last executing test programs:

5.438960869s ago: executing program 4 (id=4043):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x1, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}}, 0x24}}, 0x40004)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0x7}, {}, {0xa}}, [@filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0x2, 0x3}]}}, @TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x6}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x20000000)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000b40)={'wlan0\x00'})
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000300)={0x0, 0x48, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x10040096}, 0x4004014)
r8 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000200)='GPL\x00', 0x5, 0x20, &(0x7f00000002c0)=""/32, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x8, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r9, &(0x7f0000000000)={0xa, 0xe22, 0x0, @mcast1, 0x1ffffd}, 0x1c)
socket$kcm(0x10, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r10 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r10, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000580)=[@in6={0xa, 0x4e24, 0x0, @private1}]}, &(0x7f0000000180)=0x10)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
ioctl$FS_IOC_RESVSP(r5, 0x40305828, &(0x7f0000000400)={0x0, 0x2, 0x5})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0xfffffffffffffe83)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

5.008437194s ago: executing program 3 (id=4048):
r0 = socket$kcm(0x23, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f00000000c0)=r1, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000013c0)=0xc)
socket$caif_seqpacket(0x25, 0x5, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000040)={0x0, 0x29, 0xfffffffe}, 0x10)
r5 = gettid()
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB], 0xc0)
sendmmsg$inet6(r6, 0x0, 0x0, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000080)={0x8, <r7=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r7, 0x4)
sendmsg$unix(r3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {r5}}}], 0x20}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000340)={0x60000006})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000940)={r1, r1})

4.809745345s ago: executing program 3 (id=4049):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x2f, &(0x7f0000000000)=0x2, 0x4)
sendmmsg$inet(r0, &(0x7f0000002bc0)=[{{&(0x7f0000000140)={0x2, 0x4e20, @multicast2}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000180)="83e4b573251ba26b3d1326231d8cf549e34917df32d64f96fcc3f2c643e52b0dccf3f1f1a5e7297b5a9cea469e77fbe8a9f3d035af7f31229459cdc0cce6ef645c1e48e1c26921d637d62885bacde89b12c122fa27dc841805a46d2a2c51c4f0f742884ff9f7ffdca0ee4165e386e0edcea817211252a445533aee61d8a8fa56", 0x80}, {&(0x7f0000000240)="dae21ca22f86002f4408f32ff6206d941fa618189f6ad17aa22cbf2dbc5ef62f2de1a6c055798067914de39fba2f50224c4e16", 0x33}, {&(0x7f0000000500)="c14375749c90618bafd7566e7892ea1290321cfd09a9dd4fb70a6bfc9d9635bb96a943b0c4d1f760b96f6ad409b4b2af8abce476c38d736bdc13c3cc5e366926039518f3aec7b2efb0a2015a5b13cfeb4888ec06fd58720b59963d5275f5ca4caf0eca893d6de35be7600272d6ec0ab02c81f81999481483f32bb8b8b5773b8e1eb6e0f241f1dd0e210d2c24c541d47860aea4099748", 0x96}], 0x3}}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000700)="53a7ca18a894a1524e68f6f2d8b5fef7a4d1f8b9241f968c7c7c719f941b50ac6bdc8043fef019b638fef8a7fd743a2129c4bf244864d1b73841a01d90a421388c43e8de761088a4a21705536d4a60553da9b0f49e2fa14056e54df8d26acb43157b37dc942bf384cda67cce1e6c62", 0x6f}], 0x1}}, {{0x0, 0x0, &(0x7f0000000d40)=[{&(0x7f0000000a00)="ba0000000000000001", 0x9}, {&(0x7f00000007c0)="0b28d5ebd15be7fbfcd07f83e5f18528fbb9750f58bccc67a33ddf49e86c856398f4c578caa000bc5d9535cab2f74def78a829d7c40cff55f2262e42f0442d9d4fc86510caf91f2ec26165d9057468fb227ee4abab439b0f33531fc3b38989455b1ab5413835cc0f30ef4084bd1cb3a66fdc323c2eb688e69278d8c983c2ad7b2accf127b7aa7690b501351ce80dca0e3c07f3ee04ef", 0x96}, {&(0x7f0000000b00)="b9157a0130a2faab95380ee6e30be2e30035c057582bafff035522fe687dfcd88b01b3ef2ce2858c1bdf577fc360fc48f754cfbe0dca2a0e7737f4bd8b7deb38e6c13558984a343064801d0a6317300d888c211be256555770cea4674aa81d985e31d2575921e27f22efd7458524a1b2845956841502c3c46b8b1afa7173", 0x7e}, {&(0x7f0000005740)="284bc1dd890b2fd51833aaecff800fbc7aa800a7e3a1b0c75455140271c3ffea757058494d41fbe4f12e0e83c8f3da2e8b1a5d41c1c81cbfd576c92e61135ebe03a671fc73a422b735c328fcd44a31d77a67b316f31b02e0687ff78f2cbe840e3ae5a9891f96f0ccc14cc55da219acc99869a3aab5900db8e01c5f208cb4ca3b71f27726b85224b6791d", 0x8a}], 0x4, &(0x7f00000005c0)=ANY=[@ANYBLOB="28000000000000000000000007000000070beaac1e01017f000001440c3e11ac14142e00000009001400000000"], 0x40}}], 0x3, 0x90)

4.714517364s ago: executing program 2 (id=4051):
r0 = socket(0x11, 0x800, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000060000000000000000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000d8ffffffb702000008000000b7030000000080008500000006000000b7080000ff000000dbaaf8fff1000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b705000008000000850000006a00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r4}, 0xc)
r5 = socket$kcm(0x10, 0x2, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x60, 0x2, 0x6, 0x101, 0x0, 0x0, {0xa}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0xffffffff}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x6}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x13, 0x3, 'hash:net,iface\x00'}]}, 0x60}}, 0x0)
r7 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r7, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
r8 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r9=>0x0})
r10 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="15050000000000001c0012800b0001006972766c616e00000c000280060001000000000008000500daac1ea9ce02dcac75eb2c0ca6ac1085cbe552455cedf2ffa7fe169cb345a651148cf0b1530f6a263b94e0b0a5c8eea7492202499aeb6b89d9a5dddd7971dee6a5a70e0bdcc849ff8cab2bed79bad07d33cca38b18f8fc8b8980e6f5b48b47e998af843a4dceff68a0d241ad454449c99b0300000000000000dacb551018e8b668afd636fb39b16f7ec19b6168ecdafd2c248c9290d8f2f75a3c780c419445bd7820b3dd6c9c48907bc8d982dc1145fdfe5c6545a0f26b49a4b161fa5a2fef8161900000000000000000000000000000000000000000005fe0247b253094a1f2f4db509eda17fcd89c59a7f6d61116baecfa213f0936f75d999a279f071250a50c0406a91d031a8424ec04205a9e5fd5ba3a8f719a1c8c92be36cf492d3a880f43e541bcefd93317f92e26c12ffd", @ANYRES32=r9, @ANYBLOB], 0x44}}, 0x0)
sendmmsg$inet6(r7, &(0x7f0000000780)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40c8000)
sendmmsg(r7, &(0x7f0000000040), 0x4d0, 0x60000000)
sendmsg$kcm(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="2e00000011008108090f9becdb4cb92e0a4831371400000069bd6efb2502eaf60d000100020400bf050005001201", 0x2e}], 0x1}, 0xc0010)
r11 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000400000000000000000006b0000000000000000030000000002000000020000000000000000000100000500000000000000000100"/86], 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
ioctl$sock_inet_SIOCSIFADDR(r11, 0x8916, &(0x7f0000000040)={'veth1_macvtap\x00', {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}})
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000006c0)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x515}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_MODE={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x44}}, 0x0)

4.634522163s ago: executing program 3 (id=4053):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a80)={0xc4, 0x19, 0xa, 0x5, 0x0, 0x0, {}, [@NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x1}, @NFTA_RULE_USERDATA={0x77, 0x7, 0x1, 0x0, "2117a3a0ca6bead4b2affca81cb36d623843a09caac7c60cc10db68f9bd1302e297a212d278947f6c5f84380ea54538713c854eca55bc10a4cbb5c3dc9bde47d5b40f3a48f7f76ed821b47bfbf5ce8d41300b68af5acb031c11fbbadd121be33fad0718050f676454bed7aee1101e5e42c1945"}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x2}, @NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x4}, @NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}]}, 0xc4}}, 0x0) (async)
unshare(0x62040200) (async)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4) (async)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0xfffffffc, 0xff, 0x80000000}, 0x1c) (async)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x30}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c) (async)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
shutdown(r3, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async, rerun: 32)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) (rerun: 32)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) (async)
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000240)={'syzkaller1\x00', @link_local})
writev(r4, &(0x7f0000000480)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf06712e9232f2f8db0049d90491ceaebfd26d4eef23248000000f858dbb8a19052343f", 0x35}, {&(0x7f0000000180)="050000000e80006558", 0x9}, {&(0x7f0000000280)="4cdabfd01f55", 0x6}], 0x3) (async)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0) (async)
close(0xffffffffffffffff) (async)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000005c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x7fffffe, 0x0, {[{{@uncond, 0x300, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310) (async, rerun: 64)
socket$netlink(0x10, 0x3, 0x2) (async, rerun: 64)
r6 = socket$kcm(0x11, 0x200000000000002, 0x300) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYBLOB], &(0x7f0000000300)='syzkaller\x00', 0xf, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x7, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r6, 0x1, 0x32, &(0x7f0000000000)=r7, 0x4)
r8 = socket$netlink(0x10, 0x3, 0x4)
write(r8, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

4.382925989s ago: executing program 4 (id=4054):
r0 = socket$inet6(0xa, 0x80002, 0x0)
r1 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
sendmmsg$inet(r1, &(0x7f0000005240), 0x4000095, 0x0)
bind$ax25(r1, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095000000000000f9"], &(0x7f0000000740)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), r1)
sendmsg$NL80211_CMD_START_P2P_DEVICE(r1, &(0x7f0000000640)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000600)={&(0x7f00000005c0)={0x20, r3, 0x100, 0x7, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x369, 0x53}}}}, ["", "", "", "", "", ""]}, 0x20}, 0x1, 0x0, 0x0, 0x24008800}, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400df2501000a00"/20], 0x14}}, 0x0)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f00000003c0)={<r7=>0x0, @in={{0x2, 0x4e24, @private=0xa010100}}, [0x60f2, 0x6, 0xae45900000000000, 0x100, 0xf, 0x8, 0x10001, 0x2, 0x7df, 0x2, 0x5, 0x2, 0x0, 0xb53, 0xf72e]}, &(0x7f0000000040)=0x100)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000500)={r7, 0xfffffffe}, &(0x7f00000006c0)=0x8)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="020300030e0000000000000000000000020017000000000002"], 0x70}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r10=>0x0}, &(0x7f00000004c0)=0x27)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000180)={r10}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r6, 0x84, 0x10, &(0x7f0000000680)=@sack_info={r10, 0x1, 0x1}, &(0x7f00000004c0)=0xc)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000000380)=[@in={0x2, 0x4e20, @empty}, @in={0x2, 0x4e20, @local}], 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'batadv_slave_1\x00', <r11=>0x0})
sendto$packet(r1, &(0x7f0000000180)="0bd7a4926e2020d6b50b5c57064acc915f2d9f1eee4c48bc195d9220950e285654c2ea561618bd082d8d712b59d724435b7be153d2f6541555890258974c194a045172c9798466582c83c4c8ed1f4795dab35bcec184c5c9573222230066fbcf98714411387d8a30320b3bbb61076783b0e121cc6afa58049493c8b602e5fe8ba4952804c04bc77fd12c6075f160f26ffccfd922a133ff31f24906b463291d5be60404cf13a414d79ceb9c2c24d50999644e703608e5cca6252535e731255f7ea9", 0xc1, 0x0, &(0x7f0000000380)={0x11, 0x17, r11, 0x1, 0xf9, 0x6, @remote}, 0x14)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000006007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000002000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000005000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)

4.339997993s ago: executing program 1 (id=4055):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x11ff, @broadcast, 'bond_slave_1\x00'}}, 0x1e)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)="2e00000010008108040f80ecdb4cb92e0a480e000f000000e8bd6efb250314000e000100240248ff050005001200", 0x2e}], 0x1}, 0x40880)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DATA={0x1c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x6, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_IMMEDIATE_DREG={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
epoll_create(0x3)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$igmp6(0xa, 0x3, 0x2)
socket$netlink(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r4=>0xffffffffffffffff})
getpeername$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r3, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r5}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

4.190644974s ago: executing program 2 (id=4056):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000580)=@framed={{}, [@printk={@d, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xb0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket(0x1e, 0x4, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f0000000040), &(0x7f0000000080)=0x4)
getsockopt$IP_VS_SO_GET_TIMEOUT(r0, 0x0, 0x486, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_PEER_REMOVE(r3, &(0x7f0000000dc0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000ac0)={0x38, r4, 0x1, 0x0, 0x25dfdbff, {}, [@TIPC_NLA_NET={0x24, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x4}, @TIPC_NLA_NET_ADDR={0x7, 0x2, 0x7}, @TIPC_NLA_NET_ID={0x0, 0x1, 0x7ff}]}]}, 0x38}}, 0x0)
connect$can_bcm(r2, &(0x7f0000000080), 0x10)
sendmsg$can_bcm(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)={0x5, 0x0, 0x0, {}, {}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "f8ca44dfaa00"}}, 0x48}, 0x1, 0x0, 0x0, 0x48850}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000540)={'vxcan0\x00', <r5=>0x0})
sendmsg$can_bcm(r2, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, r5}, 0x10, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB="050000000000000000000000000000002b7c3266ccb8b0c9d9a19ad091cc38bf1625581dd0a2f64302e1ac31475e927a2be18b3216ca4e65aec810677e15783a393e8593001215809b770d8d0bcfbc69fe36bb9e87f0144df654f2d04a111f31aeb85ddeb242621422b70b80f30a3670ca0fb84d211380c1b402d6a5e4ed05f02c405a40479b51d635605dd51618cd703333a1d7077c83b161", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x2710, @ANYBLOB="00000000010000000000000003020000b68c52d2be3c0d90"], 0x48}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000240)={0x2, 0x7fffffffffffffff, 0x99, &(0x7f0000000480)=""/153})
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, 0x0, 0x0)
r8 = accept4(r7, 0x0, 0x0, 0x0)
accept4$ax25(r8, &(0x7f0000000380)={{0x3, @null}, [@default, @rose, @rose, @bcast, @default, @null, @default, @netrom]}, 0x0, 0x80000)
sendmsg$DCCPDIAG_GETSOCK(r8, &(0x7f0000000800)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000300)={&(0x7f0000000680)={0x158, 0x13, 0x400, 0x70bd29, 0x25dfdbfd, {0x2, 0x4e, 0xd, 0x1, {0x4e20, 0x4e24, [0x80000001, 0x10001, 0x7, 0x6], [0xb, 0x4, 0x1, 0x8], r5, [0x4, 0x2]}, 0xa1d9, 0x1}, [@INET_DIAG_REQ_BYTECODE={0xc2, 0x1, "a7c35e05da4a060c6224a39858cb25e2f29bfd2c944bc5c6bcdfe69da886d36e197adaa9de5484f1a9300fd57156b79d1b564c3833ee460faa17106abc7b250c09da84ed8804705e644fc316267d3bb7c5e6426e2b868bd1a5f409b1668cadea0c7c4d1d77c47274b4c3da93a255ce74d179396fcadfaf547d1ba8c34a732a57ad1e74494006b279d9c39a06f65f09701d465fd1f660ccb0a7c0b103fa802232dbba86590eec489c661d013777d0b3367707813273fce376df159bb76347"}, @INET_DIAG_REQ_BYTECODE={0x45, 0x1, "fee45864587806381ea0a516a8162b0312a1476dce8a6d2e29ca4672e9608d5b6a632263a6b81c92865cee1cdbd222955c2797c75d48a33e879b06e563d87ed744"}]}, 0x158}, 0x1, 0x0, 0x0, 0xbaaef0249089ce7c}, 0x41)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r9=>0x0})
socket$kcm(0x29, 0x7, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@getchain={0x24, 0x11, 0x1, 0x0, 0x2000001, {0x0, 0x0, 0x0, r9, {0x1}, {0x9}, {0x1, 0x6}}}, 0x24}}, 0x40044)

3.435120577s ago: executing program 4 (id=4057):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="400000000203010200000500000000867b7f7d00080003400b070000090002009944336d650019a408000440000000000800010001"], 0x40}}, 0x20000000)
bind$inet(r0, &(0x7f0000000400)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x1b3a, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r5, 0x104, 0x4, &(0x7f0000000080), 0x4)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_NEW_SERVICE(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01000000000000000000010000004000018007000600666f00000800080000000000060001000200000008000500000000000c0007000000000000000000080009"], 0x54}}, 0x0)
sendmsg$IPVS_CMD_DEL_SERVICE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\n\x00', @ANYRES16=r6, @ANYBLOB="010028bd7000fddbdf25030000001400018008000500000000000600010002000000"], 0x28}, 0x1, 0x0, 0x0, 0x40}, 0x20040000)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x80, r6, 0x0, 0x70bd26, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e20}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e21}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0xa}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100}, @IPVS_CMD_ATTR_DAEMON={0x28, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast2}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x58}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x600}]}, 0x80}, 0x1, 0x0, 0x0, 0x8001}, 0x8000)
ioctl$sock_inet_SIOCSIFFLAGS(r4, 0x8914, &(0x7f0000000340)={'veth0_macvtap\x00', 0x400})
sendmmsg$inet(r0, &(0x7f00000072c0)=[{{0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000000080)="229c", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000002dc0)=[{&(0x7f0000002880)="23db1e7e", 0x4}], 0x1}}], 0x2, 0x4000805)

2.140868001s ago: executing program 0 (id=4058):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0) (fail_nth: 5)

2.114953254s ago: executing program 1 (id=4059):
r0 = socket$kcm(0x23, 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f00000000c0)=r1, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000013c0)=0xc)
socket$caif_seqpacket(0x25, 0x5, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_RTOINFO(r4, 0x84, 0x0, &(0x7f0000000040)={0x0, 0x29, 0xfffffffe}, 0x10)
r5 = gettid()
r6 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r6, 0x1, 0x3c, &(0x7f0000000100)={0x200000000000001}, 0x8)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r6, 0x29, 0x36, &(0x7f0000001440)=ANY=[@ANYBLOB], 0xc0)
sendmmsg$inet6(r6, 0x0, 0x0, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r6, 0x29, 0x39, 0x0, 0x0)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000080)={0x8, <r7=>0x0}, 0x8)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r7, 0x4)
sendmsg$unix(r3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@cred={{0x1c, 0x1, 0x2, {r5}}}], 0x20}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000340)={0x60000006})
ioctl$sock_kcm_SIOCKCMATTACH(r0, 0x89e0, &(0x7f0000000940)={r1, r1})

2.026989729s ago: executing program 1 (id=4060):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x30, r1, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@NBD_ATTR_SOCKETS={0x4}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000044}, 0x8000)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000540)={0x24, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r4=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=ANY=[@ANYBLOB="280000001300f5d10300"/20, @ANYRES32=r4, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\r'], 0x28}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

1.601066s ago: executing program 2 (id=4061):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r1, 0x6, 0x21, &(0x7f0000000040)="5766b1b827f600333b09d3748ee7d700", 0x10)
listen(r1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f0000000200)=0x2, 0x43)
ioctl$int_in(r1, 0x5452, &(0x7f00000000c0)=0x1)
shutdown(r1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="19000054d86afc46ec3da878eb38a4006e1d6f000400000093e9c1a7d1331a8500000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000001600)={r2, 0x0}, 0x20)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000080)=[{r3}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
close(r5)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f8483d0000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, 0x0, 0x0)
r7 = bpf$ITER_CREATE(0x21, &(0x7f0000000000), 0x8)
bind$llc(r7, &(0x7f00000000c0)={0x1a, 0x13, 0x1, 0x4, 0x83, 0x6, @broadcast}, 0x10)
r8 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb0100180000000000000064000000640000000b000000080000000600000f020000000200000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004977000000000000000f020000001760000000000000000061"], 0x0, 0x87, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="ee000000", @ANYRES16=0x0, @ANYBLOB="0100fdffffff000000000100000008000100", @ANYRES32=r8, @ANYBLOB="400002803c0001"], 0x5c}, 0x1, 0xf000, 0x0, 0x8c1}, 0x20040)
sendmsg$netlink(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000480)=ANY=[@ANYBLOB="53dd7f16ae180100002d010100b2f62e050000de0300de430000007b15e292", @ANYBLOB="ae36007e01e43f29f60270947964b6dbd9ed8920d4e03d77792c3ebb96ecc8e166af4da0c4305b99a74d0aa5bcf894eff6e60b469ca5994b85acdf1b8b97c550b5ae39abb8c8c98471b516f20693651dffa5c94cc5a2650c46537974faebc234ee76f83311159c376026ddb655a865", @ANYRES64=0x0], 0x118}], 0x1, 0x0, 0x0, 0x5}, 0x0)

1.579599908s ago: executing program 4 (id=4062):
socket(0x11, 0x800000003, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socketpair(0x1, 0x5, 0x0, &(0x7f0000000240))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000400)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f0000006280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b00)=@newtaction={0x98, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x84, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x10000000}, 0x1, r2}}]}, {0x4, 0xa}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x98}}, 0x0)

1.532099322s ago: executing program 1 (id=4063):
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket(0x2, 0x3, 0xff)
recvmmsg$unix(r1, &(0x7f0000004240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000020, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f00005d3000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000496000/0x2000)=nil, 0x2000, 0x0, 0x12, r3, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f00005d6000/0x1000)=nil, 0x1000, 0xe, 0x4010, r5, 0xaf0ce000)
mmap(&(0x7f00004a3000/0x1000)=nil, 0x1000, 0x0, 0x13, r4, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000497000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r6, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x24, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r7, {0xe}, {}, {0x8, 0xffe0}}}, 0x24}}, 0x4000)
getpeername(0xffffffffffffffff, 0x0, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r8, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.439110763s ago: executing program 3 (id=4064):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
ioctl$SIOCGSTAMP(r0, 0x8906, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x1c)

1.438560336s ago: executing program 0 (id=4065):
socket(0x1e, 0x1, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)="580000001400192340834b80040d8c561e067f0202ff000000020000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300", 0x42}], 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000040)={0x64, r3, 0x405, 0x70bd27, 0x25dfdbfe, {}, [{{0x8, 0x1, r4}, {0x48, 0x2, 0x0, 0x1, [{0x44, 0x1, @name={{0x24}, {0x5}, {0x11, 0x4, 'activebackup\x00'}}}]}}]}, 0x64}, 0x1, 0x800000000000000, 0x0, 0x4000401}, 0x44084)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'team0\x00', <r5=>0x0})
syz_emit_ethernet(0x5e, &(0x7f0000000340)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0000ff", 0x28, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0xd9, 0x0, 0x0, 0x0, {[@generic={0x0, 0x2}, @mptcp=@synack={0x1e, 0x10, 0x7, 0x2, 0x4, 0x4, 0x2}]}}}}}}}}, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000000400)={@private2}, &(0x7f0000000440)=0x14)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f00000004c0)=0x14)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000500)={@dev, @multicast2}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000580)={'team0\x00', <r6=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000800)={&(0x7f00000005c0)={0xa4, r3, 0x400, 0x70bd25, 0x25dfdbfd, {}, [{{0x8, 0x1, r5}, {0x4}}, {{0x8, 0x1, r6}, {0x7c, 0x2, 0x0, 0x1, [{0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x400}}, {0x8}}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x24000800)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x40, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x40}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

1.369777905s ago: executing program 4 (id=4066):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001600)=@ipv4_newrule={0x2c, 0x20, 0x301, 0xfffffffe, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_SUPPRESS_IFGROUP={0x8, 0xd, 0x4}, @FRA_GENERIC_POLICY=@FRA_SUPPRESS_PREFIXLEN={0x8, 0xe, 0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4048000}, 0x4000850)
pipe(&(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r4=>0x0})
sendto$packet(r3, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x13, 0x7, 0x4, 0x100000, 0x22400, r2, 0x5, '\x00', r4, r5, 0x2, 0x5, 0x1, 0x0, @void, @value, @void, @value}, 0x50)
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r8 = accept4(r7, 0x0, 0x0, 0x0)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4e23, 0x5, @empty, 0x5}, 0x1c)
sendmsg$alg(r8, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@assoc={0x10, 0x117, 0x4, 0x2}, @iv={0x70, 0x117, 0x2, 0xffffffffffffffec, "6b4ca98fdb9fc864f66dd714f756fda8b563cd864ee5fb535319d173f253e7ee53be6ad95cb109ab3e6c978690cdf3ab6b8066037f87f5d767985abd8ee8cb6b476ab4e426a7ea81364f684c314532e71a0abf2179229eed580aa2c1c2"}], 0x80, 0x20000000}, 0x0)
sendmsg$nl_route(r6, 0x0, 0x62880)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$devlink(&(0x7f00000016c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r9, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001740)={&(0x7f0000000140)={0x34, r10, 0xf1aad47e89fb43b5, 0x0, 0x0, {}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}}, 0x0)

1.244419703s ago: executing program 0 (id=4067):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000001340)="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", 0x88f, 0x20000000, 0x0, 0x0) (fail_nth: 5)

1.150966472s ago: executing program 3 (id=4068):
r0 = getpid()
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x10010000004e20}, 0x1c)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[], 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000250000000e0001006e657464657673696d0000000f0002206e4f657464657673696d30000008008b", @ANYRES32=r0, @ANYBLOB], 0x3c}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x491, 0x0, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000200), 0x4)
r7 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r6, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r9}, @generic={0x1c}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r10, 0x58, &(0x7f00000003c0)}, 0x10)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r12=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x24, r11, 0x1, 0x70bd24, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r12}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x1002}]}, 0x24}, 0x1, 0x0, 0x0, 0x4014001}, 0x9590f6cc3ea35512)
r13 = socket(0x10, 0x3, 0x0)
bind$alg(r13, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'morus640-generic\x00'}, 0x58)
socket$rxrpc(0x21, 0x2, 0xa)

644.886065ms ago: executing program 0 (id=4069):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000010000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000008500000057"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, 0x0, 0x0)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)

606.39886ms ago: executing program 1 (id=4070):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[], 0x1a000}}, 0x0)
sendmsg$rds(r0, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)=""/4096, 0x1000}], 0x1}, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0x42, 0x4, 0x308, 0xffffffff, 0xb0, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x2d8, 0x2d8, 0x2d8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0xb0, 0x0, {0x100000000000000}}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x0, 0x9}}}, {{@uncond, 0x0, 0xc8, 0x128, 0x0, {}, [@common=@inet=@socket3={{0x28, 'socket\x00', 0x2}}, @common=@unspec=@cluster={{0x30}, {0x4, 0x4, 0x183e, 0x1}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @remote, 0x4ca, 0xb, [0x10, 0x2a, 0x36, 0xe, 0x7, 0xf, 0xb, 0x22, 0x39, 0x12, 0x17, 0x36, 0x6, 0xe, 0xa, 0x10], 0x0, 0xb, 0x681}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'wlan1\x00', 'pim6reg1\x00', {0xff}}, 0x0, 0x70, 0x98}, @REJECT={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x368)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000011c0)=ANY=[@ANYBLOB="a00000000001010400000000000000000a0000003c0001802c00018014000300000000000000000000000000000000001400040000000000000000000000ffffac1414000c00028005000100000000003c0002802c000180140003000000000000000000000000000000000014000400fc0200000000000000000000000000000c0002800500010000000000084000000000f65c763a8750f673af2ffe8ac327bd2f95c79d07e4be1f036fb0f6df88a68d22c268064be56147d15d9698def91f21fcae00"/209], 0xa0}, 0x1, 0xfffff000}, 0x0)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000200)='bridge0\x00')
r3 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r3)

475.104132ms ago: executing program 2 (id=4071):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000021c0)=ANY=[@ANYBLOB=' \x00\b\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000030202000900010073797a3100000000"], 0x20}, 0x1, 0x40030000000000}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=@newtaction={0x78, 0x30, 0x51b, 0x0, 0x0, {}, [{0x64, 0x1, [@m_skbmod={0x60, 0x1, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_DMAC={0xa}]}, {0x4, 0x14}, {0xc}, {0xc, 0x6}}}]}]}, 0x78}}, 0x0)
unshare(0x28000600)
socket$inet6_icmp(0xa, 0x2, 0x3a)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x5f9, &(0x7f0000000300)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r6}, &(0x7f0000000080), &(0x7f00000000c0)=r5}, 0x20)
ioctl$FS_IOC_GETFLAGS(r3, 0x80086601, &(0x7f0000000100))
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000005c0)={'wlan0\x00'})
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_DEL_STATION(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="770b8a4c8dbfc749ccaa5e86314c038a0917bf30776101392971b3b47d86f006bfe62e6aa44823fbc4d4620a75a8acc1aba741f31c4085662e8ae7380d37e123b1e266e98a91b55359d8e6cbd49664c5f113a3bf1c", @ANYRES32=r7, @ANYBLOB], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x0)

372.967818ms ago: executing program 2 (id=4072):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0x8, 0x7f, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000680)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0x1c}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_GET_NETID(r2, &(0x7f0000001d80)={0x0, 0x0, &(0x7f0000001d40)={&(0x7f0000001d00)={0x1c, 0x0, 0x1, 0x70bd2b, 0x25dfdbff}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x804)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), 0xffffffffffffffff)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r1, 0x58, &(0x7f00000003c0)}, 0x10)

369.269665ms ago: executing program 0 (id=4073):
r0 = socket$kcm(0x2, 0xa, 0x2)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', <r2=>0x0})
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001000)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c00028005000a000000000008000500", @ANYRES32=r2], 0x44}}, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'veth1_macvtap\x00', &(0x7f0000000080)=@ethtool_sfeatures={0x3b, 0x2, [{0x7}, {0xfffffffe, 0x80003}]}}) (fail_nth: 14)

274.511297ms ago: executing program 1 (id=4074):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000300), 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newneigh={0x1c, 0x1c, 0x1, 0x70bd2d, 0x25dfdc02, {0x2, 0x0, 0x0, 0x0, 0x80, 0xd, 0x6}}, 0x1c}, 0x1, 0x0, 0x0, 0x2004c811}, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x989, 0x0, 0x10}, 0x9c)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="440000001000010828bd70000000000000004c00", @ANYRES32=0x0, @ANYBLOB="210800000000000008001b00"], 0x44}, 0x1, 0xffffa888, 0x0, 0x48000}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003f00)=[{{0x0, 0xf, &(0x7f0000000300)=[{&(0x7f0000000140)="a2", 0x1a058}], 0x1}}], 0x1, 0x0)

240.215792ms ago: executing program 4 (id=4075):
socket$kcm(0x11, 0x0, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
setsockopt$rose(r0, 0x104, 0x6, &(0x7f00000006c0)=0x2, 0x4)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getsockopt$netrom_NETROM_T4(r2, 0x103, 0x4, 0x0, &(0x7f00000000c0))
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0xc, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18040000000000000000000000000000180000002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-aes-neonbs\x00'}, 0x58)
r4 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000001a00)="e8a472", 0x3}, {&(0x7f00000003c0)="bcc9b1550100fad1f955144629ed4dcfa6506031fc023c33679ea22502e3cff8923bf5d43921bc111a262f295a8eb5407616a273293ace0f3fecd1dc55", 0x3d}], 0x2}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1400000016001d0a"], 0x14}}, 0x0)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)

103.369407ms ago: executing program 0 (id=4076):
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400}) (fail_nth: 72)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

103.060387ms ago: executing program 2 (id=4077):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000200)=ANY=[@ANYBLOB="500000001000370400"/20, @ANYRES32=r3, @ANYBLOB="83040500010000003000128008000100677265002400028008000700ac1414"], 0x50}}, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000000)}}], 0x1, 0x0)

0s ago: executing program 3 (id=4078):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000000280)={0x78}, 0x8)
r4 = syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x24, r4, 0x1, 0x70bd2b, 0x25dfdbfe, {0x5}, [@L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaaa}, @L2TP_ATTR_SESSION_ID={0x8, 0xb, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008100}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)=[0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3, &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], 0x0, 0x38, &(0x7f00000001c0)=[{}, {}], 0x10, 0x10, &(0x7f0000000200), &(0x7f0000000240), 0x8, 0xb2, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r1)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f00000004c0)={'wpan0\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)={0x44, r7, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x7}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000011c0)={0x1c, 0x2c, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x800}, @nested={0x8, 0x18, 0x0, 0x1, [@generic="05ac0f00"]}]}, 0x1c}], 0x1}, 0x0)

kernel console output (not intermixed with test programs):

5fa0 RCX: 00007fe32678d169
[  378.765733][T15667] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[  378.765746][T15667] RBP: 00007fe3275cc090 R08: 0000000000000000 R09: 0000000000000000
[  378.765758][T15667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  378.765770][T15667] R13: 0000000000000000 R14: 00007fe3269a5fa0 R15: 00007fff0a9ea708
[  378.765798][T15667]  </TASK>
[  379.140347][T15670] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3440'.
[  379.239791][T15675] FAULT_INJECTION: forcing a failure.
[  379.239791][T15675] name failslab, interval 1, probability 0, space 0, times 0
[  379.269903][T15675] CPU: 1 UID: 0 PID: 15675 Comm: syz.2.3443 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  379.269928][T15675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  379.269940][T15675] Call Trace:
[  379.269947][T15675]  <TASK>
[  379.269955][T15675]  dump_stack_lvl+0x241/0x360
[  379.269982][T15675]  ? __pfx_dump_stack_lvl+0x10/0x10
[  379.270003][T15675]  ? __pfx__printk+0x10/0x10
[  379.270035][T15675]  should_fail_ex+0x40a/0x550
[  379.270067][T15675]  should_failslab+0xac/0x100
[  379.270094][T15675]  __kmalloc_cache_noprof+0x70/0x390
[  379.270120][T15675]  ? sctp_add_bind_addr+0x89/0x3a0
[  379.270147][T15675]  sctp_add_bind_addr+0x89/0x3a0
[  379.270174][T15675]  sctp_copy_local_addr_list+0x311/0x500
[  379.270199][T15675]  ? sctp_copy_local_addr_list+0xab/0x500
[  379.270222][T15675]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  379.270249][T15675]  ? sctp_v4_is_any+0x35/0x60
[  379.270271][T15675]  ? sctp_copy_one_addr+0x94/0x360
[  379.270297][T15675]  sctp_bind_addr_copy+0xad/0x3b0
[  379.270320][T15675]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  379.270352][T15675]  sctp_connect_new_asoc+0x2f3/0x6c0
[  379.270383][T15675]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  379.270417][T15675]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  379.270442][T15675]  ? sctp_endpoint_lookup_assoc+0x217/0x250
[  379.270467][T15675]  ? sctp_endpoint_lookup_assoc+0x7c/0x250
[  379.270497][T15675]  __sctp_connect+0x66d/0xe30
[  379.270535][T15675]  ? __pfx___sctp_connect+0x10/0x10
[  379.270561][T15675]  ? __might_fault+0xaa/0x120
[  379.270580][T15675]  ? __might_fault+0xc6/0x120
[  379.270600][T15675]  ? _copy_from_user+0x95/0xb0
[  379.270623][T15675]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  379.270652][T15675]  sctp_getsockopt_connectx3+0x46c/0x730
[  379.270674][T15675]  ? __local_bh_enable_ip+0x168/0x200
[  379.270699][T15675]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  379.270721][T15675]  ? __local_bh_enable_ip+0x168/0x200
[  379.270743][T15675]  ? sctp_getsockopt+0x13a/0xbb0
[  379.270768][T15675]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  379.270801][T15675]  sctp_getsockopt+0x8de/0xbb0
[  379.270826][T15675]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  379.270859][T15675]  do_sock_getsockopt+0x38e/0x740
[  379.270891][T15675]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  379.270909][T15675]  ? __fget_files+0x2a/0x410
[  379.270937][T15675]  ? __fget_files+0x395/0x410
[  379.270962][T15675]  ? __fget_files+0x2a/0x410
[  379.270996][T15675]  __x64_sys_getsockopt+0x2a1/0x370
[  379.271023][T15675]  ? __pfx___x64_sys_getsockopt+0x10/0x10
[  379.271045][T15675]  ? do_syscall_64+0x100/0x230
[  379.271071][T15675]  ? do_syscall_64+0xb6/0x230
[  379.271096][T15675]  do_syscall_64+0xf3/0x230
[  379.271119][T15675]  ? clear_bhb_loop+0x35/0x90
[  379.271148][T15675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.271171][T15675] RIP: 0033:0x7f676678d169
[  379.271187][T15675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.271203][T15675] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  379.271223][T15675] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  379.271237][T15675] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000003
[  379.271247][T15675] RBP: 00007f676768d090 R08: 0000400000000100 R09: 0000000000000000
[  379.271260][T15675] R10: 00004000000000c0 R11: 0000000000000246 R12: 0000000000000002
[  379.271272][T15675] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  379.271300][T15675]  </TASK>
[  379.689821][T15681] xt_TCPMSS: Only works on TCP SYN packets
[  379.890969][T15690] netlink: 596 bytes leftover after parsing attributes in process `syz.0.3448'.
[  380.211501][T15712] FAULT_INJECTION: forcing a failure.
[  380.211501][T15712] name failslab, interval 1, probability 0, space 0, times 0
[  380.231567][T15712] CPU: 1 UID: 0 PID: 15712 Comm: syz.0.3458 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  380.231592][T15712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  380.231604][T15712] Call Trace:
[  380.231612][T15712]  <TASK>
[  380.231620][T15712]  dump_stack_lvl+0x241/0x360
[  380.231648][T15712]  ? __pfx_dump_stack_lvl+0x10/0x10
[  380.231669][T15712]  ? __pfx__printk+0x10/0x10
[  380.231691][T15712]  ? kmem_cache_alloc_noprof+0x48/0x380
[  380.231717][T15712]  ? __pfx___might_resched+0x10/0x10
[  380.231740][T15712]  ? find_mergeable_anon_vma+0x6b0/0x8f0
[  380.231771][T15712]  should_fail_ex+0x40a/0x550
[  380.231803][T15712]  should_failslab+0xac/0x100
[  380.231836][T15712]  ? __anon_vma_prepare+0x117/0x4a0
[  380.231854][T15712]  kmem_cache_alloc_noprof+0x70/0x380
[  380.231885][T15712]  __anon_vma_prepare+0x117/0x4a0
[  380.231910][T15712]  __handle_mm_fault+0x617e/0x70f0
[  380.231937][T15712]  ? mark_lock+0x9a/0x360
[  380.231980][T15712]  ? __pfx___handle_mm_fault+0x10/0x10
[  380.232017][T15712]  ? mt_find+0x2a9/0x920
[  380.232040][T15712]  ? __pfx_lock_release+0x10/0x10
[  380.232079][T15712]  ? mt_find+0x2a9/0x920
[  380.232102][T15712]  ? mt_find+0x6c8/0x920
[  380.232125][T15712]  ? mt_find+0x2a9/0x920
[  380.232151][T15712]  ? __pfx_mt_find+0x10/0x10
[  380.232193][T15712]  ? find_vma+0xf9/0x170
[  380.232211][T15712]  ? __pfx_find_vma+0x10/0x10
[  380.232226][T15712]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  380.232257][T15712]  handle_mm_fault+0x3e5/0x8d0
[  380.232295][T15712]  exc_page_fault+0x2b9/0x8b0
[  380.232321][T15712]  asm_exc_page_fault+0x26/0x30
[  380.232345][T15712] RIP: 0010:__put_user_4+0x11/0x20
[  380.232366][T15712] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[  380.232381][T15712] RSP: 0018:ffffc9000cb4f498 EFLAGS: 00050202
[  380.232398][T15712] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000400000000140
[  380.232411][T15712] RDX: 0000000000000000 RSI: ffffffff8c2ac500 RDI: ffffffff8c80fde0
[  380.232423][T15712] RBP: ffffc9000cb4f610 R08: ffffffff903d0b77 R09: 1ffffffff207a16e
[  380.232437][T15712] R10: dffffc0000000000 R11: fffffbfff207a16f R12: ffffc9000cb4f4e0
[  380.232450][T15712] R13: 1ffff92001969e9c R14: dffffc0000000000 R15: 1ffff92001969e98
[  380.232480][T15712]  sk_ioctl+0x369/0x680
[  380.232510][T15712]  ? __pfx_sk_ioctl+0x10/0x10
[  380.232562][T15712]  inet6_ioctl+0x203/0x280
[  380.232584][T15712]  ? __pfx_inet6_ioctl+0x10/0x10
[  380.232602][T15712]  ? unwind_next_frame+0x18e6/0x22d0
[  380.232635][T15712]  ? preempt_count_add+0x93/0x190
[  380.232659][T15712]  ? 0xffffffffa0002030
[  380.232675][T15712]  ? 0xffffffffa0002030
[  380.232696][T15712]  sock_do_ioctl+0x158/0x460
[  380.232719][T15712]  ? kernel_text_address+0xa7/0xe0
[  380.232745][T15712]  ? __pfx_sock_do_ioctl+0x10/0x10
[  380.232767][T15712]  ? arch_stack_walk+0xfd/0x150
[  380.232797][T15712]  ? stack_trace_save+0x118/0x1d0
[  380.232830][T15712]  sock_ioctl+0x626/0x8e0
[  380.232856][T15712]  ? __pfx_sock_ioctl+0x10/0x10
[  380.232885][T15712]  ? kasan_save_track+0x51/0x80
[  380.232905][T15712]  ? kasan_save_track+0x3f/0x80
[  380.232923][T15712]  ? kasan_save_free_info+0x40/0x50
[  380.232949][T15712]  ? __kasan_slab_free+0x59/0x70
[  380.232968][T15712]  ? kfree+0x196/0x430
[  380.232990][T15712]  ? security_file_ioctl+0xc6/0x2a0
[  380.233013][T15712]  ? __se_sys_ioctl+0x46/0x170
[  380.233032][T15712]  ? do_syscall_64+0xf3/0x230
[  380.233052][T15712]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.233077][T15712]  ? __pfx_sock_ioctl+0x10/0x10
[  380.233102][T15712]  do_vfs_ioctl+0xece/0x2770
[  380.233128][T15712]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  380.233152][T15712]  ? mark_lock+0x9a/0x360
[  380.233184][T15712]  ? tomoyo_path_number_perm+0x209/0x770
[  380.233211][T15712]  ? __pfx_lock_release+0x10/0x10
[  380.233243][T15712]  ? tomoyo_path_number_perm+0x5dd/0x770
[  380.233271][T15712]  ? tomoyo_path_number_perm+0x5dd/0x770
[  380.233301][T15712]  ? tomoyo_path_number_perm+0x65d/0x770
[  380.233326][T15712]  ? __lock_acquire+0x1397/0x2100
[  380.233356][T15712]  ? tomoyo_path_number_perm+0x209/0x770
[  380.233384][T15712]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  380.233447][T15712]  ? __fget_files+0x2a/0x410
[  380.233477][T15712]  ? __fget_files+0x2a/0x410
[  380.233512][T15712]  __se_sys_ioctl+0x80/0x170
[  380.233535][T15712]  do_syscall_64+0xf3/0x230
[  380.233558][T15712]  ? clear_bhb_loop+0x35/0x90
[  380.233586][T15712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.233610][T15712] RIP: 0033:0x7f30baf8d169
[  380.233624][T15712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.233639][T15712] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  380.233657][T15712] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  380.233671][T15712] RDX: 0000400000000140 RSI: 000000000000541b RDI: 0000000000000003
[  380.233683][T15712] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  380.233695][T15712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.233706][T15712] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  380.233734][T15712]  </TASK>
[  380.740345][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  380.763332][T15715] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3456'.
[  380.806616][T15717] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  380.908009][T15719] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  380.914972][T15719] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  381.060636][T15725] team0: No ports can be present during mode change
[  381.571724][T15751] FAULT_INJECTION: forcing a failure.
[  381.571724][T15751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.584747][T15757] netlink: 'syz.4.3471': attribute type 10 has an invalid length.
[  381.602365][T15751] CPU: 0 UID: 0 PID: 15751 Comm: syz.0.3472 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  381.602393][T15751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  381.602406][T15751] Call Trace:
[  381.602413][T15751]  <TASK>
[  381.602422][T15751]  dump_stack_lvl+0x241/0x360
[  381.602449][T15751]  ? __pfx_dump_stack_lvl+0x10/0x10
[  381.602467][T15751]  ? __pfx__printk+0x10/0x10
[  381.602484][T15751]  ? __pfx_lock_release+0x10/0x10
[  381.602514][T15751]  should_fail_ex+0x40a/0x550
[  381.602541][T15751]  _copy_from_user+0x2d/0xb0
[  381.602562][T15751]  copy_msghdr_from_user+0xae/0x680
[  381.602585][T15751]  ? __pfx___might_resched+0x10/0x10
[  381.602608][T15751]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  381.602647][T15751]  ? set_normalized_timespec64+0x160/0x1e0
[  381.602677][T15751]  ? do_recvmmsg+0x44e/0xab0
[  381.602698][T15751]  ? __might_fault+0xaa/0x120
[  381.602719][T15751]  do_recvmmsg+0x3bd/0xab0
[  381.602746][T15751]  ? __pfx_do_recvmmsg+0x10/0x10
[  381.602788][T15751]  ? __pfx___might_resched+0x10/0x10
[  381.602810][T15751]  ? __might_fault+0xaa/0x120
[  381.602826][T15751]  ? __pfx_lock_release+0x10/0x10
[  381.602851][T15751]  ? vfs_write+0x7fa/0xd10
[  381.602879][T15751]  ? get_timespec64+0x19c/0x280
[  381.602926][T15751]  __x64_sys_recvmmsg+0x1b8/0x250
[  381.602953][T15751]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  381.602972][T15751]  ? do_syscall_64+0x100/0x230
[  381.602994][T15751]  ? do_syscall_64+0xb6/0x230
[  381.603015][T15751]  do_syscall_64+0xf3/0x230
[  381.603037][T15751]  ? clear_bhb_loop+0x35/0x90
[  381.603066][T15751]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.603087][T15751] RIP: 0033:0x7f30baf8d169
[  381.603101][T15751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.603115][T15751] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  381.603131][T15751] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  381.603143][T15751] RDX: 00000000000006f5 RSI: 0000400000000440 RDI: 0000000000000003
[  381.603153][T15751] RBP: 00007f30bbd19090 R08: 0000400000000480 R09: 0000000000000000
[  381.603164][T15751] R10: 0000002000000022 R11: 0000000000000246 R12: 0000000000000002
[  381.603174][T15751] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  381.603195][T15751]  </TASK>
[  381.860190][T15757] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.867685][T15757] bridge0: port 1(bridge_slave_0) entered disabled state
[  382.003712][T15757] bridge0: port 2(bridge_slave_1) entered blocking state
[  382.010896][T15757] bridge0: port 2(bridge_slave_1) entered forwarding state
[  382.018482][T15757] bridge0: port 1(bridge_slave_0) entered blocking state
[  382.025623][T15757] bridge0: port 1(bridge_slave_0) entered forwarding state
[  382.128965][T15757] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  382.378237][T15776] netlink: 'syz.1.3476': attribute type 4 has an invalid length.
[  382.435533][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.445518][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.449255][T15776] netlink: 'syz.1.3476': attribute type 4 has an invalid length.
[  382.462773][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.472005][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.513348][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.539391][T15781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3477'.
[  382.576511][T15782] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  382.887368][T15795] netlink: 'syz.4.3483': attribute type 5 has an invalid length.
[  383.079314][T15801] sctp: [Deprecated]: syz.4.3487 (pid 15801) Use of struct sctp_assoc_value in delayed_ack socket option.
[  383.079314][T15801] Use struct sctp_sack_info instead
[  383.216148][T15807] FAULT_INJECTION: forcing a failure.
[  383.216148][T15807] name failslab, interval 1, probability 0, space 0, times 0
[  383.261926][T15807] CPU: 0 UID: 0 PID: 15807 Comm: syz.2.3489 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  383.261952][T15807] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  383.261965][T15807] Call Trace:
[  383.261972][T15807]  <TASK>
[  383.261980][T15807]  dump_stack_lvl+0x241/0x360
[  383.262008][T15807]  ? __pfx_dump_stack_lvl+0x10/0x10
[  383.262029][T15807]  ? __pfx__printk+0x10/0x10
[  383.262050][T15807]  ? kmem_cache_alloc_noprof+0x48/0x380
[  383.262078][T15807]  ? __pfx___might_resched+0x10/0x10
[  383.262107][T15807]  should_fail_ex+0x40a/0x550
[  383.262138][T15807]  should_failslab+0xac/0x100
[  383.262163][T15807]  ? alloc_empty_file+0x9e/0x1d0
[  383.262193][T15807]  kmem_cache_alloc_noprof+0x70/0x380
[  383.262223][T15807]  alloc_empty_file+0x9e/0x1d0
[  383.262250][T15807]  alloc_file_pseudo+0x204/0x320
[  383.262276][T15807]  ? rcu_is_watching+0x15/0xb0
[  383.262302][T15807]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  383.262331][T15807]  ? security_inode_alloc+0xd2/0x310
[  383.262359][T15807]  sock_alloc_file+0xb7/0x2e0
[  383.262386][T15807]  do_accept+0x36f/0x6d0
[  383.262418][T15807]  ? __pfx_do_accept+0x10/0x10
[  383.262463][T15807]  __sys_accept4+0x11f/0x1d0
[  383.262493][T15807]  ? __pfx___sys_accept4+0x10/0x10
[  383.262521][T15807]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  383.262550][T15807]  ? do_syscall_64+0x100/0x230
[  383.262576][T15807]  __x64_sys_accept4+0x9a/0xb0
[  383.262605][T15807]  do_syscall_64+0xf3/0x230
[  383.262627][T15807]  ? clear_bhb_loop+0x35/0x90
[  383.262656][T15807]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.262681][T15807] RIP: 0033:0x7f676678d169
[  383.262697][T15807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.262713][T15807] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  383.262733][T15807] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  383.262747][T15807] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  383.262758][T15807] RBP: 00007f676768d090 R08: 0000000000000000 R09: 0000000000000000
[  383.262770][T15807] R10: 0000000000080000 R11: 0000000000000246 R12: 0000000000000001
[  383.262787][T15807] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  383.262813][T15807]  </TASK>
[  383.700273][T15818] __nla_validate_parse: 67 callbacks suppressed
[  383.700292][T15818] netlink: 144 bytes leftover after parsing attributes in process `syz.4.3493'.
[  383.790248][T15818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3493'.
[  384.006886][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.053007][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.087842][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.126484][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.136075][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.145845][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.155224][T15835] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3499'.
[  384.165513][T15842] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3498'.
[  384.224066][    C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  384.262166][T15842] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  384.269444][T15842] IPv6: NLM_F_CREATE should be set when creating new route
[  384.295802][T15848] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  384.798027][T15860] FAULT_INJECTION: forcing a failure.
[  384.798027][T15860] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  384.821134][T15860] CPU: 0 UID: 0 PID: 15860 Comm: syz.4.3505 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  384.821162][T15860] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  384.821174][T15860] Call Trace:
[  384.821182][T15860]  <TASK>
[  384.821190][T15860]  dump_stack_lvl+0x241/0x360
[  384.821219][T15860]  ? __pfx_dump_stack_lvl+0x10/0x10
[  384.821241][T15860]  ? __pfx__printk+0x10/0x10
[  384.821263][T15860]  ? __pfx_lock_release+0x10/0x10
[  384.821300][T15860]  should_fail_ex+0x40a/0x550
[  384.821332][T15860]  _copy_from_iter+0x1df/0x1c40
[  384.821355][T15860]  ? __virt_addr_valid+0x183/0x530
[  384.821375][T15860]  ? __pfx_lock_release+0x10/0x10
[  384.821409][T15860]  ? __alloc_skb+0x28f/0x440
[  384.821428][T15860]  ? __pfx__copy_from_iter+0x10/0x10
[  384.821452][T15860]  ? __virt_addr_valid+0x183/0x530
[  384.821469][T15860]  ? __virt_addr_valid+0x183/0x530
[  384.821503][T15860]  ? __virt_addr_valid+0x45f/0x530
[  384.821533][T15860]  ? __phys_addr_symbol+0x2f/0x70
[  384.821551][T15860]  ? __check_object_size+0x47a/0x730
[  384.821579][T15860]  netlink_sendmsg+0x742/0xcb0
[  384.821615][T15860]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.821644][T15860]  ? aa_sock_msg_perm+0x91/0x160
[  384.821698][T15860]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.821724][T15860]  __sock_sendmsg+0x221/0x270
[  384.821754][T15860]  ____sys_sendmsg+0x53a/0x860
[  384.821783][T15860]  ? __pfx_____sys_sendmsg+0x10/0x10
[  384.821803][T15860]  ? __fget_files+0x2a/0x410
[  384.821833][T15860]  ? __fget_files+0x2a/0x410
[  384.821868][T15860]  __sys_sendmsg+0x269/0x350
[  384.821894][T15860]  ? __pfx___sys_sendmsg+0x10/0x10
[  384.821927][T15860]  ? do_sys_openat2+0x17a/0x1d0
[  384.821978][T15860]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  384.822009][T15860]  ? do_syscall_64+0x100/0x230
[  384.822037][T15860]  ? do_syscall_64+0xb6/0x230
[  384.822074][T15860]  do_syscall_64+0xf3/0x230
[  384.822097][T15860]  ? clear_bhb_loop+0x35/0x90
[  384.822126][T15860]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.822150][T15860] RIP: 0033:0x7fe32678d169
[  384.822167][T15860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.822183][T15860] RSP: 002b:00007fe3275cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  384.822203][T15860] RAX: ffffffffffffffda RBX: 00007fe3269a5fa0 RCX: 00007fe32678d169
[  384.822220][T15860] RDX: 0000000000000000 RSI: 0000400000000840 RDI: 0000000000000005
[  384.822232][T15860] RBP: 00007fe3275cc090 R08: 0000000000000000 R09: 0000000000000000
[  384.822244][T15860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.822256][T15860] R13: 0000000000000000 R14: 00007fe3269a5fa0 R15: 00007fff0a9ea708
[  384.822282][T15860]  </TASK>
[  385.228563][T15872] No such timeout policy "syz0"
[  385.234473][    C0] bridge0: received packet on bridge_slave_1 with own address as source address (addr:aa:aa:aa:aa:aa:1c, vlan:0)
[  385.922450][T15904] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  386.036238][T15917] FAULT_INJECTION: forcing a failure.
[  386.036238][T15917] name failslab, interval 1, probability 0, space 0, times 0
[  386.059993][T15917] CPU: 1 UID: 0 PID: 15917 Comm: syz.0.3527 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  386.060022][T15917] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  386.060035][T15917] Call Trace:
[  386.060042][T15917]  <TASK>
[  386.060051][T15917]  dump_stack_lvl+0x241/0x360
[  386.060080][T15917]  ? __pfx_dump_stack_lvl+0x10/0x10
[  386.060102][T15917]  ? __pfx__printk+0x10/0x10
[  386.060134][T15917]  should_fail_ex+0x40a/0x550
[  386.060166][T15917]  should_failslab+0xac/0x100
[  386.060192][T15917]  ? skb_clone+0x20c/0x390
[  386.060212][T15917]  kmem_cache_alloc_noprof+0x70/0x380
[  386.060244][T15917]  skb_clone+0x20c/0x390
[  386.060268][T15917]  __netlink_deliver_tap+0x3c4/0x7f0
[  386.060305][T15917]  ? netlink_deliver_tap+0x2e/0x1b0
[  386.060330][T15917]  netlink_deliver_tap+0x19d/0x1b0
[  386.060357][T15917]  netlink_unicast+0x7c4/0x990
[  386.060387][T15917]  ? __pfx_netlink_unicast+0x10/0x10
[  386.060408][T15917]  ? __virt_addr_valid+0x45f/0x530
[  386.060427][T15917]  ? __phys_addr_symbol+0x2f/0x70
[  386.060443][T15917]  ? __check_object_size+0x47a/0x730
[  386.060471][T15917]  netlink_sendmsg+0x8de/0xcb0
[  386.060508][T15917]  ? __pfx_netlink_sendmsg+0x10/0x10
[  386.060544][T15917]  ? aa_sock_msg_perm+0x91/0x160
[  386.060576][T15917]  ? __pfx_netlink_sendmsg+0x10/0x10
[  386.060600][T15917]  __sock_sendmsg+0x221/0x270
[  386.060627][T15917]  ____sys_sendmsg+0x53a/0x860
[  386.060654][T15917]  ? __pfx_____sys_sendmsg+0x10/0x10
[  386.060672][T15917]  ? __fget_files+0x2a/0x410
[  386.060702][T15917]  ? __sys_sendmmsg+0x392/0x720
[  386.060722][T15917]  ? __might_fault+0xaa/0x120
[  386.060743][T15917]  __sys_sendmmsg+0x36a/0x720
[  386.060775][T15917]  ? __pfx___sys_sendmmsg+0x10/0x10
[  386.060806][T15917]  ? __pfx_lock_release+0x10/0x10
[  386.060832][T15917]  ? kstrtouint_from_user+0x128/0x190
[  386.060875][T15917]  ? ksys_write+0x22a/0x2b0
[  386.060894][T15917]  ? __pfx_lock_release+0x10/0x10
[  386.060931][T15917]  ? sb_end_write+0xe9/0x1c0
[  386.060957][T15917]  ? vfs_write+0x7fa/0xd10
[  386.060978][T15917]  ? __mutex_unlock_slowpath+0x227/0x800
[  386.061028][T15917]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  386.061059][T15917]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  386.061088][T15917]  ? do_syscall_64+0x100/0x230
[  386.061114][T15917]  __x64_sys_sendmmsg+0xa0/0xb0
[  386.061137][T15917]  do_syscall_64+0xf3/0x230
[  386.061159][T15917]  ? clear_bhb_loop+0x35/0x90
[  386.061188][T15917]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  386.061213][T15917] RIP: 0033:0x7f30baf8d169
[  386.061229][T15917] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  386.061246][T15917] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  386.061266][T15917] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  386.061279][T15917] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000004
[  386.061292][T15917] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  386.061303][T15917] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  386.061315][T15917] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  386.061342][T15917]  </TASK>
[  386.439811][T15919] ipvlan1: entered promiscuous mode
[  386.513436][T15919] netlink: 'syz.1.3528': attribute type 4 has an invalid length.
[  386.521201][T15919] netlink: 'syz.1.3528': attribute type 2 has an invalid length.
[  386.776714][T15932] xt_ecn: cannot match TCP bits for non-tcp packets
[  386.918607][T15941] netlink: 'syz.0.3536': attribute type 8 has an invalid length.
[  387.420223][T15969] xt_ecn: cannot match TCP bits for non-tcp packets
[  387.669776][T15979] FAULT_INJECTION: forcing a failure.
[  387.669776][T15979] name failslab, interval 1, probability 0, space 0, times 0
[  387.683956][T15981] set match dimension is over the limit!
[  387.699836][T15979] CPU: 0 UID: 0 PID: 15979 Comm: syz.0.3550 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  387.699864][T15979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  387.699876][T15979] Call Trace:
[  387.699883][T15979]  <TASK>
[  387.699892][T15979]  dump_stack_lvl+0x241/0x360
[  387.699922][T15979]  ? __pfx_dump_stack_lvl+0x10/0x10
[  387.699944][T15979]  ? __pfx__printk+0x10/0x10
[  387.699966][T15979]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  387.699996][T15979]  ? __pfx___might_resched+0x10/0x10
[  387.700020][T15979]  ? aa_label_sk_perm+0x4f3/0x6c0
[  387.700051][T15979]  should_fail_ex+0x40a/0x550
[  387.700085][T15979]  should_failslab+0xac/0x100
[  387.700112][T15979]  kmem_cache_alloc_node_noprof+0x77/0x380
[  387.700139][T15979]  ? __alloc_skb+0x1c3/0x440
[  387.700163][T15979]  __alloc_skb+0x1c3/0x440
[  387.700187][T15979]  ? __pfx___alloc_skb+0x10/0x10
[  387.700215][T15979]  netlink_sendmsg+0x634/0xcb0
[  387.700255][T15979]  ? __pfx_netlink_sendmsg+0x10/0x10
[  387.700287][T15979]  ? aa_sock_msg_perm+0x91/0x160
[  387.700322][T15979]  ? __pfx_netlink_sendmsg+0x10/0x10
[  387.700347][T15979]  __sock_sendmsg+0x221/0x270
[  387.700377][T15979]  ____sys_sendmsg+0x53a/0x860
[  387.700414][T15979]  ? __pfx_____sys_sendmsg+0x10/0x10
[  387.700434][T15979]  ? __fget_files+0x2a/0x410
[  387.700464][T15979]  ? __fget_files+0x2a/0x410
[  387.700501][T15979]  __sys_sendmsg+0x269/0x350
[  387.700528][T15979]  ? __pfx___sys_sendmsg+0x10/0x10
[  387.700562][T15979]  ? do_sys_openat2+0x17a/0x1d0
[  387.700615][T15979]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  387.700647][T15979]  ? do_syscall_64+0x100/0x230
[  387.700675][T15979]  ? do_syscall_64+0xb6/0x230
[  387.700702][T15979]  do_syscall_64+0xf3/0x230
[  387.700726][T15979]  ? clear_bhb_loop+0x35/0x90
[  387.700756][T15979]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.700782][T15979] RIP: 0033:0x7f30baf8d169
[  387.700799][T15979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.700816][T15979] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  387.700837][T15979] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  387.700851][T15979] RDX: 0000000004004810 RSI: 0000400000000300 RDI: 0000000000000003
[  387.700864][T15979] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  387.700877][T15979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  387.700889][T15979] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  387.700918][T15979]  </TASK>
[  388.323878][T15998] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  388.566709][T16006] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  388.995474][T16019] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  389.016895][T16020] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  389.062356][T15991] __nla_validate_parse: 152 callbacks suppressed
[  389.062377][T15991] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3554'.
[  389.094701][T16025] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3565'.
[  389.175020][T16025] ªªªªªª: renamed from lo (while UP)
[  389.364061][T16035] xt_ecn: cannot match TCP bits for non-tcp packets
[  389.503866][T16041] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3571'.
[  390.972776][ T5930] IPVS: starting estimator thread 0...
[  391.019421][ T5930] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  391.072419][T16079] IPVS: using max 25 ests per chain, 60000 per kthread
[  391.293897][ T2992] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  391.377977][T16085] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3584'.
[  391.472516][   T47] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  391.806126][T16100] FAULT_INJECTION: forcing a failure.
[  391.806126][T16100] name failslab, interval 1, probability 0, space 0, times 0
[  391.821927][T16100] CPU: 0 UID: 0 PID: 16100 Comm: syz.3.3590 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  391.821954][T16100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  391.821966][T16100] Call Trace:
[  391.821974][T16100]  <TASK>
[  391.822000][T16100]  dump_stack_lvl+0x241/0x360
[  391.822033][T16100]  ? __pfx_dump_stack_lvl+0x10/0x10
[  391.822057][T16100]  ? __pfx__printk+0x10/0x10
[  391.822081][T16100]  ? __kmalloc_cache_node_noprof+0x47/0x3a0
[  391.822114][T16100]  ? __pfx___might_resched+0x10/0x10
[  391.822146][T16100]  should_fail_ex+0x40a/0x550
[  391.822181][T16100]  should_failslab+0xac/0x100
[  391.822214][T16100]  ? page_pool_create_percpu+0x77/0xb70
[  391.822236][T16100]  __kmalloc_cache_node_noprof+0x6f/0x3a0
[  391.822266][T16100]  ? rcu_is_watching+0x15/0xb0
[  391.822293][T16100]  page_pool_create_percpu+0x77/0xb70
[  391.822325][T16100]  bpf_test_run_xdp_live+0x2e6/0x2220
[  391.822354][T16100]  ? __pfx_lock_release+0x10/0x10
[  391.822391][T16100]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  391.822414][T16100]  ? __pfx___might_resched+0x10/0x10
[  391.822446][T16100]  ? __mutex_unlock_slowpath+0x227/0x800
[  391.822481][T16100]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  391.822507][T16100]  ? synchronize_rcu+0x11b/0x360
[  391.822531][T16100]  ? __pfx_synchronize_rcu+0x10/0x10
[  391.822577][T16100]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  391.822608][T16100]  ? 0xffffffffa0002114
[  391.822646][T16100]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  391.822702][T16100]  ? _copy_from_user+0x95/0xb0
[  391.822729][T16100]  ? bpf_test_init+0x137/0x160
[  391.822753][T16100]  ? xdp_convert_md_to_buff+0x5b/0x330
[  391.822790][T16100]  bpf_prog_test_run_xdp+0x805/0x11e0
[  391.822825][T16100]  ? __pfx_lock_release+0x10/0x10
[  391.822862][T16100]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  391.822891][T16100]  ? __fget_files+0x2a/0x410
[  391.822922][T16100]  ? __fget_files+0x2a/0x410
[  391.822953][T16100]  ? fput+0x21b/0x290
[  391.822980][T16100]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  391.823009][T16100]  bpf_prog_test_run+0x2e4/0x360
[  391.823041][T16100]  __sys_bpf+0x487/0x820
[  391.823070][T16100]  ? __pfx___sys_bpf+0x10/0x10
[  391.823107][T16100]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  391.823139][T16100]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  391.823180][T16100]  ? do_syscall_64+0x100/0x230
[  391.823207][T16100]  __x64_sys_bpf+0x7c/0x90
[  391.823230][T16100]  do_syscall_64+0xf3/0x230
[  391.823253][T16100]  ? clear_bhb_loop+0x35/0x90
[  391.823282][T16100]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  391.823306][T16100] RIP: 0033:0x7f178f58d169
[  391.823322][T16100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  391.823339][T16100] RSP: 002b:00007f179031a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  391.823359][T16100] RAX: ffffffffffffffda RBX: 00007f178f7a5fa0 RCX: 00007f178f58d169
[  391.823373][T16100] RDX: 0000000000000050 RSI: 0000400000000340 RDI: 000000000000000a
[  391.823384][T16100] RBP: 00007f179031a090 R08: 0000000000000000 R09: 0000000000000000
[  391.823396][T16100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  391.823406][T16100] R13: 0000000000000000 R14: 00007f178f7a5fa0 R15: 00007ffd04bf5518
[  391.823432][T16100]  </TASK>
[  392.173426][T16104] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  392.232128][T16082] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3583'.
[  392.362770][   T35] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  392.393494][   T35] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  392.562508][   T47] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  392.608288][T16118] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  392.727041][T16119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3595'.
[  392.745267][T16119] --map-set only usable from mangle table
[  393.360010][T16139] openvswitch: netlink: Actions may not be safe on all matching packets
[  393.743908][T16161] xt_ecn: cannot match TCP bits for non-tcp packets
[  394.312851][T16171] FAULT_INJECTION: forcing a failure.
[  394.312851][T16171] name failslab, interval 1, probability 0, space 0, times 0
[  394.332401][T16171] CPU: 0 UID: 0 PID: 16171 Comm: syz.1.3614 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  394.332433][T16171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  394.332447][T16171] Call Trace:
[  394.332456][T16171]  <TASK>
[  394.332465][T16171]  dump_stack_lvl+0x241/0x360
[  394.332496][T16171]  ? __pfx_dump_stack_lvl+0x10/0x10
[  394.332521][T16171]  ? __pfx__printk+0x10/0x10
[  394.332557][T16171]  ? kmem_cache_alloc_noprof+0x48/0x380
[  394.332600][T16171]  ? __pfx___might_resched+0x10/0x10
[  394.332668][T16171]  should_fail_ex+0x40a/0x550
[  394.332704][T16171]  should_failslab+0xac/0x100
[  394.332733][T16171]  ? alloc_empty_file+0x9e/0x1d0
[  394.332762][T16171]  kmem_cache_alloc_noprof+0x70/0x380
[  394.332795][T16171]  alloc_empty_file+0x9e/0x1d0
[  394.332826][T16171]  alloc_file_pseudo+0x204/0x320
[  394.332855][T16171]  ? rcu_is_watching+0x15/0xb0
[  394.332884][T16171]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  394.332916][T16171]  ? security_inode_alloc+0xd2/0x310
[  394.332949][T16171]  sock_alloc_file+0xb7/0x2e0
[  394.332982][T16171]  do_accept+0x36f/0x6d0
[  394.333018][T16171]  ? __pfx_do_accept+0x10/0x10
[  394.333072][T16171]  __sys_accept4+0x11f/0x1d0
[  394.333107][T16171]  ? __pfx___sys_accept4+0x10/0x10
[  394.333134][T16171]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  394.333162][T16171]  ? do_syscall_64+0x100/0x230
[  394.333187][T16171]  __x64_sys_accept4+0x9a/0xb0
[  394.333214][T16171]  do_syscall_64+0xf3/0x230
[  394.333235][T16171]  ? clear_bhb_loop+0x35/0x90
[  394.333262][T16171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.333286][T16171] RIP: 0033:0x7ff87978d169
[  394.333301][T16171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.333315][T16171] RSP: 002b:00007ff87a620038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  394.333335][T16171] RAX: ffffffffffffffda RBX: 00007ff8799a5fa0 RCX: 00007ff87978d169
[  394.333348][T16171] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  394.333359][T16171] RBP: 00007ff87a620090 R08: 0000000000000000 R09: 0000000000000000
[  394.333370][T16171] R10: 0000000000080000 R11: 0000000000000246 R12: 0000000000000001
[  394.333380][T16171] R13: 0000000000000000 R14: 00007ff8799a5fa0 R15: 00007ffc11b05dc8
[  394.333405][T16171]  </TASK>
[  394.887462][T16179] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3618'.
[  395.041630][T16137] x_tables: duplicate entry at hook 2
[  395.054047][T16186] xt_ecn: cannot match TCP bits for non-tcp packets
[  395.178534][T16188] netlink: 'syz.2.3622': attribute type 11 has an invalid length.
[  395.186872][T16188] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3622'.
[  395.213081][T16193] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3624'.
[  395.697404][T16210] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3630'.
[  395.832359][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  395.849961][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  395.859905][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  395.869660][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  395.893031][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  395.925896][T16212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3631'.
[  396.112412][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  396.598455][T16229] xt_ecn: cannot match TCP bits for non-tcp packets
[  396.649503][T16228] xt_CT: No such helper "snmp"
[  396.853931][T16235] netlink: 'syz.0.3638': attribute type 1 has an invalid length.
[  396.866896][T16239] netlink: 'syz.3.3639': attribute type 10 has an invalid length.
[  396.928410][T16239] 8021q: adding VLAN 0 to HW filter on device team0
[  396.953896][T16239] bond0: (slave team0): Enslaving as an active interface with an up link
[  397.598321][T16215] x_tables: duplicate entry at hook 2
[  397.851995][T16270] xt_ecn: cannot match TCP bits for non-tcp packets
[  397.919948][T16272] tun0: tun_chr_ioctl cmd 1074025677
[  397.933947][T16272] tun0: linktype set to 776
[  398.230690][T16278] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  398.620121][T16288] FAULT_INJECTION: forcing a failure.
[  398.620121][T16288] name failslab, interval 1, probability 0, space 0, times 0
[  398.634883][T16288] CPU: 0 UID: 0 PID: 16288 Comm: syz.3.3655 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  398.634914][T16288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  398.634928][T16288] Call Trace:
[  398.634936][T16288]  <TASK>
[  398.634946][T16288]  dump_stack_lvl+0x241/0x360
[  398.634979][T16288]  ? __pfx_dump_stack_lvl+0x10/0x10
[  398.635005][T16288]  ? __pfx__printk+0x10/0x10
[  398.635031][T16288]  ? fs_reclaim_acquire+0x93/0x130
[  398.635055][T16288]  ? __pfx___might_resched+0x10/0x10
[  398.635089][T16288]  should_fail_ex+0x40a/0x550
[  398.635127][T16288]  should_failslab+0xac/0x100
[  398.635158][T16288]  __kmalloc_noprof+0xdd/0x4c0
[  398.635193][T16288]  ? kstrtouint_from_user+0x128/0x190
[  398.635216][T16288]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  398.635246][T16288]  tomoyo_realpath_from_path+0xcf/0x5e0
[  398.635282][T16288]  tomoyo_path_number_perm+0x239/0x770
[  398.635312][T16288]  ? __lock_acquire+0x1397/0x2100
[  398.635349][T16288]  ? tomoyo_path_number_perm+0x209/0x770
[  398.635382][T16288]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  398.635469][T16288]  ? __fget_files+0x2a/0x410
[  398.635501][T16288]  ? __fget_files+0x2a/0x410
[  398.635534][T16288]  security_file_ioctl+0xc6/0x2a0
[  398.635562][T16288]  __se_sys_ioctl+0x46/0x170
[  398.635586][T16288]  do_syscall_64+0xf3/0x230
[  398.635611][T16288]  ? clear_bhb_loop+0x35/0x90
[  398.635641][T16288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.635667][T16288] RIP: 0033:0x7f178f58d169
[  398.635685][T16288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.635702][T16288] RSP: 002b:00007f179031a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  398.635722][T16288] RAX: ffffffffffffffda RBX: 00007f178f7a5fa0 RCX: 00007f178f58d169
[  398.635737][T16288] RDX: 0000400000001480 RSI: 000000000000890b RDI: 0000000000000003
[  398.635750][T16288] RBP: 00007f179031a090 R08: 0000000000000000 R09: 0000000000000000
[  398.635762][T16288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.635774][T16288] R13: 0000000000000000 R14: 00007f178f7a5fa0 R15: 00007ffd04bf5518
[  398.635804][T16288]  </TASK>
[  398.635813][T16288] ERROR: Out of memory at tomoyo_realpath_from_path.
[  399.042328][T16300] netem: unknown loss type 13
[  399.056920][T16300] netem: change failed
[  399.333411][T16312] SET target dimension over the limit!
[  399.659991][T16327] ªªªªªª: entered promiscuous mode
[  399.665375][T16327] ªªªªªª: entered allmulticast mode
[  399.671851][T16327] tunl0: entered promiscuous mode
[  399.677151][T16327] tunl0: entered allmulticast mode
[  399.701005][T16327] gre0: entered promiscuous mode
[  399.707138][T16327] gre0: entered allmulticast mode
[  399.714647][T16327] gretap0: entered promiscuous mode
[  399.720987][T16327] gretap0: entered allmulticast mode
[  399.727256][T16327] erspan0: entered promiscuous mode
[  399.737426][T16327] erspan0: entered allmulticast mode
[  399.744021][T16327] ip_vti0: entered promiscuous mode
[  399.749264][T16327] ip_vti0: entered allmulticast mode
[  399.758677][T16327] ip6_vti0: entered promiscuous mode
[  399.766416][T16327] ip6_vti0: entered allmulticast mode
[  399.776800][T16327] sit0: entered promiscuous mode
[  399.781834][T16327] sit0: entered allmulticast mode
[  399.787885][T16327] ip6tnl0: entered promiscuous mode
[  399.793564][T16327] ip6tnl0: entered allmulticast mode
[  399.799753][T16327] ip6gre0: entered promiscuous mode
[  399.805155][T16327] ip6gre0: entered allmulticast mode
[  399.811352][T16327] syz_tun: entered promiscuous mode
[  399.817478][T16327] syz_tun: entered allmulticast mode
[  399.829730][T16327] ip6gretap0: entered promiscuous mode
[  399.836294][T16327] ip6gretap0: entered allmulticast mode
[  399.843266][T16327] bridge0: entered promiscuous mode
[  399.848635][T16327] bridge0: entered allmulticast mode
[  399.855043][T16327] vcan0: entered promiscuous mode
[  399.860252][T16327] vcan0: entered allmulticast mode
[  399.870359][T16327] bond0: entered promiscuous mode
[  399.876522][T16327] bond_slave_0: entered promiscuous mode
[  399.886278][T16327] bond_slave_1: entered promiscuous mode
[  399.892346][T16327] team0: entered promiscuous mode
[  399.897577][T16327] team_slave_0: entered promiscuous mode
[  399.903791][T16327] team_slave_1: entered promiscuous mode
[  399.909823][T16327] bond0: entered allmulticast mode
[  399.915236][T16327] bond_slave_0: entered allmulticast mode
[  399.921783][T16327] bond_slave_1: entered allmulticast mode
[  399.929065][T16327] team0: entered allmulticast mode
[  399.935275][T16344] __nla_validate_parse: 79 callbacks suppressed
[  399.935293][T16344] netlink: 270 bytes leftover after parsing attributes in process `syz.0.3674'.
[  399.951358][T16327] team_slave_0: entered allmulticast mode
[  399.969042][T16327] team_slave_1: entered allmulticast mode
[  399.989084][T16327] 8021q: adding VLAN 0 to HW filter on device bond0
[  400.002924][T16327] dummy0: entered promiscuous mode
[  400.008178][T16327] dummy0: entered allmulticast mode
[  400.015309][T16327] nlmon0: entered promiscuous mode
[  400.020545][T16327] nlmon0: entered allmulticast mode
[  400.029696][T16327] caif0: entered promiscuous mode
[  400.062321][T16327] caif0: entered allmulticast mode
[  400.077503][T16327] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  400.141767][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.151669][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.206381][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.249028][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.332957][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.343198][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.375439][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.389725][T16351] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  400.413095][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  400.442773][T16338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3673'.
[  401.059423][  T965] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2
[  401.193297][T16383] FAULT_INJECTION: forcing a failure.
[  401.193297][T16383] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  401.236243][T16383] CPU: 0 UID: 0 PID: 16383 Comm: syz.4.3687 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  401.236273][T16383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  401.236287][T16383] Call Trace:
[  401.236295][T16383]  <TASK>
[  401.236305][T16383]  dump_stack_lvl+0x241/0x360
[  401.236344][T16383]  ? __pfx_dump_stack_lvl+0x10/0x10
[  401.236369][T16383]  ? __pfx__printk+0x10/0x10
[  401.236394][T16383]  ? __pfx_lock_release+0x10/0x10
[  401.236436][T16383]  should_fail_ex+0x40a/0x550
[  401.236474][T16383]  _copy_from_iter+0x1df/0x1c40
[  401.236500][T16383]  ? __virt_addr_valid+0x183/0x530
[  401.236523][T16383]  ? __pfx_lock_release+0x10/0x10
[  401.236562][T16383]  ? __alloc_skb+0x28f/0x440
[  401.236583][T16383]  ? __pfx__copy_from_iter+0x10/0x10
[  401.236611][T16383]  ? __virt_addr_valid+0x183/0x530
[  401.236631][T16383]  ? __virt_addr_valid+0x183/0x530
[  401.236650][T16383]  ? __virt_addr_valid+0x45f/0x530
[  401.236672][T16383]  ? __phys_addr_symbol+0x2f/0x70
[  401.236692][T16383]  ? __check_object_size+0x47a/0x730
[  401.236727][T16383]  netlink_sendmsg+0x742/0xcb0
[  401.236772][T16383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  401.236809][T16383]  ? aa_sock_msg_perm+0x91/0x160
[  401.236848][T16383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  401.236878][T16383]  __sock_sendmsg+0x221/0x270
[  401.236912][T16383]  ____sys_sendmsg+0x53a/0x860
[  401.236960][T16383]  ? __pfx_____sys_sendmsg+0x10/0x10
[  401.236982][T16383]  ? __fget_files+0x2a/0x410
[  401.237015][T16383]  ? __fget_files+0x2a/0x410
[  401.237054][T16383]  __sys_sendmsg+0x269/0x350
[  401.237085][T16383]  ? __pfx___sys_sendmsg+0x10/0x10
[  401.237121][T16383]  ? do_sys_openat2+0x17a/0x1d0
[  401.237179][T16383]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  401.237214][T16383]  ? do_syscall_64+0x100/0x230
[  401.237244][T16383]  ? do_syscall_64+0xb6/0x230
[  401.237274][T16383]  do_syscall_64+0xf3/0x230
[  401.237299][T16383]  ? clear_bhb_loop+0x35/0x90
[  401.237339][T16383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  401.237367][T16383] RIP: 0033:0x7fe32678d169
[  401.237387][T16383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  401.237407][T16383] RSP: 002b:00007fe3275cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  401.237431][T16383] RAX: ffffffffffffffda RBX: 00007fe3269a5fa0 RCX: 00007fe32678d169
[  401.237448][T16383] RDX: 0000000000000000 RSI: 0000400000000000 RDI: 0000000000000004
[  401.237462][T16383] RBP: 00007fe3275cc090 R08: 0000000000000000 R09: 0000000000000000
[  401.237476][T16383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  401.237490][T16383] R13: 0000000000000000 R14: 00007fe3269a5fa0 R15: 00007fff0a9ea708
[  401.237523][T16383]  </TASK>
[  401.279385][T16385] batadv_slave_0: entered promiscuous mode
[  401.531045][T16392] Cannot find del_set index 1 as target
[  401.539977][T16385] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  401.553548][T16385] Cannot create hsr debugfs directory
[  401.565334][T16389] team0: No ports can be present during mode change
[  401.751127][T16396] bond0: entered promiscuous mode
[  401.770603][T16402] netlink: 'syz.4.3692': attribute type 1 has an invalid length.
[  401.772365][T16396] bond_slave_0: entered promiscuous mode
[  401.804236][T16396] bond_slave_1: entered promiscuous mode
[  401.841115][T16396] bridge0: entered promiscuous mode
[  402.199727][T16418] SET target dimension over the limit!
[  402.558304][T16424] x_tables: duplicate entry at hook 2
[  402.610230][T16431] veth0_vlan: left promiscuous mode
[  402.617764][T16431] vlan0: entered promiscuous mode
[  402.800016][T16437] netlink: 'syz.1.3704': attribute type 2 has an invalid length.
[  403.084036][T16446] bridge_slave_0: default FDB implementation only supports local addresses
[  403.552356][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  403.764751][T16470] netlink: zone id is out of range
[  403.780832][T16470] netlink: zone id is out of range
[  403.803119][T16470] netlink: zone id is out of range
[  403.820523][T16470] netlink: zone id is out of range
[  403.863585][T16470] netlink: zone id is out of range
[  403.872576][T16470] netlink: zone id is out of range
[  403.898753][T16470] netlink: zone id is out of range
[  403.952498][T16470] netlink: zone id is out of range
[  403.957664][T16470] netlink: zone id is out of range
[  403.999676][T16477] netlink: 'syz.1.3715': attribute type 1 has an invalid length.
[  404.519017][T16487] xt_hashlimit: max too large, truncated to 1048576
[  404.543077][T16487] x_tables: ip_tables: tcp match: only valid for protocol 6
[  404.622029][T16444] x_tables: duplicate entry at hook 2
[  404.876335][T16501] netlink: 'syz.3.3727': attribute type 10 has an invalid length.
[  404.894884][T16501] bridge0: port 2(bridge_slave_1) entered disabled state
[  404.902329][T16501] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.068871][T16509] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.141152][T16510] FAULT_INJECTION: forcing a failure.
[  405.141152][T16510] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  405.184113][T16510] CPU: 1 UID: 0 PID: 16510 Comm: syz.2.3730 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  405.184145][T16510] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  405.184159][T16510] Call Trace:
[  405.184174][T16510]  <TASK>
[  405.184199][T16510]  dump_stack_lvl+0x241/0x360
[  405.184265][T16510]  ? __pfx_dump_stack_lvl+0x10/0x10
[  405.184301][T16510]  ? __pfx__printk+0x10/0x10
[  405.184342][T16510]  ? __pfx_lock_release+0x10/0x10
[  405.184412][T16510]  should_fail_ex+0x40a/0x550
[  405.184473][T16510]  _copy_from_user+0x2d/0xb0
[  405.184524][T16510]  move_addr_to_kernel+0x82/0x150
[  405.184576][T16510]  __sys_sendto+0x268/0x4c0
[  405.184627][T16510]  ? __pfx___sys_sendto+0x10/0x10
[  405.184682][T16510]  ? __fget_files+0x2a/0x410
[  405.184747][T16510]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  405.184801][T16510]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  405.184868][T16510]  __x64_sys_sendto+0xde/0x100
[  405.184906][T16510]  do_syscall_64+0xf3/0x230
[  405.184952][T16510]  ? clear_bhb_loop+0x35/0x90
[  405.185005][T16510]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.185052][T16510] RIP: 0033:0x7f676678d169
[  405.185078][T16510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.185110][T16510] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  405.185147][T16510] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  405.185176][T16510] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  405.185196][T16510] RBP: 00007f676768d090 R08: 0000400000000040 R09: 0000000000000014
[  405.185221][T16510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  405.185244][T16510] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  405.185297][T16510]  </TASK>
[  405.382347][T16515] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[  405.391327][T16515] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[  405.693038][T16512] __nla_validate_parse: 73 callbacks suppressed
[  405.693078][T16512] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3732'.
[  405.807300][T16526] FAULT_INJECTION: forcing a failure.
[  405.807300][T16526] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  405.830667][T16526] CPU: 0 UID: 0 PID: 16526 Comm: syz.0.3737 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  405.830693][T16526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  405.830705][T16526] Call Trace:
[  405.830713][T16526]  <TASK>
[  405.830721][T16526]  dump_stack_lvl+0x241/0x360
[  405.830749][T16526]  ? __pfx_dump_stack_lvl+0x10/0x10
[  405.830771][T16526]  ? __pfx__printk+0x10/0x10
[  405.830792][T16526]  ? __pfx_lock_release+0x10/0x10
[  405.830832][T16526]  should_fail_ex+0x40a/0x550
[  405.830864][T16526]  _copy_from_user+0x2d/0xb0
[  405.830891][T16526]  sk_setsockopt+0x2ad/0x3330
[  405.830929][T16526]  ? __pfx_sk_setsockopt+0x10/0x10
[  405.830971][T16526]  ? __pfx___might_resched+0x10/0x10
[  405.830998][T16526]  ? __lock_acquire+0x1397/0x2100
[  405.831035][T16526]  udp_lib_setsockopt+0x112/0xb10
[  405.831065][T16526]  ? __pfx_udp_lib_setsockopt+0x10/0x10
[  405.831090][T16526]  ? __pfx_aa_sk_perm+0x10/0x10
[  405.831122][T16526]  udpv6_setsockopt+0x73/0xb0
[  405.831144][T16526]  ? __pfx_udp_v6_push_pending_frames+0x10/0x10
[  405.831168][T16526]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  405.831195][T16526]  do_sock_setsockopt+0x3af/0x720
[  405.831219][T16526]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  405.831242][T16526]  ? __fget_files+0x395/0x410
[  405.831268][T16526]  ? __fget_files+0x2a/0x410
[  405.831301][T16526]  __x64_sys_setsockopt+0x1ee/0x280
[  405.831327][T16526]  do_syscall_64+0xf3/0x230
[  405.831351][T16526]  ? clear_bhb_loop+0x35/0x90
[  405.831380][T16526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.831405][T16526] RIP: 0033:0x7f30baf8d169
[  405.831421][T16526] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.831437][T16526] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  405.831457][T16526] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  405.831471][T16526] RDX: 000000000000003c RSI: 0000000000000001 RDI: 0000000000000003
[  405.831482][T16526] RBP: 00007f30bbd19090 R08: 0000000000000008 R09: 0000000000000000
[  405.831494][T16526] R10: 0000400000000100 R11: 0000000000000246 R12: 0000000000000001
[  405.831506][T16526] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  405.831532][T16526]  </TASK>
[  405.872429][T16524] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3736'.
[  406.138606][T16533] FAULT_INJECTION: forcing a failure.
[  406.138606][T16533] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  406.153692][T16534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3738'.
[  406.172112][T16533] CPU: 1 UID: 0 PID: 16533 Comm: syz.4.3740 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  406.172137][T16533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  406.172155][T16533] Call Trace:
[  406.172162][T16533]  <TASK>
[  406.172171][T16533]  dump_stack_lvl+0x241/0x360
[  406.172199][T16533]  ? __pfx_dump_stack_lvl+0x10/0x10
[  406.172219][T16533]  ? __pfx__printk+0x10/0x10
[  406.172239][T16533]  ? __pfx_lock_release+0x10/0x10
[  406.172275][T16533]  should_fail_ex+0x40a/0x550
[  406.172305][T16533]  _copy_from_iter+0x1df/0x1c40
[  406.172326][T16533]  ? __virt_addr_valid+0x183/0x530
[  406.172345][T16533]  ? __pfx_lock_release+0x10/0x10
[  406.172377][T16533]  ? __alloc_skb+0x28f/0x440
[  406.172394][T16533]  ? __pfx__copy_from_iter+0x10/0x10
[  406.172417][T16533]  ? __virt_addr_valid+0x183/0x530
[  406.172434][T16533]  ? __virt_addr_valid+0x183/0x530
[  406.172450][T16533]  ? __virt_addr_valid+0x45f/0x530
[  406.172467][T16533]  ? __phys_addr_symbol+0x2f/0x70
[  406.172484][T16533]  ? __check_object_size+0x47a/0x730
[  406.172513][T16533]  netlink_sendmsg+0x742/0xcb0
[  406.172550][T16533]  ? __pfx_netlink_sendmsg+0x10/0x10
[  406.172580][T16533]  ? aa_sock_msg_perm+0x91/0x160
[  406.172614][T16533]  ? __pfx_netlink_sendmsg+0x10/0x10
[  406.172639][T16533]  __sock_sendmsg+0x221/0x270
[  406.172665][T16533]  ____sys_sendmsg+0x53a/0x860
[  406.172691][T16533]  ? __pfx_____sys_sendmsg+0x10/0x10
[  406.172710][T16533]  ? __fget_files+0x2a/0x410
[  406.172739][T16533]  ? __fget_files+0x2a/0x410
[  406.172772][T16533]  __sys_sendmsg+0x269/0x350
[  406.172796][T16533]  ? __pfx___sys_sendmsg+0x10/0x10
[  406.172834][T16533]  ? do_sys_openat2+0x17a/0x1d0
[  406.172883][T16533]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  406.172913][T16533]  ? do_syscall_64+0x100/0x230
[  406.172939][T16533]  ? do_syscall_64+0xb6/0x230
[  406.172964][T16533]  do_syscall_64+0xf3/0x230
[  406.172986][T16533]  ? clear_bhb_loop+0x35/0x90
[  406.173015][T16533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  406.173038][T16533] RIP: 0033:0x7fe32678d169
[  406.173054][T16533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  406.173070][T16533] RSP: 002b:00007fe3275cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  406.173090][T16533] RAX: ffffffffffffffda RBX: 00007fe3269a5fa0 RCX: 00007fe32678d169
[  406.173103][T16533] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000005
[  406.173115][T16533] RBP: 00007fe3275cc090 R08: 0000000000000000 R09: 0000000000000000
[  406.173126][T16533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  406.173137][T16533] R13: 0000000000000000 R14: 00007fe3269a5fa0 R15: 00007fff0a9ea708
[  406.173163][T16533]  </TASK>
[  407.007195][T16558] ax25_connect(): syz.3.3746 uses autobind, please contact jreuter@yaina.de
[  407.041179][T16561] net_ratelimit: 75 callbacks suppressed
[  407.041203][T16561] openvswitch: netlink: IPv4 tunnel dst address is zero
[  407.208313][T16568] netlink: 'syz.4.3753': attribute type 1 has an invalid length.
[  407.227360][T16568] netlink: 240 bytes leftover after parsing attributes in process `syz.4.3753'.
[  407.507623][T16578] batadv_slave_1: entered promiscuous mode
[  407.523887][T16578] batadv_slave_1: left promiscuous mode
[  407.730517][T16591] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  407.759009][T16594] team0: No ports can be present during mode change
[  407.814453][T16596] FAULT_INJECTION: forcing a failure.
[  407.814453][T16596] name failslab, interval 1, probability 0, space 0, times 0
[  407.862356][T16596] CPU: 1 UID: 0 PID: 16596 Comm: syz.3.3764 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  407.862394][T16596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  407.862407][T16596] Call Trace:
[  407.862414][T16596]  <TASK>
[  407.862433][T16596]  dump_stack_lvl+0x241/0x360
[  407.862460][T16596]  ? __pfx_dump_stack_lvl+0x10/0x10
[  407.862482][T16596]  ? __pfx__printk+0x10/0x10
[  407.862503][T16596]  ? __kmalloc_cache_noprof+0x48/0x390
[  407.862530][T16596]  ? __pfx___might_resched+0x10/0x10
[  407.862558][T16596]  should_fail_ex+0x40a/0x550
[  407.862589][T16596]  should_failslab+0xac/0x100
[  407.862615][T16596]  __kmalloc_cache_noprof+0x70/0x390
[  407.862640][T16596]  ? call_usermodehelper_setup+0x8e/0x270
[  407.862662][T16596]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  407.862692][T16596]  call_usermodehelper_setup+0x8e/0x270
[  407.862715][T16596]  ? __pfx_free_modprobe_argv+0x10/0x10
[  407.862735][T16596]  __request_module+0x3cd/0x640
[  407.862756][T16596]  ? capable+0x79/0xe0
[  407.862777][T16596]  ? __pfx___request_module+0x10/0x10
[  407.862798][T16596]  ? rcu_is_watching+0x15/0xb0
[  407.862821][T16596]  ? apparmor_capable+0x13b/0x1b0
[  407.862845][T16596]  ? bpf_lsm_capable+0x9/0x10
[  407.862871][T16596]  ? security_capable+0x7e/0x2d0
[  407.862901][T16596]  ? dev_load+0x21/0x1f0
[  407.862922][T16596]  dev_load+0x18f/0x1f0
[  407.862945][T16596]  dev_ioctl+0x772/0x1340
[  407.862971][T16596]  sock_do_ioctl+0x240/0x460
[  407.863000][T16596]  ? __pfx_sock_do_ioctl+0x10/0x10
[  407.863038][T16596]  sock_ioctl+0x626/0x8e0
[  407.863061][T16596]  ? __pfx_sock_ioctl+0x10/0x10
[  407.863084][T16596]  ? __fget_files+0x2a/0x410
[  407.863112][T16596]  ? __fget_files+0x2a/0x410
[  407.863142][T16596]  ? __pfx_sock_ioctl+0x10/0x10
[  407.863166][T16596]  __se_sys_ioctl+0xf5/0x170
[  407.863188][T16596]  do_syscall_64+0xf3/0x230
[  407.863212][T16596]  ? clear_bhb_loop+0x35/0x90
[  407.863241][T16596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.863267][T16596] RIP: 0033:0x7f178f58d169
[  407.863284][T16596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.863299][T16596] RSP: 002b:00007f179031a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  407.863318][T16596] RAX: ffffffffffffffda RBX: 00007f178f7a5fa0 RCX: 00007f178f58d169
[  407.863332][T16596] RDX: 0000400000000000 RSI: 0000000000008946 RDI: 0000000000000005
[  407.863344][T16596] RBP: 00007f179031a090 R08: 0000000000000000 R09: 0000000000000000
[  407.863356][T16596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.863376][T16596] R13: 0000000000000000 R14: 00007f178f7a5fa0 R15: 00007ffd04bf5518
[  407.863404][T16596]  </TASK>
[  407.913279][T16601] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3767'.
[  407.920174][T16598] netlink: 'syz.0.3766': attribute type 10 has an invalid length.
[  408.209799][T16598] bond0: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  408.223150][T16608] FAULT_INJECTION: forcing a failure.
[  408.223150][T16608] name failslab, interval 1, probability 0, space 0, times 0
[  408.243158][T16608] CPU: 1 UID: 0 PID: 16608 Comm: syz.2.3770 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  408.243185][T16608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  408.243197][T16608] Call Trace:
[  408.243204][T16608]  <TASK>
[  408.243213][T16608]  dump_stack_lvl+0x241/0x360
[  408.243242][T16608]  ? __pfx_dump_stack_lvl+0x10/0x10
[  408.243263][T16608]  ? __pfx__printk+0x10/0x10
[  408.243286][T16608]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  408.243316][T16608]  ? __pfx___might_resched+0x10/0x10
[  408.243356][T16608]  should_fail_ex+0x40a/0x550
[  408.243390][T16608]  should_failslab+0xac/0x100
[  408.243417][T16608]  kmem_cache_alloc_node_noprof+0x77/0x380
[  408.243445][T16608]  ? __alloc_skb+0x1c3/0x440
[  408.243469][T16608]  __alloc_skb+0x1c3/0x440
[  408.243503][T16608]  ? __pfx___alloc_skb+0x10/0x10
[  408.243523][T16608]  ? netlink_autobind+0xd6/0x2f0
[  408.243548][T16608]  ? netlink_autobind+0x2b0/0x2f0
[  408.243579][T16608]  netlink_sendmsg+0x634/0xcb0
[  408.243616][T16608]  ? __pfx_netlink_sendmsg+0x10/0x10
[  408.243647][T16608]  ? aa_sock_msg_perm+0x91/0x160
[  408.243683][T16608]  ? __pfx_netlink_sendmsg+0x10/0x10
[  408.243708][T16608]  __sock_sendmsg+0x221/0x270
[  408.243735][T16608]  ____sys_sendmsg+0x53a/0x860
[  408.243763][T16608]  ? __pfx_____sys_sendmsg+0x10/0x10
[  408.243782][T16608]  ? __fget_files+0x2a/0x410
[  408.243811][T16608]  ? __fget_files+0x2a/0x410
[  408.243845][T16608]  __sys_sendmsg+0x269/0x350
[  408.243869][T16608]  ? __pfx___sys_sendmsg+0x10/0x10
[  408.243901][T16608]  ? do_sys_openat2+0x17a/0x1d0
[  408.243950][T16608]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  408.243980][T16608]  ? do_syscall_64+0x100/0x230
[  408.244006][T16608]  ? do_syscall_64+0xb6/0x230
[  408.244032][T16608]  do_syscall_64+0xf3/0x230
[  408.244054][T16608]  ? clear_bhb_loop+0x35/0x90
[  408.244082][T16608]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  408.244107][T16608] RIP: 0033:0x7f676678d169
[  408.244122][T16608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  408.244138][T16608] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  408.244158][T16608] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  408.244172][T16608] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000003
[  408.244184][T16608] RBP: 00007f676768d090 R08: 0000000000000000 R09: 0000000000000000
[  408.244196][T16608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  408.244208][T16608] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  408.244253][T16608]  </TASK>
[  408.831027][T16619] netlink: 'syz.2.3775': attribute type 39 has an invalid length.
[  408.847839][T16622] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[  408.926004][T16625] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  408.934168][T16630] netlink: 'syz.3.3779': attribute type 6 has an invalid length.
[  408.963473][T16630] netlink: 'syz.3.3779': attribute type 7 has an invalid length.
[  408.971965][T16630] netlink: 'syz.3.3779': attribute type 8 has an invalid length.
[  409.068880][T16634] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3781'.
[  409.114275][T16634] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3781'.
[  409.449308][T16646] FAULT_INJECTION: forcing a failure.
[  409.449308][T16646] name failslab, interval 1, probability 0, space 0, times 0
[  409.472311][T16646] CPU: 1 UID: 0 PID: 16646 Comm: syz.2.3786 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  409.472338][T16646] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  409.472350][T16646] Call Trace:
[  409.472357][T16646]  <TASK>
[  409.472365][T16646]  dump_stack_lvl+0x241/0x360
[  409.472410][T16646]  ? __pfx_dump_stack_lvl+0x10/0x10
[  409.472432][T16646]  ? __pfx__printk+0x10/0x10
[  409.472453][T16646]  ? __kmalloc_noprof+0xb5/0x4c0
[  409.472498][T16646]  ? __pfx___might_resched+0x10/0x10
[  409.472530][T16646]  should_fail_ex+0x40a/0x550
[  409.472563][T16646]  should_failslab+0xac/0x100
[  409.472591][T16646]  __kmalloc_noprof+0xdd/0x4c0
[  409.472617][T16646]  ? ethnl_default_notify+0x1dc/0x920
[  409.472651][T16646]  ethnl_default_notify+0x1dc/0x920
[  409.472682][T16646]  ? netlink_broadcast_filtered+0x1260/0x12a0
[  409.472710][T16646]  ? __pfx_ethnl_default_notify+0x10/0x10
[  409.472756][T16646]  ? mutex_is_locked+0x17/0x50
[  409.472780][T16646]  ethnl_netdev_event+0xe0/0x160
[  409.472812][T16646]  notifier_call_chain+0x1a5/0x3f0
[  409.472846][T16646]  netdev_features_change+0xb3/0xf0
[  409.472893][T16646]  ? __pfx_netdev_features_change+0x10/0x10
[  409.472924][T16646]  ? bpf_lsm_capable+0x9/0x10
[  409.472954][T16646]  ? security_capable+0x7e/0x2d0
[  409.472993][T16646]  dev_ethtool+0x1781/0x1d70
[  409.473029][T16646]  ? __pfx_dev_ethtool+0x10/0x10
[  409.473051][T16646]  ? tomoyo_path_number_perm+0x5dd/0x770
[  409.473094][T16646]  ? dev_load+0x21/0x1f0
[  409.473124][T16646]  dev_ioctl+0x785/0x1340
[  409.473157][T16646]  sock_do_ioctl+0x240/0x460
[  409.473191][T16646]  ? __pfx_sock_do_ioctl+0x10/0x10
[  409.473289][T16646]  sock_ioctl+0x626/0x8e0
[  409.473339][T16646]  ? __pfx_sock_ioctl+0x10/0x10
[  409.473366][T16646]  ? __fget_files+0x2a/0x410
[  409.473399][T16646]  ? __fget_files+0x2a/0x410
[  409.473432][T16646]  ? __pfx_sock_ioctl+0x10/0x10
[  409.473459][T16646]  __se_sys_ioctl+0xf5/0x170
[  409.473484][T16646]  do_syscall_64+0xf3/0x230
[  409.473522][T16646]  ? clear_bhb_loop+0x35/0x90
[  409.473553][T16646]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.473578][T16646] RIP: 0033:0x7f676678d169
[  409.473596][T16646] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  409.473612][T16646] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  409.473633][T16646] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  409.473648][T16646] RDX: 0000400000000000 RSI: 0000000000008946 RDI: 0000000000000003
[  409.473661][T16646] RBP: 00007f676768d090 R08: 0000000000000000 R09: 0000000000000000
[  409.473673][T16646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  409.473685][T16646] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  409.473714][T16646]  </TASK>
[  409.808785][T16648] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3787'.
[  409.813132][T16654] FAULT_INJECTION: forcing a failure.
[  409.813132][T16654] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  409.831636][T16654] CPU: 1 UID: 0 PID: 16654 Comm: syz.0.3789 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  409.831660][T16654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  409.831672][T16654] Call Trace:
[  409.831678][T16654]  <TASK>
[  409.831686][T16654]  dump_stack_lvl+0x241/0x360
[  409.831714][T16654]  ? __pfx_dump_stack_lvl+0x10/0x10
[  409.831735][T16654]  ? __pfx__printk+0x10/0x10
[  409.831756][T16654]  ? __pfx_lock_release+0x10/0x10
[  409.831791][T16654]  should_fail_ex+0x40a/0x550
[  409.831821][T16654]  _copy_from_user+0x2d/0xb0
[  409.831846][T16654]  move_addr_to_kernel+0x82/0x150
[  409.831873][T16654]  __sys_sendto+0x268/0x4c0
[  409.831895][T16654]  ? __pfx___sys_sendto+0x10/0x10
[  409.831933][T16654]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  409.831963][T16654]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  409.832007][T16654]  ? exc_page_fault+0x590/0x8b0
[  409.832032][T16654]  __x64_sys_sendto+0xde/0x100
[  409.832055][T16654]  do_syscall_64+0xf3/0x230
[  409.832079][T16654]  ? clear_bhb_loop+0x35/0x90
[  409.832110][T16654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  409.832136][T16654] RIP: 0033:0x7f30baf8effc
[  409.832153][T16654] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  409.832169][T16654] RSP: 002b:00007f30bbd17ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  409.832255][T16654] RAX: ffffffffffffffda RBX: 00007f30bbd17fc0 RCX: 00007f30baf8effc
[  409.832272][T16654] RDX: 0000000000000020 RSI: 00007f30bbd18010 RDI: 0000000000000005
[  409.832285][T16654] RBP: 0000000000000000 R08: 00007f30bbd17f14 R09: 000000000000000c
[  409.832297][T16654] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000005
[  409.832308][T16654] R13: 00007f30bbd17f68 R14: 00007f30bbd18010 R15: 0000000000000000
[  409.832337][T16654]  </TASK>
[  410.292895][T16672] IPv6: Can't replace route, no match found
[  410.395332][T16677] netlink: 48 bytes leftover after parsing attributes in process `syz.3.3799'.
[  410.412996][T16671] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3796'.
[  410.619083][T16688] netlink: 'syz.3.3802': attribute type 30 has an invalid length.
[  410.774484][T16696] netlink: 'syz.3.3802': attribute type 10 has an invalid length.
[  410.800948][T16696] team0: Device veth1_macvtap failed to register rx_handler
[  410.826884][T16699] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3805'.
[  410.861839][T16700] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3806'.
[  411.056224][T16703] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  411.240974][T16708] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  411.273316][T16712] ip6tnl1: entered promiscuous mode
[  411.291032][T16712] ip6tnl1: entered allmulticast mode
[  411.624583][T16723] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  411.691746][T16725] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3816'.
[  411.864424][T16729] team0: entered allmulticast mode
[  411.869604][T16729] team_slave_0: entered allmulticast mode
[  411.889510][T16729] team_slave_1: entered allmulticast mode
[  412.239681][T16742] FAULT_INJECTION: forcing a failure.
[  412.239681][T16742] name failslab, interval 1, probability 0, space 0, times 0
[  412.253696][T16742] CPU: 0 UID: 0 PID: 16742 Comm: syz.2.3823 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  412.253722][T16742] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  412.253735][T16742] Call Trace:
[  412.253742][T16742]  <TASK>
[  412.253750][T16742]  dump_stack_lvl+0x241/0x360
[  412.253779][T16742]  ? __pfx_dump_stack_lvl+0x10/0x10
[  412.253801][T16742]  ? __pfx__printk+0x10/0x10
[  412.253822][T16742]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  412.253851][T16742]  ? __pfx___might_resched+0x10/0x10
[  412.253881][T16742]  should_fail_ex+0x40a/0x550
[  412.253913][T16742]  should_failslab+0xac/0x100
[  412.253939][T16742]  kmem_cache_alloc_node_noprof+0x77/0x380
[  412.253990][T16742]  ? __alloc_skb+0x1c3/0x440
[  412.254008][T16742]  ? genl_rcv_msg+0x894/0xec0
[  412.254033][T16742]  __alloc_skb+0x1c3/0x440
[  412.254051][T16742]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.254085][T16742]  ? __pfx___alloc_skb+0x10/0x10
[  412.254115][T16742]  netlink_dump+0x239/0xe10
[  412.254155][T16742]  ? __pfx_netlink_dump+0x10/0x10
[  412.254196][T16742]  ? __asan_memset+0x23/0x50
[  412.254216][T16742]  ? genl_start+0x4ae/0x6d0
[  412.254265][T16742]  __netlink_dump_start+0x5a2/0x790
[  412.254307][T16742]  genl_rcv_msg+0x894/0xec0
[  412.254340][T16742]  ? __pfx_genl_rcv_msg+0x10/0x10
[  412.254371][T16742]  ? __pfx_genl_start+0x10/0x10
[  412.254391][T16742]  ? __pfx_genl_dumpit+0x10/0x10
[  412.254412][T16742]  ? __pfx_genl_done+0x10/0x10
[  412.254456][T16742]  ? __pfx_lock_acquire+0x10/0x10
[  412.254488][T16742]  ? __pfx_batadv_orig_dump+0x10/0x10
[  412.254513][T16742]  ? __pfx___might_resched+0x10/0x10
[  412.254553][T16742]  netlink_rcv_skb+0x206/0x480
[  412.254585][T16742]  ? __pfx_genl_rcv_msg+0x10/0x10
[  412.254611][T16742]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  412.254661][T16742]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  412.254709][T16742]  genl_rcv+0x28/0x40
[  412.254730][T16742]  netlink_unicast+0x7f6/0x990
[  412.254767][T16742]  ? __pfx_netlink_unicast+0x10/0x10
[  412.254792][T16742]  ? __virt_addr_valid+0x45f/0x530
[  412.254815][T16742]  ? __phys_addr_symbol+0x2f/0x70
[  412.254836][T16742]  ? __check_object_size+0x47a/0x730
[  412.254871][T16742]  netlink_sendmsg+0x8de/0xcb0
[  412.254916][T16742]  ? __pfx_netlink_sendmsg+0x10/0x10
[  412.254953][T16742]  ? aa_sock_msg_perm+0x91/0x160
[  412.254998][T16742]  ? __pfx_netlink_sendmsg+0x10/0x10
[  412.255027][T16742]  __sock_sendmsg+0x221/0x270
[  412.255061][T16742]  ____sys_sendmsg+0x53a/0x860
[  412.255094][T16742]  ? __pfx_____sys_sendmsg+0x10/0x10
[  412.255116][T16742]  ? __fget_files+0x2a/0x410
[  412.255151][T16742]  ? __fget_files+0x2a/0x410
[  412.255192][T16742]  __sys_sendmsg+0x269/0x350
[  412.255223][T16742]  ? __pfx___sys_sendmsg+0x10/0x10
[  412.255263][T16742]  ? do_sys_openat2+0x17a/0x1d0
[  412.255326][T16742]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  412.255362][T16742]  ? do_syscall_64+0x100/0x230
[  412.255404][T16742]  ? do_syscall_64+0xb6/0x230
[  412.255444][T16742]  do_syscall_64+0xf3/0x230
[  412.255480][T16742]  ? clear_bhb_loop+0x35/0x90
[  412.255509][T16742]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  412.255534][T16742] RIP: 0033:0x7f676678d169
[  412.255550][T16742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  412.255567][T16742] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  412.255587][T16742] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  412.255601][T16742] RDX: 0000000000000000 RSI: 0000400000004340 RDI: 0000000000000003
[  412.255613][T16742] RBP: 00007f676768d090 R08: 0000000000000000 R09: 0000000000000000
[  412.255625][T16742] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  412.255637][T16742] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  412.255666][T16742]  </TASK>
[  412.770999][T16750] batadv0: entered promiscuous mode
[  412.777619][T16750] macvtap1: entered allmulticast mode
[  412.783215][T16750] batadv0: entered allmulticast mode
[  412.789623][T16750] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  412.808837][T16750] batadv0: left allmulticast mode
[  412.816118][T16732] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  412.816701][T16750] batadv0: left promiscuous mode
[  413.243495][T16780] netlink: 830 bytes leftover after parsing attributes in process `syz.4.3834'.
[  413.372016][T16785] smc: net device bond0 applied user defined pnetid SYZ2
[  413.545100][T16793] IPv6: addrconf: prefix option has invalid lifetime
[  413.551919][T16793] IPv6: addrconf: prefix option has invalid lifetime
[  413.671675][T16795] FAULT_INJECTION: forcing a failure.
[  413.671675][T16795] name failslab, interval 1, probability 0, space 0, times 0
[  413.703849][T16795] CPU: 0 UID: 0 PID: 16795 Comm: syz.1.3841 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  413.703880][T16795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  413.703894][T16795] Call Trace:
[  413.703902][T16795]  <TASK>
[  413.703911][T16795]  dump_stack_lvl+0x241/0x360
[  413.703944][T16795]  ? __pfx_dump_stack_lvl+0x10/0x10
[  413.703969][T16795]  ? __pfx__printk+0x10/0x10
[  413.703994][T16795]  ? kmem_cache_alloc_noprof+0x48/0x380
[  413.704025][T16795]  ? __pfx___might_resched+0x10/0x10
[  413.704059][T16795]  should_fail_ex+0x40a/0x550
[  413.704096][T16795]  should_failslab+0xac/0x100
[  413.704135][T16795]  ? security_file_alloc+0x32/0x310
[  413.704163][T16795]  kmem_cache_alloc_noprof+0x70/0x380
[  413.704198][T16795]  security_file_alloc+0x32/0x310
[  413.704228][T16795]  init_file+0x96/0x2e0
[  413.704262][T16795]  alloc_empty_file+0xb8/0x1d0
[  413.704296][T16795]  alloc_file_pseudo+0x204/0x320
[  413.704326][T16795]  ? rcu_is_watching+0x15/0xb0
[  413.704356][T16795]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  413.704391][T16795]  ? security_inode_alloc+0xd2/0x310
[  413.704424][T16795]  sock_alloc_file+0xb7/0x2e0
[  413.704456][T16795]  do_accept+0x36f/0x6d0
[  413.704492][T16795]  ? __pfx_do_accept+0x10/0x10
[  413.704547][T16795]  __sys_accept4+0x11f/0x1d0
[  413.704581][T16795]  ? __pfx___sys_accept4+0x10/0x10
[  413.704615][T16795]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  413.704650][T16795]  ? do_syscall_64+0x100/0x230
[  413.704680][T16795]  __x64_sys_accept4+0x9a/0xb0
[  413.704714][T16795]  do_syscall_64+0xf3/0x230
[  413.704740][T16795]  ? clear_bhb_loop+0x35/0x90
[  413.704774][T16795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  413.704803][T16795] RIP: 0033:0x7ff87978d169
[  413.704822][T16795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  413.704842][T16795] RSP: 002b:00007ff87a620038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  413.704866][T16795] RAX: ffffffffffffffda RBX: 00007ff8799a5fa0 RCX: 00007ff87978d169
[  413.704883][T16795] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  413.704896][T16795] RBP: 00007ff87a620090 R08: 0000000000000000 R09: 0000000000000000
[  413.704910][T16795] R10: 0000000000080000 R11: 0000000000000246 R12: 0000000000000001
[  413.704923][T16795] R13: 0000000000000000 R14: 00007ff8799a5fa0 R15: 00007ffc11b05dc8
[  413.704955][T16795]  </TASK>
[  413.959421][T16799] vlan1: entered allmulticast mode
[  413.964850][T16799] macvtap0: entered allmulticast mode
[  413.970639][T16799] veth0_macvtap: entered allmulticast mode
[  413.982067][T16799] macvtap0: left allmulticast mode
[  413.987461][T16799] veth0_macvtap: left allmulticast mode
[  414.756002][T16810] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input10
[  414.960545][T16837] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3856'.
[  414.989682][T16837] tipc: Enabling of bearer <dth:t> rejected, media not registered
[  415.459368][T16850] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3860'.
[  415.933263][T16860] netlink: 240 bytes leftover after parsing attributes in process `syz.0.3856'.
[  416.344393][T16853] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3861'.
[  416.364325][T16875] FAULT_INJECTION: forcing a failure.
[  416.364325][T16875] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  416.432480][T16875] CPU: 0 UID: 0 PID: 16875 Comm: syz.1.3869 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  416.432509][T16875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  416.432521][T16875] Call Trace:
[  416.432546][T16875]  <TASK>
[  416.432554][T16875]  dump_stack_lvl+0x241/0x360
[  416.432585][T16875]  ? __pfx_dump_stack_lvl+0x10/0x10
[  416.432608][T16875]  ? __pfx__printk+0x10/0x10
[  416.432632][T16875]  ? snprintf+0xda/0x120
[  416.432665][T16875]  should_fail_ex+0x40a/0x550
[  416.432700][T16875]  _copy_to_user+0x31/0xb0
[  416.432729][T16875]  simple_read_from_buffer+0xca/0x150
[  416.432759][T16875]  proc_fail_nth_read+0x1e9/0x250
[  416.432790][T16875]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  416.432832][T16875]  ? rw_verify_area+0x243/0x630
[  416.432850][T16875]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  416.432884][T16875]  vfs_read+0x1f8/0xb40
[  416.432904][T16875]  ? fdget_pos+0x254/0x320
[  416.432931][T16875]  ? __pfx___mutex_lock+0x10/0x10
[  416.432954][T16875]  ? __pfx_vfs_read+0x10/0x10
[  416.432971][T16875]  ? do_sys_openat2+0x17a/0x1d0
[  416.433000][T16875]  ? __fget_files+0x2a/0x410
[  416.433028][T16875]  ? __fget_files+0x395/0x410
[  416.433053][T16875]  ? __fget_files+0x2a/0x410
[  416.433088][T16875]  ksys_read+0x18f/0x2b0
[  416.433110][T16875]  ? __pfx_ksys_read+0x10/0x10
[  416.433129][T16875]  ? do_syscall_64+0x100/0x230
[  416.433155][T16875]  ? do_syscall_64+0xb6/0x230
[  416.433180][T16875]  do_syscall_64+0xf3/0x230
[  416.433204][T16875]  ? clear_bhb_loop+0x35/0x90
[  416.433233][T16875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  416.433258][T16875] RIP: 0033:0x7ff87978bb7c
[  416.433274][T16875] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  416.433290][T16875] RSP: 002b:00007ff87a620030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  416.433310][T16875] RAX: ffffffffffffffda RBX: 00007ff8799a5fa0 RCX: 00007ff87978bb7c
[  416.433324][T16875] RDX: 000000000000000f RSI: 00007ff87a6200a0 RDI: 0000000000000005
[  416.433336][T16875] RBP: 00007ff87a620090 R08: 0000000000000000 R09: 0000000000000000
[  416.433348][T16875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  416.433359][T16875] R13: 0000000000000000 R14: 00007ff8799a5fa0 R15: 00007ffc11b05dc8
[  416.433388][T16875]  </TASK>
[  416.845102][T16884] veth1_macvtap: left promiscuous mode
[  416.850772][T16884] macsec0: entered promiscuous mode
[  416.933572][T16887] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3877'.
[  416.986413][T16884] veth1_macvtap: entered promiscuous mode
[  416.995281][T16895] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3879'.
[  417.011953][T16884] macsec0: left promiscuous mode
[  417.046426][T16884] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3875'.
[  417.074080][T16896] IPVS: sync thread started: state = BACKUP, mcast_ifn = batadv0, syncid = 340, id = 0
[  417.192937][T16901] bridge1: entered promiscuous mode
[  417.198212][T16901] bridge1: entered allmulticast mode
[  417.214547][T16901] team0: Port device bridge1 added
[  417.279170][T16901] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[  417.346578][T16901] batman_adv: batadv0: Adding interface: ip6gretap1
[  417.364846][T16901] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  417.434667][T16901] batman_adv: batadv0: Interface activated: ip6gretap1
[  417.677630][T16924] netlink: 'syz.1.3889': attribute type 1 has an invalid length.
[  417.719602][T16924] netlink: 'syz.1.3889': attribute type 2 has an invalid length.
[  417.808908][T16924] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3889'.
[  418.532685][T16949] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3898'.
[  418.772916][T16956] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3900'.
[  418.823232][T16956] netlink: 3 bytes leftover after parsing attributes in process `syz.1.3900'.
[  418.837918][T16956] batadv1: entered allmulticast mode
[  418.912370][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  418.948591][T16938] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3894'.
[  419.360993][T16970] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  419.414208][T16972] macvtap0: entered promiscuous mode
[  419.427513][T16972] macvtap0: entered allmulticast mode
[  419.438767][T16972] veth0_macvtap: entered allmulticast mode
[  419.885272][T16990] xt_cluster: you have exceeded the maximum number of cluster nodes (91 > 32)
[  419.951491][T16963] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  420.677451][T17020] FAULT_INJECTION: forcing a failure.
[  420.677451][T17020] name failslab, interval 1, probability 0, space 0, times 0
[  420.702375][T17020] CPU: 1 UID: 0 PID: 17020 Comm: syz.0.3922 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  420.702403][T17020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  420.702416][T17020] Call Trace:
[  420.702424][T17020]  <TASK>
[  420.702432][T17020]  dump_stack_lvl+0x241/0x360
[  420.702463][T17020]  ? __pfx_dump_stack_lvl+0x10/0x10
[  420.702498][T17020]  ? __pfx__printk+0x10/0x10
[  420.702533][T17020]  should_fail_ex+0x40a/0x550
[  420.702568][T17020]  should_failslab+0xac/0x100
[  420.702596][T17020]  ? skb_clone+0x20c/0x390
[  420.702618][T17020]  kmem_cache_alloc_noprof+0x70/0x380
[  420.702651][T17020]  skb_clone+0x20c/0x390
[  420.702677][T17020]  __netlink_deliver_tap+0x3c4/0x7f0
[  420.702728][T17020]  ? netlink_deliver_tap+0x2e/0x1b0
[  420.702753][T17020]  netlink_deliver_tap+0x19d/0x1b0
[  420.702780][T17020]  netlink_unicast+0x7c4/0x990
[  420.702811][T17020]  ? __pfx_netlink_unicast+0x10/0x10
[  420.702832][T17020]  ? __virt_addr_valid+0x45f/0x530
[  420.702851][T17020]  ? __phys_addr_symbol+0x2f/0x70
[  420.702869][T17020]  ? __check_object_size+0x47a/0x730
[  420.702896][T17020]  netlink_sendmsg+0x8de/0xcb0
[  420.702934][T17020]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.702964][T17020]  ? aa_sock_msg_perm+0x91/0x160
[  420.702996][T17020]  ? __pfx_netlink_sendmsg+0x10/0x10
[  420.703015][T17020]  __sock_sendmsg+0x221/0x270
[  420.703038][T17020]  ____sys_sendmsg+0x53a/0x860
[  420.703059][T17020]  ? __pfx_____sys_sendmsg+0x10/0x10
[  420.703074][T17020]  ? __fget_files+0x2a/0x410
[  420.703097][T17020]  ? __fget_files+0x2a/0x410
[  420.703125][T17020]  __sys_sendmsg+0x269/0x350
[  420.703144][T17020]  ? __pfx___sys_sendmsg+0x10/0x10
[  420.703187][T17020]  ? do_sys_openat2+0x17a/0x1d0
[  420.703228][T17020]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  420.703255][T17020]  ? do_syscall_64+0x100/0x230
[  420.703277][T17020]  ? do_syscall_64+0xb6/0x230
[  420.703298][T17020]  do_syscall_64+0xf3/0x230
[  420.703316][T17020]  ? clear_bhb_loop+0x35/0x90
[  420.703341][T17020]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  420.703362][T17020] RIP: 0033:0x7f30baf8d169
[  420.703376][T17020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  420.703390][T17020] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  420.703408][T17020] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  420.703420][T17020] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000000005
[  420.703433][T17020] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  420.703443][T17020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  420.703453][T17020] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  420.703476][T17020]  </TASK>
[  421.283354][T17037] FAULT_INJECTION: forcing a failure.
[  421.283354][T17037] name failslab, interval 1, probability 0, space 0, times 0
[  421.308817][T17041] FAULT_INJECTION: forcing a failure.
[  421.308817][T17041] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  421.363368][T17042] __nla_validate_parse: 3 callbacks suppressed
[  421.363388][T17042] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3930'.
[  421.378958][T17037] CPU: 0 UID: 0 PID: 17037 Comm: syz.0.3929 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  421.378985][T17037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  421.378996][T17037] Call Trace:
[  421.379004][T17037]  <TASK>
[  421.379012][T17037]  dump_stack_lvl+0x241/0x360
[  421.379042][T17037]  ? __pfx_dump_stack_lvl+0x10/0x10
[  421.379064][T17037]  ? __pfx__printk+0x10/0x10
[  421.379087][T17037]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  421.379116][T17037]  ? __pfx___might_resched+0x10/0x10
[  421.379147][T17037]  should_fail_ex+0x40a/0x550
[  421.379181][T17037]  should_failslab+0xac/0x100
[  421.379209][T17037]  kmem_cache_alloc_node_noprof+0x77/0x380
[  421.379236][T17037]  ? __alloc_skb+0x1c3/0x440
[  421.379259][T17037]  __alloc_skb+0x1c3/0x440
[  421.379284][T17037]  ? __pfx___alloc_skb+0x10/0x10
[  421.379306][T17037]  ? netlink_autobind+0xd6/0x2f0
[  421.379333][T17037]  ? netlink_autobind+0x2b0/0x2f0
[  421.379365][T17037]  netlink_sendmsg+0x634/0xcb0
[  421.379404][T17037]  ? __pfx_netlink_sendmsg+0x10/0x10
[  421.379442][T17037]  ? aa_sock_msg_perm+0x91/0x160
[  421.379477][T17037]  ? __pfx_netlink_sendmsg+0x10/0x10
[  421.379503][T17037]  __sock_sendmsg+0x221/0x270
[  421.379533][T17037]  ____sys_sendmsg+0x53a/0x860
[  421.379563][T17037]  ? __pfx_____sys_sendmsg+0x10/0x10
[  421.379583][T17037]  ? __fget_files+0x2a/0x410
[  421.379615][T17037]  ? __fget_files+0x2a/0x410
[  421.379650][T17037]  __sys_sendmsg+0x269/0x350
[  421.379677][T17037]  ? __pfx___sys_sendmsg+0x10/0x10
[  421.379711][T17037]  ? do_sys_openat2+0x17a/0x1d0
[  421.379763][T17037]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  421.379795][T17037]  ? do_syscall_64+0x100/0x230
[  421.379823][T17037]  ? do_syscall_64+0xb6/0x230
[  421.379854][T17037]  do_syscall_64+0xf3/0x230
[  421.379878][T17037]  ? clear_bhb_loop+0x35/0x90
[  421.379910][T17037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.379936][T17037] RIP: 0033:0x7f30baf8d169
[  421.379954][T17037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.379971][T17037] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  421.379992][T17037] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  421.380006][T17037] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000003
[  421.380019][T17037] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  421.380031][T17037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.380043][T17037] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  421.380071][T17037]  </TASK>
[  421.432629][T17041] CPU: 1 UID: 0 PID: 17041 Comm: syz.2.3931 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  421.432658][T17041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  421.432672][T17041] Call Trace:
[  421.432680][T17041]  <TASK>
[  421.432688][T17041]  dump_stack_lvl+0x241/0x360
[  421.432718][T17041]  ? __pfx_dump_stack_lvl+0x10/0x10
[  421.432740][T17041]  ? __pfx__printk+0x10/0x10
[  421.432762][T17041]  ? __pfx_lock_release+0x10/0x10
[  421.432799][T17041]  should_fail_ex+0x40a/0x550
[  421.432833][T17041]  _copy_from_iter+0x1df/0x1c40
[  421.432856][T17041]  ? __virt_addr_valid+0x183/0x530
[  421.432894][T17041]  ? __pfx_lock_release+0x10/0x10
[  421.432932][T17041]  ? __alloc_skb+0x28f/0x440
[  421.432952][T17041]  ? __pfx__copy_from_iter+0x10/0x10
[  421.432979][T17041]  ? __virt_addr_valid+0x183/0x530
[  421.432998][T17041]  ? __virt_addr_valid+0x183/0x530
[  421.433016][T17041]  ? __virt_addr_valid+0x45f/0x530
[  421.433037][T17041]  ? __phys_addr_symbol+0x2f/0x70
[  421.433055][T17041]  ? __check_object_size+0x47a/0x730
[  421.433088][T17041]  netlink_sendmsg+0x742/0xcb0
[  421.433130][T17041]  ? __pfx_netlink_sendmsg+0x10/0x10
[  421.433164][T17041]  ? aa_sock_msg_perm+0x91/0x160
[  421.433210][T17041]  ? __pfx_netlink_sendmsg+0x10/0x10
[  421.433237][T17041]  __sock_sendmsg+0x221/0x270
[  421.433269][T17041]  ____sys_sendmsg+0x53a/0x860
[  421.433300][T17041]  ? __pfx_____sys_sendmsg+0x10/0x10
[  421.433320][T17041]  ? __fget_files+0x2a/0x410
[  421.433353][T17041]  ? __fget_files+0x2a/0x410
[  421.433391][T17041]  __sys_sendmsg+0x269/0x350
[  421.433418][T17041]  ? __pfx___sys_sendmsg+0x10/0x10
[  421.433453][T17041]  ? do_sys_openat2+0x17a/0x1d0
[  421.433508][T17041]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  421.433541][T17041]  ? do_syscall_64+0x100/0x230
[  421.433570][T17041]  ? do_syscall_64+0xb6/0x230
[  421.433599][T17041]  do_syscall_64+0xf3/0x230
[  421.433624][T17041]  ? clear_bhb_loop+0x35/0x90
[  421.433660][T17041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.433694][T17041] RIP: 0033:0x7f676678d169
[  421.433713][T17041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.433731][T17041] RSP: 002b:00007f676768d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  421.433753][T17041] RAX: ffffffffffffffda RBX: 00007f67669a5fa0 RCX: 00007f676678d169
[  421.433769][T17041] RDX: 0000000000000084 RSI: 00004000000000c0 RDI: 0000000000000003
[  421.433782][T17041] RBP: 00007f676768d090 R08: 0000000000000000 R09: 0000000000000000
[  421.433796][T17041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.433808][T17041] R13: 0000000000000000 R14: 00007f67669a5fa0 R15: 00007ffd35dc8048
[  421.433838][T17041]  </TASK>
[  422.008445][T17047] netlink: 188 bytes leftover after parsing attributes in process `syz.2.3932'.
[  422.017686][T17047] netlink: 'syz.2.3932': attribute type 1 has an invalid length.
[  422.299096][T17056] xt_hashlimit: size too large, truncated to 1048576
[  422.372629][T17024] x_tables: duplicate entry at hook 2
[  422.403898][T17060] xt_hashlimit: size too large, truncated to 1048576
[  422.750542][T17056] 
: renamed from bond0
[  423.368547][T17090] x_tables: ip6_tables: mh match: only valid for protocol 135
[  423.453311][T17094] FAULT_INJECTION: forcing a failure.
[  423.453311][T17094] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  423.510948][T17094] CPU: 1 UID: 0 PID: 17094 Comm: syz.0.3948 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  423.510977][T17094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  423.510990][T17094] Call Trace:
[  423.510997][T17094]  <TASK>
[  423.511006][T17094]  dump_stack_lvl+0x241/0x360
[  423.511036][T17094]  ? __pfx_dump_stack_lvl+0x10/0x10
[  423.511067][T17094]  ? __pfx__printk+0x10/0x10
[  423.511098][T17094]  should_fail_ex+0x40a/0x550
[  423.511132][T17094]  prepare_alloc_pages+0x1da/0x5b0
[  423.511163][T17094]  __alloc_frozen_pages_noprof+0x16f/0x710
[  423.511189][T17094]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  423.511225][T17094]  ? __pfx___might_resched+0x10/0x10
[  423.511257][T17094]  alloc_pages_mpol+0x311/0x660
[  423.511289][T17094]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  423.511316][T17094]  ? __might_fault+0xc6/0x120
[  423.511343][T17094]  alloc_pages_noprof+0x121/0x190
[  423.511372][T17094]  bpf_prog_test_run_xdp+0xcc0/0x11e0
[  423.511418][T17094]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  423.511448][T17094]  ? __fget_files+0x2a/0x410
[  423.511479][T17094]  ? __fget_files+0x2a/0x410
[  423.511521][T17094]  ? fput+0x21b/0x290
[  423.511546][T17094]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  423.511574][T17094]  bpf_prog_test_run+0x2e4/0x360
[  423.511605][T17094]  __sys_bpf+0x487/0x820
[  423.511632][T17094]  ? __pfx___sys_bpf+0x10/0x10
[  423.511670][T17094]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  423.511701][T17094]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  423.511731][T17094]  ? do_syscall_64+0x100/0x230
[  423.511758][T17094]  __x64_sys_bpf+0x7c/0x90
[  423.511783][T17094]  do_syscall_64+0xf3/0x230
[  423.511805][T17094]  ? clear_bhb_loop+0x35/0x90
[  423.511835][T17094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  423.511860][T17094] RIP: 0033:0x7f30baf8d169
[  423.511876][T17094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  423.511892][T17094] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  423.511912][T17094] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  423.511926][T17094] RDX: 0000000000000050 RSI: 0000400000000600 RDI: 000000000000000a
[  423.511937][T17094] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  423.511949][T17094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  423.511960][T17094] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  423.511987][T17094]  </TASK>
[  424.298699][T17115] 8021q: VLANs not supported on ip_vti0
[  424.351999][T17120] FAULT_INJECTION: forcing a failure.
[  424.351999][T17120] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  424.366320][T17120] CPU: 0 UID: 0 PID: 17120 Comm: syz.0.3958 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  424.366347][T17120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  424.366358][T17120] Call Trace:
[  424.366365][T17120]  <TASK>
[  424.366373][T17120]  dump_stack_lvl+0x241/0x360
[  424.366401][T17120]  ? __pfx_dump_stack_lvl+0x10/0x10
[  424.366423][T17120]  ? __pfx__printk+0x10/0x10
[  424.366444][T17120]  ? __pfx_lock_release+0x10/0x10
[  424.366480][T17120]  should_fail_ex+0x40a/0x550
[  424.366511][T17120]  _copy_from_iter+0x1df/0x1c40
[  424.366533][T17120]  ? __virt_addr_valid+0x183/0x530
[  424.366552][T17120]  ? __pfx_lock_release+0x10/0x10
[  424.366586][T17120]  ? __alloc_skb+0x28f/0x440
[  424.366605][T17120]  ? __pfx__copy_from_iter+0x10/0x10
[  424.366628][T17120]  ? __virt_addr_valid+0x183/0x530
[  424.366646][T17120]  ? __virt_addr_valid+0x183/0x530
[  424.366662][T17120]  ? __virt_addr_valid+0x45f/0x530
[  424.366680][T17120]  ? __phys_addr_symbol+0x2f/0x70
[  424.366698][T17120]  ? __check_object_size+0x47a/0x730
[  424.366727][T17120]  netlink_sendmsg+0x742/0xcb0
[  424.366765][T17120]  ? __pfx_netlink_sendmsg+0x10/0x10
[  424.366795][T17120]  ? aa_sock_msg_perm+0x91/0x160
[  424.366829][T17120]  ? __pfx_netlink_sendmsg+0x10/0x10
[  424.366854][T17120]  __sock_sendmsg+0x221/0x270
[  424.366882][T17120]  ____sys_sendmsg+0x53a/0x860
[  424.366910][T17120]  ? __pfx_____sys_sendmsg+0x10/0x10
[  424.366943][T17120]  ? __fget_files+0x2a/0x410
[  424.366969][T17120]  ? __fget_files+0x2a/0x410
[  424.366999][T17120]  __sys_sendmsg+0x269/0x350
[  424.367022][T17120]  ? __pfx___sys_sendmsg+0x10/0x10
[  424.367052][T17120]  ? do_sys_openat2+0x17a/0x1d0
[  424.367099][T17120]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  424.367128][T17120]  ? do_syscall_64+0x100/0x230
[  424.367154][T17120]  ? do_syscall_64+0xb6/0x230
[  424.367178][T17120]  do_syscall_64+0xf3/0x230
[  424.367200][T17120]  ? clear_bhb_loop+0x35/0x90
[  424.367229][T17120]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.367253][T17120] RIP: 0033:0x7f30baf8d169
[  424.367270][T17120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.367286][T17120] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  424.367305][T17120] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  424.367318][T17120] RDX: 0000000000004080 RSI: 0000400000000000 RDI: 0000000000000004
[  424.367330][T17120] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  424.367341][T17120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  424.367351][T17120] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  424.367376][T17120]  </TASK>
[  425.054375][T17140] FAULT_INJECTION: forcing a failure.
[  425.054375][T17140] name failslab, interval 1, probability 0, space 0, times 0
[  425.081643][T17140] CPU: 0 UID: 0 PID: 17140 Comm: syz.3.3964 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  425.081671][T17140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  425.081683][T17140] Call Trace:
[  425.081691][T17140]  <TASK>
[  425.081698][T17140]  dump_stack_lvl+0x241/0x360
[  425.081728][T17140]  ? __pfx_dump_stack_lvl+0x10/0x10
[  425.081749][T17140]  ? __pfx__printk+0x10/0x10
[  425.081770][T17140]  ? kmem_cache_alloc_noprof+0x48/0x380
[  425.081796][T17140]  ? __pfx___might_resched+0x10/0x10
[  425.081827][T17140]  should_fail_ex+0x40a/0x550
[  425.081858][T17140]  should_failslab+0xac/0x100
[  425.081884][T17140]  ? skb_clone+0x20c/0x390
[  425.081904][T17140]  kmem_cache_alloc_noprof+0x70/0x380
[  425.081933][T17140]  skb_clone+0x20c/0x390
[  425.081957][T17140]  nfnetlink_rcv+0x575/0x2ab0
[  425.081982][T17140]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  425.082014][T17140]  ? __dev_queue_xmit+0x1775/0x3f40
[  425.082035][T17140]  ? kasan_save_track+0x51/0x80
[  425.082060][T17140]  ? ____sys_sendmsg+0x53a/0x860
[  425.082083][T17140]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  425.082131][T17140]  ? ref_tracker_free+0x643/0x7e0
[  425.082149][T17140]  ? __asan_memcpy+0x40/0x70
[  425.082171][T17140]  ? __pfx_ref_tracker_free+0x10/0x10
[  425.082187][T17140]  ? __skb_clone+0x5c/0x6c0
[  425.082221][T17140]  ? netlink_deliver_tap+0x2e/0x1b0
[  425.082245][T17140]  ? skb_clone+0x240/0x390
[  425.082265][T17140]  ? __pfx_lock_release+0x10/0x10
[  425.082294][T17140]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  425.082329][T17140]  ? netlink_deliver_tap+0x2e/0x1b0
[  425.082356][T17140]  netlink_unicast+0x7f6/0x990
[  425.082387][T17140]  ? __pfx_netlink_unicast+0x10/0x10
[  425.082408][T17140]  ? __virt_addr_valid+0x45f/0x530
[  425.082426][T17140]  ? __phys_addr_symbol+0x2f/0x70
[  425.082443][T17140]  ? __check_object_size+0x47a/0x730
[  425.082472][T17140]  netlink_sendmsg+0x8de/0xcb0
[  425.082509][T17140]  ? __pfx_netlink_sendmsg+0x10/0x10
[  425.082539][T17140]  ? aa_sock_msg_perm+0x91/0x160
[  425.082572][T17140]  ? __pfx_netlink_sendmsg+0x10/0x10
[  425.082596][T17140]  __sock_sendmsg+0x221/0x270
[  425.082624][T17140]  ____sys_sendmsg+0x53a/0x860
[  425.082651][T17140]  ? __pfx_____sys_sendmsg+0x10/0x10
[  425.082670][T17140]  ? __fget_files+0x2a/0x410
[  425.082698][T17140]  ? __fget_files+0x2a/0x410
[  425.082732][T17140]  __sys_sendmsg+0x269/0x350
[  425.082757][T17140]  ? __pfx___sys_sendmsg+0x10/0x10
[  425.082788][T17140]  ? do_sys_openat2+0x17a/0x1d0
[  425.082837][T17140]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  425.082867][T17140]  ? do_syscall_64+0x100/0x230
[  425.082912][T17140]  ? do_syscall_64+0xb6/0x230
[  425.082938][T17140]  do_syscall_64+0xf3/0x230
[  425.082962][T17140]  ? clear_bhb_loop+0x35/0x90
[  425.082993][T17140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.083019][T17140] RIP: 0033:0x7f178f58d169
[  425.083036][T17140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.083054][T17140] RSP: 002b:00007f179031a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  425.083075][T17140] RAX: ffffffffffffffda RBX: 00007f178f7a5fa0 RCX: 00007f178f58d169
[  425.083090][T17140] RDX: 0000000000000000 RSI: 0000400000000840 RDI: 0000000000000005
[  425.083103][T17140] RBP: 00007f179031a090 R08: 0000000000000000 R09: 0000000000000000
[  425.083123][T17140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.083135][T17140] R13: 0000000000000000 R14: 00007f178f7a5fa0 R15: 00007ffd04bf5518
[  425.083164][T17140]  </TASK>
[  425.573050][T17151] netlink: 'syz.2.3965': attribute type 10 has an invalid length.
[  425.623114][T17151] syz_tun: entered promiscuous mode
[  425.635120][T17151] 
: (slave syz_tun): Enslaving as an active interface with an up link
[  425.671174][T17154] netlink: 'syz.1.3968': attribute type 10 has an invalid length.
[  425.703324][T17154] bridge0: port 2(bridge_slave_1) entered disabled state
[  425.745423][T17125] FAULT_INJECTION: forcing a failure.
[  425.745423][T17125] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  425.781466][T17125] CPU: 1 UID: 0 PID: 17125 Comm: syz.0.3960 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  425.781495][T17125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  425.781508][T17125] Call Trace:
[  425.781515][T17125]  <TASK>
[  425.781523][T17125]  dump_stack_lvl+0x241/0x360
[  425.781553][T17125]  ? __pfx_dump_stack_lvl+0x10/0x10
[  425.781575][T17125]  ? __pfx__printk+0x10/0x10
[  425.781598][T17125]  ? __pfx_lock_release+0x10/0x10
[  425.781637][T17125]  should_fail_ex+0x40a/0x550
[  425.781671][T17125]  _copy_from_user+0x2d/0xb0
[  425.781698][T17125]  copy_msghdr_from_user+0xae/0x680
[  425.781726][T17125]  ? __pfx___might_resched+0x10/0x10
[  425.781755][T17125]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  425.781788][T17125]  ? do_recvmmsg+0x44e/0xab0
[  425.781811][T17125]  ? __might_fault+0xaa/0x120
[  425.781835][T17125]  do_recvmmsg+0x3bd/0xab0
[  425.781868][T17125]  ? __pfx_do_recvmmsg+0x10/0x10
[  425.781921][T17125]  ? ksys_write+0x22a/0x2b0
[  425.781943][T17125]  ? __pfx_lock_release+0x10/0x10
[  425.781978][T17125]  ? sb_end_write+0xe9/0x1c0
[  425.782006][T17125]  ? vfs_write+0x7fa/0xd10
[  425.782029][T17125]  ? __mutex_unlock_slowpath+0x227/0x800
[  425.782073][T17125]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  425.782095][T17125]  ? __fget_files+0x2a/0x410
[  425.782135][T17125]  __x64_sys_recvmmsg+0x199/0x250
[  425.782159][T17125]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  425.782202][T17125]  ? do_syscall_64+0x100/0x230
[  425.782229][T17125]  ? do_syscall_64+0xb6/0x230
[  425.782255][T17125]  do_syscall_64+0xf3/0x230
[  425.782279][T17125]  ? clear_bhb_loop+0x35/0x90
[  425.782309][T17125]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  425.782335][T17125] RIP: 0033:0x7f30baf8d169
[  425.782352][T17125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  425.782369][T17125] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  425.782390][T17125] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  425.782405][T17125] RDX: 03ffffffffffff67 RSI: 0000400000002440 RDI: 0000000000000005
[  425.782418][T17125] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  425.782431][T17125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  425.782443][T17125] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  425.782471][T17125]  </TASK>
[  426.072006][T17161] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3969'.
[  426.296254][T17168] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  426.331159][T17176] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3974'.
[  426.833310][T17193] bond0: left allmulticast mode
[  426.840537][T17193] bond_slave_0: left allmulticast mode
[  426.854055][T17193] bond_slave_1: left allmulticast mode
[  426.869292][T17197] netlink: 'syz.3.3982': attribute type 1 has an invalid length.
[  426.895174][T17193] bridge0: left allmulticast mode
[  427.043759][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.062956][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.102115][T17209] FAULT_INJECTION: forcing a failure.
[  427.102115][T17209] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  427.116932][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.151336][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.160709][T17209] CPU: 1 UID: 0 PID: 17209 Comm: syz.0.3986 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  427.160734][T17209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  427.160746][T17209] Call Trace:
[  427.160753][T17209]  <TASK>
[  427.160760][T17209]  dump_stack_lvl+0x241/0x360
[  427.160788][T17209]  ? __pfx_dump_stack_lvl+0x10/0x10
[  427.160809][T17209]  ? __pfx__printk+0x10/0x10
[  427.160829][T17209]  ? __pfx_lock_release+0x10/0x10
[  427.160881][T17209]  should_fail_ex+0x40a/0x550
[  427.160912][T17209]  _copy_from_iter+0x1df/0x1c40
[  427.160953][T17209]  ? __virt_addr_valid+0x183/0x530
[  427.160973][T17209]  ? __pfx_lock_release+0x10/0x10
[  427.161006][T17209]  ? __alloc_skb+0x28f/0x440
[  427.161024][T17209]  ? __pfx__copy_from_iter+0x10/0x10
[  427.161049][T17209]  ? __virt_addr_valid+0x183/0x530
[  427.161066][T17209]  ? __virt_addr_valid+0x183/0x530
[  427.161084][T17209]  ? __virt_addr_valid+0x45f/0x530
[  427.161103][T17209]  ? __phys_addr_symbol+0x2f/0x70
[  427.161139][T17209]  ? __check_object_size+0x47a/0x730
[  427.161173][T17209]  netlink_sendmsg+0x742/0xcb0
[  427.161216][T17209]  ? __pfx_netlink_sendmsg+0x10/0x10
[  427.161250][T17209]  ? aa_sock_msg_perm+0x91/0x160
[  427.161288][T17209]  ? __pfx_netlink_sendmsg+0x10/0x10
[  427.161316][T17209]  __sock_sendmsg+0x221/0x270
[  427.161348][T17209]  ____sys_sendmsg+0x53a/0x860
[  427.161379][T17209]  ? __pfx_____sys_sendmsg+0x10/0x10
[  427.161400][T17209]  ? __fget_files+0x2a/0x410
[  427.161433][T17209]  ? __fget_files+0x2a/0x410
[  427.161472][T17209]  __sys_sendmmsg+0x36a/0x720
[  427.161507][T17209]  ? __pfx___sys_sendmmsg+0x10/0x10
[  427.161544][T17209]  ? __pfx_lock_release+0x10/0x10
[  427.161573][T17209]  ? kstrtouint_from_user+0x128/0x190
[  427.161621][T17209]  ? ksys_write+0x22a/0x2b0
[  427.161643][T17209]  ? __pfx_lock_release+0x10/0x10
[  427.161682][T17209]  ? sb_end_write+0xe9/0x1c0
[  427.161712][T17209]  ? vfs_write+0x7fa/0xd10
[  427.161736][T17209]  ? __mutex_unlock_slowpath+0x227/0x800
[  427.161796][T17209]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  427.161831][T17209]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  427.161864][T17209]  ? do_syscall_64+0x100/0x230
[  427.161894][T17209]  __x64_sys_sendmmsg+0xa0/0xb0
[  427.161919][T17209]  do_syscall_64+0xf3/0x230
[  427.161951][T17209]  ? clear_bhb_loop+0x35/0x90
[  427.161983][T17209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  427.162011][T17209] RIP: 0033:0x7f30baf8d169
[  427.162030][T17209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  427.162060][T17209] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  427.162080][T17209] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  427.162095][T17209] RDX: 040000000000009f RSI: 00004000000002c0 RDI: 0000000000000006
[  427.162109][T17209] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  427.162121][T17209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  427.162133][T17209] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  427.162163][T17209]  </TASK>
[  427.171890][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.522771][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.562308][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.571689][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.616185][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  427.638420][T17206] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3985'.
[  428.377718][T17237] wireguard0: entered promiscuous mode
[  428.406650][T17237] wireguard0: entered allmulticast mode
[  428.702814][T17213] x_tables: duplicate entry at hook 2
[  429.184567][T17210] x_tables: duplicate entry at hook 2
[  429.270089][T17263] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  429.307549][T17263] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  429.335497][T17263] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  429.721711][T17270] netdevsim netdevsim1 netdevsim1: entered allmulticast mode
[  430.200822][T17285] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  432.247395][T17324] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  432.483237][T17337] netlink: 'syz.2.4022': attribute type 10 has an invalid length.
[  433.066290][T17224] Set syz1 is full, maxelem 65536 reached
[  433.329743][T17376] FAULT_INJECTION: forcing a failure.
[  433.329743][T17376] name failslab, interval 1, probability 0, space 0, times 0
[  433.343589][T17376] CPU: 0 UID: 0 PID: 17376 Comm: syz.4.4040 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  433.343615][T17376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  433.343628][T17376] Call Trace:
[  433.343636][T17376]  <TASK>
[  433.343645][T17376]  dump_stack_lvl+0x241/0x360
[  433.343675][T17376]  ? __pfx_dump_stack_lvl+0x10/0x10
[  433.343698][T17376]  ? __pfx__printk+0x10/0x10
[  433.343733][T17376]  should_fail_ex+0x40a/0x550
[  433.343767][T17376]  should_failslab+0xac/0x100
[  433.343794][T17376]  ? skb_clone+0x20c/0x390
[  433.343816][T17376]  kmem_cache_alloc_noprof+0x70/0x380
[  433.343849][T17376]  skb_clone+0x20c/0x390
[  433.343876][T17376]  __netlink_deliver_tap+0x3c4/0x7f0
[  433.343916][T17376]  ? netlink_deliver_tap+0x2e/0x1b0
[  433.343942][T17376]  netlink_deliver_tap+0x19d/0x1b0
[  433.343991][T17376]  netlink_unicast+0x7c4/0x990
[  433.344027][T17376]  ? __pfx_netlink_unicast+0x10/0x10
[  433.344051][T17376]  ? __virt_addr_valid+0x45f/0x530
[  433.344073][T17376]  ? __phys_addr_symbol+0x2f/0x70
[  433.344093][T17376]  ? __check_object_size+0x47a/0x730
[  433.344157][T17376]  netlink_sendmsg+0x8de/0xcb0
[  433.344202][T17376]  ? __pfx_netlink_sendmsg+0x10/0x10
[  433.344239][T17376]  ? aa_sock_msg_perm+0x91/0x160
[  433.344277][T17376]  ? __pfx_netlink_sendmsg+0x10/0x10
[  433.344307][T17376]  __sock_sendmsg+0x221/0x270
[  433.344340][T17376]  ____sys_sendmsg+0x53a/0x860
[  433.344373][T17376]  ? __pfx_____sys_sendmsg+0x10/0x10
[  433.344395][T17376]  ? __fget_files+0x2a/0x410
[  433.344430][T17376]  ? __fget_files+0x2a/0x410
[  433.344470][T17376]  __sys_sendmsg+0x269/0x350
[  433.344498][T17376]  ? __pfx___sys_sendmsg+0x10/0x10
[  433.344528][T17376]  ? do_sys_openat2+0x17a/0x1d0
[  433.344574][T17376]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  433.344602][T17376]  ? do_syscall_64+0x100/0x230
[  433.344627][T17376]  ? do_syscall_64+0xb6/0x230
[  433.344650][T17376]  do_syscall_64+0xf3/0x230
[  433.344671][T17376]  ? clear_bhb_loop+0x35/0x90
[  433.344699][T17376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.344722][T17376] RIP: 0033:0x7fe32678d169
[  433.344738][T17376] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.344754][T17376] RSP: 002b:00007fe3275cc038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  433.344773][T17376] RAX: ffffffffffffffda RBX: 00007fe3269a5fa0 RCX: 00007fe32678d169
[  433.344786][T17376] RDX: 0000000004004810 RSI: 0000400000000300 RDI: 0000000000000003
[  433.344798][T17376] RBP: 00007fe3275cc090 R08: 0000000000000000 R09: 0000000000000000
[  433.344809][T17376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  433.344820][T17376] R13: 0000000000000000 R14: 00007fe3269a5fa0 R15: 00007fff0a9ea708
[  433.344845][T17376]  </TASK>
[  433.642526][T17380] __nla_validate_parse: 146 callbacks suppressed
[  433.642545][T17380] netlink: 72 bytes leftover after parsing attributes in process `syz.0.4038'.
[  433.703425][T17385] xt_hashlimit: max too large, truncated to 1048576
[  433.924324][T17391] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  434.716712][T17418] netlink: 'syz.0.4052': attribute type 10 has an invalid length.
[  434.761464][T17419] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  434.782813][T17419] batman_adv: batadv0: Removing interface: batadv_slave_0
[  434.801611][T17419] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  434.816836][T17419] batman_adv: batadv0: Removing interface: batadv_slave_1
[  435.103350][T17428] netlink: 'syz.2.4056': attribute type 2 has an invalid length.
[  435.139139][T17428] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4056'.
[  435.790554][T17430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4057'.
[  435.867316][T17430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4057'.
[  435.962300][ T5915] IPVS: starting estimator thread 0...
[  436.063894][T17432] IPVS: using max 20 ests per chain, 48000 per kthread
[  437.014619][T17424] bond0: entered promiscuous mode
[  437.019684][T17424] bond_slave_0: entered promiscuous mode
[  437.025631][T17424] bond_slave_1: entered promiscuous mode
[  437.031411][T17424] bridge0: entered promiscuous mode
[  437.153137][T17436] FAULT_INJECTION: forcing a failure.
[  437.153137][T17436] name failslab, interval 1, probability 0, space 0, times 0
[  437.169346][T17436] CPU: 1 UID: 0 PID: 17436 Comm: syz.0.4058 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  437.169372][T17436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  437.169383][T17436] Call Trace:
[  437.169390][T17436]  <TASK>
[  437.169399][T17436]  dump_stack_lvl+0x241/0x360
[  437.169425][T17436]  ? __pfx_dump_stack_lvl+0x10/0x10
[  437.169445][T17436]  ? __pfx__printk+0x10/0x10
[  437.169474][T17436]  should_fail_ex+0x40a/0x550
[  437.169503][T17436]  should_failslab+0xac/0x100
[  437.169528][T17436]  ? skb_clone+0x20c/0x390
[  437.169547][T17436]  kmem_cache_alloc_noprof+0x70/0x380
[  437.169577][T17436]  skb_clone+0x20c/0x390
[  437.169600][T17436]  __netlink_deliver_tap+0x3c4/0x7f0
[  437.169636][T17436]  ? netlink_deliver_tap+0x2e/0x1b0
[  437.169659][T17436]  netlink_deliver_tap+0x19d/0x1b0
[  437.169684][T17436]  netlink_unicast+0x7c4/0x990
[  437.169713][T17436]  ? __pfx_netlink_unicast+0x10/0x10
[  437.169734][T17436]  ? __virt_addr_valid+0x45f/0x530
[  437.169752][T17436]  ? __phys_addr_symbol+0x2f/0x70
[  437.169769][T17436]  ? __check_object_size+0x47a/0x730
[  437.169795][T17436]  netlink_sendmsg+0x8de/0xcb0
[  437.169831][T17436]  ? __pfx_netlink_sendmsg+0x10/0x10
[  437.169868][T17436]  ? aa_sock_msg_perm+0x91/0x160
[  437.169900][T17436]  ? __pfx_netlink_sendmsg+0x10/0x10
[  437.169923][T17436]  __sock_sendmsg+0x221/0x270
[  437.169950][T17436]  ____sys_sendmsg+0x53a/0x860
[  437.169978][T17436]  ? __pfx_____sys_sendmsg+0x10/0x10
[  437.169996][T17436]  ? __fget_files+0x2a/0x410
[  437.170025][T17436]  ? __fget_files+0x2a/0x410
[  437.170059][T17436]  __sys_sendmsg+0x269/0x350
[  437.170083][T17436]  ? __pfx___sys_sendmsg+0x10/0x10
[  437.170115][T17436]  ? do_sys_openat2+0x17a/0x1d0
[  437.170166][T17436]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  437.170196][T17436]  ? do_syscall_64+0x100/0x230
[  437.170222][T17436]  ? do_syscall_64+0xb6/0x230
[  437.170247][T17436]  do_syscall_64+0xf3/0x230
[  437.170269][T17436]  ? clear_bhb_loop+0x35/0x90
[  437.170298][T17436]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  437.170322][T17436] RIP: 0033:0x7f30baf8d169
[  437.170338][T17436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  437.170354][T17436] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  437.170374][T17436] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  437.170387][T17436] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000003
[  437.170399][T17436] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  437.170410][T17436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.170420][T17436] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  437.170447][T17436]  </TASK>
[  437.170480][T17436] netlink: 'syz.0.4058': attribute type 10 has an invalid length.
[  437.567017][T17436] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.574637][T17436] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.720363][T17445] netlink: 'syz.2.4061': attribute type 10 has an invalid length.
[  437.767201][T17445] team0: Device veth1_macvtap failed to register rx_handler
[  437.842379][T17451] team0: No ports can be present during mode change
[  438.071582][T17458] FAULT_INJECTION: forcing a failure.
[  438.071582][T17458] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  438.078207][T17460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4068'.
[  438.152249][T17458] CPU: 1 UID: 0 PID: 17458 Comm: syz.0.4067 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  438.152283][T17458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  438.152296][T17458] Call Trace:
[  438.152305][T17458]  <TASK>
[  438.152314][T17458]  dump_stack_lvl+0x241/0x360
[  438.152346][T17458]  ? __pfx_dump_stack_lvl+0x10/0x10
[  438.152371][T17458]  ? __pfx__printk+0x10/0x10
[  438.152395][T17458]  ? __pfx_lock_release+0x10/0x10
[  438.152437][T17458]  should_fail_ex+0x40a/0x550
[  438.152479][T17458]  _copy_from_iter+0x1df/0x1c40
[  438.152504][T17458]  ? __virt_addr_valid+0x183/0x530
[  438.152527][T17458]  ? __pfx_lock_release+0x10/0x10
[  438.152569][T17458]  ? __pfx__copy_from_iter+0x10/0x10
[  438.152597][T17458]  ? __virt_addr_valid+0x183/0x530
[  438.152617][T17458]  ? __virt_addr_valid+0x183/0x530
[  438.152636][T17458]  ? __virt_addr_valid+0x45f/0x530
[  438.152657][T17458]  ? __phys_addr_symbol+0x2f/0x70
[  438.152677][T17458]  ? __check_object_size+0x47a/0x730
[  438.152711][T17458]  tcp_sendmsg_locked+0x18a1/0x4fd0
[  438.152736][T17458]  ? mark_lock+0x9a/0x360
[  438.152809][T17458]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  438.152840][T17458]  ? tcp_sendmsg+0x22/0x50
[  438.152864][T17458]  ? do_raw_spin_unlock+0x13c/0x8b0
[  438.152902][T17458]  tcp_sendmsg+0x30/0x50
[  438.152928][T17458]  __sock_sendmsg+0x1a6/0x270
[  438.152967][T17458]  __sys_sendto+0x363/0x4c0
[  438.152995][T17458]  ? __pfx___sys_sendto+0x10/0x10
[  438.153031][T17458]  ? __fget_files+0x2a/0x410
[  438.153072][T17458]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  438.153107][T17458]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  438.153146][T17458]  __x64_sys_sendto+0xde/0x100
[  438.153171][T17458]  do_syscall_64+0xf3/0x230
[  438.153198][T17458]  ? clear_bhb_loop+0x35/0x90
[  438.153232][T17458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  438.153261][T17458] RIP: 0033:0x7f30baf8d169
[  438.153280][T17458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  438.153298][T17458] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  438.153322][T17458] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  438.153338][T17458] RDX: 000000000000088f RSI: 0000400000001340 RDI: 0000000000000003
[  438.153352][T17458] RBP: 00007f30bbd19090 R08: 0000000000000000 R09: 0000000000000000
[  438.153365][T17458] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  438.153378][T17458] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  438.153411][T17458]  </TASK>
[  438.793307][T17470] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4070'.
[  438.840199][T17470] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4070'.
[  439.097085][T17476] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4074'.
[  439.143186][T17482] netlink: 'syz.4.4075': attribute type 10 has an invalid length.
[  439.159283][T17476] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.166050][T17481] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4077'.
[  439.166461][T17476] bridge0: port 2(bridge_slave_1) entered forwarding state
[  439.183826][T17476] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.190952][T17476] bridge0: port 1(bridge_slave_0) entered forwarding state
[  439.257612][   T12] 
[  439.260776][   T12] =============================
[  439.266097][   T12] WARNING: suspicious RCU usage
[  439.270976][   T12] 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0 Not tainted
[  439.278287][   T12] -----------------------------
[  439.282507][T17476] bond0: left promiscuous mode
[  439.283607][   T12] net/sched/sch_generic.c:1251 suspicious rcu_dereference_protected() usage!
[  439.291449][T17476] bond_slave_0: left promiscuous mode
[  439.296996][   T12] 
[  439.296996][   T12] other info that might help us debug this:
[  439.296996][   T12] 
[  439.310993][T17476] bond_slave_1: left promiscuous mode
[  439.312855][   T12] 
[  439.312855][   T12] rcu_scheduler_active = 2, debug_locks = 1
[  439.312872][   T12] 3 locks held by kworker/u8:1/12:
[  439.312887][   T12]  #0: ffff88805645e948 ((wq_completion)bond0#5){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  439.343301][   T12]  #1: ffffc90000117c60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  439.346842][T17476] bridge0: left promiscuous mode
[  439.356353][   T12]  #2: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  439.356426][   T12] 
[  439.356426][   T12] stack backtrace:
[  439.356438][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  439.356461][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.356475][   T12] Workqueue: bond0 bond_mii_monitor
[  439.356494][   T12] Call Trace:
[  439.356502][   T12]  <TASK>
[  439.356510][   T12]  dump_stack_lvl+0x241/0x360
[  439.356538][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  439.356561][   T12]  ? __pfx__printk+0x10/0x10
[  439.356607][   T12]  lockdep_rcu_suspicious+0x226/0x340
[  439.356638][   T12]  dev_activate+0xf8/0x1240
[  439.356674][   T12]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  439.356698][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  439.356726][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  439.356749][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.356774][   T12]  ? __pfx_dev_activate+0x10/0x10
[  439.356803][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  439.356826][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.356854][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  439.356882][   T12]  linkwatch_do_dev+0xfb/0x170
[  439.356907][   T12]  ethtool_op_get_link+0x15/0x60
[  439.356939][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  439.356971][   T12]  bond_check_dev_link+0x1eb/0x490
[  439.356997][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  439.357040][   T12]  bond_mii_monitor+0x49a/0x3170
[  439.357073][   T12]  ? __lock_acquire+0x1397/0x2100
[  439.357117][   T12]  ? bond_mii_monitor+0x174/0x3170
[  439.357142][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  439.357176][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  439.357213][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  439.357244][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  439.357279][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  439.357324][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  439.357350][   T12]  process_scheduled_works+0xabe/0x18e0
[  439.357407][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  439.357442][   T12]  ? assign_work+0x364/0x3d0
[  439.357476][   T12]  worker_thread+0x870/0xd30
[  439.357519][   T12]  ? __kthread_parkme+0x169/0x1d0
[  439.357552][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.357580][   T12]  kthread+0x7a9/0x920
[  439.357603][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357625][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.357653][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357670][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357692][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357710][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  439.357740][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  439.357761][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357780][   T12]  ret_from_fork+0x4b/0x80
[  439.357805][   T12]  ? __pfx_kthread+0x10/0x10
[  439.357839][   T12]  ret_from_fork_asm+0x1a/0x30
[  439.357891][   T12]  </TASK>
[  439.375305][   T12] 
[  439.378998][T17486] FAULT_INJECTION: forcing a failure.
[  439.378998][T17486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  439.388753][   T12] =============================
[  439.436668][T17486] CPU: 0 UID: 0 PID: 17486 Comm: syz.0.4076 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  439.436699][T17486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.436713][T17486] Call Trace:
[  439.436721][T17486]  <TASK>
[  439.436730][T17486]  dump_stack_lvl+0x241/0x360
[  439.436762][T17486]  ? __pfx_dump_stack_lvl+0x10/0x10
[  439.436786][T17486]  ? __pfx__printk+0x10/0x10
[  439.436810][T17486]  ? __pfx_lock_release+0x10/0x10
[  439.436857][T17486]  should_fail_ex+0x40a/0x550
[  439.436893][T17486]  _copy_from_user+0x2d/0xb0
[  439.436930][T17486]  copy_msghdr_from_user+0xae/0x680
[  439.436961][T17486]  ? __pfx___might_resched+0x10/0x10
[  439.436993][T17486]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  439.437021][T17486]  ? set_normalized_timespec64+0x160/0x1e0
[  439.437057][T17486]  ? do_recvmmsg+0x44e/0xab0
[  439.437080][T17486]  ? __might_fault+0xaa/0x120
[  439.437106][T17486]  do_recvmmsg+0x3bd/0xab0
[  439.437141][T17486]  ? __pfx_do_recvmmsg+0x10/0x10
[  439.437192][T17486]  ? __pfx___might_resched+0x10/0x10
[  439.437219][T17486]  ? __might_fault+0xaa/0x120
[  439.437240][T17486]  ? __pfx_lock_release+0x10/0x10
[  439.437271][T17486]  ? vfs_write+0x7fa/0xd10
[  439.437307][T17486]  ? get_timespec64+0x19c/0x280
[  439.437352][T17486]  __x64_sys_recvmmsg+0x1b8/0x250
[  439.437379][T17486]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  439.437405][T17486]  ? do_syscall_64+0x100/0x230
[  439.437434][T17486]  ? do_syscall_64+0xb6/0x230
[  439.437462][T17486]  do_syscall_64+0xf3/0x230
[  439.437485][T17486]  ? clear_bhb_loop+0x35/0x90
[  439.437522][T17486]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.437550][T17486] RIP: 0033:0x7f30baf8d169
[  439.437569][T17486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.437586][T17486] RSP: 002b:00007f30bbd19038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  439.437608][T17486] RAX: ffffffffffffffda RBX: 00007f30bb1a5fa0 RCX: 00007f30baf8d169
[  439.437623][T17486] RDX: 00000000000006f5 RSI: 0000400000000440 RDI: 0000000000000003
[  439.437637][T17486] RBP: 00007f30bbd19090 R08: 0000400000000480 R09: 0000000000000000
[  439.437651][T17486] R10: 0000002000000022 R11: 0000000000000246 R12: 0000000000000002
[  439.437665][T17486] R13: 0000000000000000 R14: 00007f30bb1a5fa0 R15: 00007ffd69e58038
[  439.437696][T17486]  </TASK>
[  439.574049][T17476] 8021q: adding VLAN 0 to HW filter on device bond0
[  439.578008][   T12] WARNING: suspicious RCU usage
[  439.578021][   T12] 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0 Not tainted
[  439.578035][   T12] -----------------------------
[  439.578044][   T12] net/sched/sch_generic.c:1229 suspicious rcu_dereference_protected() usage!
[  439.578060][   T12] 
[  439.578060][   T12] other info that might help us debug this:
[  439.578060][   T12] 
[  439.578070][   T12] 
[  439.578070][   T12] rcu_scheduler_active = 2, debug_locks = 1
[  439.602202][   T12] 3 locks held by kworker/u8:1/12:
[  439.602221][   T12]  #0: ffff88805645e948 ((wq_completion)bond0#5){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  439.602311][   T12]  #1: ffffc90000117c60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  439.602385][   T12]  #2: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  439.602452][   T12] 
[  439.602452][   T12] stack backtrace:
[  439.602464][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  439.602488][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.602502][   T12] Workqueue: bond0 bond_mii_monitor
[  439.602525][   T12] Call Trace:
[  439.602535][   T12]  <TASK>
[  439.602545][   T12]  dump_stack_lvl+0x241/0x360
[  439.602576][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  439.602612][   T12]  ? __pfx__printk+0x10/0x10
[  439.602653][   T12]  lockdep_rcu_suspicious+0x226/0x340
[  439.602682][   T12]  transition_one_qdisc+0x8e/0x1c0
[  439.602719][   T12]  dev_activate+0x838/0x1240
[  439.602761][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.602788][   T12]  ? __pfx_dev_activate+0x10/0x10
[  439.602817][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  439.602841][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.602868][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  439.602896][   T12]  linkwatch_do_dev+0xfb/0x170
[  439.602923][   T12]  ethtool_op_get_link+0x15/0x60
[  439.602954][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  439.602987][   T12]  bond_check_dev_link+0x1eb/0x490
[  439.603012][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  439.603055][   T12]  bond_mii_monitor+0x49a/0x3170
[  439.603089][   T12]  ? __lock_acquire+0x1397/0x2100
[  439.603122][   T12]  ? bond_mii_monitor+0x174/0x3170
[  439.603150][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  439.603186][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  439.603225][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  439.603259][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  439.603296][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  439.603344][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  439.603384][   T12]  process_scheduled_works+0xabe/0x18e0
[  439.603441][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  439.603478][   T12]  ? assign_work+0x364/0x3d0
[  439.603511][   T12]  worker_thread+0x870/0xd30
[  439.603554][   T12]  ? __kthread_parkme+0x169/0x1d0
[  439.603587][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.603621][   T12]  kthread+0x7a9/0x920
[  439.603639][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603660][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.603688][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603706][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603728][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603746][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  439.603765][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  439.603788][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603809][   T12]  ret_from_fork+0x4b/0x80
[  439.603835][   T12]  ? __pfx_kthread+0x10/0x10
[  439.603855][   T12]  ret_from_fork_asm+0x1a/0x30
[  439.603897][   T12]  </TASK>
[  439.612911][   T12] 
[  439.693854][   T12] =============================
[  439.693868][   T12] WARNING: suspicious RCU usage
[  439.693879][   T12] 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0 Not tainted
[  439.693894][   T12] -----------------------------
[  439.693904][   T12] ./include/linux/rtnetlink.h:163 suspicious rcu_dereference_protected() usage!
[  439.693921][   T12] 
[  439.693921][   T12] other info that might help us debug this:
[  439.693921][   T12] 
[  439.693932][   T12] 
[  439.693932][   T12] rcu_scheduler_active = 2, debug_locks = 1
[  439.693948][   T12] 3 locks held by kworker/u8:1/12:
[  439.693963][   T12]  #0: ffff88805645e948 ((wq_completion)bond0#5){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  439.694048][   T12]  #1: ffffc90000117c60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  439.694123][   T12]  #2: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  439.694191][   T12] 
[  439.694191][   T12] stack backtrace:
[  439.694203][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  439.694225][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.694239][   T12] Workqueue: bond0 bond_mii_monitor
[  439.694260][   T12] Call Trace:
[  439.694267][   T12]  <TASK>
[  439.694277][   T12]  dump_stack_lvl+0x241/0x360
[  439.694305][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  439.694330][   T12]  ? __pfx__printk+0x10/0x10
[  439.694364][   T12]  lockdep_rcu_suspicious+0x226/0x340
[  439.694395][   T12]  dev_activate+0x925/0x1240
[  439.694442][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.694471][   T12]  ? __pfx_dev_activate+0x10/0x10
[  439.694501][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  439.694527][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  439.694556][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  439.694585][   T12]  linkwatch_do_dev+0xfb/0x170
[  439.694613][   T12]  ethtool_op_get_link+0x15/0x60
[  439.694647][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  439.694680][   T12]  bond_check_dev_link+0x1eb/0x490
[  439.694708][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  439.694753][   T12]  bond_mii_monitor+0x49a/0x3170
[  439.694788][   T12]  ? __lock_acquire+0x1397/0x2100
[  439.694832][   T12]  ? bond_mii_monitor+0x174/0x3170
[  439.694860][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  439.694899][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  439.694940][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  439.694976][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  439.695015][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  439.695066][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  439.695095][   T12]  process_scheduled_works+0xabe/0x18e0
[  439.695160][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  439.695201][   T12]  ? assign_work+0x364/0x3d0
[  439.695239][   T12]  worker_thread+0x870/0xd30
[  439.695287][   T12]  ? __kthread_parkme+0x169/0x1d0
[  439.695324][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.695368][   T12]  kthread+0x7a9/0x920
[  439.695386][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695409][   T12]  ? __pfx_worker_thread+0x10/0x10
[  439.695448][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695464][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695486][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695502][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  439.695521][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  439.695543][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695563][   T12]  ret_from_fork+0x4b/0x80
[  439.695588][   T12]  ? __pfx_kthread+0x10/0x10
[  439.695607][   T12]  ret_from_fork_asm+0x1a/0x30
[  439.695646][   T12]  </TASK>
[  439.698106][   T12] BUG: sleeping function called from invalid context at kernel/locking/rwsem.c:1523
[  440.621952][   T12] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 12, name: kworker/u8:1
[  440.631050][   T12] preempt_count: 0, expected: 0
[  440.635977][   T12] RCU nest depth: 1, expected: 0
[  440.640921][   T12] 3 locks held by kworker/u8:1/12:
[  440.646075][   T12]  #0: ffff88805645e948 ((wq_completion)bond0#5){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  440.657365][   T12]  #1: ffffc90000117c60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  440.670353][   T12]  #2: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  440.680470][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Not tainted 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  440.680502][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  440.680515][   T12] Workqueue: bond0 bond_mii_monitor
[  440.680537][   T12] Call Trace:
[  440.680544][   T12]  <TASK>
[  440.680552][   T12]  dump_stack_lvl+0x241/0x360
[  440.680578][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  440.680599][   T12]  ? __pfx__printk+0x10/0x10
[  440.680631][   T12]  __might_resched+0x5d4/0x780
[  440.680658][   T12]  ? preempt_schedule_notrace+0xf6/0x140
[  440.680680][   T12]  ? __pfx___might_resched+0x10/0x10
[  440.680713][   T12]  ? __pfx___schedule+0x10/0x10
[  440.680736][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  440.680772][   T12]  down_read+0x8e/0xa40
[  440.680796][   T12]  ? dump_stack_lvl+0x273/0x360
[  440.680818][   T12]  ? preempt_schedule_notrace+0x100/0x140
[  440.680839][   T12]  ? __pfx_down_read+0x10/0x10
[  440.680863][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  440.680883][   T12]  ? __pfx__printk+0x10/0x10
[  440.680906][   T12]  ? dev_get_flags+0x147/0x1d0
[  440.680930][   T12]  wext_netdev_notifier_call+0x1f/0x120
[  440.680960][   T12]  notifier_call_chain+0x1a5/0x3f0
[  440.680991][   T12]  netdev_state_change+0x11f/0x1a0
[  440.681015][   T12]  ? __pfx_netdev_state_change+0x10/0x10
[  440.681042][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  440.681062][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  440.681085][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  440.681107][   T12]  linkwatch_do_dev+0x112/0x170
[  440.681128][   T12]  ethtool_op_get_link+0x15/0x60
[  440.681154][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  440.681179][   T12]  bond_check_dev_link+0x1eb/0x490
[  440.681200][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  440.681233][   T12]  bond_mii_monitor+0x49a/0x3170
[  440.681262][   T12]  ? __lock_acquire+0x1397/0x2100
[  440.681289][   T12]  ? bond_mii_monitor+0x174/0x3170
[  440.681312][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  440.681342][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  440.681375][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  440.681403][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  440.681432][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  440.681472][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  440.681514][   T12]  process_scheduled_works+0xabe/0x18e0
[  440.681566][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  440.681599][   T12]  ? assign_work+0x364/0x3d0
[  440.681628][   T12]  worker_thread+0x870/0xd30
[  440.681667][   T12]  ? __kthread_parkme+0x169/0x1d0
[  440.681695][   T12]  ? __pfx_worker_thread+0x10/0x10
[  440.681721][   T12]  kthread+0x7a9/0x920
[  440.681736][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681756][   T12]  ? __pfx_worker_thread+0x10/0x10
[  440.681780][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681796][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681815][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681830][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  440.681848][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  440.681869][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681887][   T12]  ret_from_fork+0x4b/0x80
[  440.681911][   T12]  ? __pfx_kthread+0x10/0x10
[  440.681929][   T12]  ret_from_fork_asm+0x1a/0x30
[  440.681965][   T12]  </TASK>
[  440.681974][   T12] 
[  440.993847][   T12] =============================
[  440.998689][   T12] [ BUG: Invalid wait context ]
[  441.003537][   T12] 6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0 Tainted: G        W         
[  441.012121][   T12] -----------------------------
[  441.016975][   T12] kworker/u8:1/12 is trying to lock:
[  441.022247][   T12] ffffffff8fec9dd0 (net_rwsem){++++}-{4:4}, at: wext_netdev_notifier_call+0x1f/0x120
[  441.031747][   T12] other info that might help us debug this:
[  441.037624][   T12] context-{5:5}
[  441.041078][   T12] 3 locks held by kworker/u8:1/12:
[  441.046174][   T12]  #0: ffff88805645e948 ((wq_completion)bond0#5){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[  441.057320][   T12]  #1: ffffc90000117c60 ((work_completion)(&(&bond->mii_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[  441.070295][   T12]  #2: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: bond_mii_monitor+0x174/0x3170
[  441.079977][   T12] stack backtrace:
[  441.083703][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Tainted: G        W          6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  441.083724][   T12] Tainted: [W]=WARN
[  441.083730][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  441.083741][   T12] Workqueue: bond0 bond_mii_monitor
[  441.083759][   T12] Call Trace:
[  441.083766][   T12]  <TASK>
[  441.083773][   T12]  dump_stack_lvl+0x241/0x360
[  441.083793][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  441.083810][   T12]  ? __pfx__printk+0x10/0x10
[  441.083824][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.083852][   T12]  __lock_acquire+0x15a8/0x2100
[  441.083882][   T12]  lock_acquire+0x1ed/0x550
[  441.083903][   T12]  ? wext_netdev_notifier_call+0x1f/0x120
[  441.083929][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  441.083951][   T12]  ? preempt_schedule_notrace+0xf6/0x140
[  441.083969][   T12]  ? __pfx___might_resched+0x10/0x10
[  441.083989][   T12]  ? __pfx___schedule+0x10/0x10
[  441.084006][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.084031][   T12]  down_read+0xb1/0xa40
[  441.084050][   T12]  ? wext_netdev_notifier_call+0x1f/0x120
[  441.084072][   T12]  ? dump_stack_lvl+0x273/0x360
[  441.084089][   T12]  ? preempt_schedule_notrace+0x100/0x140
[  441.084105][   T12]  ? __pfx_down_read+0x10/0x10
[  441.084125][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  441.084141][   T12]  ? __pfx__printk+0x10/0x10
[  441.084157][   T12]  ? dev_get_flags+0x147/0x1d0
[  441.084174][   T12]  wext_netdev_notifier_call+0x1f/0x120
[  441.084196][   T12]  notifier_call_chain+0x1a5/0x3f0
[  441.084220][   T12]  netdev_state_change+0x11f/0x1a0
[  441.084259][   T12]  ? __pfx_netdev_state_change+0x10/0x10
[  441.084283][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  441.084301][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  441.084320][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  441.084339][   T12]  linkwatch_do_dev+0x112/0x170
[  441.084358][   T12]  ethtool_op_get_link+0x15/0x60
[  441.084383][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  441.084408][   T12]  bond_check_dev_link+0x1eb/0x490
[  441.084426][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  441.084456][   T12]  bond_mii_monitor+0x49a/0x3170
[  441.084478][   T12]  ? __lock_acquire+0x1397/0x2100
[  441.084503][   T12]  ? bond_mii_monitor+0x174/0x3170
[  441.084522][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  441.084546][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  441.084569][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  441.084594][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.084621][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  441.084651][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  441.084672][   T12]  process_scheduled_works+0xabe/0x18e0
[  441.084708][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  441.084733][   T12]  ? assign_work+0x364/0x3d0
[  441.084756][   T12]  worker_thread+0x870/0xd30
[  441.084784][   T12]  ? __kthread_parkme+0x169/0x1d0
[  441.084809][   T12]  ? __pfx_worker_thread+0x10/0x10
[  441.084831][   T12]  kthread+0x7a9/0x920
[  441.084845][   T12]  ? __pfx_kthread+0x10/0x10
[  441.084861][   T12]  ? __pfx_worker_thread+0x10/0x10
[  441.084883][   T12]  ? __pfx_kthread+0x10/0x10
[  441.084897][   T12]  ? __pfx_kthread+0x10/0x10
[  441.084913][   T12]  ? __pfx_kthread+0x10/0x10
[  441.084927][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  441.084944][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  441.084962][   T12]  ? __pfx_kthread+0x10/0x10
[  441.084978][   T12]  ret_from_fork+0x4b/0x80
[  441.085000][   T12]  ? __pfx_kthread+0x10/0x10
[  441.085015][   T12]  ret_from_fork_asm+0x1a/0x30
[  441.085042][   T12]  </TASK>
[  441.430004][   T12] BUG: sleeping function called from invalid context at kernel/locking/mutex.c:562
[  441.439991][   T12] in_atomic(): 0, irqs_disabled(): 0, non_block: 0, pid: 12, name: kworker/u8:1
[  441.449360][   T12] preempt_count: 0, expected: 0
[  441.454462][   T12] RCU nest depth: 1, expected: 0
[  441.459671][   T12] INFO: lockdep is turned off.
[  441.464668][   T12] CPU: 1 UID: 0 PID: 12 Comm: kworker/u8:1 Tainted: G        W          6.14.0-rc5-syzkaller-01188-g0ea09cbf8350 #0
[  441.464692][   T12] Tainted: [W]=WARN
[  441.464698][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  441.464709][   T12] Workqueue: bond0 bond_mii_monitor
[  441.464738][   T12] Call Trace:
[  441.464744][   T12]  <TASK>
[  441.464751][   T12]  dump_stack_lvl+0x241/0x360
[  441.464771][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  441.464788][   T12]  ? __pfx__printk+0x10/0x10
[  441.464808][   T12]  __might_resched+0x5d4/0x780
[  441.464828][   T12]  ? __asan_memset+0x23/0x50
[  441.464845][   T12]  ? __pfx___might_resched+0x10/0x10
[  441.464863][   T12]  ? br_get_link_ksettings+0x36d/0x420
[  441.464888][   T12]  ? rcu_is_watching+0x15/0xb0
[  441.464908][   T12]  __mutex_lock+0x126/0x1010
[  441.464927][   T12]  ? lock_release+0xbf/0xa30
[  441.464950][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  441.464972][   T12]  ? rcu_is_watching+0x15/0xb0
[  441.464989][   T12]  ? tee_netdev_event+0x86/0x460
[  441.465006][   T12]  ? __pfx_lock_release+0x10/0x10
[  441.465029][   T12]  ? __pfx___mutex_lock+0x10/0x10
[  441.465047][   T12]  ? do_raw_spin_lock+0x14f/0x370
[  441.465077][   T12]  ? net_generic+0x1f/0x240
[  441.465103][   T12]  tee_netdev_event+0x86/0x460
[  441.465127][   T12]  ? nft_offload_netdev_event+0x27d/0x360
[  441.465156][   T12]  notifier_call_chain+0x1a5/0x3f0
[  441.465180][   T12]  netdev_state_change+0x11f/0x1a0
[  441.465202][   T12]  ? __pfx_netdev_state_change+0x10/0x10
[  441.465223][   T12]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  441.465239][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  441.465256][   T12]  ? rfc2863_policy+0x1ce/0x3f0
[  441.465273][   T12]  linkwatch_do_dev+0x112/0x170
[  441.465290][   T12]  ethtool_op_get_link+0x15/0x60
[  441.465312][   T12]  ? __pfx_ethtool_op_get_link+0x10/0x10
[  441.465335][   T12]  bond_check_dev_link+0x1eb/0x490
[  441.465351][   T12]  ? __pfx_bond_check_dev_link+0x10/0x10
[  441.465372][   T12]  bond_mii_monitor+0x49a/0x3170
[  441.465391][   T12]  ? __lock_acquire+0x1397/0x2100
[  441.465413][   T12]  ? bond_mii_monitor+0x174/0x3170
[  441.465430][   T12]  ? do_raw_spin_unlock+0x13c/0x8b0
[  441.465452][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  441.465473][   T12]  ? __pfx_lock_acquire+0x10/0x10
[  441.465497][   T12]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.465521][   T12]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  441.465549][   T12]  ? process_scheduled_works+0x9c6/0x18e0
[  441.465568][   T12]  process_scheduled_works+0xabe/0x18e0
[  441.465598][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  441.465621][   T12]  ? assign_work+0x364/0x3d0
[  441.465642][   T12]  worker_thread+0x870/0xd30
[  441.465667][   T12]  ? __kthread_parkme+0x169/0x1d0
[  441.465690][   T12]  ? __pfx_worker_thread+0x10/0x10
[  441.465710][   T12]  kthread+0x7a9/0x920
[  441.465722][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465743][   T12]  ? __pfx_worker_thread+0x10/0x10
[  441.465763][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465776][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465791][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465803][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  441.465817][   T12]  ? lockdep_hardirqs_on+0x99/0x150
[  441.465834][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465847][   T12]  ret_from_fork+0x4b/0x80
[  441.465867][   T12]  ? __pfx_kthread+0x10/0x10
[  441.465881][   T12]  ret_from_fork_asm+0x1a/0x30
[  441.465905][   T12]  </TASK>
[  441.466390][T17476] chnl_net:chnl_flowctrl_cb(): NET flowctrl func called flow: CLOSE/DEINIT
[  441.808892][T17476] chnl_net:chnl_net_open(): state disconnected
[  441.815182][T17476] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  441.847847][T17482] syz_tun: entered promiscuous mode
[  441.859188][T17482] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  441.870370][T17492] ieee80211 phy50: Selected rate control algorithm 'minstrel_ht'
[  445.152281][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!