last executing test programs:

3.23643315s ago: executing program 1 (id=3485):
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
socket$tipc(0x1e, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0, r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r1, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)

2.416561709s ago: executing program 0 (id=3487):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xc0241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="032786dd0501100e0300f00000006000000601002f0081e949b93897bc3b0000000000057d01ff020000000000000000000000000001120022eb"], 0xfdef)

2.288943348s ago: executing program 1 (id=3490):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b03d25a806c8c6f94f90624fc601000127a0a000600093582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@cgroup=r2, 0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="9feb01001800007f0000000040000000400000000200000000000000000000090000000000000000000000010500000008000000000000000000002300000000020000000200000000000000000000000000000b030000000000"], 0x0, 0x5a}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = socket$kcm(0x10, 0x3, 0x10)
r5 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r5, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_CONTEXT(r6, 0x84, 0x6d, &(0x7f0000000240)={r8}, &(0x7f0000000280)=0x8)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37080c188001ac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)
recvmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

2.190011539s ago: executing program 4 (id=3492):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x2d37, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

2.001926299s ago: executing program 4 (id=3494):
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x9c8c4, &(0x7f0000000240)={0xa, 0x0, 0x0, @loopback}, 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)={0x84, r3, 0x5, 0x6000000, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x4e, 0xe, {{{}, {}, @device_b, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ibss_ssid}, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @val={0x2a, 0x1}, @void, @void, @void, @val={0x71, 0x7}, @val={0x76, 0x6}}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x84}}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x29, 0x0, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000001a80)=""/4096, 0x1000, 0x0, 0x0, 0x0)

1.949032949s ago: executing program 0 (id=3495):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="18020000000000000000000000000000850000004100000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket(0x0, 0x3, 0x3a)
ioctl$TUNSETLINK(r1, 0x400454cd, 0x1b)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000340), 0x4)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0xcc, 0x0, 0x0)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x80, r2, 0x10, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x60, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xd382}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xea4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xcfef}]}]}, @TIPC_NLA_MEDIA={0xc, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40840}, 0x0)
ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000000)=0x4b)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8946, &(0x7f0000000900)={'wlan1\x00', @random='\x00\x00\x00 \x00'})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.824565083s ago: executing program 3 (id=3497):
unshare(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0xb, &(0x7f0000000140)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x7, 0x1e, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000002018110000", @ANYRES32, @ANYRES32, @ANYRESHEX, @ANYBLOB="d151d41f4fe08c4c4e975b3eaaf311ffa686053ee2bc39a75684084d471b53e91ea6db8e8182c070cde725da3f7b5016b36234bf3f31931915e472d5ac1891c9100013ade5fbceb28ae9e3c20ad18fec993d0ce406438b0f19e016c92224e2de6c7eab8d2b501db2b21c6abefac6cf194f7596b4cc3e0f0e6e1025d2b251017a20cc3305297e44d38dd1640b8ba7d8ca71dab89358298f4330d6f62c39175ee87cef7c7a272c7db5c3c0222aef458be44b6bcd3d30167d30724874f31021b448dfcbf8fe69ff9e260eda497ea1e9c55c5932c4d8f325185bbd116f9eda4b502804a6658911f602b1a632b7fc0db4e5fd4ef85238efad79d478b790399d681b2e71742f3dac6f241f13f82cdd22deca13e8931ae2f69018203d89a1fb4722934d501a926630d7a3f08e163e60744059bdcac622a24e86e4f0a116b22ba11a3824e267d8efabeb29af06c6934e1dfaefccadf668139d02965034963185ffe427c8757b5f3301b5b7ccdaa5f76fd89e7e4e0be898890363d928df54dca5f2f9ad35f84e81574f74404bd5e0ca5242c78f227c13476b8f904da2df7c3747e51678be02d8d9a29f8d74a4edd1fe05bf80ff1b116d133ad3d883b4675db1a549fa7c29d7ee8720d8bf6635a72cbdb97def260198ff51ef1c4c6eced1cab04df013a78a3aedd6b597a1aaad2f8aa6e91c60c9de848138066400b82edf4b98a7e09d609f7359fb93bfb5005844d26571d7028b72320b7d4c273f8722195ba094ede5c5924fc7288766684f85c6bd26f59399a4ebd2ae7b5bb89e291146c3f6fae0097c7b91c127b3f00805c0b47390dd4ae6dc33f98d0197cd8e234f7e06f075cb17c7c01d8216b7f3294fe4e78fd4db7910e3cd4e7bb942ef3b5c0d51e2f33f8a2c879df5e6761a0cc4d4a610042f1b20430f61982d0ec088e38e563047b5776bd3919f2390c02d675e42d88cc23f4218740312fc0ebddfe62b9c8d84049b202aa15e6b99bdfa3f8af08a35d0d11cab6c1913cc9e6ea2535fe8cdd545cdff700b7f6947cecc047a6e601ffba036d53bf4c9de1864f3812fdf27e5db8425b7df007b4945ce01fc5f33e1b67cef017687ed6b82ac0a41972ba93de672a1b8c575938b4a6b3e2a09e64bc66696fc63da427eb2421fc5149f1bad7ec30c97365c0141e3c2a99138378d52ba4fcf44fdbf03aec506cb74e4fa166069dc7e7844ac2d4665154da828cbad06f2ad3647aae41253962ab05437640c470b498d6e888b1cfe0d5e34e8e0e1ea1a932bea249043687fe4e951631789c4a0f0b575bdc32fd0355867f1c9711cbaacb193941cc496d2725a9f3e968ba35d30feae766ebd473f273f3d788e5c41bf959df876337c7374bea8ef6a533147fea36419698aac760ea41a4f0b1a1fc5f2c7a034a3b5102041379aa2e65a1638940bbc03ff78d87dbb526d87e0f13d9621bc53ccd3ad822a7660ff965bb3e13bcf38b7961dd9a0a7c0826a94599b91626feb10728d9e5e724365ba8de26a901a2633b9953860adb0cb55253c7d0d9bc937bd582cf2973d1f78620ac2472bca3f9b8e0ae82e1bdca59fa10f657a246f77b9cb61c22150ddb5842fd1d847592574f3ed8e14c792e83ed1f818287a787dbfca749791104a947e1eb6a2f931e2643c998843a572ae1b8a2372fc607b138acb79cda6b169e94da17ab7128c607fca09e949cf01119b0c3962ea391abdc1ac42978680e295064399c1500b0d8bf3479f31faf1ab4a5927bcfea04645e451ca4b53c3770b296db9c89751b47ce73829e04ed655f664eb6b878b14c939c5761a44a0f24d948fc1b81b9630567f84eeaf1d7c4c59e151d749a35417bf6b2f18ae21c6c0c3ed66eff54b14d9953632c73ee5c158b9e5b75b9dcf7dc3ce015bae6f0b898752b5366e35e9a594333ea1718ecaa95fa334b0174e1d20f3ab5090482729737d4486d7309264930b23bb6fbbbc9b20f6b1d363d91652480f793c1672630bc0ba5324112a6c2abd833a38ee8e17996c4938a32946a795c002784c8a691af18e54d813e96f6e1e39e979c7d55f0ea12ce3aa2429ae957be7dfcc6034884a7810dbf60648bc7f1f8cf814e96ff425b88aa3d00d501e915f97ceaf3ff56cd432b9c526dcd0da9d8f3be38a98a8fcda8fec4478edc9ed9d8afdf0b9a5455955e38c0069ea1328813ef9e6b407d0501a77749ea0c3034c09f742d56dce0de0306eb21a45d014cd4bbd62fc0629bf615fadc42ad92c77136604f02f28a151528d30ac618c5c9ac77bdf071766b55b72e60316458a522d0eecf13c121b1330de07b087fd2b76e13342c47e208a06037284f6622a13626078d752e6fd9f7c56011e2b8730683f72c24b5ab7029d5ca7a68c893e794f8b85bedb3780e2c0b8458a584f57c5752b3a676620f7cac4bf7854a9b57f993d072fc6150dbf484ef3ec45d6c76c8da6cb75076419aab9b713b95afd3d659eefbe9831fb5017a5218e61ecb4f02d2134e158e59daf153ac7e02259a96dbafd6a988beb65c102384405ac33c8545d93f6e2d6178e1741107d192510623e2d5b017a851f61e328320071c87c93b1fef58036c946e5ca474de3f9c1557f6269a4c58f293b8a4a5da841eb7a89adb2703c36039a31dbfd56a5ab10da7a32db060258f047064f07f3d0512b2c75b686f663da1913e52a82219291a002dffb83fde0de7c4e2ad696db3d8bba1fb2944ab725177a5156c4ec2c7c34d24494e6df834016209a1092c91d8604f90b16b11610912f85fabba780cbb3206229d45401aefaf9264389858614a31a55089f7e1c33c4201537c12aa919e204beafa8e0f7be1e610aa58b59ad2924f6ce861d66bdf8b9c300e8045bb8d452dd0f1d7985203966c55e27ff7b5db28e86524a3c4b38c292105308f9099eaa7bff1964bad4f43707b81f916c9276f70d70b2a26f88721a23614a36043feedc3d1c7066ee351e54cf02d1555ba57d99f68dd966968739278f81956ac6cbc52de841eae855199af7e829fff038bbd9ee0f4af169305ebedb6fec6b19c94448eda8d8227c46ed2b259627dd661cdd6c588e609f81324eae9d42b0f34a99e83893e2664b1b7e5f597590528f8eb85bb51b551d8524d2c59341109db0e816ef99e1833c5f6bf219c85b9ae35c94e7ace393e7c750403084dcfeda71db59854d03a79eaa1ec78c96e1474727818d0f1410a6b85f5bc0cdd46827275ed3ccf1e610b0c7809d7513a6a537474448bec43cdb9a950b239975c9dce5af91ffc58e1f7227774dfea7f4f2cbd1ff993f191e07c8e6f96fec5e3b824182ddd32d27f5863d2faf212a0ca0aded1109e1f97b31555693fdcc7e5c1ade624089b05ab6f20bbbb761d7b0320f04413691270c80cf87cefd72eded1eb1a9762dedca00167f50fde96b297002cc6e8b1addea728a7bad6c7bed1aa19e10f8eb20a5cdf1234ce725ba3b8722f50194b75262d2da2fd4e345e1d5cee1d5c931cf95ab94edc06ab5b15ac665f80057adcc959900e5b7371de36932af68d521790f2b35b4f742be69cd752487c9303cb381bcdd56bf052f1b29403358c9d05cd74d075ec279d751fb418dda8ba3f0a7ad58a93d47f8e45fba0497b4c08bb32729b73666cd3f036645078fbbf734f8ee7778d6dfd5d4894a14331642cc559e26102690f214d00144c720abebb71f943f324060e3e879b980a3af61267da847725da5a6d40acafed6ea2aa9710de9f7e13b18c805e7d85a3150bd493eb322ec7e47c6d446e52f058a6d3249fd8c52a7f3a6e17ee60d5c6ca8f5470a5a1dccdf8a3e88af7b272177ca6a8aa9985d818fd32e4cba2276224cc9c9801b4814edb87c3abb46d3f83ca1fb9a112e22c0b737ee6328b8bfaa85257b43a3c1a5b8cf285e16893c82041aaffb800a8b42552cafc34c9ea653121a14202bc25bd6c409fc7eea51c46dd0a159ed68af0ca77e744830b54cde59ee503132061696ab60af75b63aee6846ee300fd4f89b87d3142c7dcdef84521ac36226b049d8ef570c38647dca765248ba2e59d74dbcd2c06194e23407576db773a1e016556ed80a4677ec69a85a68beb7b56a9f915377e2c4f2bbee1794edeb1dc98f3bb284c0b495a65fc0bd21c75a05ac6679a47834973d5b16df4a19c56d86ff4d0c53542bb9e9eb8d2a3528bf52133451f2e625f62c85296c8d784f929175a252cc21fe877516ba9c6e366fd56b7d2d15588580e1f3f847fcbcbe704c6ddf790b28c998841b0fde68e165911683bfc00475782d0eeb15ba9b97ea306626f48f955d68fbf8a5e3f33ca7af6d4373443666fb45e6fee3f8b90a90363db49647ff753d334984db89533e7aff4af77246aebae6e460ddfca360072382d088692ca5672cb762ce373bea4ef6dd1bb906120620907dbffd77213c7518ff8753a908c05e75008eef2a8a31f0b9820eb630304bf3db57e24964ae361e9ac15198afb79b1424a32808376d7819e4a54efbba2b212fd4424240b7e98d95d73894009c2e8ef77badbaba01eddb812605da0bd93e8843142cfe3fe2d87e2abf6b950ba7cbcdb4f5a2474c73d4cc9cca331f249c5b74793cf7ca6f945f0e9bd786ff74bd43d75e6515cfbe9515e5c6448392b7329de503785b1395106eb7d20ec2e37723df2b69fabd83882cb8f545d9209aac8e486b5900e71294562772c76bf4698fba9691002f7c612e13d0b136444b7d10acd3e8fa104e626c4493c142a1a2b70aa2f86c2afe8aa60596cbccbf1dadbe528c83dca1e73643a42363ebad9b94836ecc2126264c52d895c1801dbb5f6ac3f4234a61adc7250d366d9fd261a5056068a580617df9f2ee8da91424ec59892a9887dfc6700cc02bfc1c63eb450969f869be1d52d179ac32994cf04d0a5f4d8bdcbacb886545377f7b1b95cf10887e73917f7b1e9f99820509855ac5e7d31ad354c35c366d46481929106690bbb45e200b4265ebaf2cc1b77f053bbfcf59f94e59796aa95002dd4a66fbf02bc4105d48003e31eaf156cd86cc7ffbfbe2083782368b57301e4f20b3b00d552582bd29b22b22309b387afe6e88aa10c3e1fddacad50ce7abea85af5e54275bcd6ef4b598ebf026de11c3a8d27d7c23fba2a733b83bc962fde2a32c99911b506664aa4e14e5471c193909e32ee98816a0935c08d8f7b30388226b3251bb8e7b8badf29c1e5a3c23c09ee110a9e9c0c1dd4c61f0fdd3af543b48625ad0ea31091b476f291193c42d47f3276f8e633706b1e1222423ff7bc53de24f38aaa9ba89656609e6a034e47a29fe66d326aa054d8589929735a3c2ca6efaf67bcb69b7bc785fa924b2830c5f705a116e51509788807561035adb366395bff26e026f6892d09607eef9eb88086124fdbd984b54d67152caea69223ec775fe1e540c69a4fd26bb4d9e432901590b25c0976c2785daf2efb5dc4d4f8797aad830456d03e7b9ac9a67fc4f8718e3461000556ef36a0c2112f1876dca88d529576dd63de3eb34f60a658baadc1af5ccf7a027b4c5491095408444faa22eb37619201c778510fade0c87c697928d4503b79ecc61648c3fb1cff96fadcb2d241dd0ed437dee7c81047fef19fa9fcc1b7e3ad3086066b5fec938f52e7b9e16a1ce2f296b14b1c723b34d76a693ef20a2eb893528ce6b2ad745c5d0cddbc47f4628f023740a9449d7af2b8ef3ffdb24244868ece409757ddba9d2e8d3bc3963d2cf7d1a3d6a6db482cd89de596c19f888350e6c25074e5fb69d30e393cbb4b6106da65b7d39b4e123e6fad13e7ce99d5c660e81235e92c469e5f9", @ANYBLOB="0000000000000000b70200000000000085000000860000001846000000000000000000000000000085000000a700000018000000ff0f000000000000ffffffff8d24c0fff0ffffff186300000600000000000000010000000253001c01000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
socket$inet6(0xa, 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x2})
ioctl(r2, 0x8b32, &(0x7f0000000040))
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000001000000a58000000160a03020000000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e0000000000000000001400000011000100"], 0x80}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5], 0x20}}, 0x0)

1.824035209s ago: executing program 1 (id=3498):
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[], 0x128}, 0x2400c051)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0), 0xe8}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1e, 0x40000, 0x10001, 0x9, 0x82, 0xffffffffffffffff, 0xf5dd, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x48)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000140)={0x2, 0x5e23, @remote}, 0x10)
setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f0000000180), 0x4)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x40001}, 0x44040)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket(0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000a80)=[{&(0x7f0000000400)="09265e710508195ad69e96760a54539b68514e72e89cff50c330b1b76ed0f63567da5d3c8512855cd84d67f887af47e5130c8ec4f51bcfcb9d9c4ea526fe05d15c291f391d4d0d63bb", 0x49}, {&(0x7f0000000480)="0a656bf433b484e34126271c7980f125bdd1a4883b8f57822edd94c328148713153a8cec79b19df0b4d192e90a5203b4ed3c1fc42bac58f34ea84cddf042a3b04c56387355ff2b9cd4b78ea4e8f334b4727a6c546f2d2252906a73fd5606cc9267eced5be2f5e713cdbc711a0dd63ddfb193d3a3759ed29837e48fd173dd393cfec3", 0x82}, {&(0x7f0000000800)="4a518e8b3e1dc7e64265c6c2ea934a80251a5e5dd62099b883090d643d04ba2ec37999aa8b36531f5a5ed300eb47df7a22895c5f9cb4d9ea1d85f53d53473878ead0db194720cc0857fc", 0x4a}, {&(0x7f0000000240)="e18caa534dc9c04968e0f648ec89c5ba1c38ecb326efd25de0e429418a45a52780e3fdbc81029e6d907184578884ace8ee5b", 0x32}, {&(0x7f0000000540)}, {&(0x7f0000000880)="586b36e2a69d68ca41044e266ab30cb643c42eccb62f000ecd6965bfb8d68a16adaf29588fb3d302a2bf0bc95010c10e0a5e8efdd6c8640e762ae4ed019953bda061df10140ce579a94f0e29a93680f65cf8828b8d97cec0705ad2a914838802b417fe916a760d71c7e400e53fb8d80d27e7723b79fd8d8a7d6ec5f271908cd9a906f6c440a7ca171b047504c32bcf5226a5fc0fbd35fe619a935571a30cfed4f0de83574424afa63f", 0xa9}, {&(0x7f0000001b40)="81b2b873b73a4b275be0cdc3b8c9529748dc0c8ded2e2303a50931fd694dcea3046a03bff00d200cd0b69b7f9281db66a56e0b97916dd92b21a2e99ea47bdc564d09d374f36efd1d7fffb6c3bb591e04559e4b144e2202f09b45654331f882019f15e61d042e0acd59b1f2bc65a9559c9853500c0707f5df832500f6443544c3fb3de90f7386fd915016621be8b5cb998d462b91d9a8fbdca3fdc76ae0d25403271fe761205cf856921e72506edd04920dea5da713d57974b14a687248acea292c43601dc6dd2b85a480b0995e40969ed5f38a6bf6313a76f06739ac4ea91a1de6bf39d9b69a489a758dfe028a7104a0a097e35ef70f9830c32fb06ab509c078c4347672d246e54fe9ac119d0121cb719e4f6e298dc51189060d74a0662d68253080c09b5f600c5d40a3cd5e6eb498203190a82187d64f85d293a12eca12a7f6c502452b314af0e33986e0ee59d23f56f0f7950ac813c95bf080ebfda2367ba760b53affed393f88e5d999ac7ca9e352ddb95c07ea0c8607774ce3d34810fca366599db8ecfe4fe26949df1c2e30e96bb2ce9bcaf49cc787d6f63ee2ffe6724d9c2cb4bc035eff836050e5b6c5840163e12bc83fcd573e9ef3fbe8b355bd036f4619a0a06b41a130a3b15936dbad6ba3ffb65a0eccf035ba3978825359690ae7ae970194c9852f113f5576b0d732971cb7397cda3a96ab5da75a07a852999aadd7208d3f57799a25c791ef20c587b2d5fb4d362b89d0d850c5f71ed98202070b2a775c961100008b869497f10e2c20d9b5bd5a6aa156254d050abae963e4b85b4b01e2cfc683e50cbbd1f43bc11f844b02c3d73509b4a23507e92c1fc4e35dc109a86b4d44143a243cbe44a3c7f5cec4846d42282e103ce49217d603fa4b4de8bce1794c140a1957be12cb75552476a21271f02f26c529718453e883970b86367485438e38f2ba47878cbaf93b1deac8ece84002de064f9ac9c69417af4885a179c749cc6dd824974fe6b74e5daa5a9cc29625a8a861202555a3a89d6c1f7067e0e9c6cd94c98185d19c946b082403982dda28db3cc462d30e06bf56832b36be3b9e9b9d3633ec3e7c1aab7585572ca79735c8a115d0ed4c70300338cdafb1df185c6afd08b4567dd076917c1a18a0dcfeb4e253c84c76f1f2bf40e59a294a0699ef961104eaf09ada030d455a678559f32f5fdade5fb3a83c6b3baa458298497f7935a97cee048ce119862e419055fc1078d1f812559e4031b05eabd12f1afe454409a2893a6d7d875f7645b7926b7f78650200226490ebea5f419588fd1a3ba4579d217a17a963f765414156d661772e09900ca1024eaac872895d2fb7c54a7d27e72e3b1d8e3573637210c1929a635ad5cf33d9f4df9ce433b9005e5a4ec0f55f4f12a6f8438a6e34bfd6ce558a23357cb3bb6a5c51577c0f7e93517b729fc4e2972c3a3b48c324f3bd85da848e18ea04de68f474d2e03965cd003389c672c138d534e2b60090fec966dfe53853b096736a37ed3e6e90f553c9eae525ff4f740049acd8f85db646687017183245014016c9d1a7b04798f5e2ac60def5145c7a816fb65379857b3a2c8c0132f8579496b6a5bf7a543eca83fff30831489b7f736c0ee3f913e124d4c8a26dd7f209d0bc9faeabf8ae8772874249d92a70edb7805b35c88308704bbcdf9b03b50d481dff7b8da7d61c4cb04c24840524b3976a1f9956d520dc268b680c165152fe7c49b8c04f163f7801204c4a676d5b0e7a5744d322e33ef34b9dafafa80f24d5fc6032e58e75d8d069c8de56b857e2558cffa9780becae24a4d9e33609bab13b435e8705e4753289d61289b80a6ccd602508e033d14c40190c22c6f1b32aab8d258909e7e17e9503dc5634a667d3ff56a033995d40ff016ec4402c8abed20fe9bd2d2a9ddc86713bcb6bbc05bef3424ff081a0dbb4ff0594eec4b2a05831b70b9cac914222848741c5f5ab3e6459b1e3d770f001b3ad73d0d10f40147b0d21d225993355c0d72f7004d3e415ae3d9621f8a2bf52b0b395e94962769488a340afc9e0e6e035142837b1adb7f88ae1854e56c79635240996daa82dcad253c59679b0a8e2f192682bbe1d583bc7b7e7806dfcc28ec162d850adf58980c28f1effc68ef2bd46d34547cede36fdf045310c3f10a0b8cf07088c8133612d1f980f2d43ccbb093985aceefdcf6c4b6d9339727686c0856f342093c0be4976fcc8cbfe68c380ddaf67ab4020b6f05580f21184f94d1ae858f98776d98d4b8af47d35288a79d5b04d18ab5c52c5404faa1e104e8189820fc1c916c2b9feef5f798a9977d168da867e44a974d77528297fa08bba7e7d5ee56776043b88d2c4bf121d4a9204946de35b38a0ece160c7620afe61322121999a7d0199cf8c264a3b542dc66fdc2339b989245864dd823e4423f46798550b43625597888dadb2ebd943fabdd9dde2ed7d3bf49f5ed4a42b2cbddb850e31f82315f1d48b7c0ce3f221de358fd9893db8613d6d5b87d8207dccc99cba8fed7d0e4df30f574db81a9b1699f4fb3e545c101b4577dd24d8327f86b225bcc3c5adeb545f0ea5891588387862bee637eec03e81d585739995e10b94dd6924da79bf08540093a59e8bbe65a0fe9017e6805a800077cdd257dfa26ba2434b5f8ab589234ebb39c7cf002ba8765865cf4b91e01187f437fba098cc87a86ae657fa9dd9480e57ca85c280fa3b19dcaa4b18df078745c6e50b0717de066a26e51da032382eca245b390eb0218c5221dd0d4bf04e4b36760372d49bf8e34ffa487016605ec4156d8929ed52a134de9c54ac7235019d8584da1ec953a35e293d9daca1b04dd3ee31e9676f30e4e540a8cbfc5733cb2c78d5c803fc80dfc807cf1bcbb1d22cfd0b12f10245d13a9711546ddc6958ce64ef8207388eff65d194a07a7a49951cf346404f0db7cc06fc52da78bb36736d90dde7c83964a66dc3ff30493e5334b04e00e3aed6218f1f61ce24fc69eb686c7d4e2845da747dc1bc56e6309d56f721125007805a538b41d08b3a5279a25670925cd36827c49e6c77160992d746d2526680bc15cbbb5fe242837135e4bfbe1eb7f875030ba5797050bc0bee2f4565faf0df3f4e5be5956369fbe75b0ea71a08e87ce3cfb78cd4f0713770312b8fd4725e0dff8dc52cd28b575dda94bf427e3be4425916fd01627acab47e270f2af094e704fb8815a79b176270478730b0361e302f26d2d549d0f746ef3e0afe1d78cc65aa7a6e989022ca1b1c35968ba8d50ce687306b55e0c70f7fba06bc0631749c30ba860b94e640eb3e158f5e54572c829a2e3adfaee25cf833ba2d5f86ec2f968281b173444548988fa234c023c891ed128c6d3f35af410ceb2b6ade8b566977b9705e7f93938e19d8564ae16ff2b3083d58c7e5a532850ac782b1f7153f5042c5f26a79f13c4cd6e5d9d4efc9c60611d33b0630ae609c6b761fed95105e7fc672b88b1ba29664de114f4d22d5b09fe6fb68ad11a53b870105ad4646e5c4313d57a3b5ab9eb7b87d67ca9c3f7dbc6fe5fa5245fa2e5df95a33c143328e5d1cc6493c0dded97dfb9e94a75eca40ef3277daaeea07902d86a2818856642863e865e9548a60e1856b5d4967cc4c55ee6cc403dcaded433488061a1664a6adeb06992154105958a882fbee1c0eb22e3c331122b494a5d5e8899e147cb23bff04a40071cb18a24fdec64138db852ab6b9b75c0f584ab56fc52510a05fbd0071f6f58ef8257d708407ead81e40994747e425ce663c77960e93f860ae78d0c42b050ea64e7da8d49d7238825da2fb6c2d88ade01facbba4de97aa10d616231243fd775512b6eadd513d7ffe399a1b568178cafd149bfd66901f582034f77fea79cdd2b13603e80765317d578d40ffc0e93c34c49a2b0cdd6f3d242f93715c74854f0fd666b66810b68d403bdda4f728f14c7cd4bebf3f188452ee4c5aa0958e0fa6e922571afc46ec2690ef9d69e4650b436bd1e1cd2441ecb576dc94ba99f7db2a60cad20269721a15bfe063f4ab24e82b26eadc7a6b0d5bba224caf6c441ddd1fd01b161d3daa4c71ffec0f5b04e3eb3623d52f989dedec1fd60c3077e684482f861d0689c7e245928f412dd5f549a94702db152890d2514c16699224fd9f79bc805588ed480c7c4f7e37753dd7251c5787a9d4885d56b6f96a6b3d8a0181595d1f3062d11f00ea262f39b20bd747dbd4ea89e180f6208c924a6b29a478a7adeaef846d731b91f91e3930767fd8eedc2cd50f0afde88e3aeb3b45da3e3715ff397ff9b605a4fd19bc130a096760263a8c61e2126de6177053f8b65bcb3a07867113ef8c4adae1afe831ff9ba8c26b3fae8ce48a052ba2827328969de4b0ca293c81c2759678c2f9a432dda731f916b44b0f5a1d17fd97d0136ff2a2a6273a8204f27027e959448a5758b6f30e37840d0f97abc90125ced7d313817566c02c46d49b0c2ab9f87e73577d2074fdc33b72b4f389f9b3770a17ce98aa57917ba234afe0232f2682e87ad3470485a1d72bdcaccea20a1d921df406ee92b42879d729c157f974ed2bad357c3ba347c2b5b73b11b92e88ac878fc50f36cf98700b483dd063e3af5ef07b27776b68acc2ecbf8bd2b956c0e5092924f27ee8a9474403f3ead2238db2d18600736d99e7d5aa659dad1a9fa672a98394c3ccea202c7aa423b2e17399fc4b3754f05132517722bb80506e288a8ab06a01080866f61b923c381160c2e7730d91d3ffcbb5d69ca499075d011bed8173e7001dd4c64e03a67f66c32276118527b425104f4d9799ce1886fed9b12f6602dd9779a3b356899d462af732eec5c54712f568c2b1ea59cbcb70b1a67cd94efbe534ea3411da0df59f66d37fc68c62269120d6affb9f02b664ce5b9abc9e9a33dea39d20f771c9bfb54badc8e4c048c7df8ef4f2fdeeb80b650d4d96869112da17cc0b896b1a2e47fde7c12ec0b84f8fcd21555063a58ebab4903fab780c3f3142c73de0fd8da962657b0b28414309f28679a32af426806c605b7b94a7aceb0988806bdfaa24e85704c2bcdd7d71c57394a9c4fd7ff5f77355780e3cc3f38f1dd8ca9f5c7bd7c91fd0a670d5dc9ba61ca9893b387fe5cf0a6e680d206bc0d001477c0f44a5f30db1a4d38657b820927e8da41427dd2eaf2ae10cc7a634e3f89c98071dc7ab19d1a1558a9aee65fb0a48b1c6c8783f5b19f4dcf5b6dbbdf4f167c9861dfe5f959b23f408f1741c135210f48a67c7db43d424aaeb752e9cdd89faf6a590c951a2c63c3968c0cbc1a6f7dfbe35fb541406a84dccc4e25891e5e6179fb2a2766764aee5513aa85ac0408a914e6f492cfe69de69b9b1db4b28732f5aa69bba00a8f52131ee647062db9e8f28ab150f42659e65d53e1249ae335ed526e78c6735de1c9f579621b2750894d7983f04bb0e266dd9a093167ceb6529f85539a3e09496f00140b026dbf2eb21e30a444f3507083dc389aaa35fc696c2a5cf419c0823e2c629d2fe593a30ad1e925602bae9a82c7b9e724f52ee26fd2aca15135171fe470aa8534e93ed3a3f312e2ff188585018233b8d22a6f8c278efab744ab9ce2f6f5aee552ded5579c33101823bc951d2d4fc3a352a52090c619d873910115f2d16dfea538b6d0deb3f22043d1f07f4dd60eb71dfc3384171fb28a9d57737d9afab9da3ef78c3f7d11d562df80c07755361c12f7a5502e025340e3b70c638a35b060c5e7dcf8c30a1d78a9ac17a7d4bb69fabac85ff4aff2d0176d26dcb493506b32f5d1a20ecda2e6e7b", 0x1000}, {&(0x7f0000000940)="dc7f652497270465e3b839071b6fef654a8e272954b4d68854443ca3b5b9c5778ef4443924aab6d0f0d254fe2b5226d1822f3395b2a02805b6cba10a9fb42b48e4c6fc4963328a2e79ede2dd98271ad66d9994cc15d2a2350c2f6b97c39d5ebfd74ff0f33f7efecc5ccfb02dce4e06fa91e4d328e1420c33927bd55d1e0c55fe85f24d143e645cbe3a0ec13a943249fe4a0ef7c5e1aedf09b1a9c12df41c14de25383c5bc509cb5f521342cf37bf9c443dcea0f732", 0xb5}, {&(0x7f0000000a00)="5e26a76c05715a9b40af180bc49280e42f9fb4c50ebef77e2905d5e9fce424834777fc39861f2ffb2d007f9fda30086945bacd7e608491660a469c5866e8e6eec016c1d4f85690a3c79d4a0d5c7d2ade03446b145492c5675752e6c9d37c783e0e3d787992adbe5eaf", 0x69}], 0x9}, 0x200000c0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYRESHEX=r2, @ANYBLOB], 0x20}}, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sock_exceed_buf_limit\x00', r6}, 0x10)
openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_FRAGMENT_INTERLEAVE(r5, 0x84, 0x12, &(0x7f00000001c0)=0xff, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="020300020b000000000000000000000003000600000000000200000000000000000000000000000002000100000000000000ff0000000000030005000000000002000000ac1414aa000000000000000001000800000f0000"], 0x58}, 0x1, 0x7}, 0x0)

1.737012232s ago: executing program 4 (id=3499):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_AUTH_TYPE={0x8, 0x35, 0x7}]}, 0x2c}}, 0x0)

1.580684931s ago: executing program 0 (id=3501):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)={0x24, r1, 0x5, 0xf0, 0x0, {{0x26}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x4}, @NL80211_ATTR_IE={0x4}]}, 0x24}}, 0x0)

1.539004867s ago: executing program 4 (id=3502):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000640)=ANY=[@ANYBLOB="18020000000000000000000000000000850000004100000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0xb00, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.408655888s ago: executing program 0 (id=3504):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x2d37, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

1.399126143s ago: executing program 3 (id=3505):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000240)={'veth1_to_bond\x00', 0x400})

1.37064356s ago: executing program 0 (id=3506):
r0 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, 0x0, 0x8000)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="6400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="0f000000000000003c00128008000102736974013000028008000100", @ANYRES32=r3, @ANYBLOB="0500090000000000080014000000000014000b00ff0100000000000000000000000000010800040000100000"], 0x64}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6gre0\x00', &(0x7f00000001c0)={'syztnl0\x00', r3, 0x2f, 0x1, 0x2, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private0, 0x0, 0x700, 0x8000, 0x200}})
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1d}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="2c0000000203030000000000000000000700000a080005400000003b080005420000101408000340000007ff"], 0x2c}, 0x1, 0x0, 0x0, 0x4080}, 0x4401c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x1000d, 0xfffffffffffffc60}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
socket$alg(0x26, 0x5, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
unshare(0x68040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet_sctp(0x2, 0x0, 0x84)
r4 = socket(0xa, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000050000000000000000000000000000feffffff01000000030000000000000081006e7230000000000000002000000000007465616d300000000000000000000020766c616e30000000000000004000000076657468305f746f5f7465616d000000aaaaaaf991bb000000000000aaaaaaaaaabb0000000000000000d0000000d000000000010000766c616e0069df4e5100000000000000000000079ba316000000000000000000080000000000000208000000892f0700636f6e6e6c6162656c000000000000000000e5ffffff00000000000020000000080000000000000000000000000000004e465154455545000000000000000000000000000000000000000000000000000800000000000000000800000000000400000000000000000000000080000000000000000000000001fcffffffffffff0000000001000000ffffffff000000000000000000000000000400000000efff000000000000000000000000000000000000000001000000feffffff010000000b00006b90088754ea234d6f6e6430000000000000000000000074489c4c2c0000000000000000000000626f6e64300000ff000000000000000076657468315f744d8abdc76964676500aaaaaaaaaabb0000000000e7feffffffffff00000008000000007000000070000000a0000000434f4e4e5345434d3c964de64039918d16289341524b0000000020827903000000000000000000000000000804000000"]}, 0x2a8)
syz_extract_tcp_res(0x0, 0x0, 0xfffffffd)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000800)={@cgroup, 0xffffffffffffffff, 0x34}, 0x20)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r5, 0x8b29, &(0x7f0000000700)="f6ef1f1967cb9e276bcb0b77ca1e6b0eccb585a7745a320f2fa943cfd24f734bffc69f154e7d7775af813abbd96b2ef9a82d81ff76cc41ce608c9bd4da3ce23d212ba31e69a71e6a23572584001dfabc029204728abdaf9f5fa7a284a0f3f3dc93fbf82bbbdbd6c60ab59691c2bfd1cf5ab686dab1b2409779f40ed43f03f7558b17f8f6e6d921ca3ff7bbb0c244d895dea8f61136481804d5988d0cb068690aab4414cad72a58ef9b91e4f3612e18d7e4db708a5cca479a381b7b8ec090965575ed460897d3fb776f")

1.316544253s ago: executing program 4 (id=3507):
socket$inet_smc(0x2b, 0x1, 0x0)
syz_80211_inject_frame(&(0x7f0000000280)=@broadcast, &(0x7f0000000ac0)=@data_frame={@a_msdu=@type11={{0x0, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1}, {0x9}, @device_b, @device_a, @initial, {0x3, 0x6}, @device_b}, @random="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"}, 0x5dd)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000002e00000008000300", @ANYRES32=r2, @ANYBLOB="0a00340002020202020200000a2f463adf115da100060008"], 0x34}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000640)=ANY=[@ANYRESHEX=r1], 0x4b)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000580))
ioctl$PPPIOCSPASS(r3, 0x40107447, &(0x7f0000000080)={0x2, &(0x7f0000000800)=[{0x6, 0x2, 0x7, 0x6}, {0x0, 0x3, 0x9, 0x8}]})
nanosleep(&(0x7f0000000340)={0x0, 0x2faf080}, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x9)
setsockopt$inet6_MCAST_JOIN_GROUP(r4, 0x29, 0x6, &(0x7f0000000140)={0x11, {{0x29, 0x0, 0xb000000, @private0}}}, 0x88)
syz_80211_inject_frame(&(0x7f00000005c0)=@device_b, &(0x7f00000007c0)=ANY=[], 0x18)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=ANY=[@ANYBLOB="100000000802110000010802110000000802110000002000000000000000002082848b960c121824"], 0x28)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$igmp(0x2, 0x3, 0x2)
sendto$inet(r6, &(0x7f0000000300)="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", 0xffffff6d, 0x4048041, 0x0, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r8=>0x0})
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r7, 0x200, 0x2, 0xfffffffc, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40014}, 0x800)
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_MAC_HINT={0xa, 0xc8, @random="8a3be40f3540"}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}]]}, 0x30}}, 0x0)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=ANY=[@ANYBLOB="500000000802110000010802110000000802110000000800000000000000000064000100000602020202020201020b00"], 0x30)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r10, &(0x7f000000cf00)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0xfffffffffffffe84, &(0x7f0000008900)=[{&(0x7f0000008500)="88", 0x1}], 0x1}}], 0x1, 0x0)
syz_80211_inject_frame(&(0x7f00000003c0)=@device_b, &(0x7f0000000400)=ANY=[@ANYBLOB="b00000fe0702ff0000010802110000000802110000001000000002000000"], 0x1e)
socket$pppl2tp(0x18, 0x1, 0x1)
sendmsg$IPVS_CMD_NEW_SERVICE(r5, &(0x7f0000000880)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000840)={&(0x7f00000008c0)={0xf4, 0x0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfa}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x78, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e23}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'pim6reg\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @mcast1}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @multicast1}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'macvlan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x0, 0x4, 0xacad}]}, @IPVS_CMD_ATTR_DAEMON={0x14}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffff3}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x2}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_PORT={0x42, 0x4, 0x4e21}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x8000}, 0x800)

1.285819136s ago: executing program 3 (id=3509):
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x9c8c4, &(0x7f0000000240)={0xa, 0x0, 0x0, @loopback}, 0x1c)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)={0x84, r3, 0x5, 0x6000000, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x4e, 0xe, {{{}, {}, @device_b, @device_b}, 0x0, @default, 0x0, @val={0x0, 0x6, @default_ibss_ssid}, @val, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @val={0x2a, 0x1}, @void, @void, @void, @val={0x71, 0x7}, @val={0x76, 0x6}}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x971}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x84}}, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x29, 0x0, 0x0)
recvfrom(0xffffffffffffffff, &(0x7f0000001a80)=""/4096, 0x1000, 0x0, 0x0, 0x0)

1.106382748s ago: executing program 3 (id=3511):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x7c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x48, 0x1, 0x4, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFULA_CFG_FLAGS={0x6}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x3}, @NFULA_CFG_MODE={0xa, 0x2, {0x7, 0x2}}, @NFULA_CFG_NLBUFSIZ={0x8, 0x3, 0x1, 0x0, 0x65}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}, @NFULA_CFG_FLAGS={0x6}]}, 0x48}, 0x1, 0x0, 0x0, 0x44}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000ac0)='mm_page_free_batched\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$cgroup_pid(r3, &(0x7f0000000000), 0x12)
ioctl$SIOCSIFHWADDR(r3, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x54}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000000)='dctcp\x00', 0x6)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
setsockopt$bt_BT_SNDMTU(r5, 0x112, 0xc, 0x0, 0x0)
bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r4, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000340)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaaa86dd60ff00f500140600fe8000000000000000000000000000aafe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50c2183d160000000000000000603c28aafce3558f"], 0x0)
syz_emit_ethernet(0x26, &(0x7f0000000000)={@empty, @empty, @val={@val={0x88a8, 0x7, 0x0, 0x2}, {0x8100, 0x0, 0x0, 0x2}}, {@can={0xc, {{0x4, 0x1}, 0x0, 0x2, 0x0, 0x0, "3bbf9de0bea58796"}}}}, 0x0)

1.060509635s ago: executing program 2 (id=3512):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_AUTH_TYPE={0x8}, @NL80211_ATTR_MAC={0xa, 0x6, @random="9203effbb1bc"}]}, 0x30}}, 0x0)

980.437968ms ago: executing program 2 (id=3513):
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
socket$tipc(0x1e, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r0, &(0x7f0000000180)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @multicast}, 0x10)
sendmmsg(r0, &(0x7f0000001380), 0x3fffffffffffeed, 0x0)

962.249654ms ago: executing program 3 (id=3514):
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@local, @multicast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x28, 0x2b, 0x0, @private2, @local, {[@hopopts={0x87}, @routing={0x0, 0x2, 0x1, 0x0, 0x0, [@rand_addr=' \x01\x00']}], {0x0, 0x0, 0x8}}}}}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x2, &(0x7f0000000200)=@raw=[@call={0x85, 0x0, 0x0, 0xb4}, @exit], &(0x7f00000008c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@bloom_filter={0x1e, 0x0, 0x2000001, 0xe0, 0x0, 0x1}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000001c40)={r0, 0x58, &(0x7f0000001bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r1=>0x0}}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000002dc0)='cgroup.events\x00', 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={0xffffffffffffffff, 0xe0, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, &(0x7f00000000c0)=[0x0], &(0x7f0000000140)=[0x0], <r3=>0x0, 0x8, &(0x7f0000000200)=[{}, {}, {}], 0x18, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x8, &(0x7f00000002c0)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x18, 0x2, &(0x7f0000000bc0)=ANY=[@ANYBLOB="181800e7451aea2bf0017543fad584c08382b7a9db7d30e1bdd706e5c7f481dca642659b27bcc3030c", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0xc2e00, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x800003, 0x5}, 0x8, 0x10, &(0x7f0000000500)={0x2, 0x3, 0x1000}, 0x10, r3, 0xffffffffffffffff, 0x0, &(0x7f0000000540)=[0xffffffffffffffff]}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000002ec0)={0x11, 0x8, &(0x7f0000000240)=@raw=[@map_idx_val={0x18, 0x8, 0x6, 0x0, 0xc, 0x0, 0x0, 0x0, 0x4}, @map_idx={0x18, 0xa, 0x5, 0x0, 0x6}, @cb_func={0x18, 0x7}, @map_fd={0x18, 0x3}], &(0x7f0000001480)='GPL\x00', 0xfffffffa, 0xcb, &(0x7f0000002cc0)=""/203, 0x41100, 0x0, '\x00', 0x0, 0x25, r2, 0x8, &(0x7f0000002e00)={0x9, 0x4}, 0x8, 0x10, 0x0, 0x0, r3, 0xffffffffffffffff, 0x0, &(0x7f0000002e80)=[0xffffffffffffffff]}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001d80)={{r0, <r4=>0xffffffffffffffff}, &(0x7f0000001d00), &(0x7f0000001d40)}, 0x20)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x28}}, 0x0)
getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000400000000000000", @ANYRES32=r9, @ANYBLOB="0000000000000000280012000900010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@newqdisc={0x34, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000012c0)=@newqdisc={0x58, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8, 0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x4}]}}]}, 0x58}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)=@delqdisc={0x4c, 0x25, 0x800, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r9, {0xe, 0x10}, {0x0, 0xffff}, {0x10, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x2}}, @TCA_RATE={0x6, 0x5, {0x9, 0x5}}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x1}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x7ff}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xffffff61}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8040}, 0x1)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000003540)=ANY=[@ANYBLOB="4400000010000304fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b00010062726964001400028006000900000000000600140000000000000000"], 0x44}, 0x1, 0xba01}, 0x0)
r10 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r11=>0x0})
setsockopt$packet_int(r10, 0x107, 0xf, &(0x7f0000000080)=0xf3e, 0x62)
sendto$packet(r10, &(0x7f00000000c0)="3f043608260812002c001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe90c, 0x0, &(0x7f0000000540)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @multicast}, 0x14)
sendmsg$nl_route(r5, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000040)=@delneigh={0x30, 0x1d, 0x200, 0x70bd2a, 0x25dfdbfd, {0x2, 0x0, 0x0, r11, 0x40, 0x102, 0x3}, [@NDA_CACHEINFO={0x14, 0x3, {0x0, 0xc24, 0x9, 0x2}}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000005}, 0x840)
readv(r5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001e40)={0xf, 0x10, &(0x7f0000001a40)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xe6, 0x0, 0x0, 0x0, 0x7ff}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [@alu={0x7, 0x0, 0x2, 0x2, 0x2, 0x2, 0xffffffffffffffff}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001ac0)='syzkaller\x00', 0x3, 0xb2, &(0x7f0000001b00)=""/178, 0x41100, 0x52, '\x00', r1, 0x24, 0xffffffffffffffff, 0x8, &(0x7f0000001c80)={0x0, 0x5}, 0x8, 0x10, &(0x7f0000001cc0)={0x2, 0x10, 0x5, 0x4}, 0x10, r3, 0xffffffffffffffff, 0x2, &(0x7f0000001dc0)=[0xffffffffffffffff, r4, r0, r0], &(0x7f0000001e00)=[{0x3, 0x1, 0x1, 0x5}, {0x5, 0x2, 0x2, 0xb}]}, 0x90)

759.528792ms ago: executing program 1 (id=3515):
unshare(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x0, 0xb, &(0x7f0000000140)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x16, 0x0, 0x8, 0x10002, 0x0, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x7, 0x1e, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000002018110000", @ANYRES32, @ANYRES32, @ANYRESHEX, @ANYBLOB="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", @ANYBLOB="0000000000000000b70200000000000085000000860000001846000000000000000000000000000085000000a700000018000000ff0f000000000000ffffffff8d24c0fff0ffffff186300000600000000000000010000000253001c01000000bf91000000000000b7020000000000008500000000000000b7000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6(0xa, 0x40000080806, 0x0)
r0 = socket$inet6(0xa, 0x6, 0x10)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
socket$inet6(0xa, 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'virt_wifi0\x00', 0x2})
ioctl(r2, 0x8b32, &(0x7f0000000040))
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000001000000a58000000160a03020000000000000000020000000900020073797a30000000000900010073797a30000000002c00038008000140000000000800024000000000180003801400010073797a5f74756e0000000000000000001400000011000100"], 0x80}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5], 0x20}}, 0x0)

758.962071ms ago: executing program 2 (id=3516):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x3ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x2d37, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

576.438156ms ago: executing program 2 (id=3517):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=ANY=[@ANYBLOB="5c000400", @ANYRES16=0x0, @ANYBLOB="000000000000000000000100000008000100", @ANYRES32=0x0, @ANYBLOB="400002"], 0x5c}, 0x1, 0xf000}, 0x0)
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000002a00090000000000000000000000002c08001700", @ANYRES32=r2, @ANYBLOB], 0x1c}, 0x1, 0x3000000}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000014c0)={r5, <r6=>0xffffffffffffffff}, 0x4)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x200000a, 0x13, r5, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x90)
r8 = socket$kcm(0x11, 0x200000000000002, 0x300)
mmap$xdp(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x6c05e5991ae871f1, 0xffffffffffffffff, 0x0)
setsockopt$sock_attach_bpf(r8, 0x1, 0x32, &(0x7f0000000180)=r7, 0x4)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000380)={'syztnl2\x00', &(0x7f0000000500)={'erspan0\x00', <r9=>0x0, 0x10, 0x7800, 0xff, 0x1ff, {{0x17, 0x4, 0x1, 0x7, 0x5c, 0x64, 0x0, 0x40, 0x29, 0x0, @empty, @empty, {[@rr={0x7, 0x1b, 0x52, [@dev={0xac, 0x14, 0x14, 0x3e}, @multicast2, @private=0xa010100, @private=0xa010101, @multicast2, @broadcast]}, @cipso={0x86, 0x2a, 0x0, [{0x6, 0x9, "549e82aca5aed3"}, {0x5, 0xc, "0fc776e1f885207ffb5e"}, {0x2, 0x2}, {0x5, 0xd, "1024d2285c0106f213a972"}]}, @end]}}}}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x15, &(0x7f0000000280)=@raw=[@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffb}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}, @map_val={0x18, 0x4, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x989}, @generic={0x1, 0xa, 0x7, 0x4, 0x9}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x2}, @generic={0x25, 0x5, 0x0, 0x4, 0xffffffff}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x5}, @call={0x85, 0x0, 0x0, 0x94}], &(0x7f0000000340)='GPL\x00', 0x7fffffff, 0xd7, &(0x7f0000000400)=""/215, 0x41100, 0x51, '\x00', r9, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x8, 0x3}, 0x8, 0x10, &(0x7f00000005c0)={0x4, 0x3, 0x91, 0x8}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000600)=[r5, r6, r6, r6, r5, r5], &(0x7f0000000640)=[{0x2, 0x2, 0x4}], 0x10, 0x4}, 0x90)
r10 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e", 0x2}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x24, r3, 0x1, 0x0, 0x0, {{0x6c}, {@val={0x8, 0x3, r11}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x24}}, 0x0)
r12 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r12, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
r13 = accept4(r12, 0x0, 0x0, 0x0)
sendmsg$alg(r13, &(0x7f0000001780)={0x0, 0x0, &(0x7f00000015c0)=[{&(0x7f0000000180)="97dc867793fd623d278a6c9d09c26afbcbcde86b", 0x14}, {&(0x7f0000000300)="adb840948d114bcd4a368b6090e808eda54f878eedfee7ab5af4b0efe6f67f1f28f4425bcd2f162d3fee649df713362033c7f3f326b6c96d4eeb29b18026eb3675c80f4d23f319895050ad5f58d6cf26f94a4b", 0x53}, {&(0x7f00000003c0)="2564b826ad10e4c32ff9d8e68e289bd5e1f490ecd068e26fb1aad2e8ad4521805afc1a2dbb3c88eafde0a85c79f187a984f1fca11cc393e3bc37a4380dc8ae8a499432a24ed343d8435358e058477ad42e9a855081589db7ed", 0x59}], 0x3}, 0x0)
sendmsg$NL80211_CMD_SET_QOS_MAP(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x98, r3, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x73}}}}, [@NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0x7f}, {0x1f, 0x3}, {0x20, 0x6}, {0x6, 0x4}, {0x81, 0x5}, {0x4, 0x7}, {0x4, 0x1}, {0x6, 0x4}, {0x65}, {0x7, 0x3}, {0x9, 0x3}, {0x7, 0x3}, {0x5, 0x5}, {0x9, 0x5}, {0x2}, {0x7, 0x3}], "6f1d30b452db5596"}}, @NL80211_ATTR_QOS_MAP={0x34, 0xc7, {[{0x3}, {0x20, 0x7}, {0x80, 0x6}, {0x7, 0x2}, {0x2, 0x1}, {0x3, 0x5}, {0xba, 0x1}, {0x8, 0x5}, {0x1, 0x7}, {0x40, 0x5}, {0xd9, 0x5}, {0x1f}, {0x0, 0x2}, {0x3f, 0x7}, {0x7f, 0x3}, {0x79, 0x58}, {0x8, 0x2}, {0x9, 0x3}, {0x6, 0x4}, {0x7, 0x1}], "9506fec4eda04d37"}}, @NL80211_ATTR_QOS_MAP={0x18, 0xc7, {[{0x4, 0x1}, {0x8, 0x7}, {0x2, 0x2}, {0x6, 0x7}, {0x81, 0x5}, {0x6, 0x1}], "a037afae0927ec8e"}}]}, 0x98}, 0x1, 0x0, 0x0, 0x40}, 0x50)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000240)=0x25, 0x4)
sendmsg$netlink(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002b000100000000000000001808"], 0x114}], 0x1}, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000740)={0x0, 'veth1_vlan\x00', {0x3}, 0x1})

346.659965ms ago: executing program 2 (id=3518):
getpeername$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, <r0=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0)=0xffffffffffffffff, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', r0, 0x0, r1}, 0x90)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket(0xa, 0x3, 0x3a)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r4=>0x0})
r5 = socket(0x11, 0x3, 0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000000c0)={'dummy0\x00', <r7=>0x0})
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000140)=0x663e, 0x4)
bind$packet(r5, &(0x7f0000000080)={0x11, 0x0, r7, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r2, &(0x7f00000002c0)="fb57975e267951722b395d37bac8", 0xe, 0x0, 0x0, 0x0)
close(r5)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r9, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e0000000000000000001c00028004000100140003800c"], 0x48}}, 0x0)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r11 = accept4(r8, 0x0, 0x0, 0x0)
sendmmsg$alg(r11, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f7", 0x1}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x2, 0x1}], 0x18, 0x400d1}], 0x1, 0x41)
getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000001340)={<r12=>0x0, 0xce}, &(0x7f0000001380)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r11, 0x84, 0x22, &(0x7f00000013c0)={0x5, 0x8003, 0x9, 0x1, r12}, &(0x7f0000001400)=0x10)
setsockopt$MRT6_ADD_MIF(r2, 0x29, 0xca, &(0x7f0000000040)={0x0, 0x0, 0x0, r4}, 0xc)
setsockopt$MRT6_FLUSH(r2, 0x29, 0xd4, &(0x7f0000000100)=0xe, 0x4)
sendmsg$NFT_BATCH(r2, &(0x7f0000001300)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000012c0)={&(0x7f0000001200)=ANY=[@ANYBLOB="1400000010000100000000000a0000000000000a7c000000060a010200000000000000000500000808003da10000000108000a400000000100000b40000000010c000340000000000000000544000580080001400000001b08000240000000000800014000000002080002405a8a4d970800014000000016080001400000884708000240000000000800014000000016140000001100010000000000000000000000000a"], 0xffffff8a}, 0x1, 0x0, 0x0, 0x4}, 0x2)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
unshare(0x2000400)
connect$unix(0xffffffffffffffff, &(0x7f0000000600)=@abs, 0x6e)

227.990684ms ago: executing program 1 (id=3519):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000240)={'veth1_to_bond\x00', 0x400})

137.099166ms ago: executing program 1 (id=3520):
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, &(0x7f0000000040))
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000740), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r0=>0x0})
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x0)
setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
sendmsg(r2, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0x4}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000002c0)="4ba72c4cfd81685544f46c3f88a8", 0xe}], 0x1, 0x0, 0x0, 0x11000000}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000140)={'syztnl0\x00', r0, 0x0, 0x0, 0x9, 0x1, 0x7, @local, @mcast2={0xff, 0x5}, 0x0, 0x0, 0x0, 0x1aa}})

123.771857ms ago: executing program 3 (id=3521):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000480)={&(0x7f00000003c0)=ANY=[@ANYBLOB="1ceef3d36b3ecda4340ddbfe88d98a6fa9e27d3475a00000f9ff0b00"], 0x1c}}, 0x4080)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000180)=0x4000, 0x4)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000019367960e761279181bd7daccedb3b28533c44b8beb7772edd8ec6a383df8197c0858c045928f53a04605c2d36e735dd64cfeac3d76cc19185a8f0ed67c392bd9797f20cb2e9add0af147985a6303aab5b31f8d6492384eee3d343481cd312dff31aba72a27b4a9651dc3768243c4ad925a80df0de75d619317951d14d6174954e1c575f014bb2955fb433197bc1f7093dd4727b5ce5622acea44ee221558f443520e73510becd8a6d12d76332e6f2f8c48de1fa0d3a6714bfddd0a87b1f49dcc382db9524560a6859392aa82fe722f3633684bb827a161f"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='ext4_journal_start\x00', r3}, 0x10)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r6=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000c40)={0x11, 0x1c, &(0x7f0000000900)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x100}, {}, {}, [@map_val={0x18, 0x3, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x9}, @map_val={0x18, 0x3, 0x2, 0x0, r4, 0x0, 0x0, 0x0, 0xffff}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x3}, @cb_func={0x18, 0x9, 0x4, 0x0, 0x2}, @map_idx={0x18, 0x0, 0x5, 0x0, 0xa}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x2}, @map_val={0x18, 0x6, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1}]}, &(0x7f0000000240)='GPL\x00', 0x96e, 0x91, &(0x7f0000000a00)=""/145, 0x41100, 0x61, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x5, 0x6, 0x1d11c, 0xf8}, 0x10, 0x0, 0x0, 0x1, &(0x7f0000000bc0)=[0x1, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000000c00)=[{0x5, 0x3, 0xe, 0x1}], 0x10, 0x6}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r7, 0x0)
r8 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r9, &(0x7f0000000140)={0x0, 0xf0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='\x00'/12, @ANYRES16, @ANYBLOB="070000000000000000000200000014000180060001000200000008000300ac1414aa"], 0x28}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000005c0)={'wlan1\x00'})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000018c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r5, 0x8983, &(0x7f0000000080))
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x128}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x0)

52.691455ms ago: executing program 2 (id=3522):
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtaction={0x14, 0x30, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6a00}}, 0x14}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
write$tun(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="06000000bbbbbbbbbbbbaaaaaaaaaabb88f5"], 0x72)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r3, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r3, &(0x7f0000000000)={&(0x7f0000000880)=@l2tp6={0xa, 0x1100, 0x0, @mcast1, 0x5}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000780)="f4000900062b2f25fe80000000000000dc8b850f238466cc00007a000000ad6e911b51818462b400", 0x28}], 0x1}, 0x0)

39.105947ms ago: executing program 0 (id=3523):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, &(0x7f0000001840)=ANY=[@ANYBLOB], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48)
ioctl$BTRFS_IOC_BALANCE_V2(0xffffffffffffffff, 0xc4009420, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'sit0\x00', &(0x7f0000000140)=@ethtool_cmd={0x2f}})
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r2 = socket(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x28}}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000200)={0x0, 0x0, 0x207}, 0x20)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newqdisc={0x40, 0x24, 0xf0b, 0x2, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x15}}, [@qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x8, 0x2, 0x4}}]}, 0x40}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=@newqdisc={0x30, 0x24, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8, 0x8}, {0x4}}]}, 0x30}}, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000000140)={{{@in=@broadcast, @in=@initdev}}, {{@in=@remote}, 0x0, @in6=@ipv4={""/10, ""/2, @dev}}}, &(0x7f0000000240)=0xe8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000080)='H', 0x1}], 0x1}, 0x0)
bind$bt_hci(r7, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, 0x0, 0x0)

0s ago: executing program 4 (id=3524):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r0, 0x29, 0xd1, &(0x7f0000000000), 0x4)
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000240)={'veth1_to_bond\x00', 0x400})

kernel console output (not intermixed with test programs):

0x520
[  327.335421][T13671]  ? __check_object_size+0x49c/0x900
[  327.340730][T13671]  netlink_sendmsg+0x73d/0xcb0
[  327.345519][T13671]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.350818][T13671]  ? __import_iovec+0x536/0x820
[  327.355675][T13671]  ? aa_sock_msg_perm+0x91/0x160
[  327.360630][T13671]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  327.365924][T13671]  ? security_socket_sendmsg+0x87/0xb0
[  327.371401][T13671]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.376696][T13671]  __sock_sendmsg+0x221/0x270
[  327.381390][T13671]  ____sys_sendmsg+0x525/0x7d0
[  327.386176][T13671]  ? __pfx_____sys_sendmsg+0x10/0x10
[  327.391490][T13671]  __sys_sendmsg+0x2b0/0x3a0
[  327.396097][T13671]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.401237][T13671]  ? vfs_write+0x7c4/0xc90
[  327.405704][T13671]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  327.412045][T13671]  ? do_syscall_64+0x100/0x230
[  327.416823][T13671]  ? do_syscall_64+0xb6/0x230
[  327.421512][T13671]  do_syscall_64+0xf3/0x230
[  327.426025][T13671]  ? clear_bhb_loop+0x35/0x90
[  327.430717][T13671]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.436636][T13671] RIP: 0033:0x7fecee975bd9
[  327.441065][T13671] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.460680][T13671] RSP: 002b:00007fecef814048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.469193][T13671] RAX: ffffffffffffffda RBX: 00007feceeb03f60 RCX: 00007fecee975bd9
[  327.477178][T13671] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  327.485160][T13671] RBP: 00007fecef8140a0 R08: 0000000000000000 R09: 0000000000000000
[  327.493228][T13671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.501296][T13671] R13: 000000000000004d R14: 00007feceeb03f60 R15: 00007fffa9078568
[  327.509292][T13671]  </TASK>
[  327.596807][T13675] FAULT_INJECTION: forcing a failure.
[  327.596807][T13675] name failslab, interval 1, probability 0, space 0, times 0
[  327.611007][T13675] CPU: 0 PID: 13675 Comm: syz.3.2622 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  327.621270][T13675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  327.631368][T13675] Call Trace:
[  327.634685][T13675]  <TASK>
[  327.637658][T13675]  dump_stack_lvl+0x241/0x360
[  327.642399][T13675]  ? __pfx_dump_stack_lvl+0x10/0x10
[  327.647647][T13675]  ? __pfx__printk+0x10/0x10
[  327.652302][T13675]  ? ref_tracker_alloc+0x332/0x490
[  327.657485][T13675]  should_fail_ex+0x3b0/0x4e0
[  327.662224][T13675]  ? skb_clone+0x20c/0x390
[  327.666695][T13675]  should_failslab+0x9/0x20
[  327.671257][T13675]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  327.676699][T13675]  skb_clone+0x20c/0x390
[  327.681013][T13675]  __netlink_deliver_tap+0x3cc/0x7c0
[  327.686368][T13675]  ? netlink_deliver_tap+0x2e/0x1b0
[  327.691616][T13675]  netlink_deliver_tap+0x19d/0x1b0
[  327.693873][T13680] xt_TPROXY: Can be used only with -p tcp or -p udp
[  327.696758][T13675]  netlink_unicast+0x7be/0x990
[  327.708165][T13675]  ? __pfx_netlink_unicast+0x10/0x10
[  327.713500][T13675]  ? __virt_addr_valid+0x183/0x520
[  327.718669][T13675]  ? __check_object_size+0x49c/0x900
[  327.724008][T13675]  ? bpf_lsm_netlink_send+0x9/0x10
[  327.729175][T13675]  netlink_sendmsg+0x8e4/0xcb0
[  327.734006][T13675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.739347][T13675]  ? __import_iovec+0x536/0x820
[  327.744321][T13675]  ? aa_sock_msg_perm+0x91/0x160
[  327.746286][T13681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  327.749316][T13675]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  327.749346][T13675]  ? security_socket_sendmsg+0x87/0xb0
[  327.769988][T13675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  327.775355][T13675]  __sock_sendmsg+0x221/0x270
[  327.780145][T13675]  ____sys_sendmsg+0x525/0x7d0
[  327.784943][T13675]  ? __pfx_____sys_sendmsg+0x10/0x10
[  327.790272][T13675]  __sys_sendmsg+0x2b0/0x3a0
[  327.794898][T13675]  ? __pfx___sys_sendmsg+0x10/0x10
[  327.800027][T13675]  ? vfs_write+0x7c4/0xc90
[  327.804503][T13675]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  327.810852][T13675]  ? do_syscall_64+0x100/0x230
[  327.815640][T13675]  ? do_syscall_64+0xb6/0x230
[  327.820530][T13675]  do_syscall_64+0xf3/0x230
[  327.825081][T13675]  ? clear_bhb_loop+0x35/0x90
[  327.829808][T13675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.835723][T13675] RIP: 0033:0x7efc7bd75bd9
[  327.840154][T13675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  327.859773][T13675] RSP: 002b:00007efc7b7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  327.868206][T13675] RAX: ffffffffffffffda RBX: 00007efc7bf03f60 RCX: 00007efc7bd75bd9
[  327.876195][T13675] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000005
[  327.884351][T13675] RBP: 00007efc7b7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  327.892333][T13675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  327.900331][T13675] R13: 000000000000004d R14: 00007efc7bf03f60 R15: 00007fff597d5758
[  327.908499][T13675]  </TASK>
[  327.924553][T13683] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  327.951452][T13681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.008213][T13675] vlan3: entered promiscuous mode
[  328.027991][T13675] team0: entered promiscuous mode
[  328.046992][T13675] team_slave_0: entered promiscuous mode
[  328.073034][T13683] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.099260][T13675] team_slave_1: entered promiscuous mode
[  328.107196][T13675] team0: Device vlan3 is already an upper device of the team interface
[  328.108219][T13681] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.157016][T13675] team0: left promiscuous mode
[  328.171799][ T5143] wlan1: No basic rates, using min rate instead
[  328.181361][ T5143] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  328.204766][T13683] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.213928][ T5143] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  328.222753][T13675] team_slave_0: left promiscuous mode
[  328.244678][T13675] team_slave_1: left promiscuous mode
[  328.249219][T13683] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  328.345777][ T9355] wlan1: send auth to 08:02:11:00:00:00 (try 2/3)
[  328.493616][   T12] wlan1: send auth to 08:02:11:00:00:00 (try 3/3)
[  328.629485][ T1054] wlan1: authentication with 08:02:11:00:00:00 timed out
[  328.753982][T13704] __nla_validate_parse: 7 callbacks suppressed
[  328.754005][T13704] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2628'.
[  328.771809][T13704] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2628'.
[  329.000783][T13712] netlink: 'syz.0.2631': attribute type 10 has an invalid length.
[  329.019511][T13712] bridge0: port 2(bridge_slave_1) entered disabled state
[  329.096503][T13712] bridge0: left allmulticast mode
[  329.112416][T13712] bridge0: left promiscuous mode
[  329.147529][T13712] bridge0: port 2(bridge_slave_1) entered blocking state
[  329.154833][T13712] bridge0: port 2(bridge_slave_1) entered forwarding state
[  329.190230][T13712] bridge0: entered allmulticast mode
[  329.202690][T13712] bridge0: entered promiscuous mode
[  329.232331][T13712] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  329.382980][T13721] xt_l2tp: v2 doesn't support IP mode
[  329.524198][T13727] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2638'.
[  329.600659][T13727] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2638'.
[  329.610522][T13730] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.673846][T13730] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.814392][T13730] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  329.853226][T13730] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.010124][T13744] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.382295][T13759] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2642'.
[  330.397184][T13759] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2642'.
[  330.407338][T13763] netlink: 'syz.2.2645': attribute type 5 has an invalid length.
[  330.471911][T13767] netlink: 'syz.0.2648': attribute type 1 has an invalid length.
[  330.480046][T13767] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2648'.
[  330.491752][T13767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2648'.
[  330.754420][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.776498][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.841604][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.853970][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.924575][T13786] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  330.942152][T13781] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  331.208057][T13788] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2654'.
[  331.252711][T13788] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2654'.
[  331.420044][T13771] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  331.736754][T13813] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  331.777072][T13813] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  331.872890][T13813] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  331.904144][T13820] netlink: 'syz.1.2665': attribute type 3 has an invalid length.
[  331.908765][T13813] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  331.917209][T13820] netlink: 'syz.1.2665': attribute type 11 has an invalid length.
[  332.004656][T13830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.042552][T13830] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.153233][T13838] atomic_op ffff88802cfbe998 conn xmit_atomic 0000000000000000
[  332.165694][T13838] netlink: 'syz.0.2670': attribute type 29 has an invalid length.
[  332.174835][T13838] netlink: 'syz.0.2670': attribute type 29 has an invalid length.
[  332.183636][T13838] netlink: 'syz.0.2670': attribute type 29 has an invalid length.
[  332.564274][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.589592][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.676721][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.706821][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.747255][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  332.800834][T13847] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.391533][T13880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.451142][T13880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.539204][T13881] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.573727][T13880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.591294][T13880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.616254][T13880] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.724684][T13892] FAULT_INJECTION: forcing a failure.
[  333.724684][T13892] name failslab, interval 1, probability 0, space 0, times 0
[  333.738840][T13892] CPU: 1 PID: 13892 Comm: syz.2.2689 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  333.749138][T13892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  333.759246][T13892] Call Trace:
[  333.762560][T13892]  <TASK>
[  333.765528][T13892]  dump_stack_lvl+0x241/0x360
[  333.770265][T13892]  ? __pfx_dump_stack_lvl+0x10/0x10
[  333.775503][T13892]  ? __pfx__printk+0x10/0x10
[  333.780130][T13892]  ? ref_tracker_alloc+0x332/0x490
[  333.785328][T13892]  should_fail_ex+0x3b0/0x4e0
[  333.790037][T13892]  ? skb_clone+0x20c/0x390
[  333.794492][T13892]  should_failslab+0x9/0x20
[  333.799025][T13892]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  333.804435][T13892]  skb_clone+0x20c/0x390
[  333.808703][T13892]  __netlink_deliver_tap+0x3cc/0x7c0
[  333.814011][T13892]  ? netlink_deliver_tap+0x2e/0x1b0
[  333.819263][T13892]  netlink_deliver_tap+0x19d/0x1b0
[  333.824391][T13892]  netlink_dump+0x851/0xd80
[  333.828924][T13892]  ? __pfx_netlink_dump+0x10/0x10
[  333.833968][T13892]  ? ip_set_dump_start+0x3a1/0x530
[  333.839117][T13892]  __netlink_dump_start+0x59f/0x780
[  333.844336][T13892]  ip_set_dump+0x16d/0x1f0
[  333.848765][T13892]  ? nfnetlink_rcv_msg+0xa5c/0x1180
[  333.853978][T13892]  ? nfnetlink_rcv_msg+0x225/0x1180
[  333.859190][T13892]  ? __pfx_ip_set_dump+0x10/0x10
[  333.864135][T13892]  ? __pfx_ip_set_dump_start+0x10/0x10
[  333.869602][T13892]  ? __pfx_ip_set_dump_do+0x10/0x10
[  333.874806][T13892]  ? __pfx_ip_set_dump_done+0x10/0x10
[  333.880232][T13892]  ? nfnetlink_rcv_msg+0x225/0x1180
[  333.885469][T13892]  nfnetlink_rcv_msg+0xbec/0x1180
[  333.890544][T13892]  ? kernel_text_address+0xa7/0xe0
[  333.895690][T13892]  ? nfnetlink_rcv_msg+0x225/0x1180
[  333.900936][T13892]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  333.906437][T13892]  ? netlink_deliver_tap+0x19d/0x1b0
[  333.911756][T13892]  ? netlink_unicast+0x7be/0x990
[  333.916705][T13892]  ? netlink_sendmsg+0x8e4/0xcb0
[  333.921673][T13892]  ? __sock_sendmsg+0x221/0x270
[  333.926537][T13892]  ? ____sys_sendmsg+0x525/0x7d0
[  333.931490][T13892]  ? __sys_sendmsg+0x2b0/0x3a0
[  333.936270][T13892]  ? do_syscall_64+0xf3/0x230
[  333.940956][T13892]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  333.947050][T13892]  netlink_rcv_skb+0x1e3/0x430
[  333.951858][T13892]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  333.957354][T13892]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  333.962688][T13892]  ? apparmor_capable+0x138/0x1b0
[  333.967771][T13892]  ? bpf_lsm_capable+0x9/0x10
[  333.972490][T13892]  ? security_capable+0x90/0xb0
[  333.977371][T13892]  nfnetlink_rcv+0x297/0x2a90
[  333.982081][T13892]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  333.987848][T13892]  ? __dev_queue_xmit+0x2da/0x3e90
[  333.993089][T13892]  ? __dev_queue_xmit+0x1763/0x3e90
[  333.998307][T13892]  ? kasan_save_track+0x51/0x80
[  334.003177][T13892]  ? do_syscall_64+0xf3/0x230
[  334.007897][T13892]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  334.013036][T13892]  ? __dev_queue_xmit+0x2da/0x3e90
[  334.018177][T13892]  ? __pfx___dev_queue_xmit+0x10/0x10
[  334.023616][T13892]  ? ref_tracker_free+0x643/0x7e0
[  334.028669][T13892]  ? __asan_memcpy+0x40/0x70
[  334.033295][T13892]  ? __pfx_ref_tracker_free+0x10/0x10
[  334.038709][T13892]  ? netlink_deliver_tap+0x2e/0x1b0
[  334.044004][T13892]  ? skb_clone+0x240/0x390
[  334.048476][T13892]  ? __pfx_lock_release+0x10/0x10
[  334.053607][T13892]  ? __netlink_deliver_tap+0x77e/0x7c0
[  334.059132][T13892]  ? netlink_deliver_tap+0x2e/0x1b0
[  334.064385][T13892]  netlink_unicast+0x7f0/0x990
[  334.069196][T13892]  ? __pfx_netlink_unicast+0x10/0x10
[  334.074517][T13892]  ? __virt_addr_valid+0x183/0x520
[  334.079652][T13892]  ? __check_object_size+0x49c/0x900
[  334.084986][T13892]  ? bpf_lsm_netlink_send+0x9/0x10
[  334.090124][T13892]  netlink_sendmsg+0x8e4/0xcb0
[  334.095002][T13892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  334.100303][T13892]  ? __import_iovec+0x536/0x820
[  334.105166][T13892]  ? aa_sock_msg_perm+0x91/0x160
[  334.110129][T13892]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  334.115476][T13892]  ? security_socket_sendmsg+0x87/0xb0
[  334.120955][T13892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  334.126254][T13892]  __sock_sendmsg+0x221/0x270
[  334.130951][T13892]  ____sys_sendmsg+0x525/0x7d0
[  334.135743][T13892]  ? __pfx_____sys_sendmsg+0x10/0x10
[  334.141070][T13892]  __sys_sendmsg+0x2b0/0x3a0
[  334.145683][T13892]  ? __pfx___sys_sendmsg+0x10/0x10
[  334.150820][T13892]  ? vfs_write+0x7c4/0xc90
[  334.155316][T13892]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  334.161661][T13892]  ? do_syscall_64+0x100/0x230
[  334.166444][T13892]  ? do_syscall_64+0xb6/0x230
[  334.171222][T13892]  do_syscall_64+0xf3/0x230
[  334.175739][T13892]  ? clear_bhb_loop+0x35/0x90
[  334.180437][T13892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.186340][T13892] RIP: 0033:0x7f2e45375bd9
[  334.190766][T13892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.210392][T13892] RSP: 002b:00007f2e46145048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  334.218849][T13892] RAX: ffffffffffffffda RBX: 00007f2e45504038 RCX: 00007f2e45375bd9
[  334.226874][T13892] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  334.234861][T13892] RBP: 00007f2e461450a0 R08: 0000000000000000 R09: 0000000000000000
[  334.242842][T13892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.250909][T13892] R13: 000000000000006e R14: 00007f2e45504038 R15: 00007ffd43713d88
[  334.258920][T13892]  </TASK>
[  334.565638][T13908] __nla_validate_parse: 8 callbacks suppressed
[  334.565667][T13908] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2694'.
[  334.624981][T13909] netlink: 'syz.0.2695': attribute type 5 has an invalid length.
[  334.634707][T13914] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2696'.
[  334.853509][T13928] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2701'.
[  335.023355][T13939] netlink: 504 bytes leftover after parsing attributes in process `syz.4.2705'.
[  335.257480][T13946] netlink: 'syz.3.2708': attribute type 5 has an invalid length.
[  335.342983][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.380626][T13952] wlan1: No legacy rates in association response
[  335.401278][T13956] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2712'.
[  335.428438][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.508981][T13960] (unnamed net_device) (uninitialized): option mode: invalid value (254)
[  335.544512][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.581713][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.633887][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.679001][T13952] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  335.885817][T13976] netlink: 'syz.0.2717': attribute type 5 has an invalid length.
[  336.089999][T13993] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2723'.
[  336.153222][T13990] netlink: 'syz.2.2722': attribute type 5 has an invalid length.
[  336.471031][T14007] FAULT_INJECTION: forcing a failure.
[  336.471031][T14007] name failslab, interval 1, probability 0, space 0, times 0
[  336.506924][T14007] CPU: 1 PID: 14007 Comm: syz.4.2726 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  336.517246][T14007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  336.527346][T14007] Call Trace:
[  336.530665][T14007]  <TASK>
[  336.533636][T14007]  dump_stack_lvl+0x241/0x360
[  336.538364][T14007]  ? __pfx_dump_stack_lvl+0x10/0x10
[  336.543609][T14007]  ? __pfx__printk+0x10/0x10
[  336.548299][T14007]  ? ref_tracker_alloc+0x332/0x490
[  336.553487][T14007]  should_fail_ex+0x3b0/0x4e0
[  336.558227][T14007]  ? skb_clone+0x20c/0x390
[  336.562697][T14007]  should_failslab+0x9/0x20
[  336.567252][T14007]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  336.572689][T14007]  skb_clone+0x20c/0x390
[  336.577082][T14007]  __netlink_deliver_tap+0x3cc/0x7c0
[  336.582487][T14007]  ? netlink_deliver_tap+0x2e/0x1b0
[  336.587762][T14007]  netlink_deliver_tap+0x19d/0x1b0
[  336.592919][T14007]  netlink_unicast+0x7be/0x990
[  336.597710][T14007]  ? __pfx_netlink_unicast+0x10/0x10
[  336.603007][T14007]  ? __virt_addr_valid+0x183/0x520
[  336.608151][T14007]  ? __check_object_size+0x49c/0x900
[  336.613465][T14007]  ? bpf_lsm_netlink_send+0x9/0x10
[  336.618603][T14007]  netlink_sendmsg+0x8e4/0xcb0
[  336.623394][T14007]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.628703][T14007]  ? __import_iovec+0x536/0x820
[  336.633568][T14007]  ? aa_sock_msg_perm+0x91/0x160
[  336.638527][T14007]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  336.643820][T14007]  ? security_socket_sendmsg+0x87/0xb0
[  336.649308][T14007]  ? __pfx_netlink_sendmsg+0x10/0x10
[  336.654604][T14007]  __sock_sendmsg+0x221/0x270
[  336.659298][T14007]  ____sys_sendmsg+0x525/0x7d0
[  336.664087][T14007]  ? __pfx_____sys_sendmsg+0x10/0x10
[  336.669404][T14007]  __sys_sendmsg+0x2b0/0x3a0
[  336.674125][T14007]  ? __pfx___sys_sendmsg+0x10/0x10
[  336.679260][T14007]  ? vfs_write+0x7c4/0xc90
[  336.683735][T14007]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  336.690108][T14007]  ? do_syscall_64+0x100/0x230
[  336.694892][T14007]  ? do_syscall_64+0xb6/0x230
[  336.699585][T14007]  do_syscall_64+0xf3/0x230
[  336.704127][T14007]  ? clear_bhb_loop+0x35/0x90
[  336.708853][T14007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  336.714775][T14007] RIP: 0033:0x7f609a375bd9
[  336.719261][T14007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  336.738884][T14007] RSP: 002b:00007f609b157048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  336.747326][T14007] RAX: ffffffffffffffda RBX: 00007f609a503f60 RCX: 00007f609a375bd9
[  336.755318][T14007] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  336.763305][T14007] RBP: 00007f609b1570a0 R08: 0000000000000000 R09: 0000000000000000
[  336.771294][T14007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  336.779274][T14007] R13: 000000000000004d R14: 00007f609a503f60 R15: 00007ffd5365adf8
[  336.787363][T14007]  </TASK>
[  337.185034][T14028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  337.214670][T14028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  337.283600][T14031] netlink: 'syz.3.2735': attribute type 5 has an invalid length.
[  337.302435][T14037] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  337.331925][T14028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  338.126341][T14080] netlink: 'syz.3.2748': attribute type 5 has an invalid length.
[  338.965909][T14113] team_slave_1: mtu less than device minimum
[  339.019655][T14113] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2760'.
[  339.047155][T14119] netlink: 'syz.0.2763': attribute type 5 has an invalid length.
[  339.371745][T14136] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2767'.
[  339.464400][T14136] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  340.934290][T14180] netlink: 'syz.0.2777': attribute type 5 has an invalid length.
[  341.071195][T14187] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2780'.
[  341.119361][T14187] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2780'.
[  341.200124][T14193] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2782'.
[  341.293924][T14193] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2782'.
[  341.918850][T14226] netlink: 'syz.4.2791': attribute type 5 has an invalid length.
[  342.126440][T14236] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2795'.
[  342.156184][T14234] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2793'.
[  342.177978][T14236] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2795'.
[  342.200191][T14234] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2793'.
[  342.385372][T14247] ebt_among: src integrity fail: 30a
[  342.471431][T14244] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2796'.
[  343.151886][T14280] FAULT_INJECTION: forcing a failure.
[  343.151886][T14280] name failslab, interval 1, probability 0, space 0, times 0
[  343.221817][T14280] CPU: 0 PID: 14280 Comm: syz.2.2804 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  343.232057][T14280] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  343.242850][T14280] Call Trace:
[  343.246168][T14280]  <TASK>
[  343.249129][T14280]  dump_stack_lvl+0x241/0x360
[  343.253860][T14280]  ? __pfx_dump_stack_lvl+0x10/0x10
[  343.259102][T14280]  ? __pfx__printk+0x10/0x10
[  343.263777][T14280]  ? unwind_get_return_address+0x91/0xc0
[  343.269481][T14280]  should_fail_ex+0x3b0/0x4e0
[  343.274220][T14280]  ? __alloc_skb+0x1c3/0x440
[  343.278864][T14280]  should_failslab+0x9/0x20
[  343.283600][T14280]  kmem_cache_alloc_node_noprof+0x71/0x320
[  343.289474][T14280]  __alloc_skb+0x1c3/0x440
[  343.294228][T14280]  ? __pfx___alloc_skb+0x10/0x10
[  343.299197][T14280]  __pskb_copy_fclone+0xb7/0x11e0
[  343.304254][T14280]  ? tipc_send_group_bcast+0x3d7/0xbd0
[  343.309736][T14280]  ? __tipc_sendstream+0x129b/0x14e0
[  343.315032][T14280]  ? __sock_sendmsg+0x221/0x270
[  343.319898][T14280]  ? ____sys_sendmsg+0x525/0x7d0
[  343.324860][T14280]  ? __sys_sendmsg+0x2b0/0x3a0
[  343.329643][T14280]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.335727][T14280]  tipc_clone_to_loopback+0xf7/0x4a0
[  343.341043][T14280]  tipc_node_xmit+0xde3/0x1020
[  343.345828][T14280]  ? __pfx_tipc_node_xmit+0x10/0x10
[  343.351046][T14280]  ? kmalloc_reserve+0xa8/0x2a0
[  343.355920][T14280]  ? rcu_is_watching+0x15/0xb0
[  343.360715][T14280]  tipc_node_distr_xmit+0x30d/0x450
[  343.365952][T14280]  ? __pfx_tipc_node_distr_xmit+0x10/0x10
[  343.371709][T14280]  ? tipc_group_proto_xmit+0x30a/0x8c0
[  343.377193][T14280]  tipc_group_cong+0x4ca/0x5c0
[  343.381988][T14280]  ? __pfx_tipc_group_cong+0x10/0x10
[  343.387299][T14280]  ? net_generic+0x1f/0x240
[  343.391825][T14280]  ? __pfx_lock_release+0x10/0x10
[  343.396865][T14280]  tipc_group_bc_cong+0x1c6/0x290
[  343.401917][T14280]  ? __pfx_tipc_group_bc_cong+0x10/0x10
[  343.407504][T14280]  tipc_send_group_bcast+0x3d7/0xbd0
[  343.412817][T14280]  ? __pfx_tipc_send_group_bcast+0x10/0x10
[  343.418651][T14280]  ? __pfx_woken_wake_function+0x10/0x10
[  343.424308][T14280]  __tipc_sendmsg+0x24c7/0x35f0
[  343.429176][T14280]  ? __pfx_validate_chain+0x10/0x10
[  343.434392][T14280]  ? up_write+0x1a9/0x590
[  343.438741][T14280]  ? ima_get_action+0x75/0xb0
[  343.443427][T14280]  ? __pfx___tipc_sendmsg+0x10/0x10
[  343.448746][T14280]  ? validate_chain+0x11e/0x5900
[  343.453697][T14280]  ? validate_chain+0x11e/0x5900
[  343.458689][T14280]  ? __pfx_validate_chain+0x10/0x10
[  343.463913][T14280]  ? __pfx_validate_chain+0x10/0x10
[  343.469130][T14280]  ? __pfx_validate_chain+0x10/0x10
[  343.474344][T14280]  ? __pfx_validate_chain+0x10/0x10
[  343.479566][T14280]  ? validate_chain+0x11e/0x5900
[  343.484521][T14280]  ? validate_chain+0x11e/0x5900
[  343.489484][T14280]  ? aa_label_sk_perm+0x4f0/0x6d0
[  343.494527][T14280]  ? mark_lock+0x9a/0x350
[  343.498894][T14280]  ? __lock_acquire+0x1346/0x1fd0
[  343.503942][T14280]  __tipc_sendstream+0x129b/0x14e0
[  343.509092][T14280]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  343.515434][T14280]  ? __pfx___tipc_sendstream+0x10/0x10
[  343.520909][T14280]  ? __local_bh_enable_ip+0x168/0x200
[  343.526298][T14280]  ? tipc_send_packet+0x6e/0xa0
[  343.531247][T14280]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  343.537061][T14280]  ? do_raw_spin_unlock+0x13c/0x8b0
[  343.542306][T14280]  ? __pfx_tipc_send_packet+0x10/0x10
[  343.547777][T14280]  tipc_send_packet+0x7c/0xa0
[  343.552505][T14280]  __sock_sendmsg+0x221/0x270
[  343.557201][T14280]  ____sys_sendmsg+0x525/0x7d0
[  343.561990][T14280]  ? __pfx_____sys_sendmsg+0x10/0x10
[  343.567306][T14280]  __sys_sendmsg+0x2b0/0x3a0
[  343.571935][T14280]  ? __pfx___sys_sendmsg+0x10/0x10
[  343.577063][T14280]  ? vfs_write+0x7c4/0xc90
[  343.581535][T14280]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  343.587889][T14280]  ? do_syscall_64+0x100/0x230
[  343.592682][T14280]  ? do_syscall_64+0xb6/0x230
[  343.597371][T14280]  do_syscall_64+0xf3/0x230
[  343.601889][T14280]  ? clear_bhb_loop+0x35/0x90
[  343.606583][T14280]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.612501][T14280] RIP: 0033:0x7f2e45375bd9
[  343.616930][T14280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  343.636696][T14280] RSP: 002b:00007f2e46166048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  343.645119][T14280] RAX: ffffffffffffffda RBX: 00007f2e45503f60 RCX: 00007f2e45375bd9
[  343.653183][T14280] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 0000000000000004
[  343.661165][T14280] RBP: 00007f2e461660a0 R08: 0000000000000000 R09: 0000000000000000
[  343.669143][T14280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.677121][T14280] R13: 000000000000004d R14: 00007f2e45503f60 R15: 00007ffd43713d88
[  343.685131][T14280]  </TASK>
[  344.012378][T14290] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2808'.
[  344.412273][T14312] netlink: 'syz.0.2814': attribute type 11 has an invalid length.
[  344.513399][T14319] FAULT_INJECTION: forcing a failure.
[  344.513399][T14319] name failslab, interval 1, probability 0, space 0, times 0
[  344.526534][T14317] netlink: 'syz.3.2818': attribute type 1 has an invalid length.
[  344.543247][T14319] CPU: 1 PID: 14319 Comm: syz.2.2817 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  344.552502][T14317] netlink: 'syz.3.2818': attribute type 1 has an invalid length.
[  344.553456][T14319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  344.571262][T14319] Call Trace:
[  344.574570][T14319]  <TASK>
[  344.577530][T14319]  dump_stack_lvl+0x241/0x360
[  344.582223][T14319]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.587427][T14319]  ? __pfx__printk+0x10/0x10
[  344.592060][T14319]  should_fail_ex+0x3b0/0x4e0
[  344.596753][T14319]  ? rtnl_newlink+0xf2/0x20a0
[  344.601456][T14319]  should_failslab+0x9/0x20
[  344.605995][T14319]  kmalloc_trace_noprof+0x6c/0x2c0
[  344.611124][T14319]  ? __pfx_rtnl_newlink+0x10/0x10
[  344.616163][T14319]  rtnl_newlink+0xf2/0x20a0
[  344.620707][T14319]  ? __mutex_trylock_common+0x183/0x2e0
[  344.626278][T14319]  ? __pfx___might_resched+0x10/0x10
[  344.631603][T14319]  ? __pfx_rtnl_newlink+0x10/0x10
[  344.636645][T14319]  ? __pfx___mutex_trylock_common+0x10/0x10
[  344.642556][T14319]  ? rcu_is_watching+0x15/0xb0
[  344.647344][T14319]  ? trace_contention_end+0x3c/0x120
[  344.652644][T14319]  ? __mutex_lock+0x2ef/0xd70
[  344.657353][T14319]  ? rcu_read_unlock+0x87/0xa0
[  344.662140][T14319]  ? rtnetlink_rcv_msg+0x842/0x1180
[  344.667353][T14319]  ? __pfx_lock_release+0x10/0x10
[  344.672400][T14319]  ? __pfx___mutex_lock+0x10/0x10
[  344.677454][T14319]  ? __pfx_rtnl_newlink+0x10/0x10
[  344.682494][T14319]  rtnetlink_rcv_msg+0x89b/0x1180
[  344.687547][T14319]  ? rtnetlink_rcv_msg+0x208/0x1180
[  344.692768][T14319]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  344.698339][T14319]  ? __local_bh_enable_ip+0x168/0x200
[  344.703737][T14319]  ? lockdep_hardirqs_on+0x99/0x150
[  344.709012][T14319]  ? __local_bh_enable_ip+0x168/0x200
[  344.714418][T14319]  ? dev_hard_start_xmit+0x773/0x7e0
[  344.719732][T14319]  ? __dev_queue_xmit+0x2da/0x3e90
[  344.724954][T14319]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  344.730689][T14319]  ? __dev_queue_xmit+0x2da/0x3e90
[  344.735842][T14319]  ? __dev_queue_xmit+0x1763/0x3e90
[  344.741074][T14319]  ? kasan_save_track+0x51/0x80
[  344.745938][T14319]  ? do_syscall_64+0xf3/0x230
[  344.750652][T14319]  ? __dev_queue_xmit+0x2da/0x3e90
[  344.755890][T14319]  ? __pfx___dev_queue_xmit+0x10/0x10
[  344.761333][T14319]  ? ref_tracker_free+0x643/0x7e0
[  344.766402][T14319]  netlink_rcv_skb+0x1e3/0x430
[  344.771178][T14319]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  344.776658][T14319]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  344.781985][T14319]  ? netlink_deliver_tap+0x2e/0x1b0
[  344.787211][T14319]  netlink_unicast+0x7f0/0x990
[  344.792033][T14319]  ? __pfx_netlink_unicast+0x10/0x10
[  344.797352][T14319]  ? __virt_addr_valid+0x183/0x520
[  344.802494][T14319]  ? __check_object_size+0x49c/0x900
[  344.807866][T14319]  ? bpf_lsm_netlink_send+0x9/0x10
[  344.812998][T14319]  netlink_sendmsg+0x8e4/0xcb0
[  344.817794][T14319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.823128][T14319]  ? __import_iovec+0x536/0x820
[  344.828010][T14319]  ? aa_sock_msg_perm+0x91/0x160
[  344.832966][T14319]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  344.838255][T14319]  ? security_socket_sendmsg+0x87/0xb0
[  344.843731][T14319]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.849039][T14319]  __sock_sendmsg+0x221/0x270
[  344.853751][T14319]  ____sys_sendmsg+0x525/0x7d0
[  344.858566][T14319]  ? __pfx_____sys_sendmsg+0x10/0x10
[  344.863923][T14319]  __sys_sendmsg+0x2b0/0x3a0
[  344.868534][T14319]  ? __pfx___sys_sendmsg+0x10/0x10
[  344.873695][T14319]  ? vfs_write+0x7c4/0xc90
[  344.878182][T14319]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  344.884524][T14319]  ? do_syscall_64+0x100/0x230
[  344.889309][T14319]  ? do_syscall_64+0xb6/0x230
[  344.894009][T14319]  do_syscall_64+0xf3/0x230
[  344.898530][T14319]  ? clear_bhb_loop+0x35/0x90
[  344.903237][T14319]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.909171][T14319] RIP: 0033:0x7f2e45375bd9
[  344.913622][T14319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.933258][T14319] RSP: 002b:00007f2e46166048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.941721][T14319] RAX: ffffffffffffffda RBX: 00007f2e45503f60 RCX: 00007f2e45375bd9
[  344.949896][T14319] RDX: 0000000000000000 RSI: 0000000020000600 RDI: 0000000000000005
[  344.957914][T14319] RBP: 00007f2e461660a0 R08: 0000000000000000 R09: 0000000000000000
[  344.965907][T14319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.973905][T14319] R13: 000000000000004d R14: 00007f2e45503f60 R15: 00007ffd43713d88
[  344.981933][T14319]  </TASK>
[  345.197847][T14330] netlink: 'syz.2.2823': attribute type 21 has an invalid length.
[  345.209458][T14330] netlink: 'syz.2.2823': attribute type 1 has an invalid length.
[  345.351190][T14339] netlink: 'syz.0.2825': attribute type 3 has an invalid length.
[  345.713359][T14359] xt_CT: You must specify a L4 protocol and not use inversions on it
[  345.733062][T14358] netlink: 'syz.0.2831': attribute type 1 has an invalid length.
[  346.085395][T14374] __nla_validate_parse: 11 callbacks suppressed
[  346.085420][T14374] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2835'.
[  346.155687][T14374] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2835'.
[  346.757977][T14405] netlink: 'syz.4.2847': attribute type 1 has an invalid length.
[  346.788796][T14405] netlink: 'syz.4.2847': attribute type 1 has an invalid length.
[  346.822983][T14405] netlink: 9332 bytes leftover after parsing attributes in process `syz.4.2847'.
[  346.862163][T14411] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2849'.
[  346.879349][T14405] netlink: 'syz.4.2847': attribute type 1 has an invalid length.
[  346.903285][T14413] netlink: 'syz.3.2850': attribute type 3 has an invalid length.
[  346.924124][T14405] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2847'.
[  346.944678][T14411] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2849'.
[  347.763824][T14452] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2859'.
[  348.533595][T14490] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2870'.
[  348.599540][T14492] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2871'.
[  348.621230][T14494] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2870'.
[  349.101724][T14511] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  349.481869][T14535] netlink: 'syz.4.2885': attribute type 8 has an invalid length.
[  349.583672][T14539] netlink: 'syz.2.2886': attribute type 10 has an invalid length.
[  349.667969][T14545] netlink: 'syz.4.2889': attribute type 1 has an invalid length.
[  349.765220][T14547] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  351.195951][T14613] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.289345][T14613] __nla_validate_parse: 6 callbacks suppressed
[  351.289372][T14613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2915'.
[  351.941506][T14635] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2926'.
[  353.028680][T14680] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2938'.
[  353.055097][T14680] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2938'.
[  353.138410][T14679] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.2939'.
[  353.166581][T14679] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[  353.490419][ T4491] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  353.505116][ T4491] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  353.514837][ T4491] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  353.524105][ T4491] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  353.532688][ T4491] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  353.540237][ T4491] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  353.754588][T14697] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.858080][T14697] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2944'.
[  353.987409][T14688] chnl_net:caif_netlink_parms(): no params data found
[  354.561724][T14688] bridge0: port 1(bridge_slave_0) entered blocking state
[  354.569439][T14688] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.576782][T14688] bridge_slave_0: entered allmulticast mode
[  354.611022][T14688] bridge_slave_0: entered promiscuous mode
[  354.633794][T14688] bridge0: port 2(bridge_slave_1) entered blocking state
[  354.651348][T14688] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.670921][T14688] bridge_slave_1: entered allmulticast mode
[  354.685947][T14688] bridge_slave_1: entered promiscuous mode
[  354.840747][T14688] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  354.882284][T14688] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  355.124316][T14688] team0: Port device team_slave_0 added
[  355.151589][T14688] team0: Port device team_slave_1 added
[  355.345022][T14688] batman_adv: batadv0: Adding interface: batadv_slave_0
[  355.364187][T14688] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.401523][T14688] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  355.443413][T14688] batman_adv: batadv0: Adding interface: batadv_slave_1
[  355.480104][T14688] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.539930][T14688] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  355.639625][ T5103] Bluetooth: hci5: command tx timeout
[  355.756017][T14748] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2959'.
[  355.843810][T14751] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2960'.
[  355.875017][T14688] hsr_slave_0: entered promiscuous mode
[  355.887762][T14688] hsr_slave_1: entered promiscuous mode
[  355.901460][T14688] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  355.928818][T14688] Cannot create hsr debugfs directory
[  356.026664][T14759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2960'.
[  356.261329][T14771] netlink: 'syz.3.2962': attribute type 1 has an invalid length.
[  356.299334][T14769] netlink: 188 bytes leftover after parsing attributes in process `syz.1.2961'.
[  356.314897][T14769] netlink: 'syz.1.2961': attribute type 1 has an invalid length.
[  356.329509][T14769] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2961'.
[  357.006522][T14688] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.247436][T14688] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.331660][T14815] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2978'.
[  357.528808][T14688] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  357.558157][T14820] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2978'.
[  357.618341][T14688] batman_adv: batadv1: Interface deactivated: netdevsim0
[  357.665372][T14838] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2983'.
[  357.698561][T14838] netlink: 'syz.1.2983': attribute type 1 has an invalid length.
[  357.740693][ T5103] Bluetooth: hci5: command tx timeout
[  357.857626][T14688] batman_adv: batadv1: Removing interface: netdevsim0
[  357.883261][T14688] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.460642][T14868] netlink: 'syz.3.2989': attribute type 1 has an invalid length.
[  358.468781][T14868] FAULT_INJECTION: forcing a failure.
[  358.468781][T14868] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.483024][T14868] CPU: 0 PID: 14868 Comm: syz.3.2989 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  358.493236][T14868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  358.503416][T14868] Call Trace:
[  358.506728][T14868]  <TASK>
[  358.509695][T14868]  dump_stack_lvl+0x241/0x360
[  358.514428][T14868]  ? __pfx_dump_stack_lvl+0x10/0x10
[  358.519680][T14868]  ? __pfx__printk+0x10/0x10
[  358.524332][T14868]  ? snprintf+0xda/0x120
[  358.528632][T14868]  should_fail_ex+0x3b0/0x4e0
[  358.533462][T14868]  _copy_to_user+0x2f/0xb0
[  358.538012][T14868]  simple_read_from_buffer+0xca/0x150
[  358.543525][T14868]  proc_fail_nth_read+0x1e9/0x250
[  358.548617][T14868]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  358.554245][T14868]  ? rw_verify_area+0x520/0x6b0
[  358.559128][T14868]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  358.564689][T14868]  vfs_read+0x204/0xbc0
[  358.568860][T14868]  ? __pfx_lock_release+0x10/0x10
[  358.573995][T14868]  ? __pfx_vfs_read+0x10/0x10
[  358.578735][T14868]  ? __fget_files+0x29/0x470
[  358.583342][T14868]  ? __fget_files+0x3f6/0x470
[  358.588049][T14868]  ksys_read+0x1a0/0x2c0
[  358.592333][T14868]  ? __pfx_ksys_read+0x10/0x10
[  358.597124][T14868]  ? do_syscall_64+0x100/0x230
[  358.601908][T14868]  ? do_syscall_64+0xb6/0x230
[  358.606601][T14868]  do_syscall_64+0xf3/0x230
[  358.611121][T14868]  ? clear_bhb_loop+0x35/0x90
[  358.615814][T14868]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.621730][T14868] RIP: 0033:0x7efc7bd746bc
[  358.626168][T14868] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  358.645799][T14868] RSP: 002b:00007efc7b7ff040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  358.654233][T14868] RAX: ffffffffffffffda RBX: 00007efc7bf03f60 RCX: 00007efc7bd746bc
[  358.662302][T14868] RDX: 000000000000000f RSI: 00007efc7b7ff0b0 RDI: 0000000000000003
[  358.670495][T14868] RBP: 00007efc7b7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  358.678489][T14868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.686477][T14868] R13: 000000000000004d R14: 00007efc7bf03f60 R15: 00007fff597d5758
[  358.694564][T14868]  </TASK>
[  359.019707][T14688] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  359.053879][T14688] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  359.076375][T14688] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  359.111643][T14688] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  359.265140][T14880] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2992'.
[  359.440554][T14688] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.531600][T14688] 8021q: adding VLAN 0 to HW filter on device team0
[  359.700552][T14892] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2996'.
[  359.800885][ T5103] Bluetooth: hci5: command tx timeout
[  359.815387][T14896] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2996'.
[  359.838437][ T5143] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.845726][ T5143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.907321][ T5143] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.914640][ T5143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.349696][T14912] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2999'.
[  360.428786][T14919] FAULT_INJECTION: forcing a failure.
[  360.428786][T14919] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.449535][T14919] CPU: 0 PID: 14919 Comm: syz.1.3001 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  360.459770][T14919] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  360.469866][T14919] Call Trace:
[  360.473178][T14919]  <TASK>
[  360.476136][T14919]  dump_stack_lvl+0x241/0x360
[  360.480866][T14919]  ? __pfx_dump_stack_lvl+0x10/0x10
[  360.486114][T14919]  ? __pfx__printk+0x10/0x10
[  360.490769][T14919]  ? __pfx_lock_release+0x10/0x10
[  360.495860][T14919]  should_fail_ex+0x3b0/0x4e0
[  360.500761][T14919]  _copy_to_user+0x2f/0xb0
[  360.505196][T14919]  bpf_test_finish+0x22c/0x8b0
[  360.509998][T14919]  ? __might_fault+0xaa/0x120
[  360.514698][T14919]  ? __pfx_bpf_test_finish+0x10/0x10
[  360.520001][T14919]  ? _copy_from_user+0xa6/0xe0
[  360.524779][T14919]  ? bpf_test_init+0x15a/0x180
[  360.529559][T14919]  bpf_prog_test_run_xdp+0x905/0x11b0
[  360.534961][T14919]  ? __pfx_lock_release+0x10/0x10
[  360.540092][T14919]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  360.545910][T14919]  ? __fget_files+0x29/0x470
[  360.550529][T14919]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  360.556529][T14919]  bpf_prog_test_run+0x33a/0x3b0
[  360.561488][T14919]  __sys_bpf+0x48d/0x810
[  360.565753][T14919]  ? __pfx___sys_bpf+0x10/0x10
[  360.570546][T14919]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  360.576540][T14919]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  360.582881][T14919]  ? do_syscall_64+0x100/0x230
[  360.587661][T14919]  __x64_sys_bpf+0x7c/0x90
[  360.592105][T14919]  do_syscall_64+0xf3/0x230
[  360.596623][T14919]  ? clear_bhb_loop+0x35/0x90
[  360.601316][T14919]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.607241][T14919] RIP: 0033:0x7f8363d75bd9
[  360.611675][T14919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  360.631293][T14919] RSP: 002b:00007f8364aae048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  360.639717][T14919] RAX: ffffffffffffffda RBX: 00007f8363f03f60 RCX: 00007f8363d75bd9
[  360.647698][T14919] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  360.655764][T14919] RBP: 00007f8364aae0a0 R08: 0000000000000000 R09: 0000000000000000
[  360.663766][T14919] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  360.672024][T14919] R13: 000000000000004d R14: 00007f8363f03f60 R15: 00007ffe027ace28
[  360.680031][T14919]  </TASK>
[  360.748421][T14920] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2999'.
[  360.986039][T14932] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  361.048641][T14688] 8021q: adding VLAN 0 to HW filter on device batadv0
[  361.256915][T14688] veth0_vlan: entered promiscuous mode
[  361.296177][T14688] veth1_vlan: entered promiscuous mode
[  361.525893][T14688] veth0_macvtap: entered promiscuous mode
[  361.561463][T14688] veth1_macvtap: entered promiscuous mode
[  361.641073][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.669368][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.707267][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.749166][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.775987][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.787599][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.812996][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  361.839119][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  361.866317][T14688] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.879780][ T5103] Bluetooth: hci5: command tx timeout
[  361.951154][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.008947][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.018831][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.079424][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.099052][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.120270][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.143994][T14688] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  362.165364][T14688] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  362.193408][T14688] batman_adv: batadv0: Interface activated: batadv_slave_1
[  362.240360][T14688] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  362.289300][T14688] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  362.312286][T14688] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  362.329432][T14688] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  362.353558][T14981] __nla_validate_parse: 3 callbacks suppressed
[  362.353583][T14981] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3020'.
[  362.647315][T14985] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3022'.
[  362.693307][T14989] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3022'.
[  363.075444][ T6823] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.086069][T15009] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3027'.
[  363.116145][ T6823] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.118435][T15009] netlink: 140 bytes leftover after parsing attributes in process `syz.0.3027'.
[  363.248111][ T6823] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  363.260795][ T6823] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.280964][T15014] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3029'.
[  363.459023][T15020] x_tables: ip_tables: osf match: only valid for protocol 6
[  363.664585][T15037] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3036'.
[  363.732641][T15037] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3036'.
[  363.843763][T15040] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3038'.
[  363.922096][T15040] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3038'.
[  365.494990][T15111] netlink: 'syz.3.3062': attribute type 8 has an invalid length.
[  366.227139][T15163] FAULT_INJECTION: forcing a failure.
[  366.227139][T15163] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.309886][T15163] CPU: 0 PID: 15163 Comm: syz.2.3082 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  366.320121][T15163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  366.330229][T15163] Call Trace:
[  366.333547][T15163]  <TASK>
[  366.336517][T15163]  dump_stack_lvl+0x241/0x360
[  366.341512][T15163]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.346780][T15163]  ? __pfx__printk+0x10/0x10
[  366.351433][T15163]  ? __pfx_lock_release+0x10/0x10
[  366.356524][T15163]  should_fail_ex+0x3b0/0x4e0
[  366.361265][T15163]  _copy_from_iter+0x1f6/0x1960
[  366.366163][T15163]  ? __virt_addr_valid+0x183/0x520
[  366.371331][T15163]  ? __pfx_lock_release+0x10/0x10
[  366.376409][T15163]  ? __alloc_skb+0x28f/0x440
[  366.381037][T15163]  ? __pfx__copy_from_iter+0x10/0x10
[  366.386346][T15163]  ? __virt_addr_valid+0x183/0x520
[  366.391476][T15163]  ? __virt_addr_valid+0x183/0x520
[  366.396599][T15163]  ? __virt_addr_valid+0x44e/0x520
[  366.401742][T15163]  ? __check_object_size+0x49c/0x900
[  366.407057][T15163]  netlink_sendmsg+0x73d/0xcb0
[  366.411914][T15163]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.417211][T15163]  ? __import_iovec+0x536/0x820
[  366.422080][T15163]  ? aa_sock_msg_perm+0x91/0x160
[  366.427078][T15163]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  366.432488][T15163]  ? security_socket_sendmsg+0x87/0xb0
[  366.437976][T15163]  ? __pfx_netlink_sendmsg+0x10/0x10
[  366.443278][T15163]  __sock_sendmsg+0x221/0x270
[  366.447990][T15163]  ____sys_sendmsg+0x525/0x7d0
[  366.452787][T15163]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.458102][T15163]  __sys_sendmsg+0x2b0/0x3a0
[  366.462710][T15163]  ? __pfx___sys_sendmsg+0x10/0x10
[  366.467839][T15163]  ? vfs_write+0x7c4/0xc90
[  366.472316][T15163]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  366.478664][T15163]  ? do_syscall_64+0x100/0x230
[  366.483447][T15163]  ? do_syscall_64+0xb6/0x230
[  366.488134][T15163]  do_syscall_64+0xf3/0x230
[  366.492650][T15163]  ? clear_bhb_loop+0x35/0x90
[  366.497343][T15163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.503424][T15163] RIP: 0033:0x7fa824f75bd9
[  366.507874][T15163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.527520][T15163] RSP: 002b:00007fa825c6c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.535966][T15163] RAX: ffffffffffffffda RBX: 00007fa825103f60 RCX: 00007fa824f75bd9
[  366.543979][T15163] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  366.552008][T15163] RBP: 00007fa825c6c0a0 R08: 0000000000000000 R09: 0000000000000000
[  366.560006][T15163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.568010][T15163] R13: 000000000000000b R14: 00007fa825103f60 R15: 00007ffde1ae8cf8
[  366.576029][T15163]  </TASK>
[  366.899206][T15179] ipt_REJECT: TCP_RESET invalid for non-tcp
[  367.628234][T15216] __nla_validate_parse: 26 callbacks suppressed
[  367.628256][T15216] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3102'.
[  367.910804][T15229] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3105'.
[  367.931020][T15233] FAULT_INJECTION: forcing a failure.
[  367.931020][T15233] name failslab, interval 1, probability 0, space 0, times 0
[  367.970622][T15233] CPU: 0 PID: 15233 Comm: syz.0.3106 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  367.980861][T15233] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  367.990960][T15233] Call Trace:
[  367.994283][T15233]  <TASK>
[  367.997248][T15233]  dump_stack_lvl+0x241/0x360
[  368.001981][T15233]  ? __pfx_dump_stack_lvl+0x10/0x10
[  368.007220][T15233]  ? __pfx__printk+0x10/0x10
[  368.008351][T15235] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3108'.
[  368.011860][T15233]  should_fail_ex+0x3b0/0x4e0
[  368.021432][T15237] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3105'.
[  368.025519][T15233]  ? sctp_add_bind_addr+0x89/0x3a0
[  368.025559][T15233]  should_failslab+0x9/0x20
[  368.039768][T15238] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3108'.
[  368.044117][T15233]  kmalloc_trace_noprof+0x6c/0x2c0
[  368.044174][T15233]  sctp_add_bind_addr+0x89/0x3a0
[  368.063292][T15233]  sctp_copy_local_addr_list+0x311/0x500
[  368.068994][T15233]  ? sctp_copy_local_addr_list+0xab/0x500
[  368.074774][T15233]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  368.081000][T15233]  ? sctp_v6_is_any+0x60/0x70
[  368.085736][T15233]  sctp_bind_addr_copy+0xad/0x3b0
[  368.090793][T15233]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  368.097237][T15233]  sctp_connect_new_asoc+0x2f3/0x6c0
[  368.102539][T15233]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  368.108371][T15233]  ? sctp_get_af_specific+0x2a/0x80
[  368.113590][T15233]  ? sctp_endpoint_lookup_assoc+0xc9/0x250
[  368.119423][T15233]  __sctp_connect+0x66d/0xe30
[  368.124120][T15233]  ? __local_bh_enable_ip+0x168/0x200
[  368.129514][T15233]  ? __pfx___sctp_connect+0x10/0x10
[  368.134731][T15233]  ? sctp_inet_connect+0xa7/0x1f0
[  368.139776][T15233]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  368.145512][T15233]  ? do_raw_spin_unlock+0x13c/0x8b0
[  368.150739][T15233]  sctp_inet_connect+0x149/0x1f0
[  368.155704][T15233]  __sys_connect+0x2df/0x310
[  368.160340][T15233]  ? __pfx___sys_connect+0x10/0x10
[  368.165478][T15233]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  368.171844][T15233]  ? do_syscall_64+0x100/0x230
[  368.176624][T15233]  __x64_sys_connect+0x7a/0x90
[  368.181496][T15233]  do_syscall_64+0xf3/0x230
[  368.186035][T15233]  ? clear_bhb_loop+0x35/0x90
[  368.190730][T15233]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.196633][T15233] RIP: 0033:0x7fecee975bd9
[  368.201060][T15233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.220771][T15233] RSP: 002b:00007fecef814048 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  368.229378][T15233] RAX: ffffffffffffffda RBX: 00007feceeb03f60 RCX: 00007fecee975bd9
[  368.237459][T15233] RDX: 0000000000000010 RSI: 0000000020004cc0 RDI: 0000000000000005
[  368.245438][T15233] RBP: 00007fecef8140a0 R08: 0000000000000000 R09: 0000000000000000
[  368.253436][T15233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.261430][T15233] R13: 000000000000004d R14: 00007feceeb03f60 R15: 00007fffa9078568
[  368.269437][T15233]  </TASK>
[  368.416844][T15239] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3109'.
[  368.991972][T15274] netlink: 'syz.4.3118': attribute type 4 has an invalid length.
[  369.002085][T15276] netlink: 'syz.1.3119': attribute type 1 has an invalid length.
[  369.018836][T15276] netlink: 9364 bytes leftover after parsing attributes in process `syz.1.3119'.
[  369.033534][T15276] netlink: 'syz.1.3119': attribute type 1 has an invalid length.
[  369.199413][T15278] netlink: 'syz.4.3118': attribute type 4 has an invalid length.
[  369.217740][T15280] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3120'.
[  369.279276][T15282] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3120'.
[  369.314400][T15286] FAULT_INJECTION: forcing a failure.
[  369.314400][T15286] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  369.373988][T15286] CPU: 0 PID: 15286 Comm: syz.1.3121 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  369.384220][T15286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  369.394308][T15286] Call Trace:
[  369.397613][T15286]  <TASK>
[  369.400577][T15286]  dump_stack_lvl+0x241/0x360
[  369.405297][T15286]  ? __pfx_dump_stack_lvl+0x10/0x10
[  369.410527][T15286]  ? __pfx__printk+0x10/0x10
[  369.415175][T15286]  ? snprintf+0xda/0x120
[  369.419454][T15286]  should_fail_ex+0x3b0/0x4e0
[  369.424184][T15286]  _copy_to_user+0x2f/0xb0
[  369.428634][T15286]  simple_read_from_buffer+0xca/0x150
[  369.434054][T15286]  proc_fail_nth_read+0x1e9/0x250
[  369.439133][T15286]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  369.444714][T15286]  ? rw_verify_area+0x520/0x6b0
[  369.449608][T15286]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  369.455194][T15286]  vfs_read+0x204/0xbc0
[  369.459405][T15286]  ? __pfx_lock_release+0x10/0x10
[  369.464573][T15286]  ? __pfx_vfs_read+0x10/0x10
[  369.469284][T15286]  ? bpf_prog_test_run+0x352/0x3b0
[  369.474430][T15286]  ? __fget_files+0x29/0x470
[  369.479069][T15286]  ? __fget_files+0x3f6/0x470
[  369.483814][T15286]  ksys_read+0x1a0/0x2c0
[  369.488112][T15286]  ? __pfx_ksys_read+0x10/0x10
[  369.492917][T15286]  ? do_syscall_64+0x100/0x230
[  369.497719][T15286]  ? do_syscall_64+0xb6/0x230
[  369.502436][T15286]  do_syscall_64+0xf3/0x230
[  369.506977][T15286]  ? clear_bhb_loop+0x35/0x90
[  369.511709][T15286]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.517642][T15286] RIP: 0033:0x7f8363d746bc
[  369.522090][T15286] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  369.541732][T15286] RSP: 002b:00007f8364aae040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  369.550177][T15286] RAX: ffffffffffffffda RBX: 00007f8363f03f60 RCX: 00007f8363d746bc
[  369.558161][T15286] RDX: 000000000000000f RSI: 00007f8364aae0b0 RDI: 0000000000000007
[  369.566142][T15286] RBP: 00007f8364aae0a0 R08: 0000000000000000 R09: 0000000000000000
[  369.574128][T15286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  369.582129][T15286] R13: 000000000000004d R14: 00007f8363f03f60 R15: 00007ffe027ace28
[  369.590164][T15286]  </TASK>
[  369.613194][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  369.649593][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  369.751002][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  369.785913][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  369.820338][T15295] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3124'.
[  369.870744][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  369.909972][T15288] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  370.111375][T15309] netlink: 'syz.2.3129': attribute type 12 has an invalid length.
[  370.425128][T15325] FAULT_INJECTION: forcing a failure.
[  370.425128][T15325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.438861][T15325] CPU: 1 PID: 15325 Comm: syz.4.3134 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  370.449109][T15325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  370.459216][T15325] Call Trace:
[  370.462530][T15325]  <TASK>
[  370.465495][T15325]  dump_stack_lvl+0x241/0x360
[  370.470222][T15325]  ? __pfx_dump_stack_lvl+0x10/0x10
[  370.475471][T15325]  ? __pfx__printk+0x10/0x10
[  370.480123][T15325]  ? __pfx_lock_release+0x10/0x10
[  370.485191][T15325]  ? __lock_acquire+0x1346/0x1fd0
[  370.490311][T15325]  should_fail_ex+0x3b0/0x4e0
[  370.495049][T15325]  _copy_from_user+0x2f/0xe0
[  370.499697][T15325]  xsk_setsockopt+0x34e/0x950
[  370.504440][T15325]  ? __pfx_xsk_setsockopt+0x10/0x10
[  370.509716][T15325]  ? __pfx_lock_acquire+0x10/0x10
[  370.514788][T15325]  ? aa_sock_opt_perm+0x79/0x120
[  370.519784][T15325]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  370.525417][T15325]  ? security_socket_setsockopt+0x87/0xb0
[  370.531195][T15325]  ? __pfx_xsk_setsockopt+0x10/0x10
[  370.536441][T15325]  do_sock_setsockopt+0x3af/0x720
[  370.541531][T15325]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  370.547121][T15325]  ? __fget_files+0x29/0x470
[  370.551777][T15325]  ? __fget_files+0x3f6/0x470
[  370.556629][T15325]  __sys_setsockopt+0x1ae/0x250
[  370.561546][T15325]  __x64_sys_setsockopt+0xb5/0xd0
[  370.566638][T15325]  do_syscall_64+0xf3/0x230
[  370.571194][T15325]  ? clear_bhb_loop+0x35/0x90
[  370.575915][T15325]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.581851][T15325] RIP: 0033:0x7f609a375bd9
[  370.586310][T15325] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.606160][T15325] RSP: 002b:00007f609b157048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  370.614631][T15325] RAX: ffffffffffffffda RBX: 00007f609a503f60 RCX: 00007f609a375bd9
[  370.622738][T15325] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000004
[  370.630761][T15325] RBP: 00007f609b1570a0 R08: 0000000000000020 R09: 0000000000000000
[  370.638938][T15325] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001
[  370.646946][T15325] R13: 000000000000004d R14: 00007f609a503f60 R15: 00007ffd5365adf8
[  370.654961][T15325]  </TASK>
[  371.411271][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.452370][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.570009][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.582525][T15376] FAULT_INJECTION: forcing a failure.
[  371.582525][T15376] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  371.597921][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.631520][T15376] CPU: 1 PID: 15376 Comm: syz.4.3148 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  371.634553][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.641732][T15376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  371.641753][T15376] Call Trace:
[  371.641764][T15376]  <TASK>
[  371.641776][T15376]  dump_stack_lvl+0x241/0x360
[  371.641811][T15376]  ? __pfx_dump_stack_lvl+0x10/0x10
[  371.641836][T15376]  ? __pfx__printk+0x10/0x10
[  371.641879][T15376]  ? snprintf+0xda/0x120
[  371.641909][T15376]  should_fail_ex+0x3b0/0x4e0
[  371.667608][T15362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.668131][T15376]  _copy_to_user+0x2f/0xb0
[  371.706101][T15376]  simple_read_from_buffer+0xca/0x150
[  371.711500][T15376]  proc_fail_nth_read+0x1e9/0x250
[  371.716554][T15376]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  371.722122][T15376]  ? rw_verify_area+0x520/0x6b0
[  371.726993][T15376]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  371.732553][T15376]  vfs_read+0x204/0xbc0
[  371.736727][T15376]  ? __pfx_lock_release+0x10/0x10
[  371.741853][T15376]  ? do_sock_setsockopt+0x3e2/0x720
[  371.747068][T15376]  ? __pfx_vfs_read+0x10/0x10
[  371.751758][T15376]  ? __fget_files+0x29/0x470
[  371.756363][T15376]  ? __fget_files+0x3f6/0x470
[  371.761065][T15376]  ksys_read+0x1a0/0x2c0
[  371.765325][T15376]  ? __pfx_ksys_read+0x10/0x10
[  371.770123][T15376]  ? do_syscall_64+0x100/0x230
[  371.774923][T15376]  ? do_syscall_64+0xb6/0x230
[  371.779626][T15376]  do_syscall_64+0xf3/0x230
[  371.784154][T15376]  ? clear_bhb_loop+0x35/0x90
[  371.788995][T15376]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.794926][T15376] RIP: 0033:0x7f609a3746bc
[  371.799375][T15376] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  371.819001][T15376] RSP: 002b:00007f609b136040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  371.827446][T15376] RAX: ffffffffffffffda RBX: 00007f609a504038 RCX: 00007f609a3746bc
[  371.835431][T15376] RDX: 000000000000000f RSI: 00007f609b1360b0 RDI: 0000000000000006
[  371.843418][T15376] RBP: 00007f609b1360a0 R08: 0000000000000000 R09: 0000000000000000
[  371.851411][T15376] R10: 0000000020000100 R11: 0000000000000246 R12: 0000000000000001
[  371.859394][T15376] R13: 000000000000006e R14: 00007f609a504038 R15: 00007ffd5365adf8
[  371.867420][T15376]  </TASK>
[  372.112591][T15386] pimreg: entered allmulticast mode
[  372.121463][T15386] pimreg: left allmulticast mode
[  372.465608][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.567220][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.719392][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.742018][T15424] __nla_validate_parse: 12 callbacks suppressed
[  372.742040][T15424] netlink: 172 bytes leftover after parsing attributes in process `syz.0.3163'.
[  372.771706][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.797724][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.813355][T15409] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.995326][T15431] netlink: 'syz.2.3168': attribute type 5 has an invalid length.
[  373.071749][T15435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3169'.
[  373.081075][T15435] netlink: 140 bytes leftover after parsing attributes in process `syz.2.3169'.
[  373.145327][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.163837][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.229456][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.255009][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.278509][T15439] netlink: 47 bytes leftover after parsing attributes in process `syz.4.3171'.
[  373.321023][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.342931][T15437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.452020][T15447] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3174'.
[  373.624059][T15452] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3175'.
[  373.646591][T15453] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3175'.
[  374.084357][T15465] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.091702][T15465] bridge0: port 1(bridge_slave_0) entered forwarding state
[  374.105086][T15467] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3180'.
[  374.119513][T15467] netlink: 'syz.1.3180': attribute type 1 has an invalid length.
[  374.332712][T15475] netlink: 172 bytes leftover after parsing attributes in process `syz.1.3182'.
[  374.390410][T15479] netlink: 'syz.4.3183': attribute type 4 has an invalid length.
[  374.433544][T15483] netlink: 172 bytes leftover after parsing attributes in process `syz.3.3185'.
[  374.462408][T15479] netlink: 'syz.4.3183': attribute type 4 has an invalid length.
[  374.474049][T15484] netlink: 'syz.0.3184': attribute type 5 has an invalid length.
[  374.623473][T15489] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  374.695891][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.718006][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.789802][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.802932][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.835317][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  374.866308][T15492] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  375.496645][T15523] netlink: 'syz.4.3197': attribute type 5 has an invalid length.
[  375.792360][ T5142] wlan1: No basic rates, using min rate instead
[  375.821291][ T5142] wlan1: authenticate with 08:02:11:00:00:00 (local address=08:02:11:00:00:01)
[  375.870840][ T5142] wlan1: send auth to 08:02:11:00:00:00 (try 1/3)
[  375.912478][ T6823] wlan1: authenticated
[  375.930290][  T189] wlan1: associate with 08:02:11:00:00:00 (try 1/3)
[  376.079429][ T6823] wlan1: associate with 08:02:11:00:00:00 (try 2/3)
[  376.209718][ T6811] wlan1: associate with 08:02:11:00:00:00 (try 3/3)
[  376.234798][T15554] netlink: 'syz.4.3205': attribute type 4 has an invalid length.
[  376.333541][ T6802] wlan1: association with 08:02:11:00:00:00 timed out
[  377.371508][T15592] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  377.455108][T15597] netlink: 'syz.3.3217': attribute type 1 has an invalid length.
[  377.617332][T15611] FAULT_INJECTION: forcing a failure.
[  377.617332][T15611] name failslab, interval 1, probability 0, space 0, times 0
[  377.676379][T15611] CPU: 1 PID: 15611 Comm: syz.1.3222 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  377.686787][T15611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  377.696885][T15611] Call Trace:
[  377.700199][T15611]  <TASK>
[  377.703169][T15611]  dump_stack_lvl+0x241/0x360
[  377.707906][T15611]  ? __pfx_dump_stack_lvl+0x10/0x10
[  377.713156][T15611]  ? __pfx__printk+0x10/0x10
[  377.717826][T15611]  ? netlink_insert+0x10b7/0x14b0
[  377.723083][T15611]  should_fail_ex+0x3b0/0x4e0
[  377.727828][T15611]  ? __alloc_skb+0x1c3/0x440
[  377.732484][T15611]  should_failslab+0x9/0x20
[  377.737055][T15611]  kmem_cache_alloc_node_noprof+0x71/0x320
[  377.742928][T15611]  __alloc_skb+0x1c3/0x440
[  377.747409][T15611]  ? __pfx___alloc_skb+0x10/0x10
[  377.752406][T15611]  ? netlink_autobind+0xd6/0x2f0
[  377.757391][T15611]  ? netlink_autobind+0x2b0/0x2f0
[  377.762464][T15611]  netlink_sendmsg+0x638/0xcb0
[  377.767264][T15611]  ? __pfx_netlink_sendmsg+0x10/0x10
[  377.772576][T15611]  ? __import_iovec+0x536/0x820
[  377.777447][T15611]  ? aa_sock_msg_perm+0x91/0x160
[  377.782421][T15611]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  377.787739][T15611]  ? security_socket_sendmsg+0x87/0xb0
[  377.793221][T15611]  ? __pfx_netlink_sendmsg+0x10/0x10
[  377.798610][T15611]  __sock_sendmsg+0x221/0x270
[  377.803331][T15611]  ____sys_sendmsg+0x525/0x7d0
[  377.808123][T15611]  ? __pfx_____sys_sendmsg+0x10/0x10
[  377.813446][T15611]  __sys_sendmsg+0x2b0/0x3a0
[  377.818061][T15611]  ? __pfx___sys_sendmsg+0x10/0x10
[  377.823215][T15611]  ? vfs_write+0x7c4/0xc90
[  377.827699][T15611]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  377.834070][T15611]  ? do_syscall_64+0x100/0x230
[  377.838874][T15611]  ? do_syscall_64+0xb6/0x230
[  377.843571][T15611]  do_syscall_64+0xf3/0x230
[  377.848175][T15611]  ? clear_bhb_loop+0x35/0x90
[  377.852923][T15611]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  377.858883][T15611] RIP: 0033:0x7f8363d75bd9
[  377.863342][T15611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  377.882967][T15611] RSP: 002b:00007f8364aae048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  377.891397][T15611] RAX: ffffffffffffffda RBX: 00007f8363f03f60 RCX: 00007f8363d75bd9
[  377.899379][T15611] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  377.907356][T15611] RBP: 00007f8364aae0a0 R08: 0000000000000000 R09: 0000000000000000
[  377.915357][T15611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  377.923356][T15611] R13: 000000000000004d R14: 00007f8363f03f60 R15: 00007ffe027ace28
[  377.931361][T15611]  </TASK>
[  378.213022][T15630] __nla_validate_parse: 21 callbacks suppressed
[  378.213047][T15630] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.3228'.
[  378.240884][T15630] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  378.356139][T15635] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3229'.
[  378.716966][T15644] netlink: 'syz.4.3232': attribute type 5 has an invalid length.
[  379.004809][ T1253] ieee802154 phy1 wpan1: encryption failed: -22
[  379.108798][T15671] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3243'.
[  379.765505][T15707] FAULT_INJECTION: forcing a failure.
[  379.765505][T15707] name failslab, interval 1, probability 0, space 0, times 0
[  379.801693][T15707] CPU: 0 PID: 15707 Comm: syz.1.3256 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  379.811936][T15707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  379.822037][T15707] Call Trace:
[  379.825356][T15707]  <TASK>
[  379.828324][T15707]  dump_stack_lvl+0x241/0x360
[  379.833109][T15707]  ? __pfx_dump_stack_lvl+0x10/0x10
[  379.838448][T15707]  ? __pfx__printk+0x10/0x10
[  379.843101][T15707]  ? __pfx___might_resched+0x10/0x10
[  379.848444][T15707]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  379.854577][T15707]  should_fail_ex+0x3b0/0x4e0
[  379.859411][T15707]  ? sock_alloc_inode+0x28/0xc0
[  379.864335][T15707]  should_failslab+0x9/0x20
[  379.868837][T15709] xt_CT: You must specify a L4 protocol and not use inversions on it
[  379.876940][T15707]  kmem_cache_alloc_lru_noprof+0x71/0x2b0
[  379.877040][T15707]  sock_alloc_inode+0x28/0xc0
[  379.887460][T15707]  ? __pfx_sock_alloc_inode+0x10/0x10
[  379.892886][T15707]  new_inode_pseudo+0x69/0x1e0
[  379.897986][T15707]  __sock_create+0x123/0x920
[  379.902645][T15707]  udp_sock_create4+0xda/0x670
[  379.907471][T15707]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  379.913364][T15707]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  379.919661][T15707]  ? __pfx_udp_sock_create4+0x10/0x10
[  379.925156][T15707]  rxrpc_lookup_local+0xd9d/0x1890
[  379.930343][T15707]  ? __pfx_rxrpc_lookup_local+0x10/0x10
[  379.935953][T15707]  ? __local_bh_enable_ip+0x168/0x200
[  379.941376][T15707]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  379.947315][T15707]  ? do_raw_spin_unlock+0x13c/0x8b0
[  379.952796][T15707]  rxrpc_sendmsg+0x4d9/0x920
[  379.957462][T15707]  ? __pfx_rxrpc_sendmsg+0x10/0x10
[  379.962631][T15707]  __sock_sendmsg+0x221/0x270
[  379.967375][T15707]  ____sys_sendmsg+0x525/0x7d0
[  379.972212][T15707]  ? __pfx_____sys_sendmsg+0x10/0x10
[  379.977582][T15707]  __sys_sendmsg+0x2b0/0x3a0
[  379.982238][T15707]  ? __pfx___sys_sendmsg+0x10/0x10
[  379.987406][T15707]  ? vfs_write+0x7c4/0xc90
[  379.991922][T15707]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  379.998478][T15707]  ? do_syscall_64+0x100/0x230
[  380.003299][T15707]  ? do_syscall_64+0xb6/0x230
[  380.008032][T15707]  do_syscall_64+0xf3/0x230
[  380.012588][T15707]  ? clear_bhb_loop+0x35/0x90
[  380.017411][T15707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.023354][T15707] RIP: 0033:0x7f8363d75bd9
[  380.027812][T15707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.047468][T15707] RSP: 002b:00007f8364aae048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  380.055944][T15707] RAX: ffffffffffffffda RBX: 00007f8363f03f60 RCX: 00007f8363d75bd9
[  380.064054][T15707] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  380.072070][T15707] RBP: 00007f8364aae0a0 R08: 0000000000000000 R09: 0000000000000000
[  380.080103][T15707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.088122][T15707] R13: 000000000000004d R14: 00007f8363f03f60 R15: 00007ffe027ace28
[  380.096253][T15707]  </TASK>
[  380.130078][T15707] socket: no more sockets
[  380.215027][T15720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.239916][T15718] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3260'.
[  380.291496][T15720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.410984][T15720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.459437][T15720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.570166][T15734] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.587534][T15732] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3265'.
[  380.610602][T15734] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  380.719165][T15739] netlink: 'syz.2.3264': attribute type 1 has an invalid length.
[  380.747340][T15739] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3264'.
[  380.776743][T15739] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3264'.
[  380.824453][T15730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3264'.
[  380.869994][T15744] FAULT_INJECTION: forcing a failure.
[  380.869994][T15744] name failslab, interval 1, probability 0, space 0, times 0
[  380.885072][T15744] CPU: 0 PID: 15744 Comm: syz.3.3267 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  380.895288][T15744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  380.905389][T15744] Call Trace:
[  380.908735][T15744]  <TASK>
[  380.911704][T15744]  dump_stack_lvl+0x241/0x360
[  380.916433][T15744]  ? __pfx_dump_stack_lvl+0x10/0x10
[  380.921738][T15744]  ? __pfx__printk+0x10/0x10
[  380.926401][T15744]  ? ref_tracker_alloc+0x332/0x490
[  380.931580][T15744]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  380.937108][T15744]  should_fail_ex+0x3b0/0x4e0
[  380.941848][T15744]  ? skb_clone+0x20c/0x390
[  380.946291][T15744]  should_failslab+0x9/0x20
[  380.950823][T15744]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  380.956228][T15744]  skb_clone+0x20c/0x390
[  380.960532][T15744]  __netlink_deliver_tap+0x3cc/0x7c0
[  380.965847][T15744]  ? netlink_deliver_tap+0x2e/0x1b0
[  380.971057][T15744]  netlink_deliver_tap+0x19d/0x1b0
[  380.976185][T15744]  netlink_sendskb+0x68/0x140
[  380.980875][T15744]  netlink_unicast+0x39d/0x990
[  380.985652][T15744]  ? __asan_memcpy+0x40/0x70
[  380.990288][T15744]  ? __pfx_netlink_unicast+0x10/0x10
[  380.995594][T15744]  netlink_rcv_skb+0x262/0x430
[  381.000370][T15744]  ? __pfx_genl_rcv_msg+0x10/0x10
[  381.005415][T15744]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  381.010729][T15744]  ? __netlink_deliver_tap+0x77e/0x7c0
[  381.016221][T15744]  genl_rcv+0x28/0x40
[  381.020217][T15744]  netlink_unicast+0x7f0/0x990
[  381.024998][T15744]  ? __pfx_netlink_unicast+0x10/0x10
[  381.030295][T15744]  ? __virt_addr_valid+0x183/0x520
[  381.035428][T15744]  ? __check_object_size+0x49c/0x900
[  381.042084][T15744]  ? bpf_lsm_netlink_send+0x9/0x10
[  381.047759][T15744]  netlink_sendmsg+0x8e4/0xcb0
[  381.052566][T15744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  381.057968][T15744]  ? __import_iovec+0x536/0x820
[  381.062845][T15744]  ? aa_sock_msg_perm+0x91/0x160
[  381.067834][T15744]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  381.073137][T15744]  ? security_socket_sendmsg+0x87/0xb0
[  381.078615][T15744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  381.084720][T15744]  __sock_sendmsg+0x221/0x270
[  381.089424][T15744]  ____sys_sendmsg+0x525/0x7d0
[  381.094240][T15744]  ? __pfx_____sys_sendmsg+0x10/0x10
[  381.099581][T15744]  __sys_sendmsg+0x2b0/0x3a0
[  381.104212][T15744]  ? __pfx___sys_sendmsg+0x10/0x10
[  381.109345][T15744]  ? vfs_write+0x7c4/0xc90
[  381.113819][T15744]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  381.120164][T15744]  ? do_syscall_64+0x100/0x230
[  381.124946][T15744]  ? do_syscall_64+0xb6/0x230
[  381.129671][T15744]  do_syscall_64+0xf3/0x230
[  381.134189][T15744]  ? clear_bhb_loop+0x35/0x90
[  381.138884][T15744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.144814][T15744] RIP: 0033:0x7efc7bd75bd9
[  381.149249][T15744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.168881][T15744] RSP: 002b:00007efc7b7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  381.177318][T15744] RAX: ffffffffffffffda RBX: 00007efc7bf03f60 RCX: 00007efc7bd75bd9
[  381.185308][T15744] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000004
[  381.193299][T15744] RBP: 00007efc7b7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  381.201284][T15744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  381.209263][T15744] R13: 000000000000004d R14: 00007efc7bf03f60 R15: 00007fff597d5758
[  381.217266][T15744]  </TASK>
[  381.242867][T15746] ieee802154 phy1 wpan1: encryption failed: -22
[  381.513123][T15761] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3274'.
[  381.545850][T15763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.572796][T15761] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3274'.
[  381.589144][T15763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.685848][T15763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.717547][T15763] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  381.883976][T15778] netlink: 'syz.3.3281': attribute type 7 has an invalid length.
[  381.984758][T15781] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  382.327312][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.347230][T15801] Bluetooth: hci3: invalid length 0, exp 2 for type 18
[  382.370574][T15799] wlan1: No legacy rates in association response
[  382.398115][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.497772][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.530734][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.592229][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.638674][T15799] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  382.931922][T15816] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  383.176882][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.217520][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.337798][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.375254][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.433047][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  383.471466][T15829] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.002824][T15850] __nla_validate_parse: 6 callbacks suppressed
[  384.002848][T15850] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.3308'.
[  384.045136][T15850] openvswitch: netlink: IP tunnel attribute has 3056 unknown bytes.
[  384.070453][T15857] FAULT_INJECTION: forcing a failure.
[  384.070453][T15857] name failslab, interval 1, probability 0, space 0, times 0
[  384.102382][T15857] CPU: 0 PID: 15857 Comm: syz.4.3309 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  384.112623][T15857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  384.122728][T15857] Call Trace:
[  384.126055][T15857]  <TASK>
[  384.129018][T15857]  dump_stack_lvl+0x241/0x360
[  384.133757][T15857]  ? __pfx_dump_stack_lvl+0x10/0x10
[  384.139015][T15857]  ? __pfx__printk+0x10/0x10
[  384.143673][T15857]  ? rcu_is_watching+0x15/0xb0
[  384.148672][T15857]  should_fail_ex+0x3b0/0x4e0
[  384.153409][T15857]  ? __alloc_skb+0x1c3/0x440
[  384.158051][T15857]  should_failslab+0x9/0x20
[  384.162613][T15857]  kmem_cache_alloc_node_noprof+0x71/0x320
[  384.168505][T15857]  __alloc_skb+0x1c3/0x440
[  384.173079][T15857]  ? __pfx___alloc_skb+0x10/0x10
[  384.178081][T15857]  ? netlink_ack_tlv_len+0x6e/0x200
[  384.183332][T15857]  netlink_ack+0x13f/0xa30
[  384.187888][T15857]  ? __pfx_lock_acquire+0x10/0x10
[  384.192990][T15857]  netlink_rcv_skb+0x262/0x430
[  384.197809][T15857]  ? __pfx_genl_rcv_msg+0x10/0x10
[  384.202897][T15857]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  384.208276][T15857]  genl_rcv+0x28/0x40
[  384.212317][T15857]  netlink_unicast+0x7f0/0x990
[  384.217138][T15857]  ? __pfx_netlink_unicast+0x10/0x10
[  384.222477][T15857]  ? __virt_addr_valid+0x183/0x520
[  384.227657][T15857]  ? __check_object_size+0x49c/0x900
[  384.233004][T15857]  ? bpf_lsm_netlink_send+0x9/0x10
[  384.238177][T15857]  netlink_sendmsg+0x8e4/0xcb0
[  384.243006][T15857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.248345][T15857]  ? __import_iovec+0x536/0x820
[  384.253244][T15857]  ? aa_sock_msg_perm+0x91/0x160
[  384.258245][T15857]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  384.263580][T15857]  ? security_socket_sendmsg+0x87/0xb0
[  384.269093][T15857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  384.274424][T15857]  __sock_sendmsg+0x221/0x270
[  384.279445][T15857]  ____sys_sendmsg+0x525/0x7d0
[  384.284281][T15857]  ? __pfx_____sys_sendmsg+0x10/0x10
[  384.289647][T15857]  __sys_sendmsg+0x2b0/0x3a0
[  384.294308][T15857]  ? __pfx___sys_sendmsg+0x10/0x10
[  384.299486][T15857]  ? vfs_write+0x7c4/0xc90
[  384.304008][T15857]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  384.310392][T15857]  ? do_syscall_64+0x100/0x230
[  384.315202][T15857]  ? do_syscall_64+0xb6/0x230
[  384.319924][T15857]  do_syscall_64+0xf3/0x230
[  384.324484][T15857]  ? clear_bhb_loop+0x35/0x90
[  384.329220][T15857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.335170][T15857] RIP: 0033:0x7f609a375bd9
[  384.339638][T15857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.359294][T15857] RSP: 002b:00007f609b157048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  384.367763][T15857] RAX: ffffffffffffffda RBX: 00007f609a503f60 RCX: 00007f609a375bd9
[  384.375782][T15857] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004
[  384.383885][T15857] RBP: 00007f609b1570a0 R08: 0000000000000000 R09: 0000000000000000
[  384.391902][T15857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.399920][T15857] R13: 000000000000004d R14: 00007f609a503f60 R15: 00007ffd5365adf8
[  384.407961][T15857]  </TASK>
[  384.535387][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.555754][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.621801][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.709566][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.741085][T15877] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3315'.
[  384.765932][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.798027][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.871985][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.893452][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.921493][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.962975][T15869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.969451][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  384.973551][T15884] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3317'.
[  385.041460][T15871] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  385.738296][T15914] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3326'.
[  385.777874][T15914] netlink: 'syz.1.3326': attribute type 8 has an invalid length.
[  386.083243][T15931] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3330'.
[  386.715961][T15968] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3342'.
[  386.761322][T15966] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3341'.
[  386.800672][T15966] netlink: 'syz.3.3341': attribute type 8 has an invalid length.
[  386.832984][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  386.861809][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  387.007257][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  387.056268][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  387.108440][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  387.149554][T15972] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  387.884189][T16019] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3358'.
[  388.432811][T16051] vlan1: entered promiscuous mode
[  388.448603][T16051] team0: entered promiscuous mode
[  388.467062][T16051] team_slave_0: entered promiscuous mode
[  388.481605][T16055] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3368'.
[  388.499260][T16051] team_slave_1: entered promiscuous mode
[  388.514331][T16051] team0: Device vlan1 is already an upper device of the team interface
[  388.554792][T16051] team0: left promiscuous mode
[  388.579997][T16051] team_slave_0: left promiscuous mode
[  388.595903][T16051] team_slave_1: left promiscuous mode
[  388.697780][T16062] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.724399][T16062] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.830829][T16069] FAULT_INJECTION: forcing a failure.
[  388.830829][T16069] name failslab, interval 1, probability 0, space 0, times 0
[  388.835432][T16070] netlink: 104 bytes leftover after parsing attributes in process `syz.2.3373'.
[  388.854504][T16069] CPU: 0 PID: 16069 Comm: syz.3.3374 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  388.864732][T16069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  388.874832][T16069] Call Trace:
[  388.878151][T16069]  <TASK>
[  388.881117][T16069]  dump_stack_lvl+0x241/0x360
[  388.885850][T16069]  ? __pfx_dump_stack_lvl+0x10/0x10
[  388.891100][T16069]  ? __pfx__printk+0x10/0x10
[  388.895751][T16069]  ? __pfx___might_resched+0x10/0x10
[  388.901101][T16069]  should_fail_ex+0x3b0/0x4e0
[  388.905938][T16069]  ? xfrm_policy_alloc+0x77/0x2b0
[  388.911029][T16069]  should_failslab+0x9/0x20
[  388.915587][T16069]  kmalloc_trace_noprof+0x6c/0x2c0
[  388.920770][T16069]  xfrm_policy_alloc+0x77/0x2b0
[  388.925777][T16069]  xfrm_policy_construct+0x31/0x10c0
[  388.929028][T16075] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.931130][T16069]  ? aa_get_newest_label+0xff/0x6f0
[  388.931176][T16069]  ? verify_newpolicy_info+0x340/0x4b0
[  388.951692][T16069]  xfrm_add_policy+0x270/0x980
[  388.956525][T16069]  ? __pfx_xfrm_add_policy+0x10/0x10
[  388.961972][T16069]  ? __nla_parse+0x40/0x60
[  388.966447][T16069]  xfrm_user_rcv_msg+0x75d/0xa80
[  388.971457][T16069]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  388.977021][T16069]  ? __mutex_trylock_common+0x183/0x2e0
[  388.982619][T16069]  ? __pfx___might_resched+0x10/0x10
[  388.982889][T16071] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.988034][T16069]  netlink_rcv_skb+0x1e3/0x430
[  388.988073][T16069]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  389.008056][T16069]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  389.013466][T16069]  xfrm_netlink_rcv+0x79/0x90
[  389.018218][T16069]  netlink_unicast+0x7f0/0x990
[  389.023051][T16069]  ? __pfx_netlink_unicast+0x10/0x10
[  389.028394][T16069]  ? __virt_addr_valid+0x183/0x520
[  389.033577][T16069]  ? __check_object_size+0x49c/0x900
[  389.039014][T16069]  ? bpf_lsm_netlink_send+0x9/0x10
[  389.044195][T16069]  netlink_sendmsg+0x8e4/0xcb0
[  389.049028][T16069]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.054379][T16069]  ? __import_iovec+0x536/0x820
[  389.059294][T16069]  ? aa_sock_msg_perm+0x91/0x160
[  389.064307][T16069]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  389.069638][T16069]  ? security_socket_sendmsg+0x87/0xb0
[  389.075168][T16069]  ? __pfx_netlink_sendmsg+0x10/0x10
[  389.080509][T16069]  __sock_sendmsg+0x221/0x270
[  389.085253][T16069]  ____sys_sendmsg+0x525/0x7d0
[  389.090090][T16069]  ? __pfx_____sys_sendmsg+0x10/0x10
[  389.095474][T16069]  __sys_sendmsg+0x2b0/0x3a0
[  389.099865][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.100118][T16069]  ? __pfx___sys_sendmsg+0x10/0x10
[  389.100160][T16069]  ? vfs_write+0x7c4/0xc90
[  389.100238][T16069]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  389.125872][T16081] wlan1: No legacy rates in association response
[  389.126080][T16069]  ? do_syscall_64+0x100/0x230
[  389.135676][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.137427][T16069]  ? do_syscall_64+0xb6/0x230
[  389.137467][T16069]  do_syscall_64+0xf3/0x230
[  389.156476][T16069]  ? clear_bhb_loop+0x35/0x90
[  389.161223][T16069]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  389.167176][T16069] RIP: 0033:0x7efc7bd75bd9
[  389.171654][T16069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  389.191311][T16069] RSP: 002b:00007efc7b7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  389.199787][T16069] RAX: ffffffffffffffda RBX: 00007efc7bf03f60 RCX: 00007efc7bd75bd9
[  389.207815][T16069] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000004
[  389.215921][T16069] RBP: 00007efc7b7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  389.223107][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.223917][T16069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  389.241651][T16069] R13: 000000000000004d R14: 00007efc7bf03f60 R15: 00007fff597d5758
[  389.249690][T16069]  </TASK>
[  389.281910][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.354003][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.401846][T16081] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  389.406822][T16089] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3380'.
[  389.460012][T16094] netlink: 'syz.3.3380': attribute type 8 has an invalid length.
[  389.988475][T16114] FAULT_INJECTION: forcing a failure.
[  389.988475][T16114] name failslab, interval 1, probability 0, space 0, times 0
[  390.019188][T16117] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3383'.
[  390.079603][T16114] CPU: 0 PID: 16114 Comm: syz.3.3384 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  390.090280][T16114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  390.100384][T16114] Call Trace:
[  390.103735][T16114]  <TASK>
[  390.106700][T16114]  dump_stack_lvl+0x241/0x360
[  390.111431][T16114]  ? __pfx_dump_stack_lvl+0x10/0x10
[  390.116684][T16114]  ? __pfx__printk+0x10/0x10
[  390.121338][T16114]  ? __pfx___might_resched+0x10/0x10
[  390.126689][T16114]  should_fail_ex+0x3b0/0x4e0
[  390.131428][T16114]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  390.137753][T16114]  should_failslab+0x9/0x20
[  390.142313][T16114]  __kmalloc_noprof+0xd8/0x400
[  390.147150][T16114]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  390.153287][T16114]  genl_rcv_msg+0x802/0xec0
[  390.157846][T16114]  ? mark_lock+0x9a/0x350
[  390.160082][T16122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3387'.
[  390.162212][T16114]  ? __pfx_genl_rcv_msg+0x10/0x10
[  390.162281][T16114]  ? __pfx_lock_acquire+0x10/0x10
[  390.181208][T16114]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  390.186755][T16114]  ? __pfx_nl80211_start_ap+0x10/0x10
[  390.192289][T16114]  ? __pfx_nl80211_post_doit+0x10/0x10
[  390.197800][T16114]  ? __pfx___might_resched+0x10/0x10
[  390.203144][T16114]  netlink_rcv_skb+0x1e3/0x430
[  390.207947][T16114]  ? __pfx_genl_rcv_msg+0x10/0x10
[  390.213106][T16114]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  390.218442][T16114]  ? __netlink_deliver_tap+0x77e/0x7c0
[  390.223956][T16114]  genl_rcv+0x28/0x40
[  390.227984][T16114]  netlink_unicast+0x7f0/0x990
[  390.232790][T16114]  ? __pfx_netlink_unicast+0x10/0x10
[  390.238115][T16114]  ? __virt_addr_valid+0x183/0x520
[  390.243285][T16114]  ? __check_object_size+0x49c/0x900
[  390.248626][T16114]  ? bpf_lsm_netlink_send+0x9/0x10
[  390.253792][T16114]  netlink_sendmsg+0x8e4/0xcb0
[  390.258615][T16114]  ? __pfx_netlink_sendmsg+0x10/0x10
[  390.263981][T16114]  ? __import_iovec+0x536/0x820
[  390.268873][T16114]  ? aa_sock_msg_perm+0x91/0x160
[  390.273869][T16114]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  390.279183][T16114]  ? security_socket_sendmsg+0x87/0xb0
[  390.284682][T16114]  ? __pfx_netlink_sendmsg+0x10/0x10
[  390.290021][T16114]  __sock_sendmsg+0x221/0x270
[  390.294742][T16114]  ____sys_sendmsg+0x525/0x7d0
[  390.299561][T16114]  ? __pfx_____sys_sendmsg+0x10/0x10
[  390.304914][T16114]  __sys_sendmsg+0x2b0/0x3a0
[  390.309552][T16114]  ? __pfx___sys_sendmsg+0x10/0x10
[  390.314710][T16114]  ? vfs_write+0x7c4/0xc90
[  390.319225][T16114]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  390.325595][T16114]  ? do_syscall_64+0x100/0x230
[  390.330405][T16114]  ? do_syscall_64+0xb6/0x230
[  390.335117][T16114]  do_syscall_64+0xf3/0x230
[  390.339650][T16114]  ? clear_bhb_loop+0x35/0x90
[  390.344368][T16114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.350307][T16114] RIP: 0033:0x7efc7bd75bd9
[  390.354762][T16114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.374412][T16114] RSP: 002b:00007efc7b7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  390.382891][T16114] RAX: ffffffffffffffda RBX: 00007efc7bf03f60 RCX: 00007efc7bd75bd9
[  390.390908][T16114] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[  390.399203][T16114] RBP: 00007efc7b7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  390.407306][T16114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.415329][T16114] R13: 000000000000004d R14: 00007efc7bf03f60 R15: 00007fff597d5758
[  390.423507][T16114]  </TASK>
[  390.511744][T16122] sch_fq: defrate 0 ignored.
[  390.538256][T16122] netlink: 'syz.2.3387': attribute type 1 has an invalid length.
[  390.574081][T16122] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3387'.
[  390.578326][T16133] FAULT_INJECTION: forcing a failure.
[  390.578326][T16133] name failslab, interval 1, probability 0, space 0, times 0
[  390.618469][T16133] CPU: 1 PID: 16133 Comm: syz.0.3389 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  390.628701][T16133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  390.638806][T16133] Call Trace:
[  390.642117][T16133]  <TASK>
[  390.645079][T16133]  dump_stack_lvl+0x241/0x360
[  390.649817][T16133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  390.655055][T16133]  ? __pfx__printk+0x10/0x10
[  390.659697][T16133]  ? __pfx___might_resched+0x10/0x10
[  390.665038][T16133]  should_fail_ex+0x3b0/0x4e0
[  390.669768][T16133]  should_failslab+0x9/0x20
[  390.674321][T16133]  kmalloc_node_trace_noprof+0x74/0x300
[  390.679902][T16133]  ? page_pool_create_percpu+0x77/0x7c0
[  390.685496][T16133]  page_pool_create_percpu+0x77/0x7c0
[  390.691009][T16133]  bpf_test_run_xdp_live+0x2cd/0x2110
[  390.696435][T16133]  ? arch_stack_walk+0x16d/0x1b0
[  390.701433][T16133]  ? __lock_acquire+0x1346/0x1fd0
[  390.706485][T16133]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  390.712334][T16133]  ? mark_lock+0x9a/0x350
[  390.716756][T16133]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  390.722721][T16133]  ? __might_fault+0xaa/0x120
[  390.727457][T16133]  ? __might_fault+0xc6/0x120
[  390.732172][T16133]  ? _copy_from_user+0xa6/0xe0
[  390.736997][T16133]  ? bpf_test_init+0x15a/0x180
[  390.741837][T16133]  ? xdp_convert_md_to_buff+0x5b/0x330
[  390.747339][T16133]  bpf_prog_test_run_xdp+0x80e/0x11b0
[  390.752747][T16133]  ? __pfx_lock_release+0x10/0x10
[  390.757823][T16133]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  390.763666][T16133]  ? __fget_files+0x29/0x470
[  390.768324][T16133]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  390.774156][T16133]  bpf_prog_test_run+0x33a/0x3b0
[  390.779233][T16133]  __sys_bpf+0x48d/0x810
[  390.783527][T16133]  ? __pfx___sys_bpf+0x10/0x10
[  390.788368][T16133]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  390.794458][T16133]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  390.800823][T16133]  ? do_syscall_64+0x100/0x230
[  390.805605][T16133]  __x64_sys_bpf+0x7c/0x90
[  390.810047][T16133]  do_syscall_64+0xf3/0x230
[  390.814576][T16133]  ? clear_bhb_loop+0x35/0x90
[  390.819271][T16133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  390.825180][T16133] RIP: 0033:0x7fecee975bd9
[  390.829627][T16133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  390.849340][T16133] RSP: 002b:00007fecef814048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  390.857767][T16133] RAX: ffffffffffffffda RBX: 00007feceeb03f60 RCX: 00007fecee975bd9
[  390.865754][T16133] RDX: 0000000000000050 RSI: 0000000020000500 RDI: 000000000000000a
[  390.873738][T16133] RBP: 00007fecef8140a0 R08: 0000000000000000 R09: 0000000000000000
[  390.881735][T16133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  390.889906][T16133] R13: 000000000000004d R14: 00007feceeb03f60 R15: 00007fffa9078568
[  390.897931][T16133]  </TASK>
[  391.135225][T16150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.194848][T16150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.199515][T16153] pim6reg: entered allmulticast mode
[  391.224469][T16153] pim6reg: left allmulticast mode
[  391.284891][T16157] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3396'.
[  391.298590][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.326807][T16160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3398'.
[  391.350892][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.378718][T16158] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.405905][T16150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.459615][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.476553][T16150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.498406][T16150] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.511898][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.553339][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  391.582028][T16156] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  392.292590][T16180] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3402'.
[  392.313882][T16184] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3403'.
[  392.460161][T16180] sch_fq: defrate 0 ignored.
[  392.475974][T16180] netlink: 'syz.4.3402': attribute type 1 has an invalid length.
[  392.497706][T16180] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3402'.
[  392.833699][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  392.874723][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  392.973105][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.013353][T16217] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3415'.
[  393.019159][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.063257][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.086130][T16209] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.136679][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.287382][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.399189][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.443315][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.464650][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.480418][T16219] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  393.827449][T16246] FAULT_INJECTION: forcing a failure.
[  393.827449][T16246] name failslab, interval 1, probability 0, space 0, times 0
[  393.840809][T16246] CPU: 1 PID: 16246 Comm: syz.3.3422 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  393.851279][T16246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  393.861378][T16246] Call Trace:
[  393.864699][T16246]  <TASK>
[  393.867676][T16246]  dump_stack_lvl+0x241/0x360
[  393.872412][T16246]  ? __pfx_dump_stack_lvl+0x10/0x10
[  393.877660][T16246]  ? __pfx__printk+0x10/0x10
[  393.882416][T16246]  should_fail_ex+0x3b0/0x4e0
[  393.887258][T16246]  ? skb_clone+0x20c/0x390
[  393.891737][T16246]  should_failslab+0x9/0x20
[  393.896302][T16246]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  393.901745][T16246]  skb_clone+0x20c/0x390
[  393.906043][T16246]  ? dev_queue_xmit_nit+0x220/0xc10
[  393.911297][T16246]  dev_queue_xmit_nit+0x419/0xc10
[  393.916395][T16246]  ? dev_queue_xmit_nit+0x2b/0xc10
[  393.921579][T16246]  ? validate_xmit_skb+0x9f9/0x1120
[  393.926847][T16246]  dev_hard_start_xmit+0x15f/0x7e0
[  393.932023][T16246]  ? __pfx_validate_xmit_skb+0x10/0x10
[  393.937561][T16246]  __dev_queue_xmit+0x1b63/0x3e90
[  393.942643][T16246]  ? kasan_save_track+0x51/0x80
[  393.947559][T16246]  ? nfnetlink_rcv+0x297/0x2a90
[  393.952462][T16246]  ? __sock_sendmsg+0x221/0x270
[  393.957367][T16246]  ? do_syscall_64+0xf3/0x230
[  393.962090][T16246]  ? __dev_queue_xmit+0x2da/0x3e90
[  393.967264][T16246]  ? __pfx___dev_queue_xmit+0x10/0x10
[  393.972717][T16246]  ? __copy_skb_header+0x437/0x5b0
[  393.977890][T16246]  ? __asan_memcpy+0x40/0x70
[  393.982564][T16246]  ? skb_clone+0x240/0x390
[  393.987041][T16246]  __netlink_deliver_tap+0x54d/0x7c0
[  393.992397][T16246]  ? netlink_deliver_tap+0x2e/0x1b0
[  393.997648][T16246]  netlink_deliver_tap+0x19d/0x1b0
[  394.002815][T16246]  netlink_dump+0x851/0xd80
[  394.007470][T16246]  ? __pfx_netlink_dump+0x10/0x10
[  394.012720][T16246]  ? ip_set_dump_start+0x3a1/0x530
[  394.017913][T16246]  __netlink_dump_start+0x59f/0x780
[  394.023189][T16246]  ip_set_dump+0x16d/0x1f0
[  394.027653][T16246]  ? nfnetlink_rcv_msg+0xa5c/0x1180
[  394.032907][T16246]  ? nfnetlink_rcv_msg+0x225/0x1180
[  394.038247][T16246]  ? __pfx_ip_set_dump+0x10/0x10
[  394.043239][T16246]  ? __pfx_ip_set_dump_start+0x10/0x10
[  394.048746][T16246]  ? __pfx_ip_set_dump_do+0x10/0x10
[  394.053991][T16246]  ? __pfx_ip_set_dump_done+0x10/0x10
[  394.059433][T16246]  ? nfnetlink_rcv_msg+0x225/0x1180
[  394.064695][T16246]  nfnetlink_rcv_msg+0xbec/0x1180
[  394.069766][T16246]  ? kernel_text_address+0xa7/0xe0
[  394.074928][T16246]  ? nfnetlink_rcv_msg+0x225/0x1180
[  394.080906][T16246]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  394.086451][T16246]  ? netlink_deliver_tap+0x19d/0x1b0
[  394.091810][T16246]  ? netlink_unicast+0x7be/0x990
[  394.096880][T16246]  ? netlink_sendmsg+0x8e4/0xcb0
[  394.101866][T16246]  ? __sock_sendmsg+0x221/0x270
[  394.106809][T16246]  ? ____sys_sendmsg+0x525/0x7d0
[  394.111811][T16246]  ? __sys_sendmsg+0x2b0/0x3a0
[  394.116622][T16246]  ? do_syscall_64+0xf3/0x230
[  394.121339][T16246]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.127481][T16246]  netlink_rcv_skb+0x1e3/0x430
[  394.132298][T16246]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  394.137811][T16246]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  394.143163][T16246]  ? apparmor_capable+0x138/0x1b0
[  394.148241][T16246]  ? bpf_lsm_capable+0x9/0x10
[  394.152972][T16246]  ? security_capable+0x90/0xb0
[  394.157895][T16246]  nfnetlink_rcv+0x297/0x2a90
[  394.162647][T16246]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  394.168435][T16246]  ? __dev_queue_xmit+0x2da/0x3e90
[  394.173612][T16246]  ? __dev_queue_xmit+0x1763/0x3e90
[  394.178867][T16246]  ? kasan_save_track+0x51/0x80
[  394.183776][T16246]  ? do_syscall_64+0xf3/0x230
[  394.188507][T16246]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  394.193672][T16246]  ? __dev_queue_xmit+0x2da/0x3e90
[  394.198897][T16246]  ? __pfx___dev_queue_xmit+0x10/0x10
[  394.204353][T16246]  ? ref_tracker_free+0x643/0x7e0
[  394.209986][T16246]  ? __asan_memcpy+0x40/0x70
[  394.214623][T16246]  ? __pfx_ref_tracker_free+0x10/0x10
[  394.220073][T16246]  ? netlink_deliver_tap+0x2e/0x1b0
[  394.225322][T16246]  ? skb_clone+0x240/0x390
[  394.229831][T16246]  ? __pfx_lock_release+0x10/0x10
[  394.234913][T16246]  ? __netlink_deliver_tap+0x77e/0x7c0
[  394.240439][T16246]  ? netlink_deliver_tap+0x2e/0x1b0
[  394.245714][T16246]  netlink_unicast+0x7f0/0x990
[  394.250543][T16246]  ? __pfx_netlink_unicast+0x10/0x10
[  394.255882][T16246]  ? __virt_addr_valid+0x183/0x520
[  394.261055][T16246]  ? __check_object_size+0x49c/0x900
[  394.266403][T16246]  ? bpf_lsm_netlink_send+0x9/0x10
[  394.271584][T16246]  netlink_sendmsg+0x8e4/0xcb0
[  394.276415][T16246]  ? __pfx_netlink_sendmsg+0x10/0x10
[  394.281765][T16246]  ? __import_iovec+0x536/0x820
[  394.286679][T16246]  ? aa_sock_msg_perm+0x91/0x160
[  394.291677][T16246]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  394.297009][T16246]  ? security_socket_sendmsg+0x87/0xb0
[  394.302519][T16246]  ? __pfx_netlink_sendmsg+0x10/0x10
[  394.307852][T16246]  __sock_sendmsg+0x221/0x270
[  394.312581][T16246]  ____sys_sendmsg+0x525/0x7d0
[  394.317409][T16246]  ? __pfx_____sys_sendmsg+0x10/0x10
[  394.322777][T16246]  __sys_sendmsg+0x2b0/0x3a0
[  394.327431][T16246]  ? __pfx___sys_sendmsg+0x10/0x10
[  394.332597][T16246]  ? vfs_write+0x7c4/0xc90
[  394.337126][T16246]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  394.343505][T16246]  ? do_syscall_64+0x100/0x230
[  394.348321][T16246]  ? do_syscall_64+0xb6/0x230
[  394.353087][T16246]  do_syscall_64+0xf3/0x230
[  394.357646][T16246]  ? clear_bhb_loop+0x35/0x90
[  394.362384][T16246]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  394.368515][T16246] RIP: 0033:0x7efc7bd75bd9
[  394.372981][T16246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  394.392639][T16246] RSP: 002b:00007efc7b7de048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  394.401107][T16246] RAX: ffffffffffffffda RBX: 00007efc7bf04038 RCX: 00007efc7bd75bd9
[  394.409124][T16246] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  394.417140][T16246] RBP: 00007efc7b7de0a0 R08: 0000000000000000 R09: 0000000000000000
[  394.425169][T16246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  394.433187][T16246] R13: 000000000000006e R14: 00007efc7bf04038 R15: 00007fff597d5758
[  394.441224][T16246]  </TASK>
[  394.867072][T16261] __nla_validate_parse: 1 callbacks suppressed
[  394.867098][T16261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3427'.
[  394.905355][T16261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3427'.
[  394.943615][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  394.954558][T16261] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3427'.
[  394.963438][T16275] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3433'.
[  395.001696][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  395.138272][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  395.181114][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  395.260665][T16273] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  395.395213][T16284] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3435'.
[  395.404605][T16284] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3435'.
[  395.447986][T16289] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3436'.
[  395.959763][T16311] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3443'.
[  396.389865][T16335] netlink: 96 bytes leftover after parsing attributes in process `syz.2.3448'.
[  396.499750][T16339] netlink: 184 bytes leftover after parsing attributes in process `syz.4.3450'.
[  396.770106][T16349] FAULT_INJECTION: forcing a failure.
[  396.770106][T16349] name failslab, interval 1, probability 0, space 0, times 0
[  396.797726][T16349] CPU: 1 PID: 16349 Comm: syz.0.3452 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  396.807961][T16349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  396.818127][T16349] Call Trace:
[  396.821450][T16349]  <TASK>
[  396.824424][T16349]  dump_stack_lvl+0x241/0x360
[  396.829155][T16349]  ? __pfx_dump_stack_lvl+0x10/0x10
[  396.834408][T16349]  ? __pfx__printk+0x10/0x10
[  396.839060][T16349]  ? __pfx___might_resched+0x10/0x10
[  396.844399][T16349]  ? __asan_memset+0x23/0x50
[  396.849040][T16349]  should_fail_ex+0x3b0/0x4e0
[  396.853780][T16349]  ? xfrm_policy_alloc+0x77/0x2b0
[  396.858881][T16349]  should_failslab+0x9/0x20
[  396.863452][T16349]  kmalloc_trace_noprof+0x6c/0x2c0
[  396.868824][T16349]  xfrm_policy_alloc+0x77/0x2b0
[  396.873748][T16349]  xfrm_policy_construct+0x31/0x10c0
[  396.879102][T16349]  ? aa_get_newest_label+0xff/0x6f0
[  396.884360][T16349]  ? verify_newpolicy_info+0x340/0x4b0
[  396.889855][T16349]  xfrm_add_policy+0x270/0x980
[  396.894656][T16349]  ? __pfx_xfrm_add_policy+0x10/0x10
[  396.899980][T16349]  ? __nla_parse+0x40/0x60
[  396.904423][T16349]  xfrm_user_rcv_msg+0x75d/0xa80
[  396.909397][T16349]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  396.914911][T16349]  ? __mutex_trylock_common+0x183/0x2e0
[  396.920495][T16349]  ? __pfx___might_resched+0x10/0x10
[  396.925857][T16349]  netlink_rcv_skb+0x1e3/0x430
[  396.930660][T16349]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  396.936153][T16349]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  396.941490][T16349]  xfrm_netlink_rcv+0x79/0x90
[  396.946195][T16349]  netlink_unicast+0x7f0/0x990
[  396.951007][T16349]  ? __pfx_netlink_unicast+0x10/0x10
[  396.956315][T16349]  ? __virt_addr_valid+0x183/0x520
[  396.961454][T16349]  ? __check_object_size+0x49c/0x900
[  396.966758][T16349]  ? bpf_lsm_netlink_send+0x9/0x10
[  396.971900][T16349]  netlink_sendmsg+0x8e4/0xcb0
[  396.976698][T16349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  396.981999][T16349]  ? __import_iovec+0x536/0x820
[  396.986951][T16349]  ? aa_sock_msg_perm+0x91/0x160
[  396.991911][T16349]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  396.997228][T16349]  ? security_socket_sendmsg+0x87/0xb0
[  397.002712][T16349]  ? __pfx_netlink_sendmsg+0x10/0x10
[  397.008038][T16349]  __sock_sendmsg+0x221/0x270
[  397.012743][T16349]  ____sys_sendmsg+0x525/0x7d0
[  397.017538][T16349]  ? __pfx_____sys_sendmsg+0x10/0x10
[  397.022877][T16349]  __sys_sendmsg+0x2b0/0x3a0
[  397.027490][T16349]  ? __pfx___sys_sendmsg+0x10/0x10
[  397.032648][T16349]  ? vfs_write+0x7c4/0xc90
[  397.037217][T16349]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  397.043561][T16349]  ? do_syscall_64+0x100/0x230
[  397.048343][T16349]  ? do_syscall_64+0xb6/0x230
[  397.053038][T16349]  do_syscall_64+0xf3/0x230
[  397.057553][T16349]  ? clear_bhb_loop+0x35/0x90
[  397.062249][T16349]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.068157][T16349] RIP: 0033:0x7fecee975bd9
[  397.072592][T16349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.092211][T16349] RSP: 002b:00007fecef814048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.100641][T16349] RAX: ffffffffffffffda RBX: 00007feceeb03f60 RCX: 00007fecee975bd9
[  397.108632][T16349] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003
[  397.116610][T16349] RBP: 00007fecef8140a0 R08: 0000000000000000 R09: 0000000000000000
[  397.124609][T16349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.132609][T16349] R13: 000000000000004d R14: 00007feceeb03f60 R15: 00007fffa9078568
[  397.140634][T16349]  </TASK>
[  397.311436][T16359] netlink: 'syz.4.3455': attribute type 153 has an invalid length.
[  397.364888][T16362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.394008][T16362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.508582][T16362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.541807][T16362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.606434][T16379] FAULT_INJECTION: forcing a failure.
[  397.606434][T16379] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  397.620299][T16380] netlink: 'syz.3.3463': attribute type 1 has an invalid length.
[  397.629777][T16379] CPU: 1 PID: 16379 Comm: syz.2.3464 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  397.640049][T16379] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  397.650153][T16379] Call Trace:
[  397.653561][T16379]  <TASK>
[  397.656527][T16379]  dump_stack_lvl+0x241/0x360
[  397.658161][T16362] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.661236][T16379]  ? __pfx_dump_stack_lvl+0x10/0x10
[  397.661268][T16379]  ? __pfx__printk+0x10/0x10
[  397.661307][T16379]  ? __pfx_lock_release+0x10/0x10
[  397.661343][T16379]  should_fail_ex+0x3b0/0x4e0
[  397.661382][T16379]  _copy_from_user+0x2f/0xe0
[  397.661417][T16379]  copy_msghdr_from_user+0xae/0x680
[  397.661451][T16379]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  397.661497][T16379]  __sys_sendmsg+0x23d/0x3a0
[  397.711107][T16379]  ? __pfx___sys_sendmsg+0x10/0x10
[  397.716370][T16379]  ? vfs_write+0x7c4/0xc90
[  397.720893][T16379]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  397.727276][T16379]  ? do_syscall_64+0x100/0x230
[  397.732095][T16379]  ? do_syscall_64+0xb6/0x230
[  397.736825][T16379]  do_syscall_64+0xf3/0x230
[  397.741380][T16379]  ? clear_bhb_loop+0x35/0x90
[  397.746120][T16379]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.752078][T16379] RIP: 0033:0x7fa824f75bd9
[  397.756548][T16379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.776292][T16379] RSP: 002b:00007fa825c6c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  397.784768][T16379] RAX: ffffffffffffffda RBX: 00007fa825103f60 RCX: 00007fa824f75bd9
[  397.792792][T16379] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[  397.800805][T16379] RBP: 00007fa825c6c0a0 R08: 0000000000000000 R09: 0000000000000000
[  397.808891][T16379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.816887][T16379] R13: 000000000000004d R14: 00007fa825103f60 R15: 00007ffde1ae8cf8
[  397.825064][T16379]  </TASK>
[  400.553134][T16483] __nla_validate_parse: 8 callbacks suppressed
[  400.553162][T16483] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.3490'.
[  401.238545][T16519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3503'.
[  401.373685][T16527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3506'.
[  401.401327][T16530] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  401.458045][T16530] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3507'.
[  401.520203][T16530] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  401.669643][T16530] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  401.711445][T16530] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  401.838726][T16530] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  401.852737][T16545] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3514'.
[  402.077287][T16556] netlink: 'syz.3.3514': attribute type 1 has an invalid length.
[  402.139938][T16545] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3514'.
[  402.180041][T16565] netlink: 256 bytes leftover after parsing attributes in process `syz.2.3517'.
[  402.741896][T16586] 
[  402.744288][T16586] ======================================================
[  402.751333][T16586] WARNING: possible circular locking dependency detected
[  402.758397][T16586] 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0 Not tainted
[  402.765621][T16586] ------------------------------------------------------
[  402.772671][T16586] syz.2.3522/16586 is trying to acquire lock:
[  402.778821][T16586] ffff88802bef8218 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2){+...}-{2:2}, at: __dev_queue_xmit+0x2353/0x3e90
[  402.791156][T16586] 
[  402.791156][T16586] but task is already holding lock:
[  402.798647][T16586] ffff88801f414cd8 (&qdisc_xmit_lock_key#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0
[  402.804415][T16589] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3521'.
[  402.809426][T16586] 
[  402.809426][T16586] which lock already depends on the new lock.
[  402.809426][T16586] 
[  402.809440][T16586] 
[  402.809440][T16586] the existing dependency chain (in reverse order) is:
[  402.809450][T16586] 
[  402.809450][T16586] -> #1 (&qdisc_xmit_lock_key#2){+.-.}-{2:2}:
[  402.809494][T16586]        lock_acquire+0x1ed/0x550
[  402.851483][T16586]        _raw_spin_lock+0x2e/0x40
[  402.856559][T16586]        sch_direct_xmit+0x1c4/0x5f0
[  402.861866][T16586]        __dev_queue_xmit+0x1a7f/0x3e90
[  402.867441][T16586]        ip6_finish_output2+0xffa/0x1680
[  402.873112][T16586]        ip6_finish_output+0x41e/0x810
[  402.878602][T16586]        NF_HOOK+0x9e/0x430
[  402.883135][T16586]        mld_sendpack+0x843/0xdb0
[  402.888178][T16586]        mld_ifc_work+0x7d6/0xd90
[  402.893407][T16586]        process_scheduled_works+0xa2c/0x1830
[  402.899502][T16586]        worker_thread+0x86d/0xd50
[  402.904636][T16586]        kthread+0x2f0/0x390
[  402.909239][T16586]        ret_from_fork+0x4b/0x80
[  402.914192][T16586]        ret_from_fork_asm+0x1a/0x30
[  402.919516][T16586] 
[  402.919516][T16586] -> #0 (dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2){+...}-{2:2}:
[  402.929893][T16586]        validate_chain+0x18e0/0x5900
[  402.935288][T16586]        __lock_acquire+0x1346/0x1fd0
[  402.940668][T16586]        lock_acquire+0x1ed/0x550
[  402.945699][T16586]        _raw_spin_lock+0x2e/0x40
[  402.950734][T16586]        __dev_queue_xmit+0x2353/0x3e90
[  402.956298][T16586]        ip6_finish_output2+0xffa/0x1680
[  402.961944][T16586]        ip6_finish_output+0x41e/0x810
[  402.967439][T16586]        ndisc_send_skb+0xab2/0x1380
[  402.972749][T16586]        ndisc_solicit+0x493/0x6a0
[  402.977879][T16586]        __neigh_event_send+0xece/0x15b0
[  402.983526][T16586]        neigh_resolve_output+0x1b5/0x740
[  402.989260][T16586]        ip6_finish_output2+0xffa/0x1680
[  402.994990][T16586]        ip6_finish_output+0x41e/0x810
[  403.000471][T16586]        ip6_send_skb+0x112/0x230
[  403.005504][T16586]        icmp6_send+0x15fc/0x2070
[  403.010537][T16586]        ip6_link_failure+0x3c/0x4f0
[  403.015834][T16586]        ip_tunnel_xmit+0x1653/0x2950
[  403.021223][T16586]        __gre_xmit+0x1cf/0x260
[  403.026093][T16586]        erspan_xmit+0xabe/0x1310
[  403.031129][T16586]        dev_hard_start_xmit+0x27a/0x7e0
[  403.036783][T16586]        sch_direct_xmit+0x2b6/0x5f0
[  403.042120][T16586]        __qdisc_run+0xbfd/0x2170
[  403.047159][T16586]        __dev_queue_xmit+0x1119/0x3e90
[  403.052723][T16586]        ip6_finish_output2+0xffa/0x1680
[  403.058551][T16586]        ip6_finish_output+0x41e/0x810
[  403.064027][T16586]        rawv6_send_hdrinc+0xcfc/0x1890
[  403.069600][T16586]        rawv6_sendmsg+0x1962/0x23c0
[  403.074892][T16586]        __sock_sendmsg+0x1a6/0x270
[  403.080098][T16586]        ____sys_sendmsg+0x525/0x7d0
[  403.085401][T16586]        __sys_sendmsg+0x2b0/0x3a0
[  403.090639][T16586]        do_syscall_64+0xf3/0x230
[  403.095757][T16586]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.102189][T16586] 
[  403.102189][T16586] other info that might help us debug this:
[  403.102189][T16586] 
[  403.112421][T16586]  Possible unsafe locking scenario:
[  403.112421][T16586] 
[  403.119871][T16586]        CPU0                    CPU1
[  403.125236][T16586]        ----                    ----
[  403.130599][T16586]   lock(&qdisc_xmit_lock_key#2);
[  403.135641][T16586]                                lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2);
[  403.145283][T16586]                                lock(&qdisc_xmit_lock_key#2);
[  403.152853][T16586]   lock(dev->qdisc_tx_busylock ?: &qdisc_tx_busylock#2);
[  403.160074][T16586] 
[  403.160074][T16586]  *** DEADLOCK ***
[  403.160074][T16586] 
[  403.168246][T16586] 10 locks held by syz.2.3522/16586:
[  403.173536][T16586]  #0: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: rawv6_send_hdrinc+0xb7a/0x1890
[  403.183315][T16586]  #1: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1680
[  403.193171][T16586]  #2: ffffffff8e333f80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2da/0x3e90
[  403.203126][T16586]  #3: ffff88801f414cd8 (&qdisc_xmit_lock_key#2){+.-.}-{2:2}, at: sch_direct_xmit+0x1c4/0x5f0
[  403.213421][T16586]  #4: ffff88802a4e81d8 (k-slock-AF_INET6){+.-.}-{2:2}, at: icmp6_send+0xc45/0x2070
[  403.222841][T16586]  #5: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: icmp6_send+0xba4/0x2070
[  403.231999][T16586]  #6: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1680
[  403.241850][T16586]  #7: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ndisc_send_skb+0x574/0x1380
[  403.251442][T16586]  #8: ffffffff8e333f20 (rcu_read_lock){....}-{1:2}, at: ip6_finish_output2+0x712/0x1680
[  403.261296][T16586]  #9: ffffffff8e333f80 (rcu_read_lock_bh){....}-{1:2}, at: __dev_queue_xmit+0x2da/0x3e90
[  403.271272][T16586] 
[  403.271272][T16586] stack backtrace:
[  403.277164][T16586] CPU: 0 PID: 16586 Comm: syz.2.3522 Not tainted 6.10.0-rc6-syzkaller-01218-g390b14b5e9f6 #0
[  403.287409][T16586] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  403.297481][T16586] Call Trace:
[  403.300774][T16586]  <TASK>
[  403.303724][T16586]  dump_stack_lvl+0x241/0x360
[  403.308418][T16586]  ? __pfx_dump_stack_lvl+0x10/0x10
[  403.313651][T16586]  ? print_circular_bug+0x130/0x1a0
[  403.318885][T16586]  check_noncircular+0x36a/0x4a0
[  403.323858][T16586]  ? __pfx_check_noncircular+0x10/0x10
[  403.329340][T16586]  ? __bfs+0x368/0x6f0
[  403.333506][T16586]  ? __pfx_usage_skip+0x10/0x10
[  403.338377][T16586]  validate_chain+0x18e0/0x5900
[  403.343253][T16586]  ? __pfx_validate_chain+0x10/0x10
[  403.348463][T16586]  ? __pfx_validate_chain+0x10/0x10
[  403.353781][T16586]  ? validate_chain+0x15b1/0x5900
[  403.358831][T16586]  ? register_lock_class+0x102/0x980
[  403.364136][T16586]  ? __pfx_register_lock_class+0x10/0x10
[  403.369779][T16586]  ? __pfx_validate_chain+0x10/0x10
[  403.375017][T16586]  ? mark_lock+0x9a/0x350
[  403.379361][T16586]  __lock_acquire+0x1346/0x1fd0
[  403.384232][T16586]  lock_acquire+0x1ed/0x550
[  403.388746][T16586]  ? __dev_queue_xmit+0x2353/0x3e90
[  403.394141][T16586]  ? __pfx_lock_acquire+0x10/0x10
[  403.399174][T16586]  ? __pfx_lock_acquire+0x10/0x10
[  403.404206][T16586]  ? __lock_acquire+0x1346/0x1fd0
[  403.409236][T16586]  ? rcu_lockdep_current_cpu_online+0x37/0x120
[  403.415405][T16586]  ? rcu_read_lock_bh_held+0x7e/0x120
[  403.420786][T16586]  ? __pfx_rcu_read_lock_bh_held+0x10/0x10
[  403.426618][T16586]  _raw_spin_lock+0x2e/0x40
[  403.431131][T16586]  ? __dev_queue_xmit+0x2353/0x3e90
[  403.436344][T16586]  __dev_queue_xmit+0x2353/0x3e90
[  403.441389][T16586]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  403.447379][T16586]  ? __dev_queue_xmit+0x2da/0x3e90
[  403.452518][T16586]  ? __pfx___dev_queue_xmit+0x10/0x10
[  403.457908][T16586]  ? neigh_resolve_output+0x450/0x740
[  403.463294][T16586]  ? read_seqbegin+0x157/0x2b0
[  403.468074][T16586]  ? lockdep_hardirqs_on+0x99/0x150
[  403.473294][T16586]  ? read_seqbegin+0x208/0x2b0
[  403.478074][T16586]  ? __pfx_read_seqbegin+0x10/0x10
[  403.483203][T16586]  ? neigh_resolve_output+0x2e5/0x740
[  403.488594][T16586]  ? eth_header+0x11c/0x1f0
[  403.493117][T16586]  ? __asan_memcpy+0x40/0x70
[  403.497742][T16586]  ip6_finish_output2+0xffa/0x1680
[  403.502881][T16586]  ? ip6_finish_output2+0x712/0x1680
[  403.508190][T16586]  ? nf_hook+0x9e/0x450
[  403.512377][T16586]  ? __pfx_ip6_finish_output2+0x10/0x10
[  403.517950][T16586]  ? ip6_mtu+0x81/0x3f0
[  403.522134][T16586]  ip6_finish_output+0x41e/0x810
[  403.527100][T16586]  ndisc_send_skb+0xab2/0x1380
[  403.531879][T16586]  ? ndisc_send_skb+0x574/0x1380
[  403.536854][T16586]  ? __pfx_ndisc_send_skb+0x10/0x10
[  403.542083][T16586]  ? __pfx_dst_output+0x10/0x10
[  403.546963][T16586]  ? __asan_memcpy+0x40/0x70
[  403.551593][T16586]  ? __pfx_ndisc_ns_create+0x10/0x10
[  403.556899][T16586]  ? ipv6_get_lladdr+0x35a/0x3d0
[  403.562046][T16586]  ? ipv6_get_lladdr+0x2c/0x3d0
[  403.566914][T16586]  ndisc_solicit+0x493/0x6a0
[  403.571617][T16586]  ? __pfx_ndisc_solicit+0x10/0x10
[  403.576763][T16586]  ? __skb_clone+0x454/0x6c0
[  403.581372][T16586]  ? __pfx_ndisc_solicit+0x10/0x10
[  403.586497][T16586]  __neigh_event_send+0xece/0x15b0
[  403.591634][T16586]  neigh_resolve_output+0x1b5/0x740
[  403.596852][T16586]  ? __ipv6_neigh_lookup_noref+0x52c/0x730
[  403.602759][T16586]  ip6_finish_output2+0xffa/0x1680
[  403.607885][T16586]  ? ip6_finish_output2+0x712/0x1680
[  403.613185][T16586]  ? nf_hook+0x9e/0x450
[  403.617356][T16586]  ? __pfx_ip6_finish_output2+0x10/0x10
[  403.622912][T16586]  ? ip6_mtu+0x81/0x3f0
[  403.627082][T16586]  ip6_finish_output+0x41e/0x810
[  403.632059][T16586]  ip6_send_skb+0x112/0x230
[  403.636570][T16586]  ? icmp6_send+0xba4/0x2070
[  403.641169][T16586]  icmp6_send+0x15fc/0x2070
[  403.645688][T16586]  ? icmp6_send+0xba4/0x2070
[  403.650304][T16586]  ? __pfx_icmp6_send+0x10/0x10
[  403.655173][T16586]  ? in6_dump_addrs+0x1350/0x1e40
[  403.660291][T16586]  ? __pfx_lock_release+0x10/0x10
[  403.665436][T16586]  ? ip6_neigh_lookup+0x44b/0x580
[  403.670564][T16586]  ? __pfx_ip6_neigh_lookup+0x10/0x10
[  403.675947][T16586]  ip6_link_failure+0x3c/0x4f0
[  403.680753][T16586]  ? dst_link_failure+0x107/0x160
[  403.685797][T16586]  ip_tunnel_xmit+0x1653/0x2950
[  403.690675][T16586]  ? __pfx_lockdep_unlock+0x10/0x10
[  403.695884][T16586]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  403.701108][T16586]  ? gre_build_header+0x341/0xb30
[  403.706421][T16586]  ? __pfx_gre_build_header+0x10/0x10
[  403.711823][T16586]  __gre_xmit+0x1cf/0x260
[  403.716169][T16586]  ? __pfx___gre_xmit+0x10/0x10
[  403.721049][T16586]  ? erspan_build_header+0x174/0x360
[  403.726354][T16586]  erspan_xmit+0xabe/0x1310
[  403.730880][T16586]  ? __pfx_erspan_xmit+0x10/0x10
[  403.735827][T16586]  ? __pfx_lock_acquire+0x10/0x10
[  403.740866][T16586]  dev_hard_start_xmit+0x27a/0x7e0
[  403.746008][T16586]  sch_direct_xmit+0x2b6/0x5f0
[  403.750787][T16586]  ? __pfx_sch_direct_xmit+0x10/0x10
[  403.756086][T16586]  __qdisc_run+0xbfd/0x2170
[  403.760597][T16586]  ? do_raw_spin_lock+0x14f/0x370
[  403.765637][T16586]  ? skbprio_enqueue+0x72f/0x1130
[  403.770710][T16586]  __dev_queue_xmit+0x1119/0x3e90
[  403.775775][T16586]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  403.781771][T16586]  ? __dev_queue_xmit+0x2da/0x3e90
[  403.786951][T16586]  ? __pfx___dev_queue_xmit+0x10/0x10
[  403.792437][T16586]  ? neigh_resolve_output+0x450/0x740
[  403.797825][T16586]  ? read_seqbegin+0x157/0x2b0
[  403.802608][T16586]  ? lockdep_hardirqs_on+0x99/0x150
[  403.807844][T16586]  ? read_seqbegin+0x208/0x2b0
[  403.812807][T16586]  ? __pfx_read_seqbegin+0x10/0x10
[  403.817944][T16586]  ? neigh_resolve_output+0x2e5/0x740
[  403.823336][T16586]  ? eth_header+0x11c/0x1f0
[  403.827854][T16586]  ? __asan_memcpy+0x40/0x70
[  403.832473][T16586]  ip6_finish_output2+0xffa/0x1680
[  403.837599][T16586]  ? ip6_finish_output2+0x712/0x1680
[  403.842890][T16586]  ? nf_hook+0x9e/0x450
[  403.847064][T16586]  ? __pfx_ip6_finish_output2+0x10/0x10
[  403.852637][T16586]  ? ip6_mtu+0x81/0x3f0
[  403.856903][T16586]  ip6_finish_output+0x41e/0x810
[  403.861862][T16586]  ? rawv6_send_hdrinc+0xb7a/0x1890
[  403.867254][T16586]  rawv6_send_hdrinc+0xcfc/0x1890
[  403.872299][T16586]  ? __pfx_rawv6_send_hdrinc+0x10/0x10
[  403.877915][T16586]  ? ip6_dst_lookup_flow+0x13e/0x180
[  403.883313][T16586]  ? __pfx_dst_output+0x10/0x10
[  403.888173][T16586]  ? __pfx_ip6_dst_lookup_flow+0x10/0x10
[  403.893984][T16586]  ? aa_label_sk_perm+0x4f0/0x6d0
[  403.899098][T16586]  ? rawv6_sendmsg+0xef9/0x23c0
[  403.904004][T16586]  rawv6_sendmsg+0x1962/0x23c0
[  403.908824][T16586]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  403.913975][T16586]  ? aa_sk_perm+0x967/0xab0
[  403.918519][T16586]  ? inet_sendmsg+0x330/0x390
[  403.923325][T16586]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  403.928628][T16586]  ? security_socket_sendmsg+0x87/0xb0
[  403.934106][T16586]  __sock_sendmsg+0x1a6/0x270
[  403.938888][T16586]  ____sys_sendmsg+0x525/0x7d0
[  403.943684][T16586]  ? __pfx_____sys_sendmsg+0x10/0x10
[  403.949001][T16586]  __sys_sendmsg+0x2b0/0x3a0
[  403.953616][T16586]  ? __pfx___sys_sendmsg+0x10/0x10
[  403.958750][T16586]  ? rawv6_setsockopt+0x432/0x740
[  403.963806][T16586]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  403.970146][T16586]  ? do_syscall_64+0x100/0x230
[  403.974922][T16586]  ? do_syscall_64+0xb6/0x230
[  403.979607][T16586]  do_syscall_64+0xf3/0x230
[  403.984205][T16586]  ? clear_bhb_loop+0x35/0x90
[  403.988894][T16586]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.994802][T16586] RIP: 0033:0x7fa824f75bd9
[  403.999316][T16586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  404.019310][T16586] RSP: 002b:00007fa8249ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  404.027740][T16586] RAX: ffffffffffffffda RBX: 00007fa825104038 RCX: 00007fa824f75bd9
[  404.035726][T16586] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000008
[  404.043706][T16586] RBP: 00007fa824fe4aa1 R08: 0000000000000000 R09: 0000000000000000
[  404.051688][T16586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  404.060118][T16586] R13: 000000000000006e R14: 00007fa825104038 R15: 00007ffde1ae8cf8
[  404.068110][T16586]  </TASK>
[  404.101921][T16596] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3526'.
[  404.201377][T16596] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3526'.
[  404.214649][T16586] syz.2.3522 (16586) used greatest stack depth: 17424 bytes left