last executing test programs:

3.224005585s ago: executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="440088a82000270300000000010000008100000000000000000000001400030069703667c697995c703000000000000014000c0074"], 0x44}}, 0x0)

3.131909234s ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4"], &(0x7f0000003ff6)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0xc8, 0x0, &(0x7f0000000500)="cdc9b4efd780e4e6c97f083b6b3b6cfd32c9e69fdb49539be6b2806dacb38385831d8b9d751bb7f27f9a04b161cf9b19414b813ed8749b3f10dd53cc52e2aa5ff43ef7622448bf0a642da00f7d7cf5d13f4584a551cc30ea900e1865ce67a0a94fd3b5a6fe1e7d9c1119742669a9b62f902e303bf445fff473d1d7f83bf463208e39ee8da5998d0233e15daa747d5ab9955d4ef370a7ed1c590fbeb634eeb8be1768ef4d0572dc0ad1af8e92bd0e5f6834678acdf6dad83c60d0b257c9358f6cbfa34c08d2ce0bb2", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x50)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
ioctl$SIOCGETVIFCNT(r2, 0x89e0, &(0x7f0000000000))
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)=[{0x0}], 0x1}, 0x0)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000640)=0x14)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='contention_end\x00', r3}, 0x10)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000080), 0xffffffffffffffff)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02})
ioctl$TUNSETVNETHDRSZ(r5, 0x400454d8, &(0x7f0000000000)=0xff)
close(r4)
socket$netlink(0x10, 0x3, 0x0)
preadv(r5, &(0x7f0000002140)=[{&(0x7f0000000680)=""/215, 0xd7}], 0x1, 0x1, 0x6)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r6, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r7 = socket(0x0, 0x6, 0x0)
getsockopt$inet6_mreq(r7, 0x10d, 0xeb, 0x0, &(0x7f0000000040))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000004b64", @ANYRESHEX=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x8, 0x0, 0x0, 0x1}, 0x48)

2.929441569s ago: executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x7, 0x0, 0x4, 0x2}, 0x10}, 0x1, 0x7}, 0x0)

2.7456657s ago: executing program 3:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x1})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x17)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r2, &(0x7f0000000040)={@val, @void, @eth={@empty, @remote, @val={@val, {0x88f7}}, {@mpls_uc={0x894f}}}}, 0x1a)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="5400000010000104000000000200000000000000", @ANYRES32=r6, @ANYBLOB="000000000000000034001280110001006272696467655f736c617665000000001c000580050021000000000006001f0000000000080022"], 0x54}}, 0x0)
setsockopt$packet_drop_memb(r1, 0x107, 0x2, &(0x7f0000000000)={r6, 0x1, 0x6, @broadcast}, 0x10)
ioctl$TUNGETFILTER(r0, 0x801054db, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001200)=@newlink={0x38, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @vti={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VTI_LOCAL={0x8}]}}}]}, 0x38}}, 0x0)

2.584473243s ago: executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
unshare(0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x0)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(0xffffffffffffffff, 0x110, 0x3)
connect$rxrpc(r1, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x3e}}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg}}}}}, 0x0)
syz_emit_ethernet(0x9e, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x90, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x7c, 0x0, @wg=@data={0x4, 0x0, 0x0, '\x00'/100}}}}}}, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340), 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000240)='cdg\x00', 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x20)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x8, 0x1006, &(0x7f00000014c0)=""/4102}, 0x90)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000001c0), 0xfecc)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000240)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x3, [@volatile={0x0, 0x0, 0x0, 0x9, 0x3}, @typedef={0x1, 0x0, 0x0, 0x8, 0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x5f]}}, 0x0, 0x3f}, 0x20)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x40800}, 0x20000000)
sendto$inet(r0, &(0x7f0000000680)="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", 0x1b1, 0x805, 0x0, 0x0)

2.54247517s ago: executing program 3:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
r3 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqn(r3, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000800000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
shutdown(r6, 0x0)
recvmmsg(r6, &(0x7f00000055c0), 0x400023c, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="3c0000001000000100"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e640000005ace000c000280082005800a010103923a6b4dcf5ede4f712a15aacacce6a03c8f4b569d9cced98ea03fffdc52d8ed33a311374b1e7e0b8998161fb710dc8fa3d32258b88955ea4329624f71fd6ec73d0158b9e3b0b00be22c6a915fc0f80d9daed31ef7c47097707f573daa71748f9fbc99fa0ca864c3194ff64701bf57582311fef26867b1f123ed3e5a8b5de6e085cadcff6ed85cf57995422006d7a49dc08610443cbad276cde54aa10f854c05d3715f8c77b26edd22ef8a91683fa0639df1a038d3092e96499eee576069a970f819f50ade0163ea00fd39fe5a2e3e14895de0986039c16e199508b2978fb1cc4180aa50c8451b76c1adfd019e537988d7cf652b3e30ed9673ca3bcb61eb54324302a4ad593c5ffa4f9a7c7343c0f0b53d1f30e9efe4f35d59bf6275cb198b3048b78b83a7"], 0x3c}}, 0x0)
sendto(r5, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)
recvmmsg(r5, 0x0, 0x0, 0x0, 0x0)
r8 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(r4, &(0x7f0000000240)={0x0, 0xb, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000000400000030000180060002000000000006000400e5ffffff13000300000000000000000000000000000000000600010002"], 0x44}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000013007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast2}, @timestamp_reply={0x11}}}}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=ANY=[@ANYBLOB="b00000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000008800128009000100766c616e00000000780002800600010000000000040003800c000200540a0000180000001c82972aaffe0e576f000000000800000c0001000600000006000000400004800c00010000000100100001000c00010005000000000000000c00010000000000000000000c00010006000000020000000c0001007fae00000100000008000500", @ANYRES32=r2, @ANYBLOB], 0xb0}, 0x1, 0xba01}, 0x0)
r10 = socket$tipc(0x1e, 0x4, 0x0)
setsockopt$TIPC_GROUP_JOIN(r10, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
sendmsg$tipc(r5, &(0x7f0000001b40)={&(0x7f0000000200)=@name, 0x10, 0x0, 0x0, 0x0, 0x0, 0x248c0}, 0x4040040)
getsockopt$llc_int(r5, 0x10c, 0x4, &(0x7f0000000180), &(0x7f00000001c0)=0x4)
bind$tipc(r10, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x0, 0x2}}, 0x10)

2.358810385s ago: executing program 4:
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.swap.current\x00', 0x275a, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x18, 0x2, 0x9, 0x101, 0x0, 0x0, {}, [@NFCTH_TUPLE={0x4}]}, 0x18}}, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000080000000000000064ffec850000007d00000004"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
recvmmsg(r2, &(0x7f0000005c80), 0x400030f, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x0)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r3=>0x0, 0x0})
close(r3)
socket$kcm(0x10, 0x2, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x20000400)
setsockopt$sock_attach_bpf(r3, 0x10e, 0x2, &(0x7f0000000000)=r4, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f000000c140), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MAC_ACL(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, r5, 0x100, 0x70bd25, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_ACL_POLICY={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x480d0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000000007910530000000000070000000000000095000000000000004583b4edbf0d22a8fedb7d214261a7327520275ac0d7e15e29ae267e89bffa4ea712dc29a0b1db48b3484a67039abf5abf46d771f03978610629b1b6b93f7c57cb96787879b9675378baf4efcb89a68d91dc41462c2776a68ae4cde922cb84ee422a2e484bfc9692829fb8abe3198f5e8761adcd3017c055ec0fb64a3711a059afeed322deddc0a5702555b58b2fd35c8fda0176e240e74282a48310f18fbf4e31a896a1e34a9aa8386a47730f8c74"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)

2.250252774s ago: executing program 0:
r0 = socket(0x10, 0x3, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90) (async)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0) (async)
r2 = socket$tipc(0x1e, 0x5, 0x0)
connect$tipc(r2, &(0x7f0000000000), 0x10) (async)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, &(0x7f0000000140)) (async)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, 0x0, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="240000001a0069ae01000000000000001c"], 0x24}}, 0x0) (async)
r3 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020023000b02d25a806f8c6394f90e24fc60040f030047000000053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

2.126009364s ago: executing program 0:
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x40, 0x24, 0xd0f, 0x7000000, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x4}}]}, 0x40}}, 0x0)

2.049076025s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = accept$packet(r0, 0x0, &(0x7f00000001c0)) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000200)={<r2=>r1})
bind$unix(r2, &(0x7f0000000380)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x8, 0xf, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x6}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x81}}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xb, &(0x7f0000000300)=@raw=[@call={0x85, 0x0, 0x0, 0x7d}, @exit, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xffffffffffffff93}, 0x90)

1.966249831s ago: executing program 0:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
socket(0x0, 0x0, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x10d, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB="28000000cb581d5d96dc0c1c103cabfce16a3c8d0306070800000000430b44787616d007000000000000000005000100"], 0x28}}, 0x0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
close(0xffffffffffffffff)
socket$packet(0x11, 0x0, 0x300)
socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x54)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r3, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x3000c041)
r4 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r4, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x0, @remote}, 0x10, 0x0}, 0x3000c041)
shutdown(r2, 0x1)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r5 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000000300)=@generic={&(0x7f0000000240)='./file0\x00', 0x0, 0x8}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x5, &(0x7f0000000200)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0xffffffbc, 0x10, 0x10}}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/194, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x2c, 0x0, r5}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xfffffffffffffff4)

1.947675809s ago: executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000000000)=[{{0x0, 0x0, 0x0, 0x3f00000000000000}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000800)="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", 0x2de}, {&(0x7f0000000bc0)="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", 0x1e9}, {&(0x7f00000000c0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859207067c10aa7352abbdf98e9bf033a3184a11e84639d3b9164d9c5d729f3dd409d39ff6d5cf367cd939f790732e8d2310e876fcb299cd44b72bda697035b7b475bc35afbb483db39ac864dbee0c9760c22a1d32d83588afd7c994652413b22db76874ca052ef2013317eb7fcc5677e9d", 0x90}, {&(0x7f0000000640)="f610e61ac81cc3edc86f0500194d27a5a443f10dfd1ecda0fd0ed9a444b7fb76afe3a0002f0a5eafcd3555a6cad574af4a57f54ee5f10fe3f42b445293ca84d360a7a793cdcadfecfd", 0x49}], 0x4, 0x0, 0x0, 0x900}}], 0x2, 0x0)

1.912710004s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x0, 0x3, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0], 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='ext4_ext_rm_leaf\x00'}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="61122800000000006113140000000000bf1000000000000025000200091b00003d030100000000008701000000000000bc26000000000000bf67000000000000150300000ee600f0670200001400000015030000ffffffffbf050000000000000f650000000000006507f4ff02000400070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d56825c4bf261d1ec069e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe70305863f970eac3510"], &(0x7f0000000100)='GPL\x00'}, 0x90)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000100)='cpuset.cpus\x00', 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = openat$cgroup_procs(r2, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x24, r5, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x11}, @NL802154_ATTR_PID={0x8}]}, 0x24}}, 0x0)
write$cgroup_pid(r4, &(0x7f0000000880), 0x12)
write$cgroup_int(r3, &(0x7f0000000040)=0x8, 0x1)

1.844270363s ago: executing program 4:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
write$tun(r0, &(0x7f0000000540)={@val={0x8}, @val={0x0, 0x68}, @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x8, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @broadcast}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}, 0x36)

1.743187508s ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000061123c0000000000950000000000000046941beb9f50ac"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000400)=0xffffffffffffffff, 0x4)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000700)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x3, [@restrict={0x0, 0x0, 0x0, 0xb, 0x2}]}, {0x0, [0x0]}}, &(0x7f0000000a80)=""/236, 0x27, 0xec}, 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000002a40)={'ipvlan1\x00'})
bpf$MAP_CREATE(0x0, &(0x7f0000002d00)=@base={0x3, 0x0, 0x8, 0x6, 0x190, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xf, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0xbb}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'\x00', 0x5})
ioctl$TUNSETPERSIST(r1, 0x400454c9, 0x1)
ioctl$TUNSETPERSIST(r1, 0x400454cd, 0x1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000280)={0xa, 0x2, 0x0, @loopback}, 0x1c)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x56dc9fceb1c93a61)
sendto$inet6(r2, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5dac14e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)

1.724844121s ago: executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@nat={'nat\x00', 0x19, 0x1, 0x178, [0x200003c0, 0x0, 0x0, 0x200003f0, 0x20000420], 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"/376]}, 0x1f0)
socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESOCT=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8c18cffb703000008000000b704000000000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40001)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x5, 0xff}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057"], 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='ext4_mb_release_inode_pa\x00', r4}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$TCPDIAG_GETSOCK(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="74000000120009090040000000000000000000000000000000000000000000002c00040000000004000400"/56, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000025000100b491ffe0dbe97e8e534c6f1e2858571563d1806c115c13f2a917ff0c95b64151b6000000"], 0x74}}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_merged\x00', 0x7a05, 0x1700)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="020300090b0000000000000000000000030006000000000002000000e00000010000000000000000020001000000000000000040008000000300050000000000020000007f0000010000000000000000010014"], 0x58}}, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0x14, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000045000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
write$binfmt_script(r6, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r8, 0x0)
r10 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r10, 0x65, 0x9, 0x0, &(0x7f0000000040))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
r11 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r11, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r11, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
connect$inet(r11, &(0x7f00000000c0)={0x2, 0x0, @dev}, 0x10)

1.718795849s ago: executing program 0:
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x90)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@dev, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x2b, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr, @local}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.338246643s ago: executing program 4:
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2000, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x2, 0x18, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x4, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@empty, @in=@broadcast}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast2}}]}, 0xa0}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000040)={0x2, 0x0, &(0x7f00000003c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="020300030e000000000700000000000004000900a000000000005bb992464e73a02159d3720df19f7a1dfec3000000000300060000000000020000000000000000000079c100000002000100000000000000020d00000000030005000000000002"], 0x70}, 0x1, 0x7}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1d, 0x0, 0x0, 0x10006}, 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="30000000109058eb812df6030fbbb5f699000020", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b0000000000"], 0x30}}, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000100)={0x3, [0x0, <r5=>0x0, 0x0]}, &(0x7f0000000140)=0x10)
ioctl$SIOCSIFMTU(r3, 0x8922, &(0x7f0000000180)={'team0\x00', 0x44})
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000380)={r5, 0x81, 0x10}, 0xc)

1.318843037s ago: executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000fc0)=ANY=[@ANYBLOB="b7020000f3000000bfa30000000000000702000000feffff7a0af0ff0001000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001010402000000000000b7030000010000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb4500639100f51f00000000000000ff7f0000002f17cee19d0001000000000000000000cb04fcbb0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e84cef4a2ab938f65aac33c4d620de2c9b7dc2695ed094bd09b52680910d7d313f9f57606b83b994fb484510bef2e4872f5c2fe6faaf75e5cc4051ade12f41deff6df6a936b4ec3827c739bb39aad16d875fa369258673b5df11cc2afb53611cc320000bc0b80e80efc8f5e64be2c9d2d29db3d36dd015c7bd3f15aa6aadbeab2a01685108e61aaffe400000000000000000000008b798b4f5458d1863cc67c4c6a06e828e5216f601b19db1af1b5d356d08c72137d866d11be4ba3f0151f07bd4e97d62ecc645e143a60f1c6edc76609077909826151e2b42bf0ed0c7e8b0db51662de6d87c493db845b10e9468bda6f82881eb8c9cfa72b08eecc952a3fd2c46f3c1cde71a19d1a2982492a210e00d2bfea3b8d188df2eff8d56aaae7d32a2e183722537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d85f225992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d0616a48c7957e1226c9129a7c5f8ee5f50579e2f638f7eb12f63be72a39817b324d6e417b1c2cbfdcada0a16e31790e26cf1010000805f6ee2782224cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b4207e6078625cb2717e21f8f187b1866108b6e8c71e26032176066599783568628f0309c3afa716d3706e1fa89917e131f4034a8383e99c3568fd04201b37cd92ca6d2676bef8310f7032775cfd75652f87b039d543000000000000000008ce31344b554aca78a00000000000000e63a0dba7f6b3f48d5e40a3ae01a5dfde3b4dca205009c0ea7b5bcd49f977c609915c7601080d10b96af1eb55922765313a0eeefae505f4535cd9dc69fbab92150c7e74e5c5b051ddf4180f2d06399b0d00eee5c3afee38cdc55b8d3fbbe210bdec686a23503f4a547327caf381171cc9002be6d89f5734a9e204dbc327ec8f9851d273fa07369c419942509198605ff2781f4d2d4685d762d4764f7ff762e09116946137b7ab812a2d408ae4c53b3dcd3ab82f187bf77779d035818e562bf2737acf0412b217aa0d530438c101979312cbdb013c2f26afc263e0000000000000000000062f3e153dbe06af8a0adf64c0350927e75518774b37bb7f263cc9aad6e77c4cb355c661674ff770488bda1de51bd35429848af22383f4b3bcd4c38a395fd29d7825c15fbfb51f897c7c83954785bab4ce8ae811de674d6fc056943e59fa8e7912b2a16d98b4198b914f4206b6a72fbdf879d4273213d9d32ddd0990c1914488a00a79c12d737"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x14)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f2f, 0x241, 0x38f, &(0x7f00000007c0)="9f44948721919580684010a40800", 0x0, 0x241, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39"}, 0x23)
socket(0x10, 0x3, 0x0) (async)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) (async)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r3 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="00000000ffffffffffffaaaaaaaaaabb08004500002600000000002f9078ac1414bbe000000000002558001290788c55309da635093188a8"], 0x38)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000680)={0x0}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@setneightbl={0x1c, 0x43, 0x4, 0x70bd2d, 0x25dfdbfb, {0xd}, [@NDTA_NAME={0x8, 0x1, 'GPL\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x10) (async)
sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)=@setneightbl={0x1c, 0x43, 0x4, 0x70bd2d, 0x25dfdbfb, {0xd}, [@NDTA_NAME={0x8, 0x1, 'GPL\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x10)

1.245664693s ago: executing program 2:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'geneve1\x00', &(0x7f0000000540)=@ethtool_cmd={0x4d}})
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000180)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x8b}]}, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2}, 0x10)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000400)={0x10000, {{0xa, 0x4e20, 0x1, @loopback, 0xff}}}, 0x88)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
close(r3)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8b15, &(0x7f0000000000)={'wlan1\x00', @random="0100"})

1.238417894s ago: executing program 1:
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x4)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=r2, @ANYBLOB="0000000000800200380012800b0001006272696467650000280002800c002300fbffffffffffffff05002400000000010500240001000000060027"], 0x58}}, 0x0)
pipe(&(0x7f00000002c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000300)={0x1b, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3f}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{0xffffffffffffffff, <r6=>0xffffffffffffffff}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c000000000000f600"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c0002800800140002000000"], 0x3c}}, 0x0)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010005f3f770005000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000004c0)={0x30, 0x0, 0x0, 0x0, 0x0, {{0x2}, {@val={0x8}, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8}]]}, 0x30}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r10, @ANYBLOB="1c002c80080000006c09"], 0x38}}, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r4, 0x0, 0x48f, &(0x7f00000006c0)={0x0, @dev={0xac, 0x14, 0x14, 0x20}, 0x4e24, 0x3, 'wlc\x00', 0x10, 0x10001, 0x40}, 0x2c)
splice(0xffffffffffffffff, 0x0, r7, 0x0, 0x4ffe2, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000480)={@remote, @private}, &(0x7f00000004c0)=0xc)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000500)={'syztnl0\x00', &(0x7f0000000740)={'syztnl1\x00', <r11=>0x0, 0x8780, 0x40, 0x2, 0x9, {{0x1e, 0x4, 0x2, 0x3, 0x78, 0x64, 0x0, 0xf8, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@ra={0x94, 0x4}, @timestamp_addr={0x44, 0x24, 0x1e, 0x1, 0x2, [{@multicast2, 0x5}, {@rand_addr=0x64010101, 0x7}, {@broadcast, 0x1}, {@multicast2, 0x5}]}, @ssrr={0x89, 0xf, 0x5b, [@remote, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_prespec={0x44, 0x2c, 0xb5, 0x3, 0x7, [{@multicast1, 0x1f26}, {@multicast1, 0x7f}, {@empty, 0xe88a}, {@rand_addr=0x64010100, 0x1000}, {@multicast1, 0x3caf}]}]}}}}})
r12 = socket(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r12, 0x89f1, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000140)={'syztnl1\x00', 0x0, 0x2f, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, @loopback={0x0, 0xffff8881a56043d8}}})
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@bloom_filter={0x1e, 0x7fffffff, 0x8, 0x8, 0xd01, 0xffffffffffffffff, 0xfffff803, '\x00', r11, 0xffffffffffffffff, 0x3, 0x5, 0x0, 0xd}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r13, &(0x7f0000000300), 0x20000000}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{0xffffffffffffffff, <r14=>0xffffffffffffffff}, &(0x7f0000000480), &(0x7f00000004c0)='%pS    \x00'}, 0x20)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000600)=@bpf_tracing={0x1a, 0x9, &(0x7f00000000c0)=@raw=[@ringbuf_output={{0x18, 0x1, 0x1, 0x0, 0x1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}}], &(0x7f0000000000)='GPL\x00', 0x3, 0x9, &(0x7f0000000140)=""/9, 0x41100, 0x31, '\x00', r2, 0x16, 0xffffffffffffffff, 0x8, &(0x7f00000001c0)={0x1, 0x4}, 0x8, 0x10, &(0x7f0000000280)={0x1, 0x2, 0x5, 0x2}, 0x10, 0x291bb, r3, 0x5, &(0x7f0000000540)=[r5, 0x1, r6, r13, 0xffffffffffffffff, r14], &(0x7f0000000580)=[{0x0, 0x5, 0x10, 0x1}, {0x2, 0x3, 0xc, 0x9}, {0x4, 0x5, 0xe, 0x6}, {0x4, 0x5, 0xa, 0xa}, {0x5, 0x3, 0x9}], 0x10, 0xffffffe0}, 0x90)

1.015081677s ago: executing program 1:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0xde02})
ioctl$TUNSETVNETHDRSZ(r1, 0x400454d8, &(0x7f0000000000)=0xff)
close(r0)
socket$netlink(0x10, 0x3, 0x0)
preadv(r1, &(0x7f0000002140)=[{&(0x7f0000000300)=""/199, 0xc7}], 0x4, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})

843.792043ms ago: executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000000c0), 0x12)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, 0x0, 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x7c, 0x30, 0xb, 0x0, 0x0, {}, [{0x68, 0x1, [@m_ct={0x64, 0x1, 0x0, 0x0, {{0x7}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18}, @TCA_CT_ACTION={0x6, 0x3, 0x28}, @TCA_CT_NAT_PORT_MAX={0x6}, @TCA_CT_NAT_PORT_MIN={0x6}, @TCA_CT_MARK={0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x7c}}, 0x0)
sendfile(r3, r4, 0x0, 0x7ffff000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = accept$packet(r4, &(0x7f0000000080)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000180)=0x14)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18020000000000000000000000000030850000002c00000095000000000000002b4003fe37a077ae55f52c0d80a2649baca85309be96d5a45bbbdb5ff7ffffffd075b3eee14473f51be98db7efbb059842ba4470e8e04acb807fbbabc68abdcce9f672b6bb61c302dfd5c11071adac29fd64d33a3502fbeb1ed99dd0e792f24c420bfcc2635421d339ad521d6953b1137850d9e9ebf65ee988ea2dbee528678eb47efb7b3f19046c6f1bd1bf56e5853ed96137f95b3a11954ed1c8a8676468cf2405e48723d4b1ff"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106}, 0x18)
sendmsg$nl_route(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r9}]}, @IFLA_GROUP={0x8}]}, 0x34}}, 0x0)
ppoll(&(0x7f00000001c0)=[{r4, 0x8000}, {r3, 0x2000}, {r5, 0x802c}, {r7, 0x90}, {r2, 0x4}, {r2, 0x4464}, {r2, 0x8400}, {r9}, {r3, 0x24}, {0xffffffffffffffff, 0x2048}], 0xa, &(0x7f0000000240), &(0x7f0000000280)={[0x7]}, 0x8)
setsockopt$inet_sctp6_SCTP_INITMSG(r6, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r6, &(0x7f0000000580)="03", 0x34000, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000208500000050000000850000000e00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001b40)={&(0x7f0000000100)='jbd2_handle_stats\x00'}, 0x10)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r6, 0x84, 0x22, 0x0, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f0000000140)='<', 0x1, 0x0, &(0x7f0000000240)={0x2, 0x0, @rand_addr=0x64010100}, 0x10)
setsockopt$inet_sctp6_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000280), 0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000040)={0x0, @in={{0x2, 0x4e20, @rand_addr=0x64010102}}, 0x2, 0x8000, 0x800, 0x80000000, 0x79, 0x7, 0x5}, 0x9c)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r10, 0x84, 0xa, &(0x7f0000000400)={0x3f, 0x100, 0x2, 0x2, 0x6, 0xd79, 0x9, 0x1f}, 0x20)

744.667889ms ago: executing program 4:
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'syztnl2\x00', &(0x7f00000001c0)={'ip6gre0\x00', 0x0, 0x29, 0x0, 0x0, 0x0, 0x0, @remote, @local}})
socket$nl_crypto(0x10, 0x3, 0x15)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000001c0), 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000140)=0x10) (fail_nth: 23)
socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r0, 0x84, 0x6d, &(0x7f0000000080), &(0x7f0000000240)=0x18)
socket$inet_udplite(0x2, 0x2, 0x88)
unshare(0x2000400)
socket$nl_route(0x10, 0x3, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)

718.567778ms ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0x3, &(0x7f0000000380)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
close(0xffffffffffffffff)
close(0xffffffffffffffff)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vti={{0x8}, {0x14, 0x2, 0x0, 0x1, [@vti_common_policy=[@IFLA_VTI_LINK={0x8}], @vti_common_policy=[@IFLA_VTI_IKEY={0x8}]]}}}]}, 0x40}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r2}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="250a0000000000a46111a000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00'}, 0x90)

252.431472ms ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)={0x44, 0x0, 0x1, 0x0, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @remote={0xac, 0x3}}}}]}, @CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @dev}}}]}]}, 0x44}}, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
pwrite64(r0, &(0x7f0000000100)="0db7e9636dd990ae0b7a3d28862f2a7d58ad5ca84e07f798efab6ea03616ebf121bbfec41471b266790941644508f150f1079d1f24a3a61ce904daa960bb39eaab30a48fd0d7b155e1d15170b272e011acc84a542bcc13005534fe13cb42997c85dc", 0x62, 0x1)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00 \x00', @ANYRES16=r1, @ANYRES32=r1], 0x24}}, 0x0)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000001"], 0x24d8}], 0x1}, 0x0)

167.482832ms ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000700), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r1, &(0x7f0000000980)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000008c0)={0x14, r2, 0x305, 0x0, 0x0, {0x2a}}, 0x14}}, 0x0)
sendmsg$DEVLINK_CMD_SB_POOL_GET(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x100, r2, 0x1, 0x70bd2a, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3e}, {0x6, 0x11, 0x8000}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x3}, {0x6, 0x11, 0x9}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}, {0x6, 0x11, 0x200}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xffff}, {0x6, 0x11, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0xfff}, {0x6, 0x11, 0x9ccf}}]}, 0x100}, 0x1, 0x0, 0x0, 0x20000000}, 0x40010)
socket$inet6(0xa, 0x6, 0x0) (async)
r3 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r3, 0x80080400)
socket$inet_dccp(0x2, 0x6, 0x0) (async)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10) (async)
connect$inet(r4, &(0x7f0000e5c000)={0x2, 0x4e20, @empty}, 0x10)
getsockopt$inet_int(r4, 0x10d, 0xbe, &(0x7f0000000000), &(0x7f0000000080)=0x4)

101.752417ms ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000006c0)=@gettaction={0x14}, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)=@bridge_newneigh={0x38, 0x1c, 0xd105d1610db53515, 0x0, 0x400300, {0x2, 0x0, 0x0, r2}, [@NDA_DST_IPV6={0x14, 0x1, @local}, @NDA_FLAGS_EXT={0x8}]}, 0x38}}, 0x0)

28.390512ms ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB="85000000a200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000dc0)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000480)="b9ff03076844268cb89e14f088471b", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000dc0)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000480)="b9ff03076844268cb89e14f088471b", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r1, &(0x7f0000002f80)=[{{&(0x7f0000000140)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000380)=[@flowinfo={{0x14, 0x29, 0xb, 0xd1}}, @flowinfo={{0x14}}, @dstopts_2292={{0x18}}], 0x48}}], 0x1, 0x0)

0s ago: executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_mreqsrc(r1, 0x0, 0x25, &(0x7f0000000040)={@remote, @multicast1, @private=0xa010101}, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x40})
r2 = socket(0xa, 0x3, 0x4)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
ioctl$TUNSETCARRIER(r3, 0x400454e2, &(0x7f0000000040))
ioctl$TUNSETCARRIER(r3, 0x400454e2, &(0x7f0000000140))
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000340)={'#! ', '', [], 0xa, "27536d82f6041d9e9220a005a823c2b09b5b605c832fe54effc91b3c4b360d08dda1ae27d8212fe8e0b31b2099466795cf9e52209429d3bec2876d65435b5ac05b0fc2c559cc4a2f7827d3da5ac4c71e177879f5a522be878518f651"}, 0x60)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r4, 0x0)
r5 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r6=>0x0})
bind$can_raw(r5, &(0x7f0000000040)={0x1d, r6}, 0x10)
setsockopt$CAN_RAW_ERR_FILTER(r5, 0x65, 0x2, &(0x7f0000000a40)=0x1000000, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="0000000000000000000040000095000000000000000000006956046344d39d4fff078fe02aa56ea755e29a33dfb5e37fafce53611c7708abbd6c17900c45dbd4acdd47553f4454f980d5bd053423197860aaaca524cb8df783014a59ab817639974b8a854d5d75adff84b6ca88f798096f29191715719dcd8a5781052514aa9931d48e5adb5f6e89d5a97eb8d386cb61071381a13a2620171b181e0aa61de01af48876802184577bd220454404c09af6a7ccad4909f8358f01442667c312d99ec136089854c51a136807d0e5f3547f8e85c21827e9c8575fdedb29a96a89cea7acfe3292b7cc13afe7a96c3133e8e3246f5d43a4ba6218"], &(0x7f0000000300)='GPL\x00', 0x4, 0xff8, &(0x7f0000001e00)=""/4088}, 0x90)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x7, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=<r8=>r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="f2cebdd78177108d890b31498b1613f53f7fc94c3280367431015021c6faf09415fe708d08352cbe963cf1dfba7ec585c839eeb9fd8bf9f677b85345c2fc7910a7658f87a537276b2f33577101e869bae367ca732797572c94ce0a8ca7ea59020ec1c2e78dc48b24876f9fe6c18c7c76b1b33d7662005284de683cfebcd5f5eff494e1bf489640ccfbef5407a5db07acc9c1ad67d7508a5c51924dc7ebfd1e7e772e63ba846a36c66d5a142885d86ae9718cdae6346e5aabb025dae6e32fbb29b72b986216181ab46a8a09db61141b333d6971e24be7b3e28a982194e6697f370ea778b062fba814e39f41ee", @ANYRES16=r0, @ANYRESOCT, @ANYRESOCT=r2, @ANYRES8=r8, @ANYBLOB="621b546e7c8bd45c034540103f20974cf2300ad3e9b260f8f83211e187046ad15b17b5d9757018e0c9406d66915265ed62b4a7ee9c31c310ce8083b04f59e68a63b8d947c7737b15b2e3becf183121eca6e499760c3c85d7c9df3842e33f196d1a9da3c68b3ad06b3b128eac8e46f58ba4fc6fc59ffad510829bd1ab1a215cfa23c80137009bec", @ANYRESOCT=r7, @ANYRESHEX=r5], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r10 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sched_kthread_stop\x00', r9}, 0x10)
sendmsg$nl_route(r10, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)
ioctl$sock_SIOCBRDELBR(r2, 0x8910, &(0x7f0000000000)='bridge0\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00'})
r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r11, &(0x7f0000000100), 0xfecc)
syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), r4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00'})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.228' (ED25519) to the list of known hosts.
2024/06/23 05:40:46 fuzzer started
2024/06/23 05:40:46 dialing manager at 10.128.0.169:30018
[   54.688802][ T5093] cgroup: Unknown subsys name 'net'
[   54.857237][ T5093] cgroup: Unknown subsys name 'rlimit'
2024/06/23 05:40:48 starting 5 executor processes
[   55.956381][ T5100] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   55.968732][ T5100] syz-executor (5100) used greatest stack depth: 18968 bytes left
[   57.046901][ T5118] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   57.056572][ T5118] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   57.064104][ T5118] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   57.075296][ T5118] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   57.083295][ T5118] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   57.095109][ T5118] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   57.192675][ T5124] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   57.215205][   T53] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   57.223649][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   57.232264][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   57.234948][ T5126] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   57.240978][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   57.247948][ T5126] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   57.254782][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   57.261426][ T5126] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   57.267843][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   57.275256][ T5126] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   57.291201][ T4494] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   57.298426][   T53] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   57.308058][   T53] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   57.316491][   T53] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   57.323980][ T5129] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   57.324632][   T53] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   57.332438][ T5129] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   57.346046][ T5129] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   57.349225][   T53] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   57.355820][ T5124] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   57.360349][   T53] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   57.380564][ T5124] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   57.391834][ T5124] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   57.816505][ T5115] chnl_net:caif_netlink_parms(): no params data found
[   57.893569][ T5120] chnl_net:caif_netlink_parms(): no params data found
[   57.974596][ T5115] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.982347][ T5115] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.991576][ T5115] bridge_slave_0: entered allmulticast mode
[   57.999847][ T5115] bridge_slave_0: entered promiscuous mode
[   58.036051][ T5115] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.043159][ T5115] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.050866][ T5115] bridge_slave_1: entered allmulticast mode
[   58.057804][ T5115] bridge_slave_1: entered promiscuous mode
[   58.088462][ T5121] chnl_net:caif_netlink_parms(): no params data found
[   58.103603][ T5115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.121990][ T5115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.139715][ T5119] chnl_net:caif_netlink_parms(): no params data found
[   58.255506][ T5115] team0: Port device team_slave_0 added
[   58.261666][ T5120] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.269168][ T5120] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.276476][ T5120] bridge_slave_0: entered allmulticast mode
[   58.283186][ T5120] bridge_slave_0: entered promiscuous mode
[   58.315328][ T5115] team0: Port device team_slave_1 added
[   58.321389][ T5120] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.328904][ T5120] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.337090][ T5120] bridge_slave_1: entered allmulticast mode
[   58.343785][ T5120] bridge_slave_1: entered promiscuous mode
[   58.437688][ T5115] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.444825][ T5115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.473136][ T5115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.487497][ T5115] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.494545][ T5115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.520605][ T5115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.543591][ T5121] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.551278][ T5121] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.558770][ T5121] bridge_slave_0: entered allmulticast mode
[   58.566321][ T5121] bridge_slave_0: entered promiscuous mode
[   58.573920][ T5121] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.582467][ T5121] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.590025][ T5121] bridge_slave_1: entered allmulticast mode
[   58.597672][ T5121] bridge_slave_1: entered promiscuous mode
[   58.613997][ T5120] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.676520][ T5120] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.685778][ T5125] chnl_net:caif_netlink_parms(): no params data found
[   58.698725][ T5119] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.705962][ T5119] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.713057][ T5119] bridge_slave_0: entered allmulticast mode
[   58.720535][ T5119] bridge_slave_0: entered promiscuous mode
[   58.777680][ T5119] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.784973][ T5119] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.792106][ T5119] bridge_slave_1: entered allmulticast mode
[   58.799212][ T5119] bridge_slave_1: entered promiscuous mode
[   58.819462][ T5121] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.836684][ T5115] hsr_slave_0: entered promiscuous mode
[   58.843284][ T5115] hsr_slave_1: entered promiscuous mode
[   58.861270][ T5120] team0: Port device team_slave_0 added
[   58.870098][ T5120] team0: Port device team_slave_1 added
[   58.908604][ T5121] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.955748][ T5120] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.962724][ T5120] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.988798][ T5120] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.005080][ T5119] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.036826][ T5120] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.043792][ T5120] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.069965][ T5120] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.089306][ T5119] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.148313][ T5121] team0: Port device team_slave_0 added
[   59.187919][ T5119] team0: Port device team_slave_0 added
[   59.195117][ T5124] Bluetooth: hci0: command tx timeout
[   59.208220][ T5121] team0: Port device team_slave_1 added
[   59.235525][ T5125] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.242737][ T5125] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.250417][ T5125] bridge_slave_0: entered allmulticast mode
[   59.257283][ T5125] bridge_slave_0: entered promiscuous mode
[   59.269761][ T5119] team0: Port device team_slave_1 added
[   59.293282][ T5120] hsr_slave_0: entered promiscuous mode
[   59.302533][ T5120] hsr_slave_1: entered promiscuous mode
[   59.308889][ T5120] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.316891][ T5120] Cannot create hsr debugfs directory
[   59.323012][ T5125] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.330285][ T5125] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.337818][ T5125] bridge_slave_1: entered allmulticast mode
[   59.344701][ T5125] bridge_slave_1: entered promiscuous mode
[   59.354902][ T5124] Bluetooth: hci1: command tx timeout
[   59.410527][ T5119] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.417653][ T5119] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.443965][ T5124] Bluetooth: hci2: command tx timeout
[   59.450002][ T5128] Bluetooth: hci4: command tx timeout
[   59.450020][   T53] Bluetooth: hci3: command tx timeout
[   59.462389][ T5119] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.479527][ T5119] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.486873][ T5119] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.512884][ T5119] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.536493][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_0
[   59.543449][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.569889][ T5121] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   59.582996][ T5121] batman_adv: batadv0: Adding interface: batadv_slave_1
[   59.590021][ T5121] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   59.616148][ T5121] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   59.646734][ T5125] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   59.682351][ T5125] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   59.769741][ T5119] hsr_slave_0: entered promiscuous mode
[   59.776014][ T5119] hsr_slave_1: entered promiscuous mode
[   59.782067][ T5119] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.790912][ T5119] Cannot create hsr debugfs directory
[   59.822995][ T5125] team0: Port device team_slave_0 added
[   59.866873][ T5121] hsr_slave_0: entered promiscuous mode
[   59.873309][ T5121] hsr_slave_1: entered promiscuous mode
[   59.879661][ T5121] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.888293][ T5121] Cannot create hsr debugfs directory
[   59.904030][ T5125] team0: Port device team_slave_1 added
[   59.976812][ T5115] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   60.012715][ T5125] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.020596][ T5125] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.046624][ T5125] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.059754][ T5125] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.066820][ T5125] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.093501][ T5125] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.105322][ T5115] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   60.140753][ T5115] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   60.192419][ T5115] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   60.233913][ T5125] hsr_slave_0: entered promiscuous mode
[   60.240561][ T5125] hsr_slave_1: entered promiscuous mode
[   60.247043][ T5125] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   60.255024][ T5125] Cannot create hsr debugfs directory
[   60.377747][ T5120] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   60.389878][ T5120] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   60.441337][ T5120] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   60.475791][ T5120] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   60.620693][ T5119] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   60.630704][ T5119] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   60.652812][ T5119] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   60.663436][ T5119] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   60.728378][ T5125] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   60.754616][ T5125] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   60.765598][ T5125] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   60.782435][ T5125] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   60.809987][ T5115] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.911508][ T5120] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.926930][ T5121] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   60.943570][ T5121] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   60.968687][ T5121] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   60.980590][ T5115] 8021q: adding VLAN 0 to HW filter on device team0
[   61.007458][ T5121] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.022698][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.029975][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.064997][ T5120] 8021q: adding VLAN 0 to HW filter on device team0
[   61.095728][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.102861][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.116377][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.123472][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.171759][ T5165] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.178963][ T5165] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.224242][ T5119] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.274641][ T5128] Bluetooth: hci0: command tx timeout
[   61.281757][ T5125] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.308852][ T5120] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   61.319299][ T5120] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   61.350752][ T5119] 8021q: adding VLAN 0 to HW filter on device team0
[   61.426343][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.433493][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.447637][ T5128] Bluetooth: hci1: command tx timeout
[   61.462395][ T5125] 8021q: adding VLAN 0 to HW filter on device team0
[   61.478239][ T5164] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.485426][ T5164] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.517590][ T5128] Bluetooth: hci4: command tx timeout
[   61.517656][   T53] Bluetooth: hci3: command tx timeout
[   61.529239][ T5124] Bluetooth: hci2: command tx timeout
[   61.549055][ T5165] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.556233][ T5165] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.618848][ T5165] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.626052][ T5165] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.764050][ T5115] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.777984][ T5121] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.821459][ T5120] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.882275][ T5121] 8021q: adding VLAN 0 to HW filter on device team0
[   61.957512][ T5165] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.964700][ T5165] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.982641][ T5165] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.989836][ T5165] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.102672][ T5120] veth0_vlan: entered promiscuous mode
[   62.138905][ T5120] veth1_vlan: entered promiscuous mode
[   62.163119][ T5119] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.256216][ T5125] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.328159][ T5119] veth0_vlan: entered promiscuous mode
[   62.344102][ T5115] veth0_vlan: entered promiscuous mode
[   62.362058][ T5115] veth1_vlan: entered promiscuous mode
[   62.370675][ T5120] veth0_macvtap: entered promiscuous mode
[   62.389620][ T5119] veth1_vlan: entered promiscuous mode
[   62.421350][ T5120] veth1_macvtap: entered promiscuous mode
[   62.441691][ T5125] veth0_vlan: entered promiscuous mode
[   62.511900][ T5120] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.526719][ T5125] veth1_vlan: entered promiscuous mode
[   62.547008][ T5115] veth0_macvtap: entered promiscuous mode
[   62.570073][ T5120] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.590879][ T5120] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.601158][ T5120] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.610713][ T5120] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.619909][ T5120] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.653077][ T5115] veth1_macvtap: entered promiscuous mode
[   62.697219][ T5119] veth0_macvtap: entered promiscuous mode
[   62.738743][ T5119] veth1_macvtap: entered promiscuous mode
[   62.766948][ T5125] veth0_macvtap: entered promiscuous mode
[   62.799855][ T5121] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.813668][ T5115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.824898][ T5115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.836013][ T5115] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.843905][ T5125] veth1_macvtap: entered promiscuous mode
[   62.860798][ T2856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.872916][ T5115] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.885605][ T5115] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.894204][ T2856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.901731][ T5115] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.940882][ T5125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.955892][ T5125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.965917][ T5125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.976478][ T5125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.988343][ T5125] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.998846][ T5115] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.007994][ T5115] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.019545][ T5115] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.028391][ T5115] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.050393][ T5119] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.061436][ T5119] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.071366][ T5119] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.081862][ T5119] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.091771][ T5119] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.102310][ T5119] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.113386][ T5119] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.133183][ T5119] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.143941][ T5119] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.155016][ T5119] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.165555][ T5119] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.176573][ T5119] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.207563][ T5125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.207571][ T1109] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.207590][ T1109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.226949][ T5125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.244622][ T5125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.255415][ T5125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.265372][ T5125] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.277048][ T5125] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.288817][ T5125] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.311297][ T5119] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.320876][ T5119] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.330093][ T5119] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.339483][ T5119] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.353412][ T5125] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.363768][ T5125] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.377039][ T5124] Bluetooth: hci0: command tx timeout
[   63.377478][ T5125] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.391466][ T5125] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.514682][ T5124] Bluetooth: hci1: command tx timeout
[   63.532606][ T5121] veth0_vlan: entered promiscuous mode
[   63.595532][ T5124] Bluetooth: hci4: command tx timeout
[   63.595781][   T53] Bluetooth: hci2: command tx timeout
[   63.600943][ T5128] Bluetooth: hci3: command tx timeout
[   63.650197][ T5121] veth1_vlan: entered promiscuous mode
[   63.661229][ T2856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.686891][ T2856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.791906][ T5121] veth0_macvtap: entered promiscuous mode
[   63.819801][ T5121] veth1_macvtap: entered promiscuous mode
[   63.823695][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.840846][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.910054][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.910422][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.919078][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.937403][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.947699][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.958691][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.968621][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.979070][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.989202][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   64.000092][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.012297][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_0
[   64.030722][ T2817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.039770][ T2817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.062922][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.075019][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.085476][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.096539][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.106514][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.117488][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.131489][ T5121] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   64.142082][ T5121] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   64.153618][ T5121] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.195785][ T2817] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.210100][ T2817] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.257559][ T5121] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   64.272709][ T5121] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   64.282881][ T5121] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   64.294226][ T5121] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   64.356267][ T2805] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.395436][ T2805] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.553234][ T5218] syz-executor.4 uses obsolete (PF_INET,SOCK_PACKET)
[   64.594062][ T1109] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.612329][ T1109] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.700990][ T5222] netlink: 'syz-executor.1': attribute type 291 has an invalid length.
[   64.717533][ T2817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.769172][ T2817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.781721][ T5225] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[   65.014460][ T5231] wireguard0: entered promiscuous mode
[   65.019974][ T5231] wireguard0: entered allmulticast mode
[   65.080612][ T5240] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[   65.447666][ T5124] Bluetooth: hci0: command tx timeout
[   65.595948][ T5124] Bluetooth: hci1: command tx timeout
[   65.675308][ T5124] Bluetooth: hci4: command tx timeout
[   65.680779][ T5124] Bluetooth: hci3: command tx timeout
[   65.688712][ T5128] Bluetooth: hci2: command tx timeout
[   65.752062][ T5258] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   65.848213][ T5266] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[   66.024774][ T5276] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[   66.106939][ T5260] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[   66.306968][ T5283] bridge1: entered promiscuous mode
[   66.312226][ T5283] bridge1: entered allmulticast mode
[   66.477042][ T5293] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   66.490698][   T29] audit: type=1804 audit(1719121258.602:2): pid=5291 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir761746124/syzkaller.EIy6lM/7/cgroup.controllers" dev="sda1" ino=1966 res=1 errno=0
[   66.533738][ T5293] netlink: 'syz-executor.2': attribute type 15 has an invalid length.
[   66.579865][ T5293] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 65023 - 0
[   66.589780][ T5293] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 65023 - 0
[   66.599182][ T5293] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 65023 - 0
[   66.608155][ T5293] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 65023 - 0
[   66.622183][ T5293] vxlan0: entered promiscuous mode
[   67.061490][ T5315] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   67.481759][ T5325] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[   67.562829][ T5325] batman_adv: batadv0: Adding interface: team0
[   67.617058][ T5329] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   67.641628][ T5325] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.703202][ T5325] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   67.755261][ T5124] Bluetooth: hci4: command 0x0405 tx timeout
[   67.775993][ T5323] bridge1: entered promiscuous mode
[   67.781240][ T5323] bridge1: entered allmulticast mode
[   68.327918][ T5366] Illegal XDP return value 4292329472 on prog  (id 16) dev N/A, expect packet loss!
[   68.503700][ T5378] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.1'.
[   68.680088][ T5384] bridge1: entered promiscuous mode
[   68.686291][ T5384] bridge1: entered allmulticast mode
[   68.726369][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888024001800: rx timeout, send abort
[   68.978997][ T5397] sit0: entered promiscuous mode
[   69.018014][ T5397] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[   69.054375][ T5397] netlink: 1 bytes leftover after parsing attributes in process `syz-executor.3'.
[   69.159012][ T5409] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   69.235337][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888024001800: abort rx timeout. Force session deactivation
[   69.407780][ T5415] veth0_vlan: entered allmulticast mode
[   69.501837][ T5426] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   69.529431][ T5420] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[   69.835899][   T53] Bluetooth: hci4: command 0x0405 tx timeout
[   69.928233][ T5439] warning: `syz-executor.0' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   69.943747][ T5438] __nla_validate_parse: 1 callbacks suppressed
[   69.943826][ T5438] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[   69.997775][ T5443] xt_CT: You must specify a L4 protocol and not use inversions on it
[   70.086431][ T5436] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[   70.336816][ T5457] ip6t_srh: unknown srh invflags 7863
[   71.243532][ T5480] ipt_ECN: cannot use operation on non-tcp rule
[   71.630345][ T5500] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   71.660511][ T5498] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
[   71.691240][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[   71.716966][ T5505] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[   71.815744][   T29] audit: type=1804 audit(1719121263.922:3): pid=5498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir155383430/syzkaller.tG2un5/13/cgroup.controllers" dev="sda1" ino=1965 res=1 errno=0
[   72.825587][ T5557] syzkaller1: entered promiscuous mode
[   72.831919][ T5557] syzkaller1: entered allmulticast mode
[   72.888108][ T5163] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   73.254756][ T5580] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[   73.500214][ T5603] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   73.844915][ T5623] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[   73.918179][ T5163] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   74.126150][ T5635] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.0'.
[   74.388573][ T5646] x_tables: duplicate underflow at hook 2
[   74.411847][ T5646] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[   74.778774][ T5661] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   74.788577][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   74.887021][  T928] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   74.954877][ T5159] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.397804][ T5693] dccp_invalid_packet: P.Data Offset(4) too small
[   75.459713][   T29] audit: type=1800 audit(1719121267.572:4): pid=5693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="memory.events" dev="sda1" ino=1958 res=0 errno=0
[   75.518864][ T5159] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   75.530339][   T29] audit: type=1800 audit(1719121267.602:5): pid=5693 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="memory.events" dev="sda1" ino=1958 res=0 errno=0
[   75.768749][ T5713] netlink: 209848 bytes leftover after parsing attributes in process `syz-executor.0'.
[   75.778728][ T5714] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[   75.778773][ T5714] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[   75.819806][ T5715] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[   75.820376][ T5714] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.4'.
[   75.828302][ T5713] openvswitch: netlink: Message has 2 unknown bytes.
[   75.844700][ T5715] netlink: 168864 bytes leftover after parsing attributes in process `syz-executor.1'.
[   75.847094][ T5714] netlink: 'syz-executor.4': attribute type 3 has an invalid length.
[   75.871953][ T5714] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[   75.881154][ T5714] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.4'.
[   75.983884][ T5720] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.1'.
[   75.996207][ T5722] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[   76.083806][ T5720] Zero length message leads to an empty skb
[   76.374975][   T29] audit: type=1804 audit(1719121268.492:6): pid=5712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir155383430/syzkaller.tG2un5/27/cgroup.controllers" dev="sda1" ino=1947 res=1 errno=0
[   76.483614][ T5731] syzkaller0: entered promiscuous mode
[   76.506822][ T5731] syzkaller0: entered allmulticast mode
[   76.552211][ T5732] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 65487
[   76.816174][    T8] cfg80211: failed to load regulatory.db
[   77.770623][ T5769] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[   78.079962][   T25] net_ratelimit: 6 callbacks suppressed
[   78.079981][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.115240][ T5794] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[   78.192119][ T5796] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   78.390606][ T5807] netlink: 248 bytes leftover after parsing attributes in process `syz-executor.2'.
[   78.716658][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.830369][  T928] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   78.956314][ T5836] FAULT_INJECTION: forcing a failure.
[   78.956314][ T5836] name failslab, interval 1, probability 0, space 0, times 0
[   78.969289][ T5836] CPU: 0 PID: 5836 Comm: syz-executor.4 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   78.979729][ T5836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   78.989819][ T5836] Call Trace:
[   78.993121][ T5836]  <TASK>
[   78.996070][ T5836]  dump_stack_lvl+0x241/0x360
[   79.000805][ T5836]  ? __pfx_dump_stack_lvl+0x10/0x10
[   79.006031][ T5836]  ? __pfx__printk+0x10/0x10
[   79.010659][ T5836]  should_fail_ex+0x3b0/0x4e0
[   79.015377][ T5836]  ? skb_clone+0x20c/0x390
[   79.019816][ T5836]  should_failslab+0x9/0x20
[   79.024346][ T5836]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   79.029759][ T5836]  skb_clone+0x20c/0x390
[   79.034025][ T5836]  ? dev_queue_xmit_nit+0x220/0xc10
[   79.039248][ T5836]  dev_queue_xmit_nit+0x419/0xc10
[   79.044298][ T5836]  ? dev_queue_xmit_nit+0x2b/0xc10
[   79.049434][ T5836]  ? validate_xmit_skb+0x9f9/0x1120
[   79.054663][ T5836]  dev_hard_start_xmit+0x15f/0x7e0
[   79.059801][ T5836]  ? __pfx_validate_xmit_skb+0x10/0x10
[   79.064844][   T29] audit: type=1800 audit(1719121271.172:7): pid=5828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.3" name="memory.events" dev="sda1" ino=1953 res=0 errno=0
[   79.065279][ T5836]  __dev_queue_xmit+0x1b0e/0x3d30
[   79.090822][ T5836]  ? __dev_queue_xmit+0x2d2/0x3d30
[   79.095967][ T5836]  ? __pfx___dev_queue_xmit+0x10/0x10
[   79.101363][ T5836]  ? __copy_skb_header+0x437/0x5b0
[   79.106497][ T5836]  ? __asan_memcpy+0x40/0x70
[   79.111111][ T5836]  ? __copy_skb_header+0x437/0x5b0
[   79.116250][ T5836]  ? __skb_clone+0x454/0x6c0
[   79.120866][ T5836]  ? skb_clone+0x240/0x390
[   79.125310][ T5836]  __netlink_deliver_tap+0x54d/0x7c0
[   79.130624][ T5836]  ? netlink_deliver_tap+0x2e/0x1b0
[   79.135842][ T5836]  netlink_deliver_tap+0x19d/0x1b0
[   79.140973][ T5836]  netlink_unicast+0x7be/0x990
[   79.145779][ T5836]  ? __pfx_netlink_unicast+0x10/0x10
[   79.151087][ T5836]  ? __virt_addr_valid+0x183/0x520
[   79.156223][ T5836]  ? __check_object_size+0x49c/0x900
[   79.161532][ T5836]  ? bpf_lsm_netlink_send+0x9/0x10
[   79.166667][ T5836]  netlink_sendmsg+0x8e4/0xcb0
[   79.171465][ T5836]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.176776][ T5836]  ? __import_iovec+0x536/0x820
[   79.181643][ T5836]  ? aa_sock_msg_perm+0x91/0x160
[   79.186606][ T5836]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   79.191908][ T5836]  ? security_socket_sendmsg+0x87/0xb0
[   79.197390][ T5836]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.202690][ T5836]  __sock_sendmsg+0x221/0x270
[   79.207395][ T5836]  ____sys_sendmsg+0x525/0x7d0
[   79.212193][ T5836]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.217519][ T5836]  __sys_sendmsg+0x2b0/0x3a0
[   79.222137][ T5836]  ? __pfx___sys_sendmsg+0x10/0x10
[   79.227269][ T5836]  ? vfs_write+0x7c4/0xc90
[   79.231757][ T5836]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   79.238109][ T5836]  ? do_syscall_64+0x100/0x230
[   79.242907][ T5836]  ? do_syscall_64+0xb6/0x230
[   79.247714][ T5836]  do_syscall_64+0xf3/0x230
[   79.252246][ T5836]  ? clear_bhb_loop+0x35/0x90
[   79.256948][ T5836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.262877][ T5836] RIP: 0033:0x7f04c867d0a9
[   79.267312][ T5836] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   79.287110][ T5836] RSP: 002b:00007f04c94880c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   79.295551][ T5836] RAX: ffffffffffffffda RBX: 00007f04c87b3f80 RCX: 00007f04c867d0a9
[   79.303543][ T5836] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004
[   79.311531][ T5836] RBP: 00007f04c9488120 R08: 0000000000000000 R09: 0000000000000000
[   79.319518][ T5836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   79.327504][ T5836] R13: 000000000000000b R14: 00007f04c87b3f80 R15: 00007ffdaac37e38
[   79.335507][ T5836]  </TASK>
[   79.361952][   T25] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   79.549367][ T5855] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   79.618626][ T5857] xt_TCPMSS: Only works on TCP SYN packets
[   79.661866][ T5857] rdma_op ffff88807d91b9f0 conn xmit_rdma 0000000000000000
[   79.747648][ T5857] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   79.839898][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.018370][ T5883] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[   80.044795][ T5883] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[   80.084237][ T5875] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[   80.403373][ T5159] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   80.461454][ T5901] dvmrp0: entered allmulticast mode
[   80.480998][ T5901] dvmrp0: left allmulticast mode
[   80.591448][ T5906] veth1_macvtap: left promiscuous mode
[   80.602061][ T5906] macsec0: entered allmulticast mode
[   80.645050][ T5906] veth1_macvtap: entered promiscuous mode
[   80.668154][ T5906] veth1_macvtap: entered allmulticast mode
[   81.241770][ T5944] netlink: 'syz-executor.4': attribute type 16 has an invalid length.
[   81.252841][ T5947] xt_limit: Overflow, try lower: 262144/524288
[   81.261643][ T5944] __nla_validate_parse: 7 callbacks suppressed
[   81.261661][ T5944] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[   81.277658][ T5947] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[   81.286854][ T5947] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   81.440137][ T5163] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   81.749856][ T5966] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'.
[   82.022032][ T5978] FAULT_INJECTION: forcing a failure.
[   82.022032][ T5978] name failslab, interval 1, probability 0, space 0, times 0
[   82.035403][ T5978] CPU: 0 PID: 5978 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   82.045823][ T5978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   82.055883][ T5978] Call Trace:
[   82.059154][ T5978]  <TASK>
[   82.062076][ T5978]  dump_stack_lvl+0x241/0x360
[   82.066758][ T5978]  ? __pfx_dump_stack_lvl+0x10/0x10
[   82.071951][ T5978]  ? __pfx__printk+0x10/0x10
[   82.076534][ T5978]  ? __es_remove_extent+0x314/0x1f70
[   82.081828][ T5978]  should_fail_ex+0x3b0/0x4e0
[   82.086510][ T5978]  ? __es_insert_extent+0x71d/0x1770
[   82.091793][ T5978]  should_failslab+0x9/0x20
[   82.096293][ T5978]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   82.101666][ T5978]  __es_insert_extent+0x71d/0x1770
[   82.106783][ T5978]  ? __pfx_do_raw_write_lock+0x10/0x10
[   82.112249][ T5978]  ext4_es_insert_extent+0x64a/0x30d0
[   82.117635][ T5978]  ? rcu_is_watching+0x15/0xb0
[   82.122394][ T5978]  ? __pfx_ext4_es_insert_extent+0x10/0x10
[   82.128203][ T5978]  ? rcu_is_watching+0x15/0xb0
[   82.132961][ T5978]  ? ext4_es_find_extent_range+0x1f6/0x500
[   82.138767][ T5978]  ext4_ext_map_blocks+0x2ad0/0x77b0
[   82.144062][ T5978]  ? __pfx_lock_acquire+0x10/0x10
[   82.149082][ T5978]  ? __pfx___might_resched+0x10/0x10
[   82.154374][ T5978]  ? __pfx_ext4_ext_map_blocks+0x10/0x10
[   82.160022][ T5978]  ? down_read+0x82b/0xa40
[   82.164525][ T5978]  ? __lock_acquire+0x1346/0x1fd0
[   82.169552][ T5978]  ? ext4_es_lookup_extent+0x61a/0xa90
[   82.175016][ T5978]  ext4_da_get_block_prep+0x788/0x1420
[   82.180482][ T5978]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[   82.186373][ T5978]  ? folio_alloc_buffers+0x3fb/0x5b0
[   82.191745][ T5978]  ? _raw_spin_unlock+0x28/0x50
[   82.196592][ T5978]  ? create_empty_buffers+0x53e/0x740
[   82.201965][ T5978]  ext4_block_write_begin+0x513/0x1800
[   82.207433][ T5978]  ? __pfx_ext4_da_get_block_prep+0x10/0x10
[   82.213316][ T5978]  ? __pfx_ext4_block_write_begin+0x10/0x10
[   82.219217][ T5978]  ext4_da_write_begin+0x5f0/0xa70
[   82.224338][ T5978]  ? __pfx_ext4_da_write_begin+0x10/0x10
[   82.229979][ T5978]  ? fault_in_iov_iter_readable+0x229/0x280
[   82.235878][ T5978]  generic_perform_write+0x322/0x640
[   82.241157][ T5978]  ? generic_write_checks_count+0x415/0x530
[   82.247060][ T5978]  ? __pfx_generic_perform_write+0x10/0x10
[   82.252873][ T5978]  ? ext4_write_checks+0x256/0x2c0
[   82.257982][ T5978]  ext4_buffered_write_iter+0xc6/0x350
[   82.263449][ T5978]  ext4_file_write_iter+0x1de/0x1a10
[   82.268733][ T5978]  ? __pfx_lock_acquire+0x10/0x10
[   82.273761][ T5978]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   82.279486][ T5978]  vfs_write+0xa72/0xc90
[   82.283728][ T5978]  ? __pfx_ext4_file_write_iter+0x10/0x10
[   82.289455][ T5978]  ? __pfx_vfs_write+0x10/0x10
[   82.294233][ T5978]  ksys_write+0x1a0/0x2c0
[   82.298564][ T5978]  ? __pfx_ksys_write+0x10/0x10
[   82.303412][ T5978]  ? do_syscall_64+0x100/0x230
[   82.308181][ T5978]  ? do_syscall_64+0xb6/0x230
[   82.312857][ T5978]  do_syscall_64+0xf3/0x230
[   82.317355][ T5978]  ? clear_bhb_loop+0x35/0x90
[   82.322138][ T5978]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   82.328028][ T5978] RIP: 0033:0x7f214b27d0a9
[   82.332433][ T5978] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   82.352121][ T5978] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   82.360531][ T5978] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[   82.368495][ T5978] RDX: 0000000000000009 RSI: 0000000020000140 RDI: 0000000000000004
[   82.376470][ T5978] RBP: 00007f214bf4d120 R08: 0000000000000000 R09: 0000000000000000
[   82.384431][ T5978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   82.392392][ T5978] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[   82.400379][ T5978]  </TASK>
[   82.587007][ T5970] DRBG: could not allocate digest TFM handle: hmac(sha512)
[   82.692371][ T5981] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   82.751321][ T5981] 8021q: adding VLAN 0 to HW filter on device batadv1
[   82.877604][   T53] Bluetooth: hci4: command 0x0405 tx timeout
[   82.912209][ T6002] FAULT_INJECTION: forcing a failure.
[   82.912209][ T6002] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   82.957582][ T6002] CPU: 0 PID: 6002 Comm: syz-executor.1 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   82.968039][ T6002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   82.978199][ T6002] Call Trace:
[   82.981524][ T6002]  <TASK>
[   82.984467][ T6002]  dump_stack_lvl+0x241/0x360
[   82.989173][ T6002]  ? __pfx_dump_stack_lvl+0x10/0x10
[   82.994399][ T6002]  ? __pfx__printk+0x10/0x10
[   82.999010][ T6002]  ? __pfx_lock_release+0x10/0x10
[   83.004059][ T6002]  should_fail_ex+0x3b0/0x4e0
[   83.008775][ T6002]  _copy_from_user+0x2f/0xe0
[   83.013385][ T6002]  copy_msghdr_from_user+0xae/0x680
[   83.018601][ T6002]  ? _parse_integer_limit+0x1b5/0x200
[   83.023997][ T6002]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   83.029839][ T6002]  __sys_sendmmsg+0x374/0x740
[   83.034550][ T6002]  ? __pfx___sys_sendmmsg+0x10/0x10
[   83.039817][ T6002]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[   83.045738][ T6002]  ? ksys_write+0x23e/0x2c0
[   83.050265][ T6002]  ? __pfx_lock_release+0x10/0x10
[   83.055312][ T6002]  ? vfs_write+0x7c4/0xc90
[   83.059754][ T6002]  ? __mutex_unlock_slowpath+0x21d/0x750
[   83.064105][ T6009] 8021q: VLANs not supported on lo
[   83.065391][ T6002]  ? __pfx_vfs_write+0x10/0x10
[   83.065441][ T6002]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   83.065467][ T6002]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   83.065488][ T6002]  ? do_syscall_64+0x100/0x230
[   83.065516][ T6002]  __x64_sys_sendmmsg+0xa0/0xb0
[   83.065543][ T6002]  do_syscall_64+0xf3/0x230
[   83.065572][ T6002]  ? clear_bhb_loop+0x35/0x90
[   83.065600][ T6002]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.065623][ T6002] RIP: 0033:0x7f31af07d0a9
[   83.065640][ T6002] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   83.065655][ T6002] RSP: 002b:00007f31afdcf0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   83.065676][ T6002] RAX: ffffffffffffffda RBX: 00007f31af1b3f80 RCX: 00007f31af07d0a9
[   83.065689][ T6002] RDX: 0000000000000001 RSI: 0000000020003400 RDI: 0000000000000003
[   83.088880][ T6007] 
: renamed from gretap0
[   83.093168][ T6002] RBP: 00007f31afdcf120 R08: 0000000000000000 R09: 0000000000000000
[   83.093186][ T6002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   83.093198][ T6002] R13: 000000000000000b R14: 00007f31af1b3f80 R15: 00007ffdaf03acb8
[   83.093228][ T6002]  </TASK>
[   83.240321][ T6018] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[   83.248644][ T6018] netlink: 244 bytes leftover after parsing attributes in process `syz-executor.3'.
[   83.515858][ T5163] net_ratelimit: 2 callbacks suppressed
[   83.515875][ T5163] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   83.737936][ T6051] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[   83.756915][ T6051] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[   83.948075][ T6067] smc: net device lo applied user defined pnetid SYZ2
[   84.138685][ T6080] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[   84.261219][ T6092] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[   84.444878][ T5159] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   84.546556][ T6107] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   84.555520][ T5159] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   84.563702][ T6107] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   84.572657][ T6107] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   84.581544][ T6107] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   84.602918][ T6107] vxlan0: entered promiscuous mode
[   84.614027][ T6107] vxlan0: entered allmulticast mode
[   84.630894][ T6107] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[   84.640628][ T6107] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[   84.650228][ T6107] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[   84.659310][ T6107] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[   84.840592][ T6132] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[   84.850521][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   84.965342][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.020370][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.080704][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.155018][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.200992][ T6153] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[   85.205124][   T53] Bluetooth: hci4: command 0x0405 tx timeout
[   85.255933][ T6151] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[   85.274871][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.314678][ T5163] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.395022][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[   85.592197][ T6167] syzkaller1: entered promiscuous mode
[   85.615043][ T6167] syzkaller1: entered allmulticast mode
[   85.704891][    C0] vcan0: j1939_session_tx_dat: 0xffff88802f5f6c00: queue data error: -100
[   86.587274][ T6203] syzkaller0: entered allmulticast mode
[   86.792780][ T6210] __nla_validate_parse: 6 callbacks suppressed
[   86.792799][ T6210] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[   86.852917][ T6214] ax25_connect(): syz-executor.2 uses autobind, please contact jreuter@yaina.de
[   86.900730][ T6210] netdevsim netdevsim2 netdevsim0: set [0, 1] type 1 family 0 port 8472 - 0
[   86.910192][ T6210] netdevsim netdevsim2 netdevsim1: set [0, 1] type 1 family 0 port 8472 - 0
[   86.919067][ T6210] netdevsim netdevsim2 netdevsim2: set [0, 1] type 1 family 0 port 8472 - 0
[   86.927828][ T6210] netdevsim netdevsim2 netdevsim3: set [0, 1] type 1 family 0 port 8472 - 0
[   86.945580][ T6210] vxlan1: entered promiscuous mode
[   86.971775][ T6210] vxlan1: entered allmulticast mode
[   87.016224][ T6210] netdevsim netdevsim2 netdevsim0: unset [0, 1] type 1 family 0 port 8472 - 0
[   87.025440][ T6210] netdevsim netdevsim2 netdevsim1: unset [0, 1] type 1 family 0 port 8472 - 0
[   87.034802][ T6210] netdevsim netdevsim2 netdevsim2: unset [0, 1] type 1 family 0 port 8472 - 0
[   87.043693][ T6210] netdevsim netdevsim2 netdevsim3: unset [0, 1] type 1 family 0 port 8472 - 0
[   87.158293][ T6223] xt_CT: You must specify a L4 protocol and not use inversions on it
[   87.365284][ T6231] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   87.395866][ T6233] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   87.478023][ T6238] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   87.538965][ T6238] 8021q: adding VLAN 0 to HW filter on device macvlan2
[   87.783799][ T6246] FAULT_INJECTION: forcing a failure.
[   87.783799][ T6246] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   87.803846][   T29] audit: type=1800 audit(1719121279.912:8): pid=6247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="cgroup.controllers" dev="sda1" ino=1965 res=0 errno=0
[   87.833386][ T6246] CPU: 0 PID: 6246 Comm: syz-executor.3 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   87.843849][ T6246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   87.853926][ T6246] Call Trace:
[   87.857222][ T6246]  <TASK>
[   87.860167][ T6246]  dump_stack_lvl+0x241/0x360
[   87.864873][ T6246]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.870098][ T6246]  ? __pfx__printk+0x10/0x10
[   87.874719][ T6246]  ? __pfx_lock_release+0x10/0x10
[   87.879773][ T6246]  should_fail_ex+0x3b0/0x4e0
[   87.884480][ T6246]  _copy_from_iter+0x1f6/0x1960
[   87.889336][ T6246]  ? __virt_addr_valid+0x183/0x520
[   87.894452][ T6246]  ? __pfx_lock_release+0x10/0x10
[   87.899473][ T6246]  ? __alloc_skb+0x28f/0x440
[   87.904054][ T6246]  ? __pfx__copy_from_iter+0x10/0x10
[   87.909330][ T6246]  ? __virt_addr_valid+0x183/0x520
[   87.914436][ T6246]  ? __virt_addr_valid+0x183/0x520
[   87.919539][ T6246]  ? __virt_addr_valid+0x44e/0x520
[   87.924646][ T6246]  ? __check_object_size+0x49c/0x900
[   87.929930][ T6246]  netlink_sendmsg+0x73d/0xcb0
[   87.934697][ T6246]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.939974][ T6246]  ? __import_iovec+0x536/0x820
[   87.944818][ T6246]  ? aa_sock_msg_perm+0x91/0x160
[   87.949757][ T6246]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   87.955122][ T6246]  ? security_socket_sendmsg+0x87/0xb0
[   87.960574][ T6246]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.965848][ T6246]  __sock_sendmsg+0x221/0x270
[   87.970521][ T6246]  ____sys_sendmsg+0x525/0x7d0
[   87.975282][ T6246]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.980570][ T6246]  __sys_sendmsg+0x2b0/0x3a0
[   87.985169][ T6246]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.990278][ T6246]  ? vfs_write+0x7c4/0xc90
[   87.994720][ T6246]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   88.001040][ T6246]  ? do_syscall_64+0x100/0x230
[   88.005798][ T6246]  ? do_syscall_64+0xb6/0x230
[   88.010468][ T6246]  do_syscall_64+0xf3/0x230
[   88.014963][ T6246]  ? clear_bhb_loop+0x35/0x90
[   88.019635][ T6246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.025523][ T6246] RIP: 0033:0x7f2a2ae7d0a9
[   88.029927][ T6246] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   88.049610][ T6246] RSP: 002b:00007f2a2bbb70c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.058017][ T6246] RAX: ffffffffffffffda RBX: 00007f2a2afb3f80 RCX: 00007f2a2ae7d0a9
[   88.065979][ T6246] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[   88.073970][ T6246] RBP: 00007f2a2bbb7120 R08: 0000000000000000 R09: 0000000000000000
[   88.081930][ T6246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.089889][ T6246] R13: 000000000000000b R14: 00007f2a2afb3f80 R15: 00007ffcc72fda08
[   88.097868][ T6246]  </TASK>
[   88.333395][ T6253] bridge_slave_0: left allmulticast mode
[   88.351449][ T6253] bridge_slave_0: left promiscuous mode
[   88.365649][ T6253] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.399673][ T6253] bridge_slave_1: left allmulticast mode
[   88.414435][ T6253] bridge_slave_1: left promiscuous mode
[   88.420394][ T6253] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.446898][ T6253] bond0: (slave bond_slave_0): Releasing backup interface
[   88.480205][ T6253] bond0: (slave bond_slave_1): Releasing backup interface
[   88.544585][ T6253] team0: Port device team_slave_0 removed
[   88.583521][ T6253] team0: Port device team_slave_1 removed
[   88.602043][ T6253] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.621383][ T6253] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.636211][ T6253] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   88.655040][ T6253] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.890739][ T6268] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[   89.310537][ T6286] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[   89.606732][ T6303] FAULT_INJECTION: forcing a failure.
[   89.606732][ T6303] name failslab, interval 1, probability 0, space 0, times 0
[   89.648722][ T6303] CPU: 0 PID: 6303 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   89.652378][ T6304] xt_CT: You must specify a L4 protocol and not use inversions on it
[   89.659155][ T6303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   89.659189][ T6303] Call Trace:
[   89.659199][ T6303]  <TASK>
[   89.659209][ T6303]  dump_stack_lvl+0x241/0x360
[   89.659249][ T6303]  ? __pfx_dump_stack_lvl+0x10/0x10
[   89.659274][ T6303]  ? __pfx__printk+0x10/0x10
[   89.659306][ T6303]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   89.659337][ T6303]  should_fail_ex+0x3b0/0x4e0
[   89.659369][ T6303]  ? __request_module+0x2b9/0x650
[   89.659394][ T6303]  should_failslab+0x9/0x20
[   89.659420][ T6303]  kmalloc_trace_noprof+0x6c/0x2c0
[   89.659448][ T6303]  __request_module+0x2b9/0x650
[   89.659474][ T6303]  ? crypto_alg_lookup+0x2d6/0x360
[   89.659497][ T6303]  ? crypto_alg_mod_lookup+0x7c/0x720
[   89.738733][ T6303]  ? __pfx___request_module+0x10/0x10
[   89.744178][ T6303]  ? __up_read+0x2c2/0x6b0
[   89.748605][ T6303]  ? __pfx___up_read+0x10/0x10
[   89.753382][ T6303]  ? crypto_alg_lookup+0x2d6/0x360
[   89.758504][ T6303]  crypto_alg_mod_lookup+0x99/0x720
[   89.763707][ T6303]  crypto_type_has_alg+0x2c/0x60
[   89.768647][ T6303]  xfrm_probe_algs+0x79/0x340
[   89.773325][ T6303]  pfkey_register+0x111/0x870
[   89.778181][ T6303]  pfkey_sendmsg+0xbcc/0x1050
[   89.782862][ T6303]  ? __pfx___might_resched+0x10/0x10
[   89.788154][ T6303]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   89.793277][ T6303]  ? __might_fault+0xaa/0x120
[   89.797948][ T6303]  ? __pfx_lock_release+0x10/0x10
[   89.802978][ T6303]  ? __import_iovec+0x536/0x820
[   89.807823][ T6303]  ? aa_sock_msg_perm+0x91/0x160
[   89.812765][ T6303]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[   89.818048][ T6303]  ? security_socket_sendmsg+0x87/0xb0
[   89.823514][ T6303]  ? __pfx_pfkey_sendmsg+0x10/0x10
[   89.828623][ T6303]  __sock_sendmsg+0x221/0x270
[   89.833313][ T6303]  ____sys_sendmsg+0x525/0x7d0
[   89.838080][ T6303]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.843372][ T6303]  __sys_sendmsg+0x2b0/0x3a0
[   89.847963][ T6303]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.853064][ T6303]  ? vfs_write+0x7c4/0xc90
[   89.857507][ T6303]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   89.863823][ T6303]  ? do_syscall_64+0x100/0x230
[   89.868581][ T6303]  ? do_syscall_64+0xb6/0x230
[   89.873253][ T6303]  do_syscall_64+0xf3/0x230
[   89.877750][ T6303]  ? clear_bhb_loop+0x35/0x90
[   89.882426][ T6303]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.888324][ T6303] RIP: 0033:0x7f214b27d0a9
[   89.892737][ T6303] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   89.912335][ T6303] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.920747][ T6303] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[   89.928800][ T6303] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[   89.936766][ T6303] RBP: 00007f214bf4d120 R08: 0000000000000000 R09: 0000000000000000
[   89.944731][ T6303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.952691][ T6303] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[   89.960667][ T6303]  </TASK>
[   90.043572][   T29] audit: type=1800 audit(1719121282.152:9): pid=6224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="memory.events" dev="sda1" ino=1958 res=0 errno=0
[   90.415552][ T6317] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   90.434570][   T29] audit: type=1804 audit(1719121282.542:10): pid=6318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir761746124/syzkaller.EIy6lM/70/cgroup.controllers" dev="sda1" ino=1957 res=1 errno=0
[   90.455123][ T6320] netlink: 25 bytes leftover after parsing attributes in process `syz-executor.0'.
[   90.535498][ T6320] netlink: 'syz-executor.0': attribute type 5 has an invalid length.
[   92.434535][ T6458] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[   92.720807][ T6482] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   92.740456][ T6482] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.851595][ T6489] FAULT_INJECTION: forcing a failure.
[   92.851595][ T6489] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.865901][ T6489] CPU: 1 PID: 6489 Comm: syz-executor.3 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   92.876353][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   92.886425][ T6489] Call Trace:
[   92.889721][ T6489]  <TASK>
[   92.892695][ T6489]  dump_stack_lvl+0x241/0x360
[   92.897570][ T6489]  ? __pfx_dump_stack_lvl+0x10/0x10
[   92.902802][ T6489]  ? __pfx__printk+0x10/0x10
[   92.907432][ T6489]  ? snprintf+0xda/0x120
[   92.911697][ T6489]  should_fail_ex+0x3b0/0x4e0
[   92.916379][ T6489]  _copy_to_user+0x2f/0xb0
[   92.920786][ T6489]  simple_read_from_buffer+0xca/0x150
[   92.926169][ T6489]  proc_fail_nth_read+0x1e9/0x250
[   92.931217][ T6489]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.936777][ T6489]  ? rw_verify_area+0x514/0x6b0
[   92.941654][ T6489]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   92.947192][ T6489]  vfs_read+0x204/0xbd0
[   92.951361][ T6489]  ? __pfx_lock_release+0x10/0x10
[   92.956409][ T6489]  ? __pfx_vfs_read+0x10/0x10
[   92.961265][ T6489]  ? __fget_files+0x29/0x470
[   92.965952][ T6489]  ? __fget_files+0x3f6/0x470
[   92.970634][ T6489]  ksys_read+0x1a0/0x2c0
[   92.974890][ T6489]  ? __pfx_ksys_read+0x10/0x10
[   92.979666][ T6489]  ? do_syscall_64+0x100/0x230
[   92.984434][ T6489]  ? do_syscall_64+0xb6/0x230
[   92.989110][ T6489]  do_syscall_64+0xf3/0x230
[   92.993615][ T6489]  ? clear_bhb_loop+0x35/0x90
[   92.998294][ T6489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.004187][ T6489] RIP: 0033:0x7f2a2ae7bd4c
[   93.008601][ T6489] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 59 81 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 af 81 02 00 48
[   93.028201][ T6489] RSP: 002b:00007f2a2bbb70c0 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   93.036620][ T6489] RAX: ffffffffffffffda RBX: 00007f2a2afb3f80 RCX: 00007f2a2ae7bd4c
[   93.044583][ T6489] RDX: 000000000000000f RSI: 00007f2a2bbb7130 RDI: 0000000000000006
[   93.052543][ T6489] RBP: 00007f2a2bbb7120 R08: 0000000000000000 R09: 0000000000000000
[   93.060501][ T6489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   93.068461][ T6489] R13: 000000000000000b R14: 00007f2a2afb3f80 R15: 00007ffcc72fda08
[   93.076438][ T6489]  </TASK>
[   93.240695][ T6501] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[   93.278860][ T6501] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[   93.289377][ T6501] netlink: 181400 bytes leftover after parsing attributes in process `syz-executor.2'.
[   93.445425][ T6516] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[   93.494742][ T6528] netlink: 'syz-executor.2': attribute type 10 has an invalid length.
[   93.558444][ T6528] team0: Device netdevsim0 failed to register rx_handler
[   93.632751][ T6516] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[   93.698051][ T6539] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[   93.908643][ T6541] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   93.929145][ T6541] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   94.030120][ T6561] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[   94.248143][ T6576] batadv_slave_0: entered allmulticast mode
[   94.262796][ T6576] pim6reg: entered allmulticast mode
[   94.269997][ T6576] batadv_slave_0: left allmulticast mode
[   94.279086][ T6575] pim6reg: left allmulticast mode
[   94.408712][ T6586] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[   94.953910][ T6619] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   94.971741][ T6619] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   95.022517][ T6619] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   95.184065][ T6626] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   95.413031][ T6645] netlink: 'syz-executor.3': attribute type 11 has an invalid length.
[   95.495263][ T6649] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[   95.752010][ T6668] tipc: Failed to remove unknown binding: 66,1,1/0:4144738722/4144738724
[   96.450970][ T6712] FAULT_INJECTION: forcing a failure.
[   96.450970][ T6712] name failslab, interval 1, probability 0, space 0, times 0
[   96.489727][ T6712] CPU: 0 PID: 6712 Comm: syz-executor.1 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   96.500193][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   96.510268][ T6712] Call Trace:
[   96.513570][ T6712]  <TASK>
[   96.516514][ T6712]  dump_stack_lvl+0x241/0x360
[   96.521222][ T6712]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.526448][ T6712]  ? __pfx__printk+0x10/0x10
[   96.531058][ T6712]  ? lockdep_init_map_type+0xa1/0x910
[   96.536454][ T6712]  ? __asan_memset+0x23/0x50
[   96.541069][ T6712]  should_fail_ex+0x3b0/0x4e0
[   96.545775][ T6712]  ? security_inode_alloc+0x28/0x120
[   96.551084][ T6712]  should_failslab+0x9/0x20
[   96.555613][ T6712]  kmem_cache_alloc_noprof+0x6c/0x2a0
[   96.561018][ T6712]  security_inode_alloc+0x28/0x120
[   96.566155][ T6712]  inode_init_always+0x947/0xc70
[   96.571118][ T6712]  ? __pfx_sock_alloc_inode+0x10/0x10
[   96.576518][ T6712]  new_inode_pseudo+0x9e/0x1e0
[   96.581308][ T6712]  __sock_create+0x123/0x920
[   96.585929][ T6712]  __sys_socket+0x150/0x3c0
[   96.590458][ T6712]  ? __pfx___sys_socket+0x10/0x10
[   96.595522][ T6712]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   96.601873][ T6712]  ? exc_page_fault+0x590/0x8c0
[   96.606752][ T6712]  __x64_sys_socket+0x7a/0x90
[   96.611452][ T6712]  do_syscall_64+0xf3/0x230
[   96.615983][ T6712]  ? clear_bhb_loop+0x35/0x90
[   96.620692][ T6712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.626609][ T6712] RIP: 0033:0x7f31af07ee27
[   96.631035][ T6712] Code: f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 b0 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 b8 29 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   96.650652][ T6712] RSP: 002b:00007f31afdad038 EFLAGS: 00000286 ORIG_RAX: 0000000000000029
[   96.659093][ T6712] RAX: ffffffffffffffda RBX: 00007f31af1b4050 RCX: 00007f31af07ee27
[   96.667080][ T6712] RDX: 0000000000000010 RSI: 0000000000000003 RDI: 0000000000000010
[   96.675070][ T6712] RBP: 00000000ffffffff R08: 0000000000000000 R09: 0000000000000000
[   96.683054][ T6712] R10: 0000000020000440 R11: 0000000000000286 R12: 0000000000000001
[   96.691033][ T6712] R13: 000000000000006e R14: 00007f31af1b4050 R15: 00007ffdaf03acb8
[   96.699039][ T6712]  </TASK>
[   96.758780][ T6712] socket: no more sockets
[   97.015758][ T6728] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   97.206559][   T29] audit: type=1804 audit(1719121289.322:11): pid=6745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir1625910722/syzkaller.HOYXsa/94/cgroup.controllers" dev="sda1" ino=1966 res=1 errno=0
[   97.273454][ T6742] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   97.946075][ T6773] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[   97.995244][ T6773] 8021q: adding VLAN 0 to HW filter on device bond1
[   98.043806][ T6770] batadv0: entered promiscuous mode
[   98.053322][ T6770] 8021q: adding VLAN 0 to HW filter on device macvlan3
[   98.088329][ T6770] bond0: (slave macvlan3): Enslaving as an active interface with an up link
[   98.384204][ T6793] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[   98.472839][ T6795] __nla_validate_parse: 3 callbacks suppressed
[   98.472859][ T6795] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[   98.783073][ T6810] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   99.133631][ T6819] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[   99.525600][ T6829] syzkaller1: entered promiscuous mode
[   99.531691][ T6829] syzkaller1: entered allmulticast mode
[   99.629937][ T6831] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[   99.789236][ T6843] FAULT_INJECTION: forcing a failure.
[   99.789236][ T6843] name failslab, interval 1, probability 0, space 0, times 0
[   99.814515][ T6843] CPU: 0 PID: 6843 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[   99.824982][ T6843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   99.835057][ T6843] Call Trace:
[   99.838354][ T6843]  <TASK>
[   99.841302][ T6843]  dump_stack_lvl+0x241/0x360
[   99.846011][ T6843]  ? __pfx_dump_stack_lvl+0x10/0x10
[   99.851242][ T6843]  ? __pfx__printk+0x10/0x10
[   99.855862][ T6843]  should_fail_ex+0x3b0/0x4e0
[   99.860565][ T6843]  ? __alloc_skb+0x1c3/0x440
[   99.865181][ T6843]  should_failslab+0x9/0x20
[   99.869734][ T6843]  kmem_cache_alloc_node_noprof+0x71/0x320
[   99.875546][ T6843]  __alloc_skb+0x1c3/0x440
[   99.879967][ T6843]  ? __pfx___alloc_skb+0x10/0x10
[   99.884908][ T6843]  netlink_dump+0x2cd/0xd80
[   99.889409][ T6843]  ? ila_xlat_nl_dump_start+0xea/0x180
[   99.894864][ T6843]  ? __pfx_lock_release+0x10/0x10
[   99.899890][ T6843]  ? __pfx_netlink_dump+0x10/0x10
[   99.904920][ T6843]  ? _raw_spin_unlock+0x28/0x50
[   99.909765][ T6843]  ? ila_xlat_nl_dump_start+0xea/0x180
[   99.915216][ T6843]  ? genl_start+0x597/0x6d0
[   99.919726][ T6843]  __netlink_dump_start+0x59f/0x780
[   99.924923][ T6843]  genl_rcv_msg+0x88c/0xec0
[   99.929418][ T6843]  ? mark_lock+0x9a/0x350
[   99.933746][ T6843]  ? __pfx_genl_rcv_msg+0x10/0x10
[   99.938774][ T6843]  ? __pfx_genl_start+0x10/0x10
[   99.943636][ T6843]  ? __pfx_genl_dumpit+0x10/0x10
[   99.948577][ T6843]  ? __pfx_genl_done+0x10/0x10
[   99.953348][ T6843]  ? __pfx_lock_acquire+0x10/0x10
[   99.958368][ T6843]  ? __pfx_ila_xlat_nl_dump_start+0x10/0x10
[   99.964254][ T6843]  ? __pfx_ila_xlat_nl_dump+0x10/0x10
[   99.969628][ T6843]  ? __pfx_ila_xlat_nl_dump_done+0x10/0x10
[   99.975433][ T6843]  ? __pfx___might_resched+0x10/0x10
[   99.980731][ T6843]  netlink_rcv_skb+0x1e3/0x430
[   99.985494][ T6843]  ? __pfx_genl_rcv_msg+0x10/0x10
[   99.990518][ T6843]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   99.995820][ T6843]  genl_rcv+0x28/0x40
[   99.999799][ T6843]  netlink_unicast+0x7f0/0x990
[  100.004568][ T6843]  ? __pfx_netlink_unicast+0x10/0x10
[  100.009850][ T6843]  ? __virt_addr_valid+0x183/0x520
[  100.014960][ T6843]  ? __check_object_size+0x49c/0x900
[  100.020244][ T6843]  ? bpf_lsm_netlink_send+0x9/0x10
[  100.025355][ T6843]  netlink_sendmsg+0x8e4/0xcb0
[  100.030149][ T6843]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.035426][ T6843]  ? __import_iovec+0x536/0x820
[  100.040269][ T6843]  ? aa_sock_msg_perm+0x91/0x160
[  100.045204][ T6843]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  100.050490][ T6843]  ? security_socket_sendmsg+0x87/0xb0
[  100.055945][ T6843]  ? __pfx_netlink_sendmsg+0x10/0x10
[  100.061231][ T6843]  __sock_sendmsg+0x221/0x270
[  100.065915][ T6843]  ____sys_sendmsg+0x525/0x7d0
[  100.070685][ T6843]  ? __pfx_____sys_sendmsg+0x10/0x10
[  100.075980][ T6843]  __sys_sendmsg+0x2b0/0x3a0
[  100.080659][ T6843]  ? __pfx___sys_sendmsg+0x10/0x10
[  100.085763][ T6843]  ? vfs_write+0x7c4/0xc90
[  100.090207][ T6843]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  100.096536][ T6843]  ? do_syscall_64+0x100/0x230
[  100.101302][ T6843]  ? do_syscall_64+0xb6/0x230
[  100.105976][ T6843]  do_syscall_64+0xf3/0x230
[  100.110476][ T6843]  ? clear_bhb_loop+0x35/0x90
[  100.115151][ T6843]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.121042][ T6843] RIP: 0033:0x7f214b27d0a9
[  100.125458][ T6843] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  100.145056][ T6843] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  100.153460][ T6843] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[  100.161440][ T6843] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004
[  100.169416][ T6843] RBP: 00007f214bf4d120 R08: 0000000000000000 R09: 0000000000000000
[  100.177389][ T6843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  100.185357][ T6843] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[  100.193338][ T6843]  </TASK>
[  100.626090][ T6870] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  100.670197][ T6882] netlink: 165 bytes leftover after parsing attributes in process `syz-executor.2'.
[  100.800010][ T6895] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.2'.
[  100.814661][ T6894] nlmon0: Master is either lo or non-ether device
[  101.259981][ T6926] netlink: 144428 bytes leftover after parsing attributes in process `syz-executor.4'.
[  101.460809][ T6939] netlink: 96 bytes leftover after parsing attributes in process `syz-executor.2'.
[  101.619655][ T6946] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  101.714800][ T6946] tipc: Can't bind to reserved service type 0
[  101.993414][ T6968] netlink: 'syz-executor.3': attribute type 2 has an invalid length.
[  102.062511][ T6971] Bluetooth: MGMT ver 1.22
[  102.111981][ T6973] netlink: 144428 bytes leftover after parsing attributes in process `syz-executor.1'.
[  102.155419][ T6973] debugfs: Directory 'ü!ô' with parent 'ieee80211' already present!
[  102.447103][ T6988] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.4'.
[  102.628747][ T6995] IPVS: set_ctl: invalid protocol: 0 172.20.20.36:20001
[  102.659665][ T6997] pimreg: entered allmulticast mode
[  102.749589][ T6997] Bluetooth: MGMT ver 1.22
[  102.796864][ T7001] FAULT_INJECTION: forcing a failure.
[  102.796864][ T7001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  102.842546][ T7001] CPU: 0 PID: 7001 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  102.853004][ T7001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  102.863085][ T7001] Call Trace:
[  102.866361][ T7001]  <TASK>
[  102.869284][ T7001]  dump_stack_lvl+0x241/0x360
[  102.873965][ T7001]  ? __pfx_dump_stack_lvl+0x10/0x10
[  102.879176][ T7001]  ? __pfx__printk+0x10/0x10
[  102.883780][ T7001]  ? get_sigframe+0x566/0x700
[  102.888456][ T7001]  ? __pfx_lock_release+0x10/0x10
[  102.893481][ T7001]  should_fail_ex+0x3b0/0x4e0
[  102.898160][ T7001]  _copy_to_user+0x2f/0xb0
[  102.902571][ T7001]  copy_siginfo_to_user+0x24/0xa0
[  102.907590][ T7001]  x64_setup_rt_frame+0x75d/0xcc0
[  102.912626][ T7001]  ? __pfx_x64_setup_rt_frame+0x10/0x10
[  102.918262][ T7001]  arch_do_signal_or_restart+0x458/0x860
[  102.923895][ T7001]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  102.930043][ T7001]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  102.936033][ T7001]  ? syscall_exit_to_user_mode+0xa3/0x370
[  102.941751][ T7001]  syscall_exit_to_user_mode+0xc9/0x370
[  102.947296][ T7001]  do_syscall_64+0x100/0x230
[  102.951883][ T7001]  ? clear_bhb_loop+0x35/0x90
[  102.956561][ T7001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  102.962447][ T7001] RIP: 0033:0x7f214b27d0a9
[  102.966850][ T7001] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  102.986537][ T7001] RSP: 002b:00007f214bf2c0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000017
[  102.994945][ T7001] RAX: fffffffffffffffc RBX: 00007f214b3b4050 RCX: 00007f214b27d0a9
[  103.002908][ T7001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000007
[  103.010954][ T7001] RBP: 00007f214bf2c120 R08: 0000000020000140 R09: 0000000000000000
[  103.018914][ T7001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  103.026874][ T7001] R13: 000000000000006e R14: 00007f214b3b4050 R15: 00007ffdaa21b3a8
[  103.034846][ T7001]  </TASK>
[  103.154044][ T7012] EXT4-fs warning (device sda1): ext4_group_extend:1869: need to use ext2online to resize further
[  103.860954][ T7042] __nla_validate_parse: 6 callbacks suppressed
[  103.860972][ T7042] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  103.935985][ T7043] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  104.028908][ T7049] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  104.084239][   T29] audit: type=1804 audit(1719121296.192:12): pid=7056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir3619256333/syzkaller.LAVd5l/128/cgroup.controllers" dev="sda1" ino=1960 res=1 errno=0
[  104.152156][ T7060] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.4'.
[  104.181756][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[  104.423988][ T7066] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.0'.
[  104.503801][ T7086] pim6reg1: entered promiscuous mode
[  104.509313][ T7086] pim6reg1: entered allmulticast mode
[  104.958709][ T7106] netlink: 'syz-executor.3': attribute type 13 has an invalid length.
[  105.001608][ T7107] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.1'.
[  105.023977][ T7110] netlink: 'syz-executor.4': attribute type 12 has an invalid length.
[  105.032769][ T7110] netlink: 132 bytes leftover after parsing attributes in process `syz-executor.4'.
[  105.370225][ T7131] syzkaller1: entered promiscuous mode
[  105.376869][ T7131] syzkaller1: entered allmulticast mode
[  105.499034][ T7137] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  105.583882][ T7139] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.1'.
[  106.084873][ T7165] tap0: tun_chr_ioctl cmd 1074025677
[  106.097939][ T7165] tap0: linktype set to 792
[  106.510895][ T7183] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.3'.
[  106.753487][ T7197] netlink: 'syz-executor.4': attribute type 13 has an invalid length.
[  107.036760][ T7212] netlink: 'syz-executor.2': attribute type 8 has an invalid length.
[  107.067579][ T7212] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  107.373156][ T7224] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[  107.394818][ T7224] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[  107.425392][ T7223] netlink: 'syz-executor.4': attribute type 29 has an invalid length.
[  107.819303][ T7236] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode
[  107.846627][ T7236] macvlan4: entered allmulticast mode
[  107.874878][ T7236] mac80211_hwsim hwsim10 wlan0: entered allmulticast mode
[  107.893038][ T7236] mac80211_hwsim hwsim10 wlan0: left promiscuous mode
[  108.300024][ T5163] IPVS: starting estimator thread 0...
[  108.414558][ T7259] IPVS: using max 19 ests per chain, 45600 per kthread
[  108.449822][ T7267] xt_TCPMSS: Only works on TCP SYN packets
[  108.472922][ T7267] Bluetooth: MGMT ver 1.22
[  108.734739][ T7274] bond2: entered promiscuous mode
[  108.758711][ T7274] bond2: entered allmulticast mode
[  108.822137][ T7274] bond2 (unregistering): Released all slaves
[  108.891638][ T7277] __nla_validate_parse: 2 callbacks suppressed
[  108.891658][ T7277] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  109.146785][ T7297] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.171206][ T7297] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.287011][ T7303] netem: incorrect ge model size
[  109.304104][ T7303] netem: change failed
[  109.502321][ T7311] xt_TCPMSS: Only works on TCP SYN packets
[  109.512244][ T7311] FAULT_INJECTION: forcing a failure.
[  109.512244][ T7311] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  109.532219][ T7311] CPU: 1 PID: 7311 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  109.542663][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  109.552811][ T7311] Call Trace:
[  109.556095][ T7311]  <TASK>
[  109.559028][ T7311]  dump_stack_lvl+0x241/0x360
[  109.563722][ T7311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.568934][ T7311]  ? __pfx__printk+0x10/0x10
[  109.573537][ T7311]  ? __pfx_lock_release+0x10/0x10
[  109.578581][ T7311]  should_fail_ex+0x3b0/0x4e0
[  109.583280][ T7311]  _copy_from_iter+0x1f6/0x1960
[  109.588148][ T7311]  ? __virt_addr_valid+0x183/0x520
[  109.593277][ T7311]  ? skb_set_owner_w+0x238/0x3e0
[  109.598244][ T7311]  ? __pfx__copy_from_iter+0x10/0x10
[  109.603546][ T7311]  ? __pfx__copy_from_iter+0x10/0x10
[  109.608850][ T7311]  ? page_copy_sane+0x154/0x260
[  109.613722][ T7311]  copy_page_from_iter+0x7a/0x100
[  109.618766][ T7311]  skb_copy_datagram_from_iter+0x2d8/0x6c0
[  109.624605][ T7311]  packet_sendmsg+0x4231/0x6710
[  109.629494][ T7311]  ? __pfx___might_resched+0x10/0x10
[  109.634814][ T7311]  ? aa_sk_perm+0x967/0xab0
[  109.639340][ T7311]  ? __pfx_packet_sendmsg+0x10/0x10
[  109.644560][ T7311]  ? __fget_files+0x29/0x470
[  109.649171][ T7311]  ? aa_sock_msg_perm+0x91/0x160
[  109.654131][ T7311]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  109.659424][ T7311]  ? security_socket_sendmsg+0x87/0xb0
[  109.664896][ T7311]  ? __pfx_packet_sendmsg+0x10/0x10
[  109.670106][ T7311]  __sock_sendmsg+0x221/0x270
[  109.674795][ T7311]  __sys_sendto+0x3a4/0x4f0
[  109.679318][ T7311]  ? __pfx___sys_sendto+0x10/0x10
[  109.684375][ T7311]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  109.690371][ T7311]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  109.696718][ T7311]  __x64_sys_sendto+0xde/0x100
[  109.701513][ T7311]  do_syscall_64+0xf3/0x230
[  109.706034][ T7311]  ? clear_bhb_loop+0x35/0x90
[  109.710729][ T7311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.716638][ T7311] RIP: 0033:0x7f214b27d0a9
[  109.721067][ T7311] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  109.740685][ T7311] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  109.749199][ T7311] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[  109.757178][ T7311] RDX: 000000000000e90c RSI: 00000000200000c0 RDI: 0000000000000007
[  109.765154][ T7311] RBP: 00007f214bf4d120 R08: 0000000020000540 R09: 0000000000000014
[  109.773129][ T7311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  109.781111][ T7311] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[  109.789116][ T7311]  </TASK>
[  110.185774][ T7334] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  110.210506][ T7334] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  110.437053][ T7339] netlink: 'syz-executor.0': attribute type 12 has an invalid length.
[  110.669583][ T7356] dccp_v6_rcv: dropped packet with invalid checksum
[  110.767300][ T7363] GUP no longer grows the stack in syz-executor.2 (7363): 20006000-2000a000 (20005000)
[  110.783182][   T29] audit: type=1804 audit(1719121302.892:13): pid=7359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1618255124/syzkaller.zOb3yT/113/cgroup.controllers" dev="sda1" ino=1948 res=1 errno=0
[  110.799330][ T7363] CPU: 1 PID: 7363 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  110.819835][ T7363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  110.829909][ T7363] Call Trace:
[  110.833203][ T7363]  <TASK>
[  110.836151][ T7363]  dump_stack_lvl+0x241/0x360
[  110.840862][ T7363]  ? __pfx_dump_stack_lvl+0x10/0x10
[  110.846089][ T7363]  ? __pfx__printk+0x10/0x10
[  110.850697][ T7363]  ? find_vma+0xf9/0x170
[  110.854979][ T7363]  __get_user_pages+0x10e3/0x1590
[  110.860132][ T7363]  ? __gup_longterm_locked+0x1ec9/0x2a80
[  110.865794][ T7363]  ? __pfx___get_user_pages+0x10/0x10
[  110.871204][ T7363]  ? __lock_acquire+0x1346/0x1fd0
[  110.876249][ T7363]  __gup_longterm_locked+0x1ff6/0x2a80
[  110.881738][ T7363]  ? __pfx___gup_longterm_locked+0x10/0x10
[  110.887543][ T7363]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  110.893520][ T7363]  ? sanity_check_pinned_pages+0x12bb/0x13c0
[  110.899508][ T7363]  gup_fast_fallback+0x2732/0x2b40
[  110.904661][ T7363]  ? __pfx_gup_fast_fallback+0x10/0x10
[  110.910124][ T7363]  ? __pfx_validate_chain+0x10/0x10
[  110.915333][ T7363]  ? unwind_get_return_address+0x91/0xc0
[  110.920963][ T7363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  110.927032][ T7363]  ? arch_stack_walk+0x16d/0x1b0
[  110.931984][ T7363]  ? __lock_acquire+0x1346/0x1fd0
[  110.937009][ T7363]  ? is_valid_gup_args+0x124/0x200
[  110.942125][ T7363]  pin_user_pages_fast+0xcc/0x160
[  110.947147][ T7363]  ? __pfx_pin_user_pages_fast+0x10/0x10
[  110.952783][ T7363]  iov_iter_extract_pages+0x3db/0x720
[  110.958164][ T7363]  bio_iov_iter_get_pages+0x541/0x1930
[  110.963629][ T7363]  ? bio_associate_blkg+0x6c/0x230
[  110.968745][ T7363]  ? bio_associate_blkg_from_css+0xb0c/0xc70
[  110.974727][ T7363]  ? bio_associate_blkg_from_css+0xa4/0xc70
[  110.980615][ T7363]  ? __pfx_bio_iov_iter_get_pages+0x10/0x10
[  110.986599][ T7363]  ? bio_alloc_bioset+0x6d7/0x1130
[  110.991710][ T7363]  iomap_dio_bio_iter+0xc8e/0x1670
[  110.996846][ T7363]  __iomap_dio_rw+0x1295/0x2370
[  111.001695][ T7363]  ? do_syscall_64+0xf3/0x230
[  111.006369][ T7363]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.012459][ T7363]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  111.018449][ T7363]  ? __pfx___iomap_dio_rw+0x10/0x10
[  111.023665][ T7363]  ? jbd2_journal_stop+0x902/0xd80
[  111.028788][ T7363]  ? __pfx_jbd2_journal_stop+0x10/0x10
[  111.034246][ T7363]  ? __pfx_ext4_orphan_add+0x10/0x10
[  111.039532][ T7363]  iomap_dio_rw+0x46/0xa0
[  111.043865][ T7363]  ext4_file_write_iter+0x15e5/0x1a10
[  111.049250][ T7363]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  111.054979][ T7363]  vfs_write+0xa72/0xc90
[  111.059227][ T7363]  ? __pfx_ext4_file_write_iter+0x10/0x10
[  111.064941][ T7363]  ? __pfx_vfs_write+0x10/0x10
[  111.069698][ T7363]  ? do_futex+0x392/0x560
[  111.074039][ T7363]  ksys_write+0x1a0/0x2c0
[  111.078372][ T7363]  ? __pfx_ksys_write+0x10/0x10
[  111.083221][ T7363]  ? do_syscall_64+0x100/0x230
[  111.087985][ T7363]  ? do_syscall_64+0xb6/0x230
[  111.092660][ T7363]  do_syscall_64+0xf3/0x230
[  111.097161][ T7363]  ? clear_bhb_loop+0x35/0x90
[  111.101847][ T7363]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  111.107735][ T7363] RIP: 0033:0x7f214b27d0a9
[  111.112143][ T7363] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  111.131743][ T7363] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  111.140155][ T7363] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[  111.148120][ T7363] RDX: 0000000000043400 RSI: 0000000020000200 RDI: 000000000000000f
[  111.156090][ T7363] RBP: 00007f214b2ec074 R08: 0000000000000000 R09: 0000000000000000
[  111.164140][ T7363] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.172107][ T7363] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[  111.180088][ T7363]  </TASK>
[  112.887913][ T7429] sit1: entered promiscuous mode
[  112.903157][ T7429] sit1: entered allmulticast mode
[  113.129600][ T7439] xt_bpf: check failed: parse error
[  113.208263][ T7441] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[  113.571888][ T7463] A link change request failed with some changes committed already. Interface macvlan0 may have been left with an inconsistent configuration, please check.
[  113.688268][ T7473] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  113.911170][ T7488] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  113.965854][ T7488] netlink: 'syz-executor.4': attribute type 3 has an invalid length.
[  114.106960][ T7493] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.2'.
[  114.177276][ T7502] vlan3: entered promiscuous mode
[  114.193188][ T7502] batadv0: entered promiscuous mode
[  114.221326][ T7502] team0: Port device vlan3 added
[  114.343777][ T7512] xt_connbytes: Forcing CT accounting to be enabled
[  114.494646][ T7520] netlink: 60 bytes leftover after parsing attributes in process `syz-executor.3'.
[  114.515814][ T7520] Êü: entered promiscuous mode
[  115.301234][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  115.326338][ T7556] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  115.678200][ T7570] dccp_invalid_packet: P.Data Offset(144) too large
[  115.979679][ T7590] xt_connbytes: Forcing CT accounting to be enabled
[  116.035703][ T7593] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[  116.062906][ T7597] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  116.179276][ T7601] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  116.213861][ T7601] batman_adv: batadv1: Adding interface: netdevsim0
[  116.229577][ T7601] batman_adv: batadv1: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.293732][ T7601] batman_adv: batadv1: Interface activated: netdevsim0
[  116.610198][ T7613] xt_CT: No such helper "syz1"
[  116.622365][ T7616] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.1'.
[  116.645189][ T7616] unsupported nlmsg_type 40
[  116.796629][ T7623] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  117.023971][ T7633] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  117.047926][ T7633] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[  117.866213][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802d96a000: rx timeout, send abort
[  118.374700][    C1] vcan0: j1939_tp_rxtimer: 0xffff88802d96a000: abort rx timeout. Force session deactivation
[  118.629048][ T7678] bond0: entered promiscuous mode
[  118.634134][ T7678] bond_slave_0: entered promiscuous mode
[  118.675677][ T7678] bond_slave_1: entered promiscuous mode
[  118.708443][ T7677] bond0: left promiscuous mode
[  118.713350][ T7677] bond_slave_0: left promiscuous mode
[  118.726476][ T7677] bond_slave_1: left promiscuous mode
[  119.005635][ T7694] __nla_validate_parse: 6 callbacks suppressed
[  119.005656][ T7694] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[  119.045372][ T7697] FAULT_INJECTION: forcing a failure.
[  119.045372][ T7697] name failslab, interval 1, probability 0, space 0, times 0
[  119.079195][ T7697] CPU: 1 PID: 7697 Comm: syz-executor.1 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  119.089653][ T7697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  119.099735][ T7697] Call Trace:
[  119.103036][ T7697]  <TASK>
[  119.105979][ T7697]  dump_stack_lvl+0x241/0x360
[  119.110687][ T7697]  ? __pfx_dump_stack_lvl+0x10/0x10
[  119.115912][ T7697]  ? __pfx__printk+0x10/0x10
[  119.120532][ T7697]  ? ref_tracker_alloc+0x332/0x490
[  119.125681][ T7697]  should_fail_ex+0x3b0/0x4e0
[  119.130391][ T7697]  ? skb_clone+0x20c/0x390
[  119.134836][ T7697]  should_failslab+0x9/0x20
[  119.139366][ T7697]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  119.144768][ T7697]  skb_clone+0x20c/0x390
[  119.149042][ T7697]  __netlink_deliver_tap+0x3cc/0x7c0
[  119.154369][ T7697]  ? netlink_deliver_tap+0x2e/0x1b0
[  119.159594][ T7697]  netlink_deliver_tap+0x19d/0x1b0
[  119.164738][ T7697]  netlink_unicast+0x7be/0x990
[  119.169541][ T7697]  ? __pfx_netlink_unicast+0x10/0x10
[  119.174881][ T7697]  ? __virt_addr_valid+0x183/0x520
[  119.180034][ T7697]  ? __check_object_size+0x49c/0x900
[  119.185358][ T7697]  ? bpf_lsm_netlink_send+0x9/0x10
[  119.190493][ T7697]  netlink_sendmsg+0x8e4/0xcb0
[  119.195266][ T7697]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.200550][ T7697]  ? __import_iovec+0x536/0x820
[  119.205395][ T7697]  ? aa_sock_msg_perm+0x91/0x160
[  119.210332][ T7697]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  119.215611][ T7697]  ? security_socket_sendmsg+0x87/0xb0
[  119.221070][ T7697]  ? __pfx_netlink_sendmsg+0x10/0x10
[  119.226355][ T7697]  __sock_sendmsg+0x221/0x270
[  119.231033][ T7697]  ____sys_sendmsg+0x525/0x7d0
[  119.235803][ T7697]  ? __pfx_____sys_sendmsg+0x10/0x10
[  119.241106][ T7697]  __sys_sendmsg+0x2b0/0x3a0
[  119.245737][ T7697]  ? __pfx___sys_sendmsg+0x10/0x10
[  119.250843][ T7697]  ? vfs_write+0x7c4/0xc90
[  119.255290][ T7697]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  119.261610][ T7697]  ? do_syscall_64+0x100/0x230
[  119.266373][ T7697]  ? do_syscall_64+0xb6/0x230
[  119.271046][ T7697]  do_syscall_64+0xf3/0x230
[  119.275546][ T7697]  ? clear_bhb_loop+0x35/0x90
[  119.280228][ T7697]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  119.286123][ T7697] RIP: 0033:0x7f31af07d0a9
[  119.290538][ T7697] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  119.310146][ T7697] RSP: 002b:00007f31afdcf0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  119.318562][ T7697] RAX: ffffffffffffffda RBX: 00007f31af1b3f80 RCX: 00007f31af07d0a9
[  119.326527][ T7697] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  119.334498][ T7697] RBP: 00007f31afdcf120 R08: 0000000000000000 R09: 0000000000000000
[  119.342478][ T7697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  119.350439][ T7697] R13: 000000000000000b R14: 00007f31af1b3f80 R15: 00007ffdaf03acb8
[  119.358418][ T7697]  </TASK>
[  119.444440][ T7705] netlink: 'syz-executor.3': attribute type 7 has an invalid length.
[  119.476316][ T7705] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  119.533304][ T7708] raw_sendmsg: syz-executor.1 forgot to set AF_INET. Fix it!
[  119.545570][ T7705] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[  119.765947][ T7711] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  120.401822][ T7739] netlink: 'syz-executor.0': attribute type 6 has an invalid length.
[  120.415296][ T7741] FAULT_INJECTION: forcing a failure.
[  120.415296][ T7741] name failslab, interval 1, probability 0, space 0, times 0
[  120.459915][ T7741] CPU: 0 PID: 7741 Comm: syz-executor.4 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  120.470382][ T7741] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  120.480462][ T7741] Call Trace:
[  120.483758][ T7741]  <TASK>
[  120.486703][ T7741]  dump_stack_lvl+0x241/0x360
[  120.491402][ T7741]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.496599][ T7741]  ? __pfx__printk+0x10/0x10
[  120.501197][ T7741]  should_fail_ex+0x3b0/0x4e0
[  120.505874][ T7741]  ? kernfs_fop_write_iter+0x15b/0x500
[  120.511328][ T7741]  should_failslab+0x9/0x20
[  120.515830][ T7741]  __kmalloc_noprof+0xd8/0x400
[  120.520586][ T7741]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  120.526476][ T7741]  kernfs_fop_write_iter+0x15b/0x500
[  120.531767][ T7741]  vfs_write+0xa72/0xc90
[  120.536012][ T7741]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  120.541816][ T7741]  ? __pfx_vfs_write+0x10/0x10
[  120.546682][ T7741]  ksys_write+0x1a0/0x2c0
[  120.551017][ T7741]  ? __pfx_ksys_write+0x10/0x10
[  120.555864][ T7741]  ? do_syscall_64+0x100/0x230
[  120.560629][ T7741]  ? do_syscall_64+0xb6/0x230
[  120.565301][ T7741]  do_syscall_64+0xf3/0x230
[  120.569801][ T7741]  ? clear_bhb_loop+0x35/0x90
[  120.574477][ T7741]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.580368][ T7741] RIP: 0033:0x7f04c867d0a9
[  120.584776][ T7741] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  120.604557][ T7741] RSP: 002b:00007f04c94880c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  120.612973][ T7741] RAX: ffffffffffffffda RBX: 00007f04c87b3f80 RCX: 00007f04c867d0a9
[  120.620948][ T7741] RDX: 0000000000000005 RSI: 0000000020000400 RDI: 0000000000000004
[  120.628921][ T7741] RBP: 00007f04c9488120 R08: 0000000000000000 R09: 0000000000000000
[  120.636895][ T7741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.644865][ T7741] R13: 000000000000000b R14: 00007f04c87b3f80 R15: 00007ffdaac37e38
[  120.652849][ T7741]  </TASK>
[  120.685584][ T7739] ebt_among: dst integrity fail: 102
[  120.961167][ T7757] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.0'.
[  121.413650][ T7779] tun0: tun_chr_ioctl cmd 2148553947
[  121.699603][ T7785] netlink: 92 bytes leftover after parsing attributes in process `syz-executor.3'.
[  122.068134][ T7804] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  122.095708][ T7805] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  122.502173][ T7820] tun0: tun_chr_ioctl cmd 1074025677
[  122.525120][ T7820] tun0: linktype set to 1
[  122.565963][ T7823] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  122.809296][ T7823] netlink: 'syz-executor.1': attribute type 4 has an invalid length.
[  123.434047][ T7859] FAULT_INJECTION: forcing a failure.
[  123.434047][ T7859] name failslab, interval 1, probability 0, space 0, times 0
[  123.448932][ T7859] CPU: 1 PID: 7859 Comm: syz-executor.4 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  123.459379][ T7859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  123.469457][ T7859] Call Trace:
[  123.472753][ T7859]  <TASK>
[  123.475696][ T7859]  dump_stack_lvl+0x241/0x360
[  123.480388][ T7859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.485593][ T7859]  ? __pfx__printk+0x10/0x10
[  123.490193][ T7859]  should_fail_ex+0x3b0/0x4e0
[  123.494872][ T7859]  ? sctp_add_bind_addr+0x89/0x3a0
[  123.499977][ T7859]  should_failslab+0x9/0x20
[  123.504483][ T7859]  kmalloc_trace_noprof+0x6c/0x2c0
[  123.509600][ T7859]  sctp_add_bind_addr+0x89/0x3a0
[  123.514534][ T7859]  sctp_copy_local_addr_list+0x311/0x500
[  123.520166][ T7859]  ? sctp_copy_local_addr_list+0xab/0x500
[  123.525881][ T7859]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  123.532028][ T7859]  ? sctp_v6_is_any+0x60/0x70
[  123.536706][ T7859]  sctp_bind_addr_copy+0xad/0x3b0
[  123.541724][ T7859]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  123.548069][ T7859]  sctp_connect_new_asoc+0x2f3/0x6c0
[  123.553350][ T7859]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  123.559161][ T7859]  ? sctp_get_af_specific+0x2a/0x80
[  123.564358][ T7859]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  123.570169][ T7859]  __sctp_connect+0x66d/0xe30
[  123.574852][ T7859]  ? __pfx___sctp_connect+0x10/0x10
[  123.580047][ T7859]  ? __might_fault+0xc6/0x120
[  123.584717][ T7859]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  123.590260][ T7859]  ? security_sctp_bind_connect+0x90/0xb0
[  123.595978][ T7859]  sctp_getsockopt_connectx3+0x46f/0x730
[  123.601602][ T7859]  ? __local_bh_enable_ip+0x168/0x200
[  123.606968][ T7859]  ? __pfx_sctp_getsockopt_connectx3+0x10/0x10
[  123.613130][ T7859]  ? __local_bh_enable_ip+0x168/0x200
[  123.618515][ T7859]  ? sctp_getsockopt+0x13a/0xbb0
[  123.623459][ T7859]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  123.629195][ T7859]  sctp_getsockopt+0x8de/0xbb0
[  123.633964][ T7859]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  123.639854][ T7859]  do_sock_getsockopt+0x373/0x850
[  123.644884][ T7859]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  123.650440][ T7859]  ? __fget_files+0x3f6/0x470
[  123.655211][ T7859]  __sys_getsockopt+0x271/0x330
[  123.660063][ T7859]  ? __pfx___sys_getsockopt+0x10/0x10
[  123.665429][ T7859]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  123.671748][ T7859]  ? do_syscall_64+0x100/0x230
[  123.676511][ T7859]  __x64_sys_getsockopt+0xb5/0xd0
[  123.681531][ T7859]  do_syscall_64+0xf3/0x230
[  123.686029][ T7859]  ? clear_bhb_loop+0x35/0x90
[  123.690703][ T7859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.696591][ T7859] RIP: 0033:0x7f04c867d0a9
[  123.700998][ T7859] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  123.720600][ T7859] RSP: 002b:00007f04c94880c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  123.729014][ T7859] RAX: ffffffffffffffda RBX: 00007f04c87b3f80 RCX: 00007f04c867d0a9
[  123.736978][ T7859] RDX: 000000000000006f RSI: 0000000000000084 RDI: 0000000000000007
[  123.744954][ T7859] RBP: 00007f04c9488120 R08: 0000000020000140 R09: 0000000000000000
[  123.752929][ T7859] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000002
[  123.760901][ T7859] R13: 000000000000000b R14: 00007f04c87b3f80 R15: 00007ffdaac37e38
[  123.768886][ T7859]  </TASK>
[  123.903186][ T7864] netlink: 9412 bytes leftover after parsing attributes in process `syz-executor.4'.
[  124.022911][ T7857] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  124.161100][ T7880] 
[  124.163463][ T7880] ======================================================
[  124.170484][ T7880] WARNING: possible circular locking dependency detected
[  124.177503][ T7880] 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0 Not tainted
[  124.184612][ T7880] ------------------------------------------------------
[  124.191626][ T7880] syz-executor.2/7880 is trying to acquire lock:
[  124.197947][ T7880] ffffffff8f5e6f48 (rtnl_mutex){+.+.}-{3:3}, at: do_ip_setsockopt+0x127d/0x3cd0
[  124.207110][ T7880] 
2024/06/23 05:41:56 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  124.207110][ T7880] but task is already holding lock:
[  124.214473][ T7880] ffff88801ed18a50 (&smc->clcsock_release_lock){+.+.}-{3:3}, at: smc_setsockopt+0x1c3/0xe50
[  124.224592][ T7880] 
[  124.224592][ T7880] which lock already depends on the new lock.
[  124.224592][ T7880] 
[  124.235002][ T7880] 
[  124.235002][ T7880] the existing dependency chain (in reverse order) is:
[  124.244017][ T7880] 
[  124.244017][ T7880] -> #2 (&smc->clcsock_release_lock){+.+.}-{3:3}:
[  124.252638][ T7880]        lock_acquire+0x1ed/0x550
[  124.257660][ T7880]        __mutex_lock+0x136/0xd70
[  124.262674][ T7880]        smc_switch_to_fallback+0x35/0xd00
[  124.268481][ T7880]        smc_sendmsg+0x11f/0x530
[  124.273411][ T7880]        __sock_sendmsg+0x221/0x270
[  124.278597][ T7880]        ____sys_sendmsg+0x525/0x7d0
[  124.283870][ T7880]        __sys_sendmmsg+0x3b2/0x740
[  124.289056][ T7880]        __x64_sys_sendmmsg+0xa0/0xb0
[  124.294416][ T7880]        do_syscall_64+0xf3/0x230
[  124.299429][ T7880]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.305862][ T7880] 
[  124.305862][ T7880] -> #1 (sk_lock-AF_INET){+.+.}-{0:0}:
[  124.313518][ T7880]        lock_acquire+0x1ed/0x550
[  124.318556][ T7880]        lock_sock_nested+0x48/0x100
[  124.323856][ T7880]        do_ip_setsockopt+0x1a2d/0x3cd0
[  124.329411][ T7880]        ip_setsockopt+0x63/0x100
[  124.334448][ T7880]        do_sock_setsockopt+0x3af/0x720
[  124.339997][ T7880]        __sys_setsockopt+0x1ae/0x250
[  124.345371][ T7880]        __x64_sys_setsockopt+0xb5/0xd0
[  124.350909][ T7880]        do_syscall_64+0xf3/0x230
[  124.355926][ T7880]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.362350][ T7880] 
[  124.362350][ T7880] -> #0 (rtnl_mutex){+.+.}-{3:3}:
[  124.369566][ T7880]        validate_chain+0x18e0/0x5900
[  124.374941][ T7880]        __lock_acquire+0x1346/0x1fd0
[  124.380302][ T7880]        lock_acquire+0x1ed/0x550
[  124.385315][ T7880]        __mutex_lock+0x136/0xd70
[  124.390326][ T7880]        do_ip_setsockopt+0x127d/0x3cd0
[  124.395870][ T7880]        ip_setsockopt+0x63/0x100
[  124.400885][ T7880]        smc_setsockopt+0x275/0xe50
[  124.406074][ T7880]        do_sock_setsockopt+0x3af/0x720
[  124.411609][ T7880]        __sys_setsockopt+0x1ae/0x250
[  124.416968][ T7880]        __x64_sys_setsockopt+0xb5/0xd0
[  124.422501][ T7880]        do_syscall_64+0xf3/0x230
[  124.427512][ T7880]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.433916][ T7880] 
[  124.433916][ T7880] other info that might help us debug this:
[  124.433916][ T7880] 
[  124.444126][ T7880] Chain exists of:
[  124.444126][ T7880]   rtnl_mutex --> sk_lock-AF_INET --> &smc->clcsock_release_lock
[  124.444126][ T7880] 
[  124.457677][ T7880]  Possible unsafe locking scenario:
[  124.457677][ T7880] 
[  124.465116][ T7880]        CPU0                    CPU1
[  124.470466][ T7880]        ----                    ----
[  124.475813][ T7880]   lock(&smc->clcsock_release_lock);
[  124.481174][ T7880]                                lock(sk_lock-AF_INET);
[  124.488101][ T7880]                                lock(&smc->clcsock_release_lock);
[  124.495981][ T7880]   lock(rtnl_mutex);
[  124.499949][ T7880] 
[  124.499949][ T7880]  *** DEADLOCK ***
[  124.499949][ T7880] 
[  124.508085][ T7880] 1 lock held by syz-executor.2/7880:
[  124.513437][ T7880]  #0: ffff88801ed18a50 (&smc->clcsock_release_lock){+.+.}-{3:3}, at: smc_setsockopt+0x1c3/0xe50
[  124.523963][ T7880] 
[  124.523963][ T7880] stack backtrace:
[  124.529833][ T7880] CPU: 0 PID: 7880 Comm: syz-executor.2 Not tainted 6.10.0-rc4-syzkaller-00869-g185d72112b95 #0
[  124.540229][ T7880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  124.550272][ T7880] Call Trace:
[  124.553549][ T7880]  <TASK>
[  124.556472][ T7880]  dump_stack_lvl+0x241/0x360
[  124.561145][ T7880]  ? __pfx_dump_stack_lvl+0x10/0x10
[  124.566340][ T7880]  ? print_circular_bug+0x130/0x1a0
[  124.571639][ T7880]  check_noncircular+0x36a/0x4a0
[  124.576587][ T7880]  ? __pfx_validate_chain+0x10/0x10
[  124.581795][ T7880]  ? __pfx_check_noncircular+0x10/0x10
[  124.587255][ T7880]  ? lockdep_lock+0x123/0x2b0
[  124.591927][ T7880]  ? __pfx_validate_chain+0x10/0x10
[  124.597129][ T7880]  validate_chain+0x18e0/0x5900
[  124.601988][ T7880]  ? __pfx_validate_chain+0x10/0x10
[  124.607184][ T7880]  ? mark_lock+0x9a/0x350
[  124.611510][ T7880]  ? __lock_acquire+0x1346/0x1fd0
[  124.616534][ T7880]  ? validate_chain+0x11e/0x5900
[  124.621468][ T7880]  ? mark_lock+0x9a/0x350
[  124.625790][ T7880]  __lock_acquire+0x1346/0x1fd0
[  124.630722][ T7880]  lock_acquire+0x1ed/0x550
[  124.635215][ T7880]  ? do_ip_setsockopt+0x127d/0x3cd0
[  124.640409][ T7880]  ? __pfx_lock_acquire+0x10/0x10
[  124.645435][ T7880]  ? __pfx___might_resched+0x10/0x10
[  124.650719][ T7880]  ? mark_lock+0x9a/0x350
[  124.655037][ T7880]  ? __lock_acquire+0x1346/0x1fd0
[  124.660049][ T7880]  __mutex_lock+0x136/0xd70
[  124.664544][ T7880]  ? do_ip_setsockopt+0x127d/0x3cd0
[  124.669740][ T7880]  ? do_ip_setsockopt+0x127d/0x3cd0
[  124.674930][ T7880]  ? __pfx___mutex_lock+0x10/0x10
[  124.680030][ T7880]  ? __mutex_trylock_common+0x183/0x2e0
[  124.685571][ T7880]  ? __pfx___might_resched+0x10/0x10
[  124.690846][ T7880]  do_ip_setsockopt+0x127d/0x3cd0
[  124.695866][ T7880]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  124.701229][ T7880]  ? __mutex_lock+0x2ef/0xd70
[  124.706067][ T7880]  ? __pfx___might_resched+0x10/0x10
[  124.711342][ T7880]  ? smc_setsockopt+0x1c3/0xe50
[  124.716204][ T7880]  ? __pfx___mutex_lock+0x10/0x10
[  124.721220][ T7880]  ip_setsockopt+0x63/0x100
[  124.725717][ T7880]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  124.731600][ T7880]  smc_setsockopt+0x275/0xe50
[  124.736276][ T7880]  ? __pfx_smc_setsockopt+0x10/0x10
[  124.741464][ T7880]  ? aa_sock_opt_perm+0x79/0x120
[  124.746400][ T7880]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  124.751937][ T7880]  ? security_socket_setsockopt+0x87/0xb0
[  124.757649][ T7880]  ? __pfx_smc_setsockopt+0x10/0x10
[  124.762854][ T7880]  do_sock_setsockopt+0x3af/0x720
[  124.767881][ T7880]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  124.773438][ T7880]  ? __fget_files+0x29/0x470
[  124.778023][ T7880]  ? __fget_files+0x3f6/0x470
[  124.782786][ T7880]  __sys_setsockopt+0x1ae/0x250
[  124.787633][ T7880]  __x64_sys_setsockopt+0xb5/0xd0
[  124.792648][ T7880]  do_syscall_64+0xf3/0x230
[  124.797154][ T7880]  ? clear_bhb_loop+0x35/0x90
[  124.801828][ T7880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  124.807716][ T7880] RIP: 0033:0x7f214b27d0a9
[  124.812125][ T7880] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  124.831720][ T7880] RSP: 002b:00007f214bf4d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  124.840124][ T7880] RAX: ffffffffffffffda RBX: 00007f214b3b3f80 RCX: 00007f214b27d0a9
[  124.848084][ T7880] RDX: 0000000000000025 RSI: 0000000000000000 RDI: 0000000000000004
[  124.856045][ T7880] RBP: 00007f214b2ec074 R08: 000000000000000c R09: 0000000000000000
[  124.864002][ T7880] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000000
[  124.871958][ T7880] R13: 000000000000000b R14: 00007f214b3b3f80 R15: 00007ffdaa21b3a8
[  124.879927][ T7880]  </TASK>