x0}]}]}}}}})
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000900)={{0x1}, &(0x7f0000000880), &(0x7f00000008c0)='%+9llu \x00'}, 0x20)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
pipe(0x0)
socket$inet_udp(0x2, 0x2, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe6, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x500, &(0x7f00000001c0)={&(0x7f0000000040)={0x2c, r1, 0x1, 0x0, 0x0, {0x29}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)

199.909153ms ago: executing program 4 (id=1434):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x5, 0x8, 0x8, 0x105}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1, <r2=>0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f00000005c0)}, 0x20)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000740)={@map, 0xffffffffffffffff, 0x25, 0x14}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_ext={0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000e80)={0x3, 0x0, 0x1000}, 0x10, 0x1b471, 0xffffffffffffffff, 0x3, 0x0, &(0x7f0000001640)=[{0x0, 0x1, 0x0, 0xb}, {0x5}, {0x2, 0x0, 0x9, 0xc}], 0x10, 0x1}, 0x90)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r4, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x4e20, @local}, {0x2, 0x4e20, @remote}, {0x2, 0x4e23, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x3f})
ioctl$sock_inet_SIOCADDRT(r5, 0x890b, &(0x7f0000000840)={0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x4, 0x0, @rand_addr=0x64010101}, {0x2, 0x4e23, @remote}, 0x184, 0x0, 0x0, 0x0, 0xffff})
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r10 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_FRAME(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2cc, r12, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_FRAME={0x2b0, 0x33, @beacon={{{}, {}, @device_b, @device_b}, 0x0, @random, 0x0, @void, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}, [{0xdd, 0xb7, "31851c27f0515dccb7554d54162c7b9db37edff2415d5589b53027d4db2f9527a9858f2910b19c7737136d933c4cb8b186a2cb77d33dc186120309d0107aae1822ca939dc88880a147e71f89f5936e8d68041d7e8bcc0f1b2831ed25db982a9cd8fcd5160c5cdc0cbe25dce28dc9925779fc4799284de17406d9ac3b5e35515e37ca5568297e0d3e19d80a5d5addb3184fec9543e41f70eb1bcd9a87da2f4b39e15dca2e549f43749edc5d2150d9349f08894e39ac26f6"}, {0xdd, 0xba, "1cb11f4c9767b25df19d1cb86cc9f4059996ff0021375555251d74cf6f777d24ac2b13bbd9b9d6f27b608e3a58d27ba7b7e16a8e13f0d8f288fa3e9a5e6c9ba0bd7028c0866f7cec56d3e0ae5cb3c8963c4d6e991fbd1547b046152bed86b40dc529d6663ed96a2f54759ca9fd4841407c6fb63f588fed1344890b04c3914826eaa5b022f53aa9fb6bffaa0370be496fc201cd5b33db589eb87730dee906175a89a626342c521f0b18b5cb5ed9de356bf155e503ca39d841b335"}, {0xdd, 0x25, "523a4aa23e4123ca5c555c2b2bf412911511b4b39a758f6e3a496d64414c19f01ba62cf366"}, {0xdd, 0xf, "0941a0e096d40b7d3b60bec79aa8aa"}, {0xdd, 0x3f, "7b1f666daa2c5732ac642cd918aea5ee68d9287e589b7d5326dd3b2bfb9e3d1679ee7c57f9ddfe7cc6179e25076e5fbf36bd5882a567a92f5c2ba4e5d1fe2e"}, {0xdd, 0xb, "0da71e815422994325dfec"}, {0xdd, 0x6b, "30d8ac98fdedffdf2ad390d8c532101bdebf905f4f96a12b5400578c02f802cac6cedd077c38a52b4fb790de3ab2c28eed8f45baef37217a654a07159fd6efe9fc5a4effdb0327c0802a3a873e92979e62ab34d31a748ae171a86d656075c5a8c88eaba15c64afa0d2a1d2"}, {0xdd, 0x6, "4f3fef835ea8"}]}}]}, 0x2cc}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x4030582b, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

152.501908ms ago: executing program 0 (id=1435):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', <r1=>0x0})
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0xfff0)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4)
connect$inet(r2, &(0x7f00000006c0)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
sendmmsg$inet(r2, &(0x7f0000004a40)=[{{0x0, 0x0, &(0x7f0000002300)=[{&(0x7f0000001200)="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", 0x1000}, {&(0x7f0000002200)="ad", 0x1}], 0x2}}], 0x1, 0x4008440)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=@newneigh={0x38, 0x1c, 0x413, 0x0, 0x0, {0xa, 0x0, 0x0, r1, 0x95}, [@NDA_DST_IPV6={0x14, 0x1, @private2}, @NDA_FLAGS_EXT={0x8, 0xf, 0x1}]}, 0x38}}, 0x0)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000200)={0x2400000, 0x6, 0x10000, 0x2219}, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="ee75e69a", @ANYRES16=r3, @ANYBLOB="000229bd7000fddbdf2506000000"], 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x10)

144.92992ms ago: executing program 1 (id=1436):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="090d0000000000f0ff000700000008000300", @ANYRES32=r3, @ANYBLOB="0800051d000000001400060076657468115f746f5f7465616d0000000400cc00080005000a000000140004"], 0x58}}, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180), 0x4)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
r5 = socket$netlink(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000006c0)={'wlan1\x00', <r6=>0x0})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='X\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="090d0000000000f0ff000700000008000300", @ANYRES32=r6, @ANYBLOB="0800051d000000001400060076657468115f746f5f7465616d0000000400cc00080005000a"], 0x58}}, 0x0) (fail_nth: 7)

0s ago: executing program 3 (id=1437):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
socket$tipc(0x1e, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
recvmmsg(r1, &(0x7f0000001e80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x2}, 0x90)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0))
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x0, 0x4, &(0x7f0000000540)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000080)}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r4, r3, 0x7}, 0x10)
close(r3)
close(r4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000010000e1850000008600000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f0000000000)=ANY=[], 0xfffffecc)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0xffff41c0, 0x0, r4, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x6, 0x3, 0x4}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x18, 0x2c, &(0x7f0000000100)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x57f, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [@printk={@llu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x40}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x1}, @call={0x85, 0x0, 0x0, 0x25}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}, @btf_id={0x18, 0x2541d4aaa418bd1a, 0x3, 0x0, 0x3}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000280)='syzkaller\x00', 0x6, 0x10, &(0x7f00000002c0)=""/16, 0x40f00, 0x24, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x4, 0x4, 0x4, 0x100}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000500)=[r4, r4, r6], &(0x7f0000000540)=[{0x1, 0x2, 0x8, 0xb}], 0x10, 0xffffffff}, 0x90)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="20000000051421060000000000000c00080001"], 0x20}}, 0x0)
syz_emit_ethernet(0x8e, &(0x7f0000000580)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd6010104000580600fe80000000000000000000000000e7bafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="64c20000907800001e047400040200098bfbd54ae56dd0080a0000000000000000fe04f98913127232407c80067615774fdbb46eb86cc8131262d84b71a9e1d36fef5f99892a462f25000000"], 0x0)

kernel console output (not intermixed with test programs):

_64+0x100/0x230
[  169.602647][ T8041]  ? do_syscall_64+0xb6/0x230
[  169.607340][ T8041]  do_syscall_64+0xf3/0x230
[  169.611859][ T8041]  ? clear_bhb_loop+0x35/0x90
[  169.616651][ T8041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.622580][ T8041] RIP: 0033:0x7fe8f5b746bc
[  169.627044][ T8041] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  169.646970][ T8041] RSP: 002b:00007fe8f55de040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  169.655583][ T8041] RAX: ffffffffffffffda RBX: 00007fe8f5d04038 RCX: 00007fe8f5b746bc
[  169.663571][ T8041] RDX: 000000000000000f RSI: 00007fe8f55de0b0 RDI: 0000000000000004
[  169.671556][ T8041] RBP: 00007fe8f55de0a0 R08: 0000000000000000 R09: 0000000000000000
[  169.679566][ T8041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.687551][ T8041] R13: 000000000000006e R14: 00007fe8f5d04038 R15: 00007ffe73a89af8
[  169.695562][ T8041]  </TASK>
[  170.285601][ T8055] netlink: 40 bytes leftover after parsing attributes in process `syz.2.945'.
[  170.363019][ T8055] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.945'.
[  170.384000][ T8059] netlink: 248 bytes leftover after parsing attributes in process `syz.0.946'.
[  170.393192][ T8055] openvswitch: netlink: Tunnel attr 0 has unexpected len 3060 expected 8
[  170.707159][ T8069] __nla_validate_parse: 1 callbacks suppressed
[  170.707181][ T8069] netlink: 8 bytes leftover after parsing attributes in process `syz.1.948'.
[  171.106066][ T8082] FAULT_INJECTION: forcing a failure.
[  171.106066][ T8082] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  171.121613][ T8082] CPU: 0 PID: 8082 Comm: syz.2.954 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  171.132108][ T8082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  171.142211][ T8082] Call Trace:
[  171.145541][ T8082]  <TASK>
[  171.148520][ T8082]  dump_stack_lvl+0x241/0x360
[  171.153260][ T8082]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.158599][ T8082]  ? __pfx__printk+0x10/0x10
[  171.163262][ T8082]  should_fail_ex+0x3b0/0x4e0
[  171.168090][ T8082]  prepare_alloc_pages+0x1da/0x5d0
[  171.173374][ T8082]  __alloc_pages_noprof+0x166/0x6c0
[  171.178644][ T8082]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  171.184464][ T8082]  alloc_pages_mpol_noprof+0x3e8/0x680
[  171.189998][ T8082]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  171.196036][ T8082]  ? xas_load+0x59b/0x5c0
[  171.200431][ T8082]  ? mpol_shared_policy_lookup+0x148/0x1f0
[  171.206307][ T8082]  shmem_alloc_and_add_folio+0x24d/0xdb0
[  171.212005][ T8082]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  171.218218][ T8082]  ? mark_lock+0x9a/0x350
[  171.222642][ T8082]  shmem_get_folio_gfp+0x82d/0x1f50
[  171.227890][ T8082]  ? __pfx_lock_acquire+0x10/0x10
[  171.232978][ T8082]  ? __pfx_shmem_get_folio_gfp+0x10/0x10
[  171.238657][ T8082]  ? rcu_is_watching+0x15/0xb0
[  171.243478][ T8082]  shmem_fault+0x252/0x6f0
[  171.248135][ T8082]  ? __pfx_shmem_fault+0x10/0x10
[  171.253125][ T8082]  ? __pfx_lock_release+0x10/0x10
[  171.258194][ T8082]  ? pte_offset_map_nolock+0x137/0x1f0
[  171.263709][ T8082]  ? __lock_acquire+0x1346/0x1fd0
[  171.268784][ T8082]  __do_fault+0x135/0x460
[  171.273158][ T8082]  handle_pte_fault+0x119b/0x7090
[  171.278259][ T8082]  ? __pfx_lock_acquire+0x10/0x10
[  171.283336][ T8082]  ? __pfx_handle_pte_fault+0x10/0x10
[  171.288761][ T8082]  ? do_raw_spin_lock+0x14f/0x370
[  171.293860][ T8082]  ? follow_page_pte+0x292/0x1d90
[  171.298936][ T8082]  ? follow_page_pte+0x859/0x1d90
[  171.304007][ T8082]  ? __pfx_lock_release+0x10/0x10
[  171.309081][ T8082]  ? do_raw_spin_unlock+0x13c/0x8b0
[  171.314344][ T8082]  handle_mm_fault+0x10df/0x1ba0
[  171.319370][ T8082]  ? __pfx_handle_mm_fault+0x10/0x10
[  171.324728][ T8082]  ? __pfx_find_vma+0x10/0x10
[  171.329457][ T8082]  ? vma_is_secretmem+0xd/0x50
[  171.334349][ T8082]  ? check_vma_flags+0x531/0x5a0
[  171.339338][ T8082]  __get_user_pages+0x6ef/0x1590
[  171.344354][ T8082]  ? __pfx___get_user_pages+0x10/0x10
[  171.349799][ T8082]  ? __lock_acquire+0x1346/0x1fd0
[  171.354875][ T8082]  __gup_longterm_locked+0x2469/0x2a80
[  171.360420][ T8082]  ? __pfx___gup_longterm_locked+0x10/0x10
[  171.366282][ T8082]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  171.372314][ T8082]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  171.378698][ T8082]  ? sanity_check_pinned_pages+0x12bb/0x13c0
[  171.384767][ T8082]  gup_fast_fallback+0x2732/0x2b40
[  171.389967][ T8082]  ? __pfx_gup_fast_fallback+0x10/0x10
[  171.395490][ T8082]  ? mark_lock+0x9a/0x350
[  171.399966][ T8082]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  171.406002][ T8082]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  171.412403][ T8082]  ? is_valid_gup_args+0x124/0x200
[  171.417567][ T8082]  pin_user_pages_fast+0xcc/0x160
[  171.422644][ T8082]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  171.428328][ T8082]  ? iov_iter_iovec_advance+0x1fc/0x2c0
[  171.433943][ T8082]  iov_iter_extract_pages+0x3db/0x720
[  171.439389][ T8082]  extract_iter_to_sg+0x890/0x22b0
[  171.444676][ T8082]  ? __pfx_extract_iter_to_sg+0x10/0x10
[  171.450408][ T8082]  ? __asan_memset+0x23/0x50
[  171.455091][ T8082]  af_alg_get_rsgl+0x41e/0x850
[  171.459935][ T8082]  aead_recvmsg+0x65a/0x19f0
[  171.464602][ T8082]  ? validate_chain+0x11e/0x5900
[  171.469654][ T8082]  ? validate_chain+0x11e/0x5900
[  171.474663][ T8082]  ? __pfx_aead_recvmsg+0x10/0x10
[  171.479844][ T8082]  ? ima_get_action+0x75/0xb0
[  171.484570][ T8082]  ? __pfx_validate_chain+0x10/0x10
[  171.489832][ T8082]  ? validate_chain+0x11e/0x5900
[  171.494835][ T8082]  ? aa_label_sk_perm+0x4f0/0x6d0
[  171.499937][ T8082]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  171.505439][ T8082]  ? mark_lock+0x9a/0x350
[  171.509834][ T8082]  ? __pfx___might_resched+0x10/0x10
[  171.515200][ T8082]  ? aa_sk_perm+0x967/0xab0
[  171.519784][ T8082]  ? __pfx_aa_sk_perm+0x10/0x10
[  171.524704][ T8082]  ? __pfx___might_resched+0x10/0x10
[  171.530042][ T8082]  ? aa_sock_msg_perm+0x91/0x160
[  171.535041][ T8082]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  171.540370][ T8082]  ? security_socket_recvmsg+0x90/0xb0
[  171.545877][ T8082]  ? __pfx_aead_recvmsg+0x10/0x10
[  171.550958][ T8082]  sock_recvmsg+0x22f/0x280
[  171.555515][ T8082]  ____sys_recvmsg+0x1db/0x470
[  171.560345][ T8082]  ? __pfx_____sys_recvmsg+0x10/0x10
[  171.565722][ T8082]  do_recvmmsg+0x474/0xae0
[  171.570222][ T8082]  ? mark_lock+0x9a/0x350
[  171.574617][ T8082]  ? __pfx_do_recvmmsg+0x10/0x10
[  171.579647][ T8082]  ? __pfx___might_resched+0x10/0x10
[  171.585031][ T8082]  ? __might_fault+0xaa/0x120
[  171.589769][ T8082]  ? __pfx_lock_release+0x10/0x10
[  171.594919][ T8082]  ? vfs_write+0x7c4/0xc90
[  171.599406][ T8082]  ? get_timespec64+0x19c/0x280
[  171.604334][ T8082]  __x64_sys_recvmmsg+0x1b8/0x250
[  171.609439][ T8082]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  171.615040][ T8082]  ? do_syscall_64+0x100/0x230
[  171.619851][ T8082]  ? do_syscall_64+0xb6/0x230
[  171.624667][ T8082]  do_syscall_64+0xf3/0x230
[  171.629231][ T8082]  ? clear_bhb_loop+0x35/0x90
[  171.634068][ T8082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.640011][ T8082] RIP: 0033:0x7fe8f5b75bd9
[  171.644463][ T8082] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.664214][ T8082] RSP: 002b:00007fe8f55ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  171.672686][ T8082] RAX: ffffffffffffffda RBX: 00007fe8f5d03f60 RCX: 00007fe8f5b75bd9
[  171.680709][ T8082] RDX: 0000000000000002 RSI: 00000000200008c0 RDI: 0000000000000004
[  171.688732][ T8082] RBP: 00007fe8f55ff0a0 R08: 0000000020008000 R09: 0000000000000000
[  171.696754][ T8082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.704772][ T8082] R13: 000000000000000b R14: 00007fe8f5d03f60 R15: 00007ffe73a89af8
[  171.712814][ T8082]  </TASK>
[  171.777926][ T8090] netlink: 248 bytes leftover after parsing attributes in process `syz.4.957'.
[  171.947187][ T8093] netlink: 'syz.1.958': attribute type 9 has an invalid length.
[  171.987814][ T8093] bond0: entered promiscuous mode
[  171.993153][ T8093] bond_slave_0: entered promiscuous mode
[  172.006948][ T8093] bond_slave_1: entered promiscuous mode
[  172.015306][ T8093] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  172.029525][ T8093] bond0: left promiscuous mode
[  172.036378][ T8093] bond_slave_0: left promiscuous mode
[  172.050438][ T8093] bond_slave_1: left promiscuous mode
[  172.105316][ T8098] netlink: 'syz.4.961': attribute type 2 has an invalid length.
[  172.113574][ T8098] netlink: 52 bytes leftover after parsing attributes in process `syz.4.961'.
[  172.130237][ T8101] netlink: 5 bytes leftover after parsing attributes in process `syz.4.961'.
[  172.464080][ T8112] netlink: 'syz.1.965': attribute type 9 has an invalid length.
[  172.505055][ T8112] bond0: entered promiscuous mode
[  172.516074][ T8112] bond_slave_0: entered promiscuous mode
[  172.530153][ T8112] bond_slave_1: entered promiscuous mode
[  172.541401][ T8112] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  172.566154][ T8112] bond0: left promiscuous mode
[  172.574628][ T8112] bond_slave_0: left promiscuous mode
[  172.591836][ T8112] bond_slave_1: left promiscuous mode
[  172.663265][ T8116] netlink: 'syz.2.967': attribute type 15 has an invalid length.
[  172.677513][ T8116] FAULT_INJECTION: forcing a failure.
[  172.677513][ T8116] name failslab, interval 1, probability 0, space 0, times 0
[  172.692067][ T8116] CPU: 0 PID: 8116 Comm: syz.2.967 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  172.702131][ T8116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  172.712251][ T8116] Call Trace:
[  172.715590][ T8116]  <TASK>
[  172.718575][ T8116]  dump_stack_lvl+0x241/0x360
[  172.723320][ T8116]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.728584][ T8116]  ? __pfx__printk+0x10/0x10
[  172.733269][ T8116]  ? __pfx_lock_release+0x10/0x10
[  172.738355][ T8116]  should_fail_ex+0x3b0/0x4e0
[  172.743119][ T8116]  ? fib6_new_table+0x92/0x2b0
[  172.747962][ T8116]  should_failslab+0x9/0x20
[  172.752532][ T8116]  kmalloc_trace_noprof+0x6c/0x2c0
[  172.757727][ T8116]  fib6_new_table+0x92/0x2b0
[  172.762385][ T8116]  ip6_route_info_create+0x41d/0x12b0
[  172.767844][ T8116]  ip6_route_add+0x28/0x160
[  172.772425][ T8116]  inet6_rtm_newroute+0x2ca/0x2310
[  172.777646][ T8116]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  172.783258][ T8116]  ? __mutex_lock+0x99b/0xd70
[  172.787999][ T8116]  ? __pfx_lock_release+0x10/0x10
[  172.793081][ T8116]  ? do_raw_spin_lock+0x14f/0x370
[  172.798398][ T8116]  ? do_raw_spin_unlock+0x13c/0x8b0
[  172.803671][ T8116]  ? __mutex_lock+0x9a5/0xd70
[  172.808493][ T8116]  ? __pfx_inet6_rtm_newroute+0x10/0x10
[  172.814073][ T8116]  rtnetlink_rcv_msg+0x89b/0x1180
[  172.819300][ T8116]  ? rtnetlink_rcv_msg+0x208/0x1180
[  172.824613][ T8116]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  172.830107][ T8116]  ? __local_bh_enable_ip+0x168/0x200
[  172.835495][ T8116]  ? lockdep_hardirqs_on+0x99/0x150
[  172.840817][ T8116]  ? __local_bh_enable_ip+0x168/0x200
[  172.846206][ T8116]  ? dev_hard_start_xmit+0x773/0x7e0
[  172.851537][ T8116]  ? __dev_queue_xmit+0x2da/0x3e90
[  172.856770][ T8116]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  172.862513][ T8116]  ? __dev_queue_xmit+0x2da/0x3e90
[  172.867647][ T8116]  ? __dev_queue_xmit+0x1763/0x3e90
[  172.872896][ T8116]  ? kasan_save_track+0x51/0x80
[  172.877791][ T8116]  ? do_syscall_64+0xf3/0x230
[  172.882533][ T8116]  ? __dev_queue_xmit+0x2da/0x3e90
[  172.887698][ T8116]  ? __pfx___dev_queue_xmit+0x10/0x10
[  172.893229][ T8116]  ? ref_tracker_free+0x643/0x7e0
[  172.898384][ T8116]  netlink_rcv_skb+0x1e3/0x430
[  172.903191][ T8116]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  172.908672][ T8116]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  172.913994][ T8116]  ? netlink_deliver_tap+0x2e/0x1b0
[  172.919302][ T8116]  netlink_unicast+0x7f0/0x990
[  172.924102][ T8116]  ? __pfx_netlink_unicast+0x10/0x10
[  172.929405][ T8116]  ? __virt_addr_valid+0x183/0x520
[  172.934544][ T8116]  ? __check_object_size+0x49c/0x900
[  172.939857][ T8116]  ? bpf_lsm_netlink_send+0x9/0x10
[  172.944998][ T8116]  netlink_sendmsg+0x8e4/0xcb0
[  172.949893][ T8116]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.955203][ T8116]  ? __import_iovec+0x536/0x820
[  172.960241][ T8116]  ? aa_sock_msg_perm+0x91/0x160
[  172.965205][ T8116]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  172.970512][ T8116]  ? security_socket_sendmsg+0x87/0xb0
[  172.975995][ T8116]  ? __pfx_netlink_sendmsg+0x10/0x10
[  172.981301][ T8116]  __sock_sendmsg+0x221/0x270
[  172.986033][ T8116]  ____sys_sendmsg+0x525/0x7d0
[  172.990941][ T8116]  ? __pfx_____sys_sendmsg+0x10/0x10
[  172.996327][ T8116]  __sys_sendmsg+0x2b0/0x3a0
[  173.000990][ T8116]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.006138][ T8116]  ? vfs_write+0x7c4/0xc90
[  173.010615][ T8116]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.016985][ T8116]  ? do_syscall_64+0x100/0x230
[  173.021767][ T8116]  ? do_syscall_64+0xb6/0x230
[  173.026457][ T8116]  do_syscall_64+0xf3/0x230
[  173.030978][ T8116]  ? clear_bhb_loop+0x35/0x90
[  173.035676][ T8116]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.041589][ T8116] RIP: 0033:0x7fe8f5b75bd9
[  173.046015][ T8116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.065651][ T8116] RSP: 002b:00007fe8f55ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.074088][ T8116] RAX: ffffffffffffffda RBX: 00007fe8f5d03f60 RCX: 00007fe8f5b75bd9
[  173.082080][ T8116] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  173.090074][ T8116] RBP: 00007fe8f55ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  173.098059][ T8116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.106061][ T8116] R13: 000000000000000b R14: 00007fe8f5d03f60 R15: 00007ffe73a89af8
[  173.114070][ T8116]  </TASK>
[  173.436131][ T8126] netlink: 248 bytes leftover after parsing attributes in process `syz.4.971'.
[  173.908265][ T8143] netlink: 36 bytes leftover after parsing attributes in process `syz.0.978'.
[  174.610186][ T8170] FAULT_INJECTION: forcing a failure.
[  174.610186][ T8170] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  174.646731][ T8170] CPU: 0 PID: 8170 Comm: syz.2.988 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  174.656796][ T8170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  174.666995][ T8170] Call Trace:
[  174.670318][ T8170]  <TASK>
[  174.673287][ T8170]  dump_stack_lvl+0x241/0x360
[  174.678030][ T8170]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.683286][ T8170]  ? __pfx__printk+0x10/0x10
[  174.687938][ T8170]  should_fail_ex+0x3b0/0x4e0
[  174.692704][ T8170]  prepare_alloc_pages+0x1da/0x5d0
[  174.697903][ T8170]  __alloc_pages_noprof+0x166/0x6c0
[  174.703185][ T8170]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  174.708976][ T8170]  ? rcu_is_watching+0x15/0xb0
[  174.713849][ T8170]  ? __build_skb_around+0x245/0x3d0
[  174.719155][ T8170]  alloc_pages_mpol_noprof+0x3e8/0x680
[  174.724694][ T8170]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  174.730753][ T8170]  ? alloc_pages_noprof+0xef/0x170
[  174.736120][ T8170]  alloc_skb_with_frags+0x21c/0x770
[  174.741422][ T8170]  sock_alloc_send_pskb+0x91a/0xa60
[  174.746812][ T8170]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  174.752628][ T8170]  tun_get_user+0xcf3/0x4720
[  174.757486][ T8170]  ? __lock_acquire+0x1346/0x1fd0
[  174.762577][ T8170]  ? __pfx_tun_get_user+0x10/0x10
[  174.767699][ T8170]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  174.773263][ T8170]  ? tun_get+0x1e/0x2f0
[  174.777444][ T8170]  ? __pfx_lock_release+0x10/0x10
[  174.782494][ T8170]  ? tun_get+0x1e/0x2f0
[  174.786666][ T8170]  ? tun_get+0x27d/0x2f0
[  174.790942][ T8170]  tun_chr_write_iter+0x113/0x1f0
[  174.796081][ T8170]  vfs_write+0xa72/0xc90
[  174.800356][ T8170]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  174.805964][ T8170]  ? __pfx_vfs_write+0x10/0x10
[  174.810777][ T8170]  ksys_write+0x1a0/0x2c0
[  174.815184][ T8170]  ? __pfx_ksys_write+0x10/0x10
[  174.820158][ T8170]  ? do_syscall_64+0x100/0x230
[  174.824943][ T8170]  ? do_syscall_64+0xb6/0x230
[  174.829664][ T8170]  do_syscall_64+0xf3/0x230
[  174.834298][ T8170]  ? clear_bhb_loop+0x35/0x90
[  174.839009][ T8170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.844938][ T8170] RIP: 0033:0x7fe8f5b7475f
[  174.849376][ T8170] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  174.869092][ T8170] RSP: 002b:00007fe8f55ff010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  174.878079][ T8170] RAX: ffffffffffffffda RBX: 00007fe8f5d03f60 RCX: 00007fe8f5b7475f
[  174.886062][ T8170] RDX: 000000000000fdef RSI: 0000000020000040 RDI: 00000000000000c8
[  174.894107][ T8170] RBP: 00007fe8f55ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  174.902193][ T8170] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000001
[  174.910271][ T8170] R13: 000000000000000b R14: 00007fe8f5d03f60 R15: 00007ffe73a89af8
[  174.918388][ T8170]  </TASK>
[  175.950412][ T8208] FAULT_INJECTION: forcing a failure.
[  175.950412][ T8208] name failslab, interval 1, probability 0, space 0, times 0
[  175.988002][ T8208] CPU: 1 PID: 8208 Comm: syz.4.1000 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  175.998342][ T8208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  176.008623][ T8208] Call Trace:
[  176.011998][ T8208]  <TASK>
[  176.014960][ T8208]  dump_stack_lvl+0x241/0x360
[  176.019690][ T8208]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.024930][ T8208]  ? __pfx__printk+0x10/0x10
[  176.029572][ T8208]  ? __pfx___might_resched+0x10/0x10
[  176.035036][ T8208]  should_fail_ex+0x3b0/0x4e0
[  176.039781][ T8208]  ? sock_kmalloc+0xd7/0x160
[  176.044510][ T8208]  should_failslab+0x9/0x20
[  176.049240][ T8208]  __kmalloc_noprof+0xd8/0x400
[  176.054079][ T8208]  sock_kmalloc+0xd7/0x160
[  176.058561][ T8208]  af_alg_get_rsgl+0x22c/0x850
[  176.063398][ T8208]  aead_recvmsg+0x65a/0x19f0
[  176.068125][ T8208]  ? validate_chain+0x11e/0x5900
[  176.073130][ T8208]  ? validate_chain+0x11e/0x5900
[  176.078132][ T8208]  ? __pfx_aead_recvmsg+0x10/0x10
[  176.083217][ T8208]  ? ima_get_action+0x75/0xb0
[  176.087952][ T8208]  ? __pfx_validate_chain+0x10/0x10
[  176.093221][ T8208]  ? validate_chain+0x11e/0x5900
[  176.098222][ T8208]  ? aa_label_sk_perm+0x4f0/0x6d0
[  176.103496][ T8208]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  176.108950][ T8208]  ? mark_lock+0x9a/0x350
[  176.113339][ T8208]  ? __pfx___might_resched+0x10/0x10
[  176.118698][ T8208]  ? aa_sk_perm+0x967/0xab0
[  176.123272][ T8208]  ? __pfx_aa_sk_perm+0x10/0x10
[  176.128184][ T8208]  ? __pfx___might_resched+0x10/0x10
[  176.133549][ T8208]  ? aa_sock_msg_perm+0x91/0x160
[  176.138549][ T8208]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  176.143971][ T8208]  ? security_socket_recvmsg+0x90/0xb0
[  176.149499][ T8208]  ? __pfx_aead_recvmsg+0x10/0x10
[  176.154582][ T8208]  sock_recvmsg+0x22f/0x280
[  176.159149][ T8208]  ____sys_recvmsg+0x1db/0x470
[  176.164020][ T8208]  ? __pfx_____sys_recvmsg+0x10/0x10
[  176.169860][ T8208]  do_recvmmsg+0x474/0xae0
[  176.174354][ T8208]  ? mark_lock+0x9a/0x350
[  176.178752][ T8208]  ? __pfx_do_recvmmsg+0x10/0x10
[  176.183793][ T8208]  ? __pfx___might_resched+0x10/0x10
[  176.189145][ T8208]  ? __might_fault+0xaa/0x120
[  176.193896][ T8208]  ? __pfx_lock_release+0x10/0x10
[  176.199019][ T8208]  ? vfs_write+0x7c4/0xc90
[  176.203515][ T8208]  ? get_timespec64+0x19c/0x280
[  176.208459][ T8208]  __x64_sys_recvmmsg+0x1b8/0x250
[  176.213653][ T8208]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  176.219309][ T8208]  ? do_syscall_64+0x100/0x230
[  176.224128][ T8208]  ? do_syscall_64+0xb6/0x230
[  176.228861][ T8208]  do_syscall_64+0xf3/0x230
[  176.233412][ T8208]  ? clear_bhb_loop+0x35/0x90
[  176.238148][ T8208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.244101][ T8208] RIP: 0033:0x7f3b1bb75bd9
[  176.248567][ T8208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.268227][ T8208] RSP: 002b:00007f3b1c9d7048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  176.276700][ T8208] RAX: ffffffffffffffda RBX: 00007f3b1bd03f60 RCX: 00007f3b1bb75bd9
[  176.284718][ T8208] RDX: 0000000000000002 RSI: 00000000200008c0 RDI: 0000000000000008
[  176.292733][ T8208] RBP: 00007f3b1c9d70a0 R08: 0000000020008000 R09: 0000000000000000
[  176.300882][ T8208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  176.308905][ T8208] R13: 000000000000000b R14: 00007f3b1bd03f60 R15: 00007fff1931fdd8
[  176.316995][ T8208]  </TASK>
[  176.667572][ T8220] FAULT_INJECTION: forcing a failure.
[  176.667572][ T8220] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.734159][ T8220] CPU: 1 PID: 8220 Comm: syz.2.1006 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  176.744329][ T8220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  176.754527][ T8220] Call Trace:
[  176.757916][ T8220]  <TASK>
[  176.760917][ T8220]  dump_stack_lvl+0x241/0x360
[  176.765661][ T8220]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.770920][ T8220]  ? __pfx__printk+0x10/0x10
[  176.775588][ T8220]  should_fail_ex+0x3b0/0x4e0
[  176.780340][ T8220]  _copy_from_user+0x2f/0xe0
[  176.785003][ T8220]  bpf_test_init+0x11f/0x180
[  176.789659][ T8220]  bpf_prog_test_run_xdp+0x48e/0x11b0
[  176.795131][ T8220]  ? __pfx_lock_acquire+0x10/0x10
[  176.800224][ T8220]  ? __pfx_lock_release+0x10/0x10
[  176.805320][ T8220]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  176.811188][ T8220]  ? __fget_files+0x29/0x470
[  176.815861][ T8220]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  176.821744][ T8220]  bpf_prog_test_run+0x33a/0x3b0
[  176.826754][ T8220]  __sys_bpf+0x48d/0x810
[  176.831076][ T8220]  ? __pfx___sys_bpf+0x10/0x10
[  176.835901][ T8220]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  176.841912][ T8220]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  176.848278][ T8220]  ? do_syscall_64+0x100/0x230
[  176.853110][ T8220]  __x64_sys_bpf+0x7c/0x90
[  176.857596][ T8220]  do_syscall_64+0xf3/0x230
[  176.862157][ T8220]  ? clear_bhb_loop+0x35/0x90
[  176.866888][ T8220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.872838][ T8220] RIP: 0033:0x7fe8f5b75bd9
[  176.877274][ T8220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.897080][ T8220] RSP: 002b:00007fe8f55ff048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  176.905544][ T8220] RAX: ffffffffffffffda RBX: 00007fe8f5d03f60 RCX: 00007fe8f5b75bd9
[  176.913627][ T8220] RDX: 0000000000000050 RSI: 0000000020000340 RDI: 000000000000000a
[  176.921901][ T8220] RBP: 00007fe8f55ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  176.929922][ T8220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  176.937924][ T8220] R13: 000000000000000b R14: 00007fe8f5d03f60 R15: 00007ffe73a89af8
[  176.945942][ T8220]  </TASK>
[  177.243879][ T8234] xt_TCPMSS: Only works on TCP SYN packets
[  177.257633][   T53] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  177.281619][   T53] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  177.291409][   T53] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  177.302471][   T53] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  177.314592][   T53] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  177.322713][   T53] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  177.662786][ T8248] ip6t_srh: unknown srh match flags  5294
[  177.702021][ T8245] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  177.719081][ T8248] Cannot find set identified by id 0 to match
[  177.985489][ T8259] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1017'.
[  178.443721][ T8260] netlink: 'syz.2.1012': attribute type 30 has an invalid length.
[  178.510385][ T8260] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  178.606050][ T8260] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  178.840599][ T8285] FAULT_INJECTION: forcing a failure.
[  178.840599][ T8285] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.857976][ T8285] CPU: 1 PID: 8285 Comm: syz.4.1025 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  178.868270][ T8285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  178.878634][ T8285] Call Trace:
[  178.881952][ T8285]  <TASK>
[  178.885000][ T8285]  dump_stack_lvl+0x241/0x360
[  178.889725][ T8285]  ? __pfx_dump_stack_lvl+0x10/0x10
[  178.895060][ T8285]  ? __pfx__printk+0x10/0x10
[  178.899685][ T8285]  ? __pfx_lock_release+0x10/0x10
[  178.904737][ T8285]  should_fail_ex+0x3b0/0x4e0
[  178.909446][ T8285]  _copy_from_user+0x2f/0xe0
[  178.914056][ T8285]  copy_msghdr_from_user+0xae/0x680
[  178.919281][ T8285]  ? _parse_integer_limit+0x1b5/0x200
[  178.924704][ T8285]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  178.930542][ T8285]  __sys_sendmmsg+0x374/0x740
[  178.935256][ T8285]  ? __pfx___sys_sendmmsg+0x10/0x10
[  178.940529][ T8285]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  178.946454][ T8285]  ? ksys_write+0x23e/0x2c0
[  178.950979][ T8285]  ? __pfx_lock_release+0x10/0x10
[  178.956050][ T8285]  ? vfs_write+0x7c4/0xc90
[  178.960487][ T8285]  ? __mutex_unlock_slowpath+0x21d/0x750
[  178.966143][ T8285]  ? __pfx_vfs_write+0x10/0x10
[  178.970948][ T8285]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  178.976953][ T8285]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  178.983293][ T8285]  ? do_syscall_64+0x100/0x230
[  178.988160][ T8285]  __x64_sys_sendmmsg+0xa0/0xb0
[  178.993033][ T8285]  do_syscall_64+0xf3/0x230
[  178.997549][ T8285]  ? clear_bhb_loop+0x35/0x90
[  179.002246][ T8285]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  179.008269][ T8285] RIP: 0033:0x7f3b1bb75bd9
[  179.012697][ T8285] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  179.032626][ T8285] RSP: 002b:00007f3b1c9d7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  179.041090][ T8285] RAX: ffffffffffffffda RBX: 00007f3b1bd03f60 RCX: 00007f3b1bb75bd9
[  179.049097][ T8285] RDX: 0400000000000257 RSI: 0000000020009a80 RDI: 0000000000000003
[  179.057096][ T8285] RBP: 00007f3b1c9d70a0 R08: 0000000000000000 R09: 0000000000000000
[  179.065172][ T8285] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  179.073179][ T8285] R13: 000000000000000b R14: 00007f3b1bd03f60 R15: 00007fff1931fdd8
[  179.081268][ T8285]  </TASK>
[  179.308960][ T8292] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1026'.
[  179.367007][ T5115] Bluetooth: hci5: command tx timeout
[  179.404821][ T8237] chnl_net:caif_netlink_parms(): no params data found
[  179.672618][ T8299] FAULT_INJECTION: forcing a failure.
[  179.672618][ T8299] name failslab, interval 1, probability 0, space 0, times 0
[  179.709027][ T8299] CPU: 0 PID: 8299 Comm: syz.1.1029 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  179.719179][ T8299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  179.729372][ T8299] Call Trace:
[  179.732698][ T8299]  <TASK>
[  179.735698][ T8299]  dump_stack_lvl+0x241/0x360
[  179.740427][ T8299]  ? __pfx_dump_stack_lvl+0x10/0x10
[  179.745693][ T8299]  ? __pfx__printk+0x10/0x10
[  179.750331][ T8299]  ? __pfx___might_resched+0x10/0x10
[  179.755682][ T8299]  should_fail_ex+0x3b0/0x4e0
[  179.760440][ T8299]  should_failslab+0x9/0x20
[  179.765004][ T8299]  __kmalloc_node_noprof+0xdf/0x440
[  179.770284][ T8299]  ? qdisc_alloc+0x97/0xa80
[  179.774832][ T8299]  qdisc_alloc+0x97/0xa80
[  179.779218][ T8299]  qdisc_create+0x182/0x11a0
[  179.783943][ T8299]  ? __pfx_qdisc_create+0x10/0x10
[  179.789110][ T8299]  tc_modify_qdisc+0xa26/0x1e40
[  179.794032][ T8299]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  179.799399][ T8299]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  179.804742][ T8299]  rtnetlink_rcv_msg+0x89b/0x1180
[  179.809822][ T8299]  ? rtnetlink_rcv_msg+0x208/0x1180
[  179.815074][ T8299]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  179.820587][ T8299]  ? __local_bh_enable_ip+0x168/0x200
[  179.825997][ T8299]  ? lockdep_hardirqs_on+0x99/0x150
[  179.831226][ T8299]  ? __local_bh_enable_ip+0x168/0x200
[  179.836611][ T8299]  ? dev_hard_start_xmit+0x773/0x7e0
[  179.841916][ T8299]  ? __dev_queue_xmit+0x2da/0x3e90
[  179.847043][ T8299]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  179.852800][ T8299]  ? __dev_queue_xmit+0x2da/0x3e90
[  179.858142][ T8299]  ? __dev_queue_xmit+0x1763/0x3e90
[  179.863383][ T8299]  ? kasan_save_track+0x51/0x80
[  179.868359][ T8299]  ? do_syscall_64+0xf3/0x230
[  179.873064][ T8299]  ? __dev_queue_xmit+0x2da/0x3e90
[  179.878200][ T8299]  ? __pfx___dev_queue_xmit+0x10/0x10
[  179.883634][ T8299]  ? ref_tracker_free+0x643/0x7e0
[  179.888695][ T8299]  netlink_rcv_skb+0x1e3/0x430
[  179.893485][ T8299]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  179.898983][ T8299]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  179.904303][ T8299]  ? netlink_deliver_tap+0x2e/0x1b0
[  179.909544][ T8299]  netlink_unicast+0x7f0/0x990
[  179.914340][ T8299]  ? __pfx_netlink_unicast+0x10/0x10
[  179.919636][ T8299]  ? __virt_addr_valid+0x183/0x520
[  179.924781][ T8299]  ? __check_object_size+0x49c/0x900
[  179.930554][ T8299]  ? bpf_lsm_netlink_send+0x9/0x10
[  179.935791][ T8299]  netlink_sendmsg+0x8e4/0xcb0
[  179.940582][ T8299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.945884][ T8299]  ? __import_iovec+0x536/0x820
[  179.950916][ T8299]  ? aa_sock_msg_perm+0x91/0x160
[  179.955874][ T8299]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  179.961261][ T8299]  ? security_socket_sendmsg+0x87/0xb0
[  179.966747][ T8299]  ? __pfx_netlink_sendmsg+0x10/0x10
[  179.972068][ T8299]  __sock_sendmsg+0x221/0x270
[  179.976767][ T8299]  ____sys_sendmsg+0x525/0x7d0
[  179.981561][ T8299]  ? __pfx_____sys_sendmsg+0x10/0x10
[  179.986881][ T8299]  __sys_sendmsg+0x2b0/0x3a0
[  179.991494][ T8299]  ? __pfx___sys_sendmsg+0x10/0x10
[  179.996638][ T8299]  ? vfs_write+0x7c4/0xc90
[  180.001108][ T8299]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  180.007491][ T8299]  ? do_syscall_64+0x100/0x230
[  180.012288][ T8299]  ? do_syscall_64+0xb6/0x230
[  180.016982][ T8299]  do_syscall_64+0xf3/0x230
[  180.021501][ T8299]  ? clear_bhb_loop+0x35/0x90
[  180.026233][ T8299]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.032428][ T8299] RIP: 0033:0x7fa0ab975bd9
[  180.036882][ T8299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.056620][ T8299] RSP: 002b:00007fa0ac675048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.065084][ T8299] RAX: ffffffffffffffda RBX: 00007fa0abb03f60 RCX: 00007fa0ab975bd9
[  180.073095][ T8299] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  180.081096][ T8299] RBP: 00007fa0ac6750a0 R08: 0000000000000000 R09: 0000000000000000
[  180.089100][ T8299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.097119][ T8299] R13: 000000000000000b R14: 00007fa0abb03f60 R15: 00007ffcdf97f068
[  180.105133][ T8299]  </TASK>
[  180.497004][ T8237] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.517425][ T8237] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.549233][ T8237] bridge_slave_0: entered allmulticast mode
[  180.579658][ T8237] bridge_slave_0: entered promiscuous mode
[  180.610427][ T8237] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.636198][ T8237] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.675664][ T8237] bridge_slave_1: entered allmulticast mode
[  180.698589][ T8237] bridge_slave_1: entered promiscuous mode
[  180.871754][ T8237] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  180.907265][ T8237] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  180.919796][ T8317] FAULT_INJECTION: forcing a failure.
[  180.919796][ T8317] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.986643][ T8317] CPU: 1 PID: 8317 Comm: syz.4.1034 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  180.996822][ T8317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  181.006924][ T8317] Call Trace:
[  181.010275][ T8317]  <TASK>
[  181.013296][ T8317]  dump_stack_lvl+0x241/0x360
[  181.018046][ T8317]  ? __pfx_dump_stack_lvl+0x10/0x10
[  181.023319][ T8317]  ? __pfx__printk+0x10/0x10
[  181.027971][ T8317]  ? __pfx_lock_release+0x10/0x10
[  181.033108][ T8317]  should_fail_ex+0x3b0/0x4e0
[  181.037936][ T8317]  _copy_from_user+0x2f/0xe0
[  181.042556][ T8317]  copy_msghdr_from_user+0xae/0x680
[  181.047810][ T8317]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  181.053669][ T8317]  __sys_sendmsg+0x23d/0x3a0
[  181.058299][ T8317]  ? __pfx___sys_sendmsg+0x10/0x10
[  181.063436][ T8317]  ? vfs_write+0x7c4/0xc90
[  181.067916][ T8317]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  181.074360][ T8317]  ? do_syscall_64+0x100/0x230
[  181.079169][ T8317]  ? do_syscall_64+0xb6/0x230
[  181.083892][ T8317]  do_syscall_64+0xf3/0x230
[  181.088546][ T8317]  ? clear_bhb_loop+0x35/0x90
[  181.093315][ T8317]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.099238][ T8317] RIP: 0033:0x7f3b1bb75bd9
[  181.103668][ T8317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.123295][ T8317] RSP: 002b:00007f3b1c9d7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  181.131746][ T8317] RAX: ffffffffffffffda RBX: 00007f3b1bd03f60 RCX: 00007f3b1bb75bd9
[  181.139760][ T8317] RDX: 0000000000000000 RSI: 0000000020000ec0 RDI: 0000000000000004
[  181.147772][ T8317] RBP: 00007f3b1c9d70a0 R08: 0000000000000000 R09: 0000000000000000
[  181.155763][ T8317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.163883][ T8317] R13: 000000000000000b R14: 00007f3b1bd03f60 R15: 00007fff1931fdd8
[  181.172594][ T8317]  </TASK>
[  181.359980][ T8237] team0: Port device team_slave_0 added
[  181.409014][ T8237] team0: Port device team_slave_1 added
[  181.437547][ T5115] Bluetooth: hci5: command tx timeout
[  181.605557][ T8327] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma?
[  181.617489][ T8237] batman_adv: batadv0: Adding interface: batadv_slave_0
[  181.624593][ T8237] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.726647][ T8237] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  181.769146][ T8237] batman_adv: batadv0: Adding interface: batadv_slave_1
[  181.776247][ T8237] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  181.915092][ T8237] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  181.977603][ T8336] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1040'.
[  182.032855][ T8333] bridge4: entered allmulticast mode
[  182.283862][ T8237] hsr_slave_0: entered promiscuous mode
[  182.341394][ T8237] hsr_slave_1: entered promiscuous mode
[  182.376586][ T8237] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  182.384243][ T8237] Cannot create hsr debugfs directory
[  182.505476][ T8342] netlink: 'syz.0.1045': attribute type 2 has an invalid length.
[  182.544959][ T8342] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.1045'.
[  182.678106][ T8354] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma?
[  183.044772][ T8360] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1051'.
[  183.111614][ T8237] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.367727][ T8237] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.516959][ T5115] Bluetooth: hci5: command tx timeout
[  183.570726][ T8237] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  183.749318][ T8237] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.444766][ T8237] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  184.513902][ T8393] RDS: rds_bind could not find a transport for ::ffff:172.30.0.5, load rds_tcp or rds_rdma?
[  184.539571][ T8237] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  184.610366][ T8237] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  184.707380][ T8237] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  184.849047][ T8403] netlink: 'syz.4.1064': attribute type 10 has an invalid length.
[  184.957056][ T8403] team0: Port device dummy0 added
[  185.274700][ T8237] 8021q: adding VLAN 0 to HW filter on device bond0
[  185.345881][ T8237] 8021q: adding VLAN 0 to HW filter on device team0
[  185.389669][ T5160] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.397039][ T5160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  185.429947][ T5160] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.437243][ T5160] bridge0: port 2(bridge_slave_1) entered forwarding state
[  185.612213][ T5115] Bluetooth: hci5: command tx timeout
[  185.714039][ T8237] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  185.867338][ T8415] FAULT_INJECTION: forcing a failure.
[  185.867338][ T8415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.898290][ T8415] CPU: 1 PID: 8415 Comm: syz.1.1069 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  185.908528][ T8415] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  185.918630][ T8415] Call Trace:
[  185.922035][ T8415]  <TASK>
[  185.925009][ T8415]  dump_stack_lvl+0x241/0x360
[  185.929748][ T8415]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.935086][ T8415]  ? __pfx__printk+0x10/0x10
[  185.939731][ T8415]  ? __pfx_lock_release+0x10/0x10
[  185.944815][ T8415]  ? vfs_write+0x7c4/0xc90
[  185.949298][ T8415]  should_fail_ex+0x3b0/0x4e0
[  185.954050][ T8415]  _copy_from_user+0x2f/0xe0
[  185.958698][ T8415]  __sys_bpf+0x1a4/0x810
[  185.963011][ T8415]  ? __pfx___sys_bpf+0x10/0x10
[  185.967853][ T8415]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  185.973897][ T8415]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  185.980419][ T8415]  ? do_syscall_64+0x100/0x230
[  185.985243][ T8415]  __x64_sys_bpf+0x7c/0x90
[  185.989716][ T8415]  do_syscall_64+0xf3/0x230
[  185.994336][ T8415]  ? clear_bhb_loop+0x35/0x90
[  185.999069][ T8415]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.005020][ T8415] RIP: 0033:0x7fa0ab975bd9
[  186.009482][ T8415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.029290][ T8415] RSP: 002b:00007fa0ac675048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  186.037996][ T8415] RAX: ffffffffffffffda RBX: 00007fa0abb03f60 RCX: 00007fa0ab975bd9
[  186.045981][ T8415] RDX: 0000000000000050 RSI: 0000000020000180 RDI: 000000000000000a
[  186.053966][ T8415] RBP: 00007fa0ac6750a0 R08: 0000000000000000 R09: 0000000000000000
[  186.062038][ T8415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.070020][ T8415] R13: 000000000000000b R14: 00007fa0abb03f60 R15: 00007ffcdf97f068
[  186.078111][ T8415]  </TASK>
[  186.397850][ T8426] RDS: rds_bind could not find a transport for ::ffff:172.30.0.2, load rds_tcp or rds_rdma?
[  186.707400][ T8237] 8021q: adding VLAN 0 to HW filter on device batadv0
[  186.938157][ T8237] veth0_vlan: entered promiscuous mode
[  187.012790][ T8237] veth1_vlan: entered promiscuous mode
[  187.152517][ T8237] veth0_macvtap: entered promiscuous mode
[  187.200992][ T8237] veth1_macvtap: entered promiscuous mode
[  187.314973][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.348262][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.365245][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.378239][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.397791][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.419090][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.434752][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.445918][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.456551][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.467665][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.492770][ T8237] batman_adv: batadv0: Interface activated: batadv_slave_0
[  187.562928][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.603310][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.650907][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.697705][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.725414][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.759185][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.798183][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.831268][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.875891][ T8237] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  187.901020][ T8237] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.965998][ T8237] batman_adv: batadv0: Interface activated: batadv_slave_1
[  188.051156][ T8237] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.090850][ T8237] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.134176][ T8237] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.157189][ T8237] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  188.505045][ T1097] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  188.518141][   T53] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  188.528161][   T53] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  188.536869][   T53] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  188.545185][   T53] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  188.554127][   T53] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  188.566264][   T53] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  188.582810][ T1097] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  188.683973][ T8464] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  188.777271][ T8467] netlink: 'syz.1.1089': attribute type 11 has an invalid length.
[  188.807123][ T8467] netlink: 140 bytes leftover after parsing attributes in process `syz.1.1089'.
[  189.172848][ T8477] netlink: 'syz.4.1090': attribute type 30 has an invalid length.
[  189.355124][ T8477] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[  189.448624][ T8477] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[  189.696988][ T7726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  189.704905][ T7726] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  190.523049][ T8462] chnl_net:caif_netlink_parms(): no params data found
[  190.637078][   T53] Bluetooth: hci6: command tx timeout
[  190.780366][ T8506] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1100'.
[  191.029378][ T8462] bridge0: port 1(bridge_slave_0) entered blocking state
[  191.055377][ T8462] bridge0: port 1(bridge_slave_0) entered disabled state
[  191.093726][ T8462] bridge_slave_0: entered allmulticast mode
[  191.123186][ T8462] bridge_slave_0: entered promiscuous mode
[  191.216804][ T8462] bridge0: port 2(bridge_slave_1) entered blocking state
[  191.256291][ T8462] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.284768][ T8462] bridge_slave_1: entered allmulticast mode
[  191.298421][ T8462] bridge_slave_1: entered promiscuous mode
[  191.305516][ T8517] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1102'.
[  191.582798][ T8462] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  191.625937][ T8462] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  191.935280][ T8462] team0: Port device team_slave_0 added
[  192.013481][ T8462] team0: Port device team_slave_1 added
[  192.284399][ T8462] batman_adv: batadv0: Adding interface: batadv_slave_0
[  192.302063][ T8462] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.372810][ T8462] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  192.417886][ T8462] batman_adv: batadv0: Adding interface: batadv_slave_1
[  192.424918][ T8462] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  192.496764][ T8462] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  192.716785][   T53] Bluetooth: hci6: command tx timeout
[  192.850122][ T8531] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1107'.
[  192.902140][ T8462] hsr_slave_0: entered promiscuous mode
[  192.906920][ T8531] netlink: 'syz.3.1107': attribute type 1 has an invalid length.
[  192.931301][ T8462] hsr_slave_1: entered promiscuous mode
[  192.976907][ T8462] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  192.996137][ T8462] Cannot create hsr debugfs directory
[  193.619606][ T8462] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.844151][ T8462] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.045803][ T8462] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.168968][ T8551] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1114'.
[  194.188303][ T8551] veth1_to_bridge: Caught tx_queue_len zero misconfig
[  194.216857][ T8553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1114'.
[  194.459335][ T8462] team0: Port device netdevsim0 removed
[  194.488442][ T8462] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.723275][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[  194.733351][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  194.796693][   T53] Bluetooth: hci6: command tx timeout
[  194.814231][ T8576] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1118'.
[  195.276737][ T8462] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  195.315843][ T8462] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  195.559522][ T8462] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  195.615326][ T8462] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  195.797807][ T8598] FAULT_INJECTION: forcing a failure.
[  195.797807][ T8598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  195.891230][ T8598] CPU: 0 PID: 8598 Comm: syz.3.1122 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  195.901387][ T8598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  195.911492][ T8598] Call Trace:
[  195.914819][ T8598]  <TASK>
[  195.917786][ T8598]  dump_stack_lvl+0x241/0x360
[  195.922513][ T8598]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.927759][ T8598]  ? __pfx__printk+0x10/0x10
[  195.932412][ T8598]  should_fail_ex+0x3b0/0x4e0
[  195.937163][ T8598]  _copy_from_user+0x2f/0xe0
[  195.941810][ T8598]  bpf_test_init+0x11f/0x180
[  195.946459][ T8598]  bpf_prog_test_run_xdp+0x48e/0x11b0
[  195.951887][ T8598]  ? __pfx_lock_acquire+0x10/0x10
[  195.956964][ T8598]  ? __pfx_lock_release+0x10/0x10
[  195.962051][ T8598]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  195.967914][ T8598]  ? __fget_files+0x29/0x470
[  195.972595][ T8598]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  195.978454][ T8598]  bpf_prog_test_run+0x33a/0x3b0
[  195.983446][ T8598]  __sys_bpf+0x48d/0x810
[  195.987755][ T8598]  ? __pfx___sys_bpf+0x10/0x10
[  195.992592][ T8598]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  195.998629][ T8598]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  196.005007][ T8598]  ? do_syscall_64+0x100/0x230
[  196.009823][ T8598]  __x64_sys_bpf+0x7c/0x90
[  196.014473][ T8598]  do_syscall_64+0xf3/0x230
[  196.019029][ T8598]  ? clear_bhb_loop+0x35/0x90
[  196.023772][ T8598]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.029717][ T8598] RIP: 0033:0x7fc558575bd9
[  196.034171][ T8598] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.053823][ T8598] RSP: 002b:00007fc5592e8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  196.062292][ T8598] RAX: ffffffffffffffda RBX: 00007fc558703f60 RCX: 00007fc558575bd9
[  196.070399][ T8598] RDX: 0000000000000050 RSI: 00000000200004c0 RDI: 000000000000000a
[  196.078430][ T8598] RBP: 00007fc5592e80a0 R08: 0000000000000000 R09: 0000000000000000
[  196.086448][ T8598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.094467][ T8598] R13: 000000000000000b R14: 00007fc558703f60 R15: 00007ffd70421498
[  196.102520][ T8598]  </TASK>
[  196.149970][ T8462] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.272390][ T8462] 8021q: adding VLAN 0 to HW filter on device team0
[  196.349024][ T8600] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1123'.
[  196.384306][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.391610][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.469840][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.477193][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.709560][ T8462] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  196.876896][   T53] Bluetooth: hci6: command tx timeout
[  197.125652][ T8462] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.511311][ T8462] veth0_vlan: entered promiscuous mode
[  197.557574][ T8628] netlink: 'syz.0.1129': attribute type 3 has an invalid length.
[  197.575520][ T8462] veth1_vlan: entered promiscuous mode
[  197.724813][ T8462] veth0_macvtap: entered promiscuous mode
[  197.778640][ T8462] veth1_macvtap: entered promiscuous mode
[  197.869639][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.918516][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.964531][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.986765][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.008075][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.046875][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.065412][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.095704][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.156320][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.178140][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.202158][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  198.235717][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.272728][ T8462] batman_adv: batadv0: Interface activated: batadv_slave_0
[  198.384552][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.416667][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.444722][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.506656][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.547134][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.587832][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.634555][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.692589][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.743562][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.807790][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.842386][ T8462] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.893239][ T8462] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.947672][ T8462] batman_adv: batadv0: Interface activated: batadv_slave_1
[  199.052058][ T8462] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  199.081448][ T8462] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  199.113438][ T8462] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  199.151028][ T8462] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  199.288154][ T5115] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  199.304262][ T5115] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  199.315011][ T5115] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  199.325404][ T5115] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  199.336709][ T8665] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1140'.
[  199.347255][ T5115] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  199.357221][ T5115] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  199.664625][ T8667] netlink: 'syz.0.1141': attribute type 4 has an invalid length.
[  199.976827][  T966] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  199.984724][  T966] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.288241][ T7720] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  200.296137][ T7720] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  200.692392][ T8663] chnl_net:caif_netlink_parms(): no params data found
[  201.201355][ T8663] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.219308][ T8663] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.239088][ T8663] bridge_slave_0: entered allmulticast mode
[  201.258763][ T8663] bridge_slave_0: entered promiscuous mode
[  201.286135][ T8663] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.317279][ T8663] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.327221][ T8663] bridge_slave_1: entered allmulticast mode
[  201.345716][ T8663] bridge_slave_1: entered promiscuous mode
[  201.436994][ T5120] Bluetooth: hci7: command tx timeout
[  201.513028][ T8663] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.611832][ T8663] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.743986][ T8714] netlink: 47 bytes leftover after parsing attributes in process `syz.0.1152'.
[  201.917055][ T5109] Bluetooth: hci4: command 0x0406 tx timeout
[  201.921106][ T5112] Bluetooth: hci3: command 0x0406 tx timeout
[  201.924479][ T5109] Bluetooth: hci1: command 0x0406 tx timeout
[  201.935302][ T8663] team0: Port device team_slave_0 added
[  202.006732][ T8663] team0: Port device team_slave_1 added
[  202.327022][ T8663] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.334127][ T8663] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.431756][ T8663] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.468717][ T8663] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.475758][ T8663] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.606989][ T8663] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.677353][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1156'.
[  202.759281][ T8737] netlink: 'syz.0.1161': attribute type 5 has an invalid length.
[  202.899640][ T8663] hsr_slave_0: entered promiscuous mode
[  202.927456][ T8663] hsr_slave_1: entered promiscuous mode
[  202.954233][ T8663] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.977590][ T8663] Cannot create hsr debugfs directory
[  203.217196][ T8752] netlink: 'syz.1.1165': attribute type 3 has an invalid length.
[  203.339909][ T8753] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  203.457161][ T8750] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1164'.
[  203.527631][ T5107] Bluetooth: hci7: command tx timeout
[  203.628799][ T8757] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  204.511689][ T8663] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.615761][ T8779] netlink: 'syz.3.1171': attribute type 44 has an invalid length.
[  204.871454][ T8663] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.904584][ T8783] netlink: 'syz.1.1174': attribute type 4 has an invalid length.
[  204.918565][ T8789] sctp: [Deprecated]: syz.1.1174 (pid 8789) Use of int in max_burst socket option.
[  204.918565][ T8789] Use struct sctp_assoc_value instead
[  205.291642][ T8663] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.596906][ T5107] Bluetooth: hci7: command 0x040f tx timeout
[  206.323665][ T8663] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.780182][ T8663] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  206.825934][ T8663] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  206.869615][ T8663] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  206.925838][ T8663] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  207.429868][ T8663] 8021q: adding VLAN 0 to HW filter on device bond0
[  207.484918][ T8817] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1182'.
[  207.672343][ T8663] 8021q: adding VLAN 0 to HW filter on device team0
[  207.688921][ T5120] Bluetooth: hci7: command 0x040f tx timeout
[  207.741515][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.748774][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  207.821622][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1182'.
[  207.876311][ T8817] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.074129][ T8817] bridge_slave_1 (unregistering): left allmulticast mode
[  208.102440][ T8817] bridge_slave_1 (unregistering): left promiscuous mode
[  208.160364][ T8817] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.335064][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.342382][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  208.392337][ T8828] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1187'.
[  208.743025][ T8838] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1189'.
[  209.284515][ T8663] 8021q: adding VLAN 0 to HW filter on device batadv0
[  209.757302][ T5120] Bluetooth: hci7: command 0x040f tx timeout
[  210.056175][ T8868] FAULT_INJECTION: forcing a failure.
[  210.056175][ T8868] name failslab, interval 1, probability 0, space 0, times 0
[  210.065050][ T8866] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1194'.
[  210.226665][ T8868] CPU: 1 PID: 8868 Comm: syz.3.1195 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  210.231219][ T8663] veth0_vlan: entered promiscuous mode
[  210.236810][ T8868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  210.236829][ T8868] Call Trace:
[  210.236839][ T8868]  <TASK>
[  210.236849][ T8868]  dump_stack_lvl+0x241/0x360
[  210.236883][ T8868]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.236909][ T8868]  ? __pfx__printk+0x10/0x10
[  210.273424][ T8868]  ? ref_tracker_alloc+0x332/0x490
[  210.278665][ T8868]  should_fail_ex+0x3b0/0x4e0
[  210.283411][ T8868]  ? skb_clone+0x20c/0x390
[  210.287987][ T8868]  should_failslab+0x9/0x20
[  210.292537][ T8868]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  210.297966][ T8868]  skb_clone+0x20c/0x390
[  210.302785][ T8868]  __netlink_deliver_tap+0x3cc/0x7c0
[  210.308112][ T8868]  ? netlink_deliver_tap+0x2e/0x1b0
[  210.313422][ T8868]  netlink_deliver_tap+0x19d/0x1b0
[  210.318553][ T8868]  netlink_unicast+0x7be/0x990
[  210.323338][ T8868]  ? __pfx_netlink_unicast+0x10/0x10
[  210.328637][ T8868]  ? __virt_addr_valid+0x183/0x520
[  210.333935][ T8868]  ? __check_object_size+0x49c/0x900
[  210.339273][ T8868]  ? bpf_lsm_netlink_send+0x9/0x10
[  210.344511][ T8868]  netlink_sendmsg+0x8e4/0xcb0
[  210.349438][ T8868]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.354770][ T8868]  ? __import_iovec+0x536/0x820
[  210.359644][ T8868]  ? aa_sock_msg_perm+0x91/0x160
[  210.364618][ T8868]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  210.369922][ T8868]  ? security_socket_sendmsg+0x87/0xb0
[  210.375478][ T8868]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.380971][ T8868]  __sock_sendmsg+0x221/0x270
[  210.385682][ T8868]  ____sys_sendmsg+0x525/0x7d0
[  210.390683][ T8868]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.396036][ T8868]  __sys_sendmsg+0x2b0/0x3a0
[  210.400704][ T8868]  ? __pfx___sys_sendmsg+0x10/0x10
[  210.405842][ T8868]  ? vfs_write+0x7c4/0xc90
[  210.410431][ T8868]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  210.416812][ T8868]  ? do_syscall_64+0x100/0x230
[  210.421897][ T8868]  ? do_syscall_64+0xb6/0x230
[  210.426701][ T8868]  do_syscall_64+0xf3/0x230
[  210.431313][ T8868]  ? clear_bhb_loop+0x35/0x90
[  210.436011][ T8868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.442012][ T8868] RIP: 0033:0x7fc558575bd9
[  210.446451][ T8868] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.466096][ T8868] RSP: 002b:00007fc5592e8048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.474620][ T8868] RAX: ffffffffffffffda RBX: 00007fc558703f60 RCX: 00007fc558575bd9
[  210.482660][ T8868] RDX: 0000000000000000 RSI: 00000000200006c0 RDI: 0000000000000003
[  210.490763][ T8868] RBP: 00007fc5592e80a0 R08: 0000000000000000 R09: 0000000000000000
[  210.498771][ T8868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.506763][ T8868] R13: 000000000000000b R14: 00007fc558703f60 R15: 00007ffd70421498
[  210.515664][ T8868]  </TASK>
[  210.542201][ T8663] veth1_vlan: entered promiscuous mode
[  210.582009][ T8663] veth0_macvtap: entered promiscuous mode
[  210.594076][ T8663] veth1_macvtap: entered promiscuous mode
[  210.627572][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.651900][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.661907][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.682801][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.696569][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.718676][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.731804][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.750059][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.770235][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.792927][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.814467][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.834669][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.855152][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  210.881592][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  210.911128][ T8663] batman_adv: batadv0: Interface activated: batadv_slave_0
[  210.955738][ T8870] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  211.020791][ T8870] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[  211.325912][ T8875] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1197'.
[  211.514376][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.564385][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.584872][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.616394][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.646986][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.675841][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.696745][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.716617][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.740126][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.765987][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.786876][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.811350][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.833326][ T8663] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  211.856174][ T8663] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  211.879342][ T8892] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1202'.
[  211.883734][ T8663] batman_adv: batadv0: Interface activated: batadv_slave_1
[  211.914234][ T8663] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  211.929036][ T8663] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  211.979904][ T8663] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.009922][ T8663] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.043172][ T1097] bridge_slave_1: left allmulticast mode
[  212.057610][ T1097] bridge_slave_1: left promiscuous mode
[  212.074267][ T1097] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.108517][ T1097] bridge_slave_0: left allmulticast mode
[  212.125860][ T1097] bridge_slave_0: left promiscuous mode
[  212.142430][ T1097] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.089560][ T1097] team0: Port device bond0 removed
[  213.110814][ T1097] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  213.147635][ T1097] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  213.173815][ T1097] bond0 (unregistering): Released all slaves
[  213.227677][ T8879] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1197'.
[  213.398705][ T1097] IPVS: stopping backup sync thread 5809 ...
[  213.467357][ T8898] x_tables: duplicate underflow at hook 1
[  213.769003][ T8900] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1206'.
[  214.206867][ T5107] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  214.228814][ T5107] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  214.247443][ T5107] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  214.264281][ T5107] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  214.279789][ T5107] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  214.289345][ T5107] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  214.399882][ T8908] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  214.438755][ T8908] netdevsim netdevsim2 netdevsim0: left promiscuous mode
[  214.559894][ T8920] FAULT_INJECTION: forcing a failure.
[  214.559894][ T8920] name failslab, interval 1, probability 0, space 0, times 0
[  214.572679][ T8920] CPU: 0 PID: 8920 Comm: syz.3.1211 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  214.582876][ T8920] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  214.593019][ T8920] Call Trace:
[  214.596354][ T8920]  <TASK>
[  214.599328][ T8920]  dump_stack_lvl+0x241/0x360
[  214.604161][ T8920]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.609453][ T8920]  ? __pfx__printk+0x10/0x10
[  214.614228][ T8920]  should_fail_ex+0x3b0/0x4e0
[  214.618972][ T8920]  ? skb_clone+0x20c/0x390
[  214.623485][ T8920]  should_failslab+0x9/0x20
[  214.628144][ T8920]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  214.633579][ T8920]  skb_clone+0x20c/0x390
[  214.637872][ T8920]  ? dev_queue_xmit_nit+0x220/0xc10
[  214.643127][ T8920]  dev_queue_xmit_nit+0x419/0xc10
[  214.648224][ T8920]  ? dev_queue_xmit_nit+0x2b/0xc10
[  214.653481][ T8920]  ? validate_xmit_skb+0x9f9/0x1120
[  214.658751][ T8920]  dev_hard_start_xmit+0x15f/0x7e0
[  214.663921][ T8920]  ? __pfx_validate_xmit_skb+0x10/0x10
[  214.669973][ T8920]  __dev_queue_xmit+0x1b63/0x3e90
[  214.675144][ T8920]  ? kasan_save_track+0x51/0x80
[  214.680419][ T8920]  ? do_syscall_64+0xf3/0x230
[  214.685340][ T8920]  ? __dev_queue_xmit+0x2da/0x3e90
[  214.690527][ T8920]  ? __pfx___dev_queue_xmit+0x10/0x10
[  214.695981][ T8920]  ? __copy_skb_header+0x437/0x5b0
[  214.701239][ T8920]  ? __asan_memcpy+0x40/0x70
[  214.705989][ T8920]  ? skb_clone+0x240/0x390
[  214.710477][ T8920]  __netlink_deliver_tap+0x54d/0x7c0
[  214.715836][ T8920]  ? netlink_deliver_tap+0x2e/0x1b0
[  214.721091][ T8920]  netlink_deliver_tap+0x19d/0x1b0
[  214.726263][ T8920]  netlink_unicast+0x7be/0x990
[  214.731113][ T8920]  ? __pfx_netlink_unicast+0x10/0x10
[  214.736495][ T8920]  ? __virt_addr_valid+0x183/0x520
[  214.741761][ T8920]  ? __check_object_size+0x49c/0x900
[  214.747208][ T8920]  ? bpf_lsm_netlink_send+0x9/0x10
[  214.752382][ T8920]  netlink_sendmsg+0x8e4/0xcb0
[  214.757232][ T8920]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.762590][ T8920]  ? __import_iovec+0x536/0x820
[  214.767499][ T8920]  ? aa_sock_msg_perm+0x91/0x160
[  214.772593][ T8920]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  214.777931][ T8920]  ? security_socket_sendmsg+0x87/0xb0
[  214.783546][ T8920]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.788905][ T8920]  __sock_sendmsg+0x221/0x270
[  214.793650][ T8920]  ____sys_sendmsg+0x525/0x7d0
[  214.798488][ T8920]  ? __pfx_____sys_sendmsg+0x10/0x10
[  214.803865][ T8920]  __sys_sendmsg+0x2b0/0x3a0
[  214.808520][ T8920]  ? __pfx___sys_sendmsg+0x10/0x10
[  214.813684][ T8920]  ? vfs_write+0x7c4/0xc90
[  214.818310][ T8920]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  214.824699][ T8920]  ? do_syscall_64+0x100/0x230
[  214.829645][ T8920]  ? do_syscall_64+0xb6/0x230
[  214.834377][ T8920]  do_syscall_64+0xf3/0x230
[  214.839019][ T8920]  ? clear_bhb_loop+0x35/0x90
[  214.843761][ T8920]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.849711][ T8920] RIP: 0033:0x7fc558575bd9
[  214.854170][ T8920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.873942][ T8920] RSP: 002b:00007fc5592c7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.882415][ T8920] RAX: ffffffffffffffda RBX: 00007fc558704038 RCX: 00007fc558575bd9
[  214.890444][ T8920] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000007
[  214.898550][ T8920] RBP: 00007fc5592c70a0 R08: 0000000000000000 R09: 0000000000000000
[  214.906578][ T8920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.915137][ T8920] R13: 000000000000006e R14: 00007fc558704038 R15: 00007ffd70421498
[  214.923188][ T8920]  </TASK>
[  214.960589][ T1097] hsr_slave_0: left promiscuous mode
[  214.995379][ T1097] hsr_slave_1: left promiscuous mode
[  215.028602][ T1097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  215.036134][ T1097] batman_adv: batadv0: Removing interface: batadv_slave_0
[  215.057721][ T1097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  215.065415][ T1097] batman_adv: batadv0: Removing interface: batadv_slave_1
[  215.122704][ T1097] veth1_macvtap: left allmulticast mode
[  215.136843][ T1097] veth1_macvtap: left promiscuous mode
[  215.142474][ T1097] veth0_macvtap: left promiscuous mode
[  215.164375][ T1097] veth1_vlan: left promiscuous mode
[  215.176719][ T1097] veth0_vlan: left promiscuous mode
[  216.396754][ T5120] Bluetooth: hci4: command tx timeout
[  216.584503][ T1097] team0 (unregistering): Port device team_slave_1 removed
[  216.686018][ T1097] team0 (unregistering): Port device team_slave_0 removed
[  218.178431][ T7731] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.200250][ T7731] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  218.478815][ T7733] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  218.489005][ T5120] Bluetooth: hci4: command tx timeout
[  218.533602][ T8932] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1215'.
[  218.556761][ T7733] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.425461][ T8910] chnl_net:caif_netlink_parms(): no params data found
[  219.429067][ T8963] FAULT_INJECTION: forcing a failure.
[  219.429067][ T8963] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  219.451933][ T8960] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1220'.
[  219.481247][ T8963] CPU: 1 PID: 8963 Comm: syz.3.1225 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  219.491485][ T8963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  219.501588][ T8963] Call Trace:
[  219.504931][ T8963]  <TASK>
[  219.507916][ T8963]  dump_stack_lvl+0x241/0x360
[  219.512649][ T8963]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.517904][ T8963]  ? __pfx__printk+0x10/0x10
[  219.522638][ T8963]  ? __pfx_lock_release+0x10/0x10
[  219.527713][ T8963]  ? vfs_write+0x7c4/0xc90
[  219.532268][ T8963]  should_fail_ex+0x3b0/0x4e0
[  219.537107][ T8963]  _copy_from_user+0x2f/0xe0
[  219.541789][ T8963]  __sys_bpf+0x1a4/0x810
[  219.546225][ T8963]  ? __pfx___sys_bpf+0x10/0x10
[  219.551159][ T8963]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  219.557370][ T8963]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  219.563840][ T8963]  ? do_syscall_64+0x100/0x230
[  219.568661][ T8963]  __x64_sys_bpf+0x7c/0x90
[  219.573115][ T8963]  do_syscall_64+0xf3/0x230
[  219.577661][ T8963]  ? clear_bhb_loop+0x35/0x90
[  219.582354][ T8963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.588280][ T8963] RIP: 0033:0x7fc558575bd9
[  219.592710][ T8963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.612353][ T8963] RSP: 002b:00007fc5592e8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  219.620919][ T8963] RAX: ffffffffffffffda RBX: 00007fc558703f60 RCX: 00007fc558575bd9
[  219.629023][ T8963] RDX: 0000000000000057 RSI: 0000000020000240 RDI: 000000000000000a
[  219.637014][ T8963] RBP: 00007fc5592e80a0 R08: 0000000000000000 R09: 0000000000000000
[  219.645001][ T8963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.653040][ T8963] R13: 000000000000000b R14: 00007fc558703f60 R15: 00007ffd70421498
[  219.661053][ T8963]  </TASK>
[  220.088387][ T8982] FAULT_INJECTION: forcing a failure.
[  220.088387][ T8982] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  220.144852][ T8910] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.158741][ T8982] CPU: 0 PID: 8982 Comm: syz.2.1229 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  220.163341][ T8910] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.169061][ T8982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  220.169083][ T8982] Call Trace:
[  220.169094][ T8982]  <TASK>
[  220.169104][ T8982]  dump_stack_lvl+0x241/0x360
[  220.169139][ T8982]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.169164][ T8982]  ? __pfx__printk+0x10/0x10
[  220.169189][ T8982]  ? __pfx_lock_release+0x10/0x10
[  220.169212][ T8982]  ? tomoyo_path_number_perm+0x71a/0x880
[  220.169251][ T8982]  should_fail_ex+0x3b0/0x4e0
[  220.169291][ T8982]  _copy_from_user+0x2f/0xe0
[  220.169320][ T8982]  wext_handle_ioctl+0xf2/0x270
[  220.169354][ T8982]  ? __pfx_wext_handle_ioctl+0x10/0x10
[  220.169401][ T8982]  sock_ioctl+0x17f/0x8e0
[  220.169429][ T8982]  ? __pfx_sock_ioctl+0x10/0x10
[  220.169451][ T8982]  ? __fget_files+0x29/0x470
[  220.169483][ T8982]  ? __fget_files+0x3f6/0x470
[  220.169512][ T8982]  ? __fget_files+0x29/0x470
[  220.169548][ T8982]  ? bpf_lsm_file_ioctl+0x9/0x10
[  220.169573][ T8982]  ? security_file_ioctl+0x87/0xb0
[  220.169603][ T8982]  ? __pfx_sock_ioctl+0x10/0x10
[  220.169627][ T8982]  __se_sys_ioctl+0xfc/0x170
[  220.169658][ T8982]  do_syscall_64+0xf3/0x230
[  220.169683][ T8982]  ? clear_bhb_loop+0x35/0x90
[  220.169713][ T8982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  220.169739][ T8982] RIP: 0033:0x7f30b6b75bd9
[  220.169761][ T8982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  220.169782][ T8982] RSP: 002b:00007f30b79d1048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  220.169810][ T8982] RAX: ffffffffffffffda RBX: 00007f30b6d03f60 RCX: 00007f30b6b75bd9
[  220.169838][ T8982] RDX: 0000000020000000 RSI: 0000000000008b34 RDI: 0000000000000003
[  220.169853][ T8982] RBP: 00007f30b79d10a0 R08: 0000000000000000 R09: 0000000000000000
[  220.169869][ T8982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  220.169885][ T8982] R13: 000000000000000b R14: 00007f30b6d03f60 R15: 00007ffd9385a718
[  220.169922][ T8982]  </TASK>
[  220.521300][ T8910] bridge_slave_0: entered allmulticast mode
[  220.557028][ T5120] Bluetooth: hci4: command tx timeout
[  220.580145][ T8910] bridge_slave_0: entered promiscuous mode
[  220.582447][ T8990] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1232'.
[  220.649093][ T8910] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.684937][ T8910] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.693218][ T8986] x_tables: duplicate underflow at hook 2
[  220.702826][ T8910] bridge_slave_1: entered allmulticast mode
[  220.746432][ T8910] bridge_slave_1: entered promiscuous mode
[  220.837523][ T9000] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1233'.
[  221.034262][ T9007] netlink: 'syz.2.1236': attribute type 1 has an invalid length.
[  221.035141][ T8995] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1233'.
[  221.078941][ T8910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  221.080123][ T9007] netlink: 112860 bytes leftover after parsing attributes in process `syz.2.1236'.
[  221.098341][ T9007] netlink: 'syz.2.1236': attribute type 1 has an invalid length.
[  221.207119][ T8910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  221.394854][ T8910] team0: Port device team_slave_0 added
[  221.439089][ T8910] team0: Port device team_slave_1 added
[  221.447107][ T9018] FAULT_INJECTION: forcing a failure.
[  221.447107][ T9018] name failslab, interval 1, probability 0, space 0, times 0
[  221.516101][ T9018] CPU: 1 PID: 9018 Comm: syz.4.1241 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  221.526425][ T9018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  221.536614][ T9018] Call Trace:
[  221.539948][ T9018]  <TASK>
[  221.542921][ T9018]  dump_stack_lvl+0x241/0x360
[  221.547658][ T9018]  ? __pfx_dump_stack_lvl+0x10/0x10
[  221.552909][ T9018]  ? __pfx__printk+0x10/0x10
[  221.557554][ T9018]  should_fail_ex+0x3b0/0x4e0
[  221.562263][ T9018]  ? __alloc_skb+0x1c3/0x440
[  221.567317][ T9018]  should_failslab+0x9/0x20
[  221.571895][ T9018]  kmem_cache_alloc_node_noprof+0x71/0x320
[  221.577877][ T9018]  __alloc_skb+0x1c3/0x440
[  221.582354][ T9018]  ? __pfx___might_resched+0x10/0x10
[  221.587671][ T9018]  ? __pfx___alloc_skb+0x10/0x10
[  221.592638][ T9018]  ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20
[  221.599006][ T9018]  ? security_socket_getpeersec_dgram+0x88/0xb0
[  221.605317][ T9018]  netlink_sendmsg+0x638/0xcb0
[  221.610133][ T9018]  ? __pfx_netlink_sendmsg+0x10/0x10
[  221.615558][ T9018]  ? __import_iovec+0x536/0x820
[  221.620427][ T9018]  ? aa_sock_msg_perm+0x91/0x160
[  221.625423][ T9018]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  221.630748][ T9018]  ? security_socket_sendmsg+0x87/0xb0
[  221.636326][ T9018]  ? __pfx_netlink_sendmsg+0x10/0x10
[  221.642070][ T9018]  __sock_sendmsg+0x221/0x270
[  221.646789][ T9018]  ____sys_sendmsg+0x525/0x7d0
[  221.651615][ T9018]  ? __pfx_____sys_sendmsg+0x10/0x10
[  221.656990][ T9018]  __sys_sendmsg+0x2b0/0x3a0
[  221.661629][ T9018]  ? __pfx___sys_sendmsg+0x10/0x10
[  221.666766][ T9018]  ? vfs_write+0x7c4/0xc90
[  221.671234][ T9018]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  221.677599][ T9018]  ? do_syscall_64+0x100/0x230
[  221.682390][ T9018]  ? do_syscall_64+0xb6/0x230
[  221.687093][ T9018]  do_syscall_64+0xf3/0x230
[  221.691792][ T9018]  ? clear_bhb_loop+0x35/0x90
[  221.696581][ T9018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.702609][ T9018] RIP: 0033:0x7fdc31f75bd9
[  221.707041][ T9018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.726696][ T9018] RSP: 002b:00007fdc32e19048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  221.735167][ T9018] RAX: ffffffffffffffda RBX: 00007fdc32103f60 RCX: 00007fdc31f75bd9
[  221.743171][ T9018] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003
[  221.751169][ T9018] RBP: 00007fdc32e190a0 R08: 0000000000000000 R09: 0000000000000000
[  221.759163][ T9018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  221.767250][ T9018] R13: 000000000000000b R14: 00007fdc32103f60 R15: 00007ffe7b717578
[  221.775252][ T9018]  </TASK>
[  221.835569][ T8910] batman_adv: batadv0: Adding interface: batadv_slave_0
[  221.866931][ T8910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  221.986669][ T8910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.040252][ T8910] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.057046][ T8910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.092657][ T8910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.502311][ T8910] hsr_slave_0: entered promiscuous mode
[  222.519415][ T8910] hsr_slave_1: entered promiscuous mode
[  222.637975][ T5120] Bluetooth: hci4: command tx timeout
[  222.748457][ T9045] netlink: 'syz.3.1251': attribute type 1 has an invalid length.
[  222.773083][ T9045] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.1251'.
[  222.794095][ T9045] netlink: 'syz.3.1251': attribute type 1 has an invalid length.
[  223.149293][ T9059] No such timeout policy "syz0"
[  223.151420][ T8910] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  223.185706][ T8910] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.338864][ T9070] FAULT_INJECTION: forcing a failure.
[  223.338864][ T9070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.414111][ T9070] CPU: 1 PID: 9070 Comm: syz.3.1260 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  223.424259][ T9070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  223.434355][ T9070] Call Trace:
[  223.437695][ T9070]  <TASK>
[  223.440656][ T9070]  dump_stack_lvl+0x241/0x360
[  223.445471][ T9070]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.450722][ T9070]  ? __pfx__printk+0x10/0x10
[  223.455419][ T9070]  ? __pfx_lock_release+0x10/0x10
[  223.460562][ T9070]  should_fail_ex+0x3b0/0x4e0
[  223.465265][ T9070]  _copy_from_user+0x2f/0xe0
[  223.469974][ T9070]  copy_msghdr_from_user+0xae/0x680
[  223.475196][ T9070]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  223.481147][ T9070]  do_recvmmsg+0x40f/0xae0
[  223.485614][ T9070]  ? __pfx_lock_release+0x10/0x10
[  223.490660][ T9070]  ? __pfx_do_recvmmsg+0x10/0x10
[  223.495678][ T9070]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  223.501593][ T9070]  ? ksys_write+0x23e/0x2c0
[  223.506113][ T9070]  ? __pfx_lock_release+0x10/0x10
[  223.511341][ T9070]  ? vfs_write+0x7c4/0xc90
[  223.515806][ T9070]  ? __mutex_unlock_slowpath+0x21d/0x750
[  223.521531][ T9070]  ? __fget_files+0x3f6/0x470
[  223.526335][ T9070]  __x64_sys_recvmmsg+0x199/0x250
[  223.531395][ T9070]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  223.536973][ T9070]  ? do_syscall_64+0x100/0x230
[  223.541851][ T9070]  ? do_syscall_64+0xb6/0x230
[  223.546556][ T9070]  do_syscall_64+0xf3/0x230
[  223.551083][ T9070]  ? clear_bhb_loop+0x35/0x90
[  223.555782][ T9070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.561689][ T9070] RIP: 0033:0x7fc558575bd9
[  223.566115][ T9070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.585740][ T9070] RSP: 002b:00007fc5592e8048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  223.594279][ T9070] RAX: ffffffffffffffda RBX: 00007fc558703f60 RCX: 00007fc558575bd9
[  223.602282][ T9070] RDX: 0000000000000001 RSI: 0000000020001e80 RDI: 0000000000000004
[  223.610276][ T9070] RBP: 00007fc5592e80a0 R08: 0000000000000000 R09: 0000000000000000
[  223.618348][ T9070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.626415][ T9070] R13: 000000000000000b R14: 00007fc558703f60 R15: 00007ffd70421498
[  223.634433][ T9070]  </TASK>
[  223.649728][ T9072] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1260'.
[  223.671948][ T8910] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  223.731901][ T8910] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.933103][ T8910] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  223.947656][ T8910] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.040957][ T9077] bridge6: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  224.156208][ T8910] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  224.205362][ T8910] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.257549][ T7729] bridge_slave_1: left allmulticast mode
[  224.273915][ T7729] bridge_slave_1: left promiscuous mode
[  224.287247][ T7729] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.329246][ T7729] bridge_slave_0: left allmulticast mode
[  224.355316][ T7729] bridge_slave_0: left promiscuous mode
[  224.358166][ T9096] netlink: 'syz.3.1265': attribute type 1 has an invalid length.
[  224.377612][ T7729] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.395772][ T9096] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.1265'.
[  224.443706][ T9096] netlink: 'syz.3.1265': attribute type 1 has an invalid length.
[  224.792941][ T9115] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1270'.
[  225.035200][ T7729] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.050203][ T7729] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  225.063041][ T7729] bond0 (unregistering): Released all slaves
[  225.080622][ T9097] FAULT_INJECTION: forcing a failure.
[  225.080622][ T9097] name failslab, interval 1, probability 0, space 0, times 0
[  225.097036][ T9097] CPU: 1 PID: 9097 Comm: syz.2.1266 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  225.107185][ T9097] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  225.117459][ T9097] Call Trace:
[  225.120789][ T9097]  <TASK>
[  225.123768][ T9097]  dump_stack_lvl+0x241/0x360
[  225.128754][ T9097]  ? __pfx_dump_stack_lvl+0x10/0x10
[  225.134019][ T9097]  ? __pfx__printk+0x10/0x10
[  225.138665][ T9097]  ? tcp_established_options+0x3c1/0x800
[  225.144359][ T9097]  should_fail_ex+0x3b0/0x4e0
[  225.149113][ T9097]  ? __alloc_skb+0x1c3/0x440
[  225.153782][ T9097]  should_failslab+0x9/0x20
[  225.158418][ T9097]  kmem_cache_alloc_node_noprof+0x71/0x320
[  225.164327][ T9097]  ? tcp_current_mss+0x29b/0x4d0
[  225.169382][ T9097]  __alloc_skb+0x1c3/0x440
[  225.173849][ T9097]  ? __pfx___alloc_skb+0x10/0x10
[  225.178997][ T9097]  ? __lock_acquire+0x1346/0x1fd0
[  225.184072][ T9097]  tcp_stream_alloc_skb+0x3d/0x310
[  225.189236][ T9097]  tcp_sendmsg_locked+0xd6a/0x4e10
[  225.194404][ T9097]  ? mark_lock+0x9a/0x350
[  225.198771][ T9097]  ? __lock_acquire+0x1346/0x1fd0
[  225.203832][ T9097]  ? mark_lock+0x9a/0x350
[  225.208197][ T9097]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  225.213758][ T9097]  ? __local_bh_enable_ip+0x168/0x200
[  225.219173][ T9097]  ? tcp_sendmsg+0x22/0x50
[  225.223642][ T9097]  ? do_raw_spin_unlock+0x13c/0x8b0
[  225.228910][ T9097]  tcp_sendmsg+0x30/0x50
[  225.233210][ T9097]  smc_sendmsg+0x258/0x530
[  225.237660][ T9097]  ? __pfx_smc_sendmsg+0x10/0x10
[  225.242616][ T9097]  __sock_sendmsg+0x221/0x270
[  225.247322][ T9097]  sock_write_iter+0x2dd/0x400
[  225.252112][ T9097]  ? __pfx_sock_write_iter+0x10/0x10
[  225.257626][ T9097]  do_iter_readv_writev+0x5a4/0x800
[  225.262851][ T9097]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  225.268592][ T9097]  ? bpf_lsm_file_permission+0x9/0x10
[  225.273987][ T9097]  ? security_file_permission+0x7f/0xa0
[  225.279558][ T9097]  ? rw_verify_area+0x1d2/0x6b0
[  225.284534][ T9097]  vfs_writev+0x37c/0xbb0
[  225.288903][ T9097]  ? __pfx_lock_acquire+0x10/0x10
[  225.294034][ T9097]  ? __pfx_vfs_writev+0x10/0x10
[  225.298942][ T9097]  ? vfs_write+0x7c4/0xc90
[  225.303393][ T9097]  ? __fget_files+0x29/0x470
[  225.308019][ T9097]  do_writev+0x1b1/0x350
[  225.312302][ T9097]  ? __pfx_do_writev+0x10/0x10
[  225.317103][ T9097]  ? do_syscall_64+0x100/0x230
[  225.321934][ T9097]  ? do_syscall_64+0xb6/0x230
[  225.326724][ T9097]  do_syscall_64+0xf3/0x230
[  225.331545][ T9097]  ? clear_bhb_loop+0x35/0x90
[  225.336247][ T9097]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.342596][ T9097] RIP: 0033:0x7f30b6b75bd9
[  225.347394][ T9097] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.367136][ T9097] RSP: 002b:00007f30b79b0048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  225.375575][ T9097] RAX: ffffffffffffffda RBX: 00007f30b6d04038 RCX: 00007f30b6b75bd9
[  225.383682][ T9097] RDX: 0000000000000003 RSI: 0000000020000400 RDI: 0000000000000003
[  225.391717][ T9097] RBP: 00007f30b79b00a0 R08: 0000000000000000 R09: 0000000000000000
[  225.399795][ T9097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.408054][ T9097] R13: 000000000000006e R14: 00007f30b6d04038 R15: 00007ffd9385a718
[  225.416065][ T9097]  </TASK>
[  225.825464][ T9124] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1274'.
[  226.022871][ T5160] IPVS: starting estimator thread 0...
[  226.063657][ T9137] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  226.100567][ T8910] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  226.136792][ T9139] IPVS: using max 17 ests per chain, 40800 per kthread
[  226.158882][ T8910] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  226.306329][ T7729] hsr_slave_0: left promiscuous mode
[  226.345835][ T7729] hsr_slave_1: left promiscuous mode
[  226.373010][ T7729] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  226.403349][ T7729] batman_adv: batadv0: Removing interface: batadv_slave_0
[  226.428157][ T7729] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.438351][ T7729] batman_adv: batadv0: Removing interface: batadv_slave_1
[  226.468585][ T7729] veth1_macvtap: left promiscuous mode
[  226.474304][ T7729] veth0_macvtap: left promiscuous mode
[  226.480712][ T7729] veth1_vlan: left promiscuous mode
[  226.486103][ T7729] veth0_vlan: left promiscuous mode
[  227.219633][ T7729] team0 (unregistering): Port device team_slave_1 removed
[  227.274427][ T7729] team0 (unregistering): Port device team_slave_0 removed
[  227.634251][ T7729] team0 (unregistering): Port device dummy0 removed
[  227.861365][ T8910] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  227.872368][ T8910] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  227.966909][ T9157] netlink: 'syz.1.1284': attribute type 1 has an invalid length.
[  227.975201][ T9157] netlink: 112860 bytes leftover after parsing attributes in process `syz.1.1284'.
[  227.992305][ T9157] netlink: 'syz.1.1284': attribute type 1 has an invalid length.
[  228.229724][ T9166] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1285'.
[  228.503698][ T8910] 8021q: adding VLAN 0 to HW filter on device bond0
[  228.615474][ T8910] 8021q: adding VLAN 0 to HW filter on device team0
[  228.633914][ T5156] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.641270][ T5156] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.720669][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.727938][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.761017][ T7731] bridge_slave_1: left allmulticast mode
[  228.786975][ T7731] bridge_slave_1: left promiscuous mode
[  228.793212][ T7731] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.813581][ T7731] bridge_slave_0: left allmulticast mode
[  228.822863][ T7731] bridge_slave_0: left promiscuous mode
[  228.832945][ T7731] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.864336][ T7731] veth1_to_bond: left allmulticast mode
[  228.881033][ T7731] veth1_to_bond: left promiscuous mode
[  228.893687][ T7731] bridge1: port 1(veth1_to_bond) entered disabled state
[  229.153617][ T7731] bridge0: left promiscuous mode
[  229.488583][ T7731] dvmrp0 (unregistering): left allmulticast mode
[  230.004402][ T7731] team0: Port device bond0 removed
[  230.013466][ T7731] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  230.034745][ T7731] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  230.048138][ T7731] bond0 (unregistering): Released all slaves
[  230.069206][ T9204] netlink: 'syz.3.1296': attribute type 1 has an invalid length.
[  230.078962][ T9204] netlink: 112860 bytes leftover after parsing attributes in process `syz.3.1296'.
[  230.093838][ T9204] netlink: 'syz.3.1296': attribute type 1 has an invalid length.
[  230.138118][ T9193] netlink: 'syz.1.1295': attribute type 4 has an invalid length.
[  230.194391][ T7731] tipc: Left network mode
[  230.324283][ T8910] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  230.597822][ T9218] FAULT_INJECTION: forcing a failure.
[  230.597822][ T9218] name failslab, interval 1, probability 0, space 0, times 0
[  230.611312][ T9218] CPU: 1 PID: 9218 Comm: syz.1.1300 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  230.621524][ T9218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  230.631628][ T9218] Call Trace:
[  230.634952][ T9218]  <TASK>
[  230.637934][ T9218]  dump_stack_lvl+0x241/0x360
[  230.642663][ T9218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  230.647997][ T9218]  ? __pfx__printk+0x10/0x10
[  230.652653][ T9218]  should_fail_ex+0x3b0/0x4e0
[  230.657387][ T9218]  ? __alloc_skb+0x1c3/0x440
[  230.662043][ T9218]  should_failslab+0x9/0x20
[  230.666603][ T9218]  kmem_cache_alloc_node_noprof+0x71/0x320
[  230.672484][ T9218]  __alloc_skb+0x1c3/0x440
[  230.677055][ T9218]  ? __pfx___alloc_skb+0x10/0x10
[  230.682064][ T9218]  ? skb_push+0x97/0x100
[  230.686371][ T9218]  create_monitor_event+0x1ae/0x840
[  230.691836][ T9218]  ? send_monitor_replay+0x451/0x5e0
[  230.697265][ T9218]  send_monitor_replay+0x7a/0x5e0
[  230.702357][ T9218]  hci_sock_bind+0x860/0x1150
[  230.707091][ T9218]  ? __pfx_aa_sk_perm+0x10/0x10
[  230.711984][ T9218]  ? __might_fault+0xaa/0x120
[  230.716697][ T9218]  ? __pfx_hci_sock_bind+0x10/0x10
[  230.721880][ T9218]  ? bpf_lsm_socket_bind+0x9/0x10
[  230.726944][ T9218]  ? security_socket_bind+0x87/0xb0
[  230.732355][ T9218]  __sys_bind+0x23d/0x2f0
[  230.736710][ T9218]  ? __pfx___sys_bind+0x10/0x10
[  230.741590][ T9218]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  230.748120][ T9218]  ? do_syscall_64+0x100/0x230
[  230.752947][ T9218]  __x64_sys_bind+0x7a/0x90
[  230.757497][ T9218]  do_syscall_64+0xf3/0x230
[  230.762017][ T9218]  ? clear_bhb_loop+0x35/0x90
[  230.766717][ T9218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  230.772634][ T9218] RIP: 0033:0x7fa0ab975bd9
[  230.777098][ T9218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  230.796855][ T9218] RSP: 002b:00007fa0ac675048 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  230.805290][ T9218] RAX: ffffffffffffffda RBX: 00007fa0abb03f60 RCX: 00007fa0ab975bd9
[  230.813279][ T9218] RDX: 0000000000000006 RSI: 0000000020000100 RDI: 0000000000000004
[  230.821306][ T9218] RBP: 00007fa0ac6750a0 R08: 0000000000000000 R09: 0000000000000000
[  230.829294][ T9218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  230.837362][ T9218] R13: 000000000000000b R14: 00007fa0abb03f60 R15: 00007ffcdf97f068
[  230.845418][ T9218]  </TASK>
[  231.139611][ T7731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  231.156692][ T7731] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.182662][ T7731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  231.196234][ T7731] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.244001][ T7731] veth1_macvtap: left allmulticast mode
[  231.250131][ T7731] veth1_macvtap: left promiscuous mode
[  231.255729][ T7731] veth0_macvtap: left promiscuous mode
[  231.263128][ T7731] veth1_vlan: left promiscuous mode
[  231.268670][ T7731] veth0_vlan: left promiscuous mode
[  231.294157][ T9232] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1303'.
[  232.010412][ T7731] team0 (unregistering): Port device team_slave_1 removed
[  232.070666][ T7731] team0 (unregistering): Port device team_slave_0 removed
[  232.749865][ T8910] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.954290][ T8910] veth0_vlan: entered promiscuous mode
[  233.120447][ T8910] veth1_vlan: entered promiscuous mode
[  233.245212][ T9258] netlink: 'syz.1.1309': attribute type 1 has an invalid length.
[  233.305717][ T8910] veth0_macvtap: entered promiscuous mode
[  233.420407][ T8910] veth1_macvtap: entered promiscuous mode
[  233.498999][ T9269] netlink: 'syz.2.1315': attribute type 1 has an invalid length.
[  233.520007][ T9269] netlink: 9328 bytes leftover after parsing attributes in process `syz.2.1315'.
[  233.672233][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.695752][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.708801][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.723919][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.735184][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.749607][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.763088][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.776414][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.786901][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  233.798556][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.811854][ T8910] batman_adv: batadv0: Interface activated: batadv_slave_0
[  233.846324][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.859459][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.870535][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.887460][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.900300][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.927667][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.947717][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.966898][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  233.980232][ T8910] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  233.993896][ T8910] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  234.020006][ T8910] batman_adv: batadv0: Interface activated: batadv_slave_1
[  234.045665][ T8910] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  234.066778][ T8910] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  234.088292][ T8910] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  234.113331][ T8910] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  234.353394][ T9290] netlink: 'syz.4.1320': attribute type 1 has an invalid length.
[  234.671547][ T7739] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  234.695865][ T7739] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  234.770858][ T7729] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  234.794141][ T7729] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  234.983618][ T9309] netlink: 'syz.3.1326': attribute type 4 has an invalid length.
[  235.411231][ T9331] netlink: 'syz.3.1331': attribute type 1 has an invalid length.
[  235.749551][ T7731] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.922481][ T7731] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.960701][ T9343] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1336'.
[  236.143279][ T7731] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.317560][ T5107] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  236.343765][ T5107] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  236.357360][ T5107] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  236.366381][ T7731] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.378077][ T9354] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1338'.
[  236.404090][ T5107] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  236.417091][ T5107] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  236.427776][ T5107] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  236.632969][ T9365] netlink: 'syz.4.1343': attribute type 1 has an invalid length.
[  236.837732][ T9370] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1347'.
[  236.901759][ T7731] bridge_slave_0: left allmulticast mode
[  236.929177][ T7731] bridge_slave_0: left promiscuous mode
[  236.952903][ T7731] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.975631][ T9376] dccp_invalid_packet: P.Data Offset(172) too large
[  237.972071][ T7731] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  237.989534][ T7731] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  238.003442][ T7731] bond0 (unregistering): Released all slaves
[  238.477288][ T5107] Bluetooth: hci0: command tx timeout
[  238.486243][ T9425] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1353'.
[  238.525003][ T9429] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1354'.
[  238.704879][ T9440] FAULT_INJECTION: forcing a failure.
[  238.704879][ T9440] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  238.720374][ T9440] CPU: 0 PID: 9440 Comm: syz.1.1357 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  238.730525][ T9440] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  238.741440][ T9440] Call Trace:
[  238.744780][ T9440]  <TASK>
[  238.747933][ T9440]  dump_stack_lvl+0x241/0x360
[  238.752788][ T9440]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.758046][ T9440]  ? __pfx__printk+0x10/0x10
[  238.762715][ T9440]  should_fail_ex+0x3b0/0x4e0
[  238.767474][ T9440]  prepare_alloc_pages+0x1da/0x5d0
[  238.772683][ T9440]  __alloc_pages_noprof+0x166/0x6c0
[  238.777953][ T9440]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  238.783772][ T9440]  ? __pfx_validate_chain+0x10/0x10
[  238.789089][ T9440]  alloc_pages_mpol_noprof+0x3e8/0x680
[  238.794711][ T9440]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  238.800777][ T9440]  vma_alloc_folio_noprof+0xf3/0x1f0
[  238.806264][ T9440]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  238.812334][ T9440]  ? __lock_acquire+0x1346/0x1fd0
[  238.817422][ T9440]  folio_prealloc+0x31/0x170
[  238.822064][ T9440]  handle_pte_fault+0x257b/0x7090
[  238.827207][ T9440]  ? __pfx_lock_acquire+0x10/0x10
[  238.832307][ T9440]  ? __pfx_handle_pte_fault+0x10/0x10
[  238.837744][ T9440]  ? do_raw_spin_lock+0x14f/0x370
[  238.842962][ T9440]  ? follow_page_pte+0x292/0x1d90
[  238.848050][ T9440]  ? follow_page_pte+0x859/0x1d90
[  238.853132][ T9440]  ? __pfx_lock_release+0x10/0x10
[  238.858306][ T9440]  ? do_raw_spin_unlock+0x13c/0x8b0
[  238.863580][ T9440]  handle_mm_fault+0x10df/0x1ba0
[  238.868618][ T9440]  ? __pfx_handle_mm_fault+0x10/0x10
[  238.874102][ T9440]  ? __pfx_find_vma+0x10/0x10
[  238.878828][ T9440]  ? vma_is_secretmem+0xd/0x50
[  238.883637][ T9440]  ? check_vma_flags+0x531/0x5a0
[  238.888663][ T9440]  __get_user_pages+0x6ef/0x1590
[  238.893693][ T9440]  ? __pfx___get_user_pages+0x10/0x10
[  238.899149][ T9440]  __gup_longterm_locked+0x1ff6/0x2a80
[  238.904677][ T9440]  ? __pfx_lock_acquire+0x10/0x10
[  238.909781][ T9440]  ? __pfx___gup_longterm_locked+0x10/0x10
[  238.915666][ T9440]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  238.921708][ T9440]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  238.928083][ T9440]  ? sanity_check_pinned_pages+0x12c2/0x13c0
[  238.934255][ T9440]  ? gup_fast_fallback+0x220d/0x2b40
[  238.939587][ T9440]  gup_fast_fallback+0x2732/0x2b40
[  238.944782][ T9440]  ? __pfx_gup_fast_fallback+0x10/0x10
[  238.950295][ T9440]  ? __sys_getsockopt+0x271/0x330
[  238.955459][ T9440]  ? __x64_sys_getsockopt+0xb5/0xd0
[  238.960714][ T9440]  ? do_syscall_64+0xf3/0x230
[  238.965467][ T9440]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.971748][ T9440]  ? is_valid_gup_args+0x124/0x200
[  238.977007][ T9440]  pin_user_pages_fast+0xcc/0x160
[  238.982091][ T9440]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  238.987775][ T9440]  ? rds_info_getsockopt+0x20c/0x600
[  238.993126][ T9440]  ? rds_info_getsockopt+0x20c/0x600
[  238.998477][ T9440]  ? __kmalloc_noprof+0x217/0x400
[  239.003573][ T9440]  rds_info_getsockopt+0x22e/0x600
[  239.008746][ T9440]  ? __might_fault+0xaa/0x120
[  239.013485][ T9440]  ? __pfx_lock_release+0x10/0x10
[  239.018575][ T9440]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  239.024288][ T9440]  ? __might_fault+0xc6/0x120
[  239.029220][ T9440]  ? rds_getsockopt+0x177/0x530
[  239.034133][ T9440]  ? __pfx_rds_getsockopt+0x10/0x10
[  239.039438][ T9440]  do_sock_getsockopt+0x373/0x850
[  239.040834][ T9350] chnl_net:caif_netlink_parms(): no params data found
[  239.044860][ T9440]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  239.044999][ T9440]  ? __fget_files+0x3f6/0x470
[  239.045046][ T9440]  __sys_getsockopt+0x271/0x330
[  239.045086][ T9440]  ? __pfx___sys_getsockopt+0x10/0x10
[  239.045119][ T9440]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  239.045149][ T9440]  ? do_syscall_64+0x100/0x230
[  239.045178][ T9440]  __x64_sys_getsockopt+0xb5/0xd0
[  239.045222][ T9440]  do_syscall_64+0xf3/0x230
[  239.093427][ T9440]  ? clear_bhb_loop+0x35/0x90
[  239.098280][ T9440]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.104274][ T9440] RIP: 0033:0x7fa0ab975bd9
[  239.108831][ T9440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.128663][ T9440] RSP: 002b:00007fa0ac675048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  239.137231][ T9440] RAX: ffffffffffffffda RBX: 00007fa0abb03f60 RCX: 00007fa0ab975bd9
[  239.145461][ T9440] RDX: 000000000000271c RSI: 0000200000000114 RDI: 0000000000000003
[  239.153510][ T9440] RBP: 00007fa0ac6750a0 R08: 0000000020000040 R09: 0000000000000000
[  239.161622][ T9440] R10: 0000000020019580 R11: 0000000000000246 R12: 0000000000000001
[  239.169733][ T9440] R13: 000000000000000b R14: 00007fa0abb03f60 R15: 00007ffcdf97f068
[  239.177773][ T9440]  </TASK>
[  239.317670][ T9452] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1358'.
[  239.400762][ T7731] hsr_slave_0: left promiscuous mode
[  239.459295][ T7731] hsr_slave_1: left promiscuous mode
[  239.486660][ T7731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  239.494193][ T7731] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.527930][ T7731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  239.535479][ T7731] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.592413][ T7731] veth1_macvtap: left promiscuous mode
[  239.607041][ T7731] veth0_macvtap: left promiscuous mode
[  239.612997][ T7731] veth1_vlan: left promiscuous mode
[  239.619082][ T7731] veth0_vlan: left promiscuous mode
[  240.321149][ T7731] team0 (unregistering): Port device team_slave_1 removed
[  240.387974][ T7731] team0 (unregistering): Port device team_slave_0 removed
[  240.557736][ T5107] Bluetooth: hci0: command tx timeout
[  241.003394][ T9492] netlink: 'syz.4.1364': attribute type 11 has an invalid length.
[  241.030139][ T9492] netlink: 'syz.4.1364': attribute type 11 has an invalid length.
[  241.162486][ T9350] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.166333][ T9499] FAULT_INJECTION: forcing a failure.
[  241.166333][ T9499] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  241.175007][ T9350] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.215627][ T9499] CPU: 0 PID: 9499 Comm: syz.1.1366 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  241.225774][ T9499] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  241.235882][ T9499] Call Trace:
[  241.239203][ T9499]  <TASK>
[  241.242175][ T9499]  dump_stack_lvl+0x241/0x360
[  241.246911][ T9499]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.247142][ T9350] bridge_slave_0: entered allmulticast mode
[  241.252147][ T9499]  ? __pfx__printk+0x10/0x10
[  241.252188][ T9499]  should_fail_ex+0x3b0/0x4e0
[  241.260287][ T9350] bridge_slave_0: entered promiscuous mode
[  241.262850][ T9499]  _copy_to_user+0x2f/0xb0
[  241.262888][ T9499]  copy_to_sockptr+0x65/0xa0
[  241.282450][ T9499]  do_tcp_getsockopt+0x26a3/0x3570
[  241.287702][ T9499]  ? __lock_acquire+0x1346/0x1fd0
[  241.292873][ T9499]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  241.298395][ T9499]  ? aa_sock_opt_perm+0x20/0x120
[  241.303394][ T9499]  ? mark_lock+0x9a/0x350
[  241.304918][ T9350] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.307752][ T9499]  ? __pfx_validate_chain+0x10/0x10
[  241.307787][ T9499]  ? __lock_acquire+0x1346/0x1fd0
[  241.307818][ T9499]  ? aa_label_sk_perm+0x4f0/0x6d0
[  241.315237][ T9350] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.320052][ T9499]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  241.320109][ T9499]  ? get_pid_task+0x23/0x1f0
[  241.320142][ T9499]  ? __pfx___might_resched+0x10/0x10
[  241.320187][ T9499]  ? aa_sk_perm+0x967/0xab0
[  241.320228][ T9499]  ? aa_sock_opt_perm+0x20/0x120
[  241.320265][ T9499]  tcp_getsockopt+0xfb/0x1c0
[  241.320296][ T9499]  ? aa_sock_opt_perm+0x20/0x120
[  241.320333][ T9499]  ? __pfx_tcp_getsockopt+0x10/0x10
[  241.320366][ T9499]  ? aa_sock_opt_perm+0x20/0x120
[  241.320403][ T9499]  ? sock_common_getsockopt+0x2e/0xb0
[  241.320430][ T9499]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  241.320462][ T9499]  do_sock_getsockopt+0x373/0x850
[  241.320502][ T9499]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  241.320535][ T9499]  ? __fget_files+0x3f6/0x470
[  241.320580][ T9499]  __sys_getsockopt+0x271/0x330
[  241.320619][ T9499]  ? __pfx___sys_getsockopt+0x10/0x10
[  241.320652][ T9499]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  241.320680][ T9499]  ? do_syscall_64+0x100/0x230
[  241.320709][ T9499]  __x64_sys_getsockopt+0xb5/0xd0
[  241.320756][ T9499]  do_syscall_64+0xf3/0x230
[  241.320781][ T9499]  ? clear_bhb_loop+0x35/0x90
[  241.320812][ T9499]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.320849][ T9499] RIP: 0033:0x7fa0ab975bd9
[  241.320874][ T9499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.320894][ T9499] RSP: 002b:00007fa0ac675048 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  241.320922][ T9499] RAX: ffffffffffffffda RBX: 00007fa0abb03f60 RCX: 00007fa0ab975bd9
[  241.339916][ T9350] bridge_slave_1: entered allmulticast mode
[  241.343738][ T9499] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000003
[  241.343758][ T9499] RBP: 00007fa0ac6750a0 R08: 0000000020000140 R09: 0000000000000000
[  241.343775][ T9499] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  241.351390][ T9350] bridge_slave_1: entered promiscuous mode
[  241.354253][ T9499] R13: 000000000000000b R14: 00007fa0abb03f60 R15: 00007ffcdf97f068
[  241.354296][ T9499]  </TASK>
[  241.667923][ T9350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  241.746746][ T9350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  241.883115][ T9350] team0: Port device team_slave_0 added
[  241.895084][ T9511] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1369'.
[  241.961237][ T9350] team0: Port device team_slave_1 added
[  242.028321][ T9517] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1369'.
[  242.087191][ T9350] batman_adv: batadv0: Adding interface: batadv_slave_0
[  242.094392][ T9350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  242.126922][ T9350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  242.161531][ T9350] batman_adv: batadv0: Adding interface: batadv_slave_1
[  242.168632][ T9350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  242.194699][ T9350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  242.441922][ T9350] hsr_slave_0: entered promiscuous mode
[  242.467941][ T9350] hsr_slave_1: entered promiscuous mode
[  242.483221][ T9350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  242.531721][ T9350] Cannot create hsr debugfs directory
[  242.637242][ T5107] Bluetooth: hci0: command tx timeout
[  242.741742][ T9531] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1375'.
[  242.787777][ T9531] 0·: renamed from hsr0 (while UP)
[  242.818024][ T9531] 0·: entered allmulticast mode
[  242.843680][ T9531] hsr_slave_0: entered allmulticast mode
[  242.854525][ T9531] hsr_slave_1: entered allmulticast mode
[  242.885803][ T9531] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  244.174981][ T9350] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  244.202443][ T9350] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  244.233410][ T9350] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  244.271335][ T9350] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  244.477584][ T9585] af_packet: tpacket_rcv: packet too big, clamped from 64686 to 32624. macoff=96
[  244.520146][ T9585] netlink: 'syz.4.1384': attribute type 16 has an invalid length.
[  244.545881][ T9585] netlink: 64138 bytes leftover after parsing attributes in process `syz.4.1384'.
[  244.600014][ T9587] netlink: 124 bytes leftover after parsing attributes in process `syz.0.1385'.
[  244.662951][ T9350] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.717298][ T5107] Bluetooth: hci0: command tx timeout
[  244.788032][ T9350] 8021q: adding VLAN 0 to HW filter on device team0
[  244.850299][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.857579][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.876429][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.883752][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.998416][ T9604] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1388'.
[  245.036248][ T9350] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  245.446368][ T9350] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.560996][ T9350] veth0_vlan: entered promiscuous mode
[  245.583141][ T9350] veth1_vlan: entered promiscuous mode
[  245.764601][ T9350] veth0_macvtap: entered promiscuous mode
[  245.802772][ T9350] veth1_macvtap: entered promiscuous mode
[  245.865816][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.890368][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.913045][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.936984][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.954765][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  245.969289][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  245.986343][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.007759][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.031951][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  246.051135][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.071332][ T9350] batman_adv: batadv0: Interface activated: batadv_slave_0
[  246.159713][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.191008][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.231431][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.267061][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.296023][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.345423][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.358017][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.369346][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.379902][ T9350] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  246.395994][ T9350] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  246.423036][ T9350] batman_adv: batadv0: Interface activated: batadv_slave_1
[  246.505235][ T9350] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  246.523870][ T9350] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  246.535319][ T9350] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  246.569997][ T9350] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  246.914377][ T9669] netlink: 'syz.0.1400': attribute type 16 has an invalid length.
[  246.946768][ T9669] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.1400'.
[  246.962075][ T7739] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.988500][ T7739] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  247.094333][ T7729] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  247.156669][ T7729] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  247.294572][ T9691] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1405'.
[  247.507192][ T9697] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1406'.
[  248.550480][ T9741] vlan2: entered promiscuous mode
[  248.573249][ T9741] bond0: entered promiscuous mode
[  248.585679][ T9741] bond_slave_0: entered promiscuous mode
[  248.596427][ T9741] bond_slave_1: entered promiscuous mode
[  248.824632][ T9748] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1416'.
[  248.847816][ T9748] 1·: renamed from 
70· (while UP)
[  248.869060][ T9748] A link change request failed with some changes committed already. Interface 
71· may have been left with an inconsistent configuration, please check.
[  249.447306][ T7720] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.495084][ T9787] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1425'.
[  250.071393][ T5120] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  250.086391][ T5120] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  250.097395][ T5120] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  250.112316][ T5120] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  250.121855][ T5120] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  250.135726][ T5120] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  250.695560][ T9802] chnl_net:caif_netlink_parms(): no params data found
[  250.823902][ T7720] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.874302][ T9834] netlink: 'syz.1.1436': attribute type 11 has an invalid length.
[  250.934624][ T7720] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.947296][ T9837] netlink: 'syz.1.1436': attribute type 11 has an invalid length.
[  250.955202][ T9837] FAULT_INJECTION: forcing a failure.
[  250.955202][ T9837] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  250.956723][ T9837] 
[  250.956734][ T9837] ======================================================
[  250.956741][ T9837] WARNING: possible circular locking dependency detected
[  250.956748][ T9837] 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0 Not tainted
[  250.956758][ T9837] ------------------------------------------------------
[  250.956764][ T9837] syz.1.1436/9837 is trying to acquire lock:
[  250.956774][ T9837] ffffffff8e328140 (console_owner){..-.}-{0:0}, at: console_flush_all+0x152/0xfd0
[  250.956826][ T9837] 
[  250.956826][ T9837] but task is already holding lock:
[  250.956831][ T9837] ffff8880b943e858 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  250.956877][ T9837] 
[  250.956877][ T9837] which lock already depends on the new lock.
[  250.956877][ T9837] 
[  250.956883][ T9837] 
[  250.956883][ T9837] the existing dependency chain (in reverse order) is:
[  250.956888][ T9837] 
[  250.956888][ T9837] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  250.956909][ T9837]        lock_acquire+0x1ed/0x550
[  250.956926][ T9837]        _raw_spin_lock_nested+0x31/0x40
[  250.956947][ T9837]        raw_spin_rq_lock_nested+0x2a/0x140
[  250.956971][ T9837]        task_fork_fair+0x61/0x1e0
[  250.956992][ T9837]        sched_cgroup_fork+0x37c/0x410
[  250.957010][ T9837]        copy_process+0x2217/0x3dc0
[  250.957026][ T9837]        kernel_clone+0x226/0x8f0
[  250.957042][ T9837]        user_mode_thread+0x132/0x1a0
[  250.957060][ T9837]        rest_init+0x23/0x300
[  250.957077][ T9837]        start_kernel+0x47a/0x500
[  250.957099][ T9837]        x86_64_start_reservations+0x2a/0x30
[  250.957116][ T9837]        x86_64_start_kernel+0x99/0xa0
[  250.957131][ T9837]        common_startup_64+0x13e/0x147
[  250.957147][ T9837] 
[  250.957147][ T9837] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  250.957167][ T9837]        lock_acquire+0x1ed/0x550
[  250.957181][ T9837]        _raw_spin_lock_irqsave+0xd5/0x120
[  250.957199][ T9837]        try_to_wake_up+0xb0/0x1470
[  250.957216][ T9837]        __wake_up_common_lock+0x130/0x1e0
[  250.957232][ T9837]        tty_port_default_wakeup+0xa6/0xf0
[  250.957255][ T9837]        serial8250_tx_chars+0x6e2/0x930
[  250.957274][ T9837]        serial8250_handle_irq+0x558/0x710
[  250.957294][ T9837]        serial8250_default_handle_irq+0xd1/0x1f0
[  250.957317][ T9837]        serial8250_interrupt+0xa9/0x1f0
[  250.957334][ T9837]        __handle_irq_event_percpu+0x29a/0xa80
[  250.957354][ T9837]        handle_irq_event+0x89/0x1f0
[  250.957381][ T9837]        handle_edge_irq+0x25f/0xc20
[  250.957399][ T9837]        __common_interrupt+0x136/0x230
[  250.957418][ T9837]        common_interrupt+0xa5/0xd0
[  250.957437][ T9837]        asm_common_interrupt+0x26/0x40
[  250.957454][ T9837]        unwind_next_frame+0x52c/0x2a00
[  250.957476][ T9837]        arch_stack_walk+0x151/0x1b0
[  250.957498][ T9837]        stack_trace_save+0x118/0x1d0
[  250.957522][ T9837]        kasan_save_track+0x3f/0x80
[  250.957540][ T9837]        kasan_save_free_info+0x40/0x50
[  250.957563][ T9837]        poison_slab_object+0xe0/0x150
[  250.957581][ T9837]        __kasan_slab_free+0x37/0x60
[  250.957598][ T9837]        kmem_cache_free+0x145/0x350
[  250.957612][ T9837]        rcu_core+0xafd/0x1830
[  250.957627][ T9837]        handle_softirqs+0x2c4/0x970
[  250.957642][ T9837]        run_ksoftirqd+0xca/0x130
[  250.957658][ T9837]        smpboot_thread_fn+0x544/0xa30
[  250.957673][ T9837]        kthread+0x2f0/0x390
[  250.957692][ T9837]        ret_from_fork+0x4b/0x80
[  250.957712][ T9837]        ret_from_fork_asm+0x1a/0x30
[  250.957735][ T9837] 
[  250.957735][ T9837] -> #2 (&tty->write_wait){-.-.}-{2:2}:
[  250.957755][ T9837]        lock_acquire+0x1ed/0x550
[  250.957770][ T9837]        _raw_spin_lock_irqsave+0xd5/0x120
[  250.957788][ T9837]        __wake_up_common_lock+0x25/0x1e0
[  250.957804][ T9837]        tty_port_default_wakeup+0xa6/0xf0
[  250.957825][ T9837]        serial8250_tx_chars+0x6e2/0x930
[  250.957844][ T9837]        serial8250_handle_irq+0x558/0x710
[  250.957863][ T9837]        serial8250_default_handle_irq+0xd1/0x1f0
[  250.957893][ T9837]        serial8250_interrupt+0xa9/0x1f0
[  250.957909][ T9837]        __handle_irq_event_percpu+0x29a/0xa80
[  250.957929][ T9837]        handle_irq_event+0x89/0x1f0
[  250.957949][ T9837]        handle_edge_irq+0x25f/0xc20
[  250.957966][ T9837]        __common_interrupt+0x136/0x230
[  250.957984][ T9837]        common_interrupt+0xa5/0xd0
[  250.958002][ T9837]        asm_common_interrupt+0x26/0x40
[  250.958019][ T9837]        unwind_next_frame+0x52c/0x2a00
[  250.958040][ T9837]        arch_stack_walk+0x151/0x1b0
[  250.958062][ T9837]        stack_trace_save+0x118/0x1d0
[  250.958085][ T9837]        kasan_save_track+0x3f/0x80
[  250.958101][ T9837]        kasan_save_free_info+0x40/0x50
[  250.958126][ T9837]        poison_slab_object+0xe0/0x150
[  250.958144][ T9837]        __kasan_slab_free+0x37/0x60
[  250.958162][ T9837]        kmem_cache_free+0x145/0x350
[  250.958175][ T9837]        rcu_core+0xafd/0x1830
[  250.958190][ T9837]        handle_softirqs+0x2c4/0x970
[  250.958204][ T9837]        run_ksoftirqd+0xca/0x130
[  250.958220][ T9837]        smpboot_thread_fn+0x544/0xa30
[  250.958235][ T9837]        kthread+0x2f0/0x390
[  250.958253][ T9837]        ret_from_fork+0x4b/0x80
[  250.958273][ T9837]        ret_from_fork_asm+0x1a/0x30
[  250.958294][ T9837] 
[  250.958294][ T9837] -> #1 (&port_lock_key){-.-.}-{2:2}:
[  250.958315][ T9837]        lock_acquire+0x1ed/0x550
[  250.958330][ T9837]        _raw_spin_lock_irqsave+0xd5/0x120
[  250.958348][ T9837]        serial8250_console_write+0x1a8/0x1770
[  250.958373][ T9837]        console_flush_all+0x867/0xfd0
[  250.958395][ T9837]        console_unlock+0x13b/0x4d0
[  250.958414][ T9837]        vprintk_emit+0x5a6/0x770
[  250.958433][ T9837]        _printk+0xd5/0x120
[  250.958446][ T9837]        register_console+0x727/0xcf0
[  250.958467][ T9837]        univ8250_console_init+0x49/0x50
[  250.958488][ T9837]        console_init+0x1b8/0x6f0
[  250.958509][ T9837]        start_kernel+0x2d3/0x500
[  250.958528][ T9837]        x86_64_start_reservations+0x2a/0x30
[  250.958544][ T9837]        x86_64_start_kernel+0x99/0xa0
[  250.958557][ T9837]        common_startup_64+0x13e/0x147
[  250.958590][ T9837] 
[  250.958590][ T9837] -> #0 (console_owner){..-.}-{0:0}:
[  250.958610][ T9837]        validate_chain+0x18e0/0x5900
[  250.958630][ T9837]        __lock_acquire+0x1346/0x1fd0
[  250.958646][ T9837]        lock_acquire+0x1ed/0x550
[  250.958665][ T9837]        console_flush_all+0x810/0xfd0
[  250.958685][ T9837]        console_unlock+0x13b/0x4d0
[  250.958702][ T9837]        vprintk_emit+0x5a6/0x770
[  250.958720][ T9837]        _printk+0xd5/0x120
[  250.958731][ T9837]        should_fail_ex+0x391/0x4e0
[  250.958750][ T9837]        strncpy_from_user+0x36/0x2f0
[  250.958769][ T9837]        strncpy_from_user_nofault+0x71/0x140
[  250.958785][ T9837]        bpf_probe_read_compat_str+0xe9/0x180
[  250.958802][ T9837]        bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  250.958813][ T9837]        bpf_trace_run4+0x334/0x590
[  250.958834][ T9837]        __traceiter_sched_switch+0x98/0xd0
[  250.958854][ T9837]        __schedule+0x2587/0x4a20
[  250.958871][ T9837]        preempt_schedule_common+0x84/0xd0
[  250.958889][ T9837]        preempt_schedule+0xe1/0xf0
[  250.958905][ T9837]        preempt_schedule_thunk+0x1a/0x30
[  250.958919][ T9837]        vprintk_emit+0x690/0x770
[  250.958937][ T9837]        _printk+0xd5/0x120
[  250.958948][ T9837]        __nla_validate_parse+0x1f36/0x3090
[  250.958963][ T9837]        __nla_parse+0x40/0x60
[  250.958975][ T9837]        genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  250.958998][ T9837]        genl_rcv_msg+0x802/0xec0
[  250.959018][ T9837]        netlink_rcv_skb+0x1e3/0x430
[  250.959033][ T9837]        genl_rcv+0x28/0x40
[  250.959051][ T9837]        netlink_unicast+0x7f0/0x990
[  250.959064][ T9837]        netlink_sendmsg+0x8e4/0xcb0
[  250.959080][ T9837]        __sock_sendmsg+0x221/0x270
[  250.959095][ T9837]        ____sys_sendmsg+0x525/0x7d0
[  250.959115][ T9837]        __sys_sendmsg+0x2b0/0x3a0
[  250.959136][ T9837]        do_syscall_64+0xf3/0x230
[  250.959150][ T9837]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.959166][ T9837] 
[  250.959166][ T9837] other info that might help us debug this:
[  250.959166][ T9837] 
[  250.959171][ T9837] Chain exists of:
[  250.959171][ T9837]   console_owner --> &p->pi_lock --> &rq->__lock
[  250.959171][ T9837] 
[  250.959192][ T9837]  Possible unsafe locking scenario:
[  250.959192][ T9837] 
[  250.959196][ T9837]        CPU0                    CPU1
[  250.959200][ T9837]        ----                    ----
[  250.959204][ T9837]   lock(&rq->__lock);
[  250.959213][ T9837]                                lock(&p->pi_lock);
[  250.959224][ T9837]                                lock(&rq->__lock);
[  250.959234][ T9837]   lock(console_owner);
[  250.959243][ T9837] 
[  250.959243][ T9837]  *** DEADLOCK ***
[  250.959243][ T9837] 
[  250.959246][ T9837] 5 locks held by syz.1.1436/9837:
[  250.959255][ T9837]  #0: ffffffff8f651410 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  250.959295][ T9837]  #1: ffff8880b943e858 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  250.959337][ T9837]  #2: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0x244/0x590
[  250.959383][ T9837]  #3: ffffffff8e20fa60 (console_lock){+.+.}-{0:0}, at: _printk+0xd5/0x120
[  250.959414][ T9837]  #4: ffffffff8e20f690 (console_srcu){....}-{0:0}, at: console_flush_all+0x152/0xfd0
[  250.959454][ T9837] 
[  250.959454][ T9837] stack backtrace:
[  250.959459][ T9837] CPU: 0 PID: 9837 Comm: syz.1.1436 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  250.959475][ T9837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  250.959485][ T9837] Call Trace:
[  250.959491][ T9837]  <TASK>
[  250.959498][ T9837]  dump_stack_lvl+0x241/0x360
[  250.959516][ T9837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  250.959536][ T9837]  ? print_circular_bug+0x130/0x1a0
[  250.959558][ T9837]  check_noncircular+0x36a/0x4a0
[  250.959580][ T9837]  ? __pfx_check_noncircular+0x10/0x10
[  250.959601][ T9837]  ? lockdep_lock+0x123/0x2b0
[  250.959616][ T9837]  ? add_lock_to_list+0x1de/0x2e0
[  250.959640][ T9837]  validate_chain+0x18e0/0x5900
[  250.959670][ T9837]  ? __pfx_validate_chain+0x10/0x10
[  250.959692][ T9837]  ? sprintf+0xda/0x120
[  250.959711][ T9837]  ? vsnprintf+0x1cc3/0x1da0
[  250.959737][ T9837]  ? info_print_prefix+0x204/0x310
[  250.959755][ T9837]  ? mark_lock+0x9a/0x350
[  250.959773][ T9837]  __lock_acquire+0x1346/0x1fd0
[  250.959797][ T9837]  lock_acquire+0x1ed/0x550
[  250.959812][ T9837]  ? console_flush_all+0x152/0xfd0
[  250.959837][ T9837]  ? __pfx_lock_acquire+0x10/0x10
[  250.959852][ T9837]  ? __pfx_lock_release+0x10/0x10
[  250.959867][ T9837]  ? do_raw_spin_lock+0x14f/0x370
[  250.959893][ T9837]  ? do_raw_spin_unlock+0x13c/0x8b0
[  250.959915][ T9837]  ? console_flush_all+0x3a8/0xfd0
[  250.959939][ T9837]  console_flush_all+0x810/0xfd0
[  250.959959][ T9837]  ? console_flush_all+0x152/0xfd0
[  250.959982][ T9837]  ? console_flush_all+0x152/0xfd0
[  250.960009][ T9837]  ? __pfx_console_flush_all+0x10/0x10
[  250.960032][ T9837]  ? __pfx_lock_acquire+0x10/0x10
[  250.960049][ T9837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  250.960072][ T9837]  console_unlock+0x13b/0x4d0
[  250.960094][ T9837]  ? __pfx_console_unlock+0x10/0x10
[  250.960114][ T9837]  ? _printk+0xd5/0x120
[  250.960128][ T9837]  ? _printk+0xd5/0x120
[  250.960141][ T9837]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  250.960169][ T9837]  vprintk_emit+0x5a6/0x770
[  250.960190][ T9837]  ? __pfx_vprintk_emit+0x10/0x10
[  250.960210][ T9837]  ? validate_chain+0x11e/0x5900
[  250.960235][ T9837]  _printk+0xd5/0x120
[  250.960251][ T9837]  ? __pfx__printk+0x10/0x10
[  250.960271][ T9837]  should_fail_ex+0x391/0x4e0
[  250.960295][ T9837]  strncpy_from_user+0x36/0x2f0
[  250.960317][ T9837]  strncpy_from_user_nofault+0x71/0x140
[  250.960337][ T9837]  bpf_probe_read_compat_str+0xe9/0x180
[  250.960356][ T9837]  ? bpf_trace_run4+0x244/0x590
[  250.960382][ T9837]  bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  250.960395][ T9837]  bpf_trace_run4+0x334/0x590
[  250.960418][ T9837]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[  250.960437][ T9837]  ? __pfx_bpf_trace_run4+0x10/0x10
[  250.960462][ T9837]  ? __pfx_probe_sched_switch+0x10/0x10
[  250.960486][ T9837]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  250.960509][ T9837]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  250.960530][ T9837]  __traceiter_sched_switch+0x98/0xd0
[  250.960553][ T9837]  __schedule+0x2587/0x4a20
[  250.960580][ T9837]  ? mark_lock+0x9a/0x350
[  250.960597][ T9837]  ? __pfx___schedule+0x10/0x10
[  250.960616][ T9837]  ? prb_read_valid+0xa9/0xf0
[  250.960639][ T9837]  ? preempt_schedule+0xe1/0xf0
[  250.960657][ T9837]  preempt_schedule_common+0x84/0xd0
[  250.960677][ T9837]  preempt_schedule+0xe1/0xf0
[  250.960696][ T9837]  ? __pfx_preempt_schedule+0x10/0x10
[  250.960715][ T9837]  ? _printk+0xd5/0x120
[  250.960727][ T9837]  ? _printk+0xd5/0x120
[  250.960740][ T9837]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  250.960765][ T9837]  preempt_schedule_thunk+0x1a/0x30
[  250.960781][ T9837]  ? vprintk_emit+0x619/0x770
[  250.960799][ T9837]  ? vprintk_emit+0x68b/0x770
[  250.960819][ T9837]  vprintk_emit+0x690/0x770
[  250.960840][ T9837]  ? __pfx_vprintk_emit+0x10/0x10
[  250.960860][ T9837]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  250.960879][ T9837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  250.960904][ T9837]  _printk+0xd5/0x120
[  250.960918][ T9837]  ? __nla_validate_parse+0x15e5/0x3090
[  250.960934][ T9837]  ? __pfx__printk+0x10/0x10
[  250.960951][ T9837]  ? nla_get_range_unsigned+0x26e/0x490
[  250.960969][ T9837]  __nla_validate_parse+0x1f36/0x3090
[  250.960984][ T9837]  ? genl_rcv+0x28/0x40
[  250.961003][ T9837]  ? netlink_unicast+0x7f0/0x990
[  250.961026][ T9837]  ? __pfx___nla_validate_parse+0x10/0x10
[  250.961056][ T9837]  __nla_parse+0x40/0x60
[  250.961073][ T9837]  genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  250.961100][ T9837]  genl_rcv_msg+0x802/0xec0
[  250.961123][ T9837]  ? mark_lock+0x9a/0x350
[  250.961150][ T9837]  ? __pfx_genl_rcv_msg+0x10/0x10
[  250.961183][ T9837]  ? __pfx_lock_acquire+0x10/0x10
[  250.961198][ T9837]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  250.961220][ T9837]  ? __pfx_nl80211_new_interface+0x10/0x10
[  250.961241][ T9837]  ? __pfx_nl80211_post_doit+0x10/0x10
[  250.961263][ T9837]  ? __pfx___might_resched+0x10/0x10
[  250.961294][ T9837]  netlink_rcv_skb+0x1e3/0x430
[  250.961316][ T9837]  ? __pfx_genl_rcv_msg+0x10/0x10
[  250.961338][ T9837]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  250.961361][ T9837]  ? __netlink_deliver_tap+0x77e/0x7c0
[  250.961390][ T9837]  genl_rcv+0x28/0x40
[  250.961409][ T9837]  netlink_unicast+0x7f0/0x990
[  250.961428][ T9837]  ? __pfx_netlink_unicast+0x10/0x10
[  250.961442][ T9837]  ? __virt_addr_valid+0x183/0x520
[  250.961465][ T9837]  ? __check_object_size+0x49c/0x900
[  250.961488][ T9837]  ? bpf_lsm_netlink_send+0x9/0x10
[  250.961512][ T9837]  netlink_sendmsg+0x8e4/0xcb0
[  250.961536][ T9837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.961555][ T9837]  ? __import_iovec+0x536/0x820
[  250.961571][ T9837]  ? aa_sock_msg_perm+0x91/0x160
[  250.961595][ T9837]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  250.961609][ T9837]  ? security_socket_sendmsg+0x87/0xb0
[  250.961628][ T9837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.961645][ T9837]  __sock_sendmsg+0x221/0x270
[  250.961664][ T9837]  ____sys_sendmsg+0x525/0x7d0
[  250.961689][ T9837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.961719][ T9837]  __sys_sendmsg+0x2b0/0x3a0
[  250.961742][ T9837]  ? __pfx___sys_sendmsg+0x10/0x10
[  250.961763][ T9837]  ? vfs_write+0x7c4/0xc90
[  250.961800][ T9837]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  250.961817][ T9837]  ? do_syscall_64+0x100/0x230
[  250.961833][ T9837]  ? do_syscall_64+0xb6/0x230
[  250.961850][ T9837]  do_syscall_64+0xf3/0x230
[  250.961865][ T9837]  ? clear_bhb_loop+0x35/0x90
[  250.961884][ T9837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.961902][ T9837] RIP: 0033:0x7fa0ab975bd9
[  250.961916][ T9837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.961929][ T9837] RSP: 002b:00007fa0ab3ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.961944][ T9837] RAX: ffffffffffffffda RBX: 00007fa0abb04038 RCX: 00007fa0ab975bd9
[  250.961955][ T9837] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000005
[  250.961965][ T9837] RBP: 00007fa0ab3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  250.961975][ T9837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  250.961985][ T9837] R13: 000000000000006e R14: 00007fa0abb04038 R15: 00007ffcdf97f068
[  250.962003][ T9837]  </TASK>
[  252.550103][ T9837] CPU: 0 PID: 9837 Comm: syz.1.1436 Not tainted 6.10.0-rc6-syzkaller-01259-g3abbd7ed8b76 #0
[  252.560166][ T9837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  252.570396][ T9837] Call Trace:
[  252.573712][ T9837]  <TASK>
[  252.576643][ T9837]  dump_stack_lvl+0x241/0x360
[  252.581333][ T9837]  ? __pfx_dump_stack_lvl+0x10/0x10
[  252.586561][ T9837]  ? __pfx__printk+0x10/0x10
[  252.591176][ T9837]  should_fail_ex+0x3b0/0x4e0
[  252.595890][ T9837]  strncpy_from_user+0x36/0x2f0
[  252.600855][ T9837]  strncpy_from_user_nofault+0x71/0x140
[  252.606515][ T9837]  bpf_probe_read_compat_str+0xe9/0x180
[  252.612084][ T9837]  ? bpf_trace_run4+0x244/0x590
[  252.616960][ T9837]  bpf_prog_f2ce78ec2d45df6f+0x3d/0x3f
[  252.622615][ T9837]  bpf_trace_run4+0x334/0x590
[  252.627517][ T9837]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[  252.633609][ T9837]  ? __pfx_bpf_trace_run4+0x10/0x10
[  252.638851][ T9837]  ? __pfx_probe_sched_switch+0x10/0x10
[  252.644579][ T9837]  ? tracing_record_taskinfo_sched_switch+0x7b/0x390
[  252.651258][ T9837]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  252.657343][ T9837]  __traceiter_sched_switch+0x98/0xd0
[  252.662747][ T9837]  __schedule+0x2587/0x4a20
[  252.667281][ T9837]  ? mark_lock+0x9a/0x350
[  252.671635][ T9837]  ? __pfx___schedule+0x10/0x10
[  252.676601][ T9837]  ? prb_read_valid+0xa9/0xf0
[  252.681332][ T9837]  ? preempt_schedule+0xe1/0xf0
[  252.686190][ T9837]  preempt_schedule_common+0x84/0xd0
[  252.691502][ T9837]  preempt_schedule+0xe1/0xf0
[  252.696204][ T9837]  ? __pfx_preempt_schedule+0x10/0x10
[  252.701583][ T9837]  ? _printk+0xd5/0x120
[  252.705739][ T9837]  ? _printk+0xd5/0x120
[  252.709984][ T9837]  ? __pfx___down_trylock_console_sem+0x10/0x10
[  252.716252][ T9837]  preempt_schedule_thunk+0x1a/0x30
[  252.721574][ T9837]  ? vprintk_emit+0x619/0x770
[  252.726349][ T9837]  ? vprintk_emit+0x68b/0x770
[  252.731275][ T9837]  vprintk_emit+0x690/0x770
[  252.736009][ T9837]  ? __pfx_vprintk_emit+0x10/0x10
[  252.741365][ T9837]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  252.747618][ T9837]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  252.753969][ T9837]  _printk+0xd5/0x120
[  252.758064][ T9837]  ? __nla_validate_parse+0x15e5/0x3090
[  252.763617][ T9837]  ? __pfx__printk+0x10/0x10
[  252.768225][ T9837]  ? nla_get_range_unsigned+0x26e/0x490
[  252.773793][ T9837]  __nla_validate_parse+0x1f36/0x3090
[  252.779167][ T9837]  ? genl_rcv+0x28/0x40
[  252.783328][ T9837]  ? netlink_unicast+0x7f0/0x990
[  252.788272][ T9837]  ? __pfx___nla_validate_parse+0x10/0x10
[  252.794015][ T9837]  __nla_parse+0x40/0x60
[  252.798263][ T9837]  genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  252.804442][ T9837]  genl_rcv_msg+0x802/0xec0
[  252.808994][ T9837]  ? mark_lock+0x9a/0x350
[  252.813419][ T9837]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.818477][ T9837]  ? __pfx_lock_acquire+0x10/0x10
[  252.823530][ T9837]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  252.828910][ T9837]  ? __pfx_nl80211_new_interface+0x10/0x10
[  252.834720][ T9837]  ? __pfx_nl80211_post_doit+0x10/0x10
[  252.840193][ T9837]  ? __pfx___might_resched+0x10/0x10
[  252.845505][ T9837]  netlink_rcv_skb+0x1e3/0x430
[  252.850299][ T9837]  ? __pfx_genl_rcv_msg+0x10/0x10
[  252.855341][ T9837]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  252.860668][ T9837]  ? __netlink_deliver_tap+0x77e/0x7c0
[  252.866446][ T9837]  genl_rcv+0x28/0x40
[  252.870456][ T9837]  netlink_unicast+0x7f0/0x990
[  252.875247][ T9837]  ? __pfx_netlink_unicast+0x10/0x10
[  252.880647][ T9837]  ? __virt_addr_valid+0x183/0x520
[  252.885814][ T9837]  ? __check_object_size+0x49c/0x900
[  252.891230][ T9837]  ? bpf_lsm_netlink_send+0x9/0x10
[  252.896373][ T9837]  netlink_sendmsg+0x8e4/0xcb0
[  252.901157][ T9837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.906449][ T9837]  ? __import_iovec+0x536/0x820
[  252.911302][ T9837]  ? aa_sock_msg_perm+0x91/0x160
[  252.916266][ T9837]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  252.921570][ T9837]  ? security_socket_sendmsg+0x87/0xb0
[  252.927039][ T9837]  ? __pfx_netlink_sendmsg+0x10/0x10
[  252.932431][ T9837]  __sock_sendmsg+0x221/0x270
[  252.937112][ T9837]  ____sys_sendmsg+0x525/0x7d0
[  252.941884][ T9837]  ? __pfx_____sys_sendmsg+0x10/0x10
[  252.947201][ T9837]  __sys_sendmsg+0x2b0/0x3a0
[  252.951800][ T9837]  ? __pfx___sys_sendmsg+0x10/0x10
[  252.956915][ T9837]  ? vfs_write+0x7c4/0xc90
[  252.961362][ T9837]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  252.967696][ T9837]  ? do_syscall_64+0x100/0x230
[  252.972459][ T9837]  ? do_syscall_64+0xb6/0x230
[  252.977152][ T9837]  do_syscall_64+0xf3/0x230
[  252.981653][ T9837]  ? clear_bhb_loop+0x35/0x90
[  252.986348][ T9837]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.992244][ T9837] RIP: 0033:0x7fa0ab975bd9
[  252.996659][ T9837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.016267][ T9837] RSP: 002b:00007fa0ab3ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  253.024701][ T9837] RAX: ffffffffffffffda RBX: 00007fa0abb04038 RCX: 00007fa0ab975bd9
[  253.032759][ T9837] RDX: 0000000000000000 RSI: 0000000020000400 RDI: 0000000000000005
[  253.040730][ T9837] RBP: 00007fa0ab3ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  253.049082][ T9837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.057095][ T9837] R13: 000000000000006e R14: 00007fa0abb04038 R15: 00007ffcdf97f068
[  253.065076][ T9837]  </TASK>
[  253.096588][ T5107] Bluetooth: hci0: command tx timeout
[  253.194244][ T7720] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  253.196323][ T9845] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1437'.
[  253.230053][ T9802] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.237383][ T9802] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.244639][ T9802] bridge_slave_0: entered allmulticast mode
[  253.252013][ T9802] bridge_slave_0: entered promiscuous mode
[  253.260573][ T9802] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.268082][ T9802] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.275343][ T9802] bridge_slave_1: entered allmulticast mode
[  253.284835][ T9802] bridge_slave_1: entered promiscuous mode
[  253.319533][ T9802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  253.332081][ T9802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  253.409612][ T9802] team0: Port device team_slave_0 added
[  253.419489][ T9802] team0: Port device team_slave_1 added
[  253.432001][ T7720] bridge_slave_1: left allmulticast mode
[  253.438049][ T7720] bridge_slave_1: left promiscuous mode
[  253.443788][ T7720] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.453559][ T7720] bridge_slave_0: left allmulticast mode
[  253.462405][ T7720] bridge_slave_0: left promiscuous mode
[  253.468604][ T7720] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.623859][ T7720] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  253.635460][ T7720] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  253.646380][ T7720] bond0 (unregistering): Released all slaves
[  253.705696][ T9802] batman_adv: batadv0: Adding interface: batadv_slave_0
[  253.716148][ T9802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  253.744208][ T9802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  253.758581][ T9802] batman_adv: batadv0: Adding interface: batadv_slave_1
[  253.765568][ T9802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  253.793207][ T9802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  253.889044][ T9802] hsr_slave_0: entered promiscuous mode
[  253.900722][ T9802] hsr_slave_1: entered promiscuous mode
[  254.023038][ T7720] hsr_slave_0: left promiscuous mode
[  254.034353][ T7720] hsr_slave_1: left promiscuous mode
[  254.045364][ T7720] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  254.053472][ T7720] batman_adv: batadv0: Removing interface: batadv_slave_0
[  254.062206][ T7720] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  254.069904][ T7720] batman_adv: batadv0: Removing interface: batadv_slave_1
[  254.080998][ T7720] veth1_macvtap: left promiscuous mode
[  254.087532][ T7720] veth0_macvtap: left promiscuous mode
[  254.093410][ T7720] veth1_vlan: left promiscuous mode
[  254.099626][ T7720] veth0_vlan: left promiscuous mode
[  254.352301][ T7720] team0 (unregistering): Port device team_slave_1 removed
[  254.386290][ T7720] team0 (unregistering): Port device team_slave_0 removed
[  255.072518][ T9802] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  255.083099][ T9802] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  255.095020][ T9802] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  255.105070][ T9802] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  255.117684][ T5107] Bluetooth: hci0: command tx timeout
[  255.238188][ T9802] 8021q: adding VLAN 0 to HW filter on device bond0
[  255.270684][ T9802] 8021q: adding VLAN 0 to HW filter on device team0
[  255.284641][  T784] bridge0: port 1(bridge_slave_0) entered blocking state
[  255.292012][  T784] bridge0: port 1(bridge_slave_0) entered forwarding state
[  255.315489][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[  255.322845][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[  255.379599][ T9802] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  255.568082][ T9802] 8021q: adding VLAN 0 to HW filter on device batadv0
[  255.635292][ T9802] veth0_vlan: entered promiscuous mode
[  255.657703][ T9802] veth1_vlan: entered promiscuous mode
[  255.704831][ T9802] veth0_macvtap: entered promiscuous mode
[  255.720343][ T9802] veth1_macvtap: entered promiscuous mode
[  255.754035][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.765252][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.778642][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.789967][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.803238][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.814523][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.827575][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.840081][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.850724][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.863528][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.875701][ T9802] batman_adv: batadv0: Interface activated: batadv_slave_0
[  255.894754][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.908286][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.922433][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.935356][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.949796][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.960958][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.975667][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.986537][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.999711][ T9802] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.010576][ T9802] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.024833][ T9802] batman_adv: batadv0: Interface activated: batadv_slave_1
[  256.047386][ T9802] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  256.056153][ T9802] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  256.069318][ T9802] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  256.081258][ T9802] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  256.136269][ T9802] ieee80211 phy26: Selected rate control algorithm 'minstrel_ht'
[  256.163762][ T1251] ieee802154 phy0 wpan0: encryption failed: -22
[  256.170366][ T1251] ieee802154 phy1 wpan1: encryption failed: -22
[  256.185661][ T7729] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  256.202193][ T9802] ieee80211 phy27: Selected rate control algorithm 'minstrel_ht'
[  256.215616][ T7729] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.281390][  T966] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  256.294064][  T966] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  258.923308][ T7729] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0