last executing test programs:

4.75389878s ago: executing program 0 (id=2307):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000440)='GPL\x00'}, 0x80)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000170000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000002c0)='consume_skb\x00', r2}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={r1, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, &(0x7f0000000180)=[0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x3, &(0x7f00000001c0)=[0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0], 0x0, 0x6c, &(0x7f0000000300)=[{}, {}, {}, {}, {}, {}, {}, {}, {}, {}], 0x50, 0x10, &(0x7f0000000280), &(0x7f0000000400), 0x8, 0xa0, 0x8, 0x8, &(0x7f0000000480)}}, 0x10)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={0x44, 0x3, 0x1, 0x3, 0x0, 0x0, {0xa}, [@CTA_TUPLE_REPLY={0x30, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @mcast2}}}]}]}, 0x44}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r5, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000200)="b9e403c6631e39495aa05dc7cf1c", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x2c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r7}, [@IFLA_ADDRESS={0xa}]}, 0x2c}}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x89f0, &(0x7f0000000900)={'bridge0\x00', @random='\x00\x00\x00 \x00'})
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
unshare(0x0)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_ADD_COUNTERS(r9, 0x0, 0x41, &(0x7f0000000680)=ANY=[@ANYBLOB="6e61740000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002a6295e6b9ed6f045d151f39d5754b79db87b697cbfd2e9da1ba"], 0x78)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = socket$igmp6(0xa, 0x3, 0x2)
sendmmsg$unix(r11, &(0x7f00000003c0)=[{{&(0x7f0000005340)=@abs, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x200c4040}}, {{&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}], 0x2, 0x0)
sendmsg$nl_generic(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000003a000b00004800008a058673f6ba72644b616e06d380c66cb30f1bc076674832efb39f0e458c2735d18af2791106347658105c5f42006e682b66041bf8ad21ae2ee0e99ce21e4e7da508e12b3344746bb4ea28939091463bba1298b05a1dfb7553707fd7abdc43eb9a8134f4dfc41d4fc79c6c658d2fbfedadc75e693b103a7ff4f2741d86770c6d4c1acf017606c43e985f37118836fcace3695dfe885c4ca3ee77da"], 0x24}}, 0x0)
r12 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0xfffffffffffffe1a, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)

2.781931726s ago: executing program 2 (id=2320):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="2800000002030300"/19], 0x28}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x20, 0x2, 0x3, 0x5, 0x0, 0x0, {}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x40, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x81}, 0x0)

2.655315107s ago: executing program 4 (id=2322):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast2, 0x9}, 0x1c)
getsockname(r0, &(0x7f0000000100)=@hci, &(0x7f0000000000)=0x80)
sendto$inet6(r0, &(0x7f0000000040)="2ba8", 0x584, 0x0, 0x0, 0xf5ffffff)

2.618916658s ago: executing program 0 (id=2323):
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@getnexthop={0x20, 0x6a, 0xe976912f002a1383, 0xc00e0000, 0x0, {}, [@NHA_MASTER={0x8, 0xe}]}, 0x20}}, 0x0)

2.482030528s ago: executing program 2 (id=2324):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0))
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000200))
ioctl$PPPIOCSFLAGS1(r0, 0x40047459, &(0x7f0000000100)=0x2000004)
pwritev(r0, &(0x7f0000000080)=[{&(0x7f00000004c0)="00214717a70700000001030600710a5e31163ceb9d04", 0x16}], 0x1, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1802e4ffffff0000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0xcc, &(0x7f0000000e80)=""/204}, 0x90)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x18, 0x0, 0x0, 0x0}, 0x90)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
r3 = socket$xdp(0x2c, 0x3, 0x0)
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0x5a, &(0x7f0000000c40)=ANY=[@ANYBLOB="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"], 0x0)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0, 0x8012, r3, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x409c884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @local}, 0x1c)
sendto$inet6(r1, &(0x7f0000000780)="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", 0x482, 0x6d91fb6102d8d9cc, 0x0, 0x0)
sendto$inet6(r1, &(0x7f0000000040)="935645bc5256480c3d972b8f097c1b97e0a1d0394ea9e40a42ed84216668b87a4737edaa0c22f4d124bc8b5754ee351bab2d1df88a19fcad2f7ae9859129a609b7b211d353fd614b9cbba28d25d451c00125a76d1ecb40ebd2f283edcb1913fb61791b5a800d30ca5eae966e0cdcbd902f8da4ea9c7978194991827e61f458c09333aea0037255dc2478ed6fc702fc4febadaa31d57d1c1080bd150c90bf4ff40ab25757bb5081533cd3aecf3670888e035cf21e6fa8ea3e1212aaef059b5bbb8c98c90044f15fbd44d3b0b8c61c0b54ce2aabc4b0927f3cabccc154b02d7bc730cdc257d7c79b5560c987c23fc79c676c3c802a979fbe238f22c82281ef", 0xfe, 0x4008004, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x9, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000008007000000080000009500000000000000"], &(0x7f0000000300)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000380)={0x3, 0xa, 0x375, 0x8}, 0x10, 0x0, 0x0, 0xa, &(0x7f00000003c0), &(0x7f0000000400)=[{0x2, 0x4, 0xc, 0x4}, {0x4, 0x1, 0x2}, {0x1, 0x5, 0xe, 0x9}, {0x3, 0x1, 0x5, 0xb}, {0x1, 0x4, 0x6, 0x6}, {0x5, 0x3, 0x3, 0xa}, {0x1, 0x3, 0x7, 0x2}, {0x0, 0x4, 0x1, 0x1}, {0x1, 0x4, 0x6, 0x3}, {0x2, 0x5, 0xc, 0x6}], 0x10, 0x3}, 0x90)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000680)={0x0, @multicast2, @empty}, &(0x7f00000005c0)=0xc)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000006c0)={0x3, 0x4, 0x4, 0xa, 0x300, 0xffffffffffffffff, 0x60000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x10000000}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x5, 0x4, 0x4, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0xd3}}, {{0x6, 0x0, 0x6, 0x9, 0x0, 0x6, 0xe7030000}, {0x4, 0x0, 0x0, 0x6}}, [@printk={@p, {0x5, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x1, 0xa, 0x1, 0x9}, {0x7, 0x0, 0x3}, {}, {}, {0x14}}], {{0x4, 0x1, 0x5, 0x3}, {0x5, 0x0, 0xb, 0x3, 0x0, 0x2}}}, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet6(r1, &(0x7f0000000000)='I', 0x1, 0x0, 0x0, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r2, 0x0, 0x60, &(0x7f0000000f80)={'filter\x00', 0x7, 0x4, 0x3f0, 0x1f8, 0x0, 0x1f8, 0x308, 0x308, 0x308, 0x4, &(0x7f0000000340), {[{{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x8000, 0x1f, 0x3}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @empty, @local, @local, 0x1, 0x1}}}, {{@arp={@broadcast, @rand_addr=0x64010100, 0xffffffff, 0x1b5684028f280588, 0x0, 0xd, {@empty, {[0x0, 0x0, 0x0, 0xff, 0xff]}}, {@mac=@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, {[0x0, 0xff, 0x0, 0xff, 0xff, 0xff]}}, 0x3, 0x7, 0x7fff, 0x8001, 0x9, 0x451, 'veth0_to_hsr\x00', 'macvlan1\x00', {0xff}}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@random="972014e58a36", @empty, @multicast2, @broadcast, 0x4, 0x1}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='pids.events\x00', 0x26e1, 0x0)
close(r5)
accept$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @dev}, &(0x7f0000000640)=0x10)

2.461933183s ago: executing program 4 (id=2325):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000740)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f0000000880)={'#! ', './file0', [{0x20, '.:-@%'}]}, 0x11)
recvmmsg(r1, &(0x7f00000023c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000}}, {{0x0, 0x0, &(0x7f0000002340)=[{&(0x7f0000002000)=""/166, 0xa6}], 0x1, 0x0, 0x0, 0x5}}], 0x2, 0x0, 0x0)

2.438307252s ago: executing program 0 (id=2326):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="580000000002000000000000000000000000000010000180f70002800500010000000000300003801700018014000300fc000000000000000000000011000000140004"], 0x58}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'ip6tnl0\x00'})
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000001740)={'virt_wifi0\x00', &(0x7f0000001640)=@ethtool_drvinfo={0x3, "a1bdb8d44cddbf4a58777b514109144ef588e2e3c04b830c5351e8ad93e86da3", "2e9185bc319d4c57cdf5e2c260535787c66099967d310c64ff9d2d851e8f00", "a0ab7e977fdac226b8c494358b1bae06393932f28a9c5dee2177def10ef1de35", "ae33fa8801e356b19c52e0cabbe4845616e7a23836e2ead91ee49871a33f433a", "14fb465c47d4dd53326129372fc8e61f9bf2178f76473e3bec9398116781fc4e", "9ab337a3ea804dcf1c1158ef"}})
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="d824000028000100020000080000000006"], 0x24d8}], 0x1}, 0x0)

2.237109214s ago: executing program 3 (id=2328):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
shutdown(r0, 0x1)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x8000000, 0x12)

2.189357301s ago: executing program 4 (id=2329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r2}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.02126525s ago: executing program 2 (id=2331):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000006604000008000300", @ANYRES32=r2, @ANYBLOB="0800b70004000000080026009409"], 0x4c}}, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000000)={'bridge_slave_0\x00', &(0x7f0000000080)=@ethtool_dump={0x3f}})
sendmsg$IPSET_CMD_TEST(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000100)={'sit0\x00', &(0x7f0000000080)={'syztnl0\x00', 0x0, 0x20, 0x7800, 0x1, 0x29b, {{0xf, 0x4, 0x3, 0x0, 0x3c, 0x66, 0x0, 0x5, 0x7f, 0x0, @empty, @multicast1, {[@timestamp_prespec={0x44, 0x1c, 0x56, 0x3, 0xe, [{@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7f}, {@multicast2, 0x10001}, {@remote, 0x7ff}]}, @timestamp_addr={0x44, 0xc, 0x26, 0x1, 0x5, [{@multicast2, 0xf96}]}]}}}}})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r5=>0x0})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r5, @ANYBLOB="00001700000000001c0037800b0001006970768a616e00000c0002800600010000000000050027"], 0x44}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r9, &(0x7f0000000080)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000500)=ANY=[@ANYBLOB="2a0000000000000000000000000000000000ceba", @ANYBLOB="a2ecedb96bdfb333cdf029d2f6edebe526ca5e3d58640a5adf1226cb471068cca56664", @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0xfffffffffffffe22, &(0x7f00000000c0)={&(0x7f0000000240)=@newqdisc={0x68, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0x6, 0x2, [0x0]}}]}, @qdisc_kind_options=@q_pfifo_head_drop={{0x14}, {0x4}}]}, 0x68}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000000c0)={'team_slave_0\x00', <r12=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2800000010000104000000000000000000fcee00", @ANYRES32=r12, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n'], 0x28}}, 0x0)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r13, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000240)=ANY=[@ANYBLOB="fc000000", @ANYRES16=r14, @ANYBLOB="0100000000000000000003000000e80001802c0004001400010002000000ac14140000000000000000001400020002000a00ac1414bb00000040000000002c0002800800030000000000080001000000000008000300b200000008000100000000000800148b50310000100001006574683a62726964676530007c000280080001"], 0xfc}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)

2.02101212s ago: executing program 4 (id=2332):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095bbd80000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
setsockopt$inet6_int(r2, 0x29, 0x4b, &(0x7f0000000100)=0x4, 0x4)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private1, 0x2}, 0x1c)
r5 = socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x0)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="480000001000010400005cfa0000000000000000", @ANYRES32=0x0, @ANYBLOB="7b13000000000000200012800b00010067656e657665000010000280060005004e2000000400060008000500", @ANYRES32=r3, @ANYBLOB], 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000000980)=ANY=[@ANYRESDEC=r4], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
recvmsg(r6, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
r8 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r8, 0x89f3, &(0x7f0000000140)={'sit0\x00', &(0x7f00000000c0)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0x29, 0x0, @loopback, @empty, {[@timestamp={0x44, 0x4}]}}}}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000000))
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r9, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x208, 0xd8, 0x0, 0x148, 0x0, 0x148, 0x170, 0x240, 0x240, 0x170, 0x240, 0x7fffffe, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, 'ip6gretap0\x00', 'geneve1\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x10, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}, {{@ip={@private, @broadcast, 0x0, 0x0, 'lo\x00', 'macvlan1\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x268)
r10 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r10, 0x107, 0x12, &(0x7f0000000000), 0x8)
r11 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r11, 0x107, 0x12, &(0x7f0000000000), 0x8)
sendmsg$tipc(r7, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
socket$inet(0xa, 0x801, 0x84)
ioctl$TUNSETVNETHDRSZ(0xffffffffffffffff, 0x400454d8, &(0x7f0000000300)=0x6)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)

1.98239263s ago: executing program 3 (id=2333):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000002c0)={0x30, 0x1411, 0x1, 0x0, 0x0, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8, 0x62, 0x13}]}, 0x30}}, 0x0)

1.975106075s ago: executing program 0 (id=2334):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xchacha20-simd,anubis-generic,nhpoly1305-sse2)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmsg$kcm(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/76, 0x4c}, {&(0x7f0000000340)=""/3, 0x3}, {&(0x7f0000000bc0)=""/134, 0x86}], 0x3}, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x21, &(0x7f0000002180), 0x4)
sendto$inet(r2, &(0x7f0000000480)="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", 0xfffffea5, 0xc000, 0x0, 0xfffffcef)
sendmsg$kcm(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000000400)="276e428d95a3d36a00bb280b9c49a9ed2d77607b697f842e5c9a77905cb058774bc7e048001c8765952fb58e5892146de52f8661628fba6f8643ab16c57b62cac792ce4cc67bc2533ee1bc9c2bbfd0019de397559506f291f72ce9f18e5fd18d3081f36c8c47625a6bf74309c3b7f304cf955968a9d5904e537f6f12d2fc8e838345027aca37660a84789edd6f9c2c3cdbb2810444fb53a273d02da41c60dab520b5951e610cebbcfb1eb3461ce66e2e3fc3995cee0280394d62b18f8c29ff52c3784d62edb0c7b3a2b9f0497aae1a6b0ccf6533f9", 0xd5}], 0x1}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_VFINFO_LIST={0x14, 0x16, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, [@IFLA_VF_RSS_QUERY_EN={0xc}]}]}, @IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_IFALIASn={0x4}]}, 0x4c}}, 0x0)

1.877923678s ago: executing program 1 (id=2335):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
socket$unix(0x1, 0x1, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x42400)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10) (async)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cryptd(crct10dif-generic)\x00'}, 0x58) (async)
r1 = accept4(r0, 0x0, 0x0, 0x0)
r2 = accept$unix(r1, 0x0, 0x0)
recvfrom$unix(r2, 0x0, 0x0, 0x0, 0x0, 0x0)

1.832268199s ago: executing program 3 (id=2336):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000280)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_DEV(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=ANY=[@ANYBLOB="40010000", @ANYRES16=r1, @ANYBLOB="010000000000000000001b00000010002e800c000400000000000000000008000300", @ANYRES32=r2], 0x3c}}, 0x0)

1.736453137s ago: executing program 1 (id=2337):
socket$kcm(0x2, 0x0, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
write$tun(0xffffffffffffffff, 0x0, 0xfdef)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000600)=@mangle={'mangle\x00', 0x64, 0x6, 0x568, 0x3f0, 0x0, 0x200, 0x200, 0x0, 0x4c0, 0x4c0, 0x4c0, 0x4c0, 0x4c0, 0x6, 0x0, {[{{@ipv6={@empty, @loopback, [], [], 'gre0\x00', 'bond0\x00'}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@remote, @ipv4=@private}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@private2}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x118}}, {{@uncond, 0x0, 0xd8, 0x120, 0x0, {}, [@common=@unspec=@realm={{0x30}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@remote, @ipv4=@local}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @HL={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5c8)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x1000000f, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="44000000130029100f0000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e127a5108000200104013"], 0x44}}, 0x0)

1.47835836s ago: executing program 2 (id=2338):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)='\x00', 0x1}, {&(0x7f0000001240)="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", 0x450}], 0x2, 0x0, 0x0, 0x5}, 0x4000800)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x3d, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x0)

1.439086754s ago: executing program 3 (id=2339):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_PMTUDISC={0x5}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0x1}, @IFLA_GRE_FWMARK={0x8}]}}}]}, 0x4c}}, 0x0)
connect$pppl2tp(r0, &(0x7f0000000100)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e21, @multicast1}, 0x1, 0x2, 0x0, 0x1}}, 0x26)
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f0000000180)=@file={0x1}, 0x6e)
listen(r2, 0x0)
r3 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x0, 0x11, r3, 0x0)
socket$unix(0x1, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9f03010026000000000000000c0000585700eb"], &(0x7f0000001f80)=""/237, 0x26, 0xed, 0xa}, 0x20)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000005900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r5}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)={0x3c, 0x0, 0x8, 0x101, 0x0, 0x0, {}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0xffffffffffffffff}, @CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_CLOSED={0x8}]}]}, 0x3c}}, 0x0)
connect$unix(r4, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x9, 0x5, 0x2, 0x9}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r7, <r8=>0xffffffffffffffff}, &(0x7f0000000380), &(0x7f00000003c0)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={r8, &(0x7f0000000080), 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d0f65acc0d06d1a1434e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab000e271f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab0300817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c690220b87b20581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1ff032aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f757036303767d2e24f29e5dad9796edb697a8ad004eea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc518afc9ffc2cc788bee1b47683db01a2f9398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa407e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db00002e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d50200a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987595ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db08407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4092140faed0c329be610c3082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b4c8787361f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e0800000092e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9be7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa5200002fe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb0972d39e4b5589829b6b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8bc410d9f48bf7eac90529cd6af061c9e501ddddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85e9bb70a3009a5d30f479e293a3302e11350ea857b37e76ca2f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f981179186e4000000000000646174b55d251f7f8ca5ccc22a5efb33b237eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4445eef08401cd1a3e266db41474e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24c5efd5c8495c1ccd580033c55725f2d60354f8ad5914a0155eaa743350ddb388f486b6de0549ef3b1b3c3b7d4d3a830ff39885776119408029be3788dd8422b1ab7b4c9d5b7d8682fd759c713108e1bdfc64b9121bbf07099def5c0ce3c861ae4b5cad8bba5a0b605908000000f96a59320309e25df89484522bb1d6eaa92164f9e4042cb689a45a898354c17b08705205a9189772bcbcb6414e44b33a2470d3bc16f761c332c34812382e57c0e0d83f3f565b9da5e7991ad8482579cc1b16c1fcec815a5482ae8b1779c5e339971a6ec1217b6478c2434a9a18dcc6c7c791e444a79d7ce37f9cf2a434b9048ca6a2fa254aa02cd098026798a6d336348af0fc11fa2809a5ebbe17ca4d0f889d518f64ee50f562b5fdb1f76d4a7fe14701f8ed0c6a55d66a6efea3e449e6b4783d66661a92f174f2b88cd544b2a8e1b05ea7cf51578169fff7765f9978883b4b5983b42a35a05dabfc325ec2a2ec2f9b0882fdcf5d6f72272d2ff0d8eea60f5494ba42b4d40f144f0ab680a6f40f9094d3afb58a1efd6109894b8605c6b3b3f020c222f6446195b2274f634fbb737948a1f36ea729467e132385e9da614e4625175f4443b97a675934db90010e4b884200c3546c4d86d712c3939e11be3343f693846f509ad4c445ade5cd6d126d5694462ac5d3b527c3bd51c0a715a28d65fe94b255d02cdc1fab99b5b9c352f1b284115e4046285a824d22b6f0afbed8d6096a72fef72ebd6aae78b02fa1993e8fe2020ae93aae2bcfffa40b98549f1fb9fcefa74329909a207336d07f6f59da423ac5fa47852055d5ce6d2c56bdbbcdbf3458ba478c669f39d5272e65c90908ea2cb86d38f8ebf80a8cb85d8399b42403c94b8662af5cf1411526f177b4d476169a5d5a8c37d0d8893a77d0bd47b8a0bba60b3e26094209c889585f997ff556bcd2cc223f9c0c44de9d0fe1b5a8a815f652e79747d3e1f413fa0575d51f652d22883e143065c5ad74bdc864754ba3dad5a8fc8fc2c807d1a51dfb29884adee415c13f2ce14d307bd6165ec6ba68a766adfcbe444ea72d586bb47dd98a225467aab538a77667d19bae2e51727ba6d190e6d7"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r9, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff0b078059268cb89e14f088a82de0ffff200000000002000aac14140ce000006a49e832f0", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
connect$unix(r4, &(0x7f0000000080)=@file={0x1}, 0x6e)
close(r2)

1.389643069s ago: executing program 2 (id=2340):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet6(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095bbd80000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
setsockopt$inet6_int(r2, 0x29, 0x4b, &(0x7f0000000380)=0x4, 0x4)
bind$inet6(r2, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @private1, 0x2}, 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x3b6, &(0x7f00000009c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff86dd6043009303803afffe800000000000000000000000000000ff02000000000000000000000000000186009078000002000000000000000000000aa78ce5400659808000ffffc0fe4023493b87aafaffffffffffffff2373247202fa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af180200010000001d001c00000800ee000018fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23a5026e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978001d06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5c6186c0d3baa75af390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5acaa556b9f30dcab2b90aa235a670670ffc5dc49dfb58d89310000000000000bd47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d6309b544d235b160c119b8e2d2c6393a9f3becd1a9f51a948b5b303f4f0192107fcf98a102ec187e5cf6fa3b20519bbaa8a029cee00b8d3485e4163ed09bdb581c9fe68a356f542b043059ff05932e740e077e1d16212fb00145e14f0e74d2d52cfb3f27fafa40845f90b6dfc87c6905bbc94d33e4575c853105f543e8e8a8a73b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb1fdc5fd020000000000006ae88c001a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbfeb532188b196e213408c0005d517fb2cf1a4ffdc1b7e018dff16e70b8b14c4b7a94fe18e88605aa6be"], 0x0)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x10, 0x4, &(0x7f0000000980)=ANY=[@ANYRESDEC=r3], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmsg(r4, &(0x7f0000000780)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/44, 0x2c}, {&(0x7f0000000540)=""/230, 0xe6}, {&(0x7f0000000640)=""/238, 0xee}], 0x3}, 0x0)
r5 = socket$inet(0x2, 0x2, 0x1)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r5, 0x89f3, &(0x7f0000000140)={'sit0\x00', &(0x7f00000007c0)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0xa, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x29, 0x0, @multicast1, @empty, {[@timestamp={0x44, 0x4}, @timestamp={0x44, 0x10, 0x5d, 0x0, 0xd, [0xff, 0x5, 0x7]}]}}}}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, 0x0, &(0x7f00000002c0)='syzkaller\x00'}, 0x90)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000000))
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, &(0x7f0000000000)={0xffff, 0x6}, 0x4)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000840)={'wpan0\x00'})
r7 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000000), 0x8)
sendmsg$tipc(r4, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
socket$inet(0xa, 0x801, 0x84)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r8 = syz_init_net_socket$ax25(0x3, 0x5, 0xcf)
getsockopt$ax25_int(r8, 0x101, 0x5, &(0x7f0000000300), &(0x7f0000000340)=0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, 0x0, 0x0)

1.282313937s ago: executing program 1 (id=2341):
unshare(0xc040480)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000001000000850000000e000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x900, @empty}, 0x1c)

1.24418588s ago: executing program 3 (id=2342):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000001700)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c, &(0x7f0000000080)=[{&(0x7f0000000040)="20189513dd903f894a03", 0xa}], 0x1, 0x0, 0x0, 0xc0fe}}, {{&(0x7f00000000c0)={0xa, 0x0, 0x0, @mcast1}, 0x1c, &(0x7f0000000140)=[{&(0x7f00000002c0)="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", 0x9d6}], 0x1}}], 0x2, 0xc000)

1.182218519s ago: executing program 1 (id=2343):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
shutdown(r0, 0x1)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f00000000c0)=0x8000000, 0x12)

974.297026ms ago: executing program 0 (id=2344):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000208500000001000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, [@printk={@lli, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x10}}]}, &(0x7f0000000040)='syzkaller\x00', 0xd, 0xfe7, &(0x7f0000001e00)=""/4071}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000840)={{r1}, &(0x7f00000007c0), &(0x7f0000000800)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='ext4_ext_remove_space_done\x00', r2}, 0x10)
sendmsg$qrtr(r0, &(0x7f00000004c0)={&(0x7f00000001c0)={0x2a, 0x2, 0x4000}, 0xc, &(0x7f0000000440)=[{&(0x7f0000000200)="61c5dae3b5eb20cb59451d796a24c0c067aadbf4b3bf0fdc471ff610eed14ffc1a61685a", 0x24}, {&(0x7f0000000880)="6ad5442a70d12e6843a2fa843bc41c9d6d30edc8190db098be369365bb3a22b92c21412a579c58460f7308f4d489f4116dc53365a909d2207b56a9463d51447c2b023857410b6ee8573d86240ee11bcbbce3e479944c889baa2d304d17d7904a0223b9c89eb99430b30163a5704b20cd28cfc81042d7c00eddf597a88aa74ba0ff14c293b418d26cdc3d13ce48060f0bca967d6043812d2a8c911daa348100c6831a6780fb3cd7026ce41d153c39bafdf6296061f89732130b0c3581618334f6d1c1c049095fce0435cce867883f66b34a8e2ed01d37b0c0af7f95c24a34ec83", 0xe0}, {&(0x7f0000000980)="59462fd12a6ba6297df9093c51911376d2fa09ea0b6e5bf95fabd3114ffba16b2c96b4ccdc71593f75f63f65349622b3fbabd19473070fde0d2c6084620f3f14085b19d805179ed1129f63012b39d3a6aa189e98bf3abb5b19f0ab3346960ec2e2468c47ed0f5bffadc559505dbe41c0fadfb3e743ac410abc440e6e24ee87685e5bb1e2485357272f4e8a3008f8c809127d9359dd5dd1cec48c987506792955d72ca322331722336771275801a2d2d54537000e5aef8195b3f1e68c1d357bf69b6fd923f63f6b245641d7b089d00523932a68f96a9af57fece798f09448017506724829a448cc6e797ae0a167", 0xed}, {&(0x7f0000000280)}, {&(0x7f0000000380)="f9d774d4f7e5e731f67ebb6fe61d95cfa85d41c7a54251ca1689823b0847ebf6047e5379bf3b55c90cea5208604977cc7d596a984048e273ead22261882dedfc68", 0x41}, {&(0x7f0000000a80)="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", 0xff}], 0x6, &(0x7f0000000b80)=[{0xd0, 0x113, 0x1, "019eecd4663ad7b41dc4d2114c2cdbd7b3d8d5628ad13f6a153df966de89b4693bafa3915a72bf04dc15dffb51eb28ff48ccb420434223deffb5b2f9e19b879ef44d9d47e6bb99ed38d0dce6fe17036082233bc5b3f1a605c3ba1b69e4aa9b4412614051f95d466b9c7d31d0e40bfe47951323ac7fb74e81c840f28e8fd58a29ebd4fa8a6e2eca091262c5c4d40aca38e995a6a132eab20331a0d06978503dca40c8254b9f07c55eda1b7ab79c4a55a69cf67f3bc22788ad0fde42b9"}, {0x90, 0x10c, 0x10000, "c723725178a06abd299c57aa3c94277813723c0bd43f02c3b939a112b5b2b174db609fc77de66b7d2d9366e35d779465a310048ab9dca20a4e2756d41993836d7edb924979a7d286937572e4b94d6ccd33d934b82fe1fb8434f4a07ba4db9b55f3977901aec97fb9e88f2962cdaf3ccbef2e1d4044c9b7a659b3"}, {0x100, 0x111, 0x529c20c0, "bee04d50df342514311b4cec8a250a2db64eebc2cf3183baec3c3f5eee7cbbdf417a3eb906c1e8ca3821fd21f0f9485da0bcf8bafc4d67089256f6f76260ed666df345bee4f73304c3456532f69f18e664cf3c6ce7b44b5ddf867c1febe45d876cc0afe22e097809bb04556d184b202f0fed5c45df10a83290db8cd1b8ca3c209ef131913e009bc5fecbfd9c69c9465423c012fe4fd0a1d9c1148c3196bc377790dea95b4ee284d42689eb6c89caa5042b9a9101d3957ff97e07221642970ff910e806cacd3b59040df90efcb22975805ca8fe1424a544a98e481104e1cfa4f5ba22531155672d2cee97813505328c78"}, {0x98, 0x101, 0x80000000, "992573962fbe537e97343c21ca4504c2ccb48c998eaab4b38bb7e843d8032c981866fcbd058bb075940e9c98f8e5a21de7a3e6f78ee50b992cc5c6c4e0171c4f0d19f9912a54dd3bfd202b66be4450d892e9ffe2b40b3b2c797ee46cd4a02c6349fa009a099f94f05e8eba0e18fbf061c986296fe9ac11a83f74741587ecd539781792b6423399"}], 0x2f8, 0x4}, 0x38)
getsockname$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000500)=[@in={0x2, 0x0, @rand_addr=0x64010100}]}, &(0x7f0000000180)=0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000540)={'#! ', './file0', [{0x20, 'blkbfq.sect\xe4\x9d\x91\x0e\xd4rF\xa2|ors_recursB 4B\b\x00\x00\x00\n\x8fa\x14~u;ive\x00'}, {0x20, ',\xcc\xa3L\xf5\x87\x83\xa5W\x9f#\x9e\x85\x0e*\xb0`\x1e\x0f\x96\xa1\xc9\x14\xde\x938\x97\xa2/\x89\n\x82\b+\xa9l\xbd\x93\x97\x88\x9a\xce\xd2[\xb6\xdaK\nK\xa5\x11P\x91q5\xc0bD\xf8~\x1d2z\x04\xf3\xd6\xb27\x9a+\xfc\x80\xa9\xb6\x17\a%W\xef\xc5\xb2q\xac\x80\x18\x00\x00\x00'}, {0x20, '\x00\x00\x00\x01f\xdbN\x80KJD\xefc\xda\xca7\x9f\xf7\x1d\x16\xd0E\'\xa5\xcc\xe3\xf3)\xc3\xfd\xfa\xd1\x1f\xb2#\xa6z\xcf\x89\xc6\x15\xa8n\xdb\x81*\'\x06B\x82\xadk\x14'}, {0x20, '-.--'}, {0x20, '\xfd\x13!\xab\xee^\xbd\x8e\xa0\xd0)\xe5N\x83\xc8\x17\xc1\xd3f\xe7\xc2\xc1f\xb4S\x020\x8cs\"*Y\fF\xfaH5\xb1w\x05P\xc5u\xf4\x016\a\x00\x00\x00/\r\xa2\xc382\xf5\x9aU\x14@\xf0m\xbe\xffr\x88\xb1\xd7\xc0\xc3l\xbb\x03\x14\xb2\x0f\xa6\xf7g\xcc6\x9an\x8d\xfc\x9e\xdf\'\xca\xfc\x95\x92\xcf{(u\xda\xb7\xc1<\"F\xd3\xaaz\x13qC\xa3Qn*\xda\xd6\a\'\r\xe9B\xdf\x87d#\xfa\xb5\xbf0\xe4\xa0\x01wt{\xdfzK6\xba\xc84-y\x05\bc\x1bn\x83\x9e\xf9\xa7\xd2\x9a\xafE\x95\x8d\xeb\x00'/174}, {0x20, '/\'('}, {0x20, 'GPL\x00'}, {0x20, 'cgrous\x00'/19}, {0x20, 'cgroup.controllers\x00'}], 0xa, "7c35b12eba00ece3229c0d9e8079d9d92fe78e400faf80ea3046857956be3c02d2097b1e75b2d7e444bf41744181c7b81f25866570471d8cdd9080e6ae9b92b4d0de5e8fecc4230c9fa3de0a225c24138ee489f4b6b7deb68160c3459ecc3c12a725c04572d2e41b93ffcb557edf9b7f3aa8c60880a78469ee46fc66f4abe711fbd6aa5284a0fcaee0e23e1aefe0a9037e1cfe194116bec18871dbd5c3e9cc361fff8d0923cb1c96c0b8adf9fe00735977aec5e558b5f4a0482d1ecc61e7272ae6ac00860f1c614b72"}, 0xac)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r5, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r4, 0x84, 0x7d, &(0x7f0000000040), &(0x7f0000000080)=0xfffffffffffffff1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)

973.851794ms ago: executing program 1 (id=2345):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r1, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000180)={r0, r0}, 0xc)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000001cc0)={<r3=>0x0, <r4=>0x0})
recvmmsg$unix(r2, &(0x7f0000001b00)=[{{&(0x7f0000000300)=@abs, 0x6e, &(0x7f0000000a40)=[{&(0x7f0000000380)=""/106, 0x6a}, {&(0x7f00000004c0)=""/130, 0x82}, {&(0x7f0000000880)=""/178, 0xb2}, {&(0x7f0000000940)=""/202, 0xca}, {&(0x7f0000000580)=""/19, 0x13}], 0x5, &(0x7f0000000ac0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000b40)=@abs, 0x6e, &(0x7f0000000780)=[{&(0x7f0000000bc0)=""/236, 0xec}], 0x1, &(0x7f0000000cc0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x158}}, {{&(0x7f0000000e40), 0x6e, &(0x7f0000001080)=[{&(0x7f0000000ec0)=""/156, 0x9c}, {&(0x7f0000000f80)=""/251, 0xfb}], 0x2, &(0x7f00000010c0)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0xb8}}, {{&(0x7f0000001180)=@abs, 0x6e, &(0x7f0000001480)=[{&(0x7f0000001200)=""/21, 0x15}, {&(0x7f0000001240)=""/6, 0x6}, {&(0x7f0000001280)=""/15, 0xf}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f00000012c0)=""/179, 0xb3}, {&(0x7f0000001380)=""/72, 0x48}, {&(0x7f0000001400)=""/27, 0x1b}, {&(0x7f0000001440)=""/48, 0x30}], 0x8, &(0x7f0000001500)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}, {{&(0x7f0000001540)=@abs, 0x6e, &(0x7f0000001600)=[{&(0x7f00000015c0)=""/39, 0x27}], 0x1, &(0x7f0000001640)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x50}}, {{&(0x7f00000016c0)=@abs, 0x6e, &(0x7f0000001940)=[{&(0x7f0000001740)=""/191, 0xbf}, {&(0x7f0000001800)=""/128, 0x80}, {&(0x7f00000042c0)=""/4096, 0x1000}, {&(0x7f0000001880)}, {&(0x7f00000018c0)=""/102, 0x66}], 0x5}}, {{&(0x7f00000019c0)=@abs, 0x6e, &(0x7f0000001a80)=[{&(0x7f0000001a40)=""/62, 0x3e}], 0x1, &(0x7f0000001ac0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}], 0x7, 0x102, &(0x7f0000001d00)={r3, r4+10000000})
connect$unix(r2, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f00000007c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
socket$isdn_base(0x22, 0x3, 0x0)
r7 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r7, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r7, &(0x7f0000004280)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendto$inet(r7, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3800000054000147880000000000000007", @ANYRES32, @ANYBLOB="00001000e000030000010001000000000000000008"], 0x38}}, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
bind$inet(r6, &(0x7f0000000280)={0x2, 0x4e22, @private=0xa010101}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0xd, 0xfe7, &(0x7f0000001e00)=""/4071, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x90)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r7, 0x28, 0x0, &(0x7f00000001c0)=0x7f8f, 0x8)

971.810571ms ago: executing program 4 (id=2346):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x144002, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000400)={r0, &(0x7f0000000180), 0x2003a000}, 0x20)

825.301266ms ago: executing program 4 (id=2347):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(r1, &(0x7f000000a040), 0x0, 0x0, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x29, 0x0, &(0x7f0000001a80))
r4 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCADDDLCI(r4, 0x8980, &(0x7f0000000080)={'veth0_macvtap\x00', 0x1})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000000)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@newlink={0x44, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4080}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r5}]}}}, @IFLA_MTU={0x8, 0x4, 0x40000500}]}, 0x44}}, 0x0)
read(r4, &(0x7f0000001ac0)=""/4096, 0x1000)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r6 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r6, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
r7 = socket$pppl2tp(0x18, 0x1, 0x1)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
connect$pppl2tp(r8, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r9, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32)
connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x1, 0x3}}, 0x26)
getsockopt$bt_BT_SECURITY(r7, 0x111, 0x4, 0x0, 0x20001f00)
r10 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000380)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r10}}, @call={0x85, 0x0, 0x0, 0xf}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000040)='mm_lru_insertion\x00', r11}, 0x10)
r12 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r12, &(0x7f0000000180), 0x40010)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r13=>0x0})
r14 = socket(0x10, 0x2, 0x0)
sendmsg$nl_route(r14, &(0x7f0000000540)={0x0, 0x7, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001300a7cc5a8100ae541d0020070088a8", @ANYRES32=r13, @ANYBLOB="00000a00100000801c001a80080002802d03fa0408000200f47b0c0d"], 0x44}}, 0x0)

272.249531ms ago: executing program 3 (id=2348):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000040)=0x2004004)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r3, 0x401c5820, &(0x7f0000000140))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x42, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000140)={r1}, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000340)={0x0, 0x2}, 0xe)
shutdown(0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)}, &(0x7f0000000440)=0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r4, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000001400000018000180140002006e657464657673696d3000000000000008000400ffffffff08000300009061"], 0x3c}}, 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000600000008000300", @ANYRES32=r7, @ANYBLOB="1d000500000a0018000803030303070000000000"], 0x30}}, 0x0)
sendto$inet6(r2, &(0x7f0000000540)="2af1c767e0cc6a782bbb634a0f0e957e3c0f317ed3c89baae5fb1565544de38f814aad22ef52da1505104889d16ee6a8528693c3b93c412d2782d35b83ba5dd122252b703d9daa4ff845c6bf591e9999d6970c2f74922f66e7af4c6a97eb79ca9372aa9c1c9878b7d4461bbc3a3827e79172e08899fbe84fa9cba6d0d47eed8fd0c7f28c25881603fc776d5ed9fea49aa7c456e951ce1a0f9fef209c8fa68b48e2f7f6b046e862c525228b7c66ed382b1002b99b20667dc83233a54fffca1359fe3df2be6d4ee888d3ec15c32851301523474e310e2468aa6becb875dc7f764b461ff7e795f73be81fedd8887c05aaeb7e949e4017", 0xf5, 0x4040000, 0x0, 0x0)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x13, r8, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)

205.996856ms ago: executing program 2 (id=2349):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000004000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x8000f28, 0x0)
splice(r4, 0x0, r1, 0x0, 0x7f, 0x0)
write(r2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0xb}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRESHEX=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=ANY=[@ANYBLOB="00000000ab2e2cb6d2468209000000524ed4da856f283419ecdc288ec90ba7278cd05ef10dcf31fbf190302cabe456ed26786d7bbea1645ef59a386a55d59775c0882c015bfe0bf598d324d632e43cb500"/96, @ANYRES16=r9, @ANYBLOB="0100000000000000000001000000080001000400000014000480050003000100000005000300070000000800020002000000"], 0x38}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), 0xffffffffffffffff)
setsockopt(r7, 0x0, 0x2, 0x0, 0x0)
r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r6}, 0x10)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r10, 0x81f8943c, &(0x7f0000000380))
ioctl$BTRFS_IOC_TREE_SEARCH(r6, 0xd0009411, 0x0)
socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
r11 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r11, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x8, &(0x7f0000000780)=ANY=[@ANYBLOB="180000000000000000000000000000001811000074f91c3c444873f4366dc33069042aee851a224453325bddc58b13402a07d42271e93c97e0c695aca0d3506e126491c66485bdf29a55513e7ff4d44b4e2879e0fd19d807a96f2128df4e24341acb571d47fa6b021019248f60dce8cbdd313bf5b452cf40564bfa1f10f3ab3b5056a279b59efa0f1810699b69cda32dc331e852890f8bd5c5dc632de524c51def6fd7c422fe558c9e893b3f24252203", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000085000000d00000009500000000000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000040)='mm_lru_insertion\x00', r12}, 0x10)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r13, &(0x7f0000000180), 0x40010)
listen(r11, 0x0)

76.227103ms ago: executing program 0 (id=2350):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={0x4000000, {}, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @empty}, 0x290, 0x0, 0x0, 0x0, 0x8000})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCSIFBR(r1, 0x890c, &(0x7f0000000000)=@generic={0x0, 0x2})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
socket$rds(0x15, 0x5, 0x0)
socket$inet6(0xa, 0x80801, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x38, 0x1, 0x2, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}, [@CTA_EXPECT_HELP_NAME={0xe, 0x6, 'sip-20000\x00'}, @CTA_EXPECT_ID={0x8, 0x5, 0x1, 0x0, 0xcf}, @CTA_EXPECT_HELP_NAME={0x9, 0x6, 'syz1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x40f0}, 0x40004)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18ce0300000000000000000004000000850000005700190018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000100000085000000820000009500000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x90)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000200)={0xffffffffffffffff, 0x100, 0xff, 0xbe})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000012000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0c00098008000140ffffff1f08000840000000010800030000"], 0xa0}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x4}, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r4}, 0x10)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(0x0, r5)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet(0x2, 0x80001, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x5, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan0\x00'})

0s ago: executing program 1 (id=2351):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB], &(0x7f00000001c0)='GPL\x00'}, 0x90)
connect$qrtr(0xffffffffffffffff, &(0x7f00000004c0)={0x2a, 0x0, 0x7ffe}, 0xc)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
writev(r1, &(0x7f0000000340)=[{&(0x7f0000000040)="3900000013000318680907070000000f1800ff3f04000000170a001700000000040037000d00400009000000aa58b9a64411f6bbf44dc48f57", 0x39}], 0x2d)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f0000000440)=ANY=[@ANYBLOB="9feb01001800000000000000180035a01800000009000000000000000000000d0000000002000000000000080000000000005f2e5f612e6100"], 0x0, 0x39}, 0x20)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map, r2, 0x7, 0x0, 0x2, @prog_id}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000007c0)='syzkaller\x00'}, 0xf2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0x8}, 0x90)
write$binfmt_script(r5, &(0x7f0000000100), 0xfecc)
unshare(0x22020400)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0)
bpf$BPF_PROG_DETACH(0x15, &(0x7f00000000c0)={@map}, 0x10)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000f00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a010400000000000000000200000044000480400001800e000100627974656f726465720000002c000280080001400000000108000240000000000800044000000002080003400000000008000540000000080900010073797a30000000000900020073797a32"], 0x98}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
r6 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r6, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8000, 0x6}, 0x1c)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x5, 0x4, 0x4, 0x8}, 0x48)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)={0x44, 0x2, 0x1, 0x705, 0x0, 0x0, {0xa}, [@CTA_SEQ_ADJ_REPLY={0x0, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x0, 0x2, 0x1, 0x0, 0x559}, @CTA_SEQADJ_OFFSET_BEFORE={0x0, 0x2, 0x1, 0x0, 0x101}, @CTA_SEQADJ_OFFSET_AFTER={0x0, 0x3, 0x1, 0x0, 0x3}, @CTA_SEQADJ_CORRECTION_POS={0x0, 0x1, 0x1, 0x0, 0xed3}, @CTA_SEQADJ_OFFSET_BEFORE={0x0, 0x2, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_BEFORE={0x0, 0x2, 0x1, 0x0, 0x1}, @CTA_SEQADJ_OFFSET_AFTER={0x0, 0x3, 0x1, 0x0, 0xffff}]}]}, 0xdaddf5c696003f86}}, 0x0)
pipe(&(0x7f0000000080)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
write$binfmt_misc(r9, &(0x7f0000000000)=ANY=[], 0xfffffecc)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000400)={r9, &(0x7f0000000300)="e61e6a16df1357d94f7f55a5ce213509d57e0a97f493606eeecf53ad0cb8ff54d9cd69faef5df2c8f8ee3b5e88ba898211fb00"}, 0x20)
getpeername$l2tp6(r8, &(0x7f0000000480)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000540)=0x20)
sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x7, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x34}}, 0x0)

kernel console output (not intermixed with test programs):

r parsing attributes in process `syz.3.626'.
[  130.442609][ T7073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.626'.
[  130.474049][ T7073] bridge_slave_1: left allmulticast mode
[  130.479773][ T7073] bridge_slave_1: left promiscuous mode
[  130.508111][ T7073] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.534537][ T7073] bridge_slave_0: left allmulticast mode
[  130.540262][ T7073] bridge_slave_0: left promiscuous mode
[  130.553621][ T7073] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.692531][ T7081] netlink: 'syz.4.628': attribute type 10 has an invalid length.
[  130.704243][ T7081] bond0: (slave hsr0): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  130.731807][ T7081] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  130.758060][ T7081] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  130.777832][ T7081] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  130.809045][ T7090] ip6tnl1: entered promiscuous mode
[  130.939560][ T7100] syzkaller1: entered promiscuous mode
[  130.955532][ T7100] syzkaller1: entered allmulticast mode
[  131.232828][ T7118] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  131.360663][ T7127] netlink: 'syz.3.643': attribute type 2 has an invalid length.
[  131.393625][ T7127] netlink: 'syz.3.643': attribute type 1 has an invalid length.
[  131.595023][ T7136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.647'.
[  131.614488][ T7138] Bluetooth: MGMT ver 1.22
[  131.639033][ T7140] Bluetooth: hci3: invalid length 0, exp 2 for type 15
[  131.680902][ T7145] bridge_slave_1: left allmulticast mode
[  131.703509][ T7145] bridge_slave_1: left promiscuous mode
[  131.726928][ T7145] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.737219][ T7146] netlink: 76 bytes leftover after parsing attributes in process `syz.2.649'.
[  132.056330][ T7163] netlink: 'syz.4.653': attribute type 11 has an invalid length.
[  132.073761][ T7163] netlink: 203156 bytes leftover after parsing attributes in process `syz.4.653'.
[  132.096669][ T7169] x_tables: duplicate underflow at hook 1
[  132.124041][ T7163] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  132.161209][ T7163] CPU: 1 PID: 7163 Comm: syz.4.653 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  132.171283][ T7163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  132.181397][ T7163] Call Trace:
[  132.184723][ T7163]  <TASK>
[  132.187684][ T7163]  dump_stack_lvl+0x241/0x360
[  132.192504][ T7163]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.197759][ T7163]  ? __pfx__printk+0x10/0x10
[  132.202430][ T7163]  ? sysfs_warn_dup+0x51/0xa0
[  132.207258][ T7163]  ? kmalloc_trace_noprof+0x19c/0x2c0
[  132.212694][ T7163]  sysfs_warn_dup+0x8e/0xa0
[  132.217269][ T7163]  sysfs_do_create_link_sd+0xbe/0x110
[  132.222711][ T7163]  device_add_class_symlinks+0x1c5/0x250
[  132.228490][ T7163]  device_add+0x553/0xbf0
[  132.232897][ T7163]  wiphy_register+0x1d3f/0x2b30
[  132.237840][ T7163]  ? __pfx_wiphy_register+0x10/0x10
[  132.243097][ T7163]  ? minstrel_ht_alloc+0x72b/0x860
[  132.248273][ T7163]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  132.254370][ T7163]  ieee80211_register_hw+0x3098/0x3d80
[  132.259869][ T7163]  ? ieee80211_register_hw+0x1131/0x3d80
[  132.265531][ T7163]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  132.271368][ T7163]  ? __asan_memset+0x23/0x50
[  132.275982][ T7163]  ? __hrtimer_init+0x170/0x250
[  132.280882][ T7163]  mac80211_hwsim_new_radio+0x2597/0x44d0
[  132.286651][ T7163]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  132.292736][ T7163]  ? kmalloc_node_track_caller_noprof+0x242/0x440
[  132.299195][ T7163]  ? kstrndup+0x5c/0xb0
[  132.303368][ T7163]  ? __asan_memcpy+0x40/0x70
[  132.307980][ T7163]  hwsim_new_radio_nl+0xe4c/0x21d0
[  132.313132][ T7163]  ? __pfx___nla_validate_parse+0x10/0x10
[  132.318876][ T7163]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  132.324483][ T7163]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  132.330841][ T7163]  genl_rcv_msg+0xb14/0xec0
[  132.335365][ T7163]  ? mark_lock+0x9a/0x350
[  132.339724][ T7163]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.344810][ T7163]  ? __pfx_lock_acquire+0x10/0x10
[  132.349884][ T7163]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  132.355474][ T7163]  ? __pfx___might_resched+0x10/0x10
[  132.360830][ T7163]  netlink_rcv_skb+0x1e3/0x430
[  132.365633][ T7163]  ? __pfx_genl_rcv_msg+0x10/0x10
[  132.370682][ T7163]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  132.375998][ T7163]  ? __netlink_deliver_tap+0x77e/0x7c0
[  132.381482][ T7163]  genl_rcv+0x28/0x40
[  132.385485][ T7163]  netlink_unicast+0x7f0/0x990
[  132.390290][ T7163]  ? __pfx_netlink_unicast+0x10/0x10
[  132.395587][ T7163]  ? __virt_addr_valid+0x183/0x520
[  132.400721][ T7163]  ? __check_object_size+0x49c/0x900
[  132.406031][ T7163]  ? bpf_lsm_netlink_send+0x9/0x10
[  132.411166][ T7163]  netlink_sendmsg+0x8e4/0xcb0
[  132.415976][ T7163]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.421285][ T7163]  ? __import_iovec+0x536/0x820
[  132.426150][ T7163]  ? aa_sock_msg_perm+0x91/0x160
[  132.431119][ T7163]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  132.436426][ T7163]  ? security_socket_sendmsg+0x87/0xb0
[  132.441908][ T7163]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.447218][ T7163]  __sock_sendmsg+0x221/0x270
[  132.451916][ T7163]  ____sys_sendmsg+0x525/0x7d0
[  132.456713][ T7163]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.462032][ T7163]  __sys_sendmsg+0x2b0/0x3a0
[  132.466647][ T7163]  ? __pfx___sys_sendmsg+0x10/0x10
[  132.471824][ T7163]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  132.478196][ T7163]  ? do_syscall_64+0x100/0x230
[  132.482975][ T7163]  ? do_syscall_64+0xb6/0x230
[  132.487679][ T7163]  do_syscall_64+0xf3/0x230
[  132.492207][ T7163]  ? clear_bhb_loop+0x35/0x90
[  132.496901][ T7163]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.502814][ T7163] RIP: 0033:0x7f7162175b99
[  132.507245][ T7163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.526883][ T7163] RSP: 002b:00007f7162fa8048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.535328][ T7163] RAX: ffffffffffffffda RBX: 00007f7162303fa0 RCX: 00007f7162175b99
[  132.543316][ T7163] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  132.551308][ T7163] RBP: 00007f71621f677e R08: 0000000000000000 R09: 0000000000000000
[  132.559291][ T7163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  132.567282][ T7163] R13: 000000000000000b R14: 00007f7162303fa0 R15: 00007ffe80677c68
[  132.575286][ T7163]  </TASK>
[  132.864727][ T7190] xt_limit: Overflow, try lower: 262144/524288
[  133.293043][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  133.304546][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  133.549388][ T7224] netlink: 8 bytes leftover after parsing attributes in process `syz.2.671'.
[  133.576741][ T7224] netlink: 8 bytes leftover after parsing attributes in process `syz.2.671'.
[  134.117391][ T7237] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[  134.548497][ T7260] netlink: 56 bytes leftover after parsing attributes in process `syz.1.686'.
[  134.585035][ T7266] netlink: 16 bytes leftover after parsing attributes in process `syz.3.688'.
[  134.813174][ T7278] netlink: 'syz.2.693': attribute type 1 has an invalid length.
[  134.890826][ T7278] bond1: entered promiscuous mode
[  134.919669][ T7284] netlink: 172 bytes leftover after parsing attributes in process `syz.1.694'.
[  134.920754][ T7278] bond1: (slave ip6gretap1): making interface the new active one
[  134.944265][ T7278] ip6gretap1: entered promiscuous mode
[  134.958766][ T7278] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  135.191681][ T7292] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744071562067969)
[  135.202024][ T7292] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647
[  135.392708][ T7308] __nla_validate_parse: 1 callbacks suppressed
[  135.392731][ T7308] netlink: 4 bytes leftover after parsing attributes in process `syz.4.702'.
[  135.408869][ T7308] netlink: 8 bytes leftover after parsing attributes in process `syz.4.702'.
[  135.419334][ T7308] macvlan0: entered promiscuous mode
[  135.425046][ T7308] macvlan0: entered allmulticast mode
[  135.954590][ T7340] netlink: 12 bytes leftover after parsing attributes in process `syz.0.712'.
[  135.980461][ T7332] netlink: 12 bytes leftover after parsing attributes in process `syz.3.711'.
[  136.120153][ T7346] netlink: 'syz.0.714': attribute type 1 has an invalid length.
[  136.129555][ T7346] netlink: 96 bytes leftover after parsing attributes in process `syz.0.714'.
[  136.254230][ T7351] netlink: 8 bytes leftover after parsing attributes in process `syz.0.716'.
[  136.320719][ T7354] netlink: 12 bytes leftover after parsing attributes in process `syz.4.718'.
[  136.424447][ T7361] netlink: 'syz.0.720': attribute type 1 has an invalid length.
[  136.441466][ T7361] netlink: 112860 bytes leftover after parsing attributes in process `syz.0.720'.
[  136.492651][ T7361] netlink: 9 bytes leftover after parsing attributes in process `syz.0.720'.
[  136.966566][ T7387] netlink: 28 bytes leftover after parsing attributes in process `syz.4.730'.
[  137.009965][ T7387] trusted_key: syz.4.730 sent an empty control message without MSG_MORE.
[  138.505106][ T7416] sctp: [Deprecated]: syz.3.737 (pid 7416) Use of int in maxseg socket option.
[  138.505106][ T7416] Use struct sctp_assoc_value instead
[  138.675853][ T7425] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  138.739677][ T7427] syz.4.740: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0-1
[  138.820059][ T7427] CPU: 0 PID: 7427 Comm: syz.4.740 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  138.830121][ T7427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  138.840225][ T7427] Call Trace:
[  138.843562][ T7427]  <TASK>
[  138.846532][ T7427]  dump_stack_lvl+0x241/0x360
[  138.851271][ T7427]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.856523][ T7427]  ? __pfx__printk+0x10/0x10
[  138.861178][ T7427]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  138.867654][ T7427]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  138.874224][ T7427]  warn_alloc+0x278/0x410
[  138.878602][ T7427]  ? stack_depot_save_flags+0x6e4/0x830
[  138.884198][ T7427]  ? __vmalloc_node_range_noprof+0x10b/0x1460
[  138.890294][ T7427]  ? __pfx_warn_alloc+0x10/0x10
[  138.895180][ T7427]  ? kasan_save_track+0x3f/0x80
[  138.900044][ T7427]  ? __kasan_kmalloc+0x98/0xb0
[  138.904823][ T7427]  ? xsk_setsockopt+0x598/0x950
[  138.909691][ T7427]  ? do_sock_setsockopt+0x3af/0x720
[  138.914908][ T7427]  ? __sys_setsockopt+0x1ae/0x250
[  138.919946][ T7427]  ? __x64_sys_setsockopt+0xb5/0xd0
[  138.925164][ T7427]  ? do_syscall_64+0xf3/0x230
[  138.929864][ T7427]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.935952][ T7427]  __vmalloc_node_range_noprof+0x130/0x1460
[  138.941887][ T7427]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  138.948233][ T7427]  ? __kasan_kmalloc+0x98/0xb0
[  138.953013][ T7427]  ? xskq_create+0x54/0x170
[  138.957548][ T7427]  vmalloc_user_noprof+0x74/0x80
[  138.962510][ T7427]  ? xskq_create+0xb6/0x170
[  138.967036][ T7427]  xskq_create+0xb6/0x170
[  138.971388][ T7427]  xsk_init_queue+0xa1/0x100
[  138.976010][ T7427]  xsk_setsockopt+0x598/0x950
[  138.980711][ T7427]  ? __pfx_xsk_setsockopt+0x10/0x10
[  138.985929][ T7427]  ? __pfx_lock_acquire+0x10/0x10
[  138.990966][ T7427]  ? aa_sock_opt_perm+0x79/0x120
[  138.995942][ T7427]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  139.001496][ T7427]  ? security_socket_setsockopt+0x87/0xb0
[  139.007231][ T7427]  ? __pfx_xsk_setsockopt+0x10/0x10
[  139.012443][ T7427]  do_sock_setsockopt+0x3af/0x720
[  139.017493][ T7427]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  139.023052][ T7427]  ? __fget_files+0x29/0x470
[  139.027665][ T7427]  ? __fget_files+0x3f6/0x470
[  139.032370][ T7427]  __sys_setsockopt+0x1ae/0x250
[  139.037247][ T7427]  __x64_sys_setsockopt+0xb5/0xd0
[  139.042315][ T7427]  do_syscall_64+0xf3/0x230
[  139.046831][ T7427]  ? clear_bhb_loop+0x35/0x90
[  139.051529][ T7427]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.057540][ T7427] RIP: 0033:0x7f7162175b99
[  139.061962][ T7427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.081592][ T7427] RSP: 002b:00007f7162fa8048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  139.090032][ T7427] RAX: ffffffffffffffda RBX: 00007f7162303fa0 RCX: 00007f7162175b99
[  139.098015][ T7427] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000003
[  139.105993][ T7427] RBP: 00007f71621f677e R08: 000000000000001c R09: 0000000000000000
[  139.113973][ T7427] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000
[  139.121951][ T7427] R13: 000000000000000b R14: 00007f7162303fa0 R15: 00007ffe80677c68
[  139.129948][ T7427]  </TASK>
[  139.150274][ T7427] Mem-Info:
[  139.159802][ T7427] active_anon:3925 inactive_anon:0 isolated_anon:0
[  139.159802][ T7427]  active_file:1493 inactive_file:38382 isolated_file:0
[  139.159802][ T7427]  unevictable:768 dirty:285 writeback:0
[  139.159802][ T7427]  slab_reclaimable:10388 slab_unreclaimable:104465
[  139.159802][ T7427]  mapped:13099 shmem:1252 pagetables:617
[  139.159802][ T7427]  sec_pagetables:0 bounce:0
[  139.159802][ T7427]  kernel_misc_reclaimable:0
[  139.159802][ T7427]  free:1397887 free_pcp:383 free_cma:0
[  139.254698][ T7427] Node 0 active_anon:16100kB inactive_anon:0kB active_file:5972kB inactive_file:153460kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:52396kB dirty:1132kB writeback:0kB shmem:3472kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10020kB pagetables:2668kB sec_pagetables:0kB all_unreclaimable? no
[  139.334463][ T7427] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  139.394881][ T7427] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  139.439498][ T7444] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  139.463497][ T7427] lowmem_reserve[]: 0 2571 2571 0 0
[  139.474985][ T7427] Node 0 DMA32 free:1628064kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:15764kB inactive_anon:0kB active_file:5972kB inactive_file:153104kB unevictable:1536kB writepending:1212kB present:3129332kB managed:2659864kB mlocked:0kB bounce:0kB free_pcp:1464kB local_pcp:1152kB free_cma:0kB
[  139.553765][ T7427] lowmem_reserve[]: 0 0 0 0 0
[  139.563502][ T7427] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:304kB unevictable:0kB writepending:4kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  139.622717][ T7427] lowmem_reserve[]: 0 0 0 0 0
[  139.642982][ T7427] Node 1 Normal free:3947488kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB writepending:8kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  139.719126][ T7427] lowmem_reserve[]: 0 0 0 0 0
[  139.724741][ T7427] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  139.748112][ T7427] Node 0 DMA32: 29*4kB (UE) 77*8kB (UME) 57*16kB (UME) 61*32kB (UME) 51*64kB (UME) 32*128kB (UME) 16*256kB (UME) 3*512kB (M) 7*1024kB (ME) 1*2048kB (M) 391*4096kB (M) = 1627340kB
[  139.783440][ T7427] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  139.802137][ T7427] Node 1 Normal: 4*4kB (UM) 4*8kB (UM) 9*16kB (UM) 11*32kB (UM) 9*64kB (U) 5*128kB (U) 5*256kB (UM) 6*512kB (UM) 3*1024kB (U) 1*2048kB (U) 961*4096kB (M) = 3947488kB
[  139.851464][ T7427] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.868041][ T7427] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  139.879313][ T7427] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  139.896019][ T7427] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  139.908007][ T7427] 41114 total pagecache pages
[  139.913498][ T7427] 0 pages in swap cache
[  139.917799][ T7427] Free swap  = 124996kB
[  139.920894][ T7470] FAULT_INJECTION: forcing a failure.
[  139.920894][ T7470] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  139.927920][ T7427] Total swap = 124996kB
[  139.939586][ T7470] CPU: 0 PID: 7470 Comm: syz.1.756 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  139.949658][ T7470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  139.959726][ T7470] Call Trace:
[  139.963025][ T7470]  <TASK>
[  139.966053][ T7470]  dump_stack_lvl+0x241/0x360
[  139.970760][ T7470]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.975968][ T7470]  ? __pfx__printk+0x10/0x10
[  139.980578][ T7470]  ? __pfx_lock_release+0x10/0x10
[  139.985621][ T7470]  should_fail_ex+0x3b0/0x4e0
[  139.990323][ T7470]  _copy_to_user+0x2f/0xb0
[  139.994756][ T7470]  bpf_test_finish+0x593/0x8b0
[  139.999546][ T7470]  ? __might_fault+0xaa/0x120
[  140.004236][ T7470]  ? __pfx_bpf_test_finish+0x10/0x10
[  140.009542][ T7470]  ? _copy_from_user+0xa6/0xe0
[  140.014320][ T7470]  ? bpf_test_init+0x15a/0x180
[  140.019095][ T7470]  bpf_prog_test_run_xdp+0x905/0x11b0
[  140.024487][ T7470]  ? __pfx_lock_release+0x10/0x10
[  140.029540][ T7470]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.035363][ T7470]  ? __fget_files+0x29/0x470
[  140.039989][ T7470]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  140.045810][ T7470]  bpf_prog_test_run+0x33a/0x3b0
[  140.050783][ T7470]  __sys_bpf+0x48d/0x810
[  140.055045][ T7470]  ? __pfx___sys_bpf+0x10/0x10
[  140.059843][ T7470]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  140.065832][ T7470]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.072167][ T7470]  ? do_syscall_64+0x100/0x230
[  140.076968][ T7470]  __x64_sys_bpf+0x7c/0x90
[  140.081402][ T7470]  do_syscall_64+0xf3/0x230
[  140.085916][ T7470]  ? clear_bhb_loop+0x35/0x90
[  140.090631][ T7470]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.096545][ T7470] RIP: 0033:0x7fe49bb75b99
[  140.100972][ T7470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.120594][ T7470] RSP: 002b:00007fe49c85e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  140.129021][ T7470] RAX: ffffffffffffffda RBX: 00007fe49bd03fa0 RCX: 00007fe49bb75b99
[  140.137004][ T7470] RDX: 0000000000000050 RSI: 00000000200000c0 RDI: 000000000000000a
[  140.144980][ T7470] RBP: 00007fe49c85e0a0 R08: 0000000000000000 R09: 0000000000000000
[  140.152966][ T7470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  140.160938][ T7470] R13: 000000000000000b R14: 00007fe49bd03fa0 R15: 00007ffcd37fb988
[  140.168950][ T7470]  </TASK>
[  140.184781][ T7427] 2097051 pages RAM
[  140.190675][ T7471] sctp: [Deprecated]: syz.3.755 (pid 7471) Use of int in maxseg socket option.
[  140.190675][ T7471] Use struct sctp_assoc_value instead
[  140.205649][ T7427] 0 pages HighMem/MovableOnly
[  140.210460][ T7427] 400875 pages reserved
[  140.215580][ T7427] 0 pages cma reserved
[  140.357143][ T7471] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  140.684325][ T7495] x_tables: duplicate underflow at hook 3
[  141.177666][ T7524] sctp: [Deprecated]: syz.0.773 (pid 7524) Use of int in maxseg socket option.
[  141.177666][ T7524] Use struct sctp_assoc_value instead
[  141.358699][ T7524] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  141.582261][ T7538] __nla_validate_parse: 7 callbacks suppressed
[  141.582314][ T7538] netlink: 12 bytes leftover after parsing attributes in process `syz.2.776'.
[  141.686558][ T7541] netlink: 596 bytes leftover after parsing attributes in process `syz.0.778'.
[  142.025446][ T7545] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  142.095937][ T7557] netlink: 'syz.4.784': attribute type 10 has an invalid length.
[  142.143212][ T5102] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  142.154061][ T5102] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  142.154833][ T7557] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  142.172187][ T5102] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  142.212563][ T5102] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  142.224320][ T5102] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  142.231939][ T5102] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  142.590694][ T7581] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  142.669810][ T7586] netlink: 20 bytes leftover after parsing attributes in process `syz.3.795'.
[  143.195564][ T7618] xt_TPROXY: Can be used only with -p tcp or -p udp
[  143.208721][ T7618] netlink: 'syz.2.803': attribute type 15 has an invalid length.
[  143.391949][ T7560] chnl_net:caif_netlink_parms(): no params data found
[  143.396373][ T7629] netlink: 'syz.4.807': attribute type 3 has an invalid length.
[  143.548715][ T7634] netlink: 12 bytes leftover after parsing attributes in process `syz.0.811'.
[  143.565368][ T7634] xt_bpf: check failed: parse error
[  143.755850][ T7560] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.763061][ T7560] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.802839][ T7560] bridge_slave_0: entered allmulticast mode
[  143.827045][ T7560] bridge_slave_0: entered promiscuous mode
[  143.836490][ T7655] netlink: 'syz.0.816': attribute type 1 has an invalid length.
[  143.879073][ T7560] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.920119][ T7560] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.943736][ T7560] bridge_slave_1: entered allmulticast mode
[  143.965272][ T7560] bridge_slave_1: entered promiscuous mode
[  144.053575][ T7663] netlink: 76 bytes leftover after parsing attributes in process `syz.4.819'.
[  144.115627][ T7663] Bluetooth: MGMT ver 1.22
[  144.159073][ T7560] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.215506][ T7560] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.323977][ T5105] Bluetooth: hci3: command tx timeout
[  144.397147][ T7560] team0: Port device team_slave_0 added
[  144.428151][ T7560] team0: Port device team_slave_1 added
[  144.614131][ T7560] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.626927][ T7560] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.709366][ T7560] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.745641][ T7560] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.762915][ T7560] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.906447][ T7560] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.071538][ T7560] hsr_slave_0: entered promiscuous mode
[  145.091500][ T7560] hsr_slave_1: entered promiscuous mode
[  145.113540][ T7560] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.135740][ T7560] Cannot create hsr debugfs directory
[  145.279360][ T7702] netlink: 12 bytes leftover after parsing attributes in process `syz.0.833'.
[  145.343125][ T7704] bond0: option resend_igmp: invalid value (257)
[  145.352667][ T7704] bond0: option resend_igmp: allowed values 0 - 255
[  145.370394][ T7706] netlink: 8 bytes leftover after parsing attributes in process `syz.4.832'.
[  145.507309][ T7713] xt_TCPMSS: Only works on TCP SYN packets
[  145.535722][ T7560] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.690751][ T7560] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.827017][ T7560] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.868799][ T7726] netlink: 296 bytes leftover after parsing attributes in process `syz.4.840'.
[  145.927551][ T7560] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  146.243150][ T7560] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  146.272198][ T7560] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  146.302372][ T7560] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  146.334581][ T7560] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  146.404160][ T5105] Bluetooth: hci3: command tx timeout
[  146.410735][ T7748] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  146.576357][ T7560] 8021q: adding VLAN 0 to HW filter on device bond0
[  146.631650][ T7560] 8021q: adding VLAN 0 to HW filter on device team0
[  146.666875][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.674237][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  146.700375][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.707681][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  146.862199][ T7560] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  146.944177][ T7760] netlink: 8 bytes leftover after parsing attributes in process `syz.4.851'.
[  147.049324][ T7765] netlink: 24 bytes leftover after parsing attributes in process `syz.3.852'.
[  147.089130][ T7765] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  147.118998][ T7765] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  147.335689][ T7560] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.458102][ T7560] veth0_vlan: entered promiscuous mode
[  147.492112][ T7560] veth1_vlan: entered promiscuous mode
[  147.595126][ T7560] veth0_macvtap: entered promiscuous mode
[  147.638364][ T7560] veth1_macvtap: entered promiscuous mode
[  147.649220][ T7777] netlink: 12 bytes leftover after parsing attributes in process `syz.4.855'.
[  147.709599][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.741032][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.761283][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.782268][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.790653][ T7784] netlink: 'syz.2.857': attribute type 30 has an invalid length.
[  147.795468][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.851102][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.883395][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.910671][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.927036][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  147.942470][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  147.957968][ T7560] batman_adv: batadv0: Interface activated: batadv_slave_0
[  148.019119][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.050397][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.093932][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.114567][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.146090][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.159115][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.171099][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.182137][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.193265][ T7560] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  148.204232][ T7560] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  148.216955][ T7560] batman_adv: batadv0: Interface activated: batadv_slave_1
[  148.249976][ T7560] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  148.267696][ T7560] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  148.281874][ T7560] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  148.313399][ T7560] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  148.434730][ T7809] xt_TCPMSS: Only works on TCP SYN packets
[  148.484570][ T5105] Bluetooth: hci3: command tx timeout
[  148.563238][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.578514][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.669489][ T2394] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  148.714785][ T2394] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  148.771913][ T7824] xt_CT: You must specify a L4 protocol and not use inversions on it
[  148.794186][ T7823] netlink: 4100 bytes leftover after parsing attributes in process `syz.3.871'.
[  149.643793][ T7870] netlink: 88 bytes leftover after parsing attributes in process `syz.0.883'.
[  150.020395][ T7889] netlink: 32 bytes leftover after parsing attributes in process `syz.3.887'.
[  150.143610][ T7893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.890'.
[  150.564330][ T5105] Bluetooth: hci3: command tx timeout
[  150.981215][ T7931] syz.4.902[7931] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.981499][ T7931] syz.4.902[7931] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.021062][ T7931] syz.4.902[7931] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.025883][ T7935] openvswitch: netlink: Key 0 has unexpected len 2 expected 0
[  151.060049][ T7931] syz.4.902[7931] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.062309][ T7928] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  151.062392][ T7931] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  151.118395][ T7937] netlink: 12 bytes leftover after parsing attributes in process `syz.1.903'.
[  151.135189][ T7937] netlink: 'syz.1.903': attribute type 25 has an invalid length.
[  151.201994][ T7937] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  151.212270][ T7937] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  151.221924][ T7937] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  151.231267][ T7937] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  151.269950][ T7944] netlink: 'syz.3.906': attribute type 4 has an invalid length.
[  151.315247][ T7938] netlink: 20 bytes leftover after parsing attributes in process `syz.1.903'.
[  151.340943][ T7942] vcan0: entered allmulticast mode
[  151.440657][   T62] tipc: Subscription rejected, illegal request
[  151.551437][ T7959] netlink: 'syz.0.913': attribute type 11 has an invalid length.
[  151.582552][ T7949] netlink: 179204 bytes leftover after parsing attributes in process `syz.4.911'.
[  151.705255][ T7964] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.822826][ T7969] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.849537][ T7969] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.891665][ T7969] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.911181][ T7969] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.044655][ T7964] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.070838][ T7982] __nla_validate_parse: 1 callbacks suppressed
[  152.070859][ T7982] netlink: 12 bytes leftover after parsing attributes in process `syz.4.922'.
[  152.124605][ T7978] netlink: 4 bytes leftover after parsing attributes in process `syz.4.922'.
[  152.134323][ T7978] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  152.141960][ T7978] batman_adv: batadv0: Removing interface: batadv_slave_0
[  152.152252][ T7978] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  152.160139][ T7978] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.330092][ T7964] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.491004][ T7964] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.551060][ T8000] netlink: 'syz.1.927': attribute type 12 has an invalid length.
[  152.559198][ T8000] netlink: 132 bytes leftover after parsing attributes in process `syz.1.927'.
[  152.570803][ T7999] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  152.724566][ T5102] Bluetooth: hci3: command 0x0405 tx timeout
[  152.736130][ T7964] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  152.782076][ T7964] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  152.804827][ T7964] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  152.824510][ T7964] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.535838][ T8049] netlink: 12 bytes leftover after parsing attributes in process `syz.1.950'.
[  153.557341][ T8049] netlink: 105120 bytes leftover after parsing attributes in process `syz.1.950'.
[  153.573602][ T8049] netlink: 'syz.1.950': attribute type 2 has an invalid length.
[  153.802043][ T8070] FAULT_INJECTION: forcing a failure.
[  153.802043][ T8070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  153.833629][ T8063] can: request_module (can-proto-0) failed.
[  153.865346][ T8071] nbd: must specify at least one socket
[  153.868390][ T8070] CPU: 0 PID: 8070 Comm: syz.2.954 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  153.880949][ T8070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  153.891043][ T8070] Call Trace:
[  153.894357][ T8070]  <TASK>
[  153.897327][ T8070]  dump_stack_lvl+0x241/0x360
[  153.902053][ T8070]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.907300][ T8070]  ? __pfx__printk+0x10/0x10
[  153.911949][ T8070]  ? __pfx_lock_release+0x10/0x10
[  153.917119][ T8070]  should_fail_ex+0x3b0/0x4e0
[  153.921857][ T8070]  _copy_from_user+0x2f/0xe0
[  153.926493][ T8070]  copy_msghdr_from_user+0xae/0x680
[  153.931747][ T8070]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  153.937629][ T8070]  __sys_sendmsg+0x23d/0x3a0
[  153.942276][ T8070]  ? __pfx___sys_sendmsg+0x10/0x10
[  153.947438][ T8070]  ? vfs_write+0x7c4/0xc90
[  153.951958][ T8070]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  153.958344][ T8070]  ? do_syscall_64+0x100/0x230
[  153.963162][ T8070]  ? do_syscall_64+0xb6/0x230
[  153.967888][ T8070]  do_syscall_64+0xf3/0x230
[  153.972440][ T8070]  ? clear_bhb_loop+0x35/0x90
[  153.977170][ T8070]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.983114][ T8070] RIP: 0033:0x7fdd0db75b99
[  153.987664][ T8070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  154.007313][ T8070] RSP: 002b:00007fdd0e9fa048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  154.015782][ T8070] RAX: ffffffffffffffda RBX: 00007fdd0dd04078 RCX: 00007fdd0db75b99
[  154.023803][ T8070] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  154.031868][ T8070] RBP: 00007fdd0e9fa0a0 R08: 0000000000000000 R09: 0000000000000000
[  154.039883][ T8070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  154.047893][ T8070] R13: 000000000000006e R14: 00007fdd0dd04078 R15: 00007ffc7196ae48
[  154.055896][ T8070]  </TASK>
[  154.662004][ T8101] netlink: 8 bytes leftover after parsing attributes in process `syz.1.966'.
[  154.697573][ T8094] netlink: 64 bytes leftover after parsing attributes in process `syz.4.965'.
[  154.821824][ T8058] netlink: 'syz.0.952': attribute type 1 has an invalid length.
[  154.854650][ T8108] netlink: 4 bytes leftover after parsing attributes in process `syz.1.968'.
[  154.882847][ T8109] netlink: 4 bytes leftover after parsing attributes in process `syz.1.968'.
[  154.890133][ T8114] netlink: 4 bytes leftover after parsing attributes in process `syz.3.971'.
[  155.285228][ T5102] Bluetooth: hci3: command 0x0405 tx timeout
[  155.662918][ T8145] sctp: [Deprecated]: syz.3.982 (pid 8145) Use of int in maxseg socket option.
[  155.662918][ T8145] Use struct sctp_assoc_value instead
[  156.835742][ T8192] No such timeout policy "syz0"
[  157.198966][ T8213] syzkaller1: entered promiscuous mode
[  157.226602][ T8213] syzkaller1: entered allmulticast mode
[  157.366492][ T8208] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  157.821771][ T8257] __nla_validate_parse: 2 callbacks suppressed
[  157.821794][ T8257] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1013'.
[  157.844399][ T8256] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1014'.
[  158.119425][ T8269] netlink: 165 bytes leftover after parsing attributes in process `syz.4.1019'.
[  158.143154][ T8272] netlink: 'syz.3.1021': attribute type 1 has an invalid length.
[  158.144486][ T8269] netlink: 277 bytes leftover after parsing attributes in process `syz.4.1019'.
[  158.155472][ T8272] netlink: 9344 bytes leftover after parsing attributes in process `syz.3.1021'.
[  158.181778][ T8272] netlink: 'syz.3.1021': attribute type 1 has an invalid length.
[  158.187776][ T8274] netlink: 'syz.0.1022': attribute type 3 has an invalid length.
[  158.215740][ T8274] netlink: 'syz.0.1022': attribute type 1 has an invalid length.
[  158.244605][ T8274] netlink: 181400 bytes leftover after parsing attributes in process `syz.0.1022'.
[  158.352630][ T8275] can: request_module (can-proto-0) failed.
[  158.377902][ T8281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1024'.
[  158.403508][ T8287] 
: renamed from bridge_slave_0 (while UP)
[  158.465745][ T8287] x_tables: duplicate underflow at hook 3
[  158.803115][ T8305] netlink: 'syz.3.1030': attribute type 3 has an invalid length.
[  158.925309][ T8316] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1029'.
[  159.169988][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  159.238711][ T8334] netlink: 2272 bytes leftover after parsing attributes in process `syz.3.1037'.
[  159.289892][ T8340] netlink: 'syz.2.1039': attribute type 1 has an invalid length.
[  159.303228][ T8340] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.1039'.
[  159.625839][ T8366] IPVS: sync thread started: state = BACKUP, mcast_ifn = ipvlan1, syncid = 1, id = 0
[  159.648871][ T8362] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.656939][ T8362] bridge0: port 1(
) entered disabled state
[  159.679821][ T8362] bridge0: entered allmulticast mode
[  159.727306][ T8362] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.734698][ T8362] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.742241][ T8362] bridge0: port 1(
) entered blocking state
[  159.748386][ T8362] bridge0: port 1(
) entered forwarding state
[  159.771362][ T8362] bridge0: entered promiscuous mode
[  160.017172][ T8382] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  160.412977][ T8408] batadv_slave_1: entered promiscuous mode
[  160.492461][ T8405] batadv_slave_1: left promiscuous mode
[  160.687017][ T8424] openvswitch: netlink: Unknown VXLAN extension attribute 0
[  161.339212][ T8458] IPVS: length: 96 != 173064
[  161.509779][   T45] IPVS: starting estimator thread 0...
[  161.613531][ T8467] IPVS: using max 17 ests per chain, 40800 per kthread
[  161.918778][   T25] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.156433][ T8494] netlink: 'syz.3.1096': attribute type 21 has an invalid length.
[  162.199226][ T8495] vlan2: entered promiscuous mode
[  162.222075][ T8495] caif0: entered promiscuous mode
[  162.361684][ T8495] caif0: left promiscuous mode
[  162.852183][ T8538] openvswitch: netlink: Flow actions attr not present in new flow.
[  163.099946][ T8554] __nla_validate_parse: 10 callbacks suppressed
[  163.099969][ T8554] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1115'.
[  163.145464][ T8554] wireguard0: entered promiscuous mode
[  163.151198][ T8554] wireguard0: entered allmulticast mode
[  163.256878][ T8568] netlink: 'syz.0.1119': attribute type 10 has an invalid length.
[  163.672080][ T8589] netlink: 'syz.1.1125': attribute type 4 has an invalid length.
[  163.939944][ T8598] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.1129'.
[  163.950507][ T8600] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1130'.
[  163.963136][ T8601] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.1129'.
[  164.041056][ T8609] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1131'.
[  164.140134][ T8609] wireguard0: entered promiscuous mode
[  164.181983][ T8609] wireguard0: entered allmulticast mode
[  164.789957][ T8656] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1145'.
[  165.405892][ T8694] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1154'.
[  165.749580][ T8708] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1158'.
[  165.917543][ T8715] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1161'.
[  166.341598][ T8735] sctp: [Deprecated]: syz.3.1169 (pid 8735) Use of int in maxseg socket option.
[  166.341598][ T8735] Use struct sctp_assoc_value instead
[  166.416406][ T8735] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  167.012465][ T8776] sctp: [Deprecated]: syz.3.1182 (pid 8776) Use of int in maxseg socket option.
[  167.012465][ T8776] Use struct sctp_assoc_value instead
[  167.064173][ T8776] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  167.220469][ T8788] netlink: 'syz.2.1184': attribute type 3 has an invalid length.
[  167.236746][ T8788] netlink: 666 bytes leftover after parsing attributes in process `syz.2.1184'.
[  167.605565][ T8814] raw_sendmsg: syz.4.1193 forgot to set AF_INET. Fix it!
[  167.762719][ T8827] sctp: [Deprecated]: syz.2.1196 (pid 8827) Use of int in maxseg socket option.
[  167.762719][ T8827] Use struct sctp_assoc_value instead
[  167.787859][ T8827] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  167.959143][ T8836] netlink: 'syz.4.1201': attribute type 1 has an invalid length.
[  167.961853][ T8837] xt_CT: You must specify a L4 protocol and not use inversions on it
[  167.987403][ T8839] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  167.995616][ T8839] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  168.002369][ T8839] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  168.008934][ T8839] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  168.015511][ T8839] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  168.021985][ T8839] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  168.028577][ T8839] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  168.151897][ T8847] netlink: 'syz.2.1203': attribute type 1 has an invalid length.
[  168.175098][ T8847] __nla_validate_parse: 1 callbacks suppressed
[  168.175121][ T8847] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1203'.
[  168.465606][ T8869] sctp: [Deprecated]: syz.2.1210 (pid 8869) Use of int in maxseg socket option.
[  168.465606][ T8869] Use struct sctp_assoc_value instead
[  168.660915][ T8876] x_tables: duplicate underflow at hook 1
[  168.846737][ T8892] netlink: 184 bytes leftover after parsing attributes in process `syz.1.1218'.
[  168.873859][ T8892] netlink: 'syz.1.1218': attribute type 1 has an invalid length.
[  168.893676][ T8892] netlink: 'syz.1.1218': attribute type 21 has an invalid length.
[  168.919834][ T8892] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1218'.
[  168.959122][ T8892] netlink: 'syz.1.1218': attribute type 4 has an invalid length.
[  168.976886][ T8892] netlink: 'syz.1.1218': attribute type 5 has an invalid length.
[  168.989157][ T8892] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1218'.
[  169.059953][ T8905] sctp: [Deprecated]: syz.4.1223 (pid 8905) Use of int in maxseg socket option.
[  169.059953][ T8905] Use struct sctp_assoc_value instead
[  169.404839][ T8924] xt_policy: too many policy elements
[  169.481884][ T8924] Bluetooth: MGMT ver 1.22
[  169.500923][ T8924] Bluetooth: hci3: invalid len left 7, exp >= 104
[  169.636853][ T8939] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1235'.
[  169.733174][ T8944] sctp: [Deprecated]: syz.0.1237 (pid 8944) Use of int in maxseg socket option.
[  169.733174][ T8944] Use struct sctp_assoc_value instead
[  169.831116][ T8953] FAULT_INJECTION: forcing a failure.
[  169.831116][ T8953] name failslab, interval 1, probability 0, space 0, times 0
[  169.863659][ T8953] CPU: 1 PID: 8953 Comm: syz.2.1240 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  169.873813][ T8953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  169.883914][ T8953] Call Trace:
[  169.887234][ T8953]  <TASK>
[  169.890216][ T8953]  dump_stack_lvl+0x241/0x360
[  169.894957][ T8953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.900210][ T8953]  ? __pfx__printk+0x10/0x10
[  169.904876][ T8953]  ? __lock_acquire+0x1346/0x1fd0
[  169.909962][ T8953]  should_fail_ex+0x3b0/0x4e0
[  169.914700][ T8953]  ? __alloc_skb+0x1c3/0x440
[  169.919355][ T8953]  should_failslab+0x9/0x20
[  169.923917][ T8953]  kmem_cache_alloc_node_noprof+0x71/0x320
[  169.929794][ T8953]  __alloc_skb+0x1c3/0x440
[  169.934282][ T8953]  ? __pfx___alloc_skb+0x10/0x10
[  169.939279][ T8953]  ? __mutex_trylock_common+0x183/0x2e0
[  169.944890][ T8953]  netlink_dump+0x2cd/0xd80
[  169.949537][ T8953]  ? trace_contention_end+0x3c/0x120
[  169.954884][ T8953]  ? __pfx_netlink_dump+0x10/0x10
[  169.959983][ T8953]  ? ctnetlink_start+0x17e/0x1b0
[  169.964969][ T8953]  __netlink_dump_start+0x59f/0x780
[  169.970230][ T8953]  ctnetlink_get_conntrack+0x2be/0x860
[  169.975751][ T8953]  ? __pfx_ctnetlink_get_conntrack+0x10/0x10
[  169.981785][ T8953]  ? nfnetlink_rcv_msg+0xa5c/0x1180
[  169.987079][ T8953]  ? nfnetlink_rcv_msg+0x225/0x1180
[  169.992335][ T8953]  ? __pfx_ctnetlink_start+0x10/0x10
[  169.997668][ T8953]  ? __pfx_ctnetlink_dump_table+0x10/0x10
[  170.003438][ T8953]  ? __pfx_ctnetlink_done+0x10/0x10
[  170.008699][ T8953]  ? nfnetlink_rcv_msg+0x225/0x1180
[  170.013956][ T8953]  nfnetlink_rcv_msg+0xbec/0x1180
[  170.019030][ T8953]  ? kernel_text_address+0xa7/0xe0
[  170.024196][ T8953]  ? nfnetlink_rcv_msg+0x225/0x1180
[  170.029480][ T8953]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  170.035021][ T8953]  ? netlink_deliver_tap+0x19d/0x1b0
[  170.040357][ T8953]  ? netlink_unicast+0x7be/0x990
[  170.045339][ T8953]  ? netlink_sendmsg+0x8e4/0xcb0
[  170.050313][ T8953]  ? __sock_sendmsg+0x221/0x270
[  170.055201][ T8953]  ? ____sys_sendmsg+0x525/0x7d0
[  170.060203][ T8953]  ? __sys_sendmsg+0x2b0/0x3a0
[  170.065043][ T8953]  ? do_syscall_64+0xf3/0x230
[  170.069769][ T8953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.075900][ T8953]  netlink_rcv_skb+0x1e3/0x430
[  170.080715][ T8953]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  170.086225][ T8953]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  170.091580][ T8953]  ? apparmor_capable+0x138/0x1b0
[  170.096743][ T8953]  ? bpf_lsm_capable+0x9/0x10
[  170.101471][ T8953]  ? security_capable+0x90/0xb0
[  170.106375][ T8953]  nfnetlink_rcv+0x297/0x2a90
[  170.111109][ T8953]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  170.116885][ T8953]  ? __dev_queue_xmit+0x2da/0x3e90
[  170.122061][ T8953]  ? __dev_queue_xmit+0x1763/0x3e90
[  170.127318][ T8953]  ? kasan_save_track+0x51/0x80
[  170.132232][ T8953]  ? do_syscall_64+0xf3/0x230
[  170.136960][ T8953]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  170.142123][ T8953]  ? __dev_queue_xmit+0x2da/0x3e90
[  170.147319][ T8953]  ? __pfx___dev_queue_xmit+0x10/0x10
[  170.152772][ T8953]  ? ref_tracker_free+0x643/0x7e0
[  170.157861][ T8953]  ? __asan_memcpy+0x40/0x70
[  170.162509][ T8953]  ? __pfx_ref_tracker_free+0x10/0x10
[  170.167962][ T8953]  ? netlink_deliver_tap+0x2e/0x1b0
[  170.173221][ T8953]  ? skb_clone+0x240/0x390
[  170.177695][ T8953]  ? __pfx_lock_release+0x10/0x10
[  170.182770][ T8953]  ? __netlink_deliver_tap+0x77e/0x7c0
[  170.188304][ T8953]  ? netlink_deliver_tap+0x2e/0x1b0
[  170.193566][ T8953]  netlink_unicast+0x7f0/0x990
[  170.198398][ T8953]  ? __pfx_netlink_unicast+0x10/0x10
[  170.203738][ T8953]  ? __virt_addr_valid+0x183/0x520
[  170.208917][ T8953]  ? __check_object_size+0x49c/0x900
[  170.214276][ T8953]  ? bpf_lsm_netlink_send+0x9/0x10
[  170.219461][ T8953]  netlink_sendmsg+0x8e4/0xcb0
[  170.224312][ T8953]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.229654][ T8953]  ? __import_iovec+0x536/0x820
[  170.234559][ T8953]  ? aa_sock_msg_perm+0x91/0x160
[  170.239556][ T8953]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  170.244883][ T8953]  ? security_socket_sendmsg+0x87/0xb0
[  170.250419][ T8953]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.255755][ T8953]  __sock_sendmsg+0x221/0x270
[  170.260493][ T8953]  ____sys_sendmsg+0x525/0x7d0
[  170.265325][ T8953]  ? __pfx_____sys_sendmsg+0x10/0x10
[  170.270683][ T8953]  __sys_sendmsg+0x2b0/0x3a0
[  170.275331][ T8953]  ? __pfx___sys_sendmsg+0x10/0x10
[  170.280497][ T8953]  ? vfs_write+0x7c4/0xc90
[  170.285009][ T8953]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  170.291386][ T8953]  ? do_syscall_64+0x100/0x230
[  170.296202][ T8953]  ? do_syscall_64+0xb6/0x230
[  170.300927][ T8953]  do_syscall_64+0xf3/0x230
[  170.305487][ T8953]  ? clear_bhb_loop+0x35/0x90
[  170.310215][ T8953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.316155][ T8953] RIP: 0033:0x7fdd0db75b99
[  170.320616][ T8953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.340265][ T8953] RSP: 002b:00007fdd0ea1b048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.348737][ T8953] RAX: ffffffffffffffda RBX: 00007fdd0dd03fa0 RCX: 00007fdd0db75b99
[  170.356761][ T8953] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000003
[  170.364892][ T8953] RBP: 00007fdd0ea1b0a0 R08: 0000000000000000 R09: 0000000000000000
[  170.372908][ T8953] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.380923][ T8953] R13: 000000000000000b R14: 00007fdd0dd03fa0 R15: 00007ffc7196ae48
[  170.389052][ T8953]  </TASK>
[  170.432906][ T8969] netlink: 'syz.4.1245': attribute type 1 has an invalid length.
[  170.503511][   T29] audit: type=1800 audit(1719737749.986:10): pid=8943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1234" name="cgroup.controllers" dev="sda1" ino=1971 res=0 errno=0
[  170.533505][ T8974] netlink: 'syz.0.1246': attribute type 3 has an invalid length.
[  170.555195][ T8975] netlink: 'syz.2.1247': attribute type 1 has an invalid length.
[  170.604752][   T29] audit: type=1800 audit(1719737749.996:11): pid=8949 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1234" name="cgroup.controllers" dev="sda1" ino=1971 res=0 errno=0
[  170.713669][ T8978] sctp: [Deprecated]: syz.4.1251 (pid 8978) Use of int in maxseg socket option.
[  170.713669][ T8978] Use struct sctp_assoc_value instead
[  171.247755][ T9010] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  171.255723][ T9010] IPv6: NLM_F_CREATE should be set when creating new route
[  171.263029][ T9010] IPv6: NLM_F_CREATE should be set when creating new route
[  171.383209][ T9017] sctp: [Deprecated]: syz.4.1263 (pid 9017) Use of int in maxseg socket option.
[  171.383209][ T9017] Use struct sctp_assoc_value instead
[  171.427791][ T9017] net_ratelimit: 54 callbacks suppressed
[  171.427815][ T9017] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  171.725877][ T9031] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1270'.
[  171.941651][ T9036] syz_tun: entered promiscuous mode
[  171.961223][ T9036] syz_tun: left promiscuous mode
[  171.965052][ T9044] sctp: [Deprecated]: syz.0.1276 (pid 9044) Use of int in maxseg socket option.
[  171.965052][ T9044] Use struct sctp_assoc_value instead
[  172.087846][ T9044] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  172.489795][ T9076] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1284'.
[  173.142541][ T9101] sctp: [Deprecated]: syz.1.1290 (pid 9101) Use of int in maxseg socket option.
[  173.142541][ T9101] Use struct sctp_assoc_value instead
[  173.189667][ T9101] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  173.709307][ T9132] validate_nla: 1 callbacks suppressed
[  173.709332][ T9132] netlink: 'syz.1.1302': attribute type 11 has an invalid length.
[  173.908810][ T9139] netlink: 'syz.1.1305': attribute type 1 has an invalid length.
[  173.961668][ T9142] sctp: [Deprecated]: syz.0.1306 (pid 9142) Use of int in maxseg socket option.
[  173.961668][ T9142] Use struct sctp_assoc_value instead
[  174.077002][ T9147] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1307'.
[  174.109073][ T9150] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  174.726736][ T9176] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1320'.
[  175.041156][ T9188] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  175.056385][ T9186] sctp: [Deprecated]: syz.2.1323 (pid 9186) Use of int in maxseg socket option.
[  175.056385][ T9186] Use struct sctp_assoc_value instead
[  175.106389][ T9186] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  175.461443][ T9201] sch_tbf: burst 8 is lower than device lo mtu (65550) !
[  175.755139][ T9219] sctp: [Deprecated]: syz.2.1337 (pid 9219) Use of int in maxseg socket option.
[  175.755139][ T9219] Use struct sctp_assoc_value instead
[  175.861760][ T9229] netlink: 188 bytes leftover after parsing attributes in process `syz.1.1341'.
[  175.874120][ T9229] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1341'.
[  175.899479][ T9219] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  175.954013][ T9236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1338'.
[  176.109454][ T9242] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  176.433256][ T9258] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1347'.
[  176.737224][ T9273] sctp: [Deprecated]: syz.1.1353 (pid 9273) Use of int in maxseg socket option.
[  176.737224][ T9273] Use struct sctp_assoc_value instead
[  176.782683][ T9276] netdevsim netdevsim0: Direct firmware load for  failed with error -2
[  176.802611][ T9273] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  176.808758][ T9276] netdevsim netdevsim0: Falling back to sysfs fallback for: 
[  176.948967][ T9282] vlan2: entered promiscuous mode
[  176.954470][ T9282] bond0: entered promiscuous mode
[  176.970091][ T9282] bond_slave_0: entered promiscuous mode
[  176.976395][ T9282] bond_slave_1: entered promiscuous mode
[  177.002382][ T9288] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1355'.
[  177.022433][ T9282] bond0: left promiscuous mode
[  177.033490][ T9282] bond_slave_0: left promiscuous mode
[  177.045478][ T9282] bond_slave_1: left promiscuous mode
[  177.588886][ T9313] sctp: [Deprecated]: syz.1.1367 (pid 9313) Use of int in maxseg socket option.
[  177.588886][ T9313] Use struct sctp_assoc_value instead
[  177.611590][ T9315] netlink: 296 bytes leftover after parsing attributes in process `syz.2.1368'.
[  177.698538][ T9320] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  177.780009][ T9323] netlink: 'syz.0.1371': attribute type 1 has an invalid length.
[  178.245156][ T9356] sctp: [Deprecated]: syz.4.1384 (pid 9356) Use of int in maxseg socket option.
[  178.245156][ T9356] Use struct sctp_assoc_value instead
[  178.356601][ T9356] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  178.571582][ T9370] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1390'.
[  178.574263][ T9371] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1391'.
[  179.235734][ T9408] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  179.563221][ T9417] netlink: 'syz.4.1406': attribute type 11 has an invalid length.
[  179.602305][ T9417] __nla_validate_parse: 2 callbacks suppressed
[  179.602328][ T9417] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1406'.
[  179.625787][ T9417] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1406'.
[  179.766124][ T9423] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  179.775660][ T9423] netlink: 264 bytes leftover after parsing attributes in process `syz.4.1408'.
[  179.889059][ T9419] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1407'.
[  180.142995][ T9434] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1410'.
[  180.316361][ T9442] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1412'.
[  180.358671][ T9442] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  180.358955][ T9444] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  180.469836][ T9451] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.1415'.
[  180.867423][ T9462] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1421'.
[  180.885675][ T9463] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  181.142706][ T9476] É¶Ę£0GC¦: entered promiscuous mode
[  181.790169][ T9506] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1433'.
[  181.988428][ T9518] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1438'.
[  182.430216][ T9540] team0: Port device wlan1 added
[  182.443716][ T9535] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  182.553612][ T9548] nbd: socks must be embedded in a SOCK_ITEM attr
[  183.292228][ T9587] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  183.716045][ T9620] netlink: 'syz.3.1471': attribute type 4 has an invalid length.
[  183.724785][ T9620] netlink: 'syz.3.1471': attribute type 1 has an invalid length.
[  184.580089][ T9671] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  185.443186][ T9707] __nla_validate_parse: 8 callbacks suppressed
[  185.443207][ T9707] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1502'.
[  185.476038][ T9709] netlink: 576 bytes leftover after parsing attributes in process `syz.3.1503'.
[  185.488079][ T9707] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1502'.
[  185.541134][ T9707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1502'.
[  186.170411][ T9741] netlink: 'syz.1.1516': attribute type 10 has an invalid length.
[  186.242617][ T9741] batman_adv: batadv0: Adding interface: team0
[  186.261741][ T9741] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  186.290270][ T9741] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  186.343629][ T9754] openvswitch: netlink: Message has 248 unknown bytes.
[  186.385514][ T9741] netlink: 'syz.1.1516': attribute type 10 has an invalid length.
[  186.406500][ T9741] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1516'.
[  186.422200][ T9741] team0: entered promiscuous mode
[  186.427963][ T9741] team_slave_0: entered promiscuous mode
[  186.452173][ T9741] team_slave_1: entered promiscuous mode
[  186.461911][    C0] TCP: request_sock_TCP: Possible SYN flooding on port [::ffff:172.20.20.170]:2. Sending cookies.
[  186.492401][ T9741] 8021q: adding VLAN 0 to HW filter on device team0
[  186.505970][ T9741] batman_adv: batadv0: Interface activated: team0
[  186.520968][ T9741] batman_adv: batadv0: Interface deactivated: team0
[  186.535175][ T9741] batman_adv: batadv0: Removing interface: team0
[  186.549694][ T9741] bridge0: port 3(team0) entered blocking state
[  186.556970][ T9741] bridge0: port 3(team0) entered disabled state
[  186.571308][ T9741] team0: entered allmulticast mode
[  186.583039][ T9741] team_slave_0: entered allmulticast mode
[  186.597693][ T9741] team_slave_1: entered allmulticast mode
[  186.628713][ T9741] bridge0: port 3(team0) entered blocking state
[  186.635277][ T9741] bridge0: port 3(team0) entered forwarding state
[  186.927590][ T9777] dvmrp0: entered allmulticast mode
[  186.939000][ T9777] dvmrp0: left allmulticast mode
[  186.947065][   T29] audit: type=1804 audit(1719737766.446:12): pid=9775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1526" name="/root/syzkaller.Lukuiq/225/cgroup.controllers" dev="sda1" ino=1971 res=1 errno=0
[  187.167179][ T9790] netlink: 'syz.1.1532': attribute type 11 has an invalid length.
[  187.309995][ T9797] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.356517][ T9797] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.405937][ T9797] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1534'.
[  187.417479][ T9799] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode 802.3ad(4)
[  187.481027][ T9801] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1536'.
[  187.750058][ T9811] dccp_invalid_packet: P.Data Offset(172) too large
[  187.950096][ T9820] netlink: 'syz.2.1542': attribute type 22 has an invalid length.
[  187.965475][ T9823] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1543'.
[  188.004524][ T9823] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1543'.
[  188.018229][ T9820] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1542'.
[  188.234738][ T9837] sctp: [Deprecated]: syz.1.1544 (pid 9837) Use of int in maxseg socket option.
[  188.234738][ T9837] Use struct sctp_assoc_value instead
[  188.358317][   T29] audit: type=1804 audit(1719737767.846:13): pid=9840 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1546" name="/root/syzkaller.Lukuiq/228/cgroup.controllers" dev="sda1" ino=1972 res=1 errno=0
[  189.145604][ T9886] sctp: [Deprecated]: syz.4.1562 (pid 9886) Use of int in maxseg socket option.
[  189.145604][ T9886] Use struct sctp_assoc_value instead
[  189.178046][ T9880] macvlan1: left promiscuous mode
[  189.201361][ T9880] team0: Port device macvlan1 removed
[  189.425372][ T9900] FAULT_INJECTION: forcing a failure.
[  189.425372][ T9900] name failslab, interval 1, probability 0, space 0, times 0
[  189.474057][ T9900] CPU: 0 PID: 9900 Comm: syz.2.1565 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  189.484212][ T9900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  189.494307][ T9900] Call Trace:
[  189.497642][ T9900]  <TASK>
[  189.500616][ T9900]  dump_stack_lvl+0x241/0x360
[  189.505355][ T9900]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.510629][ T9900]  ? __pfx__printk+0x10/0x10
[  189.515300][ T9900]  should_fail_ex+0x3b0/0x4e0
[  189.520030][ T9900]  ? __alloc_skb+0x1c3/0x440
[  189.524684][ T9900]  should_failslab+0x9/0x20
[  189.529248][ T9900]  kmem_cache_alloc_node_noprof+0x71/0x320
[  189.535118][ T9900]  __alloc_skb+0x1c3/0x440
[  189.539598][ T9900]  ? __pfx___alloc_skb+0x10/0x10
[  189.544598][ T9900]  ? netlink_ack_tlv_len+0x6e/0x200
[  189.549846][ T9900]  netlink_ack+0x13f/0xa30
[  189.554326][ T9900]  ? __nla_parse+0x40/0x60
[  189.558798][ T9900]  nfnetlink_rcv+0x24fd/0x2a90
[  189.563654][ T9900]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  189.568874][ T9900]  ? netlink_deliver_tap+0x2e/0x1b0
[  189.574126][ T9900]  ? skb_clone+0x240/0x390
[  189.578603][ T9900]  ? __pfx_lock_release+0x10/0x10
[  189.583702][ T9900]  ? netlink_deliver_tap+0x2e/0x1b0
[  189.588962][ T9900]  netlink_unicast+0x7f0/0x990
[  189.593777][ T9900]  ? __pfx_netlink_unicast+0x10/0x10
[  189.599094][ T9900]  ? __virt_addr_valid+0x183/0x520
[  189.604251][ T9900]  ? __check_object_size+0x49c/0x900
[  189.609570][ T9900]  ? bpf_lsm_netlink_send+0x9/0x10
[  189.614715][ T9900]  netlink_sendmsg+0x8e4/0xcb0
[  189.619599][ T9900]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.624904][ T9900]  ? __import_iovec+0x536/0x820
[  189.629856][ T9900]  ? aa_sock_msg_perm+0x91/0x160
[  189.634830][ T9900]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  189.640145][ T9900]  ? security_socket_sendmsg+0x87/0xb0
[  189.645647][ T9900]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.650949][ T9900]  __sock_sendmsg+0x221/0x270
[  189.655690][ T9900]  ____sys_sendmsg+0x525/0x7d0
[  189.660485][ T9900]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.665805][ T9900]  __sys_sendmsg+0x2b0/0x3a0
[  189.670416][ T9900]  ? __pfx___sys_sendmsg+0x10/0x10
[  189.675540][ T9900]  ? vfs_write+0x7c4/0xc90
[  189.680007][ T9900]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  189.686357][ T9900]  ? do_syscall_64+0x100/0x230
[  189.691138][ T9900]  ? do_syscall_64+0xb6/0x230
[  189.695842][ T9900]  do_syscall_64+0xf3/0x230
[  189.700353][ T9900]  ? clear_bhb_loop+0x35/0x90
[  189.705045][ T9900]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.710951][ T9900] RIP: 0033:0x7fdd0db75b99
[  189.715392][ T9900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.735009][ T9900] RSP: 002b:00007fdd0ea1b048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.743436][ T9900] RAX: ffffffffffffffda RBX: 00007fdd0dd03fa0 RCX: 00007fdd0db75b99
[  189.751413][ T9900] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003
[  189.759395][ T9900] RBP: 00007fdd0ea1b0a0 R08: 0000000000000000 R09: 0000000000000000
[  189.767379][ T9900] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  189.775358][ T9900] R13: 000000000000000b R14: 00007fdd0dd03fa0 R15: 00007ffc7196ae48
[  189.783491][ T9900]  </TASK>
[  189.876623][   T29] audit: type=1800 audit(1719737769.376:14): pid=9906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1567" name="memory.events" dev="sda1" ino=1952 res=0 errno=0
[  190.095118][ T9926] sctp: [Deprecated]: syz.2.1576 (pid 9926) Use of int in maxseg socket option.
[  190.095118][ T9926] Use struct sctp_assoc_value instead
[  190.156484][ T9931] vlan3: entered promiscuous mode
[  190.161735][ T9931] netdevsim netdevsim0 netdevsim3: entered promiscuous mode
[  190.174606][ T9931] netdevsim netdevsim0 netdevsim3: left promiscuous mode
[  190.618744][ T9958] __nla_validate_parse: 9 callbacks suppressed
[  190.618766][ T9958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1585'.
[  190.639726][ T9958] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[  191.086413][ T9986] x_tables: duplicate underflow at hook 2
[  191.105766][ T9986] netlink: 'syz.2.1595': attribute type 9 has an invalid length.
[  191.214893][ T9992] tipc: Enabling of bearer <eth:dvmrp0> rejected, failed to enable media
[  191.295305][ T9998] netlink: 212900 bytes leftover after parsing attributes in process `syz.0.1600'.
[  191.519804][T10007] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  191.532753][T10011] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1602'.
[  191.626965][T10015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1605'.
[  191.647145][T10007] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  191.678995][T10011] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  191.778005][T10011] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  191.845156][ T5102] Bluetooth: hci1: command 0x0406 tx timeout
[  192.007564][T10023] netlink: 'syz.0.1607': attribute type 3 has an invalid length.
[  192.142284][T10026] veth0_macvtap: left promiscuous mode
[  192.256121][ T5102] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  192.268220][ T5102] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  192.277935][ T5102] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  192.306218][ T5102] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  192.324681][ T5102] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  192.332586][ T5102] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  192.408056][T10032] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1610'.
[  192.452204][T10034] sctp: [Deprecated]: syz.4.1612 (pid 10034) Use of int in maxseg socket option.
[  192.452204][T10034] Use struct sctp_assoc_value instead
[  192.697467][T10039] tipc: Enabling of bearer <eth:dvmrp0> rejected, failed to enable media
[  192.899392][T10053] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1615'.
[  193.191528][T10063] netlink: 'syz.1.1619': attribute type 1 has an invalid length.
[  193.212769][T10028] chnl_net:caif_netlink_parms(): no params data found
[  193.238879][T10070] sctp: [Deprecated]: syz.4.1620 (pid 10070) Use of int in maxseg socket option.
[  193.238879][T10070] Use struct sctp_assoc_value instead
[  193.348905][T10073] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  193.477321][T10028] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.486269][T10028] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.495249][T10028] bridge_slave_0: entered allmulticast mode
[  193.503090][T10028] bridge_slave_0: entered promiscuous mode
[  193.513472][T10028] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.520733][T10028] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.529133][T10028] bridge_slave_1: entered allmulticast mode
[  193.536998][T10028] bridge_slave_1: entered promiscuous mode
[  193.610418][T10028] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  193.632705][T10028] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  193.701996][T10028] team0: Port device team_slave_0 added
[  193.716489][T10028] team0: Port device team_slave_1 added
[  193.766392][T10028] batman_adv: batadv0: Adding interface: batadv_slave_0
[  193.774817][T10028] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  193.803365][T10028] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  193.827401][T10082] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  193.841631][T10082] batman_adv: batadv0: Removing interface: batadv_slave_0
[  193.856620][T10082] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  193.874762][T10028] batman_adv: batadv0: Adding interface: batadv_slave_1
[  193.883102][T10028] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  193.910632][T10028] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  194.045733][T10089] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1626'.
[  194.112321][T10091] FAULT_INJECTION: forcing a failure.
[  194.112321][T10091] name failslab, interval 1, probability 0, space 0, times 0
[  194.131323][T10028] hsr_slave_0: entered promiscuous mode
[  194.138819][T10091] CPU: 1 PID: 10091 Comm: syz.1.1627 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  194.149041][T10091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  194.159138][T10091] Call Trace:
[  194.162449][T10091]  <TASK>
[  194.165425][T10091]  dump_stack_lvl+0x241/0x360
[  194.170285][T10091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.175538][T10091]  ? __pfx__printk+0x10/0x10
[  194.180193][T10091]  ? _copy_from_iter+0x26b/0x1960
[  194.185280][T10091]  should_fail_ex+0x3b0/0x4e0
[  194.190018][T10091]  ? build_skb+0x52/0x2a0
[  194.194393][T10091]  should_failslab+0x9/0x20
[  194.198948][T10091]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  194.204371][T10091]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  194.210428][T10091]  build_skb+0x52/0x2a0
[  194.214637][T10091]  ? __tun_build_skb+0x25/0x2f0
[  194.219561][T10091]  __tun_build_skb+0x33/0x2f0
[  194.224311][T10091]  tun_get_user+0x2088/0x4560
[  194.229190][T10091]  ? tun_get_user+0x84c/0x4560
[  194.234030][T10091]  ? __pfx_tun_get_user+0x10/0x10
[  194.239118][T10091]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  194.244637][T10091]  ? tun_get+0x1e/0x2f0
[  194.248865][T10091]  ? tun_get+0x1e/0x2f0
[  194.253071][T10091]  ? tun_get+0x27d/0x2f0
[  194.257384][T10091]  tun_chr_write_iter+0x113/0x1f0
[  194.262475][T10091]  vfs_write+0xa72/0xc90
[  194.265169][T10097] netlink: 'syz.4.1629': attribute type 11 has an invalid length.
[  194.266839][T10091]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  194.280318][T10091]  ? __pfx_vfs_write+0x10/0x10
[  194.285167][T10091]  ksys_write+0x1a0/0x2c0
[  194.289562][T10091]  ? __pfx_ksys_write+0x10/0x10
[  194.294470][T10091]  ? do_syscall_64+0x100/0x230
[  194.299291][T10091]  ? do_syscall_64+0xb6/0x230
[  194.304025][T10091]  do_syscall_64+0xf3/0x230
[  194.308580][T10091]  ? clear_bhb_loop+0x35/0x90
[  194.313314][T10091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.319292][T10091] RIP: 0033:0x7f87a717471f
[  194.323731][T10091] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  194.343391][T10091] RSP: 002b:00007f87a6bff010 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  194.351955][T10091] RAX: ffffffffffffffda RBX: 00007f87a7303fa0 RCX: 00007f87a717471f
[  194.359978][T10091] RDX: 0000000000000047 RSI: 0000000020000140 RDI: 00000000000000c8
[  194.367967][T10091] RBP: 00007f87a6bff0a0 R08: 0000000000000000 R09: 0000000000000000
[  194.376047][T10091] R10: 0000000000000047 R11: 0000000000000293 R12: 0000000000000001
[  194.384048][T10091] R13: 000000000000000b R14: 00007f87a7303fa0 R15: 00007fff65eab378
[  194.392049][T10091]  </TASK>
[  194.399741][T10028] hsr_slave_1: entered promiscuous mode
[  194.407465][ T5105] Bluetooth: hci2: command tx timeout
[  194.416521][T10028] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  194.429168][T10028] Cannot create hsr debugfs directory
[  194.734208][ T1249] ieee802154 phy0 wpan0: encryption failed: -22
[  194.741074][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  194.796845][T10113] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1633'.
[  194.812712][T10120] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1636'.
[  194.866383][T10121] 8021q: adding VLAN 0 to HW filter on device batadv1
[  194.969473][T10125] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1638'.
[  194.980248][T10123] lo: entered promiscuous mode
[  195.240658][T10028] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.382122][T10028] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.493720][T10028] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.583068][T10028] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.609302][T10139] netlink: 'syz.1.1643': attribute type 10 has an invalid length.
[  195.634870][T10139] bridge0: port 3(team0) entered disabled state
[  195.664656][T10139] team0: left allmulticast mode
[  195.669585][T10139] team_slave_0: left allmulticast mode
[  195.695755][T10139] team_slave_1: left allmulticast mode
[  195.701480][T10139] team0: left promiscuous mode
[  195.706786][T10139] team_slave_0: left promiscuous mode
[  195.719779][T10139] team_slave_1: left promiscuous mode
[  195.742002][T10139] bridge0: port 3(team0) entered disabled state
[  195.770108][T10139] batman_adv: batadv0: Adding interface: team0
[  195.779197][T10139] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.807305][T10139] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  195.825523][T10140] netlink: 'syz.1.1643': attribute type 10 has an invalid length.
[  195.834405][T10140] __nla_validate_parse: 3 callbacks suppressed
[  195.834425][T10140] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1643'.
[  195.850322][T10140] team0: entered promiscuous mode
[  195.855665][T10140] team_slave_0: entered promiscuous mode
[  195.861692][T10140] team_slave_1: entered promiscuous mode
[  195.870408][T10140] 8021q: adding VLAN 0 to HW filter on device team0
[  195.878125][T10140] batman_adv: batadv0: Interface activated: team0
[  195.887595][T10140] batman_adv: batadv0: Interface deactivated: team0
[  195.897840][T10140] batman_adv: batadv0: Removing interface: team0
[  195.909380][T10140] bridge0: port 3(team0) entered blocking state
[  195.920757][T10140] bridge0: port 3(team0) entered disabled state
[  195.931777][T10140] team0: entered allmulticast mode
[  195.941687][T10140] team_slave_0: entered allmulticast mode
[  195.951706][T10140] team_slave_1: entered allmulticast mode
[  195.963104][T10140] bridge0: port 3(team0) entered blocking state
[  195.969637][T10140] bridge0: port 3(team0) entered forwarding state
[  195.985973][T10122] lo: left promiscuous mode
[  196.204548][T10145] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1645'.
[  196.234043][T10146] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1645'.
[  196.262072][T10028] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  196.288156][T10028] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  196.323102][T10028] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  196.357209][T10028] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  196.476654][T10159] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1649'.
[  196.484242][ T5105] Bluetooth: hci2: command tx timeout
[  196.589290][T10028] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.650943][T10028] 8021q: adding VLAN 0 to HW filter on device team0
[  196.676870][ T5146] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.684307][ T5146] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.716052][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.723227][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.902630][T10176] netlink: 576 bytes leftover after parsing attributes in process `syz.0.1656'.
[  196.984852][T10179] sctp: [Deprecated]: syz.1.1657 (pid 10179) Use of int in maxseg socket option.
[  196.984852][T10179] Use struct sctp_assoc_value instead
[  197.207032][T10028] 8021q: adding VLAN 0 to HW filter on device batadv0
[  197.222972][T10179] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  197.235387][T10189] netlink: 'syz.0.1659': attribute type 2 has an invalid length.
[  197.246375][T10189] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1659'.
[  197.345501][T10028] veth0_vlan: entered promiscuous mode
[  197.367157][T10191] FAULT_INJECTION: forcing a failure.
[  197.367157][T10191] name failslab, interval 1, probability 0, space 0, times 0
[  197.386437][T10028] veth1_vlan: entered promiscuous mode
[  197.405737][T10191] CPU: 0 PID: 10191 Comm: syz.1.1660 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  197.415964][T10191] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  197.426032][T10191] Call Trace:
[  197.429347][T10191]  <TASK>
[  197.432290][T10191]  dump_stack_lvl+0x241/0x360
[  197.436999][T10191]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.442246][T10191]  ? __pfx__printk+0x10/0x10
[  197.446883][T10191]  ? __pfx___might_resched+0x10/0x10
[  197.452194][T10191]  should_fail_ex+0x3b0/0x4e0
[  197.456892][T10191]  ? ovs_ct_limit_cmd_set+0x2f9/0xaf0
[  197.462300][T10191]  should_failslab+0x9/0x20
[  197.466861][T10191]  kmalloc_trace_noprof+0x6c/0x2c0
[  197.472022][T10191]  ovs_ct_limit_cmd_set+0x2f9/0xaf0
[  197.477295][T10191]  genl_rcv_msg+0xb14/0xec0
[  197.481848][T10191]  ? mark_lock+0x9a/0x350
[  197.486316][T10191]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.491438][T10191]  ? __pfx_lock_acquire+0x10/0x10
[  197.496596][T10191]  ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10
[  197.502379][T10191]  ? __pfx___might_resched+0x10/0x10
[  197.507740][T10191]  netlink_rcv_skb+0x1e3/0x430
[  197.512567][T10191]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.517658][T10191]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  197.523019][T10191]  ? __netlink_deliver_tap+0x77e/0x7c0
[  197.528536][T10191]  genl_rcv+0x28/0x40
[  197.532551][T10191]  netlink_unicast+0x7f0/0x990
[  197.537431][T10191]  ? __pfx_netlink_unicast+0x10/0x10
[  197.542733][T10191]  ? __virt_addr_valid+0x183/0x520
[  197.547875][T10191]  ? __check_object_size+0x49c/0x900
[  197.553185][T10191]  ? bpf_lsm_netlink_send+0x9/0x10
[  197.558319][T10191]  netlink_sendmsg+0x8e4/0xcb0
[  197.563117][T10191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.568442][T10191]  ? __import_iovec+0x536/0x820
[  197.573323][T10191]  ? aa_sock_msg_perm+0x91/0x160
[  197.578298][T10191]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  197.583597][T10191]  ? security_socket_sendmsg+0x87/0xb0
[  197.589073][T10191]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.594385][T10191]  __sock_sendmsg+0x221/0x270
[  197.599083][T10191]  ____sys_sendmsg+0x525/0x7d0
[  197.603870][T10191]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.609186][T10191]  __sys_sendmsg+0x2b0/0x3a0
[  197.613820][T10191]  ? __pfx___sys_sendmsg+0x10/0x10
[  197.619094][T10191]  ? vfs_write+0x7c4/0xc90
[  197.623579][T10191]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  197.629920][T10191]  ? do_syscall_64+0x100/0x230
[  197.634698][T10191]  ? do_syscall_64+0xb6/0x230
[  197.639385][T10191]  do_syscall_64+0xf3/0x230
[  197.643903][T10191]  ? clear_bhb_loop+0x35/0x90
[  197.648597][T10191]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.654500][T10191] RIP: 0033:0x7f87a7175b99
[  197.658923][T10191] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.678549][T10191] RSP: 002b:00007f87a6bff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.686974][T10191] RAX: ffffffffffffffda RBX: 00007f87a7303fa0 RCX: 00007f87a7175b99
[  197.694969][T10191] RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000000003
[  197.703032][T10191] RBP: 00007f87a6bff0a0 R08: 0000000000000000 R09: 0000000000000000
[  197.711011][T10191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.718994][T10191] R13: 000000000000000b R14: 00007f87a7303fa0 R15: 00007fff65eab378
[  197.727002][T10191]  </TASK>
[  197.764961][T10196] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1662'.
[  197.800261][T10028] veth0_macvtap: entered promiscuous mode
[  197.847229][T10028] veth1_macvtap: entered promiscuous mode
[  197.911620][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.922925][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.934442][T10200] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1663'.
[  197.942204][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.955249][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.969097][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  197.973828][T10203] xt_TCPMSS: Only works on TCP SYN packets
[  197.990077][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  197.995648][T10203] rdma_op ffff888079e3c1f0 conn xmit_rdma 0000000000000000
[  198.004799][T10028] batman_adv: batadv0: Interface activated: batadv_slave_0
[  198.030512][T10203] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1664'.
[  198.043972][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.063370][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.078436][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.090374][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.103026][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.114543][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.126538][T10028] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  198.137372][T10028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  198.149593][T10028] batman_adv: batadv0: Interface activated: batadv_slave_1
[  198.182582][T10028] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  198.202091][T10028] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  198.211700][T10028] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  198.226817][T10028] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  198.433801][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  198.448816][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  198.468278][T10222] netlink: 'syz.1.1671': attribute type 1 has an invalid length.
[  198.499942][T10222] netlink: 168864 bytes leftover after parsing attributes in process `syz.1.1671'.
[  198.522343][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  198.534928][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  198.564327][ T5105] Bluetooth: hci2: command tx timeout
[  198.581678][T10224] dccp_invalid_packet: P.Data Offset(0) too small
[  199.140572][T10253] team_slave_1: mtu less than device minimum
[  199.200829][T10261] IPv6: NLM_F_CREATE should be specified when creating new route
[  199.425704][T10273] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16)
[  199.442731][T10273] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  199.687515][T10283] openvswitch: netlink: Missing key (keys=100000040, expected=2000)
[  200.643608][ T5105] Bluetooth: hci2: command tx timeout
[  201.161971][T10353] __nla_validate_parse: 9 callbacks suppressed
[  201.161996][T10353] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1706'.
[  201.199011][T10353] netlink: 'syz.3.1706': attribute type 1 has an invalid length.
[  201.254770][T10361] netlink: 'syz.1.1707': attribute type 2 has an invalid length.
[  201.415957][T10371] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1708'.
[  201.473463][T10374] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  201.543701][T10370] netlink: 'syz.3.1709': attribute type 2 has an invalid length.
[  201.580783][T10380] netlink: 'syz.0.1712': attribute type 2 has an invalid length.
[  201.662172][T10384] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1714'.
[  202.193156][T10416] EXT4-fs warning (device sda1): verify_group_input:137: Cannot add at group 0 (only 8 groups)
[  202.224165][T10421] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1726'.
[  202.505283][T10428] netlink: 'syz.2.1731': attribute type 298 has an invalid length.
[  202.780173][T10444] Can't find ip_set type hash:ip³'*ąt,ip
[  202.926688][T10456] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  203.075928][T10465] FAULT_INJECTION: forcing a failure.
[  203.075928][T10465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.089556][T10465] CPU: 1 PID: 10465 Comm: syz.4.1745 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  203.099759][T10465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  203.109844][T10465] Call Trace:
[  203.113138][T10465]  <TASK>
[  203.116084][T10465]  dump_stack_lvl+0x241/0x360
[  203.120782][T10465]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.125994][T10465]  ? __pfx__printk+0x10/0x10
[  203.130610][T10465]  ? __pfx_lock_release+0x10/0x10
[  203.135657][T10465]  should_fail_ex+0x3b0/0x4e0
[  203.140382][T10465]  _copy_from_iter+0x1f6/0x1960
[  203.145265][T10465]  ? __virt_addr_valid+0x183/0x520
[  203.150413][T10465]  ? __pfx_lock_release+0x10/0x10
[  203.155466][T10465]  ? __alloc_skb+0x28f/0x440
[  203.160074][T10465]  ? __pfx__copy_from_iter+0x10/0x10
[  203.165372][T10465]  ? __virt_addr_valid+0x183/0x520
[  203.170496][T10465]  ? __virt_addr_valid+0x183/0x520
[  203.175620][T10465]  ? __virt_addr_valid+0x44e/0x520
[  203.180752][T10465]  ? __check_object_size+0x49c/0x900
[  203.186059][T10465]  netlink_sendmsg+0x73d/0xcb0
[  203.190853][T10465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.196158][T10465]  ? __import_iovec+0x536/0x820
[  203.201019][T10465]  ? aa_sock_msg_perm+0x91/0x160
[  203.205986][T10465]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  203.211277][T10465]  ? security_socket_sendmsg+0x87/0xb0
[  203.216838][T10465]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.222245][T10465]  __sock_sendmsg+0x221/0x270
[  203.226960][T10465]  ____sys_sendmsg+0x525/0x7d0
[  203.231849][T10465]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.237173][T10465]  __sys_sendmsg+0x2b0/0x3a0
[  203.241785][T10465]  ? __pfx___sys_sendmsg+0x10/0x10
[  203.246912][T10465]  ? vfs_write+0x7c4/0xc90
[  203.251378][T10465]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  203.257717][T10465]  ? do_syscall_64+0x100/0x230
[  203.262518][T10465]  ? do_syscall_64+0xb6/0x230
[  203.267206][T10465]  do_syscall_64+0xf3/0x230
[  203.271745][T10465]  ? clear_bhb_loop+0x35/0x90
[  203.276441][T10465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.282345][T10465] RIP: 0033:0x7f7162175b99
[  203.286781][T10465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.306428][T10465] RSP: 002b:00007f7162fa8048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.314858][T10465] RAX: ffffffffffffffda RBX: 00007f7162303fa0 RCX: 00007f7162175b99
[  203.322839][T10465] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[  203.330841][T10465] RBP: 00007f7162fa80a0 R08: 0000000000000000 R09: 0000000000000000
[  203.338836][T10465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.346815][T10465] R13: 000000000000000b R14: 00007f7162303fa0 R15: 00007ffe80677c68
[  203.354815][T10465]  </TASK>
[  203.393675][T10466] x_tables: duplicate underflow at hook 1
[  203.413060][T10461] 8021q: adding VLAN 0 to HW filter on device batadv1
[  203.476355][T10461] batadv1: entered promiscuous mode
[  203.496791][T10461] team0: Port device batadv1 added
[  203.511266][T10475] lo: Caught tx_queue_len zero misconfig
[  203.624074][T10478] netlink: 208 bytes leftover after parsing attributes in process `syz.0.1748'.
[  203.729531][T10483] netlink: 232 bytes leftover after parsing attributes in process `syz.3.1749'.
[  203.759353][T10483] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1749'.
[  203.869661][T10493] batadv0: entered promiscuous mode
[  203.907124][T10493] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  203.945326][T10493] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  204.019702][T10506] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1759'.
[  204.043584][T10506] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1759'.
[  205.065269][T10548] vlan2: entered promiscuous mode
[  205.087316][T10548] team0: Device vlan2 is already an upper device of the team interface
[  205.168436][T10523] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  206.084622][T10598] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1788'.
[  206.429859][T10612] netlink: 'syz.2.1797': attribute type 3 has an invalid length.
[  206.598466][T10623] syz_tun: entered promiscuous mode
[  206.624342][T10623] macsec1: entered promiscuous mode
[  206.629800][T10623] macsec1: entered allmulticast mode
[  206.655919][T10623] syz_tun: entered allmulticast mode
[  206.677332][T10623] syz_tun: left allmulticast mode
[  206.682658][T10623] syz_tun: left promiscuous mode
[  206.883228][T10644] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1806'.
[  206.940664][T10644] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1806'.
[  206.955367][T10644] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1806'.
[  207.190889][T10668] FAULT_INJECTION: forcing a failure.
[  207.190889][T10668] name failslab, interval 1, probability 0, space 0, times 0
[  207.220649][T10668] CPU: 0 PID: 10668 Comm: syz.4.1813 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  207.230886][T10668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  207.241157][T10668] Call Trace:
[  207.244474][T10668]  <TASK>
[  207.247440][T10668]  dump_stack_lvl+0x241/0x360
[  207.252171][T10668]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.257416][T10668]  ? __pfx__printk+0x10/0x10
[  207.262065][T10668]  ? ref_tracker_alloc+0x332/0x490
[  207.267235][T10668]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  207.272761][T10668]  should_fail_ex+0x3b0/0x4e0
[  207.277503][T10668]  ? skb_clone+0x20c/0x390
[  207.279482][T10669] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  207.281951][T10668]  should_failslab+0x9/0x20
[  207.297026][T10668]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  207.302649][T10668]  skb_clone+0x20c/0x390
[  207.306963][T10668]  __netlink_deliver_tap+0x3cc/0x7c0
[  207.312331][T10668]  ? netlink_deliver_tap+0x2e/0x1b0
[  207.317583][T10668]  netlink_deliver_tap+0x19d/0x1b0
[  207.322751][T10668]  netlink_sendskb+0x68/0x140
[  207.327481][T10668]  netlink_unicast+0x39d/0x990
[  207.332291][T10668]  ? __asan_memcpy+0x40/0x70
[  207.337026][T10668]  ? __pfx_netlink_unicast+0x10/0x10
[  207.342371][T10668]  netlink_rcv_skb+0x262/0x430
[  207.347187][T10668]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.352317][T10668]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.357663][T10668]  ? __netlink_deliver_tap+0x77e/0x7c0
[  207.363192][T10668]  genl_rcv+0x28/0x40
[  207.365844][T10675] netlink: 'syz.0.1812': attribute type 11 has an invalid length.
[  207.367207][T10668]  netlink_unicast+0x7f0/0x990
[  207.367251][T10668]  ? __pfx_netlink_unicast+0x10/0x10
[  207.385139][T10668]  ? __virt_addr_valid+0x183/0x520
[  207.390312][T10668]  ? __check_object_size+0x49c/0x900
[  207.395665][T10668]  ? bpf_lsm_netlink_send+0x9/0x10
[  207.400837][T10668]  netlink_sendmsg+0x8e4/0xcb0
[  207.405666][T10668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.411005][T10668]  ? __import_iovec+0x536/0x820
[  207.415903][T10668]  ? aa_sock_msg_perm+0x91/0x160
[  207.420898][T10668]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  207.426229][T10668]  ? security_socket_sendmsg+0x87/0xb0
[  207.431735][T10668]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.437065][T10668]  __sock_sendmsg+0x221/0x270
[  207.441813][T10668]  ____sys_sendmsg+0x525/0x7d0
[  207.446645][T10668]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.452014][T10668]  __sys_sendmsg+0x2b0/0x3a0
[  207.456669][T10668]  ? __pfx___sys_sendmsg+0x10/0x10
[  207.461838][T10668]  ? vfs_write+0x7c4/0xc90
[  207.466370][T10668]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  207.472752][T10668]  ? do_syscall_64+0x100/0x230
[  207.477569][T10668]  ? do_syscall_64+0xb6/0x230
[  207.482357][T10668]  do_syscall_64+0xf3/0x230
[  207.487357][T10668]  ? clear_bhb_loop+0x35/0x90
[  207.492092][T10668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.498032][T10668] RIP: 0033:0x7f7162175b99
[  207.502493][T10668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.522151][T10668] RSP: 002b:00007f7162fa8048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.530636][T10668] RAX: ffffffffffffffda RBX: 00007f7162303fa0 RCX: 00007f7162175b99
[  207.538661][T10668] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[  207.546691][T10668] RBP: 00007f7162fa80a0 R08: 0000000000000000 R09: 0000000000000000
[  207.554711][T10668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.562731][T10668] R13: 000000000000000b R14: 00007f7162303fa0 R15: 00007ffe80677c68
[  207.570865][T10668]  </TASK>
[  208.098158][T10700] syz_tun: entered promiscuous mode
[  208.123691][T10700] macsec1: entered promiscuous mode
[  208.144136][T10700] macsec1: entered allmulticast mode
[  208.160847][T10700] syz_tun: entered allmulticast mode
[  208.260170][T10700] syz_tun: left allmulticast mode
[  208.284827][T10700] syz_tun: left promiscuous mode
[  209.645056][T10778] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1844'.
[  210.023074][T10799] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1851'.
[  210.044057][T10799] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1851'.
[  210.072599][T10799] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1851'.
[  210.353674][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1852'.
[  210.665661][T10826] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1858'.
[  211.014655][   T29] audit: type=1804 audit(1719737790.506:15): pid=10845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1862" name="/root/syzkaller.3Gf3mB/343/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[  211.084652][   T29] audit: type=1804 audit(1719737790.556:16): pid=10845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1862" name="/root/syzkaller.3Gf3mB/343/cgroup.controllers" dev="sda1" ino=1963 res=1 errno=0
[  211.478438][T10873] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1870'.
[  211.495484][T10872] xt_CT: You must specify a L4 protocol and not use inversions on it
[  211.809628][T10885] openvswitch: netlink: Unknown key attributes 1
[  211.917614][T10892] 8021q: adding VLAN 0 to HW filter on device batadv2
[  211.966641][T10892] batadv2: entered promiscuous mode
[  211.987781][   T29] audit: type=1804 audit(1719737791.486:17): pid=10891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1878" name="/root/syzkaller.yDEKai/221/cgroup.controllers" dev="sda1" ino=1974 res=1 errno=0
[  211.998393][T10892] team0: Port device batadv2 added
[  212.088420][T10900] __nla_validate_parse: 2 callbacks suppressed
[  212.088443][T10900] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1882'.
[  212.102833][   T29] audit: type=1804 audit(1719737791.546:18): pid=10891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1878" name="/root/syzkaller.yDEKai/221/cgroup.controllers" dev="sda1" ino=1974 res=1 errno=0
[  212.107193][T10897] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  212.174359][ T5102] Bluetooth: hci4: command 0x0406 tx timeout
[  212.263088][T10897] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1879'.
[  212.387371][T10911] netlink: 'syz.2.1885': attribute type 29 has an invalid length.
[  212.420960][T10911] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1885'.
[  212.451881][T10911] netlink: 'syz.2.1885': attribute type 29 has an invalid length.
[  212.495317][T10911] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1885'.
[  212.521586][T10918] netlink: 'syz.1.1887': attribute type 11 has an invalid length.
[  212.547754][T10925] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1886'.
[  213.003754][   T29] audit: type=1804 audit(1719737792.496:19): pid=10941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1894" name="/root/syzkaller.svvMRr/424/cgroup.controllers" dev="sda1" ino=1973 res=1 errno=0
[  213.081405][   T29] audit: type=1804 audit(1719737792.566:20): pid=10944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1894" name="/root/syzkaller.svvMRr/424/cgroup.controllers" dev="sda1" ino=1973 res=1 errno=0
[  213.342029][T10968] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1899'.
[  213.608990][   T29] audit: type=1800 audit(1719737793.106:21): pid=10978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1904" name="memory.events" dev="sda1" ino=1967 res=0 errno=0
[  213.692204][   T29] audit: type=1804 audit(1719737793.156:22): pid=10978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1904" name="/root/syzkaller.yDEKai/227/memory.events" dev="sda1" ino=1967 res=1 errno=0
[  213.735542][   T29] audit: type=1804 audit(1719737793.166:23): pid=10978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.1904" name="/root/syzkaller.yDEKai/227/memory.events" dev="sda1" ino=1967 res=1 errno=0
[  213.781664][T10995] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1904'.
[  214.092425][   T29] audit: type=1804 audit(1719737793.586:24): pid=11006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1910" name="/root/syzkaller.svvMRr/427/cgroup.controllers" dev="sda1" ino=1981 res=1 errno=0
[  214.092444][T11003] can: request_module (can-proto-0) failed.
[  214.276980][T11012] can: request_module (can-proto-0) failed.
[  214.431298][T11023] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1916'.
[  214.511795][T11032] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1918'.
[  214.529718][T11034] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1917'.
[  215.472445][T11073] openvswitch: netlink: Tunnel attr 6 has unexpected len 1 expected 0
[  215.906630][T11098] netlink: 'syz.4.1938': attribute type 7 has an invalid length.
[  215.934566][T11099] lo: entered allmulticast mode
[  216.209434][T11109] geneve2: entered promiscuous mode
[  216.217462][T11109] geneve2: entered allmulticast mode
[  217.258263][T11127] syz.4.1949 (11127) used greatest stack depth: 18168 bytes left
[  217.596901][T11175] __nla_validate_parse: 7 callbacks suppressed
[  217.596926][T11175] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1964'.
[  217.655396][   T29] kauditd_printk_skb: 6 callbacks suppressed
[  217.655417][   T29] audit: type=1804 audit(1719737797.156:31): pid=11167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1962" name="/root/syzkaller.8Chh7a/56/cgroup.controllers" dev="sda1" ino=1971 res=1 errno=0
[  217.685845][T11175] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  217.723200][T11175] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  217.732899][   T29] audit: type=1804 audit(1719737797.206:32): pid=11167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1962" name="/root/syzkaller.8Chh7a/56/cgroup.controllers" dev="sda1" ino=1971 res=1 errno=0
[  218.017515][T11197] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1972'.
[  218.131410][T11204] 
: renamed from bond0
[  218.399289][T11218] netlink: 'syz.4.1977': attribute type 10 has an invalid length.
[  218.439153][T11218] netlink: 212412 bytes leftover after parsing attributes in process `syz.4.1977'.
[  218.459953][T11218] openvswitch: netlink: Flow key attr not present in new flow.
[  218.572218][T11223] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1979'.
[  218.632192][T11223] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1979'.
[  218.648773][T11228] netlink: 209848 bytes leftover after parsing attributes in process `syz.0.1982'.
[  218.847649][T11238] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1981'.
[  218.867167][T11242] netlink: 312 bytes leftover after parsing attributes in process `syz.1.1985'.
[  219.106956][T11255] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1990'.
[  219.127947][T11252] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1987'.
[  219.276108][T11272] netlink: 'syz.1.1991': attribute type 11 has an invalid length.
[  219.531425][T11280] sctp: [Deprecated]: syz.2.1994 (pid 11280) Use of int in maxseg socket option.
[  219.531425][T11280] Use struct sctp_assoc_value instead
[  219.659510][T11286] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.671445][T11280] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  220.454067][T11332] sctp: [Deprecated]: syz.3.2010 (pid 11332) Use of int in maxseg socket option.
[  220.454067][T11332] Use struct sctp_assoc_value instead
[  220.610254][T11332] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  221.380311][T11373] netlink: 'syz.2.2023': attribute type 9 has an invalid length.
[  223.331827][T11381] sctp: [Deprecated]: syz.0.2025 (pid 11381) Use of int in maxseg socket option.
[  223.331827][T11381] Use struct sctp_assoc_value instead
[  223.490854][T11381] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  223.818096][T11413] __nla_validate_parse: 11 callbacks suppressed
[  223.818121][T11413] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2034'.
[  224.204992][T11434] netlink: 'syz.2.2041': attribute type 21 has an invalid length.
[  224.219628][T11434] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2041'.
[  224.561485][T11452] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2048'.
[  224.581407][T11452] netlink: 'syz.4.2048': attribute type 2 has an invalid length.
[  224.596938][T11452] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2048'.
[  224.639814][T11454] syz_tun: entered promiscuous mode
[  224.654600][T11454] macsec1: entered promiscuous mode
[  224.665699][T11454] macsec1: entered allmulticast mode
[  224.671354][T11454] syz_tun: entered allmulticast mode
[  224.736422][T11458] netlink: 'syz.0.2051': attribute type 1 has an invalid length.
[  224.908164][T11460] 8021q: adding VLAN 0 to HW filter on device batadv1
[  224.928235][T11460] batadv1: entered promiscuous mode
[  224.957067][T11460] batadv1: entered allmulticast mode
[  224.984186][T11460] team0: Port device batadv1 added
[  225.360023][   T51] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled
[  225.370445][   T51] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled
[  225.475024][   T29] audit: type=1804 audit(1719737804.966:33): pid=11499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2063" name="/root/syzkaller.8Chh7a/78/cgroup.controllers" dev="sda1" ino=1958 res=1 errno=0
[  225.612245][T11511] sctp: [Deprecated]: syz.0.2064 (pid 11511) Use of int in maxseg socket option.
[  225.612245][T11511] Use struct sctp_assoc_value instead
[  225.658958][T11513] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.731323][T11511] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  226.235718][T11544] bond0: option resend_igmp: invalid value (257)
[  226.242137][T11544] bond0: option resend_igmp: allowed values 0 - 255
[  226.344486][T11549] syz_tun: entered promiscuous mode
[  226.355021][T11549] macsec1: entered promiscuous mode
[  226.360513][T11549] macsec1: entered allmulticast mode
[  226.375438][T11549] syz_tun: entered allmulticast mode
[  226.442625][T11554] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.449746][T11557] sctp: [Deprecated]: syz.3.2080 (pid 11557) Use of int in maxseg socket option.
[  226.449746][T11557] Use struct sctp_assoc_value instead
[  226.505931][T11554] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.513333][T11554] bridge0: port 2(bridge_slave_1) entered forwarding state
[  226.589794][T11552] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  226.838508][ T2874] tipc: Subscription rejected, illegal request
[  226.842908][T11576] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  227.460306][T11611] sctp: [Deprecated]: syz.2.2098 (pid 11611) Use of int in maxseg socket option.
[  227.460306][T11611] Use struct sctp_assoc_value instead
[  227.502300][T11617] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2096'.
[  227.659202][T11611] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  227.841296][T11638] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2106'.
[  228.071629][T11654] netlink: 'syz.2.2112': attribute type 2 has an invalid length.
[  228.071677][T11645] vlan2: entered allmulticast mode
[  228.080503][T11654] netlink: 244 bytes leftover after parsing attributes in process `syz.2.2112'.
[  228.112758][T11645] mac80211_hwsim hwsim20 wlan1: entered allmulticast mode
[  228.171736][T11645] mac80211_hwsim hwsim20 wlan1: left allmulticast mode
[  228.245383][T11658] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2114'.
[  228.316957][T11667] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2115'.
[  228.441308][T11671] sctp: [Deprecated]: syz.0.2117 (pid 11671) Use of int in maxseg socket option.
[  228.441308][T11671] Use struct sctp_assoc_value instead
[  228.624248][T11671] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  228.688585][T11678] ipvlan0: entered promiscuous mode
[  228.710343][T11677] ipvlan0: left promiscuous mode
[  228.826554][T11683] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2121'.
[  228.872028][T11685] netlink: 'syz.3.2123': attribute type 2 has an invalid length.
[  229.107583][T11694] netlink: 'syz.3.2125': attribute type 30 has an invalid length.
[  229.577947][T11715] sctp: [Deprecated]: syz.3.2132 (pid 11715) Use of int in maxseg socket option.
[  229.577947][T11715] Use struct sctp_assoc_value instead
[  229.651258][T11720] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2133'.
[  229.663075][T11721] sctp: [Deprecated]: syz.4.2134 (pid 11721) Use of struct sctp_assoc_value in delayed_ack socket option.
[  229.663075][T11721] Use struct sctp_sack_info instead
[  229.681096][T11718] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2133'.
[  229.697665][T11721] sctp: [Deprecated]: syz.4.2134 (pid 11721) Use of struct sctp_assoc_value in delayed_ack socket option.
[  229.697665][T11721] Use struct sctp_sack_info instead
[  229.728216][T11715] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  229.922090][T11727] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2135'.
[  230.059978][T11731] netlink: 'syz.0.2137': attribute type 1 has an invalid length.
[  230.098794][T11731] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.2137'.
[  230.312454][T11740] macvlan3: entered allmulticast mode
[  230.380940][T11743] netlink: 'syz.4.2143': attribute type 1 has an invalid length.
[  230.406299][T11743] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2143'.
[  230.578317][T11752] sctp: [Deprecated]: syz.2.2146 (pid 11752) Use of int in maxseg socket option.
[  230.578317][T11752] Use struct sctp_assoc_value instead
[  230.749273][T11752] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  231.135652][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  231.148828][T11780] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2153'.
[  231.596228][T11791] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2158'.
[  231.820427][T11800] sctp: [Deprecated]: syz.2.2161 (pid 11800) Use of int in maxseg socket option.
[  231.820427][T11800] Use struct sctp_assoc_value instead
[  231.932871][T11800] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  232.501193][T11818] netlink: 284 bytes leftover after parsing attributes in process `syz.0.2168'.
[  232.712103][T11831] netlink: 'syz.2.2173': attribute type 1 has an invalid length.
[  232.904983][T11843] sctp: [Deprecated]: syz.0.2175 (pid 11843) Use of int in maxseg socket option.
[  232.904983][T11843] Use struct sctp_assoc_value instead
[  233.139976][T11843] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  233.206925][T11857] x_tables: duplicate underflow at hook 2
[  233.786798][T11877] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2187'.
[  233.860469][T11889] sctp: [Deprecated]: syz.1.2192 (pid 11889) Use of int in maxseg socket option.
[  233.860469][T11889] Use struct sctp_assoc_value instead
[  233.876642][T11887] netlink: 164 bytes leftover after parsing attributes in process `syz.2.2191'.
[  234.040254][T11899] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2193'.
[  234.045000][T11889] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  234.574652][T11924] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2201'.
[  234.621725][T11924] EXT4-fs warning (device sda1): ext4_group_extend:1869: need to use ext2online to resize further
[  234.625162][T11917] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2199'.
[  235.244258][T11944] sctp: [Deprecated]: syz.4.2207 (pid 11944) Use of int in maxseg socket option.
[  235.244258][T11944] Use struct sctp_assoc_value instead
[  235.339787][T11954] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2208'.
[  235.408126][T11943] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.467378][T11943] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.530687][T11944] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  235.665376][T11943] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.707106][T11943] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.812726][T11973] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2213'.
[  235.844594][T11972] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2215'.
[  235.891201][T11972] EXT4-fs warning (device sda1): ext4_group_extend:1869: need to use ext2online to resize further
[  235.927734][T11943] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  235.957599][T11943] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.982824][T11968] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2213'.
[  235.992625][T11968] bridge_slave_0: left allmulticast mode
[  236.006928][T11968] bridge_slave_0: left promiscuous mode
[  236.019535][T11968] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.718582][T11992] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2220'.
[  237.488332][T11979] ipvlan2: entered promiscuous mode
[  237.511241][T11979] ipvlan2: entered allmulticast mode
[  237.520022][T11979] bond0: entered allmulticast mode
[  237.544387][T11979] bond_slave_0: entered allmulticast mode
[  237.550246][T11979] bond_slave_1: entered allmulticast mode
[  237.559876][T11979] macvlan2: entered allmulticast mode
[  237.565746][T11979] batadv0: entered allmulticast mode
[  237.573035][T11979] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  237.823479][T12015] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2223'.
[  237.972372][T11943] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  238.014311][T11943] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.072103][T11943] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  238.092372][T11943] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.117300][T11943] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  238.127066][T11943] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.163807][T11943] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  238.187689][T11943] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.270473][T12030] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  238.389012][T12039] bridge_slave_1: left allmulticast mode
[  238.405918][T12039] bridge_slave_1: left promiscuous mode
[  238.418408][T12039] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.510375][T12039] bridge_slave_0: left allmulticast mode
[  238.525143][T12039] bridge_slave_0: left promiscuous mode
[  238.541658][T12039] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.846570][T12062] netlink: 'syz.4.2239': attribute type 4 has an invalid length.
[  239.356559][T12086] __nla_validate_parse: 6 callbacks suppressed
[  239.356582][T12086] netlink: 22 bytes leftover after parsing attributes in process `syz.0.2247'.
[  239.600654][T12088] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2249'.
[  240.154556][T12105] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2253'.
[  240.194773][T12105] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2253'.
[  240.415375][T12119] netlink: 'syz.4.2255': attribute type 30 has an invalid length.
[  240.515584][T12128] netlink: 124 bytes leftover after parsing attributes in process `syz.3.2259'.
[  240.537449][T12130] netlink: 'syz.2.2260': attribute type 1 has an invalid length.
[  240.699895][T12130] bond1: (slave gretap1): making interface the new active one
[  240.709316][T12130] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  240.890828][T12145] sctp: [Deprecated]: syz.0.2265 (pid 12145) Use of int in maxseg socket option.
[  240.890828][T12145] Use struct sctp_assoc_value instead
[  241.070515][T12145] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  241.628586][T12182] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2274'.
[  241.833674][T12194] netlink: 'syz.3.2276': attribute type 1 has an invalid length.
[  241.875860][T12194] NCSI netlink: No device for ifindex 0
[  242.332502][T12216] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2281'.
[  242.729864][T12236] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2289'.
[  242.739501][T12236] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2289'.
[  242.750861][T12236] netlink: 'syz.3.2289': attribute type 5 has an invalid length.
[  242.781273][T12236] netlink: 43 bytes leftover after parsing attributes in process `syz.3.2289'.
[  242.800982][T12233] geneve3: entered promiscuous mode
[  242.812116][T12233] geneve3: entered allmulticast mode
[  243.066627][T12233] xt_CT: You must specify a L4 protocol and not use inversions on it
[  244.719305][T12328] geneve2: entered promiscuous mode
[  244.729172][T12328] geneve2: entered allmulticast mode
[  245.064498][T12333] xt_CT: You must specify a L4 protocol and not use inversions on it
[  245.314657][T12336] __nla_validate_parse: 4 callbacks suppressed
[  245.314684][T12336] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2312'.
[  245.360678][T12336] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2312'.
[  245.369020][T12338] netlink: 'syz.3.2313': attribute type 1 has an invalid length.
[  245.400606][T12338] netlink: 9344 bytes leftover after parsing attributes in process `syz.3.2313'.
[  245.421277][T12338] netlink: 'syz.3.2313': attribute type 1 has an invalid length.
[  245.645857][T12312] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2307'.
[  245.909980][T12358] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2318'.
[  245.944994][T12358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2318'.
[  245.964979][T12358] (unnamed net_device) (uninitialized): down delay (37750) is not a multiple of miimon (7), value rounded to 37744 ms
[  246.042318][T12359] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2318'.
[  246.064708][T12361] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2319'.
[  246.415794][T12364] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2320'.
[  246.738599][T12381] netlink: 'syz.0.2326': attribute type 1 has an invalid length.
[  246.772248][T12381] netlink: 9348 bytes leftover after parsing attributes in process `syz.0.2326'.
[  246.800120][T12381] netlink: 'syz.0.2326': attribute type 1 has an invalid length.
[  247.162251][T12394] geneve2: entered promiscuous mode
[  247.180478][T12394] geneve2: entered allmulticast mode
[  247.258681][T12402] netlink: 'syz.2.2331': attribute type 1 has an invalid length.
[  247.304192][T12402] netlink: 'syz.2.2331': attribute type 2 has an invalid length.
[  247.370933][T12399] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  247.423471][T12402] tipc: Enabling of bearer <eth:bridge0> rejected, failed to enable media
[  247.547953][T12422] xt_CT: You must specify a L4 protocol and not use inversions on it
[  249.114402][   T51] ==================================================================
[  249.122533][   T51] BUG: KASAN: slab-use-after-free in l2tp_tunnel_del_work+0xe5/0x330
[  249.130642][   T51] Read of size 8 at addr ffff88802a3448b8 by task kworker/u8:3/51
[  249.138477][   T51] 
[  249.140832][   T51] CPU: 0 PID: 51 Comm: kworker/u8:3 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  249.150942][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  249.161484][   T51] Workqueue: l2tp l2tp_tunnel_del_work
[  249.166996][   T51] Call Trace:
[  249.170317][   T51]  <TASK>
[  249.173282][   T51]  dump_stack_lvl+0x241/0x360
[  249.178011][   T51]  ? __pfx_dump_stack_lvl+0x10/0x10
[  249.183253][   T51]  ? __pfx__printk+0x10/0x10
[  249.187898][   T51]  ? _printk+0xd5/0x120
[  249.192098][   T51]  ? __virt_addr_valid+0x183/0x520
[  249.197238][   T51]  ? __virt_addr_valid+0x183/0x520
[  249.202374][   T51]  print_report+0x169/0x550
[  249.206912][   T51]  ? __virt_addr_valid+0x183/0x520
[  249.212064][   T51]  ? __virt_addr_valid+0x183/0x520
[  249.217216][   T51]  ? __virt_addr_valid+0x44e/0x520
[  249.222343][   T51]  ? __phys_addr+0xba/0x170
[  249.226877][   T51]  ? l2tp_tunnel_del_work+0xe5/0x330
[  249.232187][   T51]  kasan_report+0x143/0x180
[  249.236708][   T51]  ? l2tp_tunnel_del_work+0xe5/0x330
[  249.242004][   T51]  l2tp_tunnel_del_work+0xe5/0x330
[  249.247126][   T51]  ? process_scheduled_works+0x945/0x1830
[  249.252852][   T51]  process_scheduled_works+0xa2c/0x1830
[  249.258424][   T51]  ? __pfx_process_scheduled_works+0x10/0x10
[  249.264415][   T51]  ? assign_work+0x364/0x3d0
[  249.269011][   T51]  worker_thread+0x86d/0xd50
[  249.273629][   T51]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  249.279567][   T51]  ? __kthread_parkme+0x169/0x1d0
[  249.284617][   T51]  ? __pfx_worker_thread+0x10/0x10
[  249.289744][   T51]  kthread+0x2f0/0x390
[  249.293831][   T51]  ? __pfx_worker_thread+0x10/0x10
[  249.298979][   T51]  ? __pfx_kthread+0x10/0x10
[  249.303596][   T51]  ret_from_fork+0x4b/0x80
[  249.308034][   T51]  ? __pfx_kthread+0x10/0x10
[  249.312634][   T51]  ret_from_fork_asm+0x1a/0x30
[  249.317523][   T51]  </TASK>
[  249.320550][   T51] 
[  249.322874][   T51] Allocated by task 12451:
[  249.327307][   T51]  kasan_save_track+0x3f/0x80
[  249.332019][   T51]  __kasan_kmalloc+0x98/0xb0
[  249.336634][   T51]  __kmalloc_noprof+0x1f9/0x400
[  249.341493][   T51]  l2tp_session_create+0x3b/0xc20
[  249.346533][   T51]  pppol2tp_connect+0xca3/0x17a0
[  249.351474][   T51]  __sys_connect+0x2df/0x310
[  249.356079][   T51]  __x64_sys_connect+0x7a/0x90
[  249.360855][   T51]  do_syscall_64+0xf3/0x230
[  249.365362][   T51]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.371260][   T51] 
[  249.373595][   T51] Freed by task 12463:
[  249.377670][   T51]  kasan_save_track+0x3f/0x80
[  249.382355][   T51]  kasan_save_free_info+0x40/0x50
[  249.387381][   T51]  poison_slab_object+0xe0/0x150
[  249.392323][   T51]  __kasan_slab_free+0x37/0x60
[  249.397092][   T51]  kfree+0x149/0x360
[  249.401013][   T51]  __sk_destruct+0x58/0x5f0
[  249.405644][   T51]  rcu_core+0xafd/0x1830
[  249.409918][   T51]  handle_softirqs+0x2c4/0x970
[  249.414698][   T51]  __irq_exit_rcu+0xf4/0x1c0
[  249.419320][   T51]  irq_exit_rcu+0x9/0x30
[  249.423570][   T51]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  249.429229][   T51]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  249.435220][   T51] 
[  249.437543][   T51] Last potentially related work creation:
[  249.443251][   T51]  kasan_save_stack+0x3f/0x60
[  249.447945][   T51]  __kasan_record_aux_stack+0xac/0xc0
[  249.453317][   T51]  call_rcu+0x167/0xa70
[  249.457479][   T51]  pppol2tp_release+0x24b/0x350
[  249.462363][   T51]  sock_close+0xbc/0x240
[  249.466612][   T51]  __fput+0x406/0x8b0
[  249.470617][   T51]  task_work_run+0x24f/0x310
[  249.475237][   T51]  syscall_exit_to_user_mode+0x168/0x370
[  249.480897][   T51]  do_syscall_64+0x100/0x230
[  249.485495][   T51]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.491402][   T51] 
[  249.493730][   T51] The buggy address belongs to the object at ffff88802a344800
[  249.493730][   T51]  which belongs to the cache kmalloc-1k of size 1024
[  249.508237][   T51] The buggy address is located 184 bytes inside of
[  249.508237][   T51]  freed 1024-byte region [ffff88802a344800, ffff88802a344c00)
[  249.522132][   T51] 
[  249.524467][   T51] The buggy address belongs to the physical page:
[  249.530895][   T51] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2a340
[  249.539669][   T51] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  249.548177][   T51] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  249.555724][   T51] page_type: 0xffffefff(slab)
[  249.560406][   T51] raw: 00fff00000000040 ffff888015041dc0 ffffea0000ac3c00 dead000000000002
[  249.568996][   T51] raw: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[  249.577604][   T51] head: 00fff00000000040 ffff888015041dc0 ffffea0000ac3c00 dead000000000002
[  249.586292][   T51] head: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[  249.594972][   T51] head: 00fff00000000003 ffffea0000a8d001 ffffffffffffffff 0000000000000000
[  249.603669][   T51] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[  249.612418][   T51] page dumped because: kasan: bad access detected
[  249.618841][   T51] page_owner tracks the page as allocated
[  249.624558][   T51] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5094, tgid 5094 (syz-executor), ts 71913907470, free_ts 71762636349
[  249.645925][   T51]  post_alloc_hook+0x1f3/0x230
[  249.650705][   T51]  get_page_from_freelist+0x2e4c/0x2f10
[  249.656255][   T51]  __alloc_pages_noprof+0x256/0x6c0
[  249.661463][   T51]  alloc_slab_page+0x5f/0x120
[  249.666150][   T51]  allocate_slab+0x5a/0x2f0
[  249.670666][   T51]  ___slab_alloc+0xcd1/0x14b0
[  249.675355][   T51]  __slab_alloc+0x58/0xa0
[  249.679691][   T51]  __kmalloc_node_noprof+0x286/0x440
[  249.684975][   T51]  qdisc_alloc+0x97/0xa80
[  249.689312][   T51]  qdisc_create_dflt+0x62/0x4b0
[  249.694173][   T51]  dev_activate+0x3c0/0x1240
[  249.698873][   T51]  __dev_open+0x352/0x450
[  249.703208][   T51]  __dev_change_flags+0x1e2/0x6f0
[  249.708236][   T51]  dev_change_flags+0x8b/0x1a0
[  249.713011][   T51]  do_setlink+0xccd/0x41f0
[  249.717429][   T51]  rtnl_newlink+0x180d/0x20a0
[  249.722115][   T51] page last free pid 5103 tgid 5103 stack trace:
[  249.728441][   T51]  free_unref_page+0xd22/0xea0
[  249.733218][   T51]  __slab_free+0x31b/0x3d0
[  249.737647][   T51]  qlist_free_all+0x9e/0x140
[  249.742240][   T51]  kasan_quarantine_reduce+0x14f/0x170
[  249.747705][   T51]  __kasan_slab_alloc+0x23/0x80
[  249.752560][   T51]  kmem_cache_alloc_node_noprof+0x16b/0x320
[  249.758466][   T51]  __alloc_skb+0x1c3/0x440
[  249.762898][   T51]  netlink_sendmsg+0x638/0xcb0
[  249.767669][   T51]  __sock_sendmsg+0x221/0x270
[  249.772349][   T51]  __sys_sendto+0x3a4/0x4f0
[  249.776950][   T51]  __x64_sys_sendto+0xde/0x100
[  249.781722][   T51]  do_syscall_64+0xf3/0x230
[  249.786227][   T51]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.792133][   T51] 
[  249.794458][   T51] Memory state around the buggy address:
[  249.800084][   T51]  ffff88802a344780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  249.808148][   T51]  ffff88802a344800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  249.816213][   T51] >ffff88802a344880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  249.824281][   T51]                                         ^
[  249.830172][   T51]  ffff88802a344900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  249.838233][   T51]  ffff88802a344980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  249.846292][   T51] ==================================================================
[  249.854445][   T51] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  249.861669][   T51] CPU: 0 PID: 51 Comm: kworker/u8:3 Not tainted 6.10.0-rc5-syzkaller-01115-g30972a4ea092 #0
[  249.871770][   T51] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  249.881858][   T51] Workqueue: l2tp l2tp_tunnel_del_work
[  249.887360][   T51] Call Trace:
[  249.890661][   T51]  <TASK>
[  249.893632][   T51]  dump_stack_lvl+0x241/0x360
[  249.898345][   T51]  ? __pfx_dump_stack_lvl+0x10/0x10
[  249.903575][   T51]  ? __pfx__printk+0x10/0x10
[  249.908211][   T51]  ? vscnprintf+0x5d/0x90
[  249.912582][   T51]  panic+0x349/0x860
[  249.916540][   T51]  ? check_panic_on_warn+0x21/0xb0
[  249.921693][   T51]  ? __pfx_panic+0x10/0x10
[  249.926163][   T51]  ? mark_lock+0x9a/0x350
[  249.930584][   T51]  ? _raw_spin_unlock_irqrestore+0xd8/0x140
[  249.936526][   T51]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  249.942466][   T51]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  249.948902][   T51]  ? print_report+0x502/0x550
[  249.953638][   T51]  check_panic_on_warn+0x86/0xb0
[  249.958627][   T51]  ? l2tp_tunnel_del_work+0xe5/0x330
[  249.963955][   T51]  end_report+0x77/0x160
[  249.968244][   T51]  kasan_report+0x154/0x180
[  249.972792][   T51]  ? l2tp_tunnel_del_work+0xe5/0x330
[  249.978108][   T51]  l2tp_tunnel_del_work+0xe5/0x330
[  249.983236][   T51]  ? process_scheduled_works+0x945/0x1830
[  249.988968][   T51]  process_scheduled_works+0xa2c/0x1830
[  249.994537][   T51]  ? __pfx_process_scheduled_works+0x10/0x10
[  250.000524][   T51]  ? assign_work+0x364/0x3d0
[  250.005128][   T51]  worker_thread+0x86d/0xd50
[  250.009729][   T51]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  250.015650][   T51]  ? __kthread_parkme+0x169/0x1d0
[  250.020706][   T51]  ? __pfx_worker_thread+0x10/0x10
[  250.025835][   T51]  kthread+0x2f0/0x390
[  250.029938][   T51]  ? __pfx_worker_thread+0x10/0x10
[  250.035062][   T51]  ? __pfx_kthread+0x10/0x10
[  250.039664][   T51]  ret_from_fork+0x4b/0x80
[  250.044089][   T51]  ? __pfx_kthread+0x10/0x10
[  250.048688][   T51]  ret_from_fork_asm+0x1a/0x30
[  250.053475][   T51]  </TASK>
[  250.056782][   T51] Kernel Offset: disabled
[  250.061110][   T51] Rebooting in 86400 seconds..