last executing test programs:

1m28.437948428s ago: executing program 4 (id=170):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$inet6(0xa, 0x800000000000002, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_COALESCE(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0x30, r3, 0x1, 0xfffffffe, 0x0, {{0x2}, {@val={0x8}, @val={0xc, 0x99, {0x5}}}}, [@NL80211_ATTR_COALESCE_RULE_DELAY={0x8, 0x1, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
sendmmsg$inet6(r2, &(0x7f00000023c0)=[{{&(0x7f0000000400)={0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x38}}, 0x1c, 0x0}}, {{&(0x7f0000001040)={0xa, 0x4e22, 0x63, @mcast2, 0x4f0}, 0x1c, 0x0, 0x0, &(0x7f0000004140)=ANY=[@ANYBLOB=' \x00\x00?'], 0x11d8}}], 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6(0x10, 0x2, 0x4)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000240)={0x2, &(0x7f0000000040)=[{0x48, 0x0, 0x0, 0xffefffff}, {0x16}]}, 0x10)
sendto$inet6(r6, &(0x7f00000002c0)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, &(0x7f0000000200), 0x4)
r7 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={0x0, 0x18}}, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r8}, 0x18)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000001f80), 0xfffffffb, r9}, 0x38)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200), &(0x7f00000004c0), 0x1000, r9}, 0x38)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000340)={0x114, 0x3, 0x1, 0x801, 0x0, 0x0, {}, [@CTA_NAT_SRC={0x7c, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private0}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @mcast1}, @CTA_NAT_PROTO={0x24, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e22}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}]}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @private=0xa010102}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @remote}]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0x9, 0x1, 'syz0\x00'}}, @CTA_LABELS={0x20, 0x16, 0x1, 0x0, [0x5335, 0x800, 0x7, 0x0, 0x6, 0x7, 0x9]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x7}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x2}, @CTA_SYNPROXY={0x3c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x7}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x2d6c0000}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x4}, @CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_TSOFF={0x8}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x4}]}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x4}]}, 0x114}, 0x1, 0x0, 0x0, 0x8080}, 0x200400c0)
getsockname$packet(r7, &(0x7f0000000300)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r10, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100000000000c0002000c0000000d00000008000500", @ANYRES64=r5], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
bind$netlink(r5, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfc, 0x400}, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x101302, 0x0)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000640)={&(0x7f0000000580)="7fbfc37cbf47f03cd7830231b085733d574c42af9fe6b005944b4e4f7167b38c717f165ecde0b737fe426cc42aac8ff945", &(0x7f0000001080)=""/4096, &(0x7f00000005c0), &(0x7f0000002440)="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", 0x7, r9}, 0x38)
ioctl$TUNSETIFINDEX(r11, 0x400454da, &(0x7f0000000480)=r1)

1m27.820509066s ago: executing program 4 (id=178):
r0 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$inet_int(r0, 0x0, 0x0, &(0x7f0000000340)=0x6, 0x4)
setsockopt$inet_int(r0, 0x0, 0xa, 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00', <r2=>0x0}, 0x30) (async)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r3, @ANYRES32=<r5=>r4, @ANYBLOB="020000"], 0x10) (async)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x2000005, 0x3032, 0xffffffffffffffff, 0x0) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
r8 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
bind$llc(r8, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x10) (async)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r9, &(0x7f0000000000), 0xffffff6a) (async)
sendfile(r8, r9, 0x0, 0xffffffff000)
write$cgroup_type(r9, &(0x7f00000001c0), 0x9) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b0000000000000000000000e89c000000000000", @ANYRES32=0x1, @ANYRESOCT=r2, @ANYRESOCT=r5, @ANYRES32=r9, @ANYBLOB="39c22655f5e42f6150948ee85970da082a0c99c787befff3859066418f24b70fc6f11507273294f064992213b85710fff1a801ddf86d0e8908e0feaf1e856f824c6984f4dedd05efdd1adf669939e1bc72fbd1fa79d853c741970f12"], 0x50)
bind$unix(r9, &(0x7f0000000140)=@file={0x0, './file0\x00'}, 0x6e) (async)
openat$cgroup_subtree(r7, &(0x7f0000000200), 0x2, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@cgroup=r6, 0x2, 0x0, 0x0, &(0x7f0000000280)=[0x0], 0x1, 0x0, &(0x7f00000014c0), 0x0, 0x0}, 0x40)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r10, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="58000000030103000000000000000000020000083c001980080002000004000008000200420a00000800010001040000080001008800000008000200010200000800010010010000080001000000000006001240"], 0x58}}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffff12850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r11}, 0x10) (async)
r12 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r12, &(0x7f0000000440), 0x10) (async)
listen(r12, 0x0)

1m27.521685726s ago: executing program 4 (id=183):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_GET(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1040c4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0x20, 0x70bd27, 0x25dfdbff, {}, [@L2TP_ATTR_UDP_CSUM={0x5, 0xd, 0x1}, @L2TP_ATTR_COOKIE={0xc, 0xf, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000001}, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x7, &(0x7f0000000100)=0x4, 0x4)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000140), r3)
socket$phonet(0x23, 0x2, 0x1) (async)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000340)={&(0x7f00000001c0)={0x150, 0x1403, 0x2, 0x70bd29, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'batadv0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth1\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth1_virt_wifi\x00'}}, {{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'sit0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'sit0\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'pim6reg\x00'}}, {{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'bond_slave_0\x00'}}, {{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'veth0_to_bond\x00'}}]}, 0x150}, 0x1, 0x0, 0x0, 0x2c804}, 0x1) (async)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x20, r5, 0x10, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DURATION={0x8, 0x57, 0xdc5}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20000804)
r6 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000500)='blkio.bfq.io_queued_recursive\x00', 0x0, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r6, &(0x7f0000000640)={&(0x7f0000000540), 0xc, &(0x7f0000000600)={&(0x7f0000000580)={0x64, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x0, 0x56}}}}, [@NL80211_ATTR_PMKID={0x14, 0x55, "27b3be47720e08eeede98443bdbdae9a"}, @NL80211_ATTR_PMK={0x14, 0xfe, "c95f5b3477f55e27b25330e29c7d70f7"}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x4}, @NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x3b8}]}, 0x64}, 0x1, 0x0, 0x0, 0x810}, 0x0) (async)
syz_emit_ethernet(0x101, &(0x7f0000000680)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x1e}, @random="7e846adf3a1e", @val={@val={0x88a8, 0x7, 0x1, 0x1}, {0x8100, 0x7, 0x0, 0x1}}, {@x25={0x805, {0x3, 0x9, 0xcf56ee32b4d85941, "bbedc9ef31cb55f90efa721f26e5ce082c6fa5dd4b216bd6c6172e267b417d1d7be6c1c0db429c44afd7ed0116463278b25046c12da5cd7800840c34fe1b84e9e58393fab92e3c7f67be4a3f26014399a75ce54767a5def2f6f81d8207b6f1e6886abae55904dcbc48e121c24b80beeed21ea5769219ebf04e8653aa6281e19c108225b8fbbe12d293d37b9afb28f1e210f4df876c7d85bd027b2ea9e7a36247ce63e091372371b86ac45ffccf0f14afc54a98366b88a51faa27e10d2120d2fc98b511161bcc1e7f42c2cddc19d73b09586489839237db21d71fb2fbb1757e97c3441d8726eb85cc"}}}}, 0x0) (async)
ioctl$TUNSETSNDBUF(r6, 0x400454d4, &(0x7f00000007c0)=0x8) (async)
setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000800)={@ipv4={'\x00', '\xff\xff', @loopback}}, 0x14) (async)
socket$xdp(0x2c, 0x3, 0x0) (async)
unshare(0x80)
r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000880), r3)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r3, &(0x7f0000000980)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000940)={&(0x7f00000008c0)={0x48, r7, 0xc9e3e978e0ebdf10, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'pimreg1\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @empty}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x48}}, 0x2000c010) (async)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000009c0)={0x0, 0x1, 0x7, 0x100000001})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000a00)={0x0, 'veth1_to_hsr\x00', {}, 0x9}) (async)
r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000a80), r3)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r3, &(0x7f0000000b80)={&(0x7f0000000a40)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000b40)={&(0x7f0000000ac0)={0x44, r8, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @empty}]}, 0x44}, 0x1, 0x0, 0x0, 0x200480c0}, 0x40014)
ioctl$SIOCSIFHWADDR(r6, 0x8924, &(0x7f0000000bc0)={'veth1_virt_wifi\x00', @multicast})
sendmsg$NL80211_CMD_DISCONNECT(r0, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c40)={0x68, r5, 0x8, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x2, 0x28}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x18}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x33}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x2d}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x19}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x32}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x11}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x35}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x32}]}, 0x68}, 0x1, 0x0, 0x0, 0x80}, 0x8)
socket$rds(0x15, 0x5, 0x0) (async)
r9 = syz_genetlink_get_family_id$fou(&(0x7f0000000d80), r0)
sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000e80)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x2400080}, 0xc, &(0x7f0000000e40)={&(0x7f0000000dc0)={0x58, r9, 0x2, 0x70bd28, 0x25dfdbfb, {}, [@FOU_ATTR_IPPROTO={0x5, 0x3, 0x1}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_PEER_V6={0x14, 0x9, @dev={0xfe, 0x80, '\x00', 0x3f}}, @FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_PORT={0x6, 0x1, 0x4e24}, @FOU_ATTR_TYPE={0x5}]}, 0x58}, 0x1, 0x0, 0x0, 0x40}, 0x4000)

1m27.170872981s ago: executing program 4 (id=190):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101a40, 0x0)
ioctl$PPPIOCATTCHAN(r0, 0x40047438, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000005c000080090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000001810001180090001006c61737400000000400000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001400038010000080080003400000000204000280140000001000010000000000000000000084000a"], 0xe4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x80, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001d80)={r4, &(0x7f0000001d00), &(0x7f0000001d40)=@tcp6=r3}, 0x20)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x2, 0x1, 0x101, 0x0, 0x0, {0xf, 0x0, 0x2}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9a}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_ORIG={0xc, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_LABELS_MASK={0xc, 0x17, [0x7, 0x3ca]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0xba6e968ed4ad5eb5}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xe13}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x20000050)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r5, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x16}]}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
sendmmsg$sock(r1, &(0x7f0000002e80)=[{{&(0x7f00000017c0)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x80, 0x0}}, {{&(0x7f0000001980)=@ax25={{0x3, @default}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, 0x0}}], 0x2, 0x0)

1m14.27057253s ago: executing program 4 (id=190):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101a40, 0x0)
ioctl$PPPIOCATTCHAN(r0, 0x40047438, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000005c000080090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000001810001180090001006c61737400000000400000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001400038010000080080003400000000204000280140000001000010000000000000000000084000a"], 0xe4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x80, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001d80)={r4, &(0x7f0000001d00), &(0x7f0000001d40)=@tcp6=r3}, 0x20)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x2, 0x1, 0x101, 0x0, 0x0, {0xf, 0x0, 0x2}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9a}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_ORIG={0xc, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_LABELS_MASK={0xc, 0x17, [0x7, 0x3ca]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0xba6e968ed4ad5eb5}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xe13}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x20000050)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r5, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x16}]}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
sendmmsg$sock(r1, &(0x7f0000002e80)=[{{&(0x7f00000017c0)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x80, 0x0}}, {{&(0x7f0000001980)=@ax25={{0x3, @default}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, 0x0}}], 0x2, 0x0)

1m4.439100119s ago: executing program 4 (id=190):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101a40, 0x0)
ioctl$PPPIOCATTCHAN(r0, 0x40047438, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000005c000080090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000001810001180090001006c61737400000000400000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001400038010000080080003400000000204000280140000001000010000000000000000000084000a"], 0xe4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x80, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001d80)={r4, &(0x7f0000001d00), &(0x7f0000001d40)=@tcp6=r3}, 0x20)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x2, 0x1, 0x101, 0x0, 0x0, {0xf, 0x0, 0x2}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9a}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_ORIG={0xc, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_LABELS_MASK={0xc, 0x17, [0x7, 0x3ca]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0xba6e968ed4ad5eb5}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xe13}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x20000050)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r5, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x16}]}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
sendmmsg$sock(r1, &(0x7f0000002e80)=[{{&(0x7f00000017c0)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x80, 0x0}}, {{&(0x7f0000001980)=@ax25={{0x3, @default}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, 0x0}}], 0x2, 0x0)

1m3.889182022s ago: executing program 32 (id=190):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x101a40, 0x0)
ioctl$PPPIOCATTCHAN(r0, 0x40047438, 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000070000000900010073797a30000000005c000080090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000000d08000640ffffff00080003400000001810001180090001006c61737400000000400000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000001400038010000080080003400000000204000280140000001000010000000000000000000084000a"], 0xe4}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket(0x2, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x80, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000001d80)={r4, &(0x7f0000001d00), &(0x7f0000001d40)=@tcp6=r3}, 0x20)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x50, 0x2, 0x1, 0x101, 0x0, 0x0, {0xf, 0x0, 0x2}, [@CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9a}, @CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}, @CTA_SEQ_ADJ_ORIG={0xc, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_LABELS_MASK={0xc, 0x17, [0x7, 0x3ca]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0xba6e968ed4ad5eb5}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xe13}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x20000050)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$IPVS_CMD_ZERO(r2, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x38, r5, 0x0, 0x70bd25, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x14, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x16}]}, @IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x4800)
sendmmsg$sock(r1, &(0x7f0000002e80)=[{{&(0x7f00000017c0)=@nl=@kern={0x10, 0x0, 0x0, 0x2000}, 0x80, 0x0}}, {{&(0x7f0000001980)=@ax25={{0x3, @default}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, 0x0}}], 0x2, 0x0)

2.646014369s ago: executing program 3 (id=1091):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYRES16=r1, @ANYBLOB="010000020c00fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

2.48173863s ago: executing program 3 (id=1094):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000001c0)=@updpolicy={0xc4, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x4}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}, [@mark={0xc, 0x15, {0x35075c, 0x3}}]}, 0xc4}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000008c0)=ANY=[@ANYBLOB="84010000210001000000000000000000fc020000000000000000000000000000fe80000000000000000000000000003500000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000034011100ac14140c000000000000000000000000fc000000000000000000000000000001fc020000000000000000000000000000fe8000000000000000000000000000aaff0000000200000002000a00ac1414aa000000000000000000000000fe8000000000000000000000000000aa00000000000000000000000000000000ff020000000000000000000000000001ff020000003500000a000800ac"], 0x184}, 0x1, 0x0, 0x0, 0x5c073500}, 0x24004800)

2.462051044s ago: executing program 0 (id=1095):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r1)
r2 = socket$packet(0x11, 0x2, 0x300)
socket$inet(0x2, 0x5, 0x4) (async)
socket$inet(0x2, 0x5, 0x4)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="88b21948715ee5ef09f5f900e455091d2de35e03616f6226651840ac9f51aae329472ff7577f3a52d57c88a0d81f882181115919e440a34c678e31d4bbaabb496ab412e78dd7720bfe9edb4cce98a69d91001e8bf4fc9e63a5055e104a21e9c4bf878d8a8decca795139f1ef14689a8da4cce99ffdba087eb7115fee0d7d33822afb20eab555e7af0a6105dd4d9264c0afeec6f80c3972e817d24ec35b2fe1836e6ad35e4b3e3f387e0332fa15ba1d8d6909912868202e7499", @ANYRES16=r2, @ANYRES8=r1, @ANYRES32=r2], 0x40}, 0x1, 0x0, 0x0, 0x48000}, 0x0) (async)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=ANY=[@ANYBLOB="88b21948715ee5ef09f5f900e455091d2de35e03616f6226651840ac9f51aae329472ff7577f3a52d57c88a0d81f882181115919e440a34c678e31d4bbaabb496ab412e78dd7720bfe9edb4cce98a69d91001e8bf4fc9e63a5055e104a21e9c4bf878d8a8decca795139f1ef14689a8da4cce99ffdba087eb7115fee0d7d33822afb20eab555e7af0a6105dd4d9264c0afeec6f80c3972e817d24ec35b2fe1836e6ad35e4b3e3f387e0332fa15ba1d8d6909912868202e7499", @ANYRES16=r2, @ANYRES8=r1, @ANYRES32=r2], 0x40}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c01000013000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="050027000000000008008500", @ANYRES32=0x0, @ANYBLOB="140003006d6163766c616e31000000000000000008000a00", @ANYRES32=0x0, @ANYBLOB="e8001a8048000a8014000700ff02000000000000000000"], 0x15c}}, 0x0)

2.338050508s ago: executing program 3 (id=1096):
socket$tipc(0x1e, 0x5, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @void, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @remote, @remote, @local, @private=0xa010100}}, 0x1c)

2.144139539s ago: executing program 1 (id=1098):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @dev}, @in={0x2, 0x0, @local}, @in={0x2, 0x0, @multicast1}], 0x40)
sendto$inet(r0, &(0x7f0000000080)="d301a5305d2c228e0971beb36946c576fa379f", 0x13, 0x0, &(0x7f0000000000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x6e}}, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64\x00'}, 0x58)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r2)
sendmsg$NLBL_CALIPSO_C_REMOVE(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000d80)={0x1c, r3, 0x1, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008080}, 0x4040)
accept4(r1, 0x0, 0x0, 0x0)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', <r5=>0x0})
r6 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r6, &(0x7f0000000080)={0x1d, r5}, 0x10)
r7 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r7, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x5}, 0x10)
sendmsg$tipc(r7, &(0x7f00000002c0)={&(0x7f0000000000)=@name={0x1e, 0x2, 0x3, {{}, 0x4}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x40000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r5, {0x10, 0x4}, {}, {0x5}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
recvmsg$can_bcm(r6, &(0x7f0000000b00)={&(0x7f0000000180)=@vsock={0x28, 0x0, 0x0, @my}, 0x80, &(0x7f0000000980)=[{&(0x7f00000004c0)=""/250, 0xfa}, {0x0}], 0x2}, 0x2200)

2.085902018s ago: executing program 0 (id=1099):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3800000010"], 0x38}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x32, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=0xffffffffffffffff, 0x4)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x9, 0x3, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

2.028522801s ago: executing program 3 (id=1100):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000740)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001400028005000d000000000005000e000e00"], 0x44}, 0x1, 0x0, 0x0, 0x84}, 0x0)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000000), &(0x7f0000000080)=0x8)
bind$unix(r0, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
close(r0)
socket$unix(0x1, 0x2, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0) (async)
sendmsg$nl_route(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000740)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002400128009000100626f6e64000000001400028005000d000000000005000e000e00"], 0x44}, 0x1, 0x0, 0x0, 0x84}, 0x0) (async)
socket$inet6_sctp(0xa, 0x0, 0x84) (async)
getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r2, 0x84, 0x18, &(0x7f0000000000), &(0x7f0000000080)=0x8) (async)
bind$unix(r0, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e24}, 0x6e) (async)
connect$unix(r0, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
close(r0) (async)

1.957088135s ago: executing program 0 (id=1103):
socket$inet6_sctp(0xa, 0x1, 0x84)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
connect$vsock_stream(r0, 0x0, 0x0)
ioctl$TUNGETFILTER(r0, 0x801054db, &(0x7f0000000000)=""/12)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x3, 0x4, &(0x7f0000001240)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x9c, &(0x7f0000000c40)=""/156, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r2, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
listen(r4, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0x16, 0x0, &(0x7f0000000000)="b9ff03076044238c9e9e15f088a84cb688a84d720800", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_init_net_socket$ax25(0x3, 0x3, 0x7)
r5 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
bind$802154_raw(r5, &(0x7f0000000000)={0x24, @long}, 0x8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_ro(r6, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
preadv(r7, &(0x7f0000000100)=[{&(0x7f0000000180)=""/56, 0x38}], 0x1, 0x726, 0x7)
r8 = socket$netlink(0x10, 0x3, 0x0)
r9 = syz_init_net_socket$llc(0x1a, 0x802, 0x0)
bind$llc(r9, &(0x7f0000000000)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x10)
close(r9)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newlink={0x3c, 0x10, 0x403, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x88afa5b4, 0x40}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @batadv={{0xb}, {0x4}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x3}]}, 0x3c}}, 0x0)
r11 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r11, &(0x7f00000005c0)={0x26, 'hash\x00', 0x0, 0x0, 'streebog256-generic\x00'}, 0x58)
r12 = accept4(r8, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f0000013a40)={0x0, 0x0, &(0x7f0000013a00)={0x0}}, 0x0)
syz_init_net_socket$ax25(0x3, 0x3, 0x6)
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000040)=0x1)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.875948105s ago: executing program 5 (id=1104):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYRES16=r1, @ANYBLOB="010000020c00fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

1.734011472s ago: executing program 5 (id=1105):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000000)={@remote, @multicast1}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000fcffffff37000100040000009500000000000000b34631100fbbae95a401df424b2c910c054c14a506fc1a9babaa990e9dfd6761a031d3cede538b94730a4ae2cbe393f1e5c779c2dc274945adc3e00c0a8c37db06091a99f1415a159bc186f76d7fb9ca3fb698b328abfe5f389b7e1c7dba1d24eaffbbc37ed9f4fe9e4c716065026c416c3398c9889bc2130c7086f7650acb7237d2f1b0f646c08b4a1ee951d2be1c"], &(0x7f00000005c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

1.682005297s ago: executing program 3 (id=1106):
r0 = socket$nl_route(0x10, 0x3, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket(0xa, 0x3, 0x3a)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01040000000000000000010000000900010073797a3100000000e8010000030a01020000000000000000010000000900030073797a3200000000280004800800024000000000080001400000000514000300626174616476300000000000000000000900010073797a31000000000900010073797a3100000000340008800c00024000000000000080010c00024000000000000000040c00014000000000000000000c00014000000000000000014c000480080002404c82f47c080001400000000008000140000000010800014000000003080002404f32945f080001400000000308000140000000020800024019885f270800014000000003fd000c00a03ac330bf11a2145946e6d945deece8485ee69dbc29a8dd5dbce127f829a3adf5c4171b4bedbbc9b913a67b9ee679020f0200000064419faae0136b893d91d95b1174f115798a1abfdc06983fb83f2116a85a00dd35cdf9d8f81683e5e2ebcca132a712e0be44c12c02ac92fbbb86ed717ce0cbd6a0134f899e23ca6d2f063d26be86555cc0e9c7a25d77e6c0f4217794be96b5d797e3116d874c3adfb096e0567ec28bd1e4d8d6713109695f1f3a877d89d20e19304501aeb851d14c4f9b2d769d554fe5308810d19bb040c1977bce50b894f2c45a1f0e80c8256b6dcb072f9d91d94a67bba9f62eb2f192fa4b3786d9a774b99aa332dfbb000000080007006e6174002c000000050a0102000000000000000001"], 0x25c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=@newlink={0x28, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x93, 0x40000}, [@IFLA_EVENT={0x8, 0x2c, 0x4}]}, 0x28}}, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x8, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000fcffffff0000000080000000850000002300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000800000008500000086000000950000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x34, r4, 0x4, 0x70bd2c, 0x25dfdbff, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_PAN_ID={0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004040}, 0x20000000)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r5 = accept$nfc_llcp(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)=0x60)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000480)=@base={0x2, 0x4, 0x5, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r7}, 0xc)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00'})

1.523279182s ago: executing program 5 (id=1107):
openat$tun(0xffffffffffffff9c, 0x0, 0x3e6343, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, 0x0, 0x40004)
syz_genetlink_get_family_id$nfc(0x0, r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, &(0x7f0000000180))
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001478006b5b00000002"], 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0xffff8000})
ioctl(r2, 0x8b22, &(0x7f0000000040))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000a00), r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, 0xffffffffffffffff, 0x0, 0x6}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x6a040000)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)

1.317937632s ago: executing program 2 (id=1108):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$NL80211_CMD_GET_COALESCE(r1, 0x0, 0x20008081)
sendto$inet6(r0, &(0x7f0000000180), 0x0, 0x8000, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)=' ', 0x1}], 0x1}}], 0x1, 0x40080)
close(0x3)

1.138127889s ago: executing program 2 (id=1109):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x1c, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500ffffffd0000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000006000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f20000008500000082000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

1.045983713s ago: executing program 1 (id=1110):
socket$tipc(0x1e, 0x5, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(0xffffffffffffffff, &(0x7f0000000180)={@void, @void, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @remote, @remote, @local, @private=0xa010100}}, 0x1c)

968.393107ms ago: executing program 2 (id=1111):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380000000101010300000000000000000a0000000c00198008000100ad000000180001801400018008000100e000000208000200ac1e0101"], 0x38}}, 0x0) (async)
r1 = socket$inet_tcp(0x2, 0x1, 0x0) (async)
r2 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000080), 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0f000000081000000400000012000000ca820000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/11, @ANYRESDEC=r2, @ANYBLOB='\a\x00\b\x00'], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r3, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r1}, 0x20) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000005000000010001000900000001000000deac397036ac80184bb0958427d54c7743905fc0698865336ff4ddf1d8209877b82a1a923b0262e8b3d3398d7ac955723c87be61d53ad62c57e8310b306bf25fa131e0479472ad89499f12d5f97c9850c35d9a310af84094b606d4a9bf4eee16249cf6c4386c920b1505fbc5ab5f40f68f2e8fb113061a760f180fad97205d8bde9b52", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00'}) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r5, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df33c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

731.701268ms ago: executing program 5 (id=1112):
r0 = socket$inet6(0xa, 0x2, 0x3a)
socket$caif_seqpacket(0x25, 0x5, 0x1)
sendmmsg$inet6(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)="a000ecf1965e241c", 0x8}, {0x0}], 0x2}}], 0x1, 0x8800)

669.807268ms ago: executing program 2 (id=1113):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000001080), r0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000010c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_DEVKEY(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000540)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdf251d00000024002f8008000100060000000c0002000202aaaaaaaaaaaa0c000380080001000200000008000300", @ANYRES32=r2, @ANYBLOB="60d94eb653495387a069866f9e86d944a9f1c843d01f1fd02390780000000000000000000000c6126d99ce54069e3b9f62e009055f880c1ccde89a381d6420fce5d8b4ad595a367bfc13bcdc13a4be3117594eef26ce90ef67df7d721a46c7cbae04e6e354c1ea7bfd8a06c8155482bda23b30d9895afa6e178416cbbd53cbd085effbba53"], 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x20000080)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
unshare(0x22020600)
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x4, 0x2}, 0xe)
r4 = accept4$bt_l2cap(r3, &(0x7f0000000640)={0x1f, 0x0, @fixed}, &(0x7f0000000680)=0xe, 0x80000)
setsockopt$bt_BT_DEFER_SETUP(r4, 0x112, 0x7, &(0x7f00000006c0)=0x1, 0x4)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_ADDRFORM(r5, 0x29, 0x1, &(0x7f0000000500), 0x4)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r3, 0x6, 0x1, &(0x7f00000004c0)={0x7, 0x3ff, 0x50, 0xef, 0xe9, 0x91, 0x31d2}, 0xc)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @none, 0x7ff, 0x2}, 0xe)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000740)={{{@in=@remote, @in=@remote}}, {{@in6=@private0}, 0x0, @in6=@mcast2}}, &(0x7f0000000bc0)=0xfffffffffffffd2e)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000900)={'erspan0\x00', &(0x7f0000000880)={'ip_vti0\x00', 0x0, 0x8, 0x8008, 0xfffffff7, 0x7, {{0x11, 0x4, 0x1, 0xe, 0x44, 0x67, 0x0, 0x9, 0x29, 0x0, @remote, @rand_addr=0x64010101, {[@timestamp_prespec={0x44, 0x14, 0xd4, 0x3, 0xf, [{@multicast2, 0x9}, {@dev={0xac, 0x14, 0x14, 0x35}, 0x9}]}, @timestamp_addr={0x44, 0xc, 0x9c, 0x1, 0xb, [{@rand_addr=0x64010101, 0x81}]}, @generic={0x44, 0xf, "b65d8692d020894b5dfbcb7459"}]}}}}})
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000940)={{{@in=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0}}, {{@in6=@initdev}, 0x0, @in6=@mcast1}}, &(0x7f0000000a40)=0xe8)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000d00)={&(0x7f0000000a80)=@expire={0x11c, 0x18, 0x400, 0x70bd2d, 0x25dfdbfd, {{{@in6=@mcast2, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4f, 0x0, 0x4e22, 0x5, 0xa, 0x60, 0xc0, 0x2f, 0x0, r6}, {@in=@rand_addr=0x64010100, 0x4d2, 0x32}, @in6=@mcast1, {0x5, 0x3, 0x8, 0x7, 0xb5, 0x4, 0x4, 0x91}, {0x7f, 0x7, 0x400, 0x8}, {0x9, 0xd, 0x7}, 0x70bd2b, 0x3501, 0x2, 0x4, 0xae}, 0xfb}, [@lastused={0xc, 0xf, 0x4}, @mark={0xc, 0x15, {0x35075c, 0xffffffff}}, @mark={0xc, 0x15, {0x35075a}}]}, 0x11c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000050)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0xb19366062a5e1df1, 0xffffffffffffffff, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x9, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], <r7=>0x0, 0xba, &(0x7f0000000180)=[{}], 0x8, 0x10, &(0x7f00000001c0), &(0x7f00000002c0), 0x8, 0xa4, 0x8, 0x8, &(0x7f0000000300)}}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_emit_ethernet(0x7a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd6015690900442f10fc"], 0x0)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0xf5ffffff, &(0x7f0000000000)='%', 0x0, 0xd01, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001080)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x101, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10, r7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

627.080326ms ago: executing program 0 (id=1114):
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x2d1, 0xfffffffffffffd85, &(0x7f00000000c0)="b9ff03030018698cb89e40f086dd6000000e00001100630677", 0x0, 0x100, 0x2000000, 0x0, 0x0, &(0x7f0000000440), &(0x7f0000000000), 0x300}, 0x28)

617.420164ms ago: executing program 1 (id=1115):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), r0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYRES16=r1, @ANYBLOB="010000020c00fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

495.287352ms ago: executing program 1 (id=1116):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@ipv6_newroute={0x1c, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0xff, 0x0, 0xff, 0x6}}, 0x1c}, 0x1, 0x0, 0x0, 0x84}, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x2c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x48864}, [@IFLA_BROADCAST={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x39}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x0)

274.027769ms ago: executing program 5 (id=1117):
socket$isdn_base(0x22, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x21, 0x0, 0x0)
shutdown(r0, 0x1)
recvmmsg(r0, &(0x7f0000007400)=[{{0x0, 0x0, &(0x7f0000004a00)=[{&(0x7f0000000a00)=""/4095, 0xfff}], 0x1}}, {{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000840)=""/138, 0x8a}, {&(0x7f0000000180)=""/100, 0x64}, {&(0x7f0000000900)=""/200, 0xc8}, {&(0x7f00000020c0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/104, 0x68}, {&(0x7f0000001a00)=""/143, 0x8f}, {&(0x7f0000000100)=""/36, 0x24}], 0x7, &(0x7f0000000380)=""/7, 0x7}, 0x5ca}, {{&(0x7f0000001ac0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000001dc0)=[{&(0x7f0000001b40)=""/134, 0x86}, {&(0x7f00000030c0)=""/4096, 0x1000}, {&(0x7f0000001c00)=""/146, 0x92}, {&(0x7f0000004a40)=""/4096, 0x1000}, {&(0x7f0000005a40)=""/4096, 0x1000}, {&(0x7f0000001cc0)=""/58, 0x3a}, {&(0x7f0000001d40)=""/74, 0x4a}], 0x7, &(0x7f0000001e40)=""/164, 0xa4}, 0x4}, {{&(0x7f00000040c0)=@pppol2tpin6, 0x80, &(0x7f00000042c0)=[{&(0x7f0000001f00)=""/6, 0x6}, {&(0x7f0000004140)=""/73, 0x49}, {&(0x7f0000001f80)=""/54, 0x36}, {&(0x7f00000041c0)=""/28, 0x1c}, {&(0x7f0000004200)=""/61, 0x3d}, {&(0x7f0000007040)=""/121, 0x79}], 0x6, &(0x7f0000004340)=""/110, 0x6e}, 0x8}], 0x4, 0x0, 0x0)

273.690974ms ago: executing program 0 (id=1118):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="02"], 0x33fe0}, 0x1, 0x7}, 0x8040)
bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
ioctl$SIOCX25SFACILITIES(0xffffffffffffffff, 0x89e3, &(0x7f0000000080)={0x44, 0x800000, 0x8, 0x7, 0x2})
write$bt_hci(r0, &(0x7f0000000080)=ANY=[], 0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x20, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x10001}, [@ldst={0x1, 0x0, 0x4, 0x2, 0x1}]}, &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb269, @void, @value}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f0000000140)={'ip6_vti0\x00', <r2=>0x0, 0x29, 0x91, 0x9, 0x4, 0x10, @mcast2, @loopback, 0x8000, 0x7, 0x8, 0xffff0000}})
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000200), 0x4)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)={0x1b, 0x0, 0x0, 0x7ff, 0x0, 0xffffffffffffffff, 0x7, '\x00', r2, r3, 0x0, 0x1, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='/proc/1/\x00\x82q\xee\xe5\xa0\xbd\xc2\x98#YP\xee\x9c2G\xf0\x81x\x97'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup(r5, &(0x7f0000000040)='syz1\x00', 0x1ff)
getsockopt$inet6_tcp_buf(r4, 0x6, 0x1f, &(0x7f0000000080)=""/79, &(0x7f0000000100)=0x4f)
socket$inet(0x2, 0x2, 0x1)

238.267891ms ago: executing program 2 (id=1119):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$NL80211_CMD_GET_COALESCE(r1, 0x0, 0x20008081)
sendto$inet6(r0, &(0x7f0000000180), 0x0, 0x8000, &(0x7f0000000480)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$sock(r0, &(0x7f0000000900)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000080)=' ', 0x1}], 0x1}}], 0x1, 0x40080)
close(0x3)

221.7861ms ago: executing program 1 (id=1120):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000040)={0x4, [0x0, 0x0, <r2=>0x0, 0x0]}, &(0x7f0000000080)=0x14)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000000c0)={r2, 0xc, 0x30}, 0xc)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @bond={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BOND_DOWNDELAY={0x8, 0x1f}, @IFLA_BOND_ARP_IP_TARGET={0x4}]}}}]}, 0x40}}, 0x0)

113.909432ms ago: executing program 0 (id=1121):
connect$inet(0xffffffffffffffff, 0x0, 0x0)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
socket$inet6(0xa, 0x2, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$netlink(0x10, 0x3, 0x0)
setsockopt$RDS_CONG_MONITOR(0xffffffffffffffff, 0x114, 0x6, &(0x7f00000003c0)=0x1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
ppoll(&(0x7f0000000500)=[{r0}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

97.667749ms ago: executing program 5 (id=1122):
openat$tun(0xffffffffffffff9c, 0x0, 0x3e6343, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, 0x0, 0x40004)
syz_genetlink_get_family_id$nfc(0x0, r0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, &(0x7f0000000180))
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb010018000000000000001478006b5b00000002"], 0x0, 0x2e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0xffff8000})
ioctl(r2, 0x8b22, &(0x7f0000000040))
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='contention_end\x00', r3}, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000a00), r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, 0xffffffffffffffff, 0x0, 0x6}, 0x18)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x6a040000)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r4, 0x0)

60.750058ms ago: executing program 2 (id=1123):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x2c, &(0x7f0000000080)=0x84, 0x4)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000d30000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
mmap(&(0x7f0000ce2000/0x4000)=nil, 0x4000, 0x2000006, 0x12, r1, 0x913e0000)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a010400000000000000000200000044000480400001800e000100627974656f726465720000002c000280080001400000000f08000240000000000800044000000000080003400000000008000540000000080900010073797a30000000000900020073797a32"], 0x98}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$pppoe(0x18, 0x1, 0x0)
r6 = epoll_create1(0x0)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='contention_begin\x00', r8, 0x0, 0xffffff7ffffff002}, 0x18)
select(0x40, &(0x7f0000000340)={0x1f, 0x0, 0x0, 0x4, 0xfffffffffffffffc, 0x2e787ec3, 0x100}, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r6, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000400)={0xa})
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x4c}}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="480000000906010200000000cb5507295fe2c4e5bab64f1330e387000000875980017b114a90c133da70c4c7000200ffff200007800c00018008000140e000000208000a40"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
sendmmsg(r5, &(0x7f0000000380)=[{{&(0x7f0000000580)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x4e20, @local}, 0x3, 0x4, 0x2, 0x4}}, 0x80, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x400c0)
r11 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r11, &(0x7f0000000d40)={&(0x7f0000000000)={0x2, 0x10, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e068000000110000000000000000dbc790ad000000fc0000000000000014000000000000000000000034"], 0x68}, 0x40044)
ioctl$sock_kcm_SIOCKCMUNATTACH(r11, 0x89e1, &(0x7f0000000000)={r0})
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000691000/0x4000)=nil, 0x4000, 0x3, 0x28011, r12, 0x0)

1.914472ms ago: executing program 3 (id=1124):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="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"], 0x4594}}, 0x20000000)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'rose0\x00', 0x10b})
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000001580)=ANY=[], 0x32600)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000800)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0x40305829, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000140)=0x1000)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x6c, 0x2, 0x6, 0x201, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @local}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x80ffffff}}, @IPSET_ATTR_NETMASK={0x5, 0x14, 0x20}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x6c}}, 0x0)

0s ago: executing program 1 (id=1125):
socket$tipc(0x1e, 0x5, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x3, 0x6}, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000180)={@void, @void, @arp=@ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @remote, @remote, @local, @private=0xa010100}}, 0x1c)

kernel console output (not intermixed with test programs):

dress (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.262808][ T5924] syz.3.4 uses obsolete (PF_INET,SOCK_PACKET)
[   93.287859][ T1334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.289370][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.308948][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.320299][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.333799][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.402855][ T5837] veth0_macvtap: entered promiscuous mode
[   93.423069][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.455576][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.475444][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.487841][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.500089][ T5839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   93.511817][ T5839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.524282][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.568735][ T5929] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   93.578595][ T5837] veth1_macvtap: entered promiscuous mode
[   93.605833][ T5839] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.637607][ T5839] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.658392][ T5839] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.681358][ T5839] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.742753][ T5931] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1'.
[   93.869919][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.898272][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.915673][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.931893][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.943775][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.966842][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.984392][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.998925][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.000059][ T5942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.011764][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.021746][ T5942] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.028643][ T5938] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'.
[   94.039392][ T5942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.043142][ T5938] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3'.
[   94.052359][ T5942] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.080077][ T5938] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3'.
[   94.089417][ T5841] Bluetooth: hci0: command tx timeout
[   94.095519][ T5845] Bluetooth: hci1: command tx timeout
[   94.101896][ T5942] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.110795][ T5942] netlink: 24 bytes leftover after parsing attributes in process `syz.3.8'.
[   94.135460][ T5841] Bluetooth: hci4: command tx timeout
[   94.141007][ T5845] Bluetooth: hci3: command tx timeout
[   94.144141][   T55] Bluetooth: hci2: command tx timeout
[   94.165110][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.209822][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.241649][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.252364][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.275318][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.303196][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.325204][ T5837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.336599][ T5837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.348529][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.461353][ T5837] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.492002][ T5952] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[   94.501983][ T5837] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.528479][ T5837] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.555422][ T5837] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.721409][ T4481] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.752356][ T4481] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.918877][ T5958] warning: `syz.2.11' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   94.961750][ T5956] bridge_slave_0: left allmulticast mode
[   94.967854][ T5958] netlink: 'syz.2.11': attribute type 10 has an invalid length.
[   94.968132][ T5956] bridge_slave_0: left promiscuous mode
[   94.982804][ T5956] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.001680][ T5956] bridge_slave_1: left allmulticast mode
[   95.009319][ T5956] bridge_slave_1: left promiscuous mode
[   95.016053][ T5956] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.032315][ T5956] bond0: (slave bond_slave_0): Releasing backup interface
[   95.062908][ T5956] bond0: (slave bond_slave_1): Releasing backup interface
[   95.124067][ T5956] team0: Port device team_slave_0 removed
[   95.173597][ T5956] team0: Port device team_slave_1 removed
[   95.184867][ T5956] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.198453][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_0
[   95.218096][ T5956] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.235277][ T5956] batman_adv: batadv0: Removing interface: batadv_slave_1
[   95.336939][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.344298][ T5967] netlink: 'syz.3.12': attribute type 1 has an invalid length.
[   95.371371][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.388929][ T5958] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   95.428784][ T5956] syz.2.11 (5956) used greatest stack depth: 19256 bytes left
[   95.453604][ T5967] batadv1: entered promiscuous mode
[   95.462209][ T5967] batadv1: entered allmulticast mode
[   95.780234][ T4481] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.804598][ T4481] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.913835][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.925896][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.314973][ T5987] geneve2: entered promiscuous mode
[   96.362729][ T5987] geneve2: entered allmulticast mode
[   96.534536][ T5989] FAULT_INJECTION: forcing a failure.
[   96.534536][ T5989] name failslab, interval 1, probability 0, space 0, times 1
[   96.575804][ T5989] CPU: 0 UID: 0 PID: 5989 Comm: syz.4.5 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[   96.575834][ T5989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   96.575850][ T5989] Call Trace:
[   96.575857][ T5989]  <TASK>
[   96.575865][ T5989]  dump_stack_lvl+0x241/0x360
[   96.575913][ T5989]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.575942][ T5989]  ? __pfx__printk+0x10/0x10
[   96.575968][ T5989]  ? __mutex_trylock_common+0x184/0x2e0
[   96.576005][ T5989]  should_fail_ex+0x424/0x570
[   96.576037][ T5989]  should_failslab+0xac/0x100
[   96.576074][ T5989]  __kmalloc_cache_noprof+0x73/0x370
[   96.576102][ T5989]  ? __hw_addr_add_ex+0x1fb/0x760
[   96.576132][ T5989]  __hw_addr_add_ex+0x1fb/0x760
[   96.576166][ T5989]  dev_addr_init+0x159/0x240
[   96.576196][ T5989]  ? __pfx_dev_addr_init+0x10/0x10
[   96.576228][ T5989]  ? sized_strscpy+0x9a/0x2b0
[   96.576259][ T5989]  alloc_netdev_mqs+0x307/0x1210
[   96.576285][ T5989]  ? __pfx_vxlan_setup+0x10/0x10
[   96.576318][ T5989]  rtnl_create_link+0x2f2/0xea0
[   96.576357][ T5989]  rtnl_newlink_create+0x2f2/0xc30
[   96.576382][ T5989]  ? __mutex_lock+0xbe3/0x10c0
[   96.576412][ T5989]  ? __mutex_lock+0x5f3/0x10c0
[   96.576434][ T5989]  ? __pfx_rtnl_newlink_create+0x10/0x10
[   96.576461][ T5989]  ? __pfx___mutex_lock+0x10/0x10
[   96.576496][ T5989]  ? ns_capable+0x8a/0xf0
[   96.576521][ T5989]  rtnl_newlink+0x18b0/0x1fe0
[   96.576564][ T5989]  ? __pfx_rtnl_newlink+0x10/0x10
[   96.576580][ T5989]  ? dev_hard_start_xmit+0x2d9/0x830
[   96.576604][ T5989]  ? __dev_queue_xmit+0x1b80/0x3f60
[   96.576629][ T5989]  ? __netlink_deliver_tap+0x561/0x7f0
[   96.576648][ T5989]  ? netlink_deliver_tap+0x19d/0x1b0
[   96.576666][ T5989]  ? netlink_unicast+0x7c6/0x9a0
[   96.576692][ T5989]  ? netlink_sendmsg+0x8c3/0xcd0
[   96.576711][ T5989]  ? __sock_sendmsg+0x221/0x270
[   96.576739][ T5989]  ? ____sys_sendmsg+0x523/0x860
[   96.576762][ T5989]  ? __sys_sendmmsg+0x3a0/0x7b0
[   96.576784][ T5989]  ? __x64_sys_sendmmsg+0xa0/0xb0
[   96.576807][ T5989]  ? do_syscall_64+0xf3/0x230
[   96.576828][ T5989]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.576886][ T5989]  ? kasan_quarantine_put+0xdc/0x230
[   96.576905][ T5989]  ? lockdep_hardirqs_on+0x9d/0x150
[   96.576930][ T5989]  ? nlmon_xmit+0xaf/0x100
[   96.576960][ T5989]  ? __local_bh_enable_ip+0x168/0x200
[   96.576977][ T5989]  ? lockdep_hardirqs_on+0x9d/0x150
[   96.577007][ T5989]  ? aa_get_newest_label+0x101/0x6f0
[   96.577043][ T5989]  ? __lock_acquire+0xad5/0xd80
[   96.577116][ T5989]  ? __pfx_rtnl_newlink+0x10/0x10
[   96.577139][ T5989]  rtnetlink_rcv_msg+0x80f/0xd70
[   96.577156][ T5989]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[   96.577182][ T5989]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   96.577211][ T5989]  ? ref_tracker_free+0x63e/0x7e0
[   96.577245][ T5989]  netlink_rcv_skb+0x208/0x480
[   96.577267][ T5989]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   96.577289][ T5989]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   96.577332][ T5989]  ? netlink_deliver_tap+0x2e/0x1b0
[   96.577356][ T5989]  ? netlink_deliver_tap+0x2e/0x1b0
[   96.577380][ T5989]  netlink_unicast+0x7f8/0x9a0
[   96.577421][ T5989]  ? __pfx_netlink_unicast+0x10/0x10
[   96.577453][ T5989]  ? skb_put+0x114/0x1f0
[   96.577482][ T5989]  netlink_sendmsg+0x8c3/0xcd0
[   96.577518][ T5989]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.577544][ T5989]  ? aa_sock_msg_perm+0x91/0x160
[   96.577578][ T5989]  ? __pfx_netlink_sendmsg+0x10/0x10
[   96.577598][ T5989]  __sock_sendmsg+0x221/0x270
[   96.577634][ T5989]  ____sys_sendmsg+0x523/0x860
[   96.577670][ T5989]  ? __pfx_____sys_sendmsg+0x10/0x10
[   96.577691][ T5989]  ? __fget_files+0x2a/0x420
[   96.577723][ T5989]  ? __fget_files+0x2a/0x420
[   96.577763][ T5989]  __sys_sendmmsg+0x3a0/0x7b0
[   96.577802][ T5989]  ? __pfx___sys_sendmmsg+0x10/0x10
[   96.577862][ T5989]  ? rcu_read_lock_any_held+0xbb/0x160
[   96.577886][ T5989]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   96.577912][ T5989]  ? vfs_write+0xb29/0xd10
[   96.577942][ T5989]  ? ksys_write+0x24e/0x2d0
[   96.577965][ T5989]  ? __mutex_unlock_slowpath+0x229/0x800
[   96.578016][ T5989]  ? ksys_write+0x275/0x2d0
[   96.578047][ T5989]  __x64_sys_sendmmsg+0xa0/0xb0
[   96.578084][ T5989]  do_syscall_64+0xf3/0x230
[   96.578111][ T5989]  ? clear_bhb_loop+0x45/0xa0
[   96.578133][ T5989]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.578156][ T5989] RIP: 0033:0x7f573458e169
[   96.578178][ T5989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.578193][ T5989] RSP: 002b:00007f5735325038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   96.578214][ T5989] RAX: ffffffffffffffda RBX: 00007f57347b5fa0 RCX: 00007f573458e169
[   96.578227][ T5989] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000004
[   96.578239][ T5989] RBP: 00007f5735325090 R08: 0000000000000000 R09: 0000000000000000
[   96.578251][ T5989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.578261][ T5989] R13: 0000000000000000 R14: 00007f57347b5fa0 R15: 00007ffea627afa8
[   96.578291][ T5989]  </TASK>
[   96.586149][ T5984] syz.3.15 (5984) used greatest stack depth: 18896 bytes left
[   97.148914][ T3082] cfg80211: failed to load regulatory.db
[   97.172110][ T5995] Bluetooth: MGMT ver 1.23
[   98.672494][ T6034] netlink: 'syz.2.25': attribute type 3 has an invalid length.
[   99.410269][ T6054] __nla_validate_parse: 136 callbacks suppressed
[   99.410290][ T6054] netlink: 176 bytes leftover after parsing attributes in process `syz.1.31'.
[   99.514779][ T6056] netlink: 16 bytes leftover after parsing attributes in process `syz.0.27'.
[   99.541615][ T6057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.32'.
[   99.560906][ T6057] netlink: 12 bytes leftover after parsing attributes in process `syz.3.32'.
[   99.600733][ T6057] FAULT_INJECTION: forcing a failure.
[   99.600733][ T6057] name failslab, interval 1, probability 0, space 0, times 0
[   99.610567][ T6056] Zero length message leads to an empty skb
[   99.655089][ T6057] CPU: 0 UID: 0 PID: 6057 Comm: syz.3.32 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[   99.655124][ T6057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   99.655137][ T6057] Call Trace:
[   99.655146][ T6057]  <TASK>
[   99.655154][ T6057]  dump_stack_lvl+0x241/0x360
[   99.655192][ T6057]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.655222][ T6057]  ? __pfx__printk+0x10/0x10
[   99.655254][ T6057]  ? __pfx___might_resched+0x10/0x10
[   99.655285][ T6057]  should_fail_ex+0x424/0x570
[   99.655317][ T6057]  should_failslab+0xac/0x100
[   99.655347][ T6057]  __kvmalloc_node_noprof+0x170/0x5a0
[   99.655376][ T6057]  ? alloc_netdev_mqs+0x92c/0x1210
[   99.655412][ T6057]  alloc_netdev_mqs+0x92c/0x1210
[   99.655450][ T6057]  rtnl_create_link+0x2f2/0xea0
[   99.655490][ T6057]  rtnl_newlink_create+0x2f2/0xc30
[   99.655514][ T6057]  ? __mutex_lock+0xbe3/0x10c0
[   99.655544][ T6057]  ? __mutex_lock+0x5f3/0x10c0
[   99.655567][ T6057]  ? __pfx_rtnl_newlink_create+0x10/0x10
[   99.655594][ T6057]  ? __pfx___mutex_lock+0x10/0x10
[   99.655629][ T6057]  ? ns_capable+0x8a/0xf0
[   99.655653][ T6057]  rtnl_newlink+0x18b0/0x1fe0
[   99.655696][ T6057]  ? __pfx_rtnl_newlink+0x10/0x10
[   99.655713][ T6057]  ? dev_hard_start_xmit+0x2d9/0x830
[   99.655737][ T6057]  ? __dev_queue_xmit+0x1b80/0x3f60
[   99.655770][ T6057]  ? __netlink_deliver_tap+0x561/0x7f0
[   99.655790][ T6057]  ? netlink_deliver_tap+0x19d/0x1b0
[   99.655808][ T6057]  ? netlink_unicast+0x7c6/0x9a0
[   99.655836][ T6057]  ? netlink_sendmsg+0x8c3/0xcd0
[   99.655855][ T6057]  ? __sock_sendmsg+0x221/0x270
[   99.655883][ T6057]  ? ____sys_sendmsg+0x523/0x860
[   99.655906][ T6057]  ? __sys_sendmmsg+0x3a0/0x7b0
[   99.655929][ T6057]  ? __x64_sys_sendmmsg+0xa0/0xb0
[   99.655953][ T6057]  ? do_syscall_64+0xf3/0x230
[   99.655974][ T6057]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.656034][ T6057]  ? kasan_quarantine_put+0xdc/0x230
[   99.656055][ T6057]  ? lockdep_hardirqs_on+0x9d/0x150
[   99.656080][ T6057]  ? nlmon_xmit+0xaf/0x100
[   99.656110][ T6057]  ? __local_bh_enable_ip+0x168/0x200
[   99.656128][ T6057]  ? lockdep_hardirqs_on+0x9d/0x150
[   99.656158][ T6057]  ? aa_get_newest_label+0x101/0x6f0
[   99.656194][ T6057]  ? __lock_acquire+0xad5/0xd80
[   99.656238][ T6057]  ? __pfx_rtnl_newlink+0x10/0x10
[   99.656260][ T6057]  rtnetlink_rcv_msg+0x80f/0xd70
[   99.656279][ T6057]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[   99.656305][ T6057]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   99.656333][ T6057]  ? ref_tracker_free+0x63e/0x7e0
[   99.656368][ T6057]  netlink_rcv_skb+0x208/0x480
[   99.656390][ T6057]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   99.656412][ T6057]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   99.656452][ T6057]  ? netlink_deliver_tap+0x2e/0x1b0
[   99.656476][ T6057]  ? netlink_deliver_tap+0x2e/0x1b0
[   99.656500][ T6057]  netlink_unicast+0x7f8/0x9a0
[   99.656541][ T6057]  ? __pfx_netlink_unicast+0x10/0x10
[   99.656574][ T6057]  ? skb_put+0x114/0x1f0
[   99.656603][ T6057]  netlink_sendmsg+0x8c3/0xcd0
[   99.656639][ T6057]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.656666][ T6057]  ? aa_sock_msg_perm+0x91/0x160
[   99.656701][ T6057]  ? __pfx_netlink_sendmsg+0x10/0x10
[   99.656721][ T6057]  __sock_sendmsg+0x221/0x270
[   99.656764][ T6057]  ____sys_sendmsg+0x523/0x860
[   99.656801][ T6057]  ? __pfx_____sys_sendmsg+0x10/0x10
[   99.656825][ T6057]  ? __fget_files+0x2a/0x420
[   99.656860][ T6057]  ? __fget_files+0x2a/0x420
[   99.656902][ T6057]  __sys_sendmmsg+0x3a0/0x7b0
[   99.656941][ T6057]  ? __pfx___sys_sendmmsg+0x10/0x10
[   99.657009][ T6057]  ? rcu_read_lock_any_held+0xbb/0x160
[   99.657037][ T6057]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   99.657068][ T6057]  ? vfs_write+0xb29/0xd10
[   99.657101][ T6057]  ? ksys_write+0x24e/0x2d0
[   99.657126][ T6057]  ? __mutex_unlock_slowpath+0x229/0x800
[   99.657181][ T6057]  ? ksys_write+0x275/0x2d0
[   99.657217][ T6057]  __x64_sys_sendmmsg+0xa0/0xb0
[   99.657245][ T6057]  do_syscall_64+0xf3/0x230
[   99.657268][ T6057]  ? clear_bhb_loop+0x45/0xa0
[   99.657292][ T6057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.657311][ T6057] RIP: 0033:0x7f6208f8e169
[   99.657329][ T6057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.657345][ T6057] RSP: 002b:00007f6206df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   99.657366][ T6057] RAX: ffffffffffffffda RBX: 00007f62091b5fa0 RCX: 00007f6208f8e169
[   99.657378][ T6057] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000004
[   99.657390][ T6057] RBP: 00007f6206df6090 R08: 0000000000000000 R09: 0000000000000000
[   99.657400][ T6057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   99.657409][ T6057] R13: 0000000000000000 R14: 00007f62091b5fa0 R15: 00007ffdd7abe0f8
[   99.657435][ T6057]  </TASK>
[  100.761174][ T6077] IPVS: set_ctl: invalid protocol: 47 224.0.0.2:0
[  100.847345][ T6075] netlink: 8 bytes leftover after parsing attributes in process `syz.4.37'.
[  100.897352][ T6075] netlink: 36 bytes leftover after parsing attributes in process `syz.4.37'.
[  100.940931][ T6075] netlink: 20 bytes leftover after parsing attributes in process `syz.4.37'.
[  101.091313][ T6089] netlink: 36 bytes leftover after parsing attributes in process `syz.4.37'.
[  101.201262][ T6089] netlink: 16 bytes leftover after parsing attributes in process `syz.4.37'.
[  101.258828][ T6089] netlink: 36 bytes leftover after parsing attributes in process `syz.4.37'.
[  101.320096][ T6078] syzkaller1: entered promiscuous mode
[  101.350104][ T6078] syzkaller1: entered allmulticast mode
[  102.044083][ T6108] --map-set only usable from mangle table
[  102.380943][ T6114] netlink: 'syz.3.47': attribute type 2 has an invalid length.
[  103.088449][ T6126] Bluetooth: MGMT ver 1.23
[  103.342504][ T6139] pimreg: entered allmulticast mode
[  103.387129][ T6139] pimreg: left allmulticast mode
[  103.979174][ T6168] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT
[  104.299233][ T6177] No such timeout policy "syz0"
[  104.439739][ T6186] __nla_validate_parse: 4 callbacks suppressed
[  104.439759][ T6186] netlink: 8 bytes leftover after parsing attributes in process `syz.0.70'.
[  104.471355][ T6177] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  104.480544][ T6186] netlink: 12 bytes leftover after parsing attributes in process `syz.0.70'.
[  104.503343][ T6177] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  104.590140][ T6186] FAULT_INJECTION: forcing a failure.
[  104.590140][ T6186] name failslab, interval 1, probability 0, space 0, times 0
[  104.625790][ T6186] CPU: 0 UID: 0 PID: 6186 Comm: syz.0.70 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  104.625822][ T6186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  104.625835][ T6186] Call Trace:
[  104.625843][ T6186]  <TASK>
[  104.625851][ T6186]  dump_stack_lvl+0x241/0x360
[  104.625891][ T6186]  ? __pfx_dump_stack_lvl+0x10/0x10
[  104.625921][ T6186]  ? __pfx__printk+0x10/0x10
[  104.625955][ T6186]  ? __pfx___might_resched+0x10/0x10
[  104.625986][ T6186]  should_fail_ex+0x424/0x570
[  104.626018][ T6186]  should_failslab+0xac/0x100
[  104.626048][ T6186]  __kvmalloc_node_noprof+0x170/0x5a0
[  104.626078][ T6186]  ? alloc_netdev_mqs+0xac6/0x1210
[  104.626115][ T6186]  alloc_netdev_mqs+0xac6/0x1210
[  104.626153][ T6186]  rtnl_create_link+0x2f2/0xea0
[  104.626192][ T6186]  rtnl_newlink_create+0x2f2/0xc30
[  104.626217][ T6186]  ? __mutex_lock+0xbe3/0x10c0
[  104.626248][ T6186]  ? __mutex_lock+0x5f3/0x10c0
[  104.626271][ T6186]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  104.626317][ T6186]  ? __pfx___mutex_lock+0x10/0x10
[  104.626358][ T6186]  ? ns_capable+0x8a/0xf0
[  104.626383][ T6186]  rtnl_newlink+0x18b0/0x1fe0
[  104.626425][ T6186]  ? __pfx_rtnl_newlink+0x10/0x10
[  104.626443][ T6186]  ? dev_hard_start_xmit+0x2d9/0x830
[  104.626467][ T6186]  ? __dev_queue_xmit+0x1b80/0x3f60
[  104.626492][ T6186]  ? __netlink_deliver_tap+0x561/0x7f0
[  104.626512][ T6186]  ? netlink_deliver_tap+0x19d/0x1b0
[  104.626530][ T6186]  ? netlink_unicast+0x7c6/0x9a0
[  104.626558][ T6186]  ? netlink_sendmsg+0x8c3/0xcd0
[  104.626577][ T6186]  ? __sock_sendmsg+0x221/0x270
[  104.626607][ T6186]  ? ____sys_sendmsg+0x523/0x860
[  104.626630][ T6186]  ? __sys_sendmmsg+0x3a0/0x7b0
[  104.626653][ T6186]  ? __x64_sys_sendmmsg+0xa0/0xb0
[  104.626676][ T6186]  ? do_syscall_64+0xf3/0x230
[  104.626698][ T6186]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.626758][ T6186]  ? kasan_quarantine_put+0xdc/0x230
[  104.626778][ T6186]  ? lockdep_hardirqs_on+0x9d/0x150
[  104.626804][ T6186]  ? nlmon_xmit+0xaf/0x100
[  104.626834][ T6186]  ? __local_bh_enable_ip+0x168/0x200
[  104.626852][ T6186]  ? lockdep_hardirqs_on+0x9d/0x150
[  104.626880][ T6186]  ? aa_get_newest_label+0x101/0x6f0
[  104.626916][ T6186]  ? __lock_acquire+0xad5/0xd80
[  104.626960][ T6186]  ? __pfx_rtnl_newlink+0x10/0x10
[  104.626982][ T6186]  rtnetlink_rcv_msg+0x80f/0xd70
[  104.627000][ T6186]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  104.627024][ T6186]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  104.627053][ T6186]  ? ref_tracker_free+0x63e/0x7e0
[  104.627087][ T6186]  netlink_rcv_skb+0x208/0x480
[  104.627109][ T6186]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  104.627131][ T6186]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  104.627172][ T6186]  ? netlink_deliver_tap+0x2e/0x1b0
[  104.627196][ T6186]  ? netlink_deliver_tap+0x2e/0x1b0
[  104.627220][ T6186]  netlink_unicast+0x7f8/0x9a0
[  104.627262][ T6186]  ? __pfx_netlink_unicast+0x10/0x10
[  104.627296][ T6186]  ? skb_put+0x114/0x1f0
[  104.627333][ T6186]  netlink_sendmsg+0x8c3/0xcd0
[  104.627370][ T6186]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.627396][ T6186]  ? aa_sock_msg_perm+0x91/0x160
[  104.627431][ T6186]  ? __pfx_netlink_sendmsg+0x10/0x10
[  104.627451][ T6186]  __sock_sendmsg+0x221/0x270
[  104.627486][ T6186]  ____sys_sendmsg+0x523/0x860
[  104.627523][ T6186]  ? __pfx_____sys_sendmsg+0x10/0x10
[  104.627547][ T6186]  ? __fget_files+0x2a/0x420
[  104.627582][ T6186]  ? __fget_files+0x2a/0x420
[  104.627624][ T6186]  __sys_sendmmsg+0x3a0/0x7b0
[  104.627665][ T6186]  ? __pfx___sys_sendmmsg+0x10/0x10
[  104.627733][ T6186]  ? rcu_read_lock_any_held+0xbb/0x160
[  104.627761][ T6186]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  104.627793][ T6186]  ? vfs_write+0xb29/0xd10
[  104.627826][ T6186]  ? ksys_write+0x24e/0x2d0
[  104.627852][ T6186]  ? __mutex_unlock_slowpath+0x229/0x800
[  104.627906][ T6186]  ? ksys_write+0x275/0x2d0
[  104.627943][ T6186]  __x64_sys_sendmmsg+0xa0/0xb0
[  104.627972][ T6186]  do_syscall_64+0xf3/0x230
[  104.627996][ T6186]  ? clear_bhb_loop+0x45/0xa0
[  104.628021][ T6186]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  104.628041][ T6186] RIP: 0033:0x7fb12298e169
[  104.628063][ T6186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.628079][ T6186] RSP: 002b:00007fb1207f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  104.628101][ T6186] RAX: ffffffffffffffda RBX: 00007fb122bb5fa0 RCX: 00007fb12298e169
[  104.628116][ T6186] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000004
[  104.628129][ T6186] RBP: 00007fb1207f6090 R08: 0000000000000000 R09: 0000000000000000
[  104.628142][ T6186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  104.628154][ T6186] R13: 0000000000000000 R14: 00007fb122bb5fa0 R15: 00007ffc72039f58
[  104.628185][ T6186]  </TASK>
[  105.185901][ T6188] netlink: 40 bytes leftover after parsing attributes in process `syz.2.71'.
[  105.612515][ T6188] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  105.678315][ T6203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.71'.
[  106.206499][ T6229] netlink: 8 bytes leftover after parsing attributes in process `syz.2.85'.
[  106.231840][ T6231] netlink: 12 bytes leftover after parsing attributes in process `syz.0.86'.
[  106.272921][ T6229] netlink: 12 bytes leftover after parsing attributes in process `syz.2.85'.
[  106.340292][ T6229] FAULT_INJECTION: forcing a failure.
[  106.340292][ T6229] name failslab, interval 1, probability 0, space 0, times 0
[  106.402913][ T6229] CPU: 1 UID: 0 PID: 6229 Comm: syz.2.85 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  106.402944][ T6229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  106.402957][ T6229] Call Trace:
[  106.402965][ T6229]  <TASK>
[  106.402974][ T6229]  dump_stack_lvl+0x241/0x360
[  106.403012][ T6229]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.403042][ T6229]  ? __pfx__printk+0x10/0x10
[  106.403076][ T6229]  ? __pfx___might_resched+0x10/0x10
[  106.403106][ T6229]  should_fail_ex+0x424/0x570
[  106.403139][ T6229]  should_failslab+0xac/0x100
[  106.403171][ T6229]  __kmalloc_cache_noprof+0x73/0x370
[  106.403198][ T6229]  ? alloc_netdev_mqs+0xc7c/0x1210
[  106.403233][ T6229]  alloc_netdev_mqs+0xc7c/0x1210
[  106.403271][ T6229]  rtnl_create_link+0x2f2/0xea0
[  106.403310][ T6229]  rtnl_newlink_create+0x2f2/0xc30
[  106.403336][ T6229]  ? __mutex_lock+0xbe3/0x10c0
[  106.403366][ T6229]  ? __mutex_lock+0x5f3/0x10c0
[  106.403390][ T6229]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  106.403418][ T6229]  ? __pfx___mutex_lock+0x10/0x10
[  106.403452][ T6229]  ? ns_capable+0x8a/0xf0
[  106.403477][ T6229]  rtnl_newlink+0x18b0/0x1fe0
[  106.403526][ T6229]  ? __pfx_rtnl_newlink+0x10/0x10
[  106.403544][ T6229]  ? dev_hard_start_xmit+0x2d9/0x830
[  106.403568][ T6229]  ? __dev_queue_xmit+0x1b80/0x3f60
[  106.403593][ T6229]  ? __netlink_deliver_tap+0x561/0x7f0
[  106.403613][ T6229]  ? netlink_deliver_tap+0x19d/0x1b0
[  106.403632][ T6229]  ? netlink_unicast+0x7c6/0x9a0
[  106.403659][ T6229]  ? netlink_sendmsg+0x8c3/0xcd0
[  106.403679][ T6229]  ? __sock_sendmsg+0x221/0x270
[  106.403707][ T6229]  ? ____sys_sendmsg+0x523/0x860
[  106.403730][ T6229]  ? __sys_sendmmsg+0x3a0/0x7b0
[  106.403754][ T6229]  ? __x64_sys_sendmmsg+0xa0/0xb0
[  106.403777][ T6229]  ? do_syscall_64+0xf3/0x230
[  106.403799][ T6229]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.403859][ T6229]  ? kasan_quarantine_put+0xdc/0x230
[  106.403880][ T6229]  ? lockdep_hardirqs_on+0x9d/0x150
[  106.403905][ T6229]  ? nlmon_xmit+0xaf/0x100
[  106.403935][ T6229]  ? __local_bh_enable_ip+0x168/0x200
[  106.403954][ T6229]  ? lockdep_hardirqs_on+0x9d/0x150
[  106.403985][ T6229]  ? aa_get_newest_label+0x101/0x6f0
[  106.404022][ T6229]  ? __lock_acquire+0xad5/0xd80
[  106.404068][ T6229]  ? __pfx_rtnl_newlink+0x10/0x10
[  106.404090][ T6229]  rtnetlink_rcv_msg+0x80f/0xd70
[  106.404109][ T6229]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  106.404135][ T6229]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  106.404164][ T6229]  ? ref_tracker_free+0x63e/0x7e0
[  106.404200][ T6229]  netlink_rcv_skb+0x208/0x480
[  106.404223][ T6229]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  106.404246][ T6229]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  106.404289][ T6229]  ? netlink_deliver_tap+0x2e/0x1b0
[  106.404313][ T6229]  ? netlink_deliver_tap+0x2e/0x1b0
[  106.404336][ T6229]  netlink_unicast+0x7f8/0x9a0
[  106.404378][ T6229]  ? __pfx_netlink_unicast+0x10/0x10
[  106.404412][ T6229]  ? skb_put+0x114/0x1f0
[  106.404446][ T6229]  netlink_sendmsg+0x8c3/0xcd0
[  106.404483][ T6229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.404521][ T6229]  ? aa_sock_msg_perm+0x91/0x160
[  106.404557][ T6229]  ? __pfx_netlink_sendmsg+0x10/0x10
[  106.404576][ T6229]  __sock_sendmsg+0x221/0x270
[  106.404613][ T6229]  ____sys_sendmsg+0x523/0x860
[  106.404650][ T6229]  ? __pfx_____sys_sendmsg+0x10/0x10
[  106.404675][ T6229]  ? __fget_files+0x2a/0x420
[  106.404710][ T6229]  ? __fget_files+0x2a/0x420
[  106.404752][ T6229]  __sys_sendmmsg+0x3a0/0x7b0
[  106.404793][ T6229]  ? __pfx___sys_sendmmsg+0x10/0x10
[  106.404861][ T6229]  ? rcu_read_lock_any_held+0xbb/0x160
[  106.404889][ T6229]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  106.404920][ T6229]  ? vfs_write+0xb29/0xd10
[  106.404954][ T6229]  ? ksys_write+0x24e/0x2d0
[  106.404981][ T6229]  ? __mutex_unlock_slowpath+0x229/0x800
[  106.405039][ T6229]  ? ksys_write+0x275/0x2d0
[  106.405076][ T6229]  __x64_sys_sendmmsg+0xa0/0xb0
[  106.405106][ T6229]  do_syscall_64+0xf3/0x230
[  106.405129][ T6229]  ? clear_bhb_loop+0x45/0xa0
[  106.405153][ T6229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.405172][ T6229] RIP: 0033:0x7f2116f8e169
[  106.405189][ T6229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.405205][ T6229] RSP: 002b:00007f2117ec7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  106.405226][ T6229] RAX: ffffffffffffffda RBX: 00007f21171b5fa0 RCX: 00007f2116f8e169
[  106.405240][ T6229] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000004
[  106.405254][ T6229] RBP: 00007f2117ec7090 R08: 0000000000000000 R09: 0000000000000000
[  106.405270][ T6229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  106.405283][ T6229] R13: 0000000000000000 R14: 00007f21171b5fa0 R15: 00007fff90a81208
[  106.405316][ T6229]  </TASK>
[  108.064216][ T6276] netlink: 'syz.2.98': attribute type 11 has an invalid length.
[  108.088340][ T6276] netlink: 224 bytes leftover after parsing attributes in process `syz.2.98'.
[  108.124895][ T6277] netlink: 'syz.2.98': attribute type 1 has an invalid length.
[  108.521653][ T6287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.101'.
[  108.555334][ T6287] netlink: 12 bytes leftover after parsing attributes in process `syz.0.101'.
[  108.661691][ T6287] FAULT_INJECTION: forcing a failure.
[  108.661691][ T6287] name failslab, interval 1, probability 0, space 0, times 0
[  108.716803][ T6287] CPU: 1 UID: 0 PID: 6287 Comm: syz.0.101 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  108.716834][ T6287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  108.716847][ T6287] Call Trace:
[  108.716855][ T6287]  <TASK>
[  108.716864][ T6287]  dump_stack_lvl+0x241/0x360
[  108.716903][ T6287]  ? __pfx_dump_stack_lvl+0x10/0x10
[  108.716932][ T6287]  ? __pfx__printk+0x10/0x10
[  108.716966][ T6287]  ? __pfx___might_resched+0x10/0x10
[  108.717003][ T6287]  should_fail_ex+0x424/0x570
[  108.717033][ T6287]  should_failslab+0xac/0x100
[  108.717062][ T6287]  __kmalloc_cache_noprof+0x73/0x370
[  108.717090][ T6287]  ? alloc_netdev_mqs+0xc7c/0x1210
[  108.717122][ T6287]  alloc_netdev_mqs+0xc7c/0x1210
[  108.717157][ T6287]  rtnl_create_link+0x2f2/0xea0
[  108.717195][ T6287]  rtnl_newlink_create+0x2f2/0xc30
[  108.717220][ T6287]  ? __mutex_lock+0xbe3/0x10c0
[  108.717252][ T6287]  ? __mutex_lock+0x5f3/0x10c0
[  108.717275][ T6287]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  108.717303][ T6287]  ? __pfx___mutex_lock+0x10/0x10
[  108.717338][ T6287]  ? ns_capable+0x8a/0xf0
[  108.717363][ T6287]  rtnl_newlink+0x18b0/0x1fe0
[  108.717405][ T6287]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.717424][ T6287]  ? dev_hard_start_xmit+0x2d9/0x830
[  108.717449][ T6287]  ? __dev_queue_xmit+0x1b80/0x3f60
[  108.717474][ T6287]  ? __netlink_deliver_tap+0x561/0x7f0
[  108.717494][ T6287]  ? netlink_deliver_tap+0x19d/0x1b0
[  108.717512][ T6287]  ? netlink_unicast+0x7c6/0x9a0
[  108.717540][ T6287]  ? netlink_sendmsg+0x8c3/0xcd0
[  108.717559][ T6287]  ? __sock_sendmsg+0x221/0x270
[  108.717588][ T6287]  ? ____sys_sendmsg+0x523/0x860
[  108.717611][ T6287]  ? __sys_sendmmsg+0x3a0/0x7b0
[  108.717634][ T6287]  ? __x64_sys_sendmmsg+0xa0/0xb0
[  108.717657][ T6287]  ? do_syscall_64+0xf3/0x230
[  108.717679][ T6287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.717738][ T6287]  ? kasan_quarantine_put+0xdc/0x230
[  108.717759][ T6287]  ? lockdep_hardirqs_on+0x9d/0x150
[  108.717785][ T6287]  ? nlmon_xmit+0xaf/0x100
[  108.717816][ T6287]  ? __local_bh_enable_ip+0x168/0x200
[  108.717839][ T6287]  ? lockdep_hardirqs_on+0x9d/0x150
[  108.717870][ T6287]  ? aa_get_newest_label+0x101/0x6f0
[  108.717907][ T6287]  ? __lock_acquire+0xad5/0xd80
[  108.717952][ T6287]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.717975][ T6287]  rtnetlink_rcv_msg+0x80f/0xd70
[  108.718001][ T6287]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  108.718027][ T6287]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  108.718056][ T6287]  ? ref_tracker_free+0x63e/0x7e0
[  108.718093][ T6287]  netlink_rcv_skb+0x208/0x480
[  108.718116][ T6287]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  108.718139][ T6287]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  108.718181][ T6287]  ? netlink_deliver_tap+0x2e/0x1b0
[  108.718206][ T6287]  ? netlink_deliver_tap+0x2e/0x1b0
[  108.718230][ T6287]  netlink_unicast+0x7f8/0x9a0
[  108.718272][ T6287]  ? __pfx_netlink_unicast+0x10/0x10
[  108.718306][ T6287]  ? skb_put+0x114/0x1f0
[  108.718336][ T6287]  netlink_sendmsg+0x8c3/0xcd0
[  108.718372][ T6287]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.718399][ T6287]  ? aa_sock_msg_perm+0x91/0x160
[  108.718434][ T6287]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.718454][ T6287]  __sock_sendmsg+0x221/0x270
[  108.718490][ T6287]  ____sys_sendmsg+0x523/0x860
[  108.718527][ T6287]  ? __pfx_____sys_sendmsg+0x10/0x10
[  108.718551][ T6287]  ? __fget_files+0x2a/0x420
[  108.718585][ T6287]  ? __fget_files+0x2a/0x420
[  108.718627][ T6287]  __sys_sendmmsg+0x3a0/0x7b0
[  108.718668][ T6287]  ? __pfx___sys_sendmmsg+0x10/0x10
[  108.718735][ T6287]  ? rcu_read_lock_any_held+0xbb/0x160
[  108.718764][ T6287]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  108.718795][ T6287]  ? vfs_write+0xb29/0xd10
[  108.718829][ T6287]  ? ksys_write+0x24e/0x2d0
[  108.718856][ T6287]  ? __mutex_unlock_slowpath+0x229/0x800
[  108.718914][ T6287]  ? ksys_write+0x275/0x2d0
[  108.718951][ T6287]  __x64_sys_sendmmsg+0xa0/0xb0
[  108.718981][ T6287]  do_syscall_64+0xf3/0x230
[  108.719012][ T6287]  ? clear_bhb_loop+0x45/0xa0
[  108.719037][ T6287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  108.719058][ T6287] RIP: 0033:0x7fb12298e169
[  108.719076][ T6287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  108.719093][ T6287] RSP: 002b:00007fb1207f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  108.719115][ T6287] RAX: ffffffffffffffda RBX: 00007fb122bb5fa0 RCX: 00007fb12298e169
[  108.719130][ T6287] RDX: 0492492492492627 RSI: 00002000000000c0 RDI: 0000000000000004
[  108.719144][ T6287] RBP: 00007fb1207f6090 R08: 0000000000000000 R09: 0000000000000000
[  108.719157][ T6287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  108.719169][ T6287] R13: 0000000000000000 R14: 00007fb122bb5fa0 R15: 00007ffc72039f58
[  108.719201][ T6287]  </TASK>
[  110.226230][ T6311] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  110.234772][ T6319] netlink: 28 bytes leftover after parsing attributes in process `syz.2.110'.
[  110.481492][ T6337] netlink: 16 bytes leftover after parsing attributes in process `syz.4.114'.
[  110.526717][ T6337] netlink: 12 bytes leftover after parsing attributes in process `syz.4.114'.
[  110.691305][ T6345] netlink: 'syz.4.114': attribute type 29 has an invalid length.
[  110.971571][ T6337] vxcan3: entered allmulticast mode
[  111.079890][ T6358] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'.
[  111.089139][ T6358] netlink: 24 bytes leftover after parsing attributes in process `syz.0.117'.
[  111.149031][ T6355] netlink: 8 bytes leftover after parsing attributes in process `syz.0.117'.
[  111.311644][ T6361] netlink: 'syz.1.119': attribute type 1 has an invalid length.
[  111.321846][ T6361] netlink: 244 bytes leftover after parsing attributes in process `syz.1.119'.
[  111.618805][ T6372] xt_CT: No such helper "pptp"
[  111.719678][ T6388] netlink: 16 bytes leftover after parsing attributes in process `syz.3.126'.
[  111.747136][ T6386] netlink: 12 bytes leftover after parsing attributes in process `syz.0.125'.
[  111.784259][ T6388] netlink: 28 bytes leftover after parsing attributes in process `syz.3.126'.
[  111.936834][ T6363] netlink: zone id is out of range
[  111.952273][ T6363] netlink: zone id is out of range
[  111.970736][ T6363] netlink: zone id is out of range
[  111.985314][ T6363] netlink: zone id is out of range
[  111.999852][ T6363] netlink: zone id is out of range
[  112.035258][ T6363] netlink: zone id is out of range
[  112.040444][ T6363] netlink: zone id is out of range
[  112.098433][ T6395] netlink: 'syz.1.128': attribute type 15 has an invalid length.
[  112.160926][ T6363] netlink: zone id is out of range
[  112.166217][ T6363] netlink: zone id is out of range
[  112.172465][ T6363] netlink: zone id is out of range
[  112.971611][ T6430] netlink: 'syz.2.136': attribute type 5 has an invalid length.
[  113.002062][ T5863] infiniband syz1: ib_query_port failed (-19)
[  113.176680][ T6435] xt_TCPMSS: Only works on TCP SYN packets
[  113.720009][ T6463] netlink: 'syz.1.147': attribute type 1 has an invalid length.
[  113.836919][ T6463] 8021q: adding VLAN 0 to HW filter on device bond1
[  113.941629][ T6470] bond1: (slave veth3): Enslaving as an active interface with a down link
[  113.978426][ T6469] netlink: 'syz.3.149': attribute type 2 has an invalid length.
[  114.072324][ T6463] bond1: (slave veth5): Enslaving as an active interface with a down link
[  114.104907][ T6471] bond1: (slave vlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  114.165380][ T6469] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  114.184046][ T6480] netlink: 'syz.0.151': attribute type 1 has an invalid length.
[  114.397001][ T6485] netlink: 'syz.1.153': attribute type 5 has an invalid length.
[  114.509883][ T6492] FAULT_INJECTION: forcing a failure.
[  114.509883][ T6492] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  114.527925][ T6492] CPU: 1 UID: 0 PID: 6492 Comm: syz.0.155 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  114.527956][ T6492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.527969][ T6492] Call Trace:
[  114.527978][ T6492]  <TASK>
[  114.527986][ T6492]  dump_stack_lvl+0x241/0x360
[  114.528024][ T6492]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.528052][ T6492]  ? __pfx__printk+0x10/0x10
[  114.528095][ T6492]  should_fail_ex+0x424/0x570
[  114.528126][ T6492]  _copy_from_user+0x2d/0xb0
[  114.528149][ T6492]  do_sock_getsockopt+0x1d5/0x740
[  114.528182][ T6492]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  114.528205][ T6492]  ? __fget_files+0x2a/0x420
[  114.528238][ T6492]  ? __fget_files+0x39d/0x420
[  114.528267][ T6492]  ? __fget_files+0x2a/0x420
[  114.528305][ T6492]  __x64_sys_getsockopt+0x2a3/0x370
[  114.528337][ T6492]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  114.528371][ T6492]  ? do_syscall_64+0xb6/0x230
[  114.528398][ T6492]  do_syscall_64+0xf3/0x230
[  114.528421][ T6492]  ? clear_bhb_loop+0x45/0xa0
[  114.528447][ T6492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.528467][ T6492] RIP: 0033:0x7fb12298e169
[  114.528484][ T6492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.528500][ T6492] RSP: 002b:00007fb1207f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  114.528521][ T6492] RAX: ffffffffffffffda RBX: 00007fb122bb5fa0 RCX: 00007fb12298e169
[  114.528545][ T6492] RDX: 0000000000000005 RSI: 000000000000011c RDI: 0000000000000003
[  114.528557][ T6492] RBP: 00007fb1207f6090 R08: 0000000000000000 R09: 0000000000000000
[  114.528569][ T6492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.528580][ T6492] R13: 0000000000000000 R14: 00007fb122bb5fa0 R15: 00007ffc72039f58
[  114.528611][ T6492]  </TASK>
[  114.529020][ T6491] FAULT_INJECTION: forcing a failure.
[  114.529020][ T6491] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  114.805294][ T6491] CPU: 1 UID: 0 PID: 6491 Comm: syz.3.157 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  114.805326][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  114.805339][ T6491] Call Trace:
[  114.805347][ T6491]  <TASK>
[  114.805356][ T6491]  dump_stack_lvl+0x241/0x360
[  114.805395][ T6491]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.805425][ T6491]  ? __pfx__printk+0x10/0x10
[  114.805489][ T6491]  should_fail_ex+0x424/0x570
[  114.805530][ T6491]  _copy_from_user+0x2d/0xb0
[  114.805553][ T6491]  __sys_bpf+0x1c5/0x8b0
[  114.805576][ T6491]  ? __pfx___sys_bpf+0x10/0x10
[  114.805609][ T6491]  ? ksys_write+0x275/0x2d0
[  114.805647][ T6491]  __x64_sys_bpf+0x7c/0x90
[  114.805679][ T6491]  do_syscall_64+0xf3/0x230
[  114.805704][ T6491]  ? clear_bhb_loop+0x45/0xa0
[  114.805729][ T6491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.805750][ T6491] RIP: 0033:0x7f6208f8e169
[  114.805768][ T6491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.805786][ T6491] RSP: 002b:00007f6206df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  114.805808][ T6491] RAX: ffffffffffffffda RBX: 00007f62091b5fa0 RCX: 00007f6208f8e169
[  114.805824][ T6491] RDX: 0000000000000050 RSI: 0000200000000180 RDI: 000000000000000a
[  114.805836][ T6491] RBP: 00007f6206df6090 R08: 0000000000000000 R09: 0000000000000000
[  114.805849][ T6491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.805861][ T6491] R13: 0000000000000000 R14: 00007f62091b5fa0 R15: 00007ffdd7abe0f8
[  114.805894][ T6491]  </TASK>
[  115.170122][ T6510] ieee802154 phy0 wpan0: encryption failed: -22
[  115.403610][ T6514] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  115.440260][ T6514] tipc: Enabling <eth:lo> not permitted
[  115.445954][ T6514] tipc: Enabling of bearer <eth:lo> rejected, failed to enable media
[  115.463986][ T6514] __nla_validate_parse: 24 callbacks suppressed
[  115.464009][ T6514] netlink: 36 bytes leftover after parsing attributes in process `syz.3.165'.
[  115.492840][ T6514] netlink: 36 bytes leftover after parsing attributes in process `syz.3.165'.
[  115.563089][ T6525] netlink: 20 bytes leftover after parsing attributes in process `syz.2.168'.
[  115.694006][ T6514] ªªªªªª: renamed from vlan0 (while UP)
[  115.958847][ T6538] netlink: 176 bytes leftover after parsing attributes in process `syz.2.173'.
[  116.025934][ T6529] 8021q: VLANs not supported on ip_vti0
[  116.459043][ T6566] netlink: 52 bytes leftover after parsing attributes in process `syz.1.181'.
[  116.468533][ T6566] netlink: 52 bytes leftover after parsing attributes in process `syz.1.181'.
[  116.912281][ T6586] netlink: 36 bytes leftover after parsing attributes in process `syz.0.191'.
[  116.961928][ T1147] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.122809][ T1147] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.243205][ T1147] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.509976][ T6592] netlink: 36 bytes leftover after parsing attributes in process `syz.3.193'.
[  117.632742][ T1147] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.813864][ T6608] FAULT_INJECTION: forcing a failure.
[  117.813864][ T6608] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.942295][ T6608] CPU: 1 UID: 0 PID: 6608 Comm: syz.3.197 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  117.942328][ T6608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  117.942342][ T6608] Call Trace:
[  117.942350][ T6608]  <TASK>
[  117.942359][ T6608]  dump_stack_lvl+0x241/0x360
[  117.942401][ T6608]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.942430][ T6608]  ? __pfx__printk+0x10/0x10
[  117.942474][ T6608]  should_fail_ex+0x424/0x570
[  117.942506][ T6608]  _copy_from_user+0x2d/0xb0
[  117.942529][ T6608]  copy_msghdr_from_user+0xb3/0x580
[  117.942569][ T6608]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  117.942620][ T6608]  do_recvmmsg+0x3bf/0xab0
[  117.942660][ T6608]  ? __pfx_do_recvmmsg+0x10/0x10
[  117.942706][ T6608]  ? rcu_read_lock_any_held+0xbb/0x160
[  117.942734][ T6608]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  117.942764][ T6608]  ? vfs_write+0xb29/0xd10
[  117.942799][ T6608]  ? ksys_write+0x24e/0x2d0
[  117.942824][ T6608]  ? __mutex_unlock_slowpath+0x229/0x800
[  117.942858][ T6608]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  117.942880][ T6608]  ? __fget_files+0x2a/0x420
[  117.942928][ T6608]  __x64_sys_recvmmsg+0x1ab/0x260
[  117.942959][ T6608]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  117.942994][ T6608]  ? do_syscall_64+0xb6/0x230
[  117.943021][ T6608]  do_syscall_64+0xf3/0x230
[  117.943044][ T6608]  ? clear_bhb_loop+0x45/0xa0
[  117.943070][ T6608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.943090][ T6608] RIP: 0033:0x7f6208f8e169
[  117.943108][ T6608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.943124][ T6608] RSP: 002b:00007f6206df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  117.943147][ T6608] RAX: ffffffffffffffda RBX: 00007f62091b5fa0 RCX: 00007f6208f8e169
[  117.943162][ T6608] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  117.943176][ T6608] RBP: 00007f6206df6090 R08: 0000000000000000 R09: 0000000000000000
[  117.943189][ T6608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  117.943200][ T6608] R13: 0000000000000000 R14: 00007f62091b5fa0 R15: 00007ffdd7abe0f8
[  117.943233][ T6608]  </TASK>
[  118.205800][ T1147] bridge_slave_1: left allmulticast mode
[  118.222919][ T1147] bridge_slave_1: left promiscuous mode
[  118.230243][ T1147] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.271153][ T1147] bridge_slave_0: left allmulticast mode
[  118.283732][ T1147] bridge_slave_0: left promiscuous mode
[  118.334985][ T1147] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.496504][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  118.511724][ T5841] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  118.525741][ T5841] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  118.534097][ T5841] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  118.542033][ T5841] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  119.028023][ T6637] netlink: 36 bytes leftover after parsing attributes in process `syz.2.204'.
[  119.279843][ T1147] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.308226][ T1147] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.340939][ T1147] bond0 (unregistering): Released all slaves
[  119.652960][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.1.210'.
[  120.392737][ T1147] hsr_slave_0: left promiscuous mode
[  120.409413][ T1147] hsr_slave_1: left promiscuous mode
[  120.417236][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.435709][ T6689] Driver unsupported XDP return value 0 on prog  (id 89) dev N/A, expect packet loss!
[  120.451857][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.480347][ T1147] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.511721][ T1147] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.562426][ T1147] veth1_macvtap: left promiscuous mode
[  120.568884][ T1147] veth0_macvtap: left promiscuous mode
[  120.576272][ T1147] veth1_vlan: left promiscuous mode
[  120.581982][ T1147] veth0_vlan: left promiscuous mode
[  120.616212][ T5841] Bluetooth: hci1: command tx timeout
[  120.622834][ T5904] IPVS: starting estimator thread 0...
[  120.700892][ T6712] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  120.735529][ T6709] IPVS: using max 28 ests per chain, 67200 per kthread
[  121.193913][ T1147] team0 (unregistering): Port device team_slave_1 removed
[  121.237214][ T1147] team0 (unregistering): Port device team_slave_0 removed
[  121.695065][ T6615] chnl_net:caif_netlink_parms(): no params data found
[  121.961290][ T6722] syzkaller0: entered promiscuous mode
[  121.985405][ T6731] __nla_validate_parse: 2 callbacks suppressed
[  121.985428][ T6731] netlink: 36 bytes leftover after parsing attributes in process `syz.3.228'.
[  122.005203][ T6722] syzkaller0: entered allmulticast mode
[  122.087555][ T6722] netlink: 48 bytes leftover after parsing attributes in process `syz.1.225'.
[  122.241199][ T6745] netlink: 28 bytes leftover after parsing attributes in process `syz.0.232'.
[  122.323463][ T6748] xt_CT: You must specify a L4 protocol and not use inversions on it
[  122.328578][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.341015][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.348788][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.356503][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.363950][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.372309][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x0
[  122.381301][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x3
[  122.389077][ T5892] hid-generic 0005:16C0:5505.0001: unknown main item tag 0x1
[  122.401243][ T5892] hid-generic 0005:16C0:5505.0001: hidraw0: BLUETOOTH HID v0.8b Device [syz0] on aa:aa:aa:aa:aa:aa
[  122.698372][ T5841] Bluetooth: hci1: command tx timeout
[  123.067653][ T6755] nftables ruleset with unbound chain
[  123.756564][ T6615] bridge0: port 1(bridge_slave_0) entered blocking state
[  123.764167][ T6615] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.772323][ T6615] bridge_slave_0: entered allmulticast mode
[  123.785052][ T6615] bridge_slave_0: entered promiscuous mode
[  123.805542][ T6759] netlink: 16 bytes leftover after parsing attributes in process `syz.3.235'.
[  123.836199][ T6761] netlink: 'syz.3.235': attribute type 29 has an invalid length.
[  123.881933][ T6615] bridge0: port 2(bridge_slave_1) entered blocking state
[  123.894813][ T6615] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.909566][ T6615] bridge_slave_1: entered allmulticast mode
[  123.923177][ T6615] bridge_slave_1: entered promiscuous mode
[  123.930860][ T6760] netlink: 12 bytes leftover after parsing attributes in process `syz.3.235'.
[  124.034557][ T6768] netlink: 20 bytes leftover after parsing attributes in process `syz.0.237'.
[  124.140647][ T6615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  124.204490][ T6615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  124.235922][ T6781] tunl0: entered promiscuous mode
[  124.257567][ T6781] netlink: 'syz.3.242': attribute type 4 has an invalid length.
[  124.265821][ T6781] netlink: 9 bytes leftover after parsing attributes in process `syz.3.242'.
[  124.281472][ T6787] netlink: 8 bytes leftover after parsing attributes in process `syz.0.243'.
[  124.292345][ T6787] netlink: 36 bytes leftover after parsing attributes in process `syz.0.243'.
[  124.362334][ T6615] team0: Port device team_slave_0 added
[  124.380867][ T6615] team0: Port device team_slave_1 added
[  124.425255][ T6793] netlink: 36 bytes leftover after parsing attributes in process `syz.0.243'.
[  124.447422][ T6791] bond0: entered promiscuous mode
[  124.466484][ T6791] bond_slave_0: entered promiscuous mode
[  124.485833][ T6791] bond_slave_1: entered promiscuous mode
[  124.500872][ T6615] batman_adv: batadv0: Adding interface: batadv_slave_0
[  124.513789][ T6615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.557363][ T6615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  124.589787][ T6615] batman_adv: batadv0: Adding interface: batadv_slave_1
[  124.597957][ T6615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  124.627192][ T6615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  124.710843][ T6615] hsr_slave_0: entered promiscuous mode
[  124.718181][ T6615] hsr_slave_1: entered promiscuous mode
[  124.725061][ T6615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  124.735054][ T6615] Cannot create hsr debugfs directory
[  124.775870][ T5841] Bluetooth: hci1: command tx timeout
[  124.938415][ T6801] FAULT_INJECTION: forcing a failure.
[  124.938415][ T6801] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  124.955618][ T6801] CPU: 0 UID: 0 PID: 6801 Comm: syz.1.248 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  124.955665][ T6801] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  124.955686][ T6801] Call Trace:
[  124.955694][ T6801]  <TASK>
[  124.955712][ T6801]  dump_stack_lvl+0x241/0x360
[  124.955751][ T6801]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.955781][ T6801]  ? __pfx__printk+0x10/0x10
[  124.955824][ T6801]  should_fail_ex+0x424/0x570
[  124.955856][ T6801]  _copy_from_user+0x2d/0xb0
[  124.955879][ T6801]  copy_msghdr_from_user+0xb3/0x580
[  124.955918][ T6801]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  124.955968][ T6801]  do_recvmmsg+0x3bf/0xab0
[  124.956007][ T6801]  ? __pfx_do_recvmmsg+0x10/0x10
[  124.956052][ T6801]  ? rcu_read_lock_any_held+0xbb/0x160
[  124.956079][ T6801]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  124.956109][ T6801]  ? vfs_write+0xb29/0xd10
[  124.956142][ T6801]  ? ksys_write+0x24e/0x2d0
[  124.956169][ T6801]  ? __mutex_unlock_slowpath+0x229/0x800
[  124.956203][ T6801]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  124.956225][ T6801]  ? __fget_files+0x2a/0x420
[  124.956273][ T6801]  __x64_sys_recvmmsg+0x1ab/0x260
[  124.956303][ T6801]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  124.956338][ T6801]  ? do_syscall_64+0xb6/0x230
[  124.956364][ T6801]  do_syscall_64+0xf3/0x230
[  124.956386][ T6801]  ? clear_bhb_loop+0x45/0xa0
[  124.956411][ T6801]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.956431][ T6801] RIP: 0033:0x7f9b7f38e169
[  124.956449][ T6801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  124.956465][ T6801] RSP: 002b:00007f9b80289038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  124.956487][ T6801] RAX: ffffffffffffffda RBX: 00007f9b7f5b5fa0 RCX: 00007f9b7f38e169
[  124.956501][ T6801] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  124.956515][ T6801] RBP: 00007f9b80289090 R08: 0000000000000000 R09: 0000000000000000
[  124.956527][ T6801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  124.956539][ T6801] R13: 0000000000000000 R14: 00007f9b7f5b5fa0 R15: 00007ffcc881a5b8
[  124.956571][ T6801]  </TASK>
[  125.502526][ T6817] af_packet: tpacket_rcv: packet too big, clamped from 1 to 4294967272. macoff=96
[  125.885040][ T6615] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  126.046581][ T6615] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  126.079857][ T6615] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  126.174188][ T6615] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  126.220299][ T6841] FAULT_INJECTION: forcing a failure.
[  126.220299][ T6841] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.251307][ T6841] CPU: 1 UID: 0 PID: 6841 Comm: syz.3.260 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  126.251343][ T6841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  126.251356][ T6841] Call Trace:
[  126.251363][ T6841]  <TASK>
[  126.251372][ T6841]  dump_stack_lvl+0x241/0x360
[  126.251409][ T6841]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.251438][ T6841]  ? __pfx__printk+0x10/0x10
[  126.251479][ T6841]  should_fail_ex+0x424/0x570
[  126.251511][ T6841]  _copy_from_user+0x2d/0xb0
[  126.251535][ T6841]  copy_msghdr_from_user+0xb3/0x580
[  126.251576][ T6841]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  126.251636][ T6841]  do_recvmmsg+0x3bf/0xab0
[  126.251675][ T6841]  ? __pfx_do_recvmmsg+0x10/0x10
[  126.251719][ T6841]  ? rcu_read_lock_any_held+0xbb/0x160
[  126.251746][ T6841]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  126.251776][ T6841]  ? vfs_write+0xb29/0xd10
[  126.251808][ T6841]  ? ksys_write+0x24e/0x2d0
[  126.251835][ T6841]  ? __mutex_unlock_slowpath+0x229/0x800
[  126.251870][ T6841]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  126.251892][ T6841]  ? __fget_files+0x2a/0x420
[  126.251939][ T6841]  __x64_sys_recvmmsg+0x1ab/0x260
[  126.251970][ T6841]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  126.252005][ T6841]  ? do_syscall_64+0xb6/0x230
[  126.252031][ T6841]  do_syscall_64+0xf3/0x230
[  126.252054][ T6841]  ? clear_bhb_loop+0x45/0xa0
[  126.252078][ T6841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.252097][ T6841] RIP: 0033:0x7f6208f8e169
[  126.252115][ T6841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.252131][ T6841] RSP: 002b:00007f6206df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  126.252153][ T6841] RAX: ffffffffffffffda RBX: 00007f62091b5fa0 RCX: 00007f6208f8e169
[  126.252167][ T6841] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  126.252181][ T6841] RBP: 00007f6206df6090 R08: 0000000000000000 R09: 0000000000000000
[  126.252193][ T6841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  126.252206][ T6841] R13: 0000000000000000 R14: 00007f62091b5fa0 R15: 00007ffdd7abe0f8
[  126.252238][ T6841]  </TASK>
[  126.354049][ T6615] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.480925][ T6837] syzkaller1: entered allmulticast mode
[  126.581257][ T6615] 8021q: adding VLAN 0 to HW filter on device team0
[  126.649710][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.657034][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  126.752202][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.759480][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  126.856367][ T5841] Bluetooth: hci1: command tx timeout
[  127.434946][ T6615] 8021q: adding VLAN 0 to HW filter on device batadv0
[  127.618340][ T6890] __nla_validate_parse: 5 callbacks suppressed
[  127.618361][ T6890] netlink: 20 bytes leftover after parsing attributes in process `syz.3.272'.
[  127.953290][ T6901] netlink: 8 bytes leftover after parsing attributes in process `syz.3.275'.
[  127.995214][ T6901] netlink: 36 bytes leftover after parsing attributes in process `syz.3.275'.
[  128.011609][ T6903] netlink: 8 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.040998][ T6615] veth0_vlan: entered promiscuous mode
[  128.045712][ T6903] netlink: 36 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.134356][ T6909] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  128.163373][ T6615] veth1_vlan: entered promiscuous mode
[  128.191200][ T6909] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  128.202832][ T6907] netlink: 36 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.212645][ T6907] netlink: 16 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.223953][ T6907] netlink: 36 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.241421][ T6907] netlink: 36 bytes leftover after parsing attributes in process `syz.1.276'.
[  128.283771][ T6914] netlink: 36 bytes leftover after parsing attributes in process `syz.3.275'.
[  128.290635][ T6615] veth0_macvtap: entered promiscuous mode
[  128.338598][ T6615] veth1_macvtap: entered promiscuous mode
[  128.402279][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.414625][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.430809][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.441379][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.451891][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  128.466482][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.478413][ T6615] batman_adv: batadv0: Interface activated: batadv_slave_0
[  128.509925][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  128.524737][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.535698][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  128.546201][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.556236][ T6615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  128.566799][ T6615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.583759][ T6615] batman_adv: batadv0: Interface activated: batadv_slave_1
[  128.620501][ T6615] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.638626][ T6615] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.652921][ T6615] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.664820][ T6615] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  128.828166][ T1334] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.840748][ T1334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.929114][ T1334] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.945935][ T1334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.571573][ T6954] nftables ruleset with unbound set
[  130.266544][ T6974] Bluetooth: MGMT ver 1.23
[  130.299987][ T6970] netlink: 'syz.3.300': attribute type 29 has an invalid length.
[  130.617287][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  130.630288][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  130.639707][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  130.649126][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  130.657097][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  130.955099][ T6984] chnl_net:caif_netlink_parms(): no params data found
[  131.081290][ T6984] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.092915][ T6984] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.102104][ T6984] bridge_slave_0: entered allmulticast mode
[  131.114132][ T6984] bridge_slave_0: entered promiscuous mode
[  131.123919][ T6984] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.131615][ T6984] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.139177][ T6984] bridge_slave_1: entered allmulticast mode
[  131.149195][ T6984] bridge_slave_1: entered promiscuous mode
[  131.224230][ T6984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.238743][ T6984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.382583][ T6984] team0: Port device team_slave_0 added
[  131.398590][ T6984] team0: Port device team_slave_1 added
[  131.610299][ T7011] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input6
[  131.708334][ T6984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.715846][ T6984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.743208][ T6984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.757949][ T6984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.765319][ T6984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.791594][ T6984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  132.091806][ T7017] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  132.100493][ T7017] macsec1: entered promiscuous mode
[  132.118396][ T7017] macsec1: entered allmulticast mode
[  132.139890][ T7017] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  132.230224][ T6984] hsr_slave_0: entered promiscuous mode
[  132.256981][ T6984] hsr_slave_1: entered promiscuous mode
[  132.274358][ T6984] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  132.301140][ T6984] Cannot create hsr debugfs directory
[  132.660353][ T6984] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.695565][   T55] Bluetooth: hci1: command tx timeout
[  132.714809][ T7046] xt_cgroup: invalid path, errno=-2
[  132.721516][ T7046] __nla_validate_parse: 25 callbacks suppressed
[  132.721535][ T7046] netlink: 76 bytes leftover after parsing attributes in process `syz.0.321'.
[  132.777484][ T6984] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.880765][ T6984] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.981032][ T6984] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.136435][ T7064] netlink: 20 bytes leftover after parsing attributes in process `syz.0.326'.
[  133.183363][ T6984] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  133.206434][ T6984] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  133.242780][ T6984] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  133.284270][ T6984] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  133.588181][ T6984] 8021q: adding VLAN 0 to HW filter on device bond0
[  133.677996][ T7091] netlink: 52 bytes leftover after parsing attributes in process `syz.1.336'.
[  133.789155][ T6984] 8021q: adding VLAN 0 to HW filter on device team0
[  133.880494][   T62] bridge0: port 1(bridge_slave_0) entered blocking state
[  133.887750][   T62] bridge0: port 1(bridge_slave_0) entered forwarding state
[  133.902740][ T7099] netlink: 16 bytes leftover after parsing attributes in process `syz.2.334'.
[  133.972975][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.980227][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.207920][ T7110] netlink: 36 bytes leftover after parsing attributes in process `syz.0.340'.
[  134.529676][ T7122] FAULT_INJECTION: forcing a failure.
[  134.529676][ T7122] name failslab, interval 1, probability 0, space 0, times 0
[  134.542713][ T7122] CPU: 1 UID: 0 PID: 7122 Comm: syz.0.344 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  134.542742][ T7122] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  134.542755][ T7122] Call Trace:
[  134.542763][ T7122]  <TASK>
[  134.542772][ T7122]  dump_stack_lvl+0x241/0x360
[  134.542811][ T7122]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.542841][ T7122]  ? __pfx__printk+0x10/0x10
[  134.542885][ T7122]  should_fail_ex+0x424/0x570
[  134.542917][ T7122]  should_failslab+0xac/0x100
[  134.542949][ T7122]  kmem_cache_alloc_noprof+0x78/0x390
[  134.542984][ T7122]  ? dst_alloc+0x12b/0x190
[  134.543017][ T7122]  dst_alloc+0x12b/0x190
[  134.543057][ T7122]  xfrm_alloc_dst+0x6e/0x150
[  134.543081][ T7122]  xfrm_lookup_with_ifid+0xaff/0x1f90
[  134.543126][ T7122]  ? __pfx_xfrm_lookup_with_ifid+0x10/0x10
[  134.543176][ T7122]  ? ip6_route_output_flags+0x30/0x610
[  134.543211][ T7122]  xfrm_lookup_route+0x3c/0x1c0
[  134.543245][ T7122]  vti6_tnl_xmit+0x5e2/0x1be0
[  134.543298][ T7122]  ? __pfx_validate_xmit_xfrm+0x10/0x10
[  134.543326][ T7122]  ? __pfx_vti6_tnl_xmit+0x10/0x10
[  134.543381][ T7122]  dev_hard_start_xmit+0x2d9/0x830
[  134.543424][ T7122]  __dev_queue_xmit+0x1b80/0x3f60
[  134.543471][ T7122]  ? __dev_queue_xmit+0x2f9/0x3f60
[  134.543504][ T7122]  ? __pfx___dev_queue_xmit+0x10/0x10
[  134.543537][ T7122]  ? rcu_is_watching+0x15/0xb0
[  134.543566][ T7122]  ? skb_release_data+0x2b5/0x8b0
[  134.543626][ T7122]  ? __bpf_redirect+0x54c/0xe10
[  134.543665][ T7122]  __bpf_tx_skb+0x18f/0x260
[  134.543695][ T7122]  bpf_clone_redirect+0x271/0x3d0
[  134.543738][ T7122]  bpf_prog_5e3b4e18def6d727+0x5f/0x64
[  134.543759][ T7122]  ? unwind_get_return_address+0x4d/0x90
[  134.543800][ T7122]  ? ktime_get+0x3e/0x200
[  134.543826][ T7122]  ? seqcount_lockdep_reader_access+0x159/0x230
[  134.543854][ T7122]  ? lockdep_hardirqs_on+0x9d/0x150
[  134.543906][ T7122]  ? bpf_test_run+0x36f/0xa90
[  134.543925][ T7122]  ? __pfx___cant_migrate+0x10/0x10
[  134.543955][ T7122]  ? bpf_test_run+0x36f/0xa90
[  134.543979][ T7122]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  134.544005][ T7122]  ? bpf_test_timer_continue+0x126/0x380
[  134.544033][ T7122]  bpf_test_run+0x4ea/0xa90
[  134.544061][ T7122]  ? bpf_test_run+0x36f/0xa90
[  134.544096][ T7122]  ? __pfx_bpf_test_run+0x10/0x10
[  134.544146][ T7122]  ? __pfx_eth_type_trans+0x10/0x10
[  134.544175][ T7122]  ? bpf_prog_test_run_skb+0x854/0x1850
[  134.544206][ T7122]  ? convert___skb_to_skb+0x41/0x630
[  134.544232][ T7122]  bpf_prog_test_run_skb+0xcc3/0x1850
[  134.544291][ T7122]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  134.544323][ T7122]  ? __fget_files+0x2a/0x420
[  134.544360][ T7122]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  134.544396][ T7122]  bpf_prog_test_run+0x2e4/0x360
[  134.544425][ T7122]  __sys_bpf+0x4ee/0x8b0
[  134.544448][ T7122]  ? __pfx___sys_bpf+0x10/0x10
[  134.544485][ T7122]  ? ksys_write+0x275/0x2d0
[  134.544524][ T7122]  __x64_sys_bpf+0x7c/0x90
[  134.544557][ T7122]  do_syscall_64+0xf3/0x230
[  134.544581][ T7122]  ? clear_bhb_loop+0x45/0xa0
[  134.544607][ T7122]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.544627][ T7122] RIP: 0033:0x7fb12298e169
[  134.544646][ T7122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.544662][ T7122] RSP: 002b:00007fb1207f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  134.544684][ T7122] RAX: ffffffffffffffda RBX: 00007fb122bb5fa0 RCX: 00007fb12298e169
[  134.544699][ T7122] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a
[  134.544712][ T7122] RBP: 00007fb1207f6090 R08: 0000000000000000 R09: 0000000000000000
[  134.544724][ T7122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  134.544735][ T7122] R13: 0000000000000000 R14: 00007fb122bb5fa0 R15: 00007ffc72039f58
[  134.544770][ T7122]  </TASK>
[  135.055079][   T55] Bluetooth: hci1: command tx timeout
[  135.189304][ T7128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.345'.
[  135.379148][ T7129] netlink: 132 bytes leftover after parsing attributes in process `syz.1.345'.
[  135.441187][ T7128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.345'.
[  135.468994][ T7132] tipc: Started in network mode
[  135.475826][ T7132] tipc: Node identity 1a3678a1d3af, cluster identity 4711
[  135.483364][ T7132] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  135.547536][ T7133] netlink: 132 bytes leftover after parsing attributes in process `syz.3.346'.
[  135.603386][ T7141] netlink: 44 bytes leftover after parsing attributes in process `syz.2.349'.
[  135.611140][ T7132] syzkaller0: entered promiscuous mode
[  135.619654][ T7132] syzkaller0: entered allmulticast mode
[  135.630395][ T7132] tipc: Resetting bearer <eth:syzkaller0>
[  135.715793][ T7131] tipc: Resetting bearer <eth:syzkaller0>
[  135.840410][ T7150] FAULT_INJECTION: forcing a failure.
[  135.840410][ T7150] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  135.861503][ T7150] CPU: 0 UID: 0 PID: 7150 Comm: syz.2.352 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  135.861535][ T7150] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  135.861548][ T7150] Call Trace:
[  135.861556][ T7150]  <TASK>
[  135.861565][ T7150]  dump_stack_lvl+0x241/0x360
[  135.861604][ T7150]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.861633][ T7150]  ? __pfx__printk+0x10/0x10
[  135.861677][ T7150]  should_fail_ex+0x424/0x570
[  135.861710][ T7150]  _copy_from_user+0x2d/0xb0
[  135.861733][ T7150]  copy_msghdr_from_user+0xb3/0x580
[  135.861773][ T7150]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  135.861838][ T7150]  do_recvmmsg+0x3bf/0xab0
[  135.861879][ T7150]  ? __pfx_do_recvmmsg+0x10/0x10
[  135.861925][ T7150]  ? rcu_read_lock_any_held+0xbb/0x160
[  135.861954][ T7150]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  135.861985][ T7150]  ? vfs_write+0xb29/0xd10
[  135.862019][ T7150]  ? ksys_write+0x24e/0x2d0
[  135.862046][ T7150]  ? __mutex_unlock_slowpath+0x229/0x800
[  135.862082][ T7150]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  135.862104][ T7150]  ? __fget_files+0x2a/0x420
[  135.862153][ T7150]  __x64_sys_recvmmsg+0x1ab/0x260
[  135.862184][ T7150]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  135.862220][ T7150]  ? do_syscall_64+0xb6/0x230
[  135.862246][ T7150]  do_syscall_64+0xf3/0x230
[  135.862270][ T7150]  ? clear_bhb_loop+0x45/0xa0
[  135.862295][ T7150]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.862315][ T7150] RIP: 0033:0x7f2116f8e169
[  135.862334][ T7150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.862350][ T7150] RSP: 002b:00007f2117ec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  135.862372][ T7150] RAX: ffffffffffffffda RBX: 00007f21171b5fa0 RCX: 00007f2116f8e169
[  135.862387][ T7150] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  135.862401][ T7150] RBP: 00007f2117ec7090 R08: 0000000000000000 R09: 0000000000000000
[  135.862413][ T7150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  135.862425][ T7150] R13: 0000000000000000 R14: 00007f21171b5fa0 R15: 00007fff90a81208
[  135.862458][ T7150]  </TASK>
[  136.558250][ T5863] tipc: Node number set to 3382278305
[  137.105389][ T5841] Bluetooth: hci1: command tx timeout
[  137.372798][ T7131] tipc: Disabling bearer <eth:syzkaller0>
[  137.404260][ T6984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.794708][ T7167] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.802978][ T7167] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.816526][ T7167] bond0: left promiscuous mode
[  137.821344][ T7167] bond_slave_0: left promiscuous mode
[  137.827556][ T7167] bond_slave_1: left promiscuous mode
[  137.973738][ T7167] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.997332][ T7167] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.063677][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  138.070281][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  138.120026][ T7167] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  138.129124][ T7167] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  138.148612][ T7167] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  138.162466][ T7167] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  138.234104][ T7192] FAULT_INJECTION: forcing a failure.
[  138.234104][ T7192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.249056][ T7192] CPU: 1 UID: 0 PID: 7192 Comm: syz.2.364 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  138.249087][ T7192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.249100][ T7192] Call Trace:
[  138.249108][ T7192]  <TASK>
[  138.249116][ T7192]  dump_stack_lvl+0x241/0x360
[  138.249154][ T7192]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.249184][ T7192]  ? __pfx__printk+0x10/0x10
[  138.249227][ T7192]  should_fail_ex+0x424/0x570
[  138.249260][ T7192]  _copy_from_user+0x2d/0xb0
[  138.249283][ T7192]  copy_msghdr_from_user+0xb3/0x580
[  138.249322][ T7192]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  138.249372][ T7192]  do_recvmmsg+0x3bf/0xab0
[  138.249413][ T7192]  ? __pfx_do_recvmmsg+0x10/0x10
[  138.249458][ T7192]  ? rcu_read_lock_any_held+0xbb/0x160
[  138.249485][ T7192]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  138.249516][ T7192]  ? vfs_write+0xb29/0xd10
[  138.249549][ T7192]  ? ksys_write+0x24e/0x2d0
[  138.249575][ T7192]  ? __mutex_unlock_slowpath+0x229/0x800
[  138.249610][ T7192]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  138.249631][ T7192]  ? __fget_files+0x2a/0x420
[  138.249689][ T7192]  __x64_sys_recvmmsg+0x1ab/0x260
[  138.249720][ T7192]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  138.249755][ T7192]  ? do_syscall_64+0xb6/0x230
[  138.249781][ T7192]  do_syscall_64+0xf3/0x230
[  138.249804][ T7192]  ? clear_bhb_loop+0x45/0xa0
[  138.249832][ T7192]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.249853][ T7192] RIP: 0033:0x7f2116f8e169
[  138.249871][ T7192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.249887][ T7192] RSP: 002b:00007f2117ec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  138.249909][ T7192] RAX: ffffffffffffffda RBX: 00007f21171b5fa0 RCX: 00007f2116f8e169
[  138.249924][ T7192] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  138.249938][ T7192] RBP: 00007f2117ec7090 R08: 0000000000000000 R09: 0000000000000000
[  138.249950][ T7192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  138.249962][ T7192] R13: 0000000000000000 R14: 00007f21171b5fa0 R15: 00007fff90a81208
[  138.249994][ T7192]  </TASK>
[  138.968720][ T7216] __nla_validate_parse: 1 callbacks suppressed
[  138.968742][ T7216] netlink: 4 bytes leftover after parsing attributes in process `syz.1.369'.
[  139.180710][ T5841] Bluetooth: hci1: command tx timeout
[  139.229703][ T7213] syzkaller1: entered promiscuous mode
[  139.236816][ T7213] syzkaller1: entered allmulticast mode
[  139.605819][ T7225] netlink: 12 bytes leftover after parsing attributes in process `syz.2.372'.
[  139.699968][ T7225] netlink: 24 bytes leftover after parsing attributes in process `syz.2.372'.
[  139.718997][ T7228] veth0_to_bond: entered promiscuous mode
[  139.745981][ T7228] netlink: 4 bytes leftover after parsing attributes in process `syz.1.373'.
[  139.868342][ T7228] veth0_to_bond (unregistering): left promiscuous mode
[  139.958058][ T7228] bond0: (slave bond_slave_0): Releasing backup interface
[  140.197311][ T7234] netlink: 16 bytes leftover after parsing attributes in process `syz.0.375'.
[  140.227026][ T7234] netlink: 'syz.0.375': attribute type 29 has an invalid length.
[  140.468161][ T7243] team0: entered allmulticast mode
[  140.495254][ T7243] team_slave_0: entered allmulticast mode
[  140.545450][ T7243] team_slave_1: entered allmulticast mode
[  140.566368][ T7243] netlink: 8 bytes leftover after parsing attributes in process `syz.0.380'.
[  140.689314][ T7247] netlink: 108 bytes leftover after parsing attributes in process `syz.3.379'.
[  140.888596][ T7261] netlink: 72 bytes leftover after parsing attributes in process `syz.2.388'.
[  140.893241][ T7262] vlan0: entered allmulticast mode
[  140.908821][ T7262] bridge0: entered allmulticast mode
[  140.919527][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  140.928334][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  140.936549][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  140.946555][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  140.955080][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  141.372709][ T7275] netem: change failed
[  141.497922][ T7265] chnl_net:caif_netlink_parms(): no params data found
[  141.739690][ T7298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.397'.
[  141.789215][ T7265] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.803156][ T7265] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.815991][ T7265] bridge_slave_0: entered allmulticast mode
[  141.823983][ T7265] bridge_slave_0: entered promiscuous mode
[  141.834034][ T7265] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.841421][ T7265] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.850014][ T7265] bridge_slave_1: entered allmulticast mode
[  141.858149][ T7265] bridge_slave_1: entered promiscuous mode
[  141.867928][ T7300] netlink: 12 bytes leftover after parsing attributes in process `syz.2.396'.
[  141.944779][ T7300] veth1_to_team: entered promiscuous mode
[  141.967875][ T7265] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  142.018809][ T7265] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  142.152240][ T7265] team0: Port device team_slave_0 added
[  142.192658][ T7265] team0: Port device team_slave_1 added
[  142.276014][ T7265] batman_adv: batadv0: Adding interface: batadv_slave_0
[  142.286856][ T7265] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.322666][ T7265] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  142.335941][ T7265] batman_adv: batadv0: Adding interface: batadv_slave_1
[  142.342958][ T7265] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  142.369274][ T7265] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  142.607230][ T7265] hsr_slave_0: entered promiscuous mode
[  142.629764][ T7265] hsr_slave_1: entered promiscuous mode
[  142.641807][ T7265] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  142.653454][ T7265] Cannot create hsr debugfs directory
[  143.015601][ T5841] Bluetooth: hci1: command tx timeout
[  143.062644][ T7265] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  143.086803][ T7265] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  143.133936][ T7265] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  143.166217][ T7265] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  143.539061][ T7343] x_tables: duplicate underflow at hook 3
[  143.552920][ T7265] 8021q: adding VLAN 0 to HW filter on device bond0
[  143.590106][ T7265] 8021q: adding VLAN 0 to HW filter on device team0
[  143.603930][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.611135][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.644085][ T7343] sock: sock_timestamping_bind_phc: sock not bind to device
[  143.665683][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.672877][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  144.190615][ T7367] netlink: 'syz.1.421': attribute type 2 has an invalid length.
[  144.212879][ T7369] __nla_validate_parse: 3 callbacks suppressed
[  144.212899][ T7369] netlink: 68 bytes leftover after parsing attributes in process `syz.2.420'.
[  144.232160][ T7370] netlink: 32 bytes leftover after parsing attributes in process `syz.0.422'.
[  144.274899][ T7265] 8021q: adding VLAN 0 to HW filter on device batadv0
[  144.666606][ T7385] net_ratelimit: 11 callbacks suppressed
[  144.666627][ T7385] sock: sock_set_timeout: `syz.0.426' (pid 7385) tries to set negative timeout
[  144.745975][ T7390] netlink: 12 bytes leftover after parsing attributes in process `syz.1.427'.
[  144.871532][ T7396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.428'.
[  144.932587][ T7265] veth0_vlan: entered promiscuous mode
[  144.979287][ T7265] veth1_vlan: entered promiscuous mode
[  145.098969][ T7404] netlink: 'syz.2.428': attribute type 16 has an invalid length.
[  145.115636][ T5841] Bluetooth: hci1: command tx timeout
[  145.126443][ T7404] netlink: 'syz.2.428': attribute type 17 has an invalid length.
[  145.175016][ T7404] netlink: 'syz.2.428': attribute type 27 has an invalid length.
[  145.316789][ T7265] veth0_macvtap: entered promiscuous mode
[  145.333886][ T7265] veth1_macvtap: entered promiscuous mode
[  145.369877][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.389244][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.401932][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.442899][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.472944][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.507507][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.527574][ T7265] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.541379][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.552034][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.568410][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.608451][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.645534][ T7265] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.678692][ T7265] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.711569][ T7265] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.793323][ T7425] macsec1: entered promiscuous mode
[  145.796089][ T7431] netlink: 12 bytes leftover after parsing attributes in process `syz.0.439'.
[  145.800698][ T7425] ip6gretap0: entered promiscuous mode
[  145.813506][ T7425] macsec1: entered allmulticast mode
[  145.822672][ T7425] ip6gretap0: entered allmulticast mode
[  145.877762][ T7265] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.896607][ T7265] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.915205][ T7265] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  145.940169][ T7265] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.168076][ T7437] netlink: 36 bytes leftover after parsing attributes in process `syz.3.442'.
[  146.190343][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.212591][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.287818][ T7445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.445'.
[  146.348214][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.367389][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.429815][ T7450] netlink: 12 bytes leftover after parsing attributes in process `syz.0.446'.
[  146.730284][ T7466] netlink: 4 bytes leftover after parsing attributes in process `syz.2.451'.
[  146.753696][ T7470] netlink: 8 bytes leftover after parsing attributes in process `syz.5.374'.
[  146.914939][ T7473] netlink: 'syz.0.453': attribute type 10 has an invalid length.
[  147.185549][   T55] Bluetooth: hci1: command tx timeout
[  149.255389][   T55] Bluetooth: hci1: command tx timeout
[  149.286236][ T7561] __nla_validate_parse: 17 callbacks suppressed
[  149.286260][ T7561] netlink: 108 bytes leftover after parsing attributes in process `syz.5.481'.
[  149.842273][ T7583] netlink: 'syz.1.490': attribute type 1 has an invalid length.
[  149.884200][ T7584] netlink: 12 bytes leftover after parsing attributes in process `syz.5.491'.
[  150.068837][ T7592] netlink: 8 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.095263][ T7592] netlink: 36 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.120423][ T7596] netlink: 20 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.161735][ T7595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.492'.
[  150.255590][ T7594] netlink: 'syz.5.495': attribute type 4 has an invalid length.
[  150.378569][ T7599] netlink: 36 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.396497][ T7599] netlink: 16 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.429939][ T7599] netlink: 36 bytes leftover after parsing attributes in process `syz.0.494'.
[  150.458638][ T7599] netlink: 36 bytes leftover after parsing attributes in process `syz.0.494'.
[  151.104715][ T7618] netlink: 'syz.1.501': attribute type 4 has an invalid length.
[  151.532750][ T7624] bridge2: entered promiscuous mode
[  151.541258][ T7624] bridge2: entered allmulticast mode
[  151.553817][ T7624] team0: Port device bridge2 added
[  151.712446][ T7631] 
@ÿ: renamed from veth0_vlan (while UP)
[  152.834087][ T7677] netlink: 'syz.5.525': attribute type 11 has an invalid length.
[  153.217949][ T7697] netlink: 'syz.5.530': attribute type 29 has an invalid length.
[  153.346979][ T7702] netlink: 'syz.2.531': attribute type 11 has an invalid length.
[  153.572646][ T7723] netlink: 'syz.1.537': attribute type 29 has an invalid length.
[  153.639234][ T7725] bond1: entered promiscuous mode
[  153.646335][ T7725] 8021q: adding VLAN 0 to HW filter on device bond1
[  153.912537][ T7741] netlink: 'syz.1.544': attribute type 21 has an invalid length.
[  154.083813][ T7747] netlink: 'syz.2.545': attribute type 29 has an invalid length.
[  154.273177][ T7755] xt_time: invalid argument - start or stop time greater than 23:59:59
[  154.567474][ T7763] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  154.672408][ T7772] __nla_validate_parse: 17 callbacks suppressed
[  154.672430][ T7772] netlink: 220 bytes leftover after parsing attributes in process `syz.0.554'.
[  154.722270][ T7777] netlink: 16 bytes leftover after parsing attributes in process `syz.5.556'.
[  154.764034][ T7777] netlink: 12 bytes leftover after parsing attributes in process `syz.5.556'.
[  154.779895][ T7777] netlink: 'syz.5.556': attribute type 29 has an invalid length.
[  154.932475][ T7790] netlink: 12 bytes leftover after parsing attributes in process `syz.5.559'.
[  154.953153][ T7790] netlink: 4096 bytes leftover after parsing attributes in process `syz.5.559'.
[  154.983048][ T7786] smc: net device bond0 applied user defined pnetid SYZ0
[  154.994131][ T7787] smc: net device bond0 erased user defined pnetid SYZ0
[  155.234896][ T7801] netlink: 68 bytes leftover after parsing attributes in process `syz.0.562'.
[  155.261791][ T7805] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[  155.280718][ T7805] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  155.311990][ T7805] netlink: 148 bytes leftover after parsing attributes in process `syz.5.563'.
[  155.687614][ T7826] netlink: 4 bytes leftover after parsing attributes in process `syz.5.569'.
[  155.780900][   T10] hid-multitouch 0005:0457:0009.0002: unknown main item tag 0x0
[  155.808924][   T10] hid-multitouch 0005:0457:0009.0002: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  155.862386][ T7838] mac80211_hwsim hwsim9 wlan1: entered promiscuous mode
[  155.873451][ T7838] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  155.940334][ T7841] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  156.299841][ T7852] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  156.301733][ T7850] netlink: 12 bytes leftover after parsing attributes in process `syz.2.577'.
[  156.322270][ T7853] bond0: option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0)
[  156.333484][ T7850] netlink: 8 bytes leftover after parsing attributes in process `syz.2.577'.
[  156.971565][ T7873] can: request_module (can-proto-4) failed.
[  157.153297][ T7892] netlink: 'syz.5.587': attribute type 1 has an invalid length.
[  157.233221][ T7896] netlink: 'syz.1.589': attribute type 1 has an invalid length.
[  157.629101][ T7915] FAULT_INJECTION: forcing a failure.
[  157.629101][ T7915] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.668642][ T7915] CPU: 1 UID: 0 PID: 7915 Comm: syz.0.593 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  157.668675][ T7915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  157.668687][ T7915] Call Trace:
[  157.668696][ T7915]  <TASK>
[  157.668704][ T7915]  dump_stack_lvl+0x241/0x360
[  157.668742][ T7915]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.668771][ T7915]  ? __pfx__printk+0x10/0x10
[  157.668814][ T7915]  should_fail_ex+0x424/0x570
[  157.668844][ T7915]  _copy_from_user+0x2d/0xb0
[  157.668867][ T7915]  copy_msghdr_from_user+0xb3/0x580
[  157.668906][ T7915]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  157.668956][ T7915]  do_recvmmsg+0x3bf/0xab0
[  157.668996][ T7915]  ? __pfx_do_recvmmsg+0x10/0x10
[  157.669049][ T7915]  ? rcu_read_lock_any_held+0xbb/0x160
[  157.669076][ T7915]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  157.669105][ T7915]  ? vfs_write+0xb29/0xd10
[  157.669139][ T7915]  ? ksys_write+0x24e/0x2d0
[  157.669165][ T7915]  ? __mutex_unlock_slowpath+0x229/0x800
[  157.669200][ T7915]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  157.669222][ T7915]  ? __fget_files+0x2a/0x420
[  157.669269][ T7915]  __x64_sys_recvmmsg+0x1ab/0x260
[  157.669300][ T7915]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  157.669335][ T7915]  ? do_syscall_64+0xb6/0x230
[  157.669362][ T7915]  do_syscall_64+0xf3/0x230
[  157.669384][ T7915]  ? clear_bhb_loop+0x45/0xa0
[  157.669409][ T7915]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  157.669429][ T7915] RIP: 0033:0x7fb12298e169
[  157.669447][ T7915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  157.669463][ T7915] RSP: 002b:00007fb1207f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  157.669485][ T7915] RAX: ffffffffffffffda RBX: 00007fb122bb5fa0 RCX: 00007fb12298e169
[  157.669500][ T7915] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  157.669514][ T7915] RBP: 00007fb1207f6090 R08: 0000000000000000 R09: 0000000000000000
[  157.669526][ T7915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  157.669538][ T7915] R13: 0000000000000000 R14: 00007fb122bb5fa0 R15: 00007ffc72039f58
[  157.669570][ T7915]  </TASK>
[  158.302411][ T7933] netlink: 'syz.0.599': attribute type 11 has an invalid length.
[  158.328242][ T7933] netlink: 'syz.0.599': attribute type 11 has an invalid length.
[  159.712960][ T7996] __nla_validate_parse: 14 callbacks suppressed
[  159.712982][ T7996] netlink: 256 bytes leftover after parsing attributes in process `syz.5.617'.
[  159.749607][ T7996] netlink: 'syz.5.617': attribute type 9 has an invalid length.
[  160.222228][ T8031] netlink: 32 bytes leftover after parsing attributes in process `syz.1.628'.
[  160.487985][ T8050] bond0: entered promiscuous mode
[  160.493100][ T8050] mac80211_hwsim hwsim7 wlan1: entered promiscuous mode
[  160.515622][ T8050] batadv0: entered promiscuous mode
[  160.530049][ T8050] 8021q: adding VLAN 0 to HW filter on device hsr1
[  160.541884][ T8058] netlink: 208 bytes leftover after parsing attributes in process `syz.2.635'.
[  160.553950][ T8050] bond0: left promiscuous mode
[  160.558961][ T8058] netlink: 8 bytes leftover after parsing attributes in process `syz.2.635'.
[  160.570588][ T8050] mac80211_hwsim hwsim7 wlan1: left promiscuous mode
[  160.579232][ T8050] batadv0: left promiscuous mode
[  161.300927][ T8094] netlink: 'syz.2.647': attribute type 4 has an invalid length.
[  161.321268][ T8094] netlink: 8 bytes leftover after parsing attributes in process `syz.2.647'.
[  161.603417][ T8095] can: request_module (can-proto-3) failed.
[  161.659421][ T8116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.649'.
[  162.387291][ T8128] FAULT_INJECTION: forcing a failure.
[  162.387291][ T8128] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  162.422664][ T8128] CPU: 0 UID: 0 PID: 8128 Comm: syz.2.655 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  162.422706][ T8128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  162.422719][ T8128] Call Trace:
[  162.422728][ T8128]  <TASK>
[  162.422736][ T8128]  dump_stack_lvl+0x241/0x360
[  162.422775][ T8128]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.422805][ T8128]  ? __pfx__printk+0x10/0x10
[  162.422849][ T8128]  should_fail_ex+0x424/0x570
[  162.422881][ T8128]  _copy_from_user+0x2d/0xb0
[  162.422904][ T8128]  copy_msghdr_from_user+0xb3/0x580
[  162.422945][ T8128]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  162.422996][ T8128]  do_recvmmsg+0x3bf/0xab0
[  162.423037][ T8128]  ? __pfx_do_recvmmsg+0x10/0x10
[  162.423083][ T8128]  ? rcu_read_lock_any_held+0xbb/0x160
[  162.423112][ T8128]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  162.423143][ T8128]  ? vfs_write+0xb29/0xd10
[  162.423177][ T8128]  ? ksys_write+0x24e/0x2d0
[  162.423204][ T8128]  ? __mutex_unlock_slowpath+0x229/0x800
[  162.423239][ T8128]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  162.423261][ T8128]  ? __fget_files+0x2a/0x420
[  162.423311][ T8128]  __x64_sys_recvmmsg+0x1ab/0x260
[  162.423342][ T8128]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  162.423378][ T8128]  ? do_syscall_64+0xb6/0x230
[  162.423405][ T8128]  do_syscall_64+0xf3/0x230
[  162.423429][ T8128]  ? clear_bhb_loop+0x45/0xa0
[  162.423454][ T8128]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.423474][ T8128] RIP: 0033:0x7f2116f8e169
[  162.423492][ T8128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.423508][ T8128] RSP: 002b:00007f2117ec7038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  162.423530][ T8128] RAX: ffffffffffffffda RBX: 00007f21171b5fa0 RCX: 00007f2116f8e169
[  162.423546][ T8128] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  162.423560][ T8128] RBP: 00007f2117ec7090 R08: 0000000000000000 R09: 0000000000000000
[  162.423573][ T8128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  162.423597][ T8128] R13: 0000000000000000 R14: 00007f21171b5fa0 R15: 00007fff90a81208
[  162.423630][ T8128]  </TASK>
[  162.528526][ T8133] bridge0: entered promiscuous mode
[  162.738083][ T8137] netlink: 'syz.5.658': attribute type 4 has an invalid length.
[  162.920108][ T8143] netlink: 24 bytes leftover after parsing attributes in process `syz.2.659'.
[  163.162120][ T8154] netlink: 'syz.3.666': attribute type 10 has an invalid length.
[  163.207372][ T8154] macvlan0: entered allmulticast mode
[  163.231882][ T8154] veth1_vlan: entered allmulticast mode
[  163.261792][ T5841] Bluetooth: hci1: command 0x0405 tx timeout
[  163.318304][ T8154] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  164.739717][ T8214] netlink: 356 bytes leftover after parsing attributes in process `syz.3.688'.
[  164.777542][ T8214] netlink: 356 bytes leftover after parsing attributes in process `syz.3.688'.
[  164.816844][ T8219] netlink: 4 bytes leftover after parsing attributes in process `syz.3.688'.
[  165.019912][ T8224] netlink: 'syz.2.687': attribute type 1 has an invalid length.
[  165.048102][ T8224] netlink: 224 bytes leftover after parsing attributes in process `syz.2.687'.
[  165.381575][ T8240] netlink: 16 bytes leftover after parsing attributes in process `syz.3.694'.
[  165.420295][ T8240] netlink: 12 bytes leftover after parsing attributes in process `syz.3.694'.
[  165.461684][ T8240] netlink: 'syz.3.694': attribute type 29 has an invalid length.
[  165.531617][ T8245] netlink: 24 bytes leftover after parsing attributes in process `syz.5.696'.
[  165.646282][ T8249] netlink: 'syz.3.698': attribute type 7 has an invalid length.
[  165.668385][ T8249] netlink: 12 bytes leftover after parsing attributes in process `syz.3.698'.
[  165.684180][ T8249] bond0: option arp_all_targets: invalid value (18446744073709551615)
[  165.692769][ T6717] bond0: (slave bond_slave_0): interface is now down
[  165.705020][ T6717] bond0: (slave bond_slave_1): interface is now down
[  165.708920][ T8254] netlink: 16 bytes leftover after parsing attributes in process `syz.3.698'.
[  165.719072][ T6717] bond0: (slave macvlan0): interface is now down
[  165.738448][ T6717] bond0: now running without any active interface!
[  166.145575][ T8277] netlink: 16 bytes leftover after parsing attributes in process `syz.0.708'.
[  166.169864][ T8277] netlink: 'syz.0.708': attribute type 29 has an invalid length.
[  166.920412][ T5863] IPVS: starting estimator thread 0...
[  167.035767][ T8316] IPVS: using max 26 ests per chain, 62400 per kthread
[  167.057636][ T8325] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.082450][ T8324] netlink: 'syz.5.724': attribute type 29 has an invalid length.
[  167.134894][ T8329] veth1_to_bond: entered allmulticast mode
[  167.152319][ T8329] veth1_to_bond: entered promiscuous mode
[  167.164735][ T8328] veth1_to_bond: left promiscuous mode
[  167.193810][ T8328] veth1_to_bond: left allmulticast mode
[  167.717201][ T8349] Bluetooth: MGMT ver 1.23
[  167.833364][ T8355] netlink: 'syz.5.735': attribute type 3 has an invalid length.
[  168.026675][ T8363] netlink: 'syz.5.737': attribute type 29 has an invalid length.
[  168.086824][ T5863] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.140271][  T978] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.191419][ T8365] netlink: 'syz.5.738': attribute type 18 has an invalid length.
[  168.215056][ T5863] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.345542][  T978] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.525757][ T5892] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.601026][ T5892] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.675441][ T5904] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.727158][ T5863] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.821171][ T8393] netlink: 'syz.3.748': attribute type 29 has an invalid length.
[  168.829680][ T5904] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  168.895530][ T5904] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  169.465928][ T8409] tipc: Started in network mode
[  169.476579][ T8409] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  169.497228][ T8409] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:0000
[  169.513048][ T8409] tipc: Enabled bearer <udp:syz1>, priority 1
[  169.926222][ T8421] __nla_validate_parse: 146 callbacks suppressed
[  169.926243][ T8421] netlink: 344 bytes leftover after parsing attributes in process `syz.5.755'.
[  170.189883][ T8430] sctp: [Deprecated]: syz.3.758 (pid 8430) Use of struct sctp_assoc_value in delayed_ack socket option.
[  170.189883][ T8430] Use struct sctp_sack_info instead
[  170.383727][ T8439] sctp: [Deprecated]: syz.3.758 (pid 8439) Use of int in max_burst socket option deprecated.
[  170.383727][ T8439] Use struct sctp_assoc_value instead
[  170.399567][ T8436] netlink: 'syz.5.760': attribute type 29 has an invalid length.
[  170.531113][ T8446] xt_CT: No such helper "netbios-ns"
[  170.549596][ T8438] tunl0: left promiscuous mode
[  170.678836][ T8462] netlink: 12 bytes leftover after parsing attributes in process `syz.5.764'.
[  170.702371][  T978] tipc: Node number set to 1
[  170.864816][ T8470] can: request_module (can-proto-3) failed.
[  171.094443][ T8438] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.102412][ T8438] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.112017][ T8438] bridge0: left promiscuous mode
[  171.674886][ T8438] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  171.707432][ T8438] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.802925][ T8438] veth1_vlan: left allmulticast mode
[  171.810561][ T8438] macvlan0: left allmulticast mode
[  171.881817][ T8438] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.892269][ T8438] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.913774][ T8438] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  171.925623][ T8438] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  172.088484][ T8438] bond1: left promiscuous mode
[  172.176219][ T8454] netlink: 12 bytes leftover after parsing attributes in process `syz.5.764'.
[  172.315891][ T8493] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input7
[  172.644235][ T8519] netlink: 12 bytes leftover after parsing attributes in process `syz.5.775'.
[  172.860321][ T8527] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  172.870149][ T8533] netlink: 16 bytes leftover after parsing attributes in process `syz.0.778'.
[  172.966423][ T8535] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  173.264416][ T8545] netlink: 16 bytes leftover after parsing attributes in process `syz.5.782'.
[  173.427377][ T8555] netlink: 16 bytes leftover after parsing attributes in process `syz.2.785'.
[  173.515403][ T8560] netlink: 'syz.1.787': attribute type 5 has an invalid length.
[  173.663749][ T8564] netlink: 8 bytes leftover after parsing attributes in process `syz.1.787'.
[  173.688585][ T8564] netlink: 44 bytes leftover after parsing attributes in process `syz.1.787'.
[  173.776554][ T8566] netlink: 20 bytes leftover after parsing attributes in process `syz.2.789'.
[  174.511943][ T8602] xt_limit: Overflow, try lower: 0/0
[  175.042163][ T8627] __nla_validate_parse: 2 callbacks suppressed
[  175.042184][ T8627] netlink: 8 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.064087][ T8628] netlink: 16 bytes leftover after parsing attributes in process `syz.1.804'.
[  175.070248][ T8631] netlink: 24 bytes leftover after parsing attributes in process `syz.3.807'.
[  175.105604][ T8627] netlink: 36 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.108841][ T8634] netlink: 20 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.135175][ T8631] netlink: 24 bytes leftover after parsing attributes in process `syz.3.807'.
[  175.240235][ T8641] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  175.302839][ T8631] netlink: 'syz.3.807': attribute type 4 has an invalid length.
[  175.312184][ T8634] netlink: 36 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.322377][ T8634] netlink: 16 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.328162][ T8635] netlink: 'syz.3.807': attribute type 4 has an invalid length.
[  175.331722][ T8634] netlink: 36 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.348630][ T8634] netlink: 36 bytes leftover after parsing attributes in process `syz.2.806'.
[  175.564979][ T8657] netlink: 'syz.3.813': attribute type 21 has an invalid length.
[  175.890688][ T8666] sctp: [Deprecated]: syz.1.817 (pid 8666) Use of struct sctp_assoc_value in delayed_ack socket option.
[  175.890688][ T8666] Use struct sctp_sack_info instead
[  175.917528][ T8667] sctp: [Deprecated]: syz.1.817 (pid 8667) Use of struct sctp_assoc_value in delayed_ack socket option.
[  175.917528][ T8667] Use struct sctp_sack_info instead
[  175.946244][ T8670] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  176.670411][ T8704] netlink: 'syz.1.830': attribute type 1 has an invalid length.
[  177.100629][ T8713] sctp: [Deprecated]: syz.5.832 (pid 8713) Use of struct sctp_assoc_value in delayed_ack socket option.
[  177.100629][ T8713] Use struct sctp_sack_info instead
[  177.189968][ T8716] sctp: [Deprecated]: syz.5.832 (pid 8716) Use of int in max_burst socket option deprecated.
[  177.189968][ T8716] Use struct sctp_assoc_value instead
[  177.241080][ T8718] FAULT_INJECTION: forcing a failure.
[  177.241080][ T8718] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.259164][ T8718] CPU: 1 UID: 0 PID: 8718 Comm: syz.3.834 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  177.259198][ T8718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.259212][ T8718] Call Trace:
[  177.259220][ T8718]  <TASK>
[  177.259229][ T8718]  dump_stack_lvl+0x241/0x360
[  177.259268][ T8718]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.259298][ T8718]  ? __pfx__printk+0x10/0x10
[  177.259342][ T8718]  should_fail_ex+0x424/0x570
[  177.259373][ T8718]  _copy_from_user+0x2d/0xb0
[  177.259396][ T8718]  copy_msghdr_from_user+0xb3/0x580
[  177.259436][ T8718]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  177.259487][ T8718]  do_recvmmsg+0x3bf/0xab0
[  177.259528][ T8718]  ? __pfx_do_recvmmsg+0x10/0x10
[  177.259573][ T8718]  ? rcu_read_lock_any_held+0xbb/0x160
[  177.259601][ T8718]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  177.259631][ T8718]  ? vfs_write+0xb29/0xd10
[  177.259665][ T8718]  ? ksys_write+0x24e/0x2d0
[  177.259692][ T8718]  ? __mutex_unlock_slowpath+0x229/0x800
[  177.259734][ T8718]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  177.259756][ T8718]  ? __fget_files+0x2a/0x420
[  177.259805][ T8718]  __x64_sys_recvmmsg+0x1ab/0x260
[  177.259837][ T8718]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  177.259872][ T8718]  ? do_syscall_64+0xb6/0x230
[  177.259899][ T8718]  do_syscall_64+0xf3/0x230
[  177.259922][ T8718]  ? clear_bhb_loop+0x45/0xa0
[  177.259947][ T8718]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.259967][ T8718] RIP: 0033:0x7f6208f8e169
[  177.259986][ T8718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.260003][ T8718] RSP: 002b:00007f6206df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  177.260025][ T8718] RAX: ffffffffffffffda RBX: 00007f62091b5fa0 RCX: 00007f6208f8e169
[  177.260041][ T8718] RDX: 015cbc1ab4c0933f RSI: 0000200000001980 RDI: 0000000000000003
[  177.260055][ T8718] RBP: 00007f6206df6090 R08: 0000000000000000 R09: 0000000000000000
[  177.260068][ T8718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  177.260081][ T8718] R13: 0000000000000000 R14: 00007f62091b5fa0 R15: 00007ffdd7abe0f8
[  177.260114][ T8718]  </TASK>
[  178.150186][ T8719] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.158718][ T8719] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.697631][ T8719] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  178.720698][ T8719] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  178.866399][ T8719] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  178.876363][ T8719] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  178.886140][ T8719] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  178.895058][ T8719] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  179.590703][ T8761] syz_tun: entered allmulticast mode
[  179.613513][ T8765] lo: entered allmulticast mode
[  179.699566][ T8759] syz_tun: left allmulticast mode
[  179.714169][ T8748] netlink: 'syz.5.844': attribute type 1 has an invalid length.
[  179.725397][ T8759] lo: left allmulticast mode
[  179.745376][ T8748] netlink: 'syz.5.844': attribute type 2 has an invalid length.
[  180.586070][ T8776] tap0: tun_chr_ioctl cmd 2147767507
[  180.669227][ T8794] sctp: [Deprecated]: syz.5.854 (pid 8794) Use of int in maxseg socket option.
[  180.669227][ T8794] Use struct sctp_assoc_value instead
[  180.729521][ T8794] __nla_validate_parse: 16 callbacks suppressed
[  180.729545][ T8794] netlink: 36 bytes leftover after parsing attributes in process `syz.5.854'.
[  181.281749][ T8814] netlink: 8 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.291666][ T8814] netlink: 36 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.306510][ T8814] netlink: 20 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.406252][ T8817] netlink: 16 bytes leftover after parsing attributes in process `syz.0.863'.
[  181.478912][ T8820] netlink: 36 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.517386][ T8820] netlink: 16 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.537216][ T8820] netlink: 36 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.557084][ T8820] netlink: 36 bytes leftover after parsing attributes in process `syz.3.862'.
[  181.633467][ T8826] netlink: 36 bytes leftover after parsing attributes in process `syz.1.865'.
[  183.541438][ T8887] vlan2: entered promiscuous mode
[  183.547869][ T8887] vlan2: entered allmulticast mode
[  183.554137][ T8887] hsr_slave_1: entered allmulticast mode
[  184.240817][ T8913] syzkaller0: entered promiscuous mode
[  184.250572][ T8913] syzkaller0: entered allmulticast mode
[  184.282656][ T8916] tipc: Started in network mode
[  184.295504][ T8916] tipc: Node identity , cluster identity 4711
[  184.320349][ T8916] tipc: Failed to obtain node identity
[  184.342806][ T8916] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  186.397814][ T8946] erspan0: entered promiscuous mode
[  186.426996][ T8946] batman_adv: batadv0: Adding interface: macvlan3
[  186.433560][ T8946] batman_adv: batadv0: The MTU of interface macvlan3 is too small (1450) to handle the transport of batman-adv packets. If you experience problems getting traffic through try increasing the MTU to 1560.
[  186.512531][ T8946] batman_adv: batadv0: Interface activated: macvlan3
[  186.546204][ T8952] __nla_validate_parse: 12 callbacks suppressed
[  186.546229][ T8952] netlink: 8 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.575790][ T8952] netlink: 36 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.598068][ T8958] netlink: 16 bytes leftover after parsing attributes in process `syz.3.910'.
[  186.607516][ T8961] netlink: 20 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.625864][ T8958] netlink: 12 bytes leftover after parsing attributes in process `syz.3.910'.
[  186.679013][ T8963] netlink: 16 bytes leftover after parsing attributes in process `syz.5.909'.
[  186.775979][ T8958] netlink: 'syz.3.910': attribute type 29 has an invalid length.
[  186.841709][ T8952] netlink: 36 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.888471][ T8952] netlink: 16 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.910672][ T8952] netlink: 36 bytes leftover after parsing attributes in process `syz.0.907'.
[  186.933300][ T8952] netlink: 36 bytes leftover after parsing attributes in process `syz.0.907'.
[  187.000869][ T8978] xt_connbytes: Forcing CT accounting to be enabled
[  187.008136][ T8978] Cannot find add_set index 2 as target
[  187.759674][ T9005] netlink: 'syz.3.922': attribute type 29 has an invalid length.
[  187.803824][ T9007] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  188.633651][ T9042] netlink: 'syz.1.934': attribute type 29 has an invalid length.
[  188.840731][ T9050] netem: incorrect ge model size
[  188.853991][ T9050] netem: change failed
[  189.654022][ T9080] netlink: 'syz.0.946': attribute type 29 has an invalid length.
[  190.364651][ T9103] netlink: 'syz.3.954': attribute type 10 has an invalid length.
[  190.411703][ T9103] batman_adv: batadv0: Adding interface: team0
[  190.423409][ T9103] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  190.451378][ T9104] netlink: 'syz.3.954': attribute type 10 has an invalid length.
[  190.465926][ T9103] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  190.499733][ T9104] team0: entered promiscuous mode
[  190.505042][ T9104] team_slave_0: entered promiscuous mode
[  190.514944][ T9104] team_slave_1: entered promiscuous mode
[  190.531415][ T9104] 8021q: adding VLAN 0 to HW filter on device team0
[  190.539854][ T9104] batman_adv: batadv0: Interface activated: team0
[  190.547124][ T9104] batman_adv: batadv0: Interface deactivated: team0
[  190.554090][ T9104] batman_adv: batadv0: Removing interface: team0
[  190.570322][ T9104] bridge0: port 3(team0) entered blocking state
[  190.578074][ T9104] bridge0: port 3(team0) entered disabled state
[  190.586109][ T9104] team0: entered allmulticast mode
[  190.591660][ T9104] team_slave_0: entered allmulticast mode
[  190.598572][ T9104] team_slave_1: entered allmulticast mode
[  190.637141][ T9112] netlink: 'syz.0.957': attribute type 29 has an invalid length.
[  190.748035][ T9116] lo: entered allmulticast mode
[  190.783726][ T9116] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  191.455645][ T9148] sock: sock_set_timeout: `syz.3.969' (pid 9148) tries to set negative timeout
[  191.610035][ T9154] __nla_validate_parse: 22 callbacks suppressed
[  191.610058][ T9154] netlink: 104 bytes leftover after parsing attributes in process `syz.3.972'.
[  191.756145][ T9161] netlink: 44 bytes leftover after parsing attributes in process `syz.2.973'.
[  191.775437][ T9161] netlink: 43 bytes leftover after parsing attributes in process `syz.2.973'.
[  191.784362][ T9161] netlink: 'syz.2.973': attribute type 6 has an invalid length.
[  191.792710][ T9161] netlink: 'syz.2.973': attribute type 5 has an invalid length.
[  191.809383][ T9161] netlink: 43 bytes leftover after parsing attributes in process `syz.2.973'.
[  192.113328][ T9173] bond1: entered promiscuous mode
[  192.262090][ T9181] netlink: 232 bytes leftover after parsing attributes in process `syz.0.979'.
[  192.277783][ T9181] netlink: 4 bytes leftover after parsing attributes in process `syz.0.979'.
[  192.352103][ T9185] netlink: 4 bytes leftover after parsing attributes in process `syz.2.980'.
[  192.471366][ T9189] netlink: 8 bytes leftover after parsing attributes in process `syz.0.982'.
[  192.507652][ T9189] netlink: 36 bytes leftover after parsing attributes in process `syz.0.982'.
[  192.557538][ T9189] netlink: 20 bytes leftover after parsing attributes in process `syz.0.982'.
[  193.039766][ T9212] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  193.050730][ T9212] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  193.061454][ T9212] hsr0: entered promiscuous mode
[  193.067592][ T9212] hsr0: entered allmulticast mode
[  193.072849][ T9212] hsr_slave_0: entered allmulticast mode
[  193.078622][ T9212] hsr_slave_1: entered allmulticast mode
[  193.091210][ T9212] bridge_slave_1: left allmulticast mode
[  193.103257][ T9212] bridge_slave_1: left promiscuous mode
[  193.109371][ T9212] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.127044][ T9212] bridge_slave_0: left allmulticast mode
[  193.133315][ T9212] bridge_slave_0: left promiscuous mode
[  193.145817][ T9212] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.197240][ T9215] x_tables: duplicate underflow at hook 2
[  193.242396][ T9215] netlink: 'syz.2.988': attribute type 29 has an invalid length.
[  193.260153][ T9215] netlink: 'syz.2.988': attribute type 29 has an invalid length.
[  193.314296][ T9215] netlink: 'syz.2.988': attribute type 10 has an invalid length.
[  193.386924][ T9215] team0: Device veth1_macvtap failed to register rx_handler
[  194.961088][ T9257] IPv4: Oversized IP packet from 127.202.26.0
[  196.487931][ T9302] bridge3: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  197.031808][ T9322] __nla_validate_parse: 29 callbacks suppressed
[  197.031832][ T9322] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.077725][ T9322] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.134769][ T9322] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.292475][ T9334] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.358835][ T9334] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.397857][ T9334] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.407772][ T9334] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1024'.
[  197.700224][ T9347] netlink: 'syz.1.1030': attribute type 1 has an invalid length.
[  197.712256][ T9347] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1030'.
[  198.385509][ T9377] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1037'.
[  198.394782][ T9377] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1037'.
[  198.638878][ T9388] netlink: 'syz.5.1041': attribute type 4 has an invalid length.
[  198.887013][ T9398] netlink: zone id is out of range
[  198.899171][ T9398] netlink: zone id is out of range
[  198.919684][ T9398] netlink: zone id is out of range
[  198.943007][ T9398] netlink: zone id is out of range
[  198.962845][ T9398] netlink: zone id is out of range
[  199.038746][ T9411] x_tables: duplicate underflow at hook 1
[  199.359830][ T9422] tun0: tun_chr_ioctl cmd 1074025677
[  199.365723][ T9422] tun0: linktype set to 776
[  199.409724][ T9428] IPv6: syztnl1: Disabled Multicast RS
[  199.500234][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[  199.515303][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[  199.595628][ T9438] sctp: [Deprecated]: syz.1.1058 (pid 9438) Use of int in max_burst socket option.
[  199.595628][ T9438] Use struct sctp_assoc_value instead
[  199.669482][ T9442] netlink: 'syz.2.1060': attribute type 1 has an invalid length.
[  199.889828][ T9449] 8021q: adding VLAN 0 to HW filter on device bond3
[  199.938707][ T9449] bond2: (slave bond3): making interface the new active one
[  199.948357][ T9449] bond2: (slave bond3): Enslaving as an active interface with an up link
[  200.054312][ T9452] bond2: (slave gretap1): Enslaving as a backup interface with an up link
[  200.090020][ T9442] 8021q: adding VLAN 0 to HW filter on device bond2
[  200.359832][ T9479] netdevsim netdevsim2 netdevsim1: Unsupported IPsec algorithm
[  200.396957][ T9486] delete_channel: no stack
[  200.983625][ T9520] tun0: tun_chr_ioctl cmd 1074025677
[  200.992518][ T9520] tun0: linktype set to 773
[  201.003734][ T9520] xt_hashlimit: size too large, truncated to 1048576
[  201.034884][ T9522] netlink: 'syz.1.1086': attribute type 1 has an invalid length.
[  201.059887][ T9522] netlink: 'syz.1.1086': attribute type 1 has an invalid length.
[  201.075585][ T9524] netlink: 'syz.2.1087': attribute type 10 has an invalid length.
[  201.136082][ T9524] 8021q: adding VLAN 0 to HW filter on device team0
[  201.170419][ T9524] bond0: (slave team0): Enslaving as an active interface with an up link
[  201.194717][ T9527] netlink: 'syz.0.1088': attribute type 1 has an invalid length.
[  201.700931][ T9550] netlink: 'syz.2.1092': attribute type 1 has an invalid length.
[  201.788017][ T9550] netlink: 'syz.2.1092': attribute type 1 has an invalid length.
[  202.016136][ T9569] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (14)
[  202.048800][ T9571] __nla_validate_parse: 11 callbacks suppressed
[  202.048825][ T9571] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1098'.
[  202.159319][ T9584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1102'.
[  203.301636][ T9589] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1106'.
[  203.606610][ T9622] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  203.614230][ T9622] IPv6: NLM_F_CREATE should be set when creating new route
[  204.165413][ T9641] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1123'.
[  204.285713][ T9642] 
[  204.288092][ T9642] ============================================
[  204.294260][ T9642] WARNING: possible recursive locking detected
[  204.300419][ T9642] 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 Not tainted
[  204.307615][ T9642] --------------------------------------------
[  204.313760][ T9642] syz.3.1124/9642 is trying to acquire lock:
[  204.319736][ T9642] ffffc9001c5ed0d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x20e/0x650
[  204.329441][ T9642] 
[  204.329441][ T9642] but task is already holding lock:
[  204.337076][ T9642] ffffc9001c8410d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x20e/0x650
[  204.346678][ T9642] 
[  204.346678][ T9642] other info that might help us debug this:
[  204.354824][ T9642]  Possible unsafe locking scenario:
[  204.354824][ T9642] 
[  204.362288][ T9642]        CPU0
[  204.365577][ T9642]        ----
[  204.368861][ T9642]   lock(&rb->spinlock);
[  204.373114][ T9642]   lock(&rb->spinlock);
[  204.377368][ T9642] 
[  204.377368][ T9642]  *** DEADLOCK ***
[  204.377368][ T9642] 
[  204.385514][ T9642]  May be due to missing lock nesting notation
[  204.385514][ T9642] 
[  204.393923][ T9642] 3 locks held by syz.3.1124/9642:
[  204.399060][ T9642]  #0: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run3+0x24e/0x5b0
[  204.408492][ T9642]  #1: ffffc9001c8410d8 (&rb->spinlock){-.-.}-{2:2}, at: __bpf_ringbuf_reserve+0x20e/0x650
[  204.418890][ T9642]  #2: ffffffff8ed3dfe0 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1fe/0x550
[  204.428318][ T9642] 
[  204.428318][ T9642] stack backtrace:
[  204.434270][ T9642] CPU: 1 UID: 0 PID: 9642 Comm: syz.3.1124 Not tainted 6.15.0-rc1-syzkaller-00368-gbbfc077d4572 #0 PREEMPT(full) 
[  204.434297][ T9642] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  204.434308][ T9642] Call Trace:
[  204.434317][ T9642]  <TASK>
[  204.434325][ T9642]  dump_stack_lvl+0x241/0x360
[  204.434359][ T9642]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.434383][ T9642]  ? __pfx__printk+0x10/0x10
[  204.434406][ T9642]  ? print_lock+0x171/0x1a0
[  204.434426][ T9642]  print_deadlock_bug+0x2be/0x2d0
[  204.434448][ T9642]  validate_chain+0x928/0x24e0
[  204.434474][ T9642]  ? __lock_acquire+0xad5/0xd80
[  204.434492][ T9642]  ? __lock_acquire+0xad5/0xd80
[  204.434509][ T9642]  ? do_raw_spin_lock+0x151/0x370
[  204.434533][ T9642]  __lock_acquire+0xad5/0xd80
[  204.434553][ T9642]  lock_acquire+0x116/0x2f0
[  204.434568][ T9642]  ? __bpf_ringbuf_reserve+0x20e/0x650
[  204.434595][ T9642]  _raw_spin_lock_irqsave+0xd8/0x130
[  204.434622][ T9642]  ? __bpf_ringbuf_reserve+0x20e/0x650
[  204.434642][ T9642]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  204.434667][ T9642]  ? __bpf_ringbuf_reserve+0x4c5/0x650
[  204.434691][ T9642]  __bpf_ringbuf_reserve+0x20e/0x650
[  204.434712][ T9642]  ? __pfx___bpf_ringbuf_reserve+0x10/0x10
[  204.434737][ T9642]  ? __pfx___bpf_ringbuf_reserve+0x10/0x10
[  204.434759][ T9642]  ? __pfx___cant_migrate+0x10/0x10
[  204.434782][ T9642]  bpf_ringbuf_reserve+0x5c/0x70
[  204.434801][ T9642]  ? bpf_trace_run2+0x1fe/0x550
[  204.434825][ T9642]  bpf_prog_fe0ed97373b08409+0x2e/0x4b
[  204.434844][ T9642]  ? bpf_trace_run2+0x1fe/0x550
[  204.434867][ T9642]  bpf_trace_run2+0x2ee/0x550
[  204.434892][ T9642]  ? cgroup_rstat_updated+0x144/0xc40
[  204.434915][ T9642]  ? __pfx_bpf_trace_run2+0x10/0x10
[  204.434951][ T9642]  ? __bpf_trace_contention_begin+0x151/0x230
[  204.434974][ T9642]  __bpf_trace_contention_begin+0x172/0x230
[  204.434995][ T9642]  ? __lock_acquire+0xad5/0xd80
[  204.435011][ T9642]  ? __pfx___bpf_trace_contention_begin+0x10/0x10
[  204.435039][ T9642]  trace_contention_begin+0x11b/0x140
[  204.435062][ T9642]  __pv_queued_spin_lock_slowpath+0x116/0xdc0
[  204.435081][ T9642]  ? is_bpf_text_address+0x288/0x2a0
[  204.435102][ T9642]  ? is_bpf_text_address+0x26/0x2a0
[  204.435122][ T9642]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  204.435152][ T9642]  ? kernel_text_address+0xa7/0xe0
[  204.435178][ T9642]  ? __kernel_text_address+0xd/0x40
[  204.435205][ T9642]  ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10
[  204.435230][ T9642]  ? arch_stack_walk+0xff/0x150
[  204.435257][ T9642]  queued_spin_lock_slowpath+0x42/0x50
[  204.435282][ T9642]  do_raw_spin_lock+0x276/0x370
[  204.435308][ T9642]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  204.435336][ T9642]  _raw_spin_lock_irqsave+0xe4/0x130
[  204.435362][ T9642]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[  204.435388][ T9642]  ? filp_close+0x28/0x40
[  204.435413][ T9642]  ? do_syscall_64+0xf3/0x230
[  204.435431][ T9642]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.435456][ T9642]  __bpf_ringbuf_reserve+0x20e/0x650
[  204.435483][ T9642]  ? __pfx___bpf_ringbuf_reserve+0x10/0x10
[  204.435506][ T9642]  ? __pfx___cant_migrate+0x10/0x10
[  204.435528][ T9642]  ? bpf_trace_run3+0x24e/0x5b0
[  204.435553][ T9642]  bpf_ringbuf_reserve+0x5c/0x70
[  204.435573][ T9642]  bpf_prog_fe0ed97373b08409+0x2e/0x4b
[  204.435588][ T9642]  bpf_trace_run3+0x33c/0x5b0
[  204.435615][ T9642]  ? __pfx_bpf_trace_run3+0x10/0x10
[  204.435639][ T9642]  ? mntput_no_expire+0x264/0x880
[  204.435658][ T9642]  ? __fput+0x63f/0x9f0
[  204.435674][ T9642]  ? __pfx_mntput_no_expire+0x10/0x10
[  204.435695][ T9642]  ? __fput+0x63f/0x9f0
[  204.435709][ T9642]  ? __fput+0x63f/0x9f0
[  204.435721][ T9642]  kmem_cache_free+0x36b/0x410
[  204.435744][ T9642]  ? apparmor_file_free_security+0xc1/0xe0
[  204.435767][ T9642]  __fput+0x63f/0x9f0
[  204.435785][ T9642]  task_work_run+0x251/0x310
[  204.435809][ T9642]  ? _raw_spin_unlock+0x28/0x50
[  204.435836][ T9642]  ? __pfx_task_work_run+0x10/0x10
[  204.435862][ T9642]  ? syscall_exit_to_user_mode+0xa3/0x340
[  204.435882][ T9642]  syscall_exit_to_user_mode+0x13f/0x340
[  204.435902][ T9642]  do_syscall_64+0x100/0x230
[  204.435920][ T9642]  ? clear_bhb_loop+0x45/0xa0
[  204.435939][ T9642]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.435956][ T9642] RIP: 0033:0x7f6208f8e169
[  204.435971][ T9642] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.435986][ T9642] RSP: 002b:00007ffdd7abe258 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  204.436005][ T9642] RAX: 0000000000000000 RBX: 00007f62091b7ba0 RCX: 00007f6208f8e169
[  204.436017][ T9642] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  204.436027][ T9642] RBP: 00007f62091b7ba0 R08: 00000000000000bc R09: 0000000ad7abe54f
[  204.436039][ T9642] R10: 00000000003ffd20 R11: 0000000000000246 R12: 0000000000032064
[  204.436050][ T9642] R13: 00007f62091b6080 R14: ffffffffffffffff R15: 00007ffdd7abe370
[  204.436069][ T9642]  </TASK>
[  211.816192][ T5841] Bluetooth: hci3: command 0x0406 tx timeout
[  211.820007][ T5854] Bluetooth: hci2: command 0x0406 tx timeout