last executing test programs:

4.127246471s ago: executing program 1 (id=1755):
r0 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000000203850000a26939d60000000000000f0800010001"], 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r4, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r4, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r6 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg(r5, &(0x7f0000000d40)=[{{0x0, 0xffffff93, &(0x7f0000000680)=[{&(0x7f0000000240)="e9a4ea", 0x3}], 0x1}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000002c0)="2ebb223023d89132c1980796d3480bf302680bb6d94cc2ddc4b641c81144696a15b4d88e56d04ec393bf39b3774c70aa64f9aee0fc51897c613f9ed201e53a48b093ea3325ebabd9e30fec85fdb932aa067d0f6e891750cd951b58d3288fc4cb3a551e6d82828c6e02ef0e295cbf30390c4566dba8ff971c6d212f4b0000000000", 0x81}], 0x1}}], 0x2, 0x4008)
recvmsg$kcm(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000480)=""/213, 0xd5}], 0x1}, 0x42)
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, r2, {}, {0x0, 0xf}, {0x9, 0xa}}}, 0x24}}, 0x0)

3.973586897s ago: executing program 4 (id=1760):
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_LISTALL(0xffffffffffffffff, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000b80)=ANY=[@ANYBLOB="14000000", @ANYRES16=r0, @ANYBLOB="fba70000e80000867f0004"], 0x14}}, 0x0)

3.839105724s ago: executing program 4 (id=1761):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010005000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) (async, rerun: 64)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (rerun: 64)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x10)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
r4 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
ioctl$int_in(r4, 0x5452, &(0x7f0000000000)=0xfffffffffffffffa)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1e0000000200000003000000"], 0x48)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)

3.662656596s ago: executing program 4 (id=1762):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0) (async)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x590, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x4c0, 0xffffffff, 0xffffffff, 0x4c0, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x300, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x1, 0x1, 0x0, 'syz1\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x0, 0x0, 'syz0\x00'}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5f0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000880)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x2, [@union={0x0, 0x1, 0x0, 0x5, 0x1, 0x0, [{0x1000000, 0x1000005}]}, @ptr={0x2, 0x0, 0x0, 0x2, 0x2}, @fwd={0x7}, @type_tag={0x3, 0x0, 0x0, 0x12, 0x2}]}}, 0x0, 0x56, 0x0, 0xa, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0) (async)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=ANY=[@ANYBLOB="200000001000030400000400fcffffff00000000", @ANYRES32=r3, @ANYBLOB="7fff000000000000"], 0x20}}, 0x0)
socket(0x1, 0x803, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x18) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0) (async)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x1840}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_ROUTER={0x5, 0x16, 0x3}]}}}]}, 0x3c}}, 0x0)
sendmsg$IPVS_CMD_FLUSH(0xffffffffffffffff, 0x0, 0x4000)
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, 0x0, 0x0) (async)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x7c}}, 0x0) (async)
sendmsg$NFT_BATCH(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a60000000060a010400000000000000000200000034000580300001800e000100696d6d656469617465"], 0x88}}, 0x0) (async)
unshare(0x6a040000) (async)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0) (async)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r8) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x4000) (async)
socket$inet_udp(0x2, 0x2, 0x0) (async)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r10=>0xffffffffffffffff})
recvmsg(r10, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)

1.572793548s ago: executing program 2 (id=1768):
syz_emit_ethernet(0x1de, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60"], 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fffffff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000740)={r0, 0x5, 0x14, 0x0, &(0x7f0000000000)='%', 0x0, 0x7fffffff, 0xbe02, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r1, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0xc}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x0, &(0x7f00000001c0)}, &(0x7f0000000400)=0x10)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000000)={r2, 0x2}, &(0x7f0000000080)=0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1d, 0x5, &(0x7f0000000000)=@raw=[@tail_call], 0x0, 0x4, 0x0, 0x0, 0x41100, 0x22, '\x00', 0x0, @lsm=0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[], 0xb4}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10002, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x340, 0x0, 0x4c, 0x1a, 0x190, 0x73, 0x270, 0x258, 0x258, 0x270, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @mcast2, [], [], 'netdevsim0\x00', 'macvlan1\x00'}, 0x0, 0x160, 0x190, 0x0, {}, [@common=@inet=@ecn={{0x28}, {0x2}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00', @dev}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0x0, 0xa8, 0xe0}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0)
r4 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r4, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x54}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
sendfile(r4, r5, 0x0, 0xffffffff000)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
r7 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r7, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f00000004c0)=[{0x28, 0x0, 0x5, 0xfffff03c}]}, 0x10)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="cc0000000001010400000000000000000a0000003c0001802c000180940003000000000000000000000000000015000014000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8000000000000000000000000000aa0c000280050001000000000008000740000000002c00068014000400fe8800000000001200000000000000010c000380060002000000000014000500fe880000000000000000000000000001fb97a6bc4c800bbb9a3ed0a32eea"], 0xcc}}, 0x0)

1.567980905s ago: executing program 4 (id=1769):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c0200001400010000ffea0010000000e0000001000000000000000000000000ac1414bb00000000000000000000000000000000ffff00000a0080"], 0x23c}}, 0x0)

1.547965501s ago: executing program 0 (id=1770):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket(0x28, 0x5, 0x0)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000300), r3)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000340)=ANY=[@ANYRES32=r2], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
listen(r2, 0x4)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
r5 = accept4$unix(r2, 0x0, 0x0, 0x800)
recvfrom$unix(r5, &(0x7f0000000140)=""/248, 0x1ffd4, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=@delpolicy={0x50, 0x27, 0x1, 0x0, 0x0, {{@in=@private=0xa000100, @in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x2b}}}, 0x50}, 0x1, 0x0, 0x0, 0x2000c0c0}, 0x0)

1.467144219s ago: executing program 3 (id=1771):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'erspan0\x00'})
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1400000010000100000000000000007099894c8644000000050a01020000000000000000010020000c00024000000000010073797a3100000000180004801400030076657468315f6d616b7674617000000014000000110003000000000000000000000a73a3fa4fa768f4e73078e18e510a5597393e87a78f913e553764241a648440edae17d6c7d4718b546147305934081fbba87306b211bf741b12f48646039851560bdfe2870a09009df302957e1972d647cd54681506a311ca46a822210057456586e785d0b0508e0b5167a89f2d9aba42c0c0758b09f5e34b000000000000"], 0x6c}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = accept4$phonet_pipe(0xffffffffffffffff, &(0x7f00000003c0), &(0x7f0000000400)=0x10, 0x800)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newtaction={0x74, 0x30, 0x1, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x9}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0xf5}, @TCA_MPLS_TTL={0x5, 0x7, 0x8}]}, {0x4, 0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0x74}}, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000500)='cdg\x00', 0x4)
setsockopt$PNPIPE_INITSTATE(r3, 0x113, 0x4, &(0x7f00000004c0)=0x1, 0x4)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
sendto$inet6(r2, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x56)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000009, 0x12, r2, 0xfffff000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000001380)=""/4080, 0xfe2e, 0x0, 0x0, 0xffffffffffffff29}, &(0x7f0000000000)=0x40)
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r4, &(0x7f00000000c0), 0x10)
sendto$l2tp(r4, &(0x7f0000000040)="e5786a0d000000000000c83b", 0x5d, 0x0, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_int(r4, 0x0, 0x12, &(0x7f0000000180)=0x1000, 0x4)
ioctl$sock_SIOCINQ(r4, 0x541b, &(0x7f0000000000))
recvfrom$l2tp(r4, 0x0, 0x0, 0x12142, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000680000006800000002000000000000000000000d0a000000000000000200000604"], &(0x7f0000000f40)=""/4089, 0x82, 0xff9, 0x5, 0x0, 0x0, @void, @value}, 0x20)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f0000000440)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000480)=0x40)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)

1.46656432s ago: executing program 1 (id=1772):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
recvfrom$phonet(r1, 0x0, 0x0, 0x40010102, 0x0, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x7000000, 0x10, r0, 0x80000000)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="b700000000000000d54e0000000000000040007400000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xb579, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x23)

1.432501365s ago: executing program 2 (id=1773):
r0 = socket$inet6(0xa, 0x5, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940)={0x28, 0x0, 0x0, @local}, 0x10)
close(0x3)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
listen(r0, 0xe9c)

1.316179681s ago: executing program 2 (id=1774):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmsg$unix(r0, &(0x7f00000000c0)={&(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4040801}, 0x20008840)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000080)=0x7, 0x4)
recvmmsg(r0, &(0x7f0000000c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=""/57, 0x39}, 0x8}], 0x3ffffffffffff2e, 0x1000400000de, 0x0) (fail_nth: 76)

1.313465073s ago: executing program 0 (id=1775):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0xc, 0x5a, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}]}]}]}, 0x28}}, 0x0) (fail_nth: 4)

1.296646442s ago: executing program 1 (id=1776):
socket$rds(0x15, 0x5, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bdaa, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xffe2}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@newtfilter={0x80, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r4, {0xc, 0x4}, {}, {0x3, 0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x50, 0x2, [@TCA_FLOW_EMATCHES={0x4c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x40, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x28, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT=0xa]}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT=0xa]}]}}]}]}]}}]}, 0x80}}, 0x20040054)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x2c, r6, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x18, 0x10d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x201}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x10)
ioctl$TUNSETDEBUG(r1, 0x400454c9, &(0x7f0000000000)=0xfffff84c)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x18)
ppoll(&(0x7f0000000500)=[{r7}], 0x1, 0x0, 0x0, 0x0)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
accept4$phonet_pipe(r10, 0x0, 0x0, 0x80800)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x80, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x8, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

1.295551768s ago: executing program 3 (id=1777):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}}, 0x24}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0x70, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x8, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x14, 0x2, [@TCA_U32_DIVISOR={0x8, 0x4, 0x43}, @TCA_U32_HASH={0x8, 0x2, 0x1}]}}, @filter_kind_options=@f_bpf={{0x8}, {0x20, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x2}, {0x14, 0x5, [{0x4, 0x80, 0x0, 0x80000001}, {0x6, 0x6, 0x3, 0x4}]}}]}}, @TCA_RATE={0x6, 0x5, {0x6}}]}, 0x70}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) (fail_nth: 6)

1.262147978s ago: executing program 4 (id=1778):
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x9, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffc0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0xc, 0xc, &(0x7f0000000600)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000006000000040000000000000e0400000000000000000000000000000d030000000000000000000002000000000000000000000009030000000000000061"], 0x0, 0x52, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x9, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="b4000000640102000f10000000000000630000ff000000009500000000000000840c5f789c2c93e9a797bd6b13fa0ece2f93e67492de49d02300f986af6e5b0b846df1ad6016d2"], &(0x7f0000000080)='GPL\x00', 0x2, 0xc6, &(0x7f0000000300)=""/198, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f0000000040)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x1d, 0x2, 0x6)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x0, {0x1}, [@IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x5}, @IPSET_ATTR_MAXELEM={0x8, 0x13, 0x1, 0x0, 0x9}, @IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @empty}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x1}]}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x84}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000000)={0x2001}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x30, r5, 0x1, 0x0, 0x100000, {{}, {}, {0x14, 0x19, {0x2, 0x1, 0x0, 0x2000000}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x1004)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_ULP(r6, 0x6, 0x1f, 0x0, 0x0)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000600)={'vxcan0\x00', <r8=>0x0})
bind$can_j1939(r2, &(0x7f0000000100)={0x1d, r8, 0x2, {0x3}}, 0x18)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r9, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r9, 0x29, 0x1, &(0x7f0000000080), 0x4)
setsockopt$inet6_tcp_TCP_ULP(r9, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x2, &(0x7f0000000640)=@gcm_128={{0x304}, "6370e70f43552aae", "590800000000000000050838cf6baf8c", "3a975a5f", "1ba18f5f32c9ba15"}, 0x28)
recvmmsg(r9, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}, 0xb00}], 0x1, 0x12000, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r10=>0x0})
setsockopt$CAN_RAW_ERR_FILTER(r2, 0x65, 0x2, &(0x7f0000000080)=0x8, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0x0, 0x3}, {}, {0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000}, 0x98)

622.123327ms ago: executing program 3 (id=1779):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r0, 0x11, 0x1, &(0x7f0000000040)=0x6, 0x4)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x278, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d8)
sendmmsg$inet6(r0, &(0x7f0000000740)=[{{&(0x7f0000000100)={0x2, 0x4e21, 0x0, @empty}, 0x1c, 0x0}, 0xfffd}], 0x300, 0x0)

586.51043ms ago: executing program 3 (id=1780):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0x2}, {0x1, 0xe}}}, 0x24}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x6e, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x4e20, @multicast1}, 0x3, 0x4, 0x2, 0x3}}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="4cdd2c2966bd1625d73e3a4ba96b92ddbc875fc54036c9260671af75897003f4780546dd401b3c0302534b34e6bb37158520d67079557ee220d7b6cede8601ad06a1dea79c1f6abada7aa461c30bb8919dd9fe9cb5e3510320da087a28a5089ab5392610894c75f9e049ded55f0841e61ba1b796a1c9926fbf59cde95cd9425a72bf7b139d18e18a0600a129605df045aa169bf36021aa0e68f8fa1e59f70969acbd772a20d17600fd0f", 0xaa}, {&(0x7f0000000180)="879f62a755729b4afba689b9082bd1f41f93b6291d66dba634dd2bcc75b39e81391d737c2efae0639b3e79ccba211df429b409e1633be99cc7d77631b5c2ca44d920d3d7db0d0e1e", 0x48}, {&(0x7f0000000200)="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", 0xfa}], 0x3, &(0x7f0000000340)=[{0x88, 0x116, 0x4, "98e3467a768ea68bd86f087e33a65a8b9b121465470a7f5e5dd2c325867c2e0c78259621fd1ce0c171072152c6e5db2952d5cb334eb2510b958361ea4c89a4ba4a020ae01a20b6a5dd77f0910c4e45242ba2a2fb174b2559704ff1844921341530ec9d838f43f3967e61d895feb9edfc84c4ad7e"}, {0x38, 0x114, 0xc, "2806e8dd587390bd6f9a9a4f82024a3d4ce5f13ddaa467b13e09c688f0bf7aa5bc0953bdbae4427a"}], 0xc0}, 0x1)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random='\x00\x00\x00\x00\x00 '})

567.697351ms ago: executing program 2 (id=1781):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x317502, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'\x00', 0x5})
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000640)={0x28, 0x0, 0x2710, @local}, 0x10)
r4 = accept(r2, 0x0, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1200000004000000040000000500000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000017f54a631f539480f8d1234351d06ef71ba5f5edce66752810daf34c779143b6a6d06b00e8a630cfbd149275b54d863a0a01f56477551bba460fde0bd5ef060c6d20a5a34a9f215453488d6a99ed7a8e2d10cee2db454265a3091baf59a5a0fd68dc9f357f32bed3eb6daf772a21ba27142d91ca1400fba5d6e4df3fcb348ac12c074591eb68dfc1d0bfb6ed57c1fbadf02794e3", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
close(r5)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r5, &(0x7f0000000300), &(0x7f00000002c0)=@tcp6=r4, 0x2}, 0x20)
sendmsg$inet6(r1, &(0x7f0000000140)={&(0x7f0000000080)={0xa, 0x4e25, 0x80000, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000002900000036000000000000000000000018000000000000002900000036"], 0x30}, 0x0)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r4, 0x84, 0x1a, &(0x7f00000000c0)={<r6=>0x0, 0x30, "52812db0143b28d9bc9dd78295ce6037499c3ef3e1abb9bc96198dbee7ce2eb2482de5a4802ef2d320d03485ab9822a6"}, &(0x7f0000000100)=0x38)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000180)={r6, 0x4, 0x10}, 0xc)
ioctl$TUNSETPERSIST(r0, 0x400454c9, 0x1)
ioctl$TUNSETDEBUG(r0, 0x400454c9, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r1, 0x0, 0x487, &(0x7f00000001c0), &(0x7f0000000280)=0x30)

515.263442ms ago: executing program 0 (id=1782):
r0 = socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$tipc(&(0x7f0000000040), r0)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), r0)
sendmsg$TIPC_CMD_GET_NODES(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x10, 0x70bd2c, 0x25dfdbfb, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x34020005}, 0x40080d0)
writev(r0, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100070c100000000000224e0000", 0x58}], 0x1)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000200)={0x1, 0x58, &(0x7f0000000180)={0x0, <r2=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000240)={r2, 0x8, 0x8}, 0xc)

467.682484ms ago: executing program 2 (id=1783):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)=ANY=[@ANYBLOB="8800000000010104000000000000000002000000240001801400018008000100ac1e000108000200ac1414000c0002800500010008000000240002800c00028005000300000000001400018008000100ac1e0101080002"], 0x88}, 0x1, 0x0, 0x0, 0x40011}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000480)=@security={'security\x00', 0xe, 0x4, 0x558, 0xffffffff, 0x100, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x488, 0x488, 0x488, 0xffffffff, 0x4, &(0x7f0000000100), {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x24}, @local, [0x0, 0xffffffff, 0xff, 0xff], [0xffffffff, 0xff000000, 0xff, 0xff], 'wlan1\x00', '\x00', {0xff}, {}, 0x3a, 0x8, 0x5, 0x4}, 0x0, 0xd8, 0x100, 0x0, {}, [@common=@frag={{0x30}, {[0x10, 0x1], 0x4, 0xc, 0x2}}]}, @common=@unspec=@AUDIT={0x28, 'AUDIT\x00', 0x0, {0x1}}}, {{@uncond, 0x0, 0x120, 0x168, 0x0, {}, [@common=@hbh={{0x48}, {0xff, 0x1, 0x1, [0x800, 0xfff7, 0xfd3f, 0x9, 0x5, 0x4, 0x1, 0x6880, 0xfff2, 0x100, 0xffff, 0x2, 0xf5f, 0x4, 0x7, 0x7]}}, @common=@inet=@l2tp={{0x30}, {0x4, 0x0, 0x3, 0x0, 0x9}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00', 0x1, 0x5cd, {0x7}}}}, {{@uncond, 0x0, 0xf8, 0x220, 0x0, {}, [@common=@mh={{0x28}, {"7d89", 0x1}}, @common=@mh={{0x28}, {"f081"}}]}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0xf90, 'system_u:object_r:urandom_device_t:s0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b8)
pipe(&(0x7f0000000280)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000000)={'team_slave_0\x00', @remote})

399.770902ms ago: executing program 0 (id=1784):
r0 = socket$inet6(0xa, 0x5, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940)={0x28, 0x0, 0x0, @local}, 0x10)
close(0x3)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
listen(r0, 0xe9c)

260.13025ms ago: executing program 2 (id=1785):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='blkio.bfq.dequeue\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r0, &(0x7f0000001200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000011c0)={&(0x7f00000000c0)={0x1118, r1, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x4, 0x41}}}}, [@NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x83}, @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x55}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x4}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x4}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x10}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x15}, @NL80211_ATTR_CSA_IES={0xd6c, 0xb9, 0x0, 0x1, [@beacon_params=[@NL80211_ATTR_IE={0xc1, 0x2a, [@fast_bss_trans={0x37, 0x9f, {0x4, 0x4, "e62088e13677a574eaa8578f12b8f0bb", "c895e38d69fa36051f378effd9c7bafce11b6095e41963777db267627c6124c2", "6f8de6752f57cf90c0ee55ebb35f0fb3525c9e023dbb14ec3f9c86a0cca06cb8", [{0x1, 0x21, "3d8a5be4519c3158a0d87471c1cc26ffa5cdfbac6882c2b1b78d2c1ee7cd9dca8c"}, {0x3, 0x9, "21919a4cf3f063db50"}, {0x3, 0xf, "5383a71ba6a6ab0fb6a213835c44ed"}, {0x2, 0xc, "2264eface2f931cb87de3da8"}]}}, @ht={0x2d, 0x1a, {0x527c9e663c59a6ef, 0x3, 0x0, 0x0, {0xfff, 0x6, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x8, 0x5, 0xe}}]}, @NL80211_ATTR_BEACON_HEAD={0x4df, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x1}, {0x1}, @device_a, @broadcast, @initial, {0x7, 0xd3e}}, 0x4, @default, 0x4a8, @void, @void, @val={0x3, 0x1, 0x3c}, @void, @val={0x6, 0x2, 0x7}, @void, @void, @val={0x2a, 0x1}, @val={0x3c, 0x4, {0x0, 0x6, 0x78, 0x2}}, @void, @void, @val={0x71, 0x7, {0x1, 0x0, 0x2d, 0x1, 0x2, 0x40, 0x40}}, @val={0x76, 0x6, {0x81, 0x1, 0x29, 0x5}}, [{0xdd, 0x1b, "717c82ec4a0339104e20001d98e503056e04c1f13ec1c2650ec634"}, {0xdd, 0xfb, "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"}, {0xdd, 0x10, "106e0c568816206798e9d07907214990"}, {0xdd, 0xe, "2ff77dbfcabcee042589c3fc69f2"}, {0xdd, 0x23, "6be98bd46eca1bd3470d6378612a7fab3b8a25bc512fa2bcd29f4c6b9b5e58ba757e9f"}, {0xdd, 0xc1, "0bde49c462d17aa4b015021dfb02af6057c8a30bca8241c0747179acc1cf48dfda30a8c644efc1bada19a6c76af69122a195dda91a71146fef2a2190aaedb2b2e01a65b90d2ea1ad57aa5f450021f881f65497f307c02194982a7d24e35fa6072e3f647ef5ff0097223ce83cf7817582a3f8b844ba7937a125eced98f45cd86fa0c62fe417966228f0a4937ed4e5f6c6ad9fdc254cbcd9225c10ffa6f94d18b3af3717330d2087b4df99d843199a7ae7878c84ff3270ed98eec8abc8c5557454eb"}, {0xdd, 0x3a, "a84afc4a00ecc5a20b3d144b2a5d3d60bc17bd5a42e0c20a704a729a24c6138812d1d651783f4912f687d5df55ae8c786fc228a3ccf027bd776f"}, {0xdd, 0x53, "f1ddd3bde5509f63c6bf3770dd64048a19a47e212798213e15af50568594b0a3f8601d51f49d2d61d61f10724556b5ad61686089a14a32208530ca3b92333d959d8a578ed48673bbbf2e4353699e42d085b96b"}, {0xdd, 0xf8, "5da96656d496a976974d2620b9e0ca2a78c5d7019ed11ca5b94f0bc32511fee4e11c8071e8f01c73a1e8618fb0c7d3a53b541af937a5a2dfec6c543f1ce595aac8449cc9461b6dedd648d10e3727e8904d9aa58a4480a9c75836f82b04aef99675bbf14c9f04dbf4c650a0bee4ec105cf2cef9d61a6fc6abbbced423f3bab36942e5df09be18e6ac5d2fc48ad92dc8a7b63ad1802318103d9c3b0c408eb3808d114eaef599f5c851cd06a4be254e1243697fba5594a43f09b2dbed0821d2cd535cf5ecdddf9e08c6347e913bee0ec2da7f5135936e1b127399d52cbc5d864400b34bcdc0abe4e0107189f46eccd9eacccadd5b0f55878dc2"}, {0xdd, 0xe5, "3dd7c32a32df2e313dcee6958faa201a4a1b3c1881b472ab8351d64509ce60f032eb3c228b9eea3f83c26d19fc80eaf8d10715d2b9bffac247dcde823e1436c60aaa22dc43946576aba4245855bf07d20d4c4b87420273a4e1c96714efe42bdfc416f7487c287718c96ea327b1f5989b772104ae90b8b1a32e43217a5d97bf08e5795e24b282debc92ca7648364b82feb93b8a1ddb5ae6785edea40eac5afc0cead79607ea03c73a78797030c3ecd353404eaf3a346caa27f20f3470afd95a8ba3f0963bab31312a831bea1994f41c141bb16bce175449bb8ee91db254f191bbf2f706cc1c"}]}}, @NL80211_ATTR_FTM_RESPONDER={0x1b8, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0xb1, 0x2, "9760e8b5cf2e5d9579f294e0b732b9c0651f156ddd8e028d98ba051986c5461702c7d83bfabc14c996a6ed68adab4a9a19c3c5986b42d539c0ca21fcd9d66bf5acc7c00d84e0da50ec75094ff507c3cea9e152585ba95f05d9452a8d836e12bfd3b2c11e997ea94ffe5494b9ff0ec29a2645c03dab294fe4ec68c9787873deac3d0b4c99a5e121c142ff78b79a8b48e000015bc0881fe98fac38228c1e60941b46f84fb8ad4c045f079dd8f337"}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0xc5, 0x3, "1a9ed035e620f6b0bf7a4c92e5f52b0b4311bf265485a9517ef8223889fae5ff58ef4745aff05ef7c6f7ea2837007a186f9001f32d7a2b0744f2e195d562c94008d564d511fd34537aa6cfca0f84b61c941fbfad8257eee0375714f529e8a4a1766850bb6fe428e82ed5808387c709de3bbbf0d16b0d53109abdc6cff9f2efd0f90dc81071bf8283cd06b6727f18abffb3a72d1d548af55d8f18eb4a04cbd9841e93c8e08d9bb935b433d61735579e501e3245752ae3355480141031e9b93bef98"}, @NL80211_FTM_RESP_ATTR_LCI={0x33, 0x2, "91629f959d6cbb408fdc7ac4ab045698ec1b4fbe7cad0c2d3d37d6c76cc0ab81833a25b387c9cbf8d263d55bd9a98a"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}]}, @NL80211_ATTR_IE_PROBE_RESP={0x42, 0x7f, [@ibss={0x6, 0x2, 0x4}, @ssid={0x0, 0x6, @default_ibss_ssid}, @ssid={0x0, 0x14, @random="26133859c5d87a268e3c7710d5f0213a5a3c4fcc"}, @link_id={0x65, 0x12, {@from_mac, @broadcast}}, @challenge={0x10, 0x1, 0x2f}, @channel_switch={0x25, 0x3, {0x0, 0x3c}}]}, @NL80211_ATTR_BEACON_TAIL={0x14b, 0xf, [@cf={0x4, 0x6, {0xfc, 0x2, 0xe036, 0x7}}, @erp={0x2a, 0x1, {0x1, 0x0, 0x1}}, @tim={0x5, 0x72, {0x40, 0xb4, 0x20, "85d75ac415070a8265dbe064ba7b116cebb90b6311d39df7b9734a3ab59e356148a598e264b48e544cf15d597f3099ede6ed967d556d0b2ead34d30ee4e84edb455b2733b09276e954f58d472e6b973f0eea2fb63080d8fb1f50fe6ccf7894c5f1bab42975cd3bc117b0175835b5d0"}}, @tim={0x5, 0xc6, {0x5, 0x44, 0x63, "2a9c7884d98eed5936488bdb2be95bfdb25938b50a00a0233e50ed053a79825c6e95035c1b7e4f45550d4a6a00d42f7d56e540462e84358321ab9b7d8c8eb746c10dded215bb13e529f53f1170ba81187b224cc9d96026a8350d7eb19a724f17d3b1b3517b2f5a9b105e7ce112d2c8fc95d4366a52758611d212e28a7c2fd7fac23dd1c424152ea57cc90c1aacbd8d5510e0e63beddd990ef5b73cb5c98f1a2d67bdb667f5a12895d68d763ecf8186062bf7a408604281685f6f6d6a745e8733a9c61e"}}]}, @NL80211_ATTR_BEACON_HEAD={0x3ff, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x2}, @device_a, @device_b, @initial, {0x2, 0xa}}, 0x7fffffffffffffff, @default, 0x8000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @val={0x6, 0x2, 0x2}, @void, @void, @val={0x2a, 0x1}, @val={0x3c, 0x4, {0x1, 0x3, 0x24, 0x6}}, @void, @val={0x72, 0x6}, @void, @val={0x76, 0x6, {0x54, 0x7f, 0x28, 0x1}}, [{0xdd, 0xf4, "235c9cba28aa473f380e0cefa048cecd5a327f500f3568241cf2730e68b30a134dbb83294a7338378c90f2853a314bec77370424fc031e11d0a4d3276ae5532c3f146db8dad520bb2192e461193f338eef7f164e20cdbe6cf5509929307a4e9c60c1b59dc856b034027abdb9833d18382008e3fcd96a222d03f26092c921c8db1e245701e47a1aff27eef373765a28978e50524a1e2333924e38c0e852bde4ac5950f1e5d77347da29eab94690442c361e7a6d3ad118ac24340002ed713bc355becac00cdf786702e6f87d1c5089d92d523047c2932914e282acf574c8527cd04ac2644303dfe91f2fed61a0ccde6df1b8ee0aac"}, {0xdd, 0x7e, "c557b72171fd59346fa4ed1cb1ec83a9e2885f975260a256634f1062d734ab07b6d53c6b276ef08d23daa59d7f253eb2be095c39a1939e362bbfe83810b802b9fa456b6307414e1675e1b74974de7d1c99331d6dad87908d8939bec6072a2aecf46dd4e4609073da44ed6c602920e8c953402bbbec9fb78b20ae424c31cd"}, {0xdd, 0x9e, "72d33fe1cfb2e294022d238fba67c0320eea2d4d6f632fbe935ad92090fea882bcde56e9149eeffe25048e22cca4295f89f340202ad326431bc6bb66435ea6f0a148695926f339af43c08fc255f49938a8e665693b3bedfcf3b44a295341a99c820f3523a5b2b6e1da046c0642972300b10ca43328dabee5d4991d821dd3db26a3a26fc1e4b422a203cb8c72c65ace9ed1b7e12ec8bbd8f0458116649816"}, {0xdd, 0xd3, "a64351b3f92f95f15e7a151edb6b9bfb32ab88ef6ec20d9f9b78d14bf24093ea497629598753b8b70c2360ef52bdf997dcdacfe27aaa78b767ba71210dac437b7b7d6fdfad8fb0e5d579efb2716a250379c485a85e4035776cbd705e890de646b43a239fa9cbd9db326c96a506d6dd0365587a131b9e59cc07511f93d87891d7e2119732c38f6fd20012b3f6b1b9ca15a03f6f28482cdf7e3b53afef8b111faf231c709a78708604d06483bcf493a96b5e02ec963e2b5ab827bd682c77229d2a08782f8b03170b204bb52ea46e40d08b7682ab"}, {0xdd, 0x6d, "45312d4f8a2a7629723871f4f6f10c861736c67ff4f665ae05105ce9000511eb401d71065e8a737e039fd3a5526a8b1096ba058ef5ddff19557b8dc394da8d2782c639210e3e33beee48f0a673db6b3e0dd003df7cb0351170814cea4208c7790ca7c2b8cfe3e21714b0b84dd7"}, {0xdd, 0x56, "4e66d418a6f4caef35a312cedd123611dec147acad9ab9283f616ea1327536821bdb14ece2af114717437f55cdc2d6d48ac2144224985e001c48666d99c929907f11157b309caf71abae448f9928c04dc92e99083ddd"}]}}, @NL80211_ATTR_BEACON_TAIL={0x7b, 0xf, [@perr={0x84, 0x75, {0x70, 0x7, [{{0x0, 0x1}, @broadcast, 0x78, @value, 0x2d}, {{}, @device_a, 0xd}, {{0x0, 0x1}, @device_b, 0x268, @value, 0x2a}, {{}, @broadcast, 0xffffffc0, @void, 0x7}, {{0x0, 0x1}, @device_a, 0x101, @value, 0x6}, {{}, @broadcast, 0x1000, @void, 0x31}, {{0x0, 0x1}, @broadcast, 0x6, @value=@broadcast, 0x3b}]}}]}]]}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CSA_IES={0x2c, 0xb9, 0x0, 0x1, [@NL80211_ATTR_CSA_C_OFF_BEACON={0xa, 0xba, [0xd01, 0x8000, 0xf001]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0xa, 0xbb, [0xaf, 0x5, 0x54]}, @NL80211_ATTR_CSA_C_OFF_PRESP={0xe, 0xbb, [0xfff, 0x1, 0x5, 0x85, 0x0]}, @beacon_params]}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CH_SWITCH_BLOCK_TX={0x4}, @NL80211_ATTR_CSA_IES={0x31c, 0xb9, 0x0, 0x1, [@beacon_params=[@NL80211_ATTR_BEACON_HEAD={0x26d, 0xe, {{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1}, {0x1}, @device_a, @device_a, @random="8faf65f3ff75", {0xc, 0x572}, @value=@ver_80211n={0x0, 0x7, 0x0, 0x3, 0x0, 0x3, 0x1, 0x0, 0x0, 0x1}}, 0x6, @random=0x5, 0x8, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @val={0x6, 0x2}, @val={0x5, 0x95, {0x0, 0x6a, 0x8, "e746c2ae4f664c4f1f9a7955be1660d475c1d62f6334c8e3a663a750ff34d35076562712e65c2d3690d6a02fd6bd6ad9cfd46be0efe315dbd4b087da25e27c63fe906c12fcf113e0e26b86eedf92bff2a8b51fbd70e551a1a497c1355e7216b0d5b8ca8c9f7a3e0ffec5913c5e4b9bfe47f59d131880d2fbdf44142596cf966de760267e4cfcb176ce22354f4fb558148e6a"}}, @val={0x25, 0x3, {0x1, 0xb0}}, @void, @val={0x3c, 0x4, {0x1, 0x5, 0xaf, 0x8}}, @val={0x2d, 0x1a, {0xc, 0x1, 0x3, 0x0, {0xb7, 0x6, 0x0, 0xc0, 0x0, 0x1, 0x1, 0x0, 0x1}, 0x0, 0x80, 0x8}}, @void, @void, @void, [{0xdd, 0x66, "98f51dedc26eee2104c5224d23540d35e64d7fa6492d854cc684a551c9a1bc45612042730608717ea69b02ff20607ff2edbfaf8239e4720eae2c2a768f7906e83619b94ddee6c80de453a1116d33213be6e39ecf9f24fa5073a829a8e1c76540a89c4c711d7b"}, {0xdd, 0x1b, "cf7e014cc47bc1f0fe32b7f08a37e7ce6b4df2eb02ab931f21ca9d"}, {0xdd, 0xd1, "1bf3dcdf4bfb6984cfdf0a9478359b375c8d5f6d2e928554b12edfb52c5a7d6377e009715bd36fd717df2ac9faf8770ed1372c23d4f667fdaac2ef7a761e9d4d0aa86714c715a6fec6cfd65ecf0e55062783631fc5a4af3c4d48e0edae1b587b127acfb92c8a01b66e65d34e45ae1a8046ee57c37116a37ad40ead98aa99448094a30452a5ab9a8d1eac92df87579794410e4198c283fd4f57842ecb00bae31d0df8e7af3afc424f1f3c49384810f458f95e1ce84daabed0bf992e323458bbcd9fa5e9ca7fead2efef9f1d607cfc2d4c14"}, {0xdd, 0xb, "1a672b4981105ba474fe03"}, {0xdd, 0x10, "1a0bd1f8e1fb38911ff3738404d76b3e"}]}}, @NL80211_ATTR_IE={0x56, 0x2a, [@link_id={0x65, 0x12, {@initial, @device_b, @device_b}}, @measure_req={0x26, 0x39, {0x1, 0xff, 0x8, "af70089efbd5476639dafc43c287c0b435a68088fe31f62f64f1f86a61049880b9f9f8a287dfcf039732ba7316271f670e10f8e0cd16"}}, @sec_chan_ofs={0x3e, 0x1, 0x3}]}], @NL80211_ATTR_CSA_C_OFF_BEACON={0xa, 0xba, [0x3, 0x6, 0x6]}, @beacon_params=[@NL80211_ATTR_IE_ASSOC_RESP={0x1a, 0x80, [@ibss={0x6, 0x2, 0x7}, @mic={0x8c, 0x10, {0xdc2, "66eca7d657da", @short="5cf0b17525a196d7"}}]}, @NL80211_ATTR_IE_ASSOC_RESP={0x25, 0x80, [@prep={0x83, 0x1f, {{}, 0x85, 0x98, @device_b, 0x4, @void, 0x5, 0xffff, @device_a, 0x80000001}}]}]]}]}, 0x1118}, 0x1, 0x0, 0x0, 0x4}, 0x4000091)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000001280)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f00000013c0)={&(0x7f0000001240)={0x10, 0x0, 0x0, 0x3000110}, 0xc, &(0x7f0000001380)={&(0x7f00000012c0)={0xa4, r1, 0x200, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x8, 0x3c}}}}, [@NL80211_ATTR_4ADDR={0x5}, @mon_options=[@NL80211_ATTR_MNTR_FLAGS={0x18, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}]}, @NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR={0xa, 0xe8, @device_b}, @NL80211_ATTR_MNTR_FLAGS={0x2c, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_COOK_FRAMES={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_CONTROL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x10, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_OTHER_BSS={0x4}, @NL80211_MNTR_FLAG_ACTIVE={0x4}]}, @NL80211_ATTR_MNTR_FLAGS={0x14, 0x17, 0x0, 0x1, [@NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_PLCPFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}, @NL80211_MNTR_FLAG_FCSFAIL={0x4}]}]]}, 0xa4}, 0x1, 0x0, 0x0, 0x48040}, 0x4008840)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000001440)=<r3=>0x0)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000001540)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001500)={&(0x7f0000001480)={0x44, r1, 0x20, 0x70bd26, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x5}, @void, @val={0xc, 0x99, {0x10001, 0x62}}}}, [@NL80211_ATTR_PID={0x8, 0x52, 0xffffffffffffffff}, @NL80211_ATTR_WDEV={0xc, 0x99, {0x9, 0x25}}, @NL80211_ATTR_PID={0x8, 0x52, r3}]}, 0x44}, 0x1, 0x0, 0x0, 0x20004085}, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
write$cgroup_pressure(r0, &(0x7f0000001580)={'full', 0x20, 0x1, 0x20, 0xc}, 0x2f)
setsockopt$bt_hci_HCI_TIME_STAMP(r0, 0x0, 0x3, &(0x7f00000015c0)=0x1, 0x4)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001680)={{r0, <r5=>0xffffffffffffffff}, &(0x7f0000001600), &(0x7f0000001640)=r0}, 0x20)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000019c0)={0x18, 0x23, &(0x7f00000016c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xce0b, 0x0, 0x0, 0x0, 0xf}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@jmp={0x5, 0x0, 0xd, 0x0, 0x2, 0x6, 0x10}, @map_val={0x18, 0x8, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x8000}, @ringbuf_query, @tail_call={{0x18, 0x2, 0x1, 0x0, r5}}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x1}, @ldst={0x0, 0x2, 0x1, 0x0, 0x3, 0xc}, @tail_call={{0x18, 0x2, 0x1, 0x0, r0}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001800)='syzkaller\x00', 0x2, 0x3d, &(0x7f0000001840)=""/61, 0x41000, 0x22, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001880)={0x3, 0x5}, 0x8, 0x10, &(0x7f00000018c0)={0x2, 0xf, 0x5, 0x4e}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000001900)=[r0, r0, r0, r0], &(0x7f0000001940)=[{0x5, 0x4}, {0x0, 0x3, 0x4, 0x5}, {0x3, 0x4, 0xc, 0xa}, {0x4, 0x4, 0x6, 0xb}, {0x0, 0x3, 0x8, 0xb}, {0x2, 0x4, 0x0, 0x9}], 0x10, 0x6, @void, @value}, 0x94)
r7 = socket$l2tp(0x2, 0x2, 0x73)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001ac0), r4)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r4, &(0x7f0000001b80)={&(0x7f0000001a80)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000001b40)={&(0x7f0000001b00)={0x14, r8, 0x200, 0x70bd2b, 0x25dfdbff, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4040000}, 0x40)
r9 = syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000001bc0)={r6, r0}, 0xc)
unshare(0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000001e40)={0x20, 0xd, &(0x7f0000001c40)=@raw=[@alu={0x4, 0x0, 0xd, 0x6, 0x5}, @call={0x85, 0x0, 0x0, 0x92}, @map_val={0x18, 0x7, 0x2, 0x0, r0}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x9}}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}], &(0x7f0000001cc0)='GPL\x00', 0x4, 0x59, &(0x7f0000001d00)=""/89, 0x41100, 0x5, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x6, &(0x7f0000001d80)=[r5, r6], &(0x7f0000001dc0)=[{0x5, 0x3, 0x0, 0x4}, {0x1, 0x1, 0xf, 0x7}, {0x0, 0x2, 0xd, 0x5}, {0x3, 0x4, 0xb, 0x7}, {0x5, 0x3, 0x6, 0xb}, {0x2, 0x3, 0x9, 0x9}], 0x10, 0x9, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001f40)={{r0}, &(0x7f0000001c00), &(0x7f0000001f00)=r10}, 0x20)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000002080)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000002040)={&(0x7f0000001fc0)={0x4c, r8, 0x1, 0x70bd2a, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x7}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x3b2}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xb}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3c5}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x401}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}]]}, 0x4c}, 0x1, 0x0, 0x0, 0x48810}, 0x4000010)
sendmsg$NL80211_CMD_DISCONNECT(r4, &(0x7f0000002180)={&(0x7f00000020c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000002140)={&(0x7f0000002100)={0x30, r8, 0x2, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xbc, 0x57}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1a}]}, 0x30}}, 0x20000000)
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000021c0)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x400, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5, 0x2, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000022c0)={{r11}, &(0x7f0000002240), &(0x7f0000002280)}, 0x20)
r12 = socket$nl_audit(0x10, 0x3, 0x9)
sendto(r12, &(0x7f0000002300)="fe6ef2c5263e96813eed61a5112e2547e63e2a4b2e40794c069d129e3a1a1dfdb07f08dc7041e3df24a6e510569b52ec0326dd5b6dcc5a90559bca2408ee69419437eeab4dea150569b27f2f373d471d7a08eef0ebe66a1d8a8a10ccfdabc22728c9c4f767d65c858c14aadac6d349def95ab4f7bd5ee2957c889d23bc236973411a6bcbbc02fa0394e23e2a2f0f6a988e7cbcf343ac46a948b1aa", 0x9b, 0x0, &(0x7f00000023c0)=@phonet={0x23, 0x2, 0x8c, 0x2}, 0x80)
ioctl$SIOCAX25ADDFWD(r9, 0x89ea, &(0x7f0000002440)={@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}})
getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000002480)={<r13=>0x0, 0xfff8, 0xf10a, 0x9, 0x5, 0x2}, &(0x7f00000024c0)=0x14)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000002500)={r13, @in6={{0xa, 0x4e24, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x79cb}}, 0x10, 0x4, 0x9, 0x9, 0x30, 0x1, 0x8}, 0x9c)
setsockopt$sock_timeval(r7, 0x1, 0x43, &(0x7f00000025c0), 0x10)

258.122223ms ago: executing program 1 (id=1786):
r0 = socket$inet6(0xa, 0x5, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r1, &(0x7f0000000940)={0x28, 0x0, 0x0, @local}, 0x10)
close(0x3)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
listen(r0, 0xe9c)

183.945522ms ago: executing program 0 (id=1787):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x12, 0xc, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000001000000000000008500000011000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003900000095"], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0xa, '\x00', 0x0, @cgroup_sock_addr=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, @void, @value}, 0x94)

183.06414ms ago: executing program 3 (id=1788):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3c0200001400010000ffea0010000000e0000001000000000000000000000000ac1414bb00000000000000000000000000000000ffff00000a0080"], 0x23c}}, 0x0)

182.379726ms ago: executing program 4 (id=1789):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000005140)={0x54, r3, 0x1, 0x80000000, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2000000000000000}, @NBD_ATTR_SOCKETS={0x34, 0x7, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r0}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r1}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r1}}, {0xc, 0x1, 0x0, 0x1, {0x8, 0x1, r1}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4081}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[], 0x5c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140056fd3370cd497514181a3d5c00001000010000000000000000000000000a2800000008000000000000005e1affd5020000000900010073797a310000000008010240000000032c000000030a01030000e6ff00eaff00020000000900010073797a3000d4a1350b847059c6fc92b47136e00af70acf49cbeb76579b4e707790db92c797fdd7821c3bcf205603e1754366af76556627060a3b7d2e275de99fc291fe8519f243a7b300b7010d8ed8439cda196bf82f974d605aadf2e32d017c287c9bc766ea765e00"/215], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="1400d7141000010000000000000000000000000a7c000000060a0b04000000000000000002000000500004802c0001800b000100736f636b657400001c000280f7ff02400000000b0800014000000003080003000000008920000180080001006475700014000280050001400000000e08000240000000020900010073797a30000000000900020073797a32000000001400000011"], 0xa4}}, 0x0)

75.292817ms ago: executing program 1 (id=1790):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x2, 0xfffffffd}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000180)={'vcan0\x00', <r3=>0x0})
connect$can_j1939(r2, &(0x7f0000000200)={0x1d, r3, 0x0, {0x1}}, 0x18)
bind$tipc(r1, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x3, 0x5, &(0x7f00000005c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0xe2}, [@call={0x85, 0x0, 0x0, 0x13}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bind$tipc(r0, 0x0, 0x0)

74.906876ms ago: executing program 3 (id=1791):
sendmsg$TIPC_NL_KEY_FLUSH(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000002c0)={0x14, 0x0, 0x2, 0x70bd26, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000060)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000040), 0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000080)={<r3=>0x0, 0x9, 0x10}, &(0x7f00000000c0)=0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000300)={r3, @in={{0x2, 0x4e23, @rand_addr=0x64010102}}, 0xb73, 0xc}, 0x90)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYRESHEX=r1, @ANYRES64=r1, @ANYRES8=0x0, @ANYRES8=0x0, @ANYBLOB="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", @ANYRES8], 0x1c}, 0x1, 0x0, 0x0, 0x804}, 0x0)
write$tun(r0, &(0x7f0000000280)={@val={0x0, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x6, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x0, 0x0, 0x0, 0x4, {[@window={0xa, 0x3}, @timestamp={0x5, 0x2}, @generic={0x0, 0x2, "d58838068b91"}]}}}}}}, 0x4e)
r4 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000140)={0x42, 0xf5, 0x1}, 0x10)
bind$tipc(r4, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0xfffffffd}}, 0x10)

74.560466ms ago: executing program 0 (id=1792):
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r0, &(0x7f0000000040), 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x780, 0x1d0, 0x5c8, 0x0, 0x5c8, 0x0, 0x6b0, 0x6b0, 0x6b0, 0x6b0, 0x6b0, 0x6, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @private0, [], [0xffffff00, 0x0, 0x0, 0x1f9814788dbf7ab2], 'veth1\x00', 'syz_tun\x00'}, 0x11e, 0xa8, 0x1d0, 0x1f000000, {0x0, 0x7}}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'unconfined\x00'}}}, {{@ipv6={@loopback, @dev, [], [], 'batadv_slave_0\x00', 'ip6gretap0\x00', {}, {}, 0x2b}, 0x0, 0x1e0, 0x208, 0x7400, {}, [@common=@rt={{0x138}, {0x0, [0x0, 0x5], 0x0, 0x0, 0x0, [@dev, @private2={0xfc, 0x2, '\x00', 0x1}, @remote, @private2, @private1, @dev, @dev={0xfe, 0x80, '\x00', 0x34}, @mcast2, @local, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private0, @loopback, @mcast1, @private1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}}]}, @unspec=@CHECKSUM={0x28}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@ipv6header={{0x28}, {0x81, 0x10, 0x1}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x68}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@common=@inet=@socket3={{0x28}, 0x2}]}, @inet=@TOS={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@mcast2}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x7e0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x62040200)
socket$rxrpc(0x21, 0x2, 0xa)
socket$kcm(0x2, 0x1000000000000002, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000c40)={r1, 0x0, 0x0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="b400000000000000731132000000000016640000000001009500740000000000ba56e23690a87d00935e6c02bdc1aa666714e5893645da93e92b81970ec7"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x21)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000600)=ANY=[@ANYBLOB="3800000400000000000000000000000002009000fc00000900200000714c096d020400001400048010000880070001800600010000010000"], 0x38}}, 0x0)
r4 = socket(0x10, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, @mcast2, @mcast2={0xff, 0x3}, 0x0, 0x0, 0xfffffffe, 0xffffffff}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="40000000190001090000000000000000021800000000fd010000000008000100ac141400080005000a0101020c00168008020000000000020600150002"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x40)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYRES32=r2], 0x238}, 0x1, 0x0, 0x0, 0x4001}, 0x4040000)
close(r5)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

0s ago: executing program 1 (id=1793):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x50, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0xfffffffffffffff7, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}, {0x20, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x5, 0x1, 0x1, 0x0, 0xe}, @NFTA_DUP_SREG_DEV={0x8, 0x2, 0x1, 0x0, 0x2}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xa4}, 0x1, 0xfff5}, 0x0)

kernel console output (not intermixed with test programs):

0x240
[  149.259865][ T7527]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  149.259892][ T7527]  ? rcu_is_watching+0x15/0xb0
[  149.259930][ T7527]  ? do_syscall_64+0xbe/0x3b0
[  149.259954][ T7527]  do_syscall_64+0xfa/0x3b0
[  149.259990][ T7527]  ? lockdep_hardirqs_on+0x9c/0x150
[  149.260022][ T7527]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.260043][ T7527]  ? clear_bhb_loop+0x60/0xb0
[  149.260069][ T7527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.260089][ T7527] RIP: 0033:0x7fc79ab8e929
[  149.260108][ T7527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.260125][ T7527] RSP: 002b:00007fc79b937038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  149.260147][ T7527] RAX: ffffffffffffffda RBX: 00007fc79adb5fa0 RCX: 00007fc79ab8e929
[  149.260169][ T7527] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  149.260183][ T7527] RBP: 00007fc79b937090 R08: 0000000000000000 R09: 0000000000000000
[  149.260195][ T7527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  149.260207][ T7527] R13: 0000000000000000 R14: 00007fc79adb5fa0 R15: 00007ffe88c67cb8
[  149.260240][ T7527]  </TASK>
[  149.632690][ T7537] FAULT_INJECTION: forcing a failure.
[  149.632690][ T7537] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.685837][ T7537] CPU: 0 UID: 0 PID: 7537 Comm: syz.2.468 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  149.685867][ T7537] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.685879][ T7537] Call Trace:
[  149.685888][ T7537]  <TASK>
[  149.685897][ T7537]  dump_stack_lvl+0x189/0x250
[  149.685935][ T7537]  ? __pfx____ratelimit+0x10/0x10
[  149.685968][ T7537]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.686000][ T7537]  ? __pfx__printk+0x10/0x10
[  149.686023][ T7537]  ? __might_fault+0xb0/0x130
[  149.686055][ T7537]  should_fail_ex+0x414/0x560
[  149.686088][ T7537]  _copy_from_user+0x2d/0xb0
[  149.686137][ T7537]  ___sys_sendmsg+0x158/0x2a0
[  149.686166][ T7537]  ? __pfx____sys_sendmsg+0x10/0x10
[  149.686227][ T7537]  ? __fget_files+0x2a/0x420
[  149.686248][ T7537]  ? __fget_files+0x3a0/0x420
[  149.686280][ T7537]  __x64_sys_sendmsg+0x19b/0x260
[  149.686309][ T7537]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  149.686344][ T7537]  ? __pfx_ksys_write+0x10/0x10
[  149.686360][ T7537]  ? rcu_is_watching+0x15/0xb0
[  149.686395][ T7537]  ? do_syscall_64+0xbe/0x3b0
[  149.686418][ T7537]  do_syscall_64+0xfa/0x3b0
[  149.686435][ T7537]  ? lockdep_hardirqs_on+0x9c/0x150
[  149.686464][ T7537]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.686483][ T7537]  ? clear_bhb_loop+0x60/0xb0
[  149.686507][ T7537]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.686525][ T7537] RIP: 0033:0x7f76f878e929
[  149.686542][ T7537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.686558][ T7537] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.686578][ T7537] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  149.686592][ T7537] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  149.686604][ T7537] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  149.686615][ T7537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.686626][ T7537] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  149.686655][ T7537]  </TASK>
[  149.911657][ T7542] pimreg: entered allmulticast mode
[  149.919655][ T7538] pimreg: left allmulticast mode
[  150.973858][ T7572] FAULT_INJECTION: forcing a failure.
[  150.973858][ T7572] name failslab, interval 1, probability 0, space 0, times 0
[  150.997947][ T7572] CPU: 0 UID: 0 PID: 7572 Comm: syz.4.481 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  150.997973][ T7572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  150.997983][ T7572] Call Trace:
[  150.997991][ T7572]  <TASK>
[  150.997998][ T7572]  dump_stack_lvl+0x189/0x250
[  150.998033][ T7572]  ? __pfx____ratelimit+0x10/0x10
[  150.998063][ T7572]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.998091][ T7572]  ? __pfx__printk+0x10/0x10
[  150.998124][ T7572]  should_fail_ex+0x414/0x560
[  150.998156][ T7572]  should_failslab+0xa8/0x100
[  150.998180][ T7572]  __kmalloc_cache_noprof+0x70/0x3d0
[  150.998199][ T7572]  ? sctp_add_bind_addr+0x8c/0x370
[  150.998225][ T7572]  sctp_add_bind_addr+0x8c/0x370
[  150.998248][ T7572]  sctp_copy_local_addr_list+0x30b/0x4e0
[  150.998272][ T7572]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  150.998288][ T7572]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  150.998307][ T7572]  ? sctp_v6_is_any+0x64/0x80
[  150.998327][ T7572]  ? sctp_copy_one_addr+0x93/0x360
[  150.998347][ T7572]  sctp_bind_addr_copy+0xb3/0x3c0
[  150.998365][ T7572]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  150.998395][ T7572]  sctp_connect_new_asoc+0x2e0/0x690
[  150.998421][ T7572]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  150.998445][ T7572]  ? __local_bh_enable_ip+0x12d/0x1c0
[  150.998483][ T7572]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  150.998507][ T7572]  ? security_sctp_bind_connect+0x7e/0x2e0
[  150.998529][ T7572]  sctp_sendmsg+0x155c/0x2810
[  150.998562][ T7572]  ? __pfx_sctp_sendmsg+0x10/0x10
[  150.998588][ T7572]  ? aa_sk_perm+0x81e/0x950
[  150.998613][ T7572]  ? __pfx_aa_sk_perm+0x10/0x10
[  150.998640][ T7572]  ? sock_rps_record_flow+0x19/0x410
[  150.998661][ T7572]  ? inet_sendmsg+0x2f4/0x370
[  150.998682][ T7572]  __sock_sendmsg+0x19c/0x270
[  150.998702][ T7572]  ____sys_sendmsg+0x52d/0x830
[  150.998727][ T7572]  ? __pfx_____sys_sendmsg+0x10/0x10
[  150.998757][ T7572]  ? import_iovec+0x74/0xa0
[  150.998788][ T7572]  ___sys_sendmsg+0x21f/0x2a0
[  150.998812][ T7572]  ? __pfx____sys_sendmsg+0x10/0x10
[  150.998871][ T7572]  ? __fget_files+0x2a/0x420
[  150.998890][ T7572]  ? __fget_files+0x3a0/0x420
[  150.998919][ T7572]  __sys_sendmmsg+0x227/0x430
[  150.998949][ T7572]  ? __pfx___sys_sendmmsg+0x10/0x10
[  150.998969][ T7572]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  150.999011][ T7572]  ? ksys_write+0x22a/0x250
[  150.999031][ T7572]  ? __pfx_ksys_write+0x10/0x10
[  150.999045][ T7572]  ? rcu_is_watching+0x15/0xb0
[  150.999079][ T7572]  __x64_sys_sendmmsg+0xa0/0xc0
[  150.999106][ T7572]  do_syscall_64+0xfa/0x3b0
[  150.999124][ T7572]  ? lockdep_hardirqs_on+0x9c/0x150
[  150.999155][ T7572]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.999175][ T7572]  ? clear_bhb_loop+0x60/0xb0
[  150.999200][ T7572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.999219][ T7572] RIP: 0033:0x7fc79ab8e929
[  150.999236][ T7572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.999253][ T7572] RSP: 002b:00007fc79b937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  150.999274][ T7572] RAX: ffffffffffffffda RBX: 00007fc79adb5fa0 RCX: 00007fc79ab8e929
[  150.999289][ T7572] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000003
[  150.999301][ T7572] RBP: 00007fc79b937090 R08: 0000000000000000 R09: 0000000000000000
[  150.999313][ T7572] R10: 0000000000006001 R11: 0000000000000246 R12: 0000000000000002
[  150.999324][ T7572] R13: 0000000000000000 R14: 00007fc79adb5fa0 R15: 00007ffe88c67cb8
[  150.999351][ T7572]  </TASK>
[  151.039371][ T7571] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  151.087359][ T7576] 8021q: adding VLAN 0 to HW filter on device bond1
[  151.114702][   T24] IPVS: starting estimator thread 0...
[  151.409775][ T7587] validate_nla: 1 callbacks suppressed
[  151.409795][ T7587] netlink: 'syz.3.484': attribute type 3 has an invalid length.
[  151.520355][ T7580] IPVS: using max 25 ests per chain, 60000 per kthread
[  151.684037][ T7606] netlink: 'syz.3.492': attribute type 16 has an invalid length.
[  151.705128][ T7606] netlink: 'syz.3.492': attribute type 17 has an invalid length.
[  151.794649][ T7611] __nla_validate_parse: 5 callbacks suppressed
[  151.794668][ T7611] netlink: 24 bytes leftover after parsing attributes in process `syz.2.494'.
[  151.806044][ T7606] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.813373][ T7611] netlink: 'syz.2.494': attribute type 1 has an invalid length.
[  151.842225][ T7606] 8021q: adding VLAN 0 to HW filter on device team0
[  151.871901][ T7606] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  151.893848][ T7615] netlink: 8 bytes leftover after parsing attributes in process `syz.0.496'.
[  152.047739][ T7622] IPv6: Can't replace route, no match found
[  152.152225][ T7622] netlink: 24 bytes leftover after parsing attributes in process `syz.3.499'.
[  152.645066][ T7638] netlink: 20 bytes leftover after parsing attributes in process `syz.1.506'.
[  152.746967][ T7642] xt_HMARK: spi-set and port-set can't be combined
[  153.069015][ T7653] block nbd0: server does not support multiple connections per device.
[  153.080295][ T7653] block nbd0: shutting down sockets
[  153.203947][ T7665] gretap0: entered promiscuous mode
[  153.215405][ T7665] vlan2: entered promiscuous mode
[  153.233918][ T7673] netlink: 788 bytes leftover after parsing attributes in process `syz.1.519'.
[  153.417656][ T7680] netlink: 'syz.2.523': attribute type 1 has an invalid length.
[  153.478018][ T7680] netlink: 212 bytes leftover after parsing attributes in process `syz.2.523'.
[  153.501433][ T7684] syzkaller1: entered promiscuous mode
[  153.512203][ T7684] syzkaller1: entered allmulticast mode
[  153.529826][ T7680] netlink: 'syz.2.523': attribute type 1 has an invalid length.
[  154.194649][ T7700] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.286731][ T7699] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.384393][ T7695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  154.447511][ T7713] netlink: 788 bytes leftover after parsing attributes in process `syz.3.536'.
[  154.466957][ T7711] netlink: 20 bytes leftover after parsing attributes in process `syz.4.533'.
[  154.614321][ T7720] netlink: 52 bytes leftover after parsing attributes in process `syz.4.539'.
[  154.665465][ T7725] netlink: 8 bytes leftover after parsing attributes in process `syz.0.537'.
[  154.764520][   T30] audit: type=1107 audit(1749838753.997:12): pid=7717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  155.173041][ T7742] macsec0: entered promiscuous mode
[  155.199273][ T7742] macsec1: entered allmulticast mode
[  155.214110][ T7742] macsec0: entered allmulticast mode
[  155.233113][ T7742] veth1_macvtap: entered allmulticast mode
[  155.467563][ T7766] openvswitch: netlink: Missing key (keys=40, expected=80)
[  155.862624][ T7783] bridge0: entered promiscuous mode
[  155.875686][ T7783] bridge0: left promiscuous mode
[  155.933760][   T30] audit: type=1107 audit(1749838755.167:13): pid=7778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  156.181870][ T7799] FAULT_INJECTION: forcing a failure.
[  156.181870][ T7799] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.228911][ T7799] CPU: 0 UID: 0 PID: 7799 Comm: syz.2.558 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  156.228941][ T7799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.228953][ T7799] Call Trace:
[  156.228960][ T7799]  <TASK>
[  156.228970][ T7799]  dump_stack_lvl+0x189/0x250
[  156.229006][ T7799]  ? __pfx____ratelimit+0x10/0x10
[  156.229038][ T7799]  ? __pfx_dump_stack_lvl+0x10/0x10
[  156.229069][ T7799]  ? __pfx__printk+0x10/0x10
[  156.229105][ T7799]  should_fail_ex+0x414/0x560
[  156.229138][ T7799]  _copy_to_user+0x31/0xb0
[  156.229163][ T7799]  simple_read_from_buffer+0xe1/0x170
[  156.229190][ T7799]  proc_fail_nth_read+0x1df/0x250
[  156.229220][ T7799]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  156.229248][ T7799]  ? rw_verify_area+0x258/0x650
[  156.229280][ T7799]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  156.229307][ T7799]  vfs_read+0x200/0x980
[  156.229345][ T7799]  ? __pfx___mutex_lock+0x10/0x10
[  156.229366][ T7799]  ? __pfx_vfs_read+0x10/0x10
[  156.229400][ T7799]  ? __fget_files+0x2a/0x420
[  156.229427][ T7799]  ? __fget_files+0x3a0/0x420
[  156.229446][ T7799]  ? __fget_files+0x2a/0x420
[  156.229479][ T7799]  ksys_read+0x145/0x250
[  156.229501][ T7799]  ? __pfx_ksys_read+0x10/0x10
[  156.229530][ T7799]  ? rcu_is_watching+0x15/0xb0
[  156.229568][ T7799]  ? do_syscall_64+0xbe/0x3b0
[  156.229603][ T7799]  do_syscall_64+0xfa/0x3b0
[  156.229621][ T7799]  ? lockdep_hardirqs_on+0x9c/0x150
[  156.229669][ T7799]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.229702][ T7799]  ? clear_bhb_loop+0x60/0xb0
[  156.229728][ T7799]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  156.229748][ T7799] RIP: 0033:0x7f76f878d33c
[  156.229766][ T7799] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  156.229795][ T7799] RSP: 002b:00007f76f968a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  156.229815][ T7799] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878d33c
[  156.229829][ T7799] RDX: 000000000000000f RSI: 00007f76f968a0a0 RDI: 0000000000000011
[  156.229840][ T7799] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  156.229851][ T7799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  156.229862][ T7799] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  156.229892][ T7799]  </TASK>
[  156.805468][ T7824] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  156.912912][ T7824] __nla_validate_parse: 5 callbacks suppressed
[  156.912932][ T7824] netlink: 16 bytes leftover after parsing attributes in process `syz.1.566'.
[  156.957822][ T7824] openvswitch: netlink: Missing key (keys=40, expected=80)
[  157.407507][ T7856] netlink: 8 bytes leftover after parsing attributes in process `syz.3.573'.
[  157.543195][   T30] audit: type=1107 audit(1749838756.777:14): pid=7846 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  158.232196][ T7885] netlink: 24 bytes leftover after parsing attributes in process `syz.1.579'.
[  158.267134][ T7888] netlink: 788 bytes leftover after parsing attributes in process `syz.3.581'.
[  158.382085][ T7895] netlink: 8 bytes leftover after parsing attributes in process `syz.1.584'.
[  158.703505][ T7912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.587'.
[  158.757456][   T30] audit: type=1107 audit(1749838757.987:15): pid=7905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  159.370865][ T7948] netlink: 12 bytes leftover after parsing attributes in process `syz.0.598'.
[  159.379940][ T7948] netlink: 8 bytes leftover after parsing attributes in process `syz.0.598'.
[  159.468354][ T7947] vlan3: entered promiscuous mode
[  159.477379][ T7952] netlink: 16 bytes leftover after parsing attributes in process `syz.1.600'.
[  159.487131][ T7952] openvswitch: netlink: EtherType 0 is less than min 600
[  159.534567][ T7954] macvtap1: entered promiscuous mode
[  159.540864][ T7954] hsr0: entered promiscuous mode
[  159.546226][ T7954] macvtap1: entered allmulticast mode
[  159.552389][ T7954] hsr0: entered allmulticast mode
[  159.562686][ T7954] hsr_slave_0: entered allmulticast mode
[  159.568497][ T7954] hsr_slave_1: entered allmulticast mode
[  159.591586][ T7954] hsr0: left allmulticast mode
[  159.596421][ T7954] hsr_slave_0: left allmulticast mode
[  159.629009][ T7954] hsr_slave_1: left allmulticast mode
[  159.634479][ T7954] hsr0: left promiscuous mode
[  159.652859][   T30] audit: type=1107 audit(1749838758.887:16): pid=7945 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  159.733991][ T7967] netlink: 8 bytes leftover after parsing attributes in process `syz.1.603'.
[  159.781518][   T30] audit: type=1107 audit(1749838759.017:17): pid=7962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  160.706254][   T30] audit: type=1107 audit(1749838759.937:18): pid=8009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  160.828679][   T30] audit: type=1107 audit(1749838760.057:19): pid=8010 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  161.027417][ T8028] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 3, id = 0
[  161.499243][ T8039] block nbd0: server does not support multiple connections per device.
[  161.508430][ T8039] block nbd0: shutting down sockets
[  161.542433][ T8053] FAULT_INJECTION: forcing a failure.
[  161.542433][ T8053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  161.566440][ T8053] CPU: 1 UID: 0 PID: 8053 Comm: syz.4.629 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  161.566471][ T8053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  161.566484][ T8053] Call Trace:
[  161.566492][ T8053]  <TASK>
[  161.566501][ T8053]  dump_stack_lvl+0x189/0x250
[  161.566539][ T8053]  ? __pfx____ratelimit+0x10/0x10
[  161.566572][ T8053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  161.566604][ T8053]  ? __pfx__printk+0x10/0x10
[  161.566628][ T8053]  ? __might_fault+0xb0/0x130
[  161.566659][ T8053]  should_fail_ex+0x414/0x560
[  161.566691][ T8053]  _copy_from_user+0x2d/0xb0
[  161.566714][ T8053]  ___sys_recvmsg+0x12e/0x510
[  161.566749][ T8053]  ? __pfx____sys_recvmsg+0x10/0x10
[  161.566811][ T8053]  ? __might_fault+0xb0/0x130
[  161.566834][ T8053]  do_recvmmsg+0x307/0x770
[  161.566873][ T8053]  ? __pfx_do_recvmmsg+0x10/0x10
[  161.566915][ T8053]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  161.566955][ T8053]  __x64_sys_recvmmsg+0x190/0x240
[  161.566987][ T8053]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  161.567014][ T8053]  ? rcu_is_watching+0x15/0xb0
[  161.567052][ T8053]  ? do_syscall_64+0xbe/0x3b0
[  161.567076][ T8053]  do_syscall_64+0xfa/0x3b0
[  161.567094][ T8053]  ? lockdep_hardirqs_on+0x9c/0x150
[  161.567125][ T8053]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.567145][ T8053]  ? clear_bhb_loop+0x60/0xb0
[  161.567171][ T8053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  161.567190][ T8053] RIP: 0033:0x7fc79ab8e929
[  161.567208][ T8053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  161.567225][ T8053] RSP: 002b:00007fc79b937038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  161.567246][ T8053] RAX: ffffffffffffffda RBX: 00007fc79adb5fa0 RCX: 00007fc79ab8e929
[  161.567261][ T8053] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  161.567284][ T8053] RBP: 00007fc79b937090 R08: 0000000000000000 R09: 0000000000000000
[  161.567297][ T8053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  161.567308][ T8053] R13: 0000000000000000 R14: 00007fc79adb5fa0 R15: 00007ffe88c67cb8
[  161.567339][ T8053]  </TASK>
[  161.841579][ T8056] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  161.972324][ T8062] netem: incorrect gi model size
[  161.977532][ T8062] netem: change failed
[  162.581264][ T8089] can: request_module (can-proto-0) failed.
[  162.826534][ T8104] __nla_validate_parse: 87 callbacks suppressed
[  162.826555][ T8104] netlink: 16 bytes leftover after parsing attributes in process `syz.0.646'.
[  163.041201][ T8115] netlink: 36 bytes leftover after parsing attributes in process `syz.4.647'.
[  163.114017][ T8112] vlan0: default FDB implementation only supports local addresses
[  163.254882][ T8109] netlink: 40 bytes leftover after parsing attributes in process `syz.2.645'.
[  163.539629][ T8137] netlink: 788 bytes leftover after parsing attributes in process `syz.0.657'.
[  163.760181][ T8145] FAULT_INJECTION: forcing a failure.
[  163.760181][ T8145] name failslab, interval 1, probability 0, space 0, times 0
[  163.819056][ T8145] CPU: 0 UID: 0 PID: 8145 Comm: syz.2.659 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  163.819088][ T8145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.819100][ T8145] Call Trace:
[  163.819109][ T8145]  <TASK>
[  163.819118][ T8145]  dump_stack_lvl+0x189/0x250
[  163.819157][ T8145]  ? __pfx____ratelimit+0x10/0x10
[  163.819192][ T8145]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.819225][ T8145]  ? __pfx__printk+0x10/0x10
[  163.819266][ T8145]  should_fail_ex+0x414/0x560
[  163.819300][ T8145]  should_failslab+0xa8/0x100
[  163.819325][ T8145]  __kmalloc_cache_noprof+0x70/0x3d0
[  163.819346][ T8145]  ? sctp_add_bind_addr+0x8c/0x370
[  163.819374][ T8145]  sctp_add_bind_addr+0x8c/0x370
[  163.819402][ T8145]  sctp_copy_local_addr_list+0x30b/0x4e0
[  163.819429][ T8145]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  163.819452][ T8145]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  163.819477][ T8145]  ? sctp_v6_is_any+0x64/0x80
[  163.819503][ T8145]  ? sctp_copy_one_addr+0x93/0x360
[  163.819541][ T8145]  sctp_bind_addr_copy+0xb3/0x3c0
[  163.819564][ T8145]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  163.819600][ T8145]  sctp_connect_new_asoc+0x2e0/0x690
[  163.819632][ T8145]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  163.819657][ T8145]  ? __local_bh_enable_ip+0x12d/0x1c0
[  163.819697][ T8145]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  163.819725][ T8145]  ? security_sctp_bind_connect+0x7e/0x2e0
[  163.819752][ T8145]  sctp_sendmsg+0x155c/0x2810
[  163.819793][ T8145]  ? __pfx_sctp_sendmsg+0x10/0x10
[  163.819824][ T8145]  ? aa_sk_perm+0x81e/0x950
[  163.819854][ T8145]  ? __pfx_aa_sk_perm+0x10/0x10
[  163.819893][ T8145]  ? sock_rps_record_flow+0x19/0x410
[  163.819918][ T8145]  ? inet_sendmsg+0x2f4/0x370
[  163.819943][ T8145]  __sock_sendmsg+0x19c/0x270
[  163.819967][ T8145]  ____sys_sendmsg+0x52d/0x830
[  163.820001][ T8145]  ? __pfx_____sys_sendmsg+0x10/0x10
[  163.820040][ T8145]  ? import_iovec+0x74/0xa0
[  163.820065][ T8145]  ___sys_sendmsg+0x21f/0x2a0
[  163.820094][ T8145]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.820163][ T8145]  ? __fget_files+0x2a/0x420
[  163.820185][ T8145]  ? __fget_files+0x3a0/0x420
[  163.820220][ T8145]  __sys_sendmmsg+0x227/0x430
[  163.820255][ T8145]  ? __pfx___sys_sendmmsg+0x10/0x10
[  163.820280][ T8145]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  163.820331][ T8145]  ? ksys_write+0x22a/0x250
[  163.820353][ T8145]  ? __pfx_ksys_write+0x10/0x10
[  163.820369][ T8145]  ? rcu_is_watching+0x15/0xb0
[  163.820409][ T8145]  __x64_sys_sendmmsg+0xa0/0xc0
[  163.820439][ T8145]  do_syscall_64+0xfa/0x3b0
[  163.820458][ T8145]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.820489][ T8145]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.820509][ T8145]  ? clear_bhb_loop+0x60/0xb0
[  163.820534][ T8145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.820554][ T8145] RIP: 0033:0x7f76f878e929
[  163.820572][ T8145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.820589][ T8145] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  163.820611][ T8145] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  163.820626][ T8145] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000003
[  163.820646][ T8145] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  163.820658][ T8145] R10: 0000000000006001 R11: 0000000000000246 R12: 0000000000000002
[  163.820670][ T8145] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  163.820703][ T8145]  </TASK>
[  164.300371][ T8156] netlink: 8 bytes leftover after parsing attributes in process `syz.2.663'.
[  164.312542][ T8157] netlink: 144 bytes leftover after parsing attributes in process `syz.3.660'.
[  164.338614][ T8158] openvswitch: netlink: Actions may not be safe on all matching packets
[  164.638106][ T8124] tipc: Started in network mode
[  164.643251][ T8124] tipc: Node identity aaaaaaaaaa3a, cluster identity 4711
[  164.651671][ T8124] tipc: Enabled bearer <eth:macvtap0>, priority 10
[  165.107943][ T8189] netlink: 8 bytes leftover after parsing attributes in process `syz.4.671'.
[  165.366850][ T8205] netlink: 788 bytes leftover after parsing attributes in process `syz.4.676'.
[  165.769295][   T10] tipc: Node number set to 9480874
[  165.998120][ T8236] netlink: 8 bytes leftover after parsing attributes in process `syz.2.682'.
[  166.028286][ T8236] netlink: 4 bytes leftover after parsing attributes in process `syz.2.682'.
[  166.954757][ T8277] netlink: 'syz.2.699': attribute type 2 has an invalid length.
[  166.997026][ T8277] þ: entered promiscuous mode
[  167.602463][ T8296] pim6reg: entered allmulticast mode
[  167.909465][   T30] audit: type=1107 audit(1749838767.137:20): pid=8299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  168.289169][  T918] IPVS: starting estimator thread 0...
[  168.399212][ T8331] IPVS: using max 27 ests per chain, 64800 per kthread
[  168.551530][ T8343] __nla_validate_parse: 1 callbacks suppressed
[  168.551551][ T8343] netlink: 8 bytes leftover after parsing attributes in process `syz.4.721'.
[  168.885391][ T8362] netlink: 16 bytes leftover after parsing attributes in process `syz.4.728'.
[  168.919096][ T8362] openvswitch: netlink: Missing key (keys=40, expected=80)
[  169.004713][ T8365] xt_HMARK: spi-set and port-set can't be combined
[  169.148552][ T8373] nft_compat: unsupported protocol 0
[  169.207536][ T8377] netlink: 12 bytes leftover after parsing attributes in process `syz.4.734'.
[  169.229391][ T8377] netlink: 8 bytes leftover after parsing attributes in process `syz.4.734'.
[  169.783539][ T8406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.748'.
[  169.844590][ T8410] netdevsim netdevsim3: Direct firmware load for ..€ failed with error -2
[  169.844722][ T8414] 8021q: VLANs not supported on ip6tnl0
[  169.874340][ T8410] netdevsim netdevsim3: Falling back to sysfs fallback for: ..€
[  169.921125][ T8417] netlink: 388 bytes leftover after parsing attributes in process `syz.0.752'.
[  169.947442][ T8417] xt_TCPMSS: Only works on TCP SYN packets
[  169.969985][ T8414] 8021q: VLANs not supported on ip6tnl0
[  169.975823][ T8414] 8021q: VLANs not supported on ip6tnl0
[  169.982034][ T8414] 8021q: VLANs not supported on ip6tnl0
[  169.987920][ T8414] 8021q: VLANs not supported on ip6tnl0
[  169.994561][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.000587][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.006359][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.013040][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.025166][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.061432][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.097646][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.104832][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.119869][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.127324][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.135549][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.142699][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.150406][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.156231][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.162517][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.168444][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.178108][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.184540][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.191239][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.217610][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.236352][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.242727][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.262692][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.286201][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.326880][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.350672][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.377776][ T8414] 8021q: VLANs not supported on ip6tnl0
[  170.406411][ T8414] 8021q: VLANs not supported on ip6tnl0
[  171.273808][ T8458] netlink: 'syz.1.764': attribute type 3 has an invalid length.
[  171.305165][ T8454] sctp: [Deprecated]: syz.1.764 (pid 8454) Use of int in maxseg socket option.
[  171.305165][ T8454] Use struct sctp_assoc_value instead
[  171.460567][ T8467] netlink: 'syz.0.769': attribute type 10 has an invalid length.
[  171.504779][ T8474] FAULT_INJECTION: forcing a failure.
[  171.504779][ T8474] name failslab, interval 1, probability 0, space 0, times 0
[  171.517914][ T8474] CPU: 0 UID: 0 PID: 8474 Comm: syz.1.771 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  171.517943][ T8474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  171.517956][ T8474] Call Trace:
[  171.517964][ T8474]  <TASK>
[  171.517972][ T8474]  dump_stack_lvl+0x189/0x250
[  171.518009][ T8474]  ? __pfx____ratelimit+0x10/0x10
[  171.518040][ T8474]  ? __pfx_dump_stack_lvl+0x10/0x10
[  171.518071][ T8474]  ? __pfx__printk+0x10/0x10
[  171.518099][ T8474]  ? ref_tracker_alloc+0x318/0x460
[  171.518130][ T8474]  should_fail_ex+0x414/0x560
[  171.518161][ T8474]  should_failslab+0xa8/0x100
[  171.518184][ T8474]  kmem_cache_alloc_noprof+0x73/0x3c0
[  171.518213][ T8474]  ? skb_clone+0x212/0x3a0
[  171.518245][ T8474]  skb_clone+0x212/0x3a0
[  171.518275][ T8474]  __netlink_deliver_tap+0x404/0x850
[  171.518318][ T8474]  ? netlink_deliver_tap+0x2e/0x1b0
[  171.518344][ T8474]  netlink_deliver_tap+0x19c/0x1b0
[  171.518368][ T8474]  netlink_unicast+0x72f/0x8d0
[  171.518401][ T8474]  netlink_sendmsg+0x805/0xb30
[  171.518435][ T8474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.518463][ T8474]  ? aa_sock_msg_perm+0x94/0x160
[  171.518490][ T8474]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  171.518515][ T8474]  ? __pfx_netlink_sendmsg+0x10/0x10
[  171.518541][ T8474]  __sock_sendmsg+0x219/0x270
[  171.518562][ T8474]  ____sys_sendmsg+0x52d/0x830
[  171.518594][ T8474]  ? __pfx_____sys_sendmsg+0x10/0x10
[  171.518629][ T8474]  ? import_iovec+0x74/0xa0
[  171.518653][ T8474]  ___sys_sendmsg+0x21f/0x2a0
[  171.518681][ T8474]  ? __pfx____sys_sendmsg+0x10/0x10
[  171.518745][ T8474]  ? __fget_files+0x2a/0x420
[  171.518765][ T8474]  ? __fget_files+0x3a0/0x420
[  171.518798][ T8474]  __sys_sendmmsg+0x227/0x430
[  171.518835][ T8474]  ? __pfx___sys_sendmmsg+0x10/0x10
[  171.518857][ T8474]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  171.518904][ T8474]  ? ksys_write+0x22a/0x250
[  171.518925][ T8474]  ? __pfx_ksys_write+0x10/0x10
[  171.518940][ T8474]  ? rcu_is_watching+0x15/0xb0
[  171.518977][ T8474]  __x64_sys_sendmmsg+0xa0/0xc0
[  171.519006][ T8474]  do_syscall_64+0xfa/0x3b0
[  171.519024][ T8474]  ? lockdep_hardirqs_on+0x9c/0x150
[  171.519052][ T8474]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.519071][ T8474]  ? clear_bhb_loop+0x60/0xb0
[  171.519095][ T8474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.519113][ T8474] RIP: 0033:0x7fdf0d58e929
[  171.519130][ T8474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  171.519147][ T8474] RSP: 002b:00007fdf0e41e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  171.519168][ T8474] RAX: ffffffffffffffda RBX: 00007fdf0d7b5fa0 RCX: 00007fdf0d58e929
[  171.519182][ T8474] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  171.519196][ T8474] RBP: 00007fdf0e41e090 R08: 0000000000000000 R09: 0000000000000000
[  171.519207][ T8474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  171.519219][ T8474] R13: 0000000000000000 R14: 00007fdf0d7b5fa0 R15: 00007ffdbe9cada8
[  171.519250][ T8474]  </TASK>
[  171.823879][ T8476] netlink: 1041 bytes leftover after parsing attributes in process `syz.0.769'.
[  171.862295][ T8465] mac80211_hwsim hwsim10 wlan0: left allmulticast mode
[  171.869902][ T8465] macsec1: left allmulticast mode
[  172.033799][ T8479] netlink: 124 bytes leftover after parsing attributes in process `syz.2.772'.
[  172.331603][ T8496] dummy0: entered promiscuous mode
[  172.337282][ T8496] vlan3: entered promiscuous mode
[  172.571218][ T8509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.786'.
[  172.651329][ T8513] netlink: 92 bytes leftover after parsing attributes in process `syz.3.788'.
[  173.197424][ T8543] unsupported nla_type 52263
[  174.141573][ T8587] __nla_validate_parse: 1 callbacks suppressed
[  174.141593][ T8587] netlink: 99 bytes leftover after parsing attributes in process `syz.1.812'.
[  174.670383][ T8617] netlink: 'syz.0.825': attribute type 10 has an invalid length.
[  174.711283][ T8624] netlink: 16 bytes leftover after parsing attributes in process `syz.1.827'.
[  174.729828][ T8624] openvswitch: netlink: Missing key (keys=40, expected=80)
[  174.754329][ T8627] netem: incorrect gi model size
[  174.760252][ T8627] netem: change failed
[  174.804837][ T8629] netem: incorrect gi model size
[  174.810780][ T8629] netem: change failed
[  175.032076][ T8640] netlink: 64 bytes leftover after parsing attributes in process `syz.0.835'.
[  175.238252][ T8655] netlink: 16 bytes leftover after parsing attributes in process `syz.2.840'.
[  175.251783][ T8655] openvswitch: netlink: Missing key (keys=40, expected=80)
[  175.556154][ T8665] netlink: 4 bytes leftover after parsing attributes in process `syz.3.843'.
[  175.608134][ T8669] FAULT_INJECTION: forcing a failure.
[  175.608134][ T8669] name failslab, interval 1, probability 0, space 0, times 0
[  175.645225][ T5948] IPVS: starting estimator thread 0...
[  175.659249][ T8669] CPU: 1 UID: 0 PID: 8669 Comm: syz.2.846 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  175.659289][ T8669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  175.659302][ T8669] Call Trace:
[  175.659311][ T8669]  <TASK>
[  175.659320][ T8669]  dump_stack_lvl+0x189/0x250
[  175.659359][ T8669]  ? __pfx____ratelimit+0x10/0x10
[  175.659391][ T8669]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.659425][ T8669]  ? __pfx__printk+0x10/0x10
[  175.659465][ T8669]  should_fail_ex+0x414/0x560
[  175.659498][ T8669]  should_failslab+0xa8/0x100
[  175.659523][ T8669]  __kmalloc_cache_noprof+0x70/0x3d0
[  175.659543][ T8669]  ? sctp_add_bind_addr+0x8c/0x370
[  175.659569][ T8669]  sctp_add_bind_addr+0x8c/0x370
[  175.659596][ T8669]  sctp_copy_local_addr_list+0x30b/0x4e0
[  175.659622][ T8669]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  175.659663][ T8669]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  175.659688][ T8669]  ? sctp_v6_is_any+0x64/0x80
[  175.659715][ T8669]  ? sctp_copy_one_addr+0x93/0x360
[  175.659742][ T8669]  sctp_bind_addr_copy+0xb3/0x3c0
[  175.659768][ T8669]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  175.659805][ T8669]  sctp_connect_new_asoc+0x2e0/0x690
[  175.659839][ T8669]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  175.659866][ T8669]  ? __local_bh_enable_ip+0x12d/0x1c0
[  175.659903][ T8669]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  175.659932][ T8669]  ? security_sctp_bind_connect+0x7e/0x2e0
[  175.659959][ T8669]  sctp_sendmsg+0x155c/0x2810
[  175.660002][ T8669]  ? __pfx_sctp_sendmsg+0x10/0x10
[  175.660035][ T8669]  ? aa_sk_perm+0x81e/0x950
[  175.660067][ T8669]  ? __pfx_aa_sk_perm+0x10/0x10
[  175.660097][ T8669]  ? sock_rps_record_flow+0x19/0x410
[  175.660122][ T8669]  ? inet_sendmsg+0x2f4/0x370
[  175.660146][ T8669]  __sock_sendmsg+0x19c/0x270
[  175.660171][ T8669]  ____sys_sendmsg+0x52d/0x830
[  175.660208][ T8669]  ? __pfx_____sys_sendmsg+0x10/0x10
[  175.660249][ T8669]  ? import_iovec+0x74/0xa0
[  175.660286][ T8669]  ___sys_sendmsg+0x21f/0x2a0
[  175.660318][ T8669]  ? __pfx____sys_sendmsg+0x10/0x10
[  175.660390][ T8669]  ? __fget_files+0x2a/0x420
[  175.660414][ T8669]  ? __fget_files+0x3a0/0x420
[  175.660450][ T8669]  __sys_sendmmsg+0x227/0x430
[  175.660485][ T8669]  ? __pfx___sys_sendmmsg+0x10/0x10
[  175.660511][ T8669]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  175.660565][ T8669]  ? ksys_write+0x22a/0x250
[  175.660589][ T8669]  ? __pfx_ksys_write+0x10/0x10
[  175.660614][ T8669]  __x64_sys_sendmmsg+0xa0/0xc0
[  175.660643][ T8669]  do_syscall_64+0xfa/0x3b0
[  175.660662][ T8669]  ? lockdep_hardirqs_on+0x9c/0x150
[  175.660695][ T8669]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.660716][ T8669]  ? clear_bhb_loop+0x60/0xb0
[  175.660743][ T8669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.660764][ T8669] RIP: 0033:0x7f76f878e929
[  175.660783][ T8669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.660802][ T8669] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  175.660825][ T8669] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  175.660841][ T8669] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000003
[  175.660854][ T8669] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  175.660867][ T8669] R10: 0000000000006001 R11: 0000000000000246 R12: 0000000000000002
[  175.660880][ T8669] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  175.660916][ T8669]  </TASK>
[  175.663637][ T8670] netlink: 'syz.3.843': attribute type 1 has an invalid length.
[  175.767219][ T8665] vlan2: left allmulticast mode
[  175.832427][ T8670] netlink: 'syz.3.843': attribute type 1 has an invalid length.
[  175.920119][ T8672] IPVS: using max 26 ests per chain, 62400 per kthread
[  175.979097][ T8665] bond0: left allmulticast mode
[  176.060756][ T8665] bridge0: port 1(vlan2) entered disabled state
[  176.214205][ T8671] batadv_slave_1: entered promiscuous mode
[  176.330033][ T8683] netlink: 144 bytes leftover after parsing attributes in process `syz.0.850'.
[  176.491122][ T8689] netlink: 16 bytes leftover after parsing attributes in process `syz.0.852'.
[  176.519426][ T8689] openvswitch: netlink: Missing key (keys=40, expected=80)
[  176.841363][ T8711] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  177.122838][ T8719] netlink: 24 bytes leftover after parsing attributes in process `syz.0.862'.
[  177.150894][ T8719] netlink: 'syz.0.862': attribute type 1 has an invalid length.
[  177.479527][ T8734] netlink: 16 bytes leftover after parsing attributes in process `syz.3.867'.
[  177.491163][ T8734] openvswitch: netlink: Missing key (keys=40, expected=80)
[  177.783741][ T8755] bridge0: port 4(veth0_to_bridge) entered blocking state
[  177.791582][ T8755] bridge0: port 4(veth0_to_bridge) entered disabled state
[  177.799776][ T8755] veth0_to_bridge: entered allmulticast mode
[  177.808675][ T8755] veth0_to_bridge: entered promiscuous mode
[  177.816491][ T8755] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  177.830962][ T8755] bridge0: port 4(veth0_to_bridge) entered blocking state
[  177.838272][ T8755] bridge0: port 4(veth0_to_bridge) entered forwarding state
[  178.096950][ T8773] netlink: 'syz.1.879': attribute type 1 has an invalid length.
[  178.236440][ T8773] bond2: entered promiscuous mode
[  178.242118][ T8773] 8021q: adding VLAN 0 to HW filter on device bond2
[  178.266542][ T8786] netlink: 16 bytes leftover after parsing attributes in process `syz.2.881'.
[  178.304922][ T8786] openvswitch: netlink: Missing key (keys=40, expected=80)
[  178.359195][ T8778] 8021q: adding VLAN 0 to HW filter on device bond3
[  178.375444][ T8778] bond2: (slave bond3): making interface the new active one
[  178.383492][ T8778] bond3: entered promiscuous mode
[  178.390133][ T8778] bond2: (slave bond3): Enslaving as an active interface with an up link
[  178.763532][ T8807] xt_HMARK: spi-set and port-set can't be combined
[  178.941075][ T8815] openvswitch: netlink: Missing key (keys=40, expected=80)
[  179.216151][ T8837] __nla_validate_parse: 2 callbacks suppressed
[  179.216170][ T8837] netlink: 16 bytes leftover after parsing attributes in process `syz.2.899'.
[  179.323484][ T8841] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551615)
[  179.371699][ T8841] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535
[  179.516736][ T8859] netlink: 168 bytes leftover after parsing attributes in process `syz.4.911'.
[  179.596640][ T8864] netlink: 492 bytes leftover after parsing attributes in process `syz.1.912'.
[  179.620219][ T8866] netlink: 16 bytes leftover after parsing attributes in process `syz.4.913'.
[  179.630361][ T8866] openvswitch: netlink: Missing key (keys=40, expected=80)
[  179.925141][ T8882] syzkaller0: entered promiscuous mode
[  179.931795][ T8882] syzkaller0: entered allmulticast mode
[  180.030183][ T8889] netlink: 4 bytes leftover after parsing attributes in process `syz.2.922'.
[  180.319125][ T8899] netlink: 16 bytes leftover after parsing attributes in process `syz.2.925'.
[  180.328468][ T8899] openvswitch: netlink: Missing key (keys=40, expected=80)
[  181.802852][ T8928] netlink: 8 bytes leftover after parsing attributes in process `syz.1.933'.
[  181.858287][   T30] audit: type=1107 audit(1749838781.087:21): pid=8922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  181.966005][ T8932] netlink: 16 bytes leftover after parsing attributes in process `syz.2.938'.
[  182.000987][ T8932] openvswitch: netlink: Missing key (keys=40, expected=80)
[  182.127216][ T8939] netlink: 168 bytes leftover after parsing attributes in process `syz.4.939'.
[  182.393116][ T8959] netlink: 8 bytes leftover after parsing attributes in process `syz.1.948'.
[  182.636791][ T8969] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  182.662506][ T8972] FAULT_INJECTION: forcing a failure.
[  182.662506][ T8972] name failslab, interval 1, probability 0, space 0, times 0
[  182.676697][ T8972] CPU: 0 UID: 0 PID: 8972 Comm: syz.1.953 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  182.676726][ T8972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.676736][ T8972] Call Trace:
[  182.676743][ T8972]  <TASK>
[  182.676750][ T8972]  dump_stack_lvl+0x189/0x250
[  182.676792][ T8972]  ? __pfx____ratelimit+0x10/0x10
[  182.676821][ T8972]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.676847][ T8972]  ? __pfx__printk+0x10/0x10
[  182.676870][ T8972]  ? __pfx___might_resched+0x10/0x10
[  182.676898][ T8972]  ? fs_reclaim_acquire+0x7d/0x100
[  182.676925][ T8972]  should_fail_ex+0x414/0x560
[  182.676952][ T8972]  should_failslab+0xa8/0x100
[  182.676971][ T8972]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  182.676989][ T8972]  ? __alloc_skb+0x112/0x2d0
[  182.677011][ T8972]  __alloc_skb+0x112/0x2d0
[  182.677034][ T8972]  netlink_ack+0x146/0xa50
[  182.677052][ T8972]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  182.677069][ T8972]  ? ref_tracker_free+0x63a/0x7d0
[  182.677091][ T8972]  ? __copy_skb_header+0xa7/0x550
[  182.677116][ T8972]  ? __pfx_ref_tracker_free+0x10/0x10
[  182.677139][ T8972]  ? __skb_clone+0x63/0x7a0
[  182.677167][ T8972]  netlink_rcv_skb+0x28c/0x470
[  182.677188][ T8972]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  182.677207][ T8972]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  182.677238][ T8972]  ? netlink_deliver_tap+0x2e/0x1b0
[  182.677276][ T8972]  ? netlink_deliver_tap+0x2e/0x1b0
[  182.677301][ T8972]  netlink_unicast+0x758/0x8d0
[  182.677328][ T8972]  netlink_sendmsg+0x805/0xb30
[  182.677357][ T8972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.677381][ T8972]  ? aa_sock_msg_perm+0x94/0x160
[  182.677406][ T8972]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  182.677428][ T8972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  182.677450][ T8972]  __sock_sendmsg+0x219/0x270
[  182.677469][ T8972]  ____sys_sendmsg+0x52d/0x830
[  182.677497][ T8972]  ? __pfx_____sys_sendmsg+0x10/0x10
[  182.677527][ T8972]  ? import_iovec+0x74/0xa0
[  182.677554][ T8972]  ___sys_sendmsg+0x21f/0x2a0
[  182.677579][ T8972]  ? __pfx____sys_sendmsg+0x10/0x10
[  182.677632][ T8972]  ? __fget_files+0x2a/0x420
[  182.677651][ T8972]  ? __fget_files+0x3a0/0x420
[  182.677679][ T8972]  __sys_sendmmsg+0x227/0x430
[  182.677706][ T8972]  ? __pfx___sys_sendmmsg+0x10/0x10
[  182.677727][ T8972]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  182.677767][ T8972]  ? ksys_write+0x22a/0x250
[  182.677784][ T8972]  ? __pfx_ksys_write+0x10/0x10
[  182.677799][ T8972]  ? rcu_is_watching+0x15/0xb0
[  182.677833][ T8972]  __x64_sys_sendmmsg+0xa0/0xc0
[  182.677858][ T8972]  do_syscall_64+0xfa/0x3b0
[  182.677873][ T8972]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.677900][ T8972]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.677917][ T8972]  ? clear_bhb_loop+0x60/0xb0
[  182.677938][ T8972]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.677955][ T8972] RIP: 0033:0x7fdf0d58e929
[  182.677974][ T8972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.677989][ T8972] RSP: 002b:00007fdf0e41e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  182.678014][ T8972] RAX: ffffffffffffffda RBX: 00007fdf0d7b5fa0 RCX: 00007fdf0d58e929
[  182.678027][ T8972] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  182.678039][ T8972] RBP: 00007fdf0e41e090 R08: 0000000000000000 R09: 0000000000000000
[  182.678049][ T8972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.678060][ T8972] R13: 0000000000000000 R14: 00007fdf0d7b5fa0 R15: 00007ffdbe9cada8
[  182.678085][ T8972]  </TASK>
[  183.088771][ T8976] openvswitch: netlink: Missing key (keys=40, expected=80)
[  183.192390][   T30] audit: type=1107 audit(1749838782.377:22): pid=8970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  183.558456][ T8991] openvswitch: netlink: EtherType 0 is less than min 600
[  183.791132][ T9007] openvswitch: netlink: Missing key (keys=40, expected=80)
[  184.147998][   T30] audit: type=1107 audit(1749838783.367:23): pid=9014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  184.696048][ T9040] Bluetooth: MGMT ver 1.23
[  185.129316][ T9053] FAULT_INJECTION: forcing a failure.
[  185.129316][ T9053] name failslab, interval 1, probability 0, space 0, times 0
[  185.179897][ T9053] CPU: 1 UID: 0 PID: 9053 Comm: syz.2.980 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  185.179928][ T9053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.179941][ T9053] Call Trace:
[  185.179949][ T9053]  <TASK>
[  185.179959][ T9053]  dump_stack_lvl+0x189/0x250
[  185.179996][ T9053]  ? __pfx____ratelimit+0x10/0x10
[  185.180030][ T9053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.180063][ T9053]  ? __pfx__printk+0x10/0x10
[  185.180102][ T9053]  should_fail_ex+0x414/0x560
[  185.180135][ T9053]  should_failslab+0xa8/0x100
[  185.180161][ T9053]  __kmalloc_cache_noprof+0x70/0x3d0
[  185.180182][ T9053]  ? nfc_genl_rcv_nl_event+0xa8/0x2b0
[  185.180210][ T9053]  ? blocking_notifier_call_chain+0x54/0x90
[  185.180236][ T9053]  nfc_genl_rcv_nl_event+0xa8/0x2b0
[  185.180270][ T9053]  notifier_call_chain+0x1b3/0x3e0
[  185.180312][ T9053]  blocking_notifier_call_chain+0x6a/0x90
[  185.180336][ T9053]  netlink_release+0x1259/0x1b10
[  185.180369][ T9053]  ? netlink_release+0x108/0x1b10
[  185.180399][ T9053]  ? __pfx_netlink_release+0x10/0x10
[  185.180426][ T9053]  ? down_write+0x162/0x1f0
[  185.180448][ T9053]  ? __pfx_down_write+0x10/0x10
[  185.180471][ T9053]  ? ksys_write+0x1cb/0x250
[  185.180488][ T9053]  ? locks_remove_posix+0x381/0x650
[  185.180528][ T9053]  sock_close+0xc0/0x240
[  185.180561][ T9053]  ? __pfx_sock_close+0x10/0x10
[  185.180593][ T9053]  __fput+0x44c/0xa70
[  185.180641][ T9053]  fput_close_sync+0x119/0x200
[  185.180672][ T9053]  ? __pfx_fput_close_sync+0x10/0x10
[  185.180715][ T9053]  __x64_sys_close+0x7f/0x110
[  185.180744][ T9053]  do_syscall_64+0xfa/0x3b0
[  185.180764][ T9053]  ? lockdep_hardirqs_on+0x9c/0x150
[  185.180807][ T9053]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.180829][ T9053]  ? clear_bhb_loop+0x60/0xb0
[  185.180854][ T9053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.180874][ T9053] RIP: 0033:0x7f76f878e929
[  185.180896][ T9053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.180914][ T9053] RSP: 002b:00007f76f9669038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[  185.180936][ T9053] RAX: ffffffffffffffda RBX: 00007f76f89b6080 RCX: 00007f76f878e929
[  185.180952][ T9053] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  185.180963][ T9053] RBP: 00007f76f9669090 R08: 0000000000000000 R09: 0000000000000000
[  185.180976][ T9053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  185.180988][ T9053] R13: 0000000000000000 R14: 00007f76f89b6080 R15: 00007ffe41745f08
[  185.181021][ T9053]  </TASK>
[  185.513249][ T9066] __nla_validate_parse: 6 callbacks suppressed
[  185.513268][ T9066] netlink: 8 bytes leftover after parsing attributes in process `syz.0.984'.
[  185.549108][   T30] audit: type=1107 audit(1749838784.767:24): pid=9064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  185.605998][ T9068] gtp0: entered promiscuous mode
[  186.190168][ T9094] block nbd0: server does not support multiple connections per device.
[  186.201498][ T9094] block nbd0: shutting down sockets
[  186.452549][ T9122] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1002'.
[  186.561932][   T30] audit: type=1107 audit(1749838785.797:25): pid=9116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  186.827253][ T9143] FAULT_INJECTION: forcing a failure.
[  186.827253][ T9143] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  186.845524][ T9143] CPU: 0 UID: 0 PID: 9143 Comm: syz.0.1008 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  186.845553][ T9143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  186.845567][ T9143] Call Trace:
[  186.845575][ T9143]  <TASK>
[  186.845584][ T9143]  dump_stack_lvl+0x189/0x250
[  186.845621][ T9143]  ? __pfx____ratelimit+0x10/0x10
[  186.845654][ T9143]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.845686][ T9143]  ? __pfx__printk+0x10/0x10
[  186.845709][ T9143]  ? __might_fault+0xb0/0x130
[  186.845741][ T9143]  should_fail_ex+0x414/0x560
[  186.845774][ T9143]  _copy_from_iter+0x3f5/0x16f0
[  186.845811][ T9143]  ? rcu_is_watching+0x15/0xb0
[  186.845848][ T9143]  ? __pfx__copy_from_iter+0x10/0x10
[  186.845882][ T9143]  ? __build_skb_around+0x257/0x3e0
[  186.845910][ T9143]  ? netlink_sendmsg+0x642/0xb30
[  186.845933][ T9143]  ? skb_put+0x11b/0x210
[  186.845961][ T9143]  netlink_sendmsg+0x6b2/0xb30
[  186.845997][ T9143]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.846027][ T9143]  ? aa_sock_msg_perm+0x94/0x160
[  186.846056][ T9143]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  186.846082][ T9143]  ? __pfx_netlink_sendmsg+0x10/0x10
[  186.846109][ T9143]  __sock_sendmsg+0x219/0x270
[  186.846132][ T9143]  ____sys_sendmsg+0x505/0x830
[  186.846165][ T9143]  ? __pfx_____sys_sendmsg+0x10/0x10
[  186.846202][ T9143]  ? import_iovec+0x74/0xa0
[  186.846227][ T9143]  ___sys_sendmsg+0x21f/0x2a0
[  186.846257][ T9143]  ? __pfx____sys_sendmsg+0x10/0x10
[  186.846323][ T9143]  ? __fget_files+0x2a/0x420
[  186.846345][ T9143]  ? __fget_files+0x3a0/0x420
[  186.846387][ T9143]  __x64_sys_sendmsg+0x19b/0x260
[  186.846418][ T9143]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  186.846455][ T9143]  ? __pfx_ksys_write+0x10/0x10
[  186.846472][ T9143]  ? rcu_is_watching+0x15/0xb0
[  186.846508][ T9143]  ? do_syscall_64+0xbe/0x3b0
[  186.846533][ T9143]  do_syscall_64+0xfa/0x3b0
[  186.846551][ T9143]  ? lockdep_hardirqs_on+0x9c/0x150
[  186.846583][ T9143]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.846603][ T9143]  ? clear_bhb_loop+0x60/0xb0
[  186.846629][ T9143]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  186.846649][ T9143] RIP: 0033:0x7ffbc1d8e929
[  186.846668][ T9143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.846686][ T9143] RSP: 002b:00007ffbc2b9f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.846708][ T9143] RAX: ffffffffffffffda RBX: 00007ffbc1fb6080 RCX: 00007ffbc1d8e929
[  186.846723][ T9143] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  186.846735][ T9143] RBP: 00007ffbc2b9f090 R08: 0000000000000000 R09: 0000000000000000
[  186.846748][ T9143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.846760][ T9143] R13: 0000000000000000 R14: 00007ffbc1fb6080 R15: 00007ffed0bd5e78
[  186.846791][ T9143]  </TASK>
[  187.318128][ T9151] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1016'.
[  187.378543][ T9154] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1014'.
[  187.391517][ T9157] netem: incorrect gi model size
[  187.396754][ T9157] netem: change failed
[  187.478142][ T9161] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1017'.
[  187.568432][   T30] audit: type=1107 audit(1749838786.797:26): pid=9158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  187.745862][ T9171] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1020'.
[  187.914748][   T30] audit: type=1107 audit(1749838787.147:27): pid=9166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  187.957315][ T9184] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1028'.
[  187.974147][ T9184] netlink: 'syz.3.1028': attribute type 1 has an invalid length.
[  188.465443][ T9208] netem: incorrect gi model size
[  188.487774][ T9208] netem: change failed
[  188.966724][ T9227] netlink: 388 bytes leftover after parsing attributes in process `syz.1.1044'.
[  189.353076][ T9251] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1049'.
[  189.554291][ T9262] netlink: 'syz.3.1054': attribute type 11 has an invalid length.
[  189.594859][ T9262] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1054'.
[  189.699268][ T9267] xt_HMARK: spi-set and port-set can't be combined
[  190.230508][ T9292] 8021q: VLANs not supported on ip6_vti0
[  190.242186][ T9294] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  190.277461][ T9292] syzkaller1: entered promiscuous mode
[  190.297773][ T9292] syzkaller1: entered allmulticast mode
[  190.416861][ T9303] netem: incorrect gi model size
[  190.422202][ T9303] netem: change failed
[  192.468644][ T9339] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1082'.
[  193.139832][ T9338] netdevsim netdevsim0 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  193.148460][ T9338] netdevsim netdevsim0 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  193.156912][ T9338] netdevsim netdevsim0 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  193.165717][ T9338] netdevsim netdevsim0 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  193.173128][ T9344] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1086'.
[  193.210850][ T9344] openvswitch: netlink: Missing key (keys=40, expected=80)
[  193.218667][ T9342] netem: incorrect gi model size
[  193.226238][ T9342] netem: change failed
[  193.303079][ T9348] pim6reg1: entered promiscuous mode
[  193.308576][ T9348] pim6reg1: entered allmulticast mode
[  193.543110][ T9354] ip6gre1: entered allmulticast mode
[  193.563360][ T9348] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1087'.
[  193.745720][ T9355] 8021q: adding VLAN 0 to HW filter on device bond1
[  193.783378][ T9355] team0: Port device bond1 added
[  194.188183][ T9386] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1097'.
[  194.344741][ T1306] ieee802154 phy0 wpan0: encryption failed: -22
[  194.353927][ T1306] ieee802154 phy1 wpan1: encryption failed: -22
[  194.379767][ T9395] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1098'.
[  194.695314][ T9404] netem: incorrect gi model size
[  194.701547][ T9404] netem: change failed
[  194.806067][ T9406] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1101'.
[  194.815601][ T9406] openvswitch: netlink: Missing key (keys=40, expected=80)
[  194.994349][ T9410] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1104'.
[  195.041680][ T9410] openvswitch: netlink: nsh attr 0 has unexpected len 7 expected 0
[  195.070223][ T9410] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  195.098769][ T9414] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1102'.
[  195.133744][ T9414] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1102'.
[  195.151123][ T9416] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1105'.
[  195.215173][ T9413] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[  195.368719][ T9422] openvswitch: netlink: Missing key (keys=40, expected=80)
[  195.715473][ T9438] openvswitch: netlink: Missing key (keys=40, expected=80)
[  196.440433][ T9479] openvswitch: netlink: Missing key (keys=40, expected=80)
[  196.676252][ T9492] FAULT_INJECTION: forcing a failure.
[  196.676252][ T9492] name failslab, interval 1, probability 0, space 0, times 0
[  196.724061][ T9492] CPU: 0 UID: 0 PID: 9492 Comm: syz.1.1134 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  196.724092][ T9492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  196.724106][ T9492] Call Trace:
[  196.724114][ T9492]  <TASK>
[  196.724124][ T9492]  dump_stack_lvl+0x189/0x250
[  196.724162][ T9492]  ? __pfx____ratelimit+0x10/0x10
[  196.724202][ T9492]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.724237][ T9492]  ? __pfx__printk+0x10/0x10
[  196.724264][ T9492]  ? __pfx___might_resched+0x10/0x10
[  196.724297][ T9492]  ? fs_reclaim_acquire+0x7d/0x100
[  196.724329][ T9492]  should_fail_ex+0x414/0x560
[  196.724364][ T9492]  should_failslab+0xa8/0x100
[  196.724390][ T9492]  __kmalloc_noprof+0xcb/0x4f0
[  196.724409][ T9492]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  196.724441][ T9492]  ? sock_kmalloc+0xd6/0x160
[  196.724477][ T9492]  sock_kmalloc+0xd6/0x160
[  196.724510][ T9492]  hash_recvmsg+0x1d4/0x840
[  196.724546][ T9492]  ? __pfx_hash_recvmsg+0x10/0x10
[  196.724576][ T9492]  sock_recvmsg_nosec+0x186/0x1c0
[  196.724603][ T9492]  ____sys_recvmsg+0x3aa/0x460
[  196.724639][ T9492]  ? __pfx_____sys_recvmsg+0x10/0x10
[  196.724696][ T9492]  ? import_iovec+0x74/0xa0
[  196.724724][ T9492]  ___sys_recvmsg+0x1b5/0x510
[  196.724759][ T9492]  ? __pfx____sys_recvmsg+0x10/0x10
[  196.724825][ T9492]  ? __might_fault+0xb0/0x130
[  196.724850][ T9492]  do_recvmmsg+0x307/0x770
[  196.724890][ T9492]  ? __pfx_do_recvmmsg+0x10/0x10
[  196.724933][ T9492]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  196.724975][ T9492]  __x64_sys_recvmmsg+0x190/0x240
[  196.725009][ T9492]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  196.725037][ T9492]  ? rcu_is_watching+0x15/0xb0
[  196.725076][ T9492]  ? do_syscall_64+0xbe/0x3b0
[  196.725102][ T9492]  do_syscall_64+0xfa/0x3b0
[  196.725121][ T9492]  ? lockdep_hardirqs_on+0x9c/0x150
[  196.725153][ T9492]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.725175][ T9492]  ? clear_bhb_loop+0x60/0xb0
[  196.725201][ T9492]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.725222][ T9492] RIP: 0033:0x7fdf0d58e929
[  196.725241][ T9492] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.725260][ T9492] RSP: 002b:00007fdf0e41e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  196.725282][ T9492] RAX: ffffffffffffffda RBX: 00007fdf0d7b5fa0 RCX: 00007fdf0d58e929
[  196.725299][ T9492] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  196.725312][ T9492] RBP: 00007fdf0e41e090 R08: 0000000000000000 R09: 0000000000000000
[  196.725325][ T9492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  196.725337][ T9492] R13: 0000000000000000 R14: 00007fdf0d7b5fa0 R15: 00007ffdbe9cada8
[  196.725371][ T9492]  </TASK>
[  197.517862][ T9526] __nla_validate_parse: 5 callbacks suppressed
[  197.517884][ T9526] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1143'.
[  197.534471][ T9526] openvswitch: netlink: Missing key (keys=40, expected=80)
[  197.653751][ T9518] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.672853][ T9518] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.694943][ T9518] bond0 (unregistering): Released all slaves
[  197.778956][   T30] audit: type=1107 audit(1749838796.987:28): pid=9530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='1Žd»¥]:xJÐP@�cd$JnyãÒOº^øDØ#�z'
[  197.969075][ T9538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1150'.
[  198.511294][ T9573] FAULT_INJECTION: forcing a failure.
[  198.511294][ T9573] name failslab, interval 1, probability 0, space 0, times 0
[  198.529385][ T9573] CPU: 1 UID: 0 PID: 9573 Comm: syz.4.1164 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  198.529418][ T9573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.529432][ T9573] Call Trace:
[  198.529441][ T9573]  <TASK>
[  198.529451][ T9573]  dump_stack_lvl+0x189/0x250
[  198.529492][ T9573]  ? __pfx____ratelimit+0x10/0x10
[  198.529527][ T9573]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.529562][ T9573]  ? __pfx__printk+0x10/0x10
[  198.529589][ T9573]  ? __pfx___might_resched+0x10/0x10
[  198.529624][ T9573]  ? fs_reclaim_acquire+0x7d/0x100
[  198.529657][ T9573]  should_fail_ex+0x414/0x560
[  198.529701][ T9573]  ? nf_hook_entries_grow+0x27c/0x710
[  198.529726][ T9573]  should_failslab+0xa8/0x100
[  198.529751][ T9573]  __kvmalloc_node_noprof+0x161/0x5f0
[  198.529776][ T9573]  ? nf_hook_entries_grow+0x27c/0x710
[  198.529800][ T9573]  ? __pfx___mutex_lock+0x10/0x10
[  198.529826][ T9573]  nf_hook_entries_grow+0x27c/0x710
[  198.529870][ T9573]  __nf_register_net_hook+0x2c9/0x930
[  198.529903][ T9573]  ? nft_pernet+0x23/0x240
[  198.529939][ T9573]  nf_register_net_hook+0x8a/0x190
[  198.529969][ T9573]  nf_tables_register_hook+0x216/0x440
[  198.530011][ T9573]  nf_tables_newchain+0x2469/0x2900
[  198.530061][ T9573]  ? __pfx_nf_tables_newchain+0x10/0x10
[  198.530134][ T9573]  ? nfnl_pernet+0x23/0x240
[  198.530181][ T9573]  ? __nla_parse+0x40/0x60
[  198.530219][ T9573]  nfnetlink_rcv+0x1132/0x2520
[  198.530291][ T9573]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  198.530341][ T9573]  ? __lock_acquire+0xab9/0xd20
[  198.530429][ T9573]  ? netlink_deliver_tap+0x2e/0x1b0
[  198.530457][ T9573]  ? netlink_deliver_tap+0x2e/0x1b0
[  198.530491][ T9573]  netlink_unicast+0x758/0x8d0
[  198.530529][ T9573]  netlink_sendmsg+0x805/0xb30
[  198.530569][ T9573]  ? __pfx_netlink_sendmsg+0x10/0x10
[  198.530602][ T9573]  ? aa_sock_msg_perm+0x94/0x160
[  198.530634][ T9573]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  198.530670][ T9573]  ? __pfx_netlink_sendmsg+0x10/0x10
[  198.530700][ T9573]  __sock_sendmsg+0x219/0x270
[  198.530727][ T9573]  ____sys_sendmsg+0x505/0x830
[  198.530763][ T9573]  ? __pfx_____sys_sendmsg+0x10/0x10
[  198.530805][ T9573]  ? import_iovec+0x74/0xa0
[  198.530833][ T9573]  ___sys_sendmsg+0x21f/0x2a0
[  198.530866][ T9573]  ? __pfx____sys_sendmsg+0x10/0x10
[  198.530941][ T9573]  ? __fget_files+0x2a/0x420
[  198.530965][ T9573]  ? __fget_files+0x3a0/0x420
[  198.531003][ T9573]  __x64_sys_sendmsg+0x19b/0x260
[  198.531037][ T9573]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  198.531079][ T9573]  ? __pfx_ksys_write+0x10/0x10
[  198.531097][ T9573]  ? rcu_is_watching+0x15/0xb0
[  198.531139][ T9573]  ? do_syscall_64+0xbe/0x3b0
[  198.531165][ T9573]  do_syscall_64+0xfa/0x3b0
[  198.531185][ T9573]  ? lockdep_hardirqs_on+0x9c/0x150
[  198.531218][ T9573]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.531241][ T9573]  ? clear_bhb_loop+0x60/0xb0
[  198.531268][ T9573]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.531290][ T9573] RIP: 0033:0x7fc79ab8e929
[  198.531309][ T9573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.531328][ T9573] RSP: 002b:00007fc79b937038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  198.531353][ T9573] RAX: ffffffffffffffda RBX: 00007fc79adb5fa0 RCX: 00007fc79ab8e929
[  198.531369][ T9573] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  198.531382][ T9573] RBP: 00007fc79b937090 R08: 0000000000000000 R09: 0000000000000000
[  198.531396][ T9573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  198.531409][ T9573] R13: 0000000000000000 R14: 00007fc79adb5fa0 R15: 00007ffe88c67cb8
[  198.531445][ T9573]  </TASK>
[  199.001204][ T9589] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1170'.
[  199.031964][ T9589] netlink: 'syz.3.1170': attribute type 1 has an invalid length.
[  199.157473][ T9596] FAULT_INJECTION: forcing a failure.
[  199.157473][ T9596] name failslab, interval 1, probability 0, space 0, times 0
[  199.171769][ T9596] CPU: 1 UID: 0 PID: 9596 Comm: syz.2.1173 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  199.171800][ T9596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  199.171814][ T9596] Call Trace:
[  199.171823][ T9596]  <TASK>
[  199.171832][ T9596]  dump_stack_lvl+0x189/0x250
[  199.171872][ T9596]  ? __pfx____ratelimit+0x10/0x10
[  199.171908][ T9596]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.171942][ T9596]  ? __pfx__printk+0x10/0x10
[  199.171984][ T9596]  should_fail_ex+0x414/0x560
[  199.172019][ T9596]  should_failslab+0xa8/0x100
[  199.172045][ T9596]  __kmalloc_cache_noprof+0x70/0x3d0
[  199.172067][ T9596]  ? sctp_add_bind_addr+0x8c/0x370
[  199.172094][ T9596]  sctp_add_bind_addr+0x8c/0x370
[  199.172121][ T9596]  sctp_copy_local_addr_list+0x30b/0x4e0
[  199.172150][ T9596]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  199.172174][ T9596]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  199.172201][ T9596]  ? sctp_v6_is_any+0x64/0x80
[  199.172229][ T9596]  ? sctp_copy_one_addr+0x93/0x360
[  199.172257][ T9596]  sctp_bind_addr_copy+0xb3/0x3c0
[  199.172281][ T9596]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  199.172320][ T9596]  sctp_connect_new_asoc+0x2e0/0x690
[  199.172354][ T9596]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  199.172382][ T9596]  ? __local_bh_enable_ip+0x12d/0x1c0
[  199.172425][ T9596]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  199.172455][ T9596]  ? security_sctp_bind_connect+0x7e/0x2e0
[  199.172484][ T9596]  sctp_sendmsg+0x155c/0x2810
[  199.172528][ T9596]  ? __pfx_sctp_sendmsg+0x10/0x10
[  199.172562][ T9596]  ? aa_sk_perm+0x81e/0x950
[  199.172593][ T9596]  ? __pfx_aa_sk_perm+0x10/0x10
[  199.172630][ T9596]  ? sock_rps_record_flow+0x19/0x410
[  199.172656][ T9596]  ? inet_sendmsg+0x2f4/0x370
[  199.172683][ T9596]  __sock_sendmsg+0x19c/0x270
[  199.172709][ T9596]  ____sys_sendmsg+0x52d/0x830
[  199.172744][ T9596]  ? __pfx_____sys_sendmsg+0x10/0x10
[  199.172783][ T9596]  ? import_iovec+0x74/0xa0
[  199.172811][ T9596]  ___sys_sendmsg+0x21f/0x2a0
[  199.172842][ T9596]  ? __pfx____sys_sendmsg+0x10/0x10
[  199.172919][ T9596]  ? __fget_files+0x2a/0x420
[  199.172942][ T9596]  ? __fget_files+0x3a0/0x420
[  199.172981][ T9596]  __sys_sendmmsg+0x227/0x430
[  199.173018][ T9596]  ? __pfx___sys_sendmmsg+0x10/0x10
[  199.173045][ T9596]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  199.173096][ T9596]  ? ksys_write+0x22a/0x250
[  199.173120][ T9596]  ? __pfx_ksys_write+0x10/0x10
[  199.173137][ T9596]  ? rcu_is_watching+0x15/0xb0
[  199.173179][ T9596]  __x64_sys_sendmmsg+0xa0/0xc0
[  199.173212][ T9596]  do_syscall_64+0xfa/0x3b0
[  199.173232][ T9596]  ? lockdep_hardirqs_on+0x9c/0x150
[  199.173293][ T9596]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.173315][ T9596]  ? clear_bhb_loop+0x60/0xb0
[  199.173342][ T9596]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.173364][ T9596] RIP: 0033:0x7f76f878e929
[  199.173384][ T9596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.173403][ T9596] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  199.173427][ T9596] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  199.173443][ T9596] RDX: 0000000000000001 RSI: 0000200000000440 RDI: 0000000000000003
[  199.173457][ T9596] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  199.173471][ T9596] R10: 0000000000006001 R11: 0000000000000246 R12: 0000000000000002
[  199.173483][ T9596] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  199.173520][ T9596]  </TASK>
[  199.717250][ T9606] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  199.727223][ T9606] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  199.739338][ T9606] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  199.749131][ T9606] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  199.781967][ T9607] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  199.817049][ T9606] team0: Port device geneve0 removed
[  199.854631][ T9607] xt_cgroup: invalid path, errno=-2
[  199.993911][ T9616] netlink: 'syz.2.1182': attribute type 1 has an invalid length.
[  199.995984][ T9615] bridge0: port 3(erspan0) entered disabled state
[  200.143027][ T9615] bridge0: port 4(veth0_to_bridge) entered disabled state
[  200.150561][ T9615] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.158309][ T9615] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.829945][ T9615] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.851687][ T9615] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.862743][ T9615] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.872979][ T9615] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.977193][ T9615] gtp0: left promiscuous mode
[  201.014451][ T9615] bond2: left promiscuous mode
[  201.027010][ T9615] bond3: left promiscuous mode
[  201.040339][ T9616] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  201.050249][ T9621] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  201.297862][ T9662] netlink: 176 bytes leftover after parsing attributes in process `syz.1.1188'.
[  201.517211][ T9677] netem: incorrect gi model size
[  201.534292][ T9677] netem: change failed
[  201.843317][ T9684] openvswitch: netlink: Multiple metadata blocks provided
[  201.897654][ T9694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1199'.
[  202.120945][ T9701] netlink: 'syz.2.1204': attribute type 6 has an invalid length.
[  202.146077][ T9701] netlink: 724 bytes leftover after parsing attributes in process `syz.2.1204'.
[  202.156349][ T9701] netlink: 83 bytes leftover after parsing attributes in process `syz.2.1204'.
[  202.248061][ T5922] IPVS: starting estimator thread 0...
[  202.349287][ T9709] IPVS: using max 24 ests per chain, 57600 per kthread
[  203.205911][ T9728] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  203.468528][ T9736] xt_TCPMSS: Only works on TCP SYN packets
[  203.512088][ T9744] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1224'.
[  203.880794][ T9764] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1227'.
[  204.144602][ T9775] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  204.212032][ T9771] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1234'.
[  204.295553][ T9775] netlink: 'syz.3.1234': attribute type 9 has an invalid length.
[  204.303901][ T9775] netlink: 'syz.3.1234': attribute type 6 has an invalid length.
[  204.331995][ T9781] FAULT_INJECTION: forcing a failure.
[  204.331995][ T9781] name failslab, interval 1, probability 0, space 0, times 0
[  204.409161][ T9781] CPU: 1 UID: 0 PID: 9781 Comm: syz.1.1237 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  204.409196][ T9781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  204.409210][ T9781] Call Trace:
[  204.409217][ T9781]  <TASK>
[  204.409227][ T9781]  dump_stack_lvl+0x189/0x250
[  204.409276][ T9781]  ? __pfx____ratelimit+0x10/0x10
[  204.409310][ T9781]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.409343][ T9781]  ? __pfx__printk+0x10/0x10
[  204.409374][ T9781]  ? __pfx___might_resched+0x10/0x10
[  204.409415][ T9781]  should_fail_ex+0x414/0x560
[  204.409451][ T9781]  should_failslab+0xa8/0x100
[  204.409478][ T9781]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  204.409501][ T9781]  ? __alloc_skb+0x112/0x2d0
[  204.409533][ T9781]  __alloc_skb+0x112/0x2d0
[  204.409563][ T9781]  netlink_sendmsg+0x5c6/0xb30
[  204.409603][ T9781]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.409636][ T9781]  ? aa_sock_msg_perm+0x94/0x160
[  204.409667][ T9781]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  204.409696][ T9781]  ? __pfx_netlink_sendmsg+0x10/0x10
[  204.409725][ T9781]  __sock_sendmsg+0x219/0x270
[  204.409751][ T9781]  ____sys_sendmsg+0x505/0x830
[  204.409787][ T9781]  ? __pfx_____sys_sendmsg+0x10/0x10
[  204.409832][ T9781]  ? import_iovec+0x74/0xa0
[  204.409860][ T9781]  ___sys_sendmsg+0x21f/0x2a0
[  204.409892][ T9781]  ? __pfx____sys_sendmsg+0x10/0x10
[  204.409964][ T9781]  ? __fget_files+0x2a/0x420
[  204.409988][ T9781]  ? __fget_files+0x3a0/0x420
[  204.410025][ T9781]  __x64_sys_sendmsg+0x19b/0x260
[  204.410059][ T9781]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  204.410100][ T9781]  ? __pfx_ksys_write+0x10/0x10
[  204.410118][ T9781]  ? rcu_is_watching+0x15/0xb0
[  204.410159][ T9781]  ? do_syscall_64+0xbe/0x3b0
[  204.410185][ T9781]  do_syscall_64+0xfa/0x3b0
[  204.410205][ T9781]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.410240][ T9781]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.410262][ T9781]  ? clear_bhb_loop+0x60/0xb0
[  204.410296][ T9781]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.410318][ T9781] RIP: 0033:0x7fdf0d58e929
[  204.410338][ T9781] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.410356][ T9781] RSP: 002b:00007fdf0e41e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  204.410380][ T9781] RAX: ffffffffffffffda RBX: 00007fdf0d7b5fa0 RCX: 00007fdf0d58e929
[  204.410396][ T9781] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000004
[  204.410410][ T9781] RBP: 00007fdf0e41e090 R08: 0000000000000000 R09: 0000000000000000
[  204.410424][ T9781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  204.410437][ T9781] R13: 0000000000000000 R14: 00007fdf0d7b5fa0 R15: 00007ffdbe9cada8
[  204.410472][ T9781]  </TASK>
[  204.771707][ T9779] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.936248][ T9779] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.073026][ T9779] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.087487][ T9793] netlink: 'syz.0.1241': attribute type 1 has an invalid length.
[  205.104031][ T9793] netlink: 232 bytes leftover after parsing attributes in process `syz.0.1241'.
[  205.130390][ T9793] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1241'.
[  205.272664][ T9779] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.331654][ T9804] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1246'.
[  205.351904][ T9805] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1248'.
[  205.353592][ T9804] openvswitch: netlink: Missing key (keys=40, expected=80)
[  205.391501][ T9805] bridge0: entered promiscuous mode
[  205.397394][ T9805] macvlan2: entered promiscuous mode
[  205.419288][ T9805] macvlan2: entered allmulticast mode
[  205.433080][ T9805] bridge0: entered allmulticast mode
[  205.454151][ T9805] bridge0: left promiscuous mode
[  205.527503][ T9810] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  205.566865][ T9810] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1250'.
[  205.577858][ T9813] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1250'.
[  205.593181][ T9779] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.657791][ T9779] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.693557][ T9779] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.735109][ T9779] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.917589][ T9827] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  205.926126][ T9827] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  205.936353][ T9827] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  205.947286][ T9827] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  206.019807][ T9832] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1259'.
[  206.041234][ T9832] openvswitch: netlink: Missing key (keys=40, expected=80)
[  206.405260][ T9846] syzkaller0: entered promiscuous mode
[  206.411507][ T9846] syzkaller0: entered allmulticast mode
[  206.725481][ T9860] xt_TCPMSS: Only works on TCP SYN packets
[  206.750160][ T9861] FAULT_INJECTION: forcing a failure.
[  206.750160][ T9861] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  206.767432][ T9861] CPU: 0 UID: 0 PID: 9861 Comm: syz.2.1266 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  206.767464][ T9861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.767479][ T9861] Call Trace:
[  206.767488][ T9861]  <TASK>
[  206.767497][ T9861]  dump_stack_lvl+0x189/0x250
[  206.767538][ T9861]  ? __pfx____ratelimit+0x10/0x10
[  206.767573][ T9861]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.767608][ T9861]  ? __pfx__printk+0x10/0x10
[  206.767633][ T9861]  ? __might_fault+0xb0/0x130
[  206.767668][ T9861]  should_fail_ex+0x414/0x560
[  206.767703][ T9861]  _copy_from_iter+0x1db/0x16f0
[  206.767742][ T9861]  ? rcu_is_watching+0x15/0xb0
[  206.767779][ T9861]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  206.767803][ T9861]  ? __pfx__copy_from_iter+0x10/0x10
[  206.767848][ T9861]  ? __build_skb_around+0x257/0x3e0
[  206.767879][ T9861]  ? netlink_sendmsg+0x642/0xb30
[  206.767906][ T9861]  ? skb_put+0x11b/0x210
[  206.767936][ T9861]  netlink_sendmsg+0x6b2/0xb30
[  206.767976][ T9861]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.768007][ T9861]  ? aa_sock_msg_perm+0x94/0x160
[  206.768038][ T9861]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  206.768067][ T9861]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.768096][ T9861]  __sock_sendmsg+0x219/0x270
[  206.768121][ T9861]  ____sys_sendmsg+0x52d/0x830
[  206.768157][ T9861]  ? __pfx_____sys_sendmsg+0x10/0x10
[  206.768198][ T9861]  ? import_iovec+0x74/0xa0
[  206.768225][ T9861]  ___sys_sendmsg+0x21f/0x2a0
[  206.768257][ T9861]  ? __pfx____sys_sendmsg+0x10/0x10
[  206.768330][ T9861]  ? __fget_files+0x2a/0x420
[  206.768354][ T9861]  ? __fget_files+0x3a0/0x420
[  206.768391][ T9861]  __sys_sendmmsg+0x227/0x430
[  206.768427][ T9861]  ? __pfx___sys_sendmmsg+0x10/0x10
[  206.768453][ T9861]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  206.768507][ T9861]  ? ksys_write+0x22a/0x250
[  206.768531][ T9861]  ? __pfx_ksys_write+0x10/0x10
[  206.768549][ T9861]  ? rcu_is_watching+0x15/0xb0
[  206.768591][ T9861]  __x64_sys_sendmmsg+0xa0/0xc0
[  206.768624][ T9861]  do_syscall_64+0xfa/0x3b0
[  206.768643][ T9861]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.768677][ T9861]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.768699][ T9861]  ? clear_bhb_loop+0x60/0xb0
[  206.768725][ T9861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.768747][ T9861] RIP: 0033:0x7f76f878e929
[  206.768766][ T9861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.768785][ T9861] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  206.768814][ T9861] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  206.768830][ T9861] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  206.768850][ T9861] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  206.768862][ T9861] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.768875][ T9861] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  206.768907][ T9861]  </TASK>
[  207.091783][ T9864] FAULT_INJECTION: forcing a failure.
[  207.091783][ T9864] name failslab, interval 1, probability 0, space 0, times 0
[  207.118145][ T9864] CPU: 0 UID: 0 PID: 9864 Comm: syz.1.1267 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  207.118176][ T9864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.118190][ T9864] Call Trace:
[  207.118198][ T9864]  <TASK>
[  207.118207][ T9864]  dump_stack_lvl+0x189/0x250
[  207.118254][ T9864]  ? __pfx____ratelimit+0x10/0x10
[  207.118287][ T9864]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.118321][ T9864]  ? __pfx__printk+0x10/0x10
[  207.118353][ T9864]  ? __pfx___might_resched+0x10/0x10
[  207.118386][ T9864]  ? fs_reclaim_acquire+0x7d/0x100
[  207.118417][ T9864]  should_fail_ex+0x414/0x560
[  207.118452][ T9864]  should_failslab+0xa8/0x100
[  207.118478][ T9864]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  207.118500][ T9864]  ? __alloc_skb+0x112/0x2d0
[  207.118531][ T9864]  __alloc_skb+0x112/0x2d0
[  207.118561][ T9864]  netlink_ack+0x146/0xa50
[  207.118585][ T9864]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.118634][ T9864]  netlink_rcv_skb+0x28c/0x470
[  207.118660][ T9864]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.118695][ T9864]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.118741][ T9864]  ? down_read+0x1ad/0x2e0
[  207.118768][ T9864]  genl_rcv+0x28/0x40
[  207.118802][ T9864]  netlink_unicast+0x758/0x8d0
[  207.118845][ T9864]  netlink_sendmsg+0x805/0xb30
[  207.118897][ T9864]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.118928][ T9864]  ? aa_sock_msg_perm+0x94/0x160
[  207.118960][ T9864]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  207.118989][ T9864]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.119017][ T9864]  __sock_sendmsg+0x219/0x270
[  207.119043][ T9864]  ____sys_sendmsg+0x505/0x830
[  207.119080][ T9864]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.119121][ T9864]  ? import_iovec+0x74/0xa0
[  207.119150][ T9864]  ___sys_sendmsg+0x21f/0x2a0
[  207.119183][ T9864]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.119257][ T9864]  ? __fget_files+0x2a/0x420
[  207.119282][ T9864]  ? __fget_files+0x3a0/0x420
[  207.119319][ T9864]  __x64_sys_sendmsg+0x19b/0x260
[  207.119353][ T9864]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  207.119395][ T9864]  ? __pfx_ksys_write+0x10/0x10
[  207.119413][ T9864]  ? rcu_is_watching+0x15/0xb0
[  207.119455][ T9864]  ? do_syscall_64+0xbe/0x3b0
[  207.119482][ T9864]  do_syscall_64+0xfa/0x3b0
[  207.119502][ T9864]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.119536][ T9864]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.119558][ T9864]  ? clear_bhb_loop+0x60/0xb0
[  207.119584][ T9864]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.119605][ T9864] RIP: 0033:0x7fdf0d58e929
[  207.119624][ T9864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.119642][ T9864] RSP: 002b:00007fdf0e3fd038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.119666][ T9864] RAX: ffffffffffffffda RBX: 00007fdf0d7b6080 RCX: 00007fdf0d58e929
[  207.119682][ T9864] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 000000000000000e
[  207.119696][ T9864] RBP: 00007fdf0e3fd090 R08: 0000000000000000 R09: 0000000000000000
[  207.119709][ T9864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.119721][ T9864] R13: 0000000000000000 R14: 00007fdf0d7b6080 R15: 00007ffdbe9cada8
[  207.119756][ T9864]  </TASK>
[  209.046640][ T9862] __nla_validate_parse: 2 callbacks suppressed
[  209.046667][ T9862] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1263'.
[  209.176618][ T9884] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1272'.
[  209.249005][ T9884] openvswitch: netlink: Missing key (keys=40, expected=80)
[  209.336161][ T9890] netlink: 'syz.3.1275': attribute type 1 has an invalid length.
[  209.522954][ T9890] 8021q: adding VLAN 0 to HW filter on device bond1
[  209.556977][ T9893] netem: incorrect gi model size
[  209.572878][ T9893] netem: change failed
[  210.178230][ T9898] ip6erspan0: entered promiscuous mode
[  210.235135][ T9898] bond1: (slave ip6erspan0): making interface the new active one
[  210.277657][ T9898] bond1: (slave ip6erspan0): Enslaving as an active interface with an up link
[  210.912157][ T9942] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1289'.
[  211.009833][ T9942] openvswitch: netlink: Missing key (keys=40, expected=80)
[  211.189607][   T30] audit: type=1800 audit(1749838810.417:29): pid=9956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1294" name="blkio.bfq.time_recursive" dev="tmpfs" ino=1378 res=0 errno=0
[  211.222166][ T9954] netlink: 'syz.1.1295': attribute type 16 has an invalid length.
[  211.230353][ T9954] netlink: 'syz.1.1295': attribute type 17 has an invalid length.
[  211.270153][   T30] audit: type=1800 audit(1749838810.427:30): pid=9956 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1294" name="blkio.bfq.time_recursive" dev="tmpfs" ino=1378 res=0 errno=0
[  211.450976][ T9964] netlink: 388 bytes leftover after parsing attributes in process `syz.1.1298'.
[  211.497356][ T9964] xt_TCPMSS: Only works on TCP SYN packets
[  211.782041][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  211.788455][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[  211.789408][ T5847] Bluetooth: hci3: command 0x0406 tx timeout
[  212.317122][ T9994] netlink: 'syz.4.1308': attribute type 4 has an invalid length.
[  212.353500][ T9994] netlink: 'syz.4.1308': attribute type 4 has an invalid length.
[  212.522498][T10006] netlink: 9280 bytes leftover after parsing attributes in process `syz.4.1313'.
[  212.609181][T10001] block nbd0: server does not support multiple connections per device.
[  212.619527][T10001] block nbd0: shutting down sockets
[  212.961775][T10029] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1317'.
[  212.990416][T10029] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1317'.
[  213.012992][T10030] netlink: 148 bytes leftover after parsing attributes in process `syz.0.1319'.
[  213.303855][T10037] openvswitch: netlink: Actions may not be safe on all matching packets
[  213.343255][T10041] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1325'.
[  213.405257][T10041] bridge3: port 1(ip6gretap2) entered blocking state
[  213.418350][T10041] bridge3: port 1(ip6gretap2) entered disabled state
[  213.426824][T10041] ip6gretap2: entered allmulticast mode
[  213.439926][T10041] ip6gretap2: entered promiscuous mode
[  213.524002][T10044] veth3: entered promiscuous mode
[  213.533434][T10048] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1328'.
[  213.543435][T10044] bridge3: port 2(veth3) entered blocking state
[  213.543974][T10044] bridge3: port 2(veth3) entered disabled state
[  213.568238][T10044] veth3: entered allmulticast mode
[  213.796142][T10053] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  214.283906][T10081] __nla_validate_parse: 2 callbacks suppressed
[  214.283927][T10081] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.1338'.
[  214.865698][T10098] netlink: 788 bytes leftover after parsing attributes in process `syz.2.1345'.
[  215.696797][T10131] netlink: 788 bytes leftover after parsing attributes in process `syz.4.1358'.
[  215.732973][T10129] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1357'.
[  215.994547][T10145] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  216.072635][T10134] netlink: 788 bytes leftover after parsing attributes in process `syz.2.1359'.
[  216.200794][T10153] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1363'.
[  216.220745][T10154] netlink: 'syz.3.1364': attribute type 1 has an invalid length.
[  216.302153][T10153] openvswitch: netlink: Missing key (keys=40, expected=80)
[  216.971835][T10176] IPv6: NLM_F_CREATE should be specified when creating new route
[  217.010806][T10181] FAULT_INJECTION: forcing a failure.
[  217.010806][T10181] name failslab, interval 1, probability 0, space 0, times 0
[  217.024646][T10181] CPU: 0 UID: 0 PID: 10181 Comm: syz.4.1372 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  217.024680][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  217.024696][T10181] Call Trace:
[  217.024706][T10181]  <TASK>
[  217.024716][T10181]  dump_stack_lvl+0x189/0x250
[  217.024779][T10181]  ? __pfx____ratelimit+0x10/0x10
[  217.024817][T10181]  ? __pfx_dump_stack_lvl+0x10/0x10
[  217.024853][T10181]  ? __pfx__printk+0x10/0x10
[  217.024886][T10181]  ? __pfx___might_resched+0x10/0x10
[  217.024921][T10181]  ? fs_reclaim_acquire+0x7d/0x100
[  217.024955][T10181]  should_fail_ex+0x414/0x560
[  217.024992][T10181]  should_failslab+0xa8/0x100
[  217.025018][T10181]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  217.025042][T10181]  ? __alloc_skb+0x112/0x2d0
[  217.025075][T10181]  __alloc_skb+0x112/0x2d0
[  217.025107][T10181]  netlink_ack+0x146/0xa50
[  217.025156][T10181]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  217.025304][T10181]  netlink_rcv_skb+0x28c/0x470
[  217.025349][T10181]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  217.025377][T10181]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  217.025423][T10181]  ? netlink_deliver_tap+0x2e/0x1b0
[  217.025451][T10181]  ? netlink_deliver_tap+0x2e/0x1b0
[  217.025487][T10181]  netlink_unicast+0x758/0x8d0
[  217.025527][T10181]  netlink_sendmsg+0x805/0xb30
[  217.025568][T10181]  ? __pfx_netlink_sendmsg+0x10/0x10
[  217.025602][T10181]  ? aa_sock_msg_perm+0x94/0x160
[  217.025637][T10181]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  217.025667][T10181]  ? __pfx_netlink_sendmsg+0x10/0x10
[  217.025698][T10181]  __sock_sendmsg+0x219/0x270
[  217.025726][T10181]  ____sys_sendmsg+0x52d/0x830
[  217.025768][T10181]  ? __pfx_____sys_sendmsg+0x10/0x10
[  217.025813][T10181]  ? import_iovec+0x74/0xa0
[  217.025844][T10181]  ___sys_sendmsg+0x21f/0x2a0
[  217.025880][T10181]  ? __pfx____sys_sendmsg+0x10/0x10
[  217.025960][T10181]  ? __fget_files+0x2a/0x420
[  217.025988][T10181]  ? __fget_files+0x3a0/0x420
[  217.026028][T10181]  __sys_sendmmsg+0x227/0x430
[  217.026069][T10181]  ? __pfx___sys_sendmmsg+0x10/0x10
[  217.026122][T10181]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  217.026184][T10181]  ? ksys_write+0x22a/0x250
[  217.026213][T10181]  ? __pfx_ksys_write+0x10/0x10
[  217.026234][T10181]  ? rcu_is_watching+0x15/0xb0
[  217.026285][T10181]  __x64_sys_sendmmsg+0xa0/0xc0
[  217.026322][T10181]  do_syscall_64+0xfa/0x3b0
[  217.026348][T10181]  ? lockdep_hardirqs_on+0x9c/0x150
[  217.026386][T10181]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.026411][T10181]  ? clear_bhb_loop+0x60/0xb0
[  217.026444][T10181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  217.026469][T10181] RIP: 0033:0x7fc79ab8e929
[  217.026493][T10181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  217.026514][T10181] RSP: 002b:00007fc79b937038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  217.026541][T10181] RAX: ffffffffffffffda RBX: 00007fc79adb5fa0 RCX: 00007fc79ab8e929
[  217.026559][T10181] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  217.026577][T10181] RBP: 00007fc79b937090 R08: 0000000000000000 R09: 0000000000000000
[  217.026592][T10181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  217.026607][T10181] R13: 0000000000000000 R14: 00007fc79adb5fa0 R15: 00007ffe88c67cb8
[  217.026647][T10181]  </TASK>
[  217.517750][T10187] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1377'.
[  217.530001][T10193] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1374'.
[  217.542237][T10192] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1376'.
[  217.751365][T10202] netlink: 788 bytes leftover after parsing attributes in process `syz.1.1379'.
[  218.330964][T10231] vlan3: entered promiscuous mode
[  218.446600][T10235] IPVS: set_ctl: invalid protocol: 43 10.1.1.0:20002
[  218.457382][T10235] tipc: Can't bind to reserved service type 0
[  218.832873][T10257] FAULT_INJECTION: forcing a failure.
[  218.832873][T10257] name failslab, interval 1, probability 0, space 0, times 0
[  218.848763][T10257] CPU: 1 UID: 0 PID: 10257 Comm: syz.2.1402 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  218.848801][T10257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  218.848813][T10257] Call Trace:
[  218.848822][T10257]  <TASK>
[  218.848832][T10257]  dump_stack_lvl+0x189/0x250
[  218.848871][T10257]  ? __pfx____ratelimit+0x10/0x10
[  218.848905][T10257]  ? __pfx_dump_stack_lvl+0x10/0x10
[  218.848938][T10257]  ? __pfx__printk+0x10/0x10
[  218.848965][T10257]  ? __pfx___might_resched+0x10/0x10
[  218.848997][T10257]  ? fs_reclaim_acquire+0x7d/0x100
[  218.849027][T10257]  should_fail_ex+0x414/0x560
[  218.849060][T10257]  should_failslab+0xa8/0x100
[  218.849085][T10257]  __kmalloc_noprof+0xcb/0x4f0
[  218.849103][T10257]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  218.849134][T10257]  ? sock_kmalloc+0xd6/0x160
[  218.849168][T10257]  sock_kmalloc+0xd6/0x160
[  218.849201][T10257]  hash_recvmsg+0x1d4/0x840
[  218.849245][T10257]  ? __pfx_hash_recvmsg+0x10/0x10
[  218.849275][T10257]  sock_recvmsg_nosec+0x186/0x1c0
[  218.849301][T10257]  ____sys_recvmsg+0x3aa/0x460
[  218.849341][T10257]  ? __pfx_____sys_recvmsg+0x10/0x10
[  218.849388][T10257]  ? import_iovec+0x74/0xa0
[  218.849414][T10257]  ___sys_recvmsg+0x1b5/0x510
[  218.849450][T10257]  ? __pfx____sys_recvmsg+0x10/0x10
[  218.849514][T10257]  ? __might_fault+0xb0/0x130
[  218.849539][T10257]  do_recvmmsg+0x307/0x770
[  218.849579][T10257]  ? __pfx_do_recvmmsg+0x10/0x10
[  218.849620][T10257]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  218.849663][T10257]  __x64_sys_recvmmsg+0x190/0x240
[  218.849698][T10257]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  218.849725][T10257]  ? rcu_is_watching+0x15/0xb0
[  218.849764][T10257]  ? do_syscall_64+0xbe/0x3b0
[  218.849789][T10257]  do_syscall_64+0xfa/0x3b0
[  218.849809][T10257]  ? lockdep_hardirqs_on+0x9c/0x150
[  218.849841][T10257]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.849864][T10257]  ? clear_bhb_loop+0x60/0xb0
[  218.849890][T10257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.849910][T10257] RIP: 0033:0x7f76f878e929
[  218.849930][T10257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.849949][T10257] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  218.849973][T10257] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  218.849989][T10257] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  218.850002][T10257] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  218.850015][T10257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  218.850027][T10257] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  218.850062][T10257]  </TASK>
[  219.204774][T10260] ip6erspan0: entered promiscuous mode
[  219.213143][T10262] netlink: 'syz.0.1404': attribute type 1 has an invalid length.
[  219.277143][T10254] netlink: 'syz.3.1401': attribute type 303 has an invalid length.
[  219.291693][T10254] __nla_validate_parse: 4 callbacks suppressed
[  219.291715][T10254] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1401'.
[  219.774684][T10281] netlink: 788 bytes leftover after parsing attributes in process `syz.0.1408'.
[  219.851311][T10286] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1410'.
[  219.981704][T10297] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1410'.
[  219.992608][T10287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1407'.
[  220.326163][T10303] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1413'.
[  220.464733][T10312] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1416'.
[  220.492586][T10310] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1415'.
[  220.527404][T10312] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  220.977463][T10331] netlink: 144 bytes leftover after parsing attributes in process `syz.2.1420'.
[  221.050722][T10333] ieee802154 phy0 wpan0: encryption failed: -22
[  221.443933][T10350] netlink: 788 bytes leftover after parsing attributes in process `syz.3.1426'.
[  222.220375][T10382] openvswitch: netlink: EtherType 0 is less than min 600
[  222.350818][T10389] openvswitch: netlink: Message has 5 unknown bytes.
[  223.166277][T10422] FAULT_INJECTION: forcing a failure.
[  223.166277][T10422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  223.180749][T10422] CPU: 1 UID: 0 PID: 10422 Comm: syz.3.1454 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  223.180781][T10422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  223.180794][T10422] Call Trace:
[  223.180805][T10422]  <TASK>
[  223.180814][T10422]  dump_stack_lvl+0x189/0x250
[  223.180855][T10422]  ? __pfx____ratelimit+0x10/0x10
[  223.180890][T10422]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.180924][T10422]  ? __pfx__printk+0x10/0x10
[  223.180949][T10422]  ? __might_fault+0xb0/0x130
[  223.180983][T10422]  should_fail_ex+0x414/0x560
[  223.181017][T10422]  _copy_from_iter+0x1db/0x16f0
[  223.181062][T10422]  ? rcu_is_watching+0x15/0xb0
[  223.181095][T10422]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  223.181117][T10422]  ? __pfx__copy_from_iter+0x10/0x10
[  223.181150][T10422]  ? __build_skb_around+0x257/0x3e0
[  223.181178][T10422]  ? netlink_sendmsg+0x642/0xb30
[  223.181202][T10422]  ? skb_put+0x11b/0x210
[  223.181229][T10422]  netlink_sendmsg+0x6b2/0xb30
[  223.181264][T10422]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.181293][T10422]  ? aa_sock_msg_perm+0x94/0x160
[  223.181321][T10422]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  223.181347][T10422]  ? __pfx_netlink_sendmsg+0x10/0x10
[  223.181372][T10422]  __sock_sendmsg+0x219/0x270
[  223.181395][T10422]  ____sys_sendmsg+0x505/0x830
[  223.181427][T10422]  ? __pfx_____sys_sendmsg+0x10/0x10
[  223.181463][T10422]  ? import_iovec+0x74/0xa0
[  223.181488][T10422]  ___sys_sendmsg+0x21f/0x2a0
[  223.181517][T10422]  ? __pfx____sys_sendmsg+0x10/0x10
[  223.181581][T10422]  ? __fget_files+0x2a/0x420
[  223.181603][T10422]  ? __fget_files+0x3a0/0x420
[  223.181641][T10422]  __x64_sys_sendmsg+0x19b/0x260
[  223.181671][T10422]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  223.181722][T10422]  ? __pfx_ksys_write+0x10/0x10
[  223.181739][T10422]  ? rcu_is_watching+0x15/0xb0
[  223.181795][T10422]  ? do_syscall_64+0xbe/0x3b0
[  223.181822][T10422]  do_syscall_64+0xfa/0x3b0
[  223.181841][T10422]  ? lockdep_hardirqs_on+0x9c/0x150
[  223.181874][T10422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.181896][T10422]  ? clear_bhb_loop+0x60/0xb0
[  223.181922][T10422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.181943][T10422] RIP: 0033:0x7f5acff8e929
[  223.181963][T10422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.181982][T10422] RSP: 002b:00007f5ad0dfa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  223.182006][T10422] RAX: ffffffffffffffda RBX: 00007f5ad01b5fa0 RCX: 00007f5acff8e929
[  223.182022][T10422] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000004
[  223.182036][T10422] RBP: 00007f5ad0dfa090 R08: 0000000000000000 R09: 0000000000000000
[  223.182053][T10422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.182065][T10422] R13: 0000000000000000 R14: 00007f5ad01b5fa0 R15: 00007ffcb77f2988
[  223.182095][T10422]  </TASK>
[  224.167568][T10455] sctp: [Deprecated]: syz.2.1468 (pid 10455) Use of struct sctp_assoc_value in delayed_ack socket option.
[  224.167568][T10455] Use struct sctp_sack_info instead
[  224.337313][T10467] __nla_validate_parse: 5 callbacks suppressed
[  224.337337][T10467] netlink: 788 bytes leftover after parsing attributes in process `syz.3.1471'.
[  224.454261][T10470] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1470'.
[  224.477764][T10470] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1470'.
[  224.489647][T10470] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1470'.
[  224.499094][T10470] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1470'.
[  224.521129][T10473] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1472'.
[  224.758316][T10480] smc: net device bond0 applied user defined pnetid SYZ2
[  225.092690][T10493] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1479'.
[  225.119464][T10495] netlink: 'syz.0.1480': attribute type 102 has an invalid length.
[  226.358501][T10555] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1500'.
[  226.814141][T10572] xt_TCPMSS: Only works on TCP SYN packets
[  227.019791][T10579] block nbd0: server does not support multiple connections per device.
[  227.044083][T10579] block nbd0: shutting down sockets
[  227.138396][T10592] xt_hashlimit: size too large, truncated to 1048576
[  227.209719][T10602] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1512'.
[  227.323663][T10596] wireguard0: entered promiscuous mode
[  227.332016][T10596] wireguard0: entered allmulticast mode
[  228.242857][T10650] openvswitch: netlink: Actions may not be safe on all matching packets
[  228.419398][T10658] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1532'.
[  229.318316][T10685] openvswitch: netlink: Missing key (keys=40, expected=80)
[  229.674847][T10704] x_tables: ip_tables: TCPMSS target: only valid for protocol 6
[  230.252210][T10733] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  230.618207][T10752] __nla_validate_parse: 2 callbacks suppressed
[  230.618233][T10752] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1568'.
[  230.637739][T10752] netlink: 'syz.4.1568': attribute type 1 has an invalid length.
[  230.656967][T10755] IPVS: set_ctl: invalid protocol: 47 100.1.1.1:20004
[  230.797779][T10760] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1572'.
[  230.971091][T10771] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1577'.
[  231.296319][T10789] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1580'.
[  231.333448][T10785] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1580'.
[  231.404104][T10794] IPv6: sit1: Disabled Multicast RS
[  231.503798][T10797] FAULT_INJECTION: forcing a failure.
[  231.503798][T10797] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  231.543985][T10797] CPU: 0 UID: 0 PID: 10797 Comm: syz.2.1584 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  231.544030][T10797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  231.544045][T10797] Call Trace:
[  231.544056][T10797]  <TASK>
[  231.544067][T10797]  dump_stack_lvl+0x189/0x250
[  231.544132][T10797]  ? __pfx____ratelimit+0x10/0x10
[  231.544170][T10797]  ? __pfx_dump_stack_lvl+0x10/0x10
[  231.544208][T10797]  ? __pfx__printk+0x10/0x10
[  231.544235][T10797]  ? __might_fault+0xb0/0x130
[  231.544283][T10797]  should_fail_ex+0x414/0x560
[  231.544322][T10797]  _copy_from_iter+0x1db/0x16f0
[  231.544365][T10797]  ? rcu_is_watching+0x15/0xb0
[  231.544409][T10797]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  231.544435][T10797]  ? __pfx__copy_from_iter+0x10/0x10
[  231.544474][T10797]  ? __build_skb_around+0x257/0x3e0
[  231.544508][T10797]  ? netlink_sendmsg+0x642/0xb30
[  231.544536][T10797]  ? skb_put+0x11b/0x210
[  231.544569][T10797]  netlink_sendmsg+0x6b2/0xb30
[  231.544611][T10797]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.544645][T10797]  ? aa_sock_msg_perm+0x94/0x160
[  231.544679][T10797]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  231.544709][T10797]  ? __pfx_netlink_sendmsg+0x10/0x10
[  231.544740][T10797]  __sock_sendmsg+0x219/0x270
[  231.544768][T10797]  ____sys_sendmsg+0x52d/0x830
[  231.544807][T10797]  ? __pfx_____sys_sendmsg+0x10/0x10
[  231.544852][T10797]  ? import_iovec+0x74/0xa0
[  231.544882][T10797]  ___sys_sendmsg+0x21f/0x2a0
[  231.544922][T10797]  ? __pfx____sys_sendmsg+0x10/0x10
[  231.545001][T10797]  ? __fget_files+0x2a/0x420
[  231.545027][T10797]  ? __fget_files+0x3a0/0x420
[  231.545068][T10797]  __sys_sendmmsg+0x227/0x430
[  231.545140][T10797]  ? __pfx___sys_sendmmsg+0x10/0x10
[  231.545170][T10797]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  231.545229][T10797]  ? ksys_write+0x22a/0x250
[  231.545254][T10797]  ? __pfx_ksys_write+0x10/0x10
[  231.545274][T10797]  ? rcu_is_watching+0x15/0xb0
[  231.545317][T10797]  __x64_sys_sendmmsg+0xa0/0xc0
[  231.545350][T10797]  do_syscall_64+0xfa/0x3b0
[  231.545372][T10797]  ? lockdep_hardirqs_on+0x9c/0x150
[  231.545407][T10797]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.545431][T10797]  ? clear_bhb_loop+0x60/0xb0
[  231.545470][T10797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  231.545499][T10797] RIP: 0033:0x7f76f878e929
[  231.545523][T10797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  231.545545][T10797] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  231.545571][T10797] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  231.545589][T10797] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  231.545605][T10797] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  231.545620][T10797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  231.545634][T10797] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  231.545667][T10797]  </TASK>
[  231.887855][T10800] netlink: 'syz.0.1587': attribute type 1 has an invalid length.
[  232.153514][T10814] erspan0: left allmulticast mode
[  232.161236][T10814] erspan0: left promiscuous mode
[  232.167733][T10814] bridge0: port 3(erspan0) entered disabled state
[  232.201147][T10814] veth0_to_bridge: left allmulticast mode
[  232.209853][T10814] veth0_to_bridge: left promiscuous mode
[  232.230801][T10818] FAULT_INJECTION: forcing a failure.
[  232.230801][T10818] name failslab, interval 1, probability 0, space 0, times 0
[  232.245294][T10814] bridge0: port 4(veth0_to_bridge) entered disabled state
[  232.271969][T10818] CPU: 0 UID: 0 PID: 10818 Comm: syz.2.1593 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  232.272004][T10818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  232.272018][T10818] Call Trace:
[  232.272027][T10818]  <TASK>
[  232.272036][T10818]  dump_stack_lvl+0x189/0x250
[  232.272085][T10818]  ? __pfx____ratelimit+0x10/0x10
[  232.272119][T10818]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.272153][T10818]  ? __pfx__printk+0x10/0x10
[  232.272185][T10818]  ? ref_tracker_alloc+0x318/0x460
[  232.272218][T10818]  should_fail_ex+0x414/0x560
[  232.272252][T10818]  should_failslab+0xa8/0x100
[  232.272278][T10818]  kmem_cache_alloc_noprof+0x73/0x3c0
[  232.272313][T10818]  ? skb_clone+0x212/0x3a0
[  232.272347][T10818]  skb_clone+0x212/0x3a0
[  232.272381][T10818]  __netlink_deliver_tap+0x404/0x850
[  232.272420][T10818]  ? netlink_deliver_tap+0x2e/0x1b0
[  232.272447][T10818]  netlink_deliver_tap+0x19c/0x1b0
[  232.272473][T10818]  netlink_unicast+0x72f/0x8d0
[  232.272508][T10818]  netlink_sendmsg+0x805/0xb30
[  232.272546][T10818]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.272576][T10818]  ? aa_sock_msg_perm+0x94/0x160
[  232.272606][T10818]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  232.272633][T10818]  ? __pfx_netlink_sendmsg+0x10/0x10
[  232.272660][T10818]  __sock_sendmsg+0x219/0x270
[  232.272683][T10818]  ____sys_sendmsg+0x505/0x830
[  232.272716][T10818]  ? __pfx_____sys_sendmsg+0x10/0x10
[  232.272754][T10818]  ? import_iovec+0x74/0xa0
[  232.272781][T10818]  ___sys_sendmsg+0x21f/0x2a0
[  232.272813][T10818]  ? __pfx____sys_sendmsg+0x10/0x10
[  232.272880][T10818]  ? __fget_files+0x2a/0x420
[  232.272904][T10818]  ? __fget_files+0x3a0/0x420
[  232.272940][T10818]  __x64_sys_sendmsg+0x19b/0x260
[  232.272972][T10818]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  232.273012][T10818]  ? __pfx_ksys_write+0x10/0x10
[  232.273029][T10818]  ? rcu_is_watching+0x15/0xb0
[  232.273095][T10818]  ? do_syscall_64+0xbe/0x3b0
[  232.273122][T10818]  do_syscall_64+0xfa/0x3b0
[  232.273141][T10818]  ? lockdep_hardirqs_on+0x9c/0x150
[  232.273175][T10818]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.273195][T10818]  ? clear_bhb_loop+0x60/0xb0
[  232.273222][T10818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.273243][T10818] RIP: 0033:0x7f76f878e929
[  232.273269][T10818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.273288][T10818] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  232.273311][T10818] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  232.273326][T10818] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  232.273339][T10818] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  232.273352][T10818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.273365][T10818] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  232.273399][T10818]  </TASK>
[  232.616886][T10814] bridge_slave_0: left allmulticast mode
[  232.642048][T10814] bridge_slave_0: left promiscuous mode
[  232.659312][T10814] bridge0: port 1(bridge_slave_0) entered disabled state
[  232.685927][T10814] bridge_slave_1: left allmulticast mode
[  232.697147][T10814] bridge_slave_1: left promiscuous mode
[  232.704089][T10814] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.723645][T10814] team0: Port device team_slave_0 removed
[  232.734328][T10814] team0: Port device team_slave_1 removed
[  232.742503][T10814] bond2: (slave bond3): Releasing backup interface
[  233.392699][T10857] block nbd0: server does not support multiple connections per device.
[  233.403243][T10857] block nbd0: shutting down sockets
[  233.517000][T10871] x_tables: ip_tables: TCPMSS target: only valid for protocol 6
[  233.673249][T10882] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1612'.
[  233.683636][T10882] netlink: 'syz.0.1612': attribute type 1 has an invalid length.
[  233.879404][T10891] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1617'.
[  234.482318][T10926] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1626'.
[  234.547028][T10928] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1628'.
[  234.560001][T10928] openvswitch: netlink: EtherType 0 is less than min 600
[  235.093775][T10951] netlink: 'syz.1.1636': attribute type 4 has an invalid length.
[  235.166151][T10949] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1636'.
[  235.447144][T10964] sit0: entered promiscuous mode
[  235.716561][T10976] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.1643'.
[  235.913007][T10981] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1646'.
[  236.057833][T10989] xt_TCPMSS: Only works on TCP SYN packets
[  236.084426][T10990] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1648'.
[  236.106977][T10987] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  236.291732][T11000] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1654'.
[  236.485212][T11006] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1657'.
[  236.732674][T11021] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1663'.
[  236.755745][T11021] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1663'.
[  236.781485][T11023] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1662'.
[  236.800851][T11023] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1662'.
[  236.860853][T11027] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1666'.
[  237.234744][T11045] netlink: 'syz.1.1673': attribute type 1 has an invalid length.
[  237.325622][T11045] 8021q: adding VLAN 0 to HW filter on device bond0
[  237.397852][T11053] bond0: (slave ip6gretap1): making interface the new active one
[  237.448669][T11053] bond0: (slave ip6gretap1): Enslaving as an active interface with an up link
[  237.692871][T11068] netlink: 'syz.3.1682': attribute type 1 has an invalid length.
[  237.803498][T11076] netlink: 'syz.1.1684': attribute type 1 has an invalid length.
[  238.506783][T11100] bridge0: entered promiscuous mode
[  238.526894][T11100] bridge0: left promiscuous mode
[  239.427628][T11118] FAULT_INJECTION: forcing a failure.
[  239.427628][T11118] name failslab, interval 1, probability 0, space 0, times 0
[  239.515530][T11118] CPU: 1 UID: 0 PID: 11118 Comm: syz.0.1697 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  239.515573][T11118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  239.515588][T11118] Call Trace:
[  239.515597][T11118]  <TASK>
[  239.515607][T11118]  dump_stack_lvl+0x189/0x250
[  239.515649][T11118]  ? __pfx____ratelimit+0x10/0x10
[  239.515685][T11118]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.515722][T11118]  ? __pfx__printk+0x10/0x10
[  239.515754][T11118]  ? __pfx___might_resched+0x10/0x10
[  239.515789][T11118]  ? fs_reclaim_acquire+0x7d/0x100
[  239.515822][T11118]  should_fail_ex+0x414/0x560
[  239.515860][T11118]  should_failslab+0xa8/0x100
[  239.515886][T11118]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  239.515910][T11118]  ? __alloc_skb+0x112/0x2d0
[  239.515942][T11118]  __alloc_skb+0x112/0x2d0
[  239.515973][T11118]  netlink_ack+0x146/0xa50
[  239.515998][T11118]  ? __pfx_genl_rcv_msg+0x10/0x10
[  239.516030][T11118]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  239.516062][T11118]  ? __pfx_nl80211_post_doit+0x10/0x10
[  239.516111][T11118]  netlink_rcv_skb+0x28c/0x470
[  239.516140][T11118]  ? __pfx_genl_rcv_msg+0x10/0x10
[  239.516176][T11118]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  239.516224][T11118]  ? down_read+0x1ad/0x2e0
[  239.516251][T11118]  genl_rcv+0x28/0x40
[  239.516282][T11118]  netlink_unicast+0x758/0x8d0
[  239.516320][T11118]  netlink_sendmsg+0x805/0xb30
[  239.516360][T11118]  ? __pfx_netlink_sendmsg+0x10/0x10
[  239.516391][T11118]  ? aa_sock_msg_perm+0x94/0x160
[  239.516421][T11118]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  239.516448][T11118]  ? __pfx_netlink_sendmsg+0x10/0x10
[  239.516477][T11118]  __sock_sendmsg+0x219/0x270
[  239.516503][T11118]  ____sys_sendmsg+0x505/0x830
[  239.516551][T11118]  ? __pfx_____sys_sendmsg+0x10/0x10
[  239.516593][T11118]  ? import_iovec+0x74/0xa0
[  239.516621][T11118]  ___sys_sendmsg+0x21f/0x2a0
[  239.516655][T11118]  ? __pfx____sys_sendmsg+0x10/0x10
[  239.516728][T11118]  ? __fget_files+0x2a/0x420
[  239.516753][T11118]  ? __fget_files+0x3a0/0x420
[  239.516790][T11118]  __x64_sys_sendmsg+0x19b/0x260
[  239.516824][T11118]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  239.516867][T11118]  ? __pfx_ksys_write+0x10/0x10
[  239.516885][T11118]  ? rcu_is_watching+0x15/0xb0
[  239.516927][T11118]  ? do_syscall_64+0xbe/0x3b0
[  239.516954][T11118]  do_syscall_64+0xfa/0x3b0
[  239.516974][T11118]  ? lockdep_hardirqs_on+0x9c/0x150
[  239.517008][T11118]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.517030][T11118]  ? clear_bhb_loop+0x60/0xb0
[  239.517059][T11118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.517080][T11118] RIP: 0033:0x7ffbc1d8e929
[  239.517100][T11118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.517120][T11118] RSP: 002b:00007ffbc2bc0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  239.517144][T11118] RAX: ffffffffffffffda RBX: 00007ffbc1fb5fa0 RCX: 00007ffbc1d8e929
[  239.517161][T11118] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  239.517175][T11118] RBP: 00007ffbc2bc0090 R08: 0000000000000000 R09: 0000000000000000
[  239.517189][T11118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.517202][T11118] R13: 0000000000000000 R14: 00007ffbc1fb5fa0 R15: 00007ffed0bd5e78
[  239.517237][T11118]  </TASK>
[  240.469828][T11132] ip6gre1: entered allmulticast mode
[  240.483584][ T1157] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  240.505967][T11136] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  240.733127][T11149] __nla_validate_parse: 2 callbacks suppressed
[  240.733148][T11149] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1711'.
[  240.749950][T11149] openvswitch: netlink: Missing key (keys=40, expected=80)
[  240.765240][T11155] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1712'.
[  240.778936][T11155] netlink: 'syz.2.1712': attribute type 1 has an invalid length.
[  241.216832][T11179] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1723'.
[  241.277042][T11177] syzkaller0: entered promiscuous mode
[  241.283155][T11177] syzkaller0: entered allmulticast mode
[  241.383247][T11188] set match dimension is over the limit!
[  241.409459][T11184] block nbd0: server does not support multiple connections per device.
[  241.442752][T11184] block nbd0: shutting down sockets
[  241.510184][T11191] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1726'.
[  241.523210][T11191] openvswitch: netlink: Missing key (keys=40, expected=80)
[  242.020617][T11205] sctp: [Deprecated]: syz.1.1730 (pid 11205) Use of int in max_burst socket option.
[  242.020617][T11205] Use struct sctp_assoc_value instead
[  243.649969][T11218] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1736'.
[  243.675591][T11218] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1736'.
[  243.701050][T11218] netlink: 'syz.2.1736': attribute type 9 has an invalid length.
[  243.725552][T11222] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1738'.
[  243.952641][T11236] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1743'.
[  244.398184][T11255] 8021q: adding VLAN 0 to HW filter on device team0
[  244.414018][T11255] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  244.579051][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  244.593832][T11254] syzkaller0: entered promiscuous mode
[  244.605062][T11254] syzkaller0: entered allmulticast mode
[  244.708229][T11269] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1755'.
[  245.032887][T11283] netlink: 'syz.4.1762': attribute type 1 has an invalid length.
[  245.361608][T11294] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1764'.
[  246.966756][T11300] netlink: 'syz.3.1766': attribute type 39 has an invalid length.
[  247.041243][T11283] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  247.202673][T11308] netlink: 492 bytes leftover after parsing attributes in process `syz.4.1769'.
[  247.233582][T11309] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1770'.
[  247.255516][T11309] unsupported nlmsg_type 40
[  247.405500][T11319] FAULT_INJECTION: forcing a failure.
[  247.405500][T11319] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.411673][T11320] FAULT_INJECTION: forcing a failure.
[  247.411673][T11320] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  247.445016][T11319] CPU: 0 UID: 0 PID: 11319 Comm: syz.0.1775 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  247.445053][T11319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.445067][T11319] Call Trace:
[  247.445076][T11319]  <TASK>
[  247.445086][T11319]  dump_stack_lvl+0x189/0x250
[  247.445244][T11319]  ? __pfx____ratelimit+0x10/0x10
[  247.445281][T11319]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.445315][T11319]  ? __pfx__printk+0x10/0x10
[  247.445341][T11319]  ? __might_fault+0xb0/0x130
[  247.445375][T11319]  should_fail_ex+0x414/0x560
[  247.445410][T11319]  _copy_from_iter+0x1db/0x16f0
[  247.445449][T11319]  ? rcu_is_watching+0x15/0xb0
[  247.445485][T11319]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  247.445510][T11319]  ? __pfx__copy_from_iter+0x10/0x10
[  247.445547][T11319]  ? __build_skb_around+0x257/0x3e0
[  247.445579][T11319]  ? netlink_sendmsg+0x642/0xb30
[  247.445605][T11319]  ? skb_put+0x11b/0x210
[  247.445636][T11319]  netlink_sendmsg+0x6b2/0xb30
[  247.445676][T11319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.445708][T11319]  ? aa_sock_msg_perm+0x94/0x160
[  247.445740][T11319]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  247.445768][T11319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.445798][T11319]  __sock_sendmsg+0x219/0x270
[  247.445823][T11319]  ____sys_sendmsg+0x505/0x830
[  247.445860][T11319]  ? __pfx_____sys_sendmsg+0x10/0x10
[  247.445900][T11319]  ? import_iovec+0x74/0xa0
[  247.445928][T11319]  ___sys_sendmsg+0x21f/0x2a0
[  247.445962][T11319]  ? __pfx____sys_sendmsg+0x10/0x10
[  247.446069][T11319]  ? __fget_files+0x2a/0x420
[  247.446097][T11319]  ? __fget_files+0x3a0/0x420
[  247.446137][T11319]  __x64_sys_sendmsg+0x19b/0x260
[  247.446173][T11319]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  247.446218][T11319]  ? __pfx_ksys_write+0x10/0x10
[  247.446239][T11319]  ? rcu_is_watching+0x15/0xb0
[  247.446283][T11319]  ? do_syscall_64+0xbe/0x3b0
[  247.446311][T11319]  do_syscall_64+0xfa/0x3b0
[  247.446333][T11319]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.446370][T11319]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.446393][T11319]  ? clear_bhb_loop+0x60/0xb0
[  247.446422][T11319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.446447][T11319] RIP: 0033:0x7ffbc1d8e929
[  247.446469][T11319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.446490][T11319] RSP: 002b:00007ffbc2bc0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  247.446515][T11319] RAX: ffffffffffffffda RBX: 00007ffbc1fb5fa0 RCX: 00007ffbc1d8e929
[  247.446533][T11319] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  247.446547][T11319] RBP: 00007ffbc2bc0090 R08: 0000000000000000 R09: 0000000000000000
[  247.446562][T11319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.446576][T11319] R13: 0000000000000000 R14: 00007ffbc1fb5fa0 R15: 00007ffed0bd5e78
[  247.446612][T11319]  </TASK>
[  247.799133][T11320] CPU: 1 UID: 0 PID: 11320 Comm: syz.2.1774 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  247.799167][T11320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  247.799180][T11320] Call Trace:
[  247.799190][T11320]  <TASK>
[  247.799199][T11320]  dump_stack_lvl+0x189/0x250
[  247.799239][T11320]  ? __pfx____ratelimit+0x10/0x10
[  247.799273][T11320]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.799306][T11320]  ? __pfx__printk+0x10/0x10
[  247.799330][T11320]  ? __might_fault+0xb0/0x130
[  247.799364][T11320]  should_fail_ex+0x414/0x560
[  247.799398][T11320]  _copy_from_user+0x2d/0xb0
[  247.799420][T11320]  ___sys_recvmsg+0x12e/0x510
[  247.799456][T11320]  ? __pfx____sys_recvmsg+0x10/0x10
[  247.799520][T11320]  ? __might_fault+0xb0/0x130
[  247.799545][T11320]  do_recvmmsg+0x307/0x770
[  247.799585][T11320]  ? __pfx_do_recvmmsg+0x10/0x10
[  247.799629][T11320]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  247.799670][T11320]  __x64_sys_recvmmsg+0x190/0x240
[  247.799704][T11320]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  247.799731][T11320]  ? rcu_is_watching+0x15/0xb0
[  247.799770][T11320]  ? do_syscall_64+0xbe/0x3b0
[  247.799795][T11320]  do_syscall_64+0xfa/0x3b0
[  247.799814][T11320]  ? lockdep_hardirqs_on+0x9c/0x150
[  247.799846][T11320]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.799867][T11320]  ? clear_bhb_loop+0x60/0xb0
[  247.799894][T11320]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.799915][T11320] RIP: 0033:0x7f76f878e929
[  247.799934][T11320] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.799961][T11320] RSP: 002b:00007f76f968a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  247.799984][T11320] RAX: ffffffffffffffda RBX: 00007f76f89b5fa0 RCX: 00007f76f878e929
[  247.800000][T11320] RDX: 03ffffffffffff2e RSI: 0000200000000c00 RDI: 0000000000000003
[  247.800014][T11320] RBP: 00007f76f968a090 R08: 0000000000000000 R09: 0000000000000000
[  247.800028][T11320] R10: 00001000400000de R11: 0000000000000246 R12: 0000000000000002
[  247.800041][T11320] R13: 0000000000000000 R14: 00007f76f89b5fa0 R15: 00007ffe41745f08
[  247.800076][T11320]  </TASK>
[  248.106340][T11325] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1778'.
[  248.265617][T11338] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1783'.
[  248.275358][T11336] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1780'.
[  248.301018][T11336] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1780'.
[  248.643207][ T5834]  non-paged memory
[  248.647315][ T5834] list_del corruption, ffff88802929be80->next is LIST_POISON1 (dead000000000100)
[  248.657425][ T5834] ------------[ cut here ]------------
[  248.664071][ T5834] kernel BUG at lib/list_debug.c:58!
[  248.669936][ T5834] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[  248.676235][ T5834] CPU: 1 UID: 0 PID: 5834 Comm: kworker/u9:2 Not tainted 6.16.0-rc1-syzkaller-00196-g08207f42d3ff #0 PREEMPT(full) 
[  248.688611][ T5834] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  248.698730][ T5834] Workqueue: hci4 hci_conn_timeout
[  248.703986][ T5834] RIP: 0010:__list_del_entry_valid_or_report+0x10e/0x190
[  248.711416][ T5834] Code: 80 86 e2 8b 48 89 de e8 10 1f 60 fc 90 0f 0b 4c 89 e7 e8 f5 95 3b fd 48 c7 c7 e0 86 e2 8b 48 89 de 4c 89 e2 e8 f3 1e 60 fc 90 <0f> 0b 4c 89 e7 e8 d8 95 3b fd 48 c7 c7 40 87 e2 8b 48 89 de 4c 89
[  248.731489][ T5834] RSP: 0018:ffffc9000442f980 EFLAGS: 00010246
[  248.737575][ T5834] RAX: 000000000000004e RBX: ffff88802929be80 RCX: bd10b4e0a4052a00
[  248.745730][ T5834] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  248.753812][ T5834] RBP: ffffffff8a755cf0 R08: 0000000000000003 R09: 0000000000000004
[  248.762102][ T5834] R10: dffffc0000000000 R11: fffffbfff1bfa9ec R12: dead000000000100
[  248.770186][ T5834] R13: dffffc0000000000 R14: dead000000000100 R15: dead000000000122
[  248.778358][ T5834] FS:  0000000000000000(0000) GS:ffff888125d52000(0000) knlGS:0000000000000000
[  248.787666][ T5834] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  248.794310][ T5834] CR2: 0000200000000040 CR3: 000000003269e000 CR4: 00000000003526f0
[  248.802593][ T5834] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  248.810775][ T5834] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  248.818773][ T5834] Call Trace:
[  248.822173][ T5834]  <TASK>
[  248.825296][ T5834]  hci_cmd_sync_dequeue_once+0x24a/0x370
[  248.830959][ T5834]  hci_cancel_connect_sync+0xc8/0x120
[  248.836389][ T5834]  hci_abort_conn+0x191/0x330
[  248.841080][ T5834]  ? process_scheduled_works+0x9ef/0x17b0
[  248.846834][ T5834]  process_scheduled_works+0xae1/0x17b0
[  248.852412][ T5834]  ? __pfx_process_scheduled_works+0x10/0x10
[  248.858503][ T5834]  worker_thread+0x8a0/0xda0
[  248.863310][ T5834]  kthread+0x70e/0x8a0
[  248.867399][ T5834]  ? __pfx_worker_thread+0x10/0x10
[  248.873059][ T5834]  ? __pfx_kthread+0x10/0x10
[  248.878268][ T5834]  ? _raw_spin_unlock_irq+0x23/0x50
[  248.883512][ T5834]  ? lockdep_hardirqs_on+0x9c/0x150
[  248.888741][ T5834]  ? __pfx_kthread+0x10/0x10
[  248.893456][ T5834]  ret_from_fork+0x3fc/0x770
[  248.898181][ T5834]  ? __pfx_ret_from_fork+0x10/0x10
[  248.903425][ T5834]  ? __switch_to_asm+0x39/0x70
[  248.908202][ T5834]  ? __switch_to_asm+0x33/0x70
[  248.913141][ T5834]  ? __pfx_kthread+0x10/0x10
[  248.917750][ T5834]  ret_from_fork_asm+0x1a/0x30
[  248.923368][ T5834]  </TASK>
[  248.926416][ T5834] Modules linked in:
[  248.932061][ T5834] ---[ end trace 0000000000000000 ]---
[  248.941803][ T5834] RIP: 0010:__list_del_entry_valid_or_report+0x10e/0x190
[  248.949581][ T5834] Code: 80 86 e2 8b 48 89 de e8 10 1f 60 fc 90 0f 0b 4c 89 e7 e8 f5 95 3b fd 48 c7 c7 e0 86 e2 8b 48 89 de 4c 89 e2 e8 f3 1e 60 fc 90 <0f> 0b 4c 89 e7 e8 d8 95 3b fd 48 c7 c7 40 87 e2 8b 48 89 de 4c 89
[  248.954057][T11363] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1793'.
[  248.969488][ T5834] RSP: 0018:ffffc9000442f980 EFLAGS: 00010246
[  248.969522][ T5834] RAX: 000000000000004e RBX: ffff88802929be80 RCX: bd10b4e0a4052a00
[  248.969540][ T5834] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  248.969554][ T5834] RBP: ffffffff8a755cf0 R08: 0000000000000003 R09: 0000000000000004
[  248.969570][ T5834] R10: dffffc0000000000 R11: fffffbfff1bfa9ec R12: dead000000000100
[  248.969586][ T5834] R13: dffffc0000000000 R14: dead000000000100 R15: dead000000000122
[  248.969604][ T5834] FS:  0000000000000000(0000) GS:ffff888125d52000(0000) knlGS:0000000000000000
[  248.969622][ T5834] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  248.969638][ T5834] CR2: 00007fdf0e41df98 CR3: 000000003269e000 CR4: 00000000003526f0
[  248.969659][ T5834] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  248.969672][ T5834] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  248.969688][ T5834] Kernel panic - not syncing: Fatal exception
[  248.970480][ T5834] Kernel Offset: disabled