last executing test programs: 1m38.129963231s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 1m14.704325095s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 1m1.719849357s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 47.582796375s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 33.081202246s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 14.867478162s ago: executing program 4 (id=944): sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f00000000c0)="2488a8001e005f0214fffffffffffff8070000001d00000000000000050009000d000000", 0x24) 4.864841276s ago: executing program 3 (id=2166): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'macsec0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000680)=ANY=[@ANYBLOB="500000001000010400"/20, @ANYRES32=r3, @ANYBLOB="0000010000000000140012800b0001006d61637365630000040002801c001a801800028014000180080016"], 0x50}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000180)=@newpolicy={0xb8, 0x13, 0x1, 0x0, 0x0, {{@in=@remote, @in6=@remote, 0x0, 0x0, 0x0, 0xfffe, 0xa, 0xa0, 0x0, 0x0, r3}, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0) socket$inet6(0xa, 0x0, 0x0) r4 = socket$pppl2tp(0x18, 0x1, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x13, r4, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x5, 0x6, 0x203, 0x40, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xf, &(0x7f0000000000)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r7}}}, &(0x7f0000000200)='GPL\x00', 0x4, 0xff9, &(0x7f0000002300)=""/4089, 0x0, 0x0, '\x00', r6}, 0x90) 4.648194798s ago: executing program 3 (id=2167): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x248000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x28, r1, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @val={0xc, 0x99, {0xf931, 0x62}}}}, ["", "", "", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x881}, 0x2000) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000000)) sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x40, 0x37, 0x107, 0x70bd28, 0x0, {0x0, 0x7c}, [@nested={0x18, 0x149, 0x0, 0x1, [@typed={0x14, 0x0, 0x0, 0x0, @ipv6=@empty}]}, @typed={0x6, 0x73, 0x0, 0x0, @str='$\x00'}, @typed={0xc, 0x100, 0x0, 0x0, @u64=0x2000000040000}]}, 0x40}}, 0x0) 4.573449478s ago: executing program 3 (id=2168): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000e6ff00000000000a7c000000060a0104000000000000000002000000500004804c0001800c00010062697477697365003c0002800800034000000004080001400000001e1c00bc6e73518904fe427a5dc0f345986d48acbd9420bd9b9f0000000800024000000016040005800900010073797a30000000000900020073797a3200000000"], 0xa4}}, 0x0) (fail_nth: 2) 4.128797584s ago: executing program 3 (id=2170): r0 = socket$kcm(0x11, 0x200000000000002, 0x300) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cgroup.controllers\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f0000000100)=r1, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r2, 0x18000000000002a0, 0x24, 0x0, &(0x7f0000000640)="b9ff03076808268cb89e14f089061be0ffff00fe4000632f77fbac141416e00000206207", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.937081472s ago: executing program 3 (id=2173): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x2006}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008180000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r3, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0) listen(r3, 0x20000005) r4 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c) r5 = accept4(r3, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000002e00)={{}, 0x0, &(0x7f0000002dc0)='%pS \x00'}, 0x20) r6 = socket$inet_smc(0x2b, 0x1, 0x0) close(r6) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r4, 0x89f0, &(0x7f0000002000)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route(r5, &(0x7f0000002d40)={0x0, 0x0, &(0x7f0000002d00)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c000000160000022abd7000000000000a1f10c8", @ANYRES32=0x0, @ANYBLOB="140002300000000000000000759622d5000003019d5c6cac7e6f9c4d7f4244af77a4cc733c1ff17f5c45947b01eed2c9ad0be3c2ed93069845137517e6cabbb339cf9d3f984d2c6b44323a3eaacaef9d"], 0x2c}, 0x1, 0x0, 0x0, 0x4804}, 0x404c044) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0) getsockname$packet(r5, &(0x7f0000002500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x0) sendmmsg$inet(r4, &(0x7f0000002ac0)=[{{&(0x7f0000000000)={0x2, 0x4e21, @remote}, 0x10, &(0x7f0000001580)=[{0x0}, {&(0x7f0000001200)}, {0x0}], 0x3}}, {{&(0x7f0000001800)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000001a00)=[{&(0x7f0000001840)="76c8fe2761aff797bfb24279d4d1f546ba93c50370588fdfa4cd20f8e8709fc3dff8e20813a24ca629ccf110896086d16536e97f1bbbd66e528e77af545445a2377c43cc798dd9d450ee7c", 0x4b}, {&(0x7f0000001940)="0e969eda89", 0x5}], 0x2}}, {{0x0, 0x0, 0x0}}, {{&(0x7f0000002600)={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000002a00)=[{&(0x7f0000002640)="bbca676cc5b121ee6e5cc6a73a928cbf8ce1cdd78d42748808f416", 0x1b}, {&(0x7f0000002680)="dc8c9398d8dc15058be3d377c8906aa93306e659f290f09a39826d0f0d90b4f1e9c092fee1f7ecc5fcd95235bf9d7d86f81cbbc3b3cd5152f4ce1babf788a1548a2cba0aa42b90f822cc6bcbda3a27c7312358694e591809b16c02c672c727b8316985035c6af1ab5fa7036e5eac669aee115debad0a06f708227ed5c66cf6e34fec7f89de1636d249", 0x89}, {&(0x7f0000002740)="3f623826e88be07003354d09d1cb0968b2efdaab5d91de37070f5da804c077b3fbef4cd4cd564dae57f69de576f22d43420a78ce7d8e6f7aae851c45efaac0a035a9db8872b80443798465967928b9fdb45cd713d027b64b03149f", 0x5b}], 0x3, &(0x7f0000002a80)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x12df}}], 0x18}}], 0x4, 0x0) sendmmsg$inet6(r5, &(0x7f00000001c0)=[{{0x0, 0x9b4c, 0x0}}], 0x500, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000240)={'wg0\x00', 0x0}) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) sendmsg$nl_route(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe1f}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r10}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x4c}}, 0x0) 3.392957665s ago: executing program 3 (id=2179): r0 = socket$inet(0x2, 0x2, 0x1) sendmmsg$inet(r0, &(0x7f0000000540)=[{{0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="08001497733f5d3e", 0x6c6d}], 0x5}}, {{0x0, 0x0, &(0x7f0000000440), 0x56}}], 0x2, 0x2004000) 2.604135567s ago: executing program 1 (id=2184): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000002440)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000a40)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c2337", 0x89}, {&(0x7f0000000d40)="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", 0x184}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd6c8461de7afec966f9c023ffe15c3c1caec8ff3ef304ed0ffedd061941d9d022b25a4b9632856295fee3a314f6c196", 0xf8}], 0x3}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000340)="63c3b174ab06077f6ee67ac1310d86586b13d2c9e203a9da866b81e20e9fe5c43219396d489c1459ce9cd14fa3b43a0b9b6004118a35444790d70af5c873561ac1ad55af7f9f8551103f694e2a22346ca675898ce02a665ecc07e153e3949b954c1d74b105c14411925a8ae24778d4111d2d9743b682d653bcf35d53fd33489a3a405042c0de5ec2cb4b991a31e1d76db8609d0bf66d8d723a6c28a50d42ab169de383345fbee97bea33e8bfb5d705852d360ab703fc956c1ea86157aedcff1782c784e074", 0xc5}, {&(0x7f0000000440)="03d54d8499", 0x5}, {&(0x7f0000000b80)="2a3ed204bd855fb67f6b94cfb2680c7352d91e366b2c80b512fcee9c7a398e630176e8b7f4d3bc19723cd52fbf9fb301e52334b5f8833cb7a1a94d63db20644e546b7511fb8fdf55754accdc7185c2b2cb384737f100d3aeaf5529ad", 0x5c}], 0x3}}], 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf74", 0x49, 0x11, 0x0, 0x0) 2.027788638s ago: executing program 0 (id=2190): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000002440)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000a40)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c2337", 0x89}, {&(0x7f0000000d40)="316f825a3d29f96a2093a917017b4cd300000000bee70035ed313e19d6dd1fb41a20baf7f7343067fd40cdd4b16742e94b62f4eb1c5d9faab7f3028100ae8180db94b9de7456ae62b0e6fe7766a0842912179154a96fa88e161d4adf77a486e10d1d50e44155790748b7226fa4bb5d77e85729336ba6369a4c33ac53b45d46a92db9fda99af4429dc23db6a1706328df4e75eb173a81bd4af8b89d1870c9b2382a759d67b1cd03b076bf90286b63eb7aaea4cbb1280955e9a59cd8e5e8ac68c27da3d542aece1ba7920e8f39b270458224e74afa52db1ac07f7cce47d5e8ce5b2806ff7171c64a689a0ba35e934506a46a10b9a579dc43630831e2c5400853b58e020c9cb65e44d4957b00ed35a858d44b25d5b8dad1be420467333d9ce17dddc425dad69c4c9395a5c170170a4fa63091786e2a563e3d5982a73c15edf854046e1a33b2728e74c856a58ba74c80f4f4166ac51d720f507c2c205ef5a04370c77928dfde47e15d533060084d4fc271eab837367369218b1bfc59752696396f49c2f58268", 0x184}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e214", 0x7c}], 0x3}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000340)="63c3b174ab06077f6ee67ac1310d86586b13d2c9e203a9da866b81e20e9fe5c43219396d489c1459ce9cd14fa3b43a0b9b6004118a35444790d70af5c873561ac1ad55af7f9f8551103f694e2a22346ca675898ce02a665ecc07e153e3949b954c1d74b105c14411925a8ae24778d4111d2d9743b682d653bcf35d53fd33489a3a405042c0de5ec2cb4b991a31e1d76db8609d0bf66d8d723a6c28a50d42ab169de383345fbee97bea33e8bfb5d705852d360ab703fc956c1ea86157aedcff1782c784e074", 0xc5}, {&(0x7f0000000440)="03d54d8499", 0x5}, {&(0x7f0000000b80)="2a3ed204bd855fb67f6b94cfb2680c7352d91e366b2c80b512fcee9c7a398e630176e8b7f4d3bc19723cd52fbf9fb301e52334b5f8833cb7a1a94d63db20644e546b7511fb8fdf55754accdc7185c2b2cb384737f100d3aeaf5529", 0x5b}], 0x3}}], 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 1.911899899s ago: executing program 0 (id=2191): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x528, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_flow={{0x9}, {0x4f0, 0x2, [@TCA_FLOW_KEYS={0x8}, @TCA_FLOW_ACT={0x2c8, 0x9, 0x0, 0x1, [@m_tunnel_key={0x258, 0x0, 0x0, 0x0, {{0xf}, {0xc, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}]}, {0x21d, 0x6, "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"}, {0xc}, {0xc}}}, @m_skbedit={0x6c, 0x0, 0x0, 0x0, {{0xc}, {0xc, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8}]}, {0x35, 0x6, "95dcc74d4393affe2ea7d03dde2ad7cdbb3ce93cf19573a4bd0ca7fc52668cfc303fdb063837788180f6420bfa78e12144"}, {0xc}, {0xc}}}]}, @TCA_FLOW_XOR={0x8}, @TCA_FLOW_EMATCHES={0x214, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0xe0, 0x2, 0x0, 0x1, [@TCF_EM_META={0xc8, 0x1, 0x0, 0x0, {{0xfff8, 0x4, 0x6}, [@TCA_EM_META_RVALUE={0x30, 0x3, [@TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="f1b196f39096", @TCF_META_TYPE_VAR="981bb855bb5b0505", @TCF_META_TYPE_INT=0x2, @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="04d20cb35b81", @TCF_META_TYPE_INT=0x1, @TCF_META_TYPE_VAR="1a82d21144e31e26"]}, @TCA_EM_META_HDR={0xc, 0x1, {{0x8, 0x12, 0x71b2dda8dbb869ed}, {0x4, 0x0, 0x2}}}, @TCA_EM_META_RVALUE={0xc, 0x3, [@TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_LVALUE={0x1b, 0x2, [@TCF_META_TYPE_VAR="fed3c03f48d7574fdd", @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_INT=0x4, @TCF_META_TYPE_VAR='<]', @TCF_META_TYPE_VAR, @TCF_META_TYPE_VAR, @TCF_META_TYPE_INT=0x4]}, @TCA_EM_META_LVALUE={0x25, 0x2, [@TCF_META_TYPE_VAR="3ee6421bb495ad6450", @TCF_META_TYPE_VAR="12616f02f18b", @TCF_META_TYPE_VAR="6422706a5f85", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="00a6796406a252ed"]}, @TCA_EM_META_RVALUE={0x8, 0x3, [@TCF_META_TYPE_INT]}, @TCA_EM_META_RVALUE={0x1c, 0x3, [@TCF_META_TYPE_VAR="4d3ee275de", @TCF_META_TYPE_VAR="70b031c9204e", @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="af02f0b28dc70f1872"]}, @TCA_EM_META_RVALUE={0xa, 0x3, [@TCF_META_TYPE_VAR="9ecfed7dd7b0"]}]}}, @TCF_EM_CANID={0x14}]}, @TCA_EMATCH_TREE_LIST={0x128, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18}, @TCF_EM_NBYTE={0x14, 0x0, 0x0, 0x0, {{}, {0x0, 0x1, 0x0, "bd"}}}, @TCF_EM_IPSET={0x10}, @TCF_EM_IPT={0xd0, 0x0, 0x0, 0x0, {{}, [@TCA_EM_IPT_MATCH_REVISION={0x5}, @TCA_EM_IPT_HOOK={0x8}, @TCA_EM_IPT_NFPROTO={0x5}, @TCA_EM_IPT_MATCH_NAME={0xb}, @TCA_EM_IPT_MATCH_REVISION={0x5}, @TCA_EM_IPT_MATCH_DATA={0x5b, 0x5, "90c7adf778a4d9cf5d4b18fffd1012e51256f3cf177dbd19ef4d6b0f5b8c24468833ef68ef1560d1e3ef2ac0684862192e1b74ac5eb3882d4d63aadb44e088f9b81e9a5c24d475b98eb55aa89e7473f34bef10af73035c"}, @TCA_EM_IPT_MATCH_DATA={0x2d, 0x5, "559e0413491203c8d168d3f5b0b51ff6fa2209bfe93462b145f2295018c110d11bdd02ffa8a4b7db01"}, @TCA_EM_IPT_MATCH_NAME={0xb}]}}, @TCF_EM_CMP={0x18}]}]}]}}]}, 0x528}}, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) socket$nl_netfilter(0x10, 0x3, 0xc) socket$caif_seqpacket(0x25, 0x5, 0x0) socket$inet6_sctp(0xa, 0x5, 0x84) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0xfff, 0x79d4cf2713b9611a, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x80000000, 0x2}, 0x7c) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffff9, '\x00', 0x0, 0xffffffffffffffff, 0x1}, 0x48) socket$nl_generic(0x10, 0x3, 0x10) socket$kcm(0x10, 0x2, 0x10) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f0000000300)="d8", 0x1, 0x0, &(0x7f0000000340)={0xa, 0x0, 0x0, @private0}, 0x1c) socket$inet_udp(0x2, 0x2, 0x0) listen(r1, 0xfff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000006b113a00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) r2 = accept(r1, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="1f003300d000000008021100000108021100000050505050505000001502", @ANYRES8=r3], 0x3c}}, 0x0) socket(0x10, 0x803, 0x0) socket(0x10, 0x803, 0x0) 1.713295667s ago: executing program 2 (id=2193): r0 = socket$kcm(0x11, 0x200000000000002, 0x300) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cgroup.controllers\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f0000000100)=r1, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r2, 0x18000000000002a0, 0x25, 0x0, &(0x7f0000000640)="b9ff03076808268cb89e14f089061be0ffff00fe4000632f77fbac141416e000002062079f", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.658924717s ago: executing program 2 (id=2194): r0 = socket$nl_crypto(0x10, 0x3, 0x15) r1 = socket(0x2, 0x2, 0x1) bind$unix(r1, &(0x7f0000000080)=@abs={0x1}, 0x6e) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)) ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0x941c, 0x0) syz_emit_ethernet(0x7e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000088a8000081"], 0x0) 1.577011009s ago: executing program 1 (id=2195): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x1400, &(0x7f0000000180)={&(0x7f0000000c00)={{0x14}, [@NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x201}], {0x14}}, 0x3c}}, 0x0) 1.576694474s ago: executing program 2 (id=2196): r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'michael_mic-generic\x00'}, 0x58) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'tunl0\x00'}) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="4dc07f947163300c", 0x8) r2 = accept4(r1, 0x0, 0x0, 0x0) sendmsg$unix(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000540)="19", 0x1}, {&(0x7f0000000700)="8f", 0xfffffffe}], 0x2}, 0x0) 1.414078216s ago: executing program 1 (id=2197): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000b00)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x20, 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.265913789s ago: executing program 1 (id=2198): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000003c0)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x3, 0x18, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020752500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000000)="b9ff03076044238c9e9e15f088a8", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) r3 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000080)={'vxcan1\x00', 0x0}) connect$can_bcm(r3, &(0x7f0000000300)={0x1d, r4}, 0x10) sendmsg$can_bcm(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000480)=ANY=[], 0x48}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x2060, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3c00000010000104000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="000000000000000014001280090001007665746800000000040002800800200001"], 0x3c}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0) sendmsg$can_bcm(r3, &(0x7f00000001c0)={&(0x7f0000000040), 0x10, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="0500"/14, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) recvfrom$inet6(r7, &(0x7f0000000000)=""/14, 0xe, 0x10100, &(0x7f0000000140)={0xa, 0x4e23, 0x2, @dev={0xfe, 0x80, '\x00', 0x23}, 0x9}, 0x1c) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r9 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_FLUSH(r9, 0x29, 0xd1, &(0x7f0000000000), 0x4) r10 = socket$rxrpc(0x21, 0x2, 0x2) bind$rxrpc(r10, &(0x7f0000000140)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x0, @local}}, 0x24) sendmsg$NL80211_CMD_PEER_MEASUREMENT_START(r9, &(0x7f00000002c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000280)={&(0x7f0000000c00)={0x378, 0x0, 0x814, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x400, 0x21}}}}, [@NL80211_PMSR_ATTR_PEERS={0x358, 0x5, 0x0, 0x1, [{0xa4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa}, @NL80211_PMSR_PEER_ATTR_CHAN={0x4c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3c3}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x268}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x2}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1e9}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x1e9}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x171b}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x94}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7cd9}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}]}]}, {0x1b4, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0x104, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}, @NL80211_PMSR_REQ_ATTR_DATA={0x4c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x9}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x3}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0xb}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x34, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x85d}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x15}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0xd}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x58, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x8, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x4}]}, @NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x3c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1f}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x100}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15a4}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x101}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @device_b}, @NL80211_PMSR_PEER_ATTR_REQ={0x64, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0x30, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_ASAP={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1d}]}]}, @NL80211_PMSR_REQ_ATTR_DATA={0x2c, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x1c, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xc}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x5}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0xd5}]}, @NL80211_PMSR_TYPE_FTM={0xc, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0x1}]}]}, @NL80211_PMSR_REQ_ATTR_GET_AP_TSF={0x4}]}]}, {0xec, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_REQ={0xac, 0x3, 0x0, 0x1, [@NL80211_PMSR_REQ_ATTR_DATA={0xa8, 0x1, 0x0, 0x1, [@NL80211_PMSR_TYPE_FTM={0x14, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP={0x5, 0x3, 0xd}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x18, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x20, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x2}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE={0x8, 0x2, 0x1}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC={0x4}]}, @NL80211_PMSR_TYPE_FTM={0x38, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x85ec}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0xa}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD={0x6, 0x4, 0x7}, @NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION={0x5, 0x5, 0x6}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES={0x5, 0x7, 0x9}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST={0x5, 0x6, 0x1a}]}, @NL80211_PMSR_TYPE_FTM={0x10, 0x1, 0x0, 0x1, [@NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED={0x4}, @NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED={0x4}]}]}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x1c, 0x2, 0x0, 0x1, [@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0xb}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x144}]}, @NL80211_PMSR_PEER_ATTR_CHAN={0x14, 0x2, 0x0, 0x1, [@NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0xd1}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x7}]}, @NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_PMSR_PEER_ATTR_ADDR={0xa, 0x1, @broadcast}]}]}]}, 0x378}, 0x1, 0x0, 0x0, 0x4}, 0x800) ioctl$sock_kcm_SIOCKCMATTACH(r9, 0x89e0, &(0x7f0000000040)) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r11}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) 976.288734ms ago: executing program 2 (id=2199): pipe(&(0x7f00000006c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000046c0)={0x11, 0x3, &(0x7f00000043c0)=@framed, &(0x7f0000004500)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000045c0), 0x8}, 0x90) r2 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_udp_int(r2, 0x11, 0xb, &(0x7f0000000080)=0x10001, 0x4) sendto(r1, &(0x7f0000000180)="daae19b42bf418bddd4f61c23076158ac151dfd019669237ed6db4200bdbfe8c3660f4ba2b8ad9953f851b37ef496af2ac63a503f84738541e26e89d57c360cf5336a551fda6183c023368ad977d3654f994c5f0a3d3c14a3e79d20cf6b1231767359fd5c5d3be4b189ace27eeec7a84723b6b524b63f718c71ffe5681270bba1504141571df48910496b91533abfb5d5889f8", 0x93, 0x40000, &(0x7f0000000240)=@tipc=@id={0x1e, 0x3, 0x0, {0x4e22}}, 0x80) socket$inet6_mptcp(0xa, 0x1, 0x106) r3 = accept$inet(r2, &(0x7f0000000000)={0x2, 0x0, @multicast1}, &(0x7f0000000040)=0x10) r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48) close(r4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)) r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r6, r5, 0x26}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r6}, &(0x7f0000000000), &(0x7f0000000080)=r4}, 0x20) setsockopt$CAN_RAW_LOOPBACK(r1, 0x65, 0x3, &(0x7f00000002c0)=0x1, 0x4) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r3, 0x89f5, &(0x7f0000000140)={'sit0\x00', &(0x7f00000000c0)={@private=0xa010100, 0x0, 0x0, 0x70, 0x0, [{@dev}, {@multicast1}, {@private}, {@multicast1}, {@local}, {@initdev}, {@remote}]}}) 975.802988ms ago: executing program 0 (id=2200): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000), 0x48) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r2, &(0x7f0000000000), &(0x7f0000000080)=@udp}, 0x20) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000d80)={{r2}, &(0x7f0000000d00), &(0x7f0000000d40)='%+9llu \x00'}, 0x20) ioctl$TUNATTACHFILTER(0xffffffffffffffff, 0x401054d5, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{}]}) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000040)={r2, &(0x7f0000000000), 0x0, 0x1000000}, 0x20) 892.91096ms ago: executing program 2 (id=2201): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x10001, 0x9}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x6, 0x9) ioctl$sock_SIOCGIFBR(r2, 0x8940, &(0x7f0000000300)=@add_del={0x2, &(0x7f0000000000)='veth0_to_bridge\x00'}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000380)={'wlan0\x00'}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000e40)=ANY=[@ANYBLOB="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"/3576], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='rcu_utilization\x00', r1}, 0x10) socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket(0x840000000002, 0x3, 0xff) socket$nl_route(0x10, 0x3, 0x0) socket$kcm(0xa, 0x922000000003, 0x11) socket$inet6(0xa, 0x2, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x10002}) r7 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES32=r6, @ANYRES16=r5], 0x20}, 0x1, 0xc00000000000000}, 0x0) bind$bt_hci(r7, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r7, &(0x7f0000000080)=ANY=[@ANYBLOB="4c00030007"], 0xd) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000001c0)=@generic={&(0x7f0000000140)='./file0\x00', r4}, 0x18) r8 = socket$rds(0x15, 0x5, 0x0) bind$rds(r8, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x70) sendmsg$rds(r8, &(0x7f0000000000)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000001600)=[@rdma_dest={0x18}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x60}, 0x0) r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000080)={'pim6reg1\x00', 0xe511}) close(r9) 388.232017ms ago: executing program 0 (id=2202): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r0, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) socket$nl_rdma(0x10, 0x3, 0x14) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x2, 0x0, 0x0) ioctl$sock_netdev_private(0xffffffffffffffff, 0x0, 0x0) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x2, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}}, 0x0, 0x32}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x11}}, &(0x7f0000000000)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r2, 0xc, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffd1}, 0x90) ioctl$sock_inet_SIOCSIFFLAGS(0xffffffffffffffff, 0x8914, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000440)={'ip6tnl0\x00', 0x0}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000400)={0x30, r6, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x10, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_PRIVFLAGS_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x30}}, 0x0) r8 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x18, 0x0, 0x0) syz_genetlink_get_family_id$batadv(0x0, r8) bpf$MAP_CREATE(0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) unshare(0x20000400) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000062010c000100010095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x6, 0x4, &(0x7f0000002a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='GPL\x00', 0x4, 0x5f9, &(0x7f0000000300)=""/4096}, 0x70) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r10}, &(0x7f0000000080), &(0x7f00000000c0)=r9}, 0x20) 286.156749ms ago: executing program 1 (id=2203): r0 = socket$kcm(0x11, 0x200000000000002, 0x300) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='cgroup.controllers\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f0000000100)=r1, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r2, 0x18000000000002a0, 0x25, 0x0, &(0x7f0000000640)="b9ff03076808268cb89e14f089061be0ffff00fe4000632f77fbac141416e000002062079f", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 139.423322ms ago: executing program 0 (id=2204): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000002440)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000a40)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d7756bf4fcaff0c2337", 0x89}, {&(0x7f0000000d40)="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", 0x184}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df283b3ca3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd6c8461de7afec966f9c023ffe15c3c1caec8ff3ef304ed0ffedd061941d9d022b25a4b9632856295fee3a314f6c196", 0xf8}], 0x3}}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000340)="63c3b174ab06077f6ee67ac1310d86586b13d2c9e203a9da866b81e20e9fe5c43219396d489c1459ce9cd14fa3b43a0b9b6004118a35444790d70af5c873561ac1ad55af7f9f8551103f694e2a22346ca675898ce02a665ecc07e153e3949b954c1d74b105c14411925a8ae24778d4111d2d9743b682d653bcf35d53fd33489a3a405042c0de5ec2cb4b991a31e1d76db8609d0bf66d8d723a6c28a50d42ab169de383345fbee97bea33e8bfb5d705852d360ab703fc956c1ea86157aedcff1782c784e074", 0xc5}, {&(0x7f0000000440)="03d54d8499", 0x5}, {&(0x7f0000000b80)="2a3ed204bd855fb67f6b94cfb2680c7352d91e366b2c80b512fcee9c7a398e630176e8b7f4d3bc19723cd52fbf9fb301e52334b5f8833cb7a1a94d63db20644e546b7511fb8fdf55754accdc7185c2b2cb384737f100d3aeaf5529ad", 0x5c}], 0x3}}], 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec", 0x4b, 0x11, 0x0, 0x0) 138.093848ms ago: executing program 1 (id=2205): r0 = socket$kcm(0x10, 0x2, 0x4) r1 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000980)={0x802}, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000005200010000000000ff00"/28], 0x1c}}, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x6, 0x8, 0x2}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000b00)='sched_switch\x00', r3}, 0x10) bind$alg(r1, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'fpu(ctr(serpent))\x00'}, 0x58) r5 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x40, 0x8, 0x4, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) r6 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f00000000c0)={'lo\x00', &(0x7f0000000040)=@ethtool_link_settings={0x4c, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [0x4]}}) r7 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x50, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x24, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x5}}, @TCA_HTB_DIRECT_QLEN={0xfffffffffffffcf5}]}}]}, 0x50}}, 0x0) sendmsg$inet(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000240)="5c000000140300000000000000d32c6ec1ea376182309e0d440b130a060000000060400000000100005c1e6182949a36c23d3b48dfd8cdbf9367b498fa51f60a64c974d49308000000000000000000b6c0289051fdb3c531f21b93c9ab93d500518c4a1b07099e8436c169173d30decadfb8340c467f49ac3d519bc744a3fa7e1989cd64af1aa3f56ff8150fb675e86bc41af24d89805ac4d5a2d8655448864c0694dbb8b90e5e6403ddaf715340f16258f0142a53c65eedece123431bfb48e4b20bb3fdfd8e89e2ddff4cbd1de86c01b9e0974b6225ef4c79c3c7c200", 0xdd}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x4008000) r10 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000340)={0xffffffffffffffff, 0x8, 0x8}, 0xc) getsockopt$inet6_mreq(r7, 0x29, 0x15, &(0x7f00000004c0)={@empty, 0x0}, &(0x7f0000000500)=0x14) r12 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb0100180000000000001768000000780000000a0000000d000000080000050500000006000000010000000ced000007000000040000007d0000007f000040000400150b0b00000800000003000022ff0100004800000004000000a61c00000d000000000000008e0000000e000000000000004c6000002d00000001000000ef3d00000d000000000000090300d930445bb10000002ee3002e"], &(0x7f0000000600)=""/61, 0x9a, 0x3d, 0x0, 0x9}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000009c0)={0x6, 0xf, &(0x7f0000000380)=@raw=[@initr0={0x18, 0x0, 0x0, 0x0, 0x2cc, 0x0, 0x0, 0x0, 0x7}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r10}}], &(0x7f0000000400)='syzkaller\x00', 0x101, 0x0, 0x0, 0x41000, 0x40, '\x00', r11, 0x25, r12, 0x8, &(0x7f0000000680)={0x9, 0x5}, 0x8, 0x10, &(0x7f00000006c0)={0x5, 0x4, 0x684c, 0x1}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000000700)=[r4, r5], &(0x7f0000000880)=[{0x4, 0x1, 0x4, 0x19}, {0x5, 0x5, 0x0, 0x8}, {0x3, 0x1, 0x8, 0xb}, {0x5, 0x5, 0x8}, {0x5, 0x2, 0x7, 0x2}, {0x5, 0x2, 0x7, 0x2}], 0x10, 0x8e}, 0x90) 83.59008ms ago: executing program 2 (id=2206): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="180000001114d757000000000000000008004b0000000000"], 0x18}}, 0x0) sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r0, &(0x7f0000000580)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000540)={&(0x7f0000000400)={0x58, 0x140a, 0x400, 0x70bd2b, 0x25dfdbfc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x5}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x3}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x800}, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000001540)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000340)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f0000000200)="a0", 0x0, 0x1}, 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x48) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000)={0x2, 0x0, @broadcast}, 0x10, 0x0}, 0x0) close(r2) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r3, &(0x7f00000000c0), &(0x7f0000000000)=""/8, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r3, &(0x7f0000000140)='P', &(0x7f0000000000)=""/8, 0x2}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200000}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r4}, 0xc) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xb, &(0x7f0000000b00)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20000000}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = socket(0x1, 0x803, 0x0) socket$nl_route(0x10, 0x3, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) r9 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r9, 0x8933, &(0x7f00000001c0)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="580000001000210400"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000002800128009000100766c216e00000000180002800cf73b21f6607a7bc592a0d5d80002000e0000000a00000006888100000000000800feff", @ANYRES32=r8, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r10, @ANYBLOB], 0x58}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000140)=@delneigh={0xb8, 0x1d, 0x800, 0x70bd25, 0x25dfdbfe, {0xa, 0x0, 0x0, r8, 0x80, 0x4, 0x9}, [@NDA_FDB_EXT_ATTRS={0x3c, 0xe, 0x0, 0x1, [@NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0xb1}, @NFEA_DONT_REFRESH={0x4}, @NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x1f}, @NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x4}, @NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x81}, @NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x7}, @NFEA_DONT_REFRESH={0x4}, @NFEA_ACTIVITY_NOTIFY={0x5, 0x1, 0x8}]}, @NDA_CACHEINFO={0x14, 0x3, {0x5, 0x5, 0x8ca, 0xd42}}, @NDA_DST_IPV6={0x14, 0x1, @mcast1}, @NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}}, @NDA_NH_ID={0x8}, @NDA_PROBES={0x8, 0x4, 0x724}, @NDA_DST_IPV6={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}, @NDA_PROTOCOL={0x5, 0xc, 0x1}]}, 0xb8}, 0x1, 0x0, 0x0, 0x800}, 0x10) 0s ago: executing program 0 (id=2207): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) getsockopt$sock_int(r0, 0x1, 0x49, 0x0, &(0x7f0000000040)) kernel console output (not intermixed with test programs): ode [ 268.855110][ T988] veth0_macvtap: left promiscuous mode [ 268.862302][ T988] veth1_vlan: left promiscuous mode [ 268.867914][ T988] veth0_vlan: left promiscuous mode [ 269.080709][ T5112] Bluetooth: hci3: command tx timeout [ 269.157894][T10173] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1422'. [ 270.234459][ T988] team0 (unregistering): Port device team_slave_1 removed [ 270.301982][ T988] team0 (unregistering): Port device team_slave_0 removed [ 270.946505][T10143] chnl_net:caif_netlink_parms(): no params data found [ 270.974792][ T36] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 271.158967][ T5112] Bluetooth: hci3: command tx timeout [ 271.289773][T10143] bridge0: port 1(bridge_slave_0) entered blocking state [ 271.311461][T10143] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.327861][T10143] bridge_slave_0: entered allmulticast mode [ 271.341102][T10143] bridge_slave_0: entered promiscuous mode [ 271.363467][T10143] bridge0: port 2(bridge_slave_1) entered blocking state [ 271.379929][T10143] bridge0: port 2(bridge_slave_1) entered disabled state [ 271.397595][T10143] bridge_slave_1: entered allmulticast mode [ 271.420305][T10143] bridge_slave_1: entered promiscuous mode [ 271.505004][T10143] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 271.537063][T10143] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 271.623519][T10143] team0: Port device team_slave_0 added [ 271.640265][T10143] team0: Port device team_slave_1 added [ 271.702742][T10143] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 271.711149][T10143] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.741183][T10143] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 271.756654][T10143] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 271.765929][T10143] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.794169][T10143] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 271.877392][T10143] hsr_slave_0: entered promiscuous mode [ 271.886172][T10143] hsr_slave_1: entered promiscuous mode [ 271.894979][T10143] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 271.905985][T10143] Cannot create hsr debugfs directory [ 272.489846][T10233] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1443'. [ 273.097374][ T988] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 273.238831][ T5112] Bluetooth: hci3: command tx timeout [ 273.516499][T10143] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 273.530615][T10143] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 273.551497][T10143] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 273.567101][T10143] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 273.690205][T10143] 8021q: adding VLAN 0 to HW filter on device bond0 [ 273.736672][T10143] 8021q: adding VLAN 0 to HW filter on device team0 [ 273.775571][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 273.782856][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 273.813040][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.820389][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 273.923555][ T36] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 274.197020][T10143] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 274.341850][T10276] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1456'. [ 274.505527][T10286] FAULT_INJECTION: forcing a failure. [ 274.505527][T10286] name failslab, interval 1, probability 0, space 0, times 0 [ 274.519093][T10286] CPU: 1 PID: 10286 Comm: syz.0.1457 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 274.529507][T10286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 274.539629][T10286] Call Trace: [ 274.542980][T10286] [ 274.546050][T10286] dump_stack_lvl+0x241/0x360 [ 274.550813][T10286] ? __pfx_dump_stack_lvl+0x10/0x10 [ 274.556106][T10286] ? __pfx__printk+0x10/0x10 [ 274.560799][T10286] should_fail_ex+0x3b0/0x4e0 [ 274.565526][T10286] ? skb_clone+0x20c/0x390 [ 274.569998][T10286] should_failslab+0x9/0x20 [ 274.574596][T10286] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 274.580063][T10286] skb_clone+0x20c/0x390 [ 274.584383][T10286] ? dev_queue_xmit_nit+0x220/0xc10 [ 274.589664][T10286] dev_queue_xmit_nit+0x419/0xc10 [ 274.594782][T10286] ? dev_queue_xmit_nit+0x2b/0xc10 [ 274.599967][T10286] ? validate_xmit_skb+0xa04/0x1120 [ 274.605258][T10286] dev_hard_start_xmit+0x15f/0x7e0 [ 274.610451][T10286] ? __pfx_validate_xmit_skb+0x10/0x10 [ 274.616012][T10286] __dev_queue_xmit+0x1b0e/0x3d30 [ 274.621141][T10286] ? __dev_queue_xmit+0x2d2/0x3d30 [ 274.626359][T10286] ? __pfx___dev_queue_xmit+0x10/0x10 [ 274.631813][T10286] ? __copy_skb_header+0x437/0x5b0 [ 274.636969][T10286] ? __asan_memcpy+0x40/0x70 [ 274.637020][T10286] ? __copy_skb_header+0x437/0x5b0 [ 274.637059][T10286] ? __skb_clone+0x454/0x6c0 [ 274.651473][T10286] ? skb_clone+0x240/0x390 [ 274.656072][T10286] __netlink_deliver_tap+0x54d/0x7c0 [ 274.661452][T10286] ? netlink_deliver_tap+0x2e/0x1b0 [ 274.666736][T10286] netlink_deliver_tap+0x19d/0x1b0 [ 274.671932][T10286] netlink_unicast+0x7b8/0x980 [ 274.676793][T10286] ? __pfx_netlink_unicast+0x10/0x10 [ 274.682121][T10286] ? __virt_addr_valid+0x183/0x520 [ 274.687285][T10286] ? __check_object_size+0x49c/0x900 [ 274.692637][T10286] ? bpf_lsm_netlink_send+0x9/0x10 [ 274.697824][T10286] netlink_sendmsg+0x8db/0xcb0 [ 274.702687][T10286] ? __pfx_netlink_sendmsg+0x10/0x10 [ 274.708057][T10286] ? __import_iovec+0x536/0x820 [ 274.713001][T10286] ? aa_sock_msg_perm+0x91/0x160 [ 274.718038][T10286] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 274.723390][T10286] ? security_socket_sendmsg+0x87/0xb0 [ 274.728916][T10286] ? __pfx_netlink_sendmsg+0x10/0x10 [ 274.734278][T10286] __sock_sendmsg+0x221/0x270 [ 274.739041][T10286] ____sys_sendmsg+0x525/0x7d0 [ 274.743991][T10286] ? __pfx_____sys_sendmsg+0x10/0x10 [ 274.749555][T10286] __sys_sendmsg+0x2b0/0x3a0 [ 274.754234][T10286] ? __pfx___sys_sendmsg+0x10/0x10 [ 274.759428][T10286] ? vfs_write+0x7c4/0xc90 [ 274.763987][T10286] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 274.770399][T10286] ? do_syscall_64+0x100/0x230 [ 274.775240][T10286] ? do_syscall_64+0xb6/0x230 [ 274.780030][T10286] do_syscall_64+0xf3/0x230 [ 274.784619][T10286] ? clear_bhb_loop+0x35/0x90 [ 274.789357][T10286] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 274.795320][T10286] RIP: 0033:0x7f8ff7b75bd9 [ 274.799799][T10286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 274.819472][T10286] RSP: 002b:00007f8ff88f7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 274.827988][T10286] RAX: ffffffffffffffda RBX: 00007f8ff7d04038 RCX: 00007f8ff7b75bd9 [ 274.836017][T10286] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 274.844107][T10286] RBP: 00007f8ff88f70a0 R08: 0000000000000000 R09: 0000000000000000 [ 274.852132][T10286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 274.860149][T10286] R13: 000000000000006e R14: 00007f8ff7d04038 R15: 00007ffd991c6e88 [ 274.868204][T10286] [ 275.227415][T10143] veth0_vlan: entered promiscuous mode [ 275.283938][T10143] veth1_vlan: entered promiscuous mode [ 275.318872][ T5112] Bluetooth: hci3: command tx timeout [ 275.434793][T10143] veth0_macvtap: entered promiscuous mode [ 275.455365][T10143] veth1_macvtap: entered promiscuous mode [ 275.487152][T10313] ieee802154 phy1 wpan1: encryption failed: -22 [ 275.494478][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.511782][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.528912][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.545759][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.556926][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.577052][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.597156][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 275.615051][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.630418][T10143] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 275.650349][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.666386][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.680349][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.694148][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.705057][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.716495][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.731924][T10143] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 275.742840][T10143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 275.754446][T10143] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 275.767359][ T2798] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 275.776520][T10143] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.800507][T10143] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.810505][T10143] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.819818][T10143] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.972830][ T2831] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 275.994192][ T2831] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 276.052707][ T63] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 276.062521][ T63] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 276.359693][T10325] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1470'. [ 276.721757][T10336] netlink: 'syz.0.1474': attribute type 10 has an invalid length. [ 276.739998][T10336] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1474'. [ 276.775146][T10336] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 277.480510][T10381] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1487'. [ 278.120543][T10401] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1494'. [ 278.525854][ T2831] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.160451][ T5100] Bluetooth: hci4: command 0x0406 tx timeout [ 279.280419][ T2831] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.441479][T10418] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1499'. [ 279.461893][ T2831] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.794174][ T2831] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.011418][ T5100] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 280.030819][ T5100] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 280.041966][ T5100] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 280.051961][T10434] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1505'. [ 280.083942][ T5100] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 280.100414][ T5100] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 280.110078][ T5100] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 280.170957][T10442] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 280.267461][T10430] syzkaller0: entered promiscuous mode [ 280.274324][T10430] syzkaller0: entered allmulticast mode [ 280.299316][T10437] tipc: Enabling of bearer rejected, already enabled [ 281.346519][T10464] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1513'. [ 282.200097][ T5112] Bluetooth: hci3: command tx timeout [ 283.180713][T10454] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1510'. [ 283.230376][T10477] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1517'. [ 283.351859][ T2831] bridge_slave_1: left allmulticast mode [ 283.369955][ T2831] bridge_slave_1: left promiscuous mode [ 283.376621][ T2831] bridge0: port 2(bridge_slave_1) entered disabled state [ 283.419653][ T2831] bridge_slave_0: left allmulticast mode [ 283.445839][ T2831] bridge_slave_0: left promiscuous mode [ 283.459061][ T2831] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.491623][T10485] openvswitch: netlink: Flow actions attr not present in new flow. [ 283.643998][T10491] netlink: 191416 bytes leftover after parsing attributes in process `syz.2.1522'. [ 283.657589][T10491] netlink: zone id is out of range [ 283.664301][T10491] netlink: zone id is out of range [ 283.670749][T10491] netlink: zone id is out of range [ 283.705887][T10491] netlink: zone id is out of range [ 283.712540][T10491] netlink: zone id is out of range [ 283.722311][T10491] netlink: zone id is out of range [ 283.736037][T10491] netlink: zone id is out of range [ 283.744111][T10491] netlink: zone id is out of range [ 283.752951][T10491] netlink: zone id is out of range [ 283.783714][T10497] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1524'. [ 284.278990][ T5112] Bluetooth: hci3: command tx timeout [ 284.302256][ T2831] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 284.329895][ T2831] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 284.356800][ T2831] bond0 (unregistering): Released all slaves [ 284.386489][T10506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1527'. [ 284.661508][T10514] netlink: 'syz.0.1528': attribute type 1 has an invalid length. [ 284.670728][T10514] netlink: 'syz.0.1528': attribute type 4 has an invalid length. [ 284.680257][T10514] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.1528'. [ 284.712029][T10510] sctp: [Deprecated]: syz.2.1529 (pid 10510) Use of int in max_burst socket option. [ 284.712029][T10510] Use struct sctp_assoc_value instead [ 284.995465][T10525] bridge0: entered allmulticast mode [ 285.041541][T10527] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1535'. [ 285.085356][T10531] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1535'. [ 285.107364][T10525] netlink: 19 bytes leftover after parsing attributes in process `syz.3.1533'. [ 285.129148][T10530] bridge0: left allmulticast mode [ 285.514345][T10541] netlink: 830 bytes leftover after parsing attributes in process `syz.2.1538'. [ 285.640373][ T2831] hsr_slave_0: left promiscuous mode [ 285.654092][ T2831] hsr_slave_1: left promiscuous mode [ 285.671098][ T2831] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 285.689371][ T2831] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 285.723351][ T2831] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 285.747487][ T2831] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 285.807210][ T2831] veth1_macvtap: left promiscuous mode [ 285.816710][ T2831] veth0_macvtap: left promiscuous mode [ 285.823459][ T2831] veth1_vlan: left promiscuous mode [ 285.832318][ T2831] veth0_vlan: left promiscuous mode [ 286.364451][ T5112] Bluetooth: hci3: command tx timeout [ 286.903867][ T5100] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 286.920420][ T5100] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 286.931022][ T5100] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 286.961804][ T5100] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 286.974632][ T5100] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 286.983613][ T5100] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 287.203949][ T2831] team0 (unregistering): Port device team_slave_1 removed [ 287.266420][ T2831] team0 (unregistering): Port device team_slave_0 removed [ 287.905373][T10557] netlink: 'syz.0.1543': attribute type 9 has an invalid length. [ 288.193982][T10565] pimreg: left allmulticast mode [ 288.284530][T10577] __nla_validate_parse: 1 callbacks suppressed [ 288.284556][T10577] netlink: 19 bytes leftover after parsing attributes in process `syz.1.1549'. [ 288.391229][T10431] chnl_net:caif_netlink_parms(): no params data found [ 288.443796][ T5100] Bluetooth: hci3: command tx timeout [ 288.801806][T10591] bridge_slave_0: entered allmulticast mode [ 288.898058][T10431] bridge0: port 1(bridge_slave_0) entered blocking state [ 288.907014][T10431] bridge0: port 1(bridge_slave_0) entered disabled state [ 288.916632][T10431] bridge_slave_0: entered allmulticast mode [ 288.926407][T10431] bridge_slave_0: entered promiscuous mode [ 288.937774][T10431] bridge0: port 2(bridge_slave_1) entered blocking state [ 288.946966][T10431] bridge0: port 2(bridge_slave_1) entered disabled state [ 288.955684][T10431] bridge_slave_1: entered allmulticast mode [ 288.965168][T10431] bridge_slave_1: entered promiscuous mode [ 289.057898][T10431] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 289.079753][ T5100] Bluetooth: hci5: command tx timeout [ 289.096605][T10431] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 289.121073][T10599] xt_bpf: check failed: parse error [ 289.201400][T10431] team0: Port device team_slave_0 added [ 289.235724][T10601] ieee802154 phy1 wpan1: encryption failed: -22 [ 289.313421][ T2831] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.415787][T10431] team0: Port device team_slave_1 added [ 289.473895][ T2831] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.745059][ T2831] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.787714][T10431] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 289.796356][T10431] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 289.841288][T10431] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 289.865942][T10620] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1565'. [ 289.866080][T10562] chnl_net:caif_netlink_parms(): no params data found [ 289.950370][T10431] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 289.979840][T10431] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 290.034333][T10431] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 290.117166][ T2831] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 290.271585][T10634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1564'. [ 290.364094][T10431] hsr_slave_0: entered promiscuous mode [ 290.387449][T10431] hsr_slave_1: entered promiscuous mode [ 290.398018][T10431] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 290.410536][T10431] Cannot create hsr debugfs directory [ 290.506592][T10638] syzkaller0: tun_chr_ioctl cmd 2147767511 [ 290.717554][T10643] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1569'. [ 290.771729][T10643] vlan2: entered promiscuous mode [ 290.873941][T10562] bridge0: port 1(bridge_slave_0) entered blocking state [ 290.907420][T10562] bridge0: port 1(bridge_slave_0) entered disabled state [ 290.940536][T10562] bridge_slave_0: entered allmulticast mode [ 290.955454][T10562] bridge_slave_0: entered promiscuous mode [ 290.963367][T10647] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1571'. [ 291.023555][T10562] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.038709][T10562] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.075254][T10562] bridge_slave_1: entered allmulticast mode [ 291.091225][T10562] bridge_slave_1: entered promiscuous mode [ 291.159693][ T5100] Bluetooth: hci5: command tx timeout [ 291.304438][ T2831] bridge0: port 3(team0) entered disabled state [ 291.530892][T10663] netlink: 19 bytes leftover after parsing attributes in process `syz.0.1575'. [ 291.930444][ T2831] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 291.944864][ T2831] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 291.958531][ T2831] bond0 (unregistering): Released all slaves [ 292.135208][ T2831] bond1 (unregistering): Released all slaves [ 292.161106][ T63] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 292.169914][T10562] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 292.272082][T10562] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 292.442749][ T2831] tipc: Disabling bearer [ 292.457642][ T2831] tipc: Left network mode [ 292.542416][T10562] team0: Port device team_slave_0 added [ 292.735068][T10562] team0: Port device team_slave_1 added [ 293.033405][T10674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1579'. [ 293.116355][T10562] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 293.126005][T10562] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 293.179797][T10562] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 293.238930][ T5100] Bluetooth: hci5: command tx timeout [ 293.267595][T10562] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 293.302929][T10562] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 293.348166][T10562] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 293.409676][ T2831] hsr_slave_0: left promiscuous mode [ 293.423629][ T2831] hsr_slave_1: left promiscuous mode [ 293.432503][ T2831] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 293.441600][ T2831] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 293.453431][ T2831] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 293.462643][ T2831] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 293.556720][ T2831] veth1_macvtap: left promiscuous mode [ 293.566652][ T2831] veth0_macvtap: left promiscuous mode [ 293.582233][ T2831] veth1_vlan: left promiscuous mode [ 293.587820][ T2831] veth0_vlan: left promiscuous mode [ 293.897670][T10708] netlink: 19 bytes leftover after parsing attributes in process `syz.0.1587'. [ 294.583868][ T2831] team_slave_1 (unregistering): left promiscuous mode [ 294.591812][ T2831] team_slave_1 (unregistering): left allmulticast mode [ 294.605063][ T2831] team0 (unregistering): Port device team_slave_1 removed [ 294.652862][ T2831] team_slave_0 (unregistering): left promiscuous mode [ 294.662098][ T2831] team_slave_0 (unregistering): left allmulticast mode [ 294.674022][ T2831] team0 (unregistering): Port device team_slave_0 removed [ 295.298767][T10695] bridge0: port 3(team0) entered disabled state [ 295.318826][ T5112] Bluetooth: hci5: command tx timeout [ 295.342304][ T46] net_ratelimit: 23 callbacks suppressed [ 295.342325][ T46] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 295.362629][T10695] bond0: (slave bond_slave_0): Releasing backup interface [ 295.375089][T10695] bond_slave_0: left allmulticast mode [ 295.382576][T10695] bond_slave_0: left promiscuous mode [ 295.401355][T10695] bond0: (slave bond_slave_1): Releasing backup interface [ 295.417628][T10695] bond_slave_1: left allmulticast mode [ 295.424962][T10695] bond_slave_1: left promiscuous mode [ 295.438927][T10695] team_slave_0: left promiscuous mode [ 295.444686][T10695] team_slave_0: left allmulticast mode [ 295.474960][T10695] team0: Port device team_slave_0 removed [ 295.496202][T10695] team_slave_1: left promiscuous mode [ 295.503288][T10695] team_slave_1: left allmulticast mode [ 295.526146][T10695] team0: Port device team_slave_1 removed [ 295.543144][T10695] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 295.551968][T10695] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 295.565292][T10695] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 295.574498][T10695] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 295.603595][ T36] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 295.767704][T10562] hsr_slave_0: entered promiscuous mode [ 295.792430][T10562] hsr_slave_1: entered promiscuous mode [ 295.821901][ T5099] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 295.833609][T10562] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 295.865485][T10562] Cannot create hsr debugfs directory [ 296.325745][T10431] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 296.381754][T10431] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 296.408661][T10431] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 296.435509][T10431] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 296.703090][T10739] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1595'. [ 296.979973][T10431] 8021q: adding VLAN 0 to HW filter on device bond0 [ 297.035964][T10431] 8021q: adding VLAN 0 to HW filter on device team0 [ 297.076093][ T785] bridge0: port 1(bridge_slave_0) entered blocking state [ 297.083430][ T785] bridge0: port 1(bridge_slave_0) entered forwarding state [ 297.120843][ T785] bridge0: port 2(bridge_slave_1) entered blocking state [ 297.128186][ T785] bridge0: port 2(bridge_slave_1) entered forwarding state [ 297.336145][ T12] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 297.398966][ T5112] Bluetooth: hci5: command 0x0405 tx timeout [ 297.410549][T10750] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 297.562104][T10562] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 297.605397][T10562] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 297.653364][T10562] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 297.702383][T10562] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 297.743185][T10758] batadv_slave_1: entered promiscuous mode [ 297.759648][T10758] batadv_slave_1: entered allmulticast mode [ 297.925474][T10431] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 298.193042][T10562] 8021q: adding VLAN 0 to HW filter on device bond0 [ 298.246215][T10562] 8021q: adding VLAN 0 to HW filter on device team0 [ 298.300228][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state [ 298.307478][ T5150] bridge0: port 1(bridge_slave_0) entered forwarding state [ 298.344397][ T5150] bridge0: port 2(bridge_slave_1) entered blocking state [ 298.351699][ T5150] bridge0: port 2(bridge_slave_1) entered forwarding state [ 298.431253][T10562] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 298.459070][T10562] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 298.640200][T10431] veth0_vlan: entered promiscuous mode [ 298.672320][T10431] veth1_vlan: entered promiscuous mode [ 298.759371][T10431] veth0_macvtap: entered promiscuous mode [ 298.784173][T10431] veth1_macvtap: entered promiscuous mode [ 298.836786][T10431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.860865][T10431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.871552][T10431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 298.886297][T10431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 298.909880][T10431] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 299.003092][T10562] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 299.031193][T10431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 299.057840][T10431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 299.076776][T10431] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 299.100141][T10431] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 299.120503][T10431] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 299.129036][T10792] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1610'. [ 299.154170][T10431] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.165127][T10431] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.174720][T10431] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.194241][T10431] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 299.402132][T10790] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1608'. [ 299.701679][T10562] veth0_vlan: entered promiscuous mode [ 299.748952][ T988] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 299.776148][ T988] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 299.805446][T10562] veth1_vlan: entered promiscuous mode [ 299.901431][ T988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 299.944479][ T988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 300.010113][T10562] veth0_macvtap: entered promiscuous mode [ 300.061600][T10562] veth1_macvtap: entered promiscuous mode [ 300.150315][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.183948][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.227311][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.244718][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.269391][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.281094][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.335552][T10562] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 300.462948][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.486770][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.505881][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.517976][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.530465][T10562] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.561910][T10562] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.587039][T10562] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 300.609430][T10562] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.618478][T10562] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.632423][T10562] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.642499][T10562] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.889339][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 300.912182][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 301.003654][ T2798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 301.013958][ T2798] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 301.203578][T10838] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1627'. [ 301.262518][T10850] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1548'. [ 301.275128][T10850] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1548'. [ 301.955309][ T2798] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.284674][ T2798] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.374306][ T2798] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.439666][ T2798] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 302.566020][ T2798] bridge_slave_1: left allmulticast mode [ 302.580481][ T2798] bridge_slave_1: left promiscuous mode [ 302.586402][ T2798] bridge0: port 2(bridge_slave_1) entered disabled state [ 302.596666][ T2798] bridge_slave_0: left allmulticast mode [ 302.603805][ T2798] bridge_slave_0: left promiscuous mode [ 302.611919][ T2798] bridge0: port 1(bridge_slave_0) entered disabled state [ 303.409207][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 303.420997][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 303.442938][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 303.454798][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 303.490497][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 303.500111][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 303.673250][ T2798] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 303.704583][ T2798] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 303.726025][ T2798] bond0 (unregistering): Released all slaves [ 303.766269][T10886] vlan0: entered promiscuous mode [ 303.784464][T10879] vlan0: left promiscuous mode [ 304.086594][T10906] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1651'. [ 304.152941][T10900] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1649'. [ 304.245127][T10906] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1651'. [ 304.564990][ T2798] hsr_slave_0: left promiscuous mode [ 304.580126][ T2798] hsr_slave_1: left promiscuous mode [ 304.600575][ T2798] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 304.608710][ T2798] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 304.617481][ T2798] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 304.633345][ T2798] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 304.653496][T10930] netlink: 'syz.0.1655': attribute type 3 has an invalid length. [ 304.677200][T10930] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.1655'. [ 304.681577][ T2798] veth1_macvtap: left promiscuous mode [ 304.696268][ T2798] veth0_macvtap: left promiscuous mode [ 304.709610][ T2798] veth1_vlan: left promiscuous mode [ 304.718050][ T2798] veth0_vlan: left promiscuous mode [ 305.563187][ T5100] Bluetooth: hci1: command tx timeout [ 305.726033][ T2798] team0 (unregistering): Port device team_slave_1 removed [ 305.800931][T10956] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1664'. [ 305.809491][ T2798] team0 (unregistering): Port device team_slave_0 removed [ 306.435666][T10951] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1663'. [ 306.465908][T10952] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1663'. [ 306.619585][T10952] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.723122][T10952] bridge_slave_0 (unregistering): left allmulticast mode [ 306.733928][T10952] bridge_slave_0 (unregistering): left promiscuous mode [ 306.743485][T10952] bridge0: port 1(bridge_slave_0) entered disabled state [ 306.793502][T10959] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1665'. [ 307.231998][T10887] chnl_net:caif_netlink_parms(): no params data found [ 307.302877][T10982] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1669'. [ 307.437852][T10986] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1673'. [ 307.615663][T10986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 307.639062][ T5100] Bluetooth: hci1: command tx timeout [ 307.662090][T10887] bridge0: port 1(bridge_slave_0) entered blocking state [ 307.679217][T10887] bridge0: port 1(bridge_slave_0) entered disabled state [ 307.686907][T10887] bridge_slave_0: entered allmulticast mode [ 307.689606][T10986] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 307.702525][T10887] bridge_slave_0: entered promiscuous mode [ 307.721457][T10887] bridge0: port 2(bridge_slave_1) entered blocking state [ 307.729239][T10887] bridge0: port 2(bridge_slave_1) entered disabled state [ 307.736955][T10887] bridge_slave_1: entered allmulticast mode [ 307.747357][T10887] bridge_slave_1: entered promiscuous mode [ 307.865581][T10887] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 307.893453][T10887] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 307.996799][T10887] team0: Port device team_slave_0 added [ 308.009401][ T2798] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 308.010802][T10887] team0: Port device team_slave_1 added [ 308.076108][T10887] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 308.087954][T10887] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 308.116334][T10887] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 308.134832][T10887] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 308.144097][T10887] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 308.173457][T10887] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 308.243059][T11005] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1680'. [ 308.356686][T11010] TCP: TCP_TX_DELAY enabled [ 308.475354][T10887] hsr_slave_0: entered promiscuous mode [ 308.501606][T10887] hsr_slave_1: entered promiscuous mode [ 308.514901][T10887] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 308.548173][T10887] Cannot create hsr debugfs directory [ 309.227933][T11023] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1688'. [ 309.243722][T11050] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1693'. [ 309.374676][T11050] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 309.458974][T11050] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 309.515784][T11056] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1694'. [ 309.680909][T10887] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 309.705377][T10887] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 309.718441][ T5100] Bluetooth: hci1: command tx timeout [ 309.738024][T10887] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 309.797342][T10887] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 309.852690][T11063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1696'. [ 309.887543][T11063] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1696'. [ 310.272917][T10887] 8021q: adding VLAN 0 to HW filter on device bond0 [ 310.331342][T10887] 8021q: adding VLAN 0 to HW filter on device team0 [ 310.366662][T11073] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 310.378382][T11073] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 310.399998][T11036] bridge0: port 1(bridge_slave_0) entered blocking state [ 310.407297][T11036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 310.472978][T11037] bridge0: port 2(bridge_slave_1) entered blocking state [ 310.480308][T11037] bridge0: port 2(bridge_slave_1) entered forwarding state [ 310.751867][T11083] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1706'. [ 311.133519][T11094] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1709'. [ 311.215779][T11094] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 311.222285][T10887] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 311.295235][T11094] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 311.398457][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 311.798935][ T5100] Bluetooth: hci1: command tx timeout [ 311.896113][T10887] veth0_vlan: entered promiscuous mode [ 311.962047][T10887] veth1_vlan: entered promiscuous mode [ 312.050786][T10887] veth0_macvtap: entered promiscuous mode [ 312.059835][T11125] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1718'. [ 312.084670][T10887] veth1_macvtap: entered promiscuous mode [ 312.169741][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.190825][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.202960][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.217607][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.229783][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.261250][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.290879][T10887] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 312.333028][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 312.356108][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.384109][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 312.408054][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.433981][T10887] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 312.438546][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 312.457459][T10887] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.472746][T10887] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 312.487607][T11127] tap0: tun_chr_ioctl cmd 1074025677 [ 312.495109][T11127] tap0: linktype set to 778 [ 312.515928][T10887] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.530414][T10887] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.541577][T10887] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.552690][T10887] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.781958][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.805600][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 312.856392][ T2798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 312.895233][ T2798] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 313.283668][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 313.441861][T11156] syzkaller0: entered promiscuous mode [ 313.487335][T11156] syzkaller0 (unregistering): left promiscuous mode [ 314.050664][T11182] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1739'. [ 314.810995][T11206] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1748'. [ 314.827635][ T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 315.051651][T11204] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1748'. [ 316.104190][ T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.311243][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 316.314249][ T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.326882][T11225] netlink: 1624 bytes leftover after parsing attributes in process `syz.3.1756'. [ 316.345606][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 316.356363][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 316.373442][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 316.384559][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 316.393537][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 316.469597][ T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 316.739054][ T11] bridge_slave_1: left allmulticast mode [ 316.747287][ T11] bridge_slave_1: left promiscuous mode [ 316.761843][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 316.776411][ T11] bridge_slave_0: left allmulticast mode [ 316.793790][ T11] bridge_slave_0: left promiscuous mode [ 316.805811][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 317.020621][T11241] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1761'. [ 317.664954][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 317.683562][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 317.700008][ T11] bond0 (unregistering): Released all slaves [ 317.722152][T11240] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1761'. [ 318.223497][T11266] netlink: 'syz.0.1769': attribute type 10 has an invalid length. [ 318.311700][T11266] team0: Port device netdevsim0 added [ 318.439946][ T5112] Bluetooth: hci1: command tx timeout [ 318.710817][T11224] chnl_net:caif_netlink_parms(): no params data found [ 318.780125][ T11] hsr_slave_0: left promiscuous mode [ 318.811385][ T11] hsr_slave_1: left promiscuous mode [ 318.836766][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 318.858309][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 318.869917][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 318.877734][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 318.960872][ T11] veth1_macvtap: left promiscuous mode [ 318.966631][ T11] veth0_macvtap: left promiscuous mode [ 318.974093][ T11] veth1_vlan: left promiscuous mode [ 318.980831][ T11] veth0_vlan: left promiscuous mode [ 319.876945][ T11] team0 (unregistering): Port device team_slave_1 removed [ 319.944614][ T11] team0 (unregistering): Port device team_slave_0 removed [ 320.519625][ T5112] Bluetooth: hci1: command tx timeout [ 320.645079][T11295] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1774'. [ 320.657185][T11303] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1776'. [ 320.899147][T11324] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 320.909607][T11324] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 320.951063][T11224] bridge0: port 1(bridge_slave_0) entered blocking state [ 320.972967][T11224] bridge0: port 1(bridge_slave_0) entered disabled state [ 321.003361][T11224] bridge_slave_0: entered allmulticast mode [ 321.015158][T11327] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.1783'. [ 321.026627][T11224] bridge_slave_0: entered promiscuous mode [ 321.047268][T11224] bridge0: port 2(bridge_slave_1) entered blocking state [ 321.085465][T11224] bridge0: port 2(bridge_slave_1) entered disabled state [ 321.098474][T11224] bridge_slave_1: entered allmulticast mode [ 321.140341][T11224] bridge_slave_1: entered promiscuous mode [ 321.546679][T11224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 321.564651][T11224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 321.752281][T11224] team0: Port device team_slave_0 added [ 321.823590][T11224] team0: Port device team_slave_1 added [ 321.846275][T11349] tap0: tun_chr_ioctl cmd 1074025675 [ 321.869276][T11349] tap0: persist enabled [ 321.958431][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 321.982538][T11347] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 322.004871][T11347] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 322.022698][T11224] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 322.031170][T11224] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 322.062237][T11224] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 322.092576][T11224] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 322.110275][T11224] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 322.174458][T11224] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 322.197748][T11352] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1791'. [ 322.417196][T11224] hsr_slave_0: entered promiscuous mode [ 322.433983][T11224] hsr_slave_1: entered promiscuous mode [ 322.450336][T11224] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 322.460724][T11224] Cannot create hsr debugfs directory [ 322.599559][ T5112] Bluetooth: hci1: command tx timeout [ 322.977566][T11380] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1800'. [ 322.998492][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 323.243393][ T1250] ieee802154 phy1 wpan1: encryption failed: -22 [ 323.265186][T11224] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 323.302751][T11224] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 323.353645][T11224] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 323.395130][T11224] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 323.470260][T11395] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1802'. [ 323.736311][T11224] 8021q: adding VLAN 0 to HW filter on device bond0 [ 323.777998][T11224] 8021q: adding VLAN 0 to HW filter on device team0 [ 323.797954][T11036] bridge0: port 1(bridge_slave_0) entered blocking state [ 323.805366][T11036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 323.832042][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 323.839392][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 324.399948][T11224] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 324.691916][ T5112] Bluetooth: hci1: command tx timeout [ 324.892543][T11439] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1819'. [ 324.986176][T11439] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1819'. [ 325.199489][T11450] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1822'. [ 325.286808][T11224] veth0_vlan: entered promiscuous mode [ 325.367064][T11224] veth1_vlan: entered promiscuous mode [ 325.509539][T11224] veth0_macvtap: entered promiscuous mode [ 325.557964][T11224] veth1_macvtap: entered promiscuous mode [ 325.585787][T11459] FAULT_INJECTION: forcing a failure. [ 325.585787][T11459] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 325.631833][T11459] CPU: 1 PID: 11459 Comm: syz.0.1826 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 325.639828][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.642075][T11459] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 325.642107][T11459] Call Trace: [ 325.642120][T11459] [ 325.642133][T11459] dump_stack_lvl+0x241/0x360 [ 325.653033][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.662660][T11459] ? __pfx_dump_stack_lvl+0x10/0x10 [ 325.662713][T11459] ? __pfx__printk+0x10/0x10 [ 325.662752][T11459] ? __pfx_lock_release+0x10/0x10 [ 325.662789][T11459] should_fail_ex+0x3b0/0x4e0 [ 325.662833][T11459] _copy_from_user+0x2f/0xe0 [ 325.662871][T11459] copy_msghdr_from_user+0xae/0x680 [ 325.662918][T11459] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 325.662980][T11459] __sys_sendmsg+0x23d/0x3a0 [ 325.663017][T11459] ? __pfx___sys_sendmsg+0x10/0x10 [ 325.682269][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.683908][T11459] ? vfs_write+0x7c4/0xc90 [ 325.711458][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.713395][T11459] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 325.719989][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 325.723824][T11459] ? do_syscall_64+0x100/0x230 [ 325.723877][T11459] ? do_syscall_64+0xb6/0x230 [ 325.729807][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.739414][T11459] do_syscall_64+0xf3/0x230 [ 325.739473][T11459] ? clear_bhb_loop+0x35/0x90 [ 325.739500][T11459] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 325.739550][T11459] RIP: 0033:0x7f8ff7b75bd9 [ 325.739589][T11459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 325.739612][T11459] RSP: 002b:00007f8ff8918048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 325.739648][T11459] RAX: ffffffffffffffda RBX: 00007f8ff7d03f60 RCX: 00007f8ff7b75bd9 [ 325.739669][T11459] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 325.739686][T11459] RBP: 00007f8ff89180a0 R08: 0000000000000000 R09: 0000000000000000 [ 325.739703][T11459] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 325.739720][T11459] R13: 000000000000000b R14: 00007f8ff7d03f60 R15: 00007ffd991c6e88 [ 325.739761][T11459] [ 325.895300][T11224] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 325.917155][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.937274][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.949406][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 325.982077][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 325.995943][T11224] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 326.015422][T11224] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 326.059608][T11224] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 326.095022][T11224] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.121944][T11224] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.146780][T11224] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.173039][T11224] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 326.430871][T11468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1829'. [ 326.604628][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.650383][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 326.752364][T10922] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 326.776532][T10922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 328.154438][T11525] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1848'. [ 329.063720][T10921] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.324164][T10921] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.423758][T10921] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.522232][T10921] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 329.656260][T10921] bridge_slave_1: left allmulticast mode [ 329.664060][T10921] bridge_slave_1: left promiscuous mode [ 329.675083][T10921] bridge0: port 2(bridge_slave_1) entered disabled state [ 329.685709][T10921] bridge_slave_0: left allmulticast mode [ 329.692260][T10921] bridge_slave_0: left promiscuous mode [ 329.698203][T10921] bridge0: port 1(bridge_slave_0) entered disabled state [ 330.170851][T10921] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 330.257411][T10921] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 330.302761][T11575] IPVS: set_ctl: invalid protocol: 136 172.30.0.3:20004 [ 330.356897][T10921] bond0 (unregistering): Released all slaves [ 330.410716][ T5180] IPVS: starting estimator thread 0... [ 330.547793][T11578] IPVS: using max 19 ests per chain, 45600 per kthread [ 330.562958][T11580] ax25_connect(): syz.3.1870 uses autobind, please contact jreuter@yaina.de [ 330.702593][T11585] macvlan1: entered allmulticast mode [ 330.970151][ T5100] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 330.983966][ T5100] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 330.995715][ T5100] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 331.007025][ T5100] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 331.019485][ T5100] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 331.027199][ T5100] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 331.130063][T10921] hsr_slave_0: left promiscuous mode [ 331.163677][T10921] hsr_slave_1: left promiscuous mode [ 331.173133][T10921] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 331.186799][ T5282] IPVS: starting estimator thread 0... [ 331.194910][T10921] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 331.227973][T10921] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 331.246873][T10921] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 331.288476][T11601] IPVS: using max 15 ests per chain, 36000 per kthread [ 331.354585][T10921] veth1_macvtap: left promiscuous mode [ 331.374475][T10921] veth0_macvtap: left promiscuous mode [ 331.408996][T10921] veth1_vlan: left promiscuous mode [ 331.438754][T10921] veth0_vlan: left promiscuous mode [ 332.296451][T10921] team0 (unregistering): Port device team_slave_1 removed [ 332.355526][T10921] team0 (unregistering): Port device team_slave_0 removed [ 333.076347][T11607] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1876'. [ 333.079751][ T5100] Bluetooth: hci1: command tx timeout [ 333.719885][T11655] netlink: 1688 bytes leftover after parsing attributes in process `syz.1.1890'. [ 333.773716][T11643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1886'. [ 334.000702][T11595] chnl_net:caif_netlink_parms(): no params data found [ 334.323045][T11595] bridge0: port 1(bridge_slave_0) entered blocking state [ 334.350793][T11595] bridge0: port 1(bridge_slave_0) entered disabled state [ 334.370537][T11595] bridge_slave_0: entered allmulticast mode [ 334.398378][T11595] bridge_slave_0: entered promiscuous mode [ 334.424311][T11595] bridge0: port 2(bridge_slave_1) entered blocking state [ 334.456397][T11595] bridge0: port 2(bridge_slave_1) entered disabled state [ 334.476833][T11595] bridge_slave_1: entered allmulticast mode [ 334.501968][T11595] bridge_slave_1: entered promiscuous mode [ 334.667802][T11595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 334.703693][T11595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 334.844245][T11595] team0: Port device team_slave_0 added [ 334.892056][T11595] team0: Port device team_slave_1 added [ 335.061008][T11683] pim6reg0: tun_chr_ioctl cmd 2147767519 [ 335.069857][T11595] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 335.077520][T11595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 335.138241][T11595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 335.162452][ T5100] Bluetooth: hci1: command tx timeout [ 335.171586][T11595] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 335.200184][T11595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 335.260296][T11595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 335.479823][T11595] hsr_slave_0: entered promiscuous mode [ 335.498706][T11595] hsr_slave_1: entered promiscuous mode [ 335.534516][T11595] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 335.542719][T11595] Cannot create hsr debugfs directory [ 335.763443][T11702] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1905'. [ 336.325606][T11729] sctp: [Deprecated]: syz.2.1912 (pid 11729) Use of struct sctp_assoc_value in delayed_ack socket option. [ 336.325606][T11729] Use struct sctp_sack_info instead [ 336.758763][T11595] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 336.810085][T11738] tipc: Started in network mode [ 336.815063][T11738] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711 [ 336.838878][T11738] tipc: Enabling of bearer rejected, failed to enable media [ 336.868529][T11595] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 336.924180][T11740] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1917'. [ 336.945624][T11595] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 336.987667][T11595] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 337.190268][T11595] 8021q: adding VLAN 0 to HW filter on device bond0 [ 337.240031][ T5100] Bluetooth: hci1: command tx timeout [ 337.263228][T11595] 8021q: adding VLAN 0 to HW filter on device team0 [ 337.349584][ T5282] bridge0: port 1(bridge_slave_0) entered blocking state [ 337.356939][ T5282] bridge0: port 1(bridge_slave_0) entered forwarding state [ 337.420253][ T5180] bridge0: port 2(bridge_slave_1) entered blocking state [ 337.427565][ T5180] bridge0: port 2(bridge_slave_1) entered forwarding state [ 337.592579][T11595] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 337.684562][T11760] sctp: [Deprecated]: syz.0.1923 (pid 11760) Use of struct sctp_assoc_value in delayed_ack socket option. [ 337.684562][T11760] Use struct sctp_sack_info instead [ 337.957055][T11755] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1922'. [ 338.546107][T11595] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 338.621302][T11789] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1928'. [ 338.735063][T11797] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 339.022596][T11807] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1933'. [ 339.045560][T11807] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes. [ 339.320040][ T5100] Bluetooth: hci1: command tx timeout [ 339.453365][T11595] veth0_vlan: entered promiscuous mode [ 339.477899][T11595] veth1_vlan: entered promiscuous mode [ 339.593731][T11819] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1936'. [ 339.606182][T11595] veth0_macvtap: entered promiscuous mode [ 339.626209][T11595] veth1_macvtap: entered promiscuous mode [ 339.666613][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.701776][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.721841][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.749221][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.759683][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.787888][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.837173][T11595] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 339.856596][T11826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.880351][T11826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.896924][T11826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 339.908774][T11826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 339.959752][T11826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 340.009745][T11826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.037527][T11826] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 340.089083][T11836] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1942'. [ 340.092829][T11826] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.183876][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 340.235852][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.259628][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 340.299231][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.325946][T11595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 340.349504][T11595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 340.363673][T11841] netlink: 'syz.3.1945': attribute type 29 has an invalid length. [ 340.381571][T11595] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 340.430531][T11841] netlink: 'syz.3.1945': attribute type 29 has an invalid length. [ 340.456605][T11595] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.471828][T11595] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.492513][T11595] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.519908][T11595] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 340.542057][T11846] netlink: 'syz.3.1945': attribute type 29 has an invalid length. [ 340.733523][T11855] netlink: 'syz.1.1948': attribute type 11 has an invalid length. [ 340.745844][T11853] sctp: [Deprecated]: syz.3.1947 (pid 11853) Use of struct sctp_assoc_value in delayed_ack socket option. [ 340.745844][T11853] Use struct sctp_sack_info instead [ 340.924028][ T2798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 340.958937][ T2798] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.161139][T11864] FAULT_INJECTION: forcing a failure. [ 341.161139][T11864] name failslab, interval 1, probability 0, space 0, times 0 [ 341.179553][T11864] CPU: 1 PID: 11864 Comm: syz.0.1950 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 341.181303][ T2798] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 341.190052][T11864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 341.190080][T11864] Call Trace: [ 341.190094][T11864] [ 341.190106][T11864] dump_stack_lvl+0x241/0x360 [ 341.219057][T11864] ? __pfx_dump_stack_lvl+0x10/0x10 [ 341.224318][T11864] ? __pfx__printk+0x10/0x10 [ 341.228938][T11864] ? ref_tracker_alloc+0x332/0x490 [ 341.234081][T11864] should_fail_ex+0x3b0/0x4e0 [ 341.238801][T11864] ? skb_clone+0x20c/0x390 [ 341.243249][T11864] should_failslab+0x9/0x20 [ 341.247787][T11864] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 341.253201][T11864] skb_clone+0x20c/0x390 [ 341.257472][T11864] __netlink_deliver_tap+0x3cc/0x7c0 [ 341.262791][T11864] ? netlink_deliver_tap+0x2e/0x1b0 [ 341.268006][T11864] netlink_deliver_tap+0x19d/0x1b0 [ 341.273263][T11864] netlink_unicast+0x7b8/0x980 [ 341.278061][T11864] ? __pfx_netlink_unicast+0x10/0x10 [ 341.283398][T11864] ? __virt_addr_valid+0x183/0x520 [ 341.288543][T11864] ? __check_object_size+0x49c/0x900 [ 341.293854][T11864] ? bpf_lsm_netlink_send+0x9/0x10 [ 341.298998][T11864] netlink_sendmsg+0x8db/0xcb0 [ 341.303807][T11864] ? __pfx_netlink_sendmsg+0x10/0x10 [ 341.309126][T11864] ? __import_iovec+0x536/0x820 [ 341.314082][T11864] ? aa_sock_msg_perm+0x91/0x160 [ 341.319066][T11864] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 341.324455][T11864] ? security_socket_sendmsg+0x87/0xb0 [ 341.329953][T11864] ? __pfx_netlink_sendmsg+0x10/0x10 [ 341.335271][T11864] __sock_sendmsg+0x221/0x270 [ 341.340074][T11864] ____sys_sendmsg+0x525/0x7d0 [ 341.344869][T11864] ? __pfx_____sys_sendmsg+0x10/0x10 [ 341.350187][T11864] __sys_sendmsg+0x2b0/0x3a0 [ 341.354839][T11864] ? __pfx___sys_sendmsg+0x10/0x10 [ 341.360076][T11864] ? vfs_write+0x7c4/0xc90 [ 341.364580][T11864] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 341.371080][T11864] ? do_syscall_64+0x100/0x230 [ 341.376416][T11864] ? do_syscall_64+0xb6/0x230 [ 341.381127][T11864] do_syscall_64+0xf3/0x230 [ 341.385654][T11864] ? clear_bhb_loop+0x35/0x90 [ 341.390350][T11864] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 341.396296][T11864] RIP: 0033:0x7f8ff7b75bd9 [ 341.400730][T11864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 341.420366][T11864] RSP: 002b:00007f8ff8918048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 341.428900][T11864] RAX: ffffffffffffffda RBX: 00007f8ff7d03f60 RCX: 00007f8ff7b75bd9 [ 341.436912][T11864] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000003 [ 341.445165][T11864] RBP: 00007f8ff89180a0 R08: 0000000000000000 R09: 0000000000000000 [ 341.453614][T11864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 341.461698][T11864] R13: 000000000000000b R14: 00007f8ff7d03f60 R15: 00007ffd991c6e88 [ 341.469711][T11864] [ 341.475725][ T2798] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 341.956402][T11875] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1956'. [ 342.743390][T11915] FAULT_INJECTION: forcing a failure. [ 342.743390][T11915] name failslab, interval 1, probability 0, space 0, times 0 [ 342.757977][T11915] CPU: 1 PID: 11915 Comm: syz.2.1967 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 342.768208][T11915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 342.778408][T11915] Call Trace: [ 342.781721][T11915] [ 342.784693][T11915] dump_stack_lvl+0x241/0x360 [ 342.789523][T11915] ? __pfx_dump_stack_lvl+0x10/0x10 [ 342.794797][T11915] ? __pfx__printk+0x10/0x10 [ 342.799472][T11915] ? __pfx___might_resched+0x10/0x10 [ 342.804857][T11915] should_fail_ex+0x3b0/0x4e0 [ 342.809628][T11915] ? sk_prot_alloc+0xe0/0x210 [ 342.814364][T11915] should_failslab+0x9/0x20 [ 342.818903][T11915] __kmalloc_noprof+0xd8/0x400 [ 342.823883][T11915] sk_prot_alloc+0xe0/0x210 [ 342.828509][T11915] ? sk_alloc+0x26/0x370 [ 342.832786][T11915] sk_alloc+0x38/0x370 [ 342.836883][T11915] ? bpf_test_init+0x15a/0x180 [ 342.841764][T11915] ? bpf_ctx_init+0x162/0x1b0 [ 342.846559][T11915] bpf_prog_test_run_skb+0x38f/0x13a0 [ 342.851963][T11915] ? __pfx_lock_release+0x10/0x10 [ 342.857035][T11915] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 342.862894][T11915] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 342.868745][T11915] bpf_prog_test_run+0x33a/0x3b0 [ 342.873709][T11915] __sys_bpf+0x48d/0x810 [ 342.878156][T11915] ? __pfx___sys_bpf+0x10/0x10 [ 342.882964][T11915] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 342.888976][T11915] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 342.895332][T11915] ? do_syscall_64+0x100/0x230 [ 342.900133][T11915] __x64_sys_bpf+0x7c/0x90 [ 342.904570][T11915] do_syscall_64+0xf3/0x230 [ 342.909101][T11915] ? clear_bhb_loop+0x35/0x90 [ 342.913812][T11915] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 342.919736][T11915] RIP: 0033:0x7f834dd75bd9 [ 342.924175][T11915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 342.943815][T11915] RSP: 002b:00007f834eabe048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 342.952268][T11915] RAX: ffffffffffffffda RBX: 00007f834df03f60 RCX: 00007f834dd75bd9 [ 342.960274][T11915] RDX: 000000000000004c RSI: 0000000020000240 RDI: 000000000000000a [ 342.968278][T11915] RBP: 00007f834eabe0a0 R08: 0000000000000000 R09: 0000000000000000 [ 342.976448][T11915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 342.984441][T11915] R13: 000000000000000b R14: 00007f834df03f60 R15: 00007fffd0824988 [ 342.992540][T11915] [ 343.099599][T11895] FAULT_INJECTION: forcing a failure. [ 343.099599][T11895] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 343.117382][T11895] CPU: 0 PID: 11895 Comm: syz.3.1961 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 343.127636][T11895] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 343.137756][T11895] Call Trace: [ 343.141084][T11895] [ 343.144045][T11895] dump_stack_lvl+0x241/0x360 [ 343.148785][T11895] ? __pfx_dump_stack_lvl+0x10/0x10 [ 343.154060][T11895] ? __pfx__printk+0x10/0x10 [ 343.158745][T11895] ? __pfx_lock_release+0x10/0x10 [ 343.163839][T11895] should_fail_ex+0x3b0/0x4e0 [ 343.168680][T11895] set_fd_set+0x3a/0xa0 [ 343.172913][T11895] core_sys_select+0x72c/0x910 [ 343.177761][T11895] ? __pfx_core_sys_select+0x10/0x10 [ 343.183125][T11895] ? ksys_write+0x23e/0x2c0 [ 343.187732][T11895] ? __pfx_set_user_sigmask+0x10/0x10 [ 343.193168][T11895] ? __fget_files+0x3f6/0x470 [ 343.197926][T11895] __se_sys_pselect6+0x319/0x3f0 [ 343.202949][T11895] ? __pfx___se_sys_pselect6+0x10/0x10 [ 343.208475][T11895] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 343.214866][T11895] ? do_syscall_64+0x100/0x230 [ 343.217652][T11919] netlink: 5156 bytes leftover after parsing attributes in process `syz.2.1969'. [ 343.219672][T11895] ? __x64_sys_pselect6+0x21/0xf0 [ 343.219717][T11895] do_syscall_64+0xf3/0x230 [ 343.219755][T11895] ? clear_bhb_loop+0x35/0x90 [ 343.219784][T11895] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 343.219819][T11895] RIP: 0033:0x7f576d975bd9 [ 343.219842][T11895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 343.219863][T11895] RSP: 002b:00007f576e76f048 EFLAGS: 00000246 ORIG_RAX: 000000000000010e [ 343.219892][T11895] RAX: ffffffffffffffda RBX: 00007f576db03f60 RCX: 00007f576d975bd9 [ 343.219911][T11895] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000040 [ 343.219927][T11895] RBP: 00007f576e76f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 343.219944][T11895] R10: 00000000200002c0 R11: 0000000000000246 R12: 0000000000000001 [ 343.219960][T11895] R13: 000000000000000b R14: 00007f576db03f60 R15: 00007ffd3c61a338 [ 343.219998][T11895] [ 343.498784][ T2798] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.840494][ T2798] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 343.939932][ T2798] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 344.017878][ T2798] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 344.165173][ T2798] bridge_slave_1: left allmulticast mode [ 344.173055][ T2798] bridge_slave_1: left promiscuous mode [ 344.179187][ T2798] bridge0: port 2(bridge_slave_1) entered disabled state [ 344.189051][ T2798] bridge_slave_0: left allmulticast mode [ 344.195171][ T2798] bridge_slave_0: left promiscuous mode [ 344.201896][ T2798] bridge0: port 1(bridge_slave_0) entered disabled state [ 344.801040][ T2798] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 344.842968][ T2798] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 344.894243][ T2798] bond0 (unregistering): Released all slaves [ 344.966159][T11938] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1974'. [ 345.046672][T11938] netlink: 'syz.3.1974': attribute type 13 has an invalid length. [ 345.169068][T11938] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.170279][T11946] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.1977'. [ 345.178743][T11938] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.196690][T11938] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.205806][T11938] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 345.291879][T11938] vxlan0: entered promiscuous mode [ 345.306259][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 345.342878][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 345.354098][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 345.373207][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 345.391023][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 345.400624][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 345.766326][T11961] netlink: 'syz.0.1981': attribute type 6 has an invalid length. [ 345.787477][T11961] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1981'. [ 345.877991][ T2798] hsr_slave_0: left promiscuous mode [ 345.935243][ T2798] hsr_slave_1: left promiscuous mode [ 345.948216][ T2798] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 345.965470][ T2798] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 345.979436][ T2798] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 345.994352][ T2798] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 346.066641][ T2798] veth1_macvtap: left promiscuous mode [ 346.072594][ T2798] veth0_macvtap: left promiscuous mode [ 346.084717][ T2798] veth1_vlan: left promiscuous mode [ 346.090512][ T2798] veth0_vlan: left promiscuous mode [ 346.420541][T11978] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1986'. [ 346.982461][T11993] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.1990'. [ 347.071269][T11998] IPVS: set_ctl: invalid protocol: 115 224.0.0.1:20004 [ 347.479216][ T5100] Bluetooth: hci1: command tx timeout [ 347.678421][ T2798] team0 (unregistering): Port device team_slave_1 removed [ 347.745626][ T2798] team0 (unregistering): Port device team_slave_0 removed [ 348.402821][T11968] netlink: 5156 bytes leftover after parsing attributes in process `syz.3.1984'. [ 348.597244][T12017] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1998'. [ 348.789302][T12029] FAULT_INJECTION: forcing a failure. [ 348.789302][T12029] name failslab, interval 1, probability 0, space 0, times 0 [ 348.828311][T12029] CPU: 0 PID: 12029 Comm: syz.3.2001 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 348.838599][T12029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 348.848763][T12029] Call Trace: [ 348.852090][T12029] [ 348.855050][T12029] dump_stack_lvl+0x241/0x360 [ 348.859780][T12029] ? __pfx_dump_stack_lvl+0x10/0x10 [ 348.865014][T12029] ? __pfx__printk+0x10/0x10 [ 348.869659][T12029] ? ref_tracker_alloc+0x332/0x490 [ 348.874819][T12029] should_fail_ex+0x3b0/0x4e0 [ 348.879537][T12029] ? skb_clone+0x20c/0x390 [ 348.883983][T12029] should_failslab+0x9/0x20 [ 348.888525][T12029] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 348.893957][T12029] skb_clone+0x20c/0x390 [ 348.898251][T12029] __netlink_deliver_tap+0x3cc/0x7c0 [ 348.903601][T12029] ? netlink_deliver_tap+0x2e/0x1b0 [ 348.908854][T12029] netlink_deliver_tap+0x19d/0x1b0 [ 348.914014][T12029] netlink_unicast+0x7b8/0x980 [ 348.918830][T12029] ? __pfx_netlink_unicast+0x10/0x10 [ 348.924167][T12029] ? __virt_addr_valid+0x183/0x520 [ 348.929316][T12029] ? __check_object_size+0x49c/0x900 [ 348.934644][T12029] ? bpf_lsm_netlink_send+0x9/0x10 [ 348.939798][T12029] netlink_sendmsg+0x8db/0xcb0 [ 348.944603][T12029] ? __pfx_netlink_sendmsg+0x10/0x10 [ 348.949915][T12029] ? __import_iovec+0x536/0x820 [ 348.954789][T12029] ? aa_sock_msg_perm+0x91/0x160 [ 348.959853][T12029] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 348.965158][T12029] ? security_socket_sendmsg+0x87/0xb0 [ 348.970651][T12029] ? __pfx_netlink_sendmsg+0x10/0x10 [ 348.975976][T12029] __sock_sendmsg+0x221/0x270 [ 348.980820][T12029] ____sys_sendmsg+0x525/0x7d0 [ 348.985622][T12029] ? __pfx_____sys_sendmsg+0x10/0x10 [ 348.990954][T12029] __sys_sendmsg+0x2b0/0x3a0 [ 348.995663][T12029] ? __pfx___sys_sendmsg+0x10/0x10 [ 349.000816][T12029] ? vfs_write+0x7c4/0xc90 [ 349.005308][T12029] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 349.011666][T12029] ? do_syscall_64+0x100/0x230 [ 349.016464][T12029] ? do_syscall_64+0xb6/0x230 [ 349.021224][T12029] do_syscall_64+0xf3/0x230 [ 349.025759][T12029] ? clear_bhb_loop+0x35/0x90 [ 349.030472][T12029] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 349.036506][T12029] RIP: 0033:0x7f576d975bd9 [ 349.040984][T12029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 349.060737][T12029] RSP: 002b:00007f576e76f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 349.069272][T12029] RAX: ffffffffffffffda RBX: 00007f576db03f60 RCX: 00007f576d975bd9 [ 349.077270][T12029] RDX: 0000000000000000 RSI: 0000000020000a80 RDI: 0000000000000006 [ 349.085364][T12029] RBP: 00007f576e76f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 349.093369][T12029] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 349.101388][T12029] R13: 000000000000000b R14: 00007f576db03f60 R15: 00007ffd3c61a338 [ 349.109437][T12029] [ 349.385364][T12023] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1999'. [ 349.421003][T12038] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2003'. [ 349.543135][ C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 349.559706][ T5100] Bluetooth: hci1: command tx timeout [ 349.566808][T12049] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2005'. [ 349.613922][T11949] chnl_net:caif_netlink_parms(): no params data found [ 350.138715][T12057] netlink: 5156 bytes leftover after parsing attributes in process `syz.2.2008'. [ 350.214222][T11949] bridge0: port 1(bridge_slave_0) entered blocking state [ 350.222875][T11949] bridge0: port 1(bridge_slave_0) entered disabled state [ 350.231606][T11949] bridge_slave_0: entered allmulticast mode [ 350.248539][T11949] bridge_slave_0: entered promiscuous mode [ 350.269971][T11949] bridge0: port 2(bridge_slave_1) entered blocking state [ 350.295571][T11949] bridge0: port 2(bridge_slave_1) entered disabled state [ 350.317337][T11949] bridge_slave_1: entered allmulticast mode [ 350.337421][T11949] bridge_slave_1: entered promiscuous mode [ 350.617412][T11949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 350.642559][T11949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 350.734962][T11949] team0: Port device team_slave_0 added [ 350.767565][T11949] team0: Port device team_slave_1 added [ 350.879539][T11949] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 350.897811][T11949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 350.938119][T11949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 350.969583][T11949] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 350.995448][T11949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 351.022937][T11949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 351.106505][T11949] hsr_slave_0: entered promiscuous mode [ 351.122304][T11949] hsr_slave_1: entered promiscuous mode [ 351.136311][T11949] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 351.146628][T11949] Cannot create hsr debugfs directory [ 351.238506][T12092] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2018'. [ 351.638356][ T5100] Bluetooth: hci1: command tx timeout [ 352.004030][T12130] netlink: 203516 bytes leftover after parsing attributes in process `syz.2.2032'. [ 352.031790][T12130] netlink: zone id is out of range [ 352.037916][T12130] netlink: zone id is out of range [ 352.061505][T12130] netlink: zone id is out of range [ 352.089472][T12130] netlink: zone id is out of range [ 352.099323][T12130] netlink: zone id is out of range [ 352.114504][T12130] netlink: zone id is out of range [ 352.130444][T12130] netlink: zone id is out of range [ 352.135748][T12130] netlink: zone id is out of range [ 352.158910][T12130] netlink: zone id is out of range [ 352.237619][T11949] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 352.282404][T11949] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 352.317789][T11949] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 352.366360][T11949] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 352.814721][T11949] 8021q: adding VLAN 0 to HW filter on device bond0 [ 352.927065][T12144] batman_adv: batadv0: Adding interface: macvtap2 [ 352.965404][T12144] batman_adv: batadv0: The MTU of interface macvtap2 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 353.027433][T12144] batman_adv: batadv0: Not using interface macvtap2 (retrying later): interface not active [ 353.052737][ T5112] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 353.065249][ T5112] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 353.079523][ T5112] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 353.090788][ T5112] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 353.105375][ T5112] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 353.121525][ T5112] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 353.265074][T11949] 8021q: adding VLAN 0 to HW filter on device team0 [ 353.326279][T11036] bridge0: port 1(bridge_slave_0) entered blocking state [ 353.333845][T11036] bridge0: port 1(bridge_slave_0) entered forwarding state [ 353.395088][T11038] bridge0: port 2(bridge_slave_1) entered blocking state [ 353.402412][T11038] bridge0: port 2(bridge_slave_1) entered forwarding state [ 353.666771][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 353.728920][ T5100] Bluetooth: hci1: command tx timeout [ 353.812366][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 353.905096][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.047989][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 354.385728][T12149] chnl_net:caif_netlink_parms(): no params data found [ 354.826384][ T11] ip6gretap0 (unregistering): left promiscuous mode [ 355.179404][ T5100] Bluetooth: hci2: command tx timeout [ 355.186306][ T11] dvmrp1 (unregistering): left allmulticast mode [ 355.561940][ T11] bond0 (unregistering): left allmulticast mode [ 355.568376][ T11] bond0 (unregistering): left promiscuous mode [ 355.601842][ T11] bond0 (unregistering): Released all slaves [ 355.650929][T12197] bridge0: port 1(team0) entered blocking state [ 355.676375][T12197] bridge0: port 1(team0) entered disabled state [ 355.688333][T12197] team0: entered allmulticast mode [ 355.693772][T12197] team_slave_0: entered allmulticast mode [ 355.708344][T12197] team_slave_1: entered allmulticast mode [ 355.714741][T12197] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 355.738535][T12197] team0: entered promiscuous mode [ 355.744955][T12197] team_slave_0: entered promiscuous mode [ 355.754536][T12197] team_slave_1: entered promiscuous mode [ 355.819154][T12209] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2053'. [ 355.963968][T11949] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 356.031909][T12223] bridge0: entered allmulticast mode [ 356.046782][T12220] x_tables: unsorted entry at hook 1 [ 356.074593][T12223] pim6reg: entered allmulticast mode [ 356.339747][ T11] hsr_slave_0: left promiscuous mode [ 356.356397][ T11] hsr_slave_1: left promiscuous mode [ 356.389993][ T11] veth1_macvtap: left promiscuous mode [ 356.395861][ T11] veth1_vlan: left promiscuous mode [ 356.402370][ T11] veth0_vlan: left promiscuous mode [ 356.967348][ T11] pimreg (unregistering): left allmulticast mode [ 357.248590][ T5100] Bluetooth: hci2: command tx timeout [ 357.922676][ T11] bridge_slave_0 (unregistering): left allmulticast mode [ 358.315801][T12149] bridge0: port 1(bridge_slave_0) entered blocking state [ 358.356093][T12149] bridge0: port 1(bridge_slave_0) entered disabled state [ 358.379484][T12149] bridge_slave_0: entered allmulticast mode [ 358.387183][T12149] bridge_slave_0: entered promiscuous mode [ 358.466397][T12262] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2065'. [ 358.509149][T12149] bridge0: port 2(bridge_slave_1) entered blocking state [ 358.516496][T12149] bridge0: port 2(bridge_slave_1) entered disabled state [ 358.544482][T12149] bridge_slave_1: entered allmulticast mode [ 358.553294][T12149] bridge_slave_1: entered promiscuous mode [ 358.618896][T12266] netlink: 'syz.0.2066': attribute type 2 has an invalid length. [ 358.774919][T12149] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 358.822224][T12149] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 358.877470][T12279] FAULT_INJECTION: forcing a failure. [ 358.877470][T12279] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 358.893599][T12279] CPU: 0 PID: 12279 Comm: syz.0.2071 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 358.903845][T12279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 358.913953][T12279] Call Trace: [ 358.917277][T12279] [ 358.920251][T12279] dump_stack_lvl+0x241/0x360 [ 358.925000][T12279] ? __pfx_dump_stack_lvl+0x10/0x10 [ 358.930354][T12279] ? __pfx__printk+0x10/0x10 [ 358.935051][T12279] should_fail_ex+0x3b0/0x4e0 [ 358.939809][T12279] prepare_alloc_pages+0x1da/0x5d0 [ 358.945023][T12279] __alloc_pages_noprof+0x166/0x6c0 [ 358.950318][T12279] ? __pfx___alloc_pages_noprof+0x10/0x10 [ 358.956083][T12279] ? validate_chain+0x11e/0x5900 [ 358.961073][T12279] alloc_pages_mpol_noprof+0x3e8/0x680 [ 358.966606][T12279] ? __pfx_alloc_pages_mpol_noprof+0x10/0x10 [ 358.972634][T12279] vma_alloc_folio_noprof+0xf3/0x1f0 [ 358.978042][T12279] ? __pfx_vma_alloc_folio_noprof+0x10/0x10 [ 358.983985][T12279] ? __lock_acquire+0x1346/0x1fd0 [ 358.989047][T12279] folio_prealloc+0x31/0x170 [ 358.993695][T12279] handle_pte_fault+0x257b/0x7090 [ 358.998780][T12279] ? __pfx_lock_acquire+0x10/0x10 [ 359.003834][T12279] ? __pfx_handle_pte_fault+0x10/0x10 [ 359.009229][T12279] ? do_raw_spin_lock+0x14f/0x370 [ 359.014384][T12279] ? follow_page_pte+0x292/0x1d90 [ 359.019427][T12279] ? follow_page_pte+0x859/0x1d90 [ 359.024492][T12279] ? __pfx_lock_release+0x10/0x10 [ 359.029546][T12279] ? do_raw_spin_unlock+0x13c/0x8b0 [ 359.034793][T12279] handle_mm_fault+0x10df/0x1ba0 [ 359.039782][T12279] ? __pfx_handle_mm_fault+0x10/0x10 [ 359.045141][T12279] ? __pfx_find_vma+0x10/0x10 [ 359.049843][T12279] ? vma_is_secretmem+0xd/0x50 [ 359.054712][T12279] ? check_vma_flags+0x531/0x5a0 [ 359.059675][T12279] __get_user_pages+0x6ef/0x1590 [ 359.064678][T12279] ? __pfx___get_user_pages+0x10/0x10 [ 359.070130][T12279] __gup_longterm_locked+0x4b0/0x2a80 [ 359.075555][T12279] ? __pfx___gup_longterm_locked+0x10/0x10 [ 359.081590][T12279] ? down_read+0x82b/0xa40 [ 359.086082][T12279] ? is_valid_gup_args+0x124/0x200 [ 359.091236][T12279] pin_user_pages+0x137/0x1f0 [ 359.095951][T12279] ? __pfx_pin_user_pages+0x10/0x10 [ 359.101191][T12279] ? __kmalloc_node_noprof+0x247/0x440 [ 359.106708][T12279] xdp_umem_create+0x955/0xf30 [ 359.111514][T12279] xsk_setsockopt+0x732/0x950 [ 359.116213][T12279] ? __pfx_xsk_setsockopt+0x10/0x10 [ 359.121441][T12279] ? __pfx_lock_acquire+0x10/0x10 [ 359.126499][T12279] ? aa_sock_opt_perm+0x79/0x120 [ 359.131516][T12279] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 359.137087][T12279] ? security_socket_setsockopt+0x87/0xb0 [ 359.142834][T12279] ? __pfx_xsk_setsockopt+0x10/0x10 [ 359.148086][T12279] do_sock_setsockopt+0x3af/0x720 [ 359.153161][T12279] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 359.158752][T12279] ? __fget_files+0x29/0x470 [ 359.163409][T12279] ? __fget_files+0x3f6/0x470 [ 359.168152][T12279] __sys_setsockopt+0x1ae/0x250 [ 359.173047][T12279] __x64_sys_setsockopt+0xb5/0xd0 [ 359.178122][T12279] do_syscall_64+0xf3/0x230 [ 359.182678][T12279] ? clear_bhb_loop+0x35/0x90 [ 359.187393][T12279] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 359.193330][T12279] RIP: 0033:0x7f8ff7b75bd9 [ 359.197764][T12279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 359.217407][T12279] RSP: 002b:00007f8ff8918048 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 359.225858][T12279] RAX: ffffffffffffffda RBX: 00007f8ff7d03f60 RCX: 00007f8ff7b75bd9 [ 359.233864][T12279] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000004 [ 359.241864][T12279] RBP: 00007f8ff89180a0 R08: 0000000000000020 R09: 0000000000000000 [ 359.249877][T12279] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000001 [ 359.257908][T12279] R13: 000000000000000b R14: 00007f8ff7d03f60 R15: 00007ffd991c6e88 [ 359.265945][T12279] [ 359.318995][ T5100] Bluetooth: hci2: command tx timeout [ 359.371512][T12149] team0: Port device team_slave_0 added [ 359.455023][T12149] team0: Port device team_slave_1 added [ 359.540154][T11949] veth0_vlan: entered promiscuous mode [ 359.587866][T12149] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 359.603042][T12149] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 359.637572][T12149] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 359.643795][T12290] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 359.689284][T11949] veth1_vlan: entered promiscuous mode [ 359.699467][T12149] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 359.714014][T12149] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 359.749706][T12149] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 359.787007][ T11] IPVS: stop unused estimator thread 0... [ 359.907422][T12149] hsr_slave_0: entered promiscuous mode [ 359.916143][T12149] hsr_slave_1: entered promiscuous mode [ 359.927901][T12149] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 359.945467][T12149] Cannot create hsr debugfs directory [ 359.952575][T12292] ip6tnl0: entered promiscuous mode [ 360.006327][T12287] ip6tnl0: left promiscuous mode [ 360.131175][T11949] veth0_macvtap: entered promiscuous mode [ 360.213953][T11949] veth1_macvtap: entered promiscuous mode [ 360.297876][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 360.314455][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.325426][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 360.341582][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.354724][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 360.367005][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.400344][T11949] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 360.481254][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.508192][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.541138][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.565076][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.579025][T11949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 360.595881][T11949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 360.610554][T11949] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 360.665164][T11949] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.683339][T11949] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.701850][T11949] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.711264][T12310] Cannot find set identified by id 0 to match [ 360.715334][T11949] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 360.770630][T12310] pimreg: entered allmulticast mode [ 360.996825][ T2798] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 361.037859][ T2798] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 361.123086][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 361.123748][T12149] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 361.132366][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 361.160189][T12149] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 361.180380][T12149] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 361.204770][T12149] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 361.398844][ T5100] Bluetooth: hci2: command tx timeout [ 361.493682][T12149] 8021q: adding VLAN 0 to HW filter on device bond0 [ 361.554868][T12149] 8021q: adding VLAN 0 to HW filter on device team0 [ 361.723001][ T1091] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 361.840683][T11038] bridge0: port 1(bridge_slave_0) entered blocking state [ 361.847925][T11038] bridge0: port 1(bridge_slave_0) entered forwarding state [ 361.920511][T11038] bridge0: port 2(bridge_slave_1) entered blocking state [ 361.927745][T11038] bridge0: port 2(bridge_slave_1) entered forwarding state [ 362.029708][ T1091] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.124806][ T1091] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.304089][T12149] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 362.364462][T12149] veth0_vlan: entered promiscuous mode [ 362.386799][T12149] veth1_vlan: entered promiscuous mode [ 362.424561][ T1091] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 362.476406][T12149] veth0_macvtap: entered promiscuous mode [ 362.491057][T12149] veth1_macvtap: entered promiscuous mode [ 362.512040][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.524684][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.535657][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.546805][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.557253][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.568907][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.579201][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 362.591327][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.604493][T12149] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 362.625116][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.636269][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.649503][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.660756][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.671297][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.682980][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.693830][T12149] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 362.705671][T12149] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 362.717935][T12149] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 362.737508][T12149] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.747952][T12149] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.757578][T12149] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.769096][T12149] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 362.948956][T10921] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 362.956871][T10921] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 362.996185][ T1091] bridge_slave_1: left allmulticast mode [ 363.002749][ T1091] bridge_slave_1: left promiscuous mode [ 363.009461][ T1091] bridge0: port 2(bridge_slave_1) entered disabled state [ 363.020458][ T1091] bridge_slave_0: left allmulticast mode [ 363.026148][ T1091] bridge_slave_0: left promiscuous mode [ 363.032662][ T1091] bridge0: port 1(bridge_slave_0) entered disabled state [ 363.611148][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 363.623893][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 363.634340][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 363.647474][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 363.663227][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 363.671707][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 364.054046][ T1091] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 364.067643][ T1091] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 364.082825][ T1091] bond0 (unregistering): Released all slaves [ 364.194325][T10921] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 364.266038][T10921] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 364.920745][ T1091] hsr_slave_0: left promiscuous mode [ 364.934635][ T1091] hsr_slave_1: left promiscuous mode [ 364.954157][ T1091] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 364.966032][ T1091] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 364.979390][ T1091] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 364.987799][ T1091] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 365.041665][ T1091] veth1_macvtap: left promiscuous mode [ 365.047449][ T1091] veth0_macvtap: left promiscuous mode [ 365.060645][ T1091] veth1_vlan: left promiscuous mode [ 365.066234][ T1091] veth0_vlan: left promiscuous mode [ 365.644486][T12394] FAULT_INJECTION: forcing a failure. [ 365.644486][T12394] name failslab, interval 1, probability 0, space 0, times 0 [ 365.673006][T12394] CPU: 0 PID: 12394 Comm: syz.1.2106 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 365.683493][T12394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 365.693601][T12394] Call Trace: [ 365.696930][T12394] [ 365.700022][T12394] dump_stack_lvl+0x241/0x360 [ 365.704815][T12394] ? __pfx_dump_stack_lvl+0x10/0x10 [ 365.710115][T12394] ? __pfx__printk+0x10/0x10 [ 365.714799][T12394] ? ref_tracker_alloc+0x332/0x490 [ 365.719987][T12394] should_fail_ex+0x3b0/0x4e0 [ 365.724737][T12394] ? skb_clone+0x20c/0x390 [ 365.729198][T12394] should_failslab+0x9/0x20 [ 365.733751][T12394] kmem_cache_alloc_noprof+0x6c/0x2a0 [ 365.739193][T12394] skb_clone+0x20c/0x390 [ 365.743514][T12394] __netlink_deliver_tap+0x3cc/0x7c0 [ 365.748896][T12394] ? netlink_deliver_tap+0x2e/0x1b0 [ 365.754206][T12394] netlink_deliver_tap+0x19d/0x1b0 [ 365.759427][T12394] netlink_unicast+0x7b8/0x980 [ 365.764430][T12394] ? __pfx_netlink_unicast+0x10/0x10 [ 365.769904][T12394] ? __virt_addr_valid+0x183/0x520 [ 365.775099][T12394] ? __check_object_size+0x49c/0x900 [ 365.780460][T12394] ? bpf_lsm_netlink_send+0x9/0x10 [ 365.785672][T12394] netlink_sendmsg+0x8db/0xcb0 [ 365.790552][T12394] ? __pfx_netlink_sendmsg+0x10/0x10 [ 365.795952][T12394] ? __import_iovec+0x536/0x820 [ 365.800903][T12394] ? aa_sock_msg_perm+0x91/0x160 [ 365.806022][T12394] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 365.811391][T12394] ? security_socket_sendmsg+0x87/0xb0 [ 365.816934][T12394] ? __pfx_netlink_sendmsg+0x10/0x10 [ 365.822311][T12394] __sock_sendmsg+0x221/0x270 [ 365.827060][T12394] ____sys_sendmsg+0x525/0x7d0 [ 365.831912][T12394] ? __pfx_____sys_sendmsg+0x10/0x10 [ 365.837296][T12394] __sys_sendmsg+0x2b0/0x3a0 [ 365.841968][T12394] ? __pfx___sys_sendmsg+0x10/0x10 [ 365.847140][T12394] ? vfs_write+0x7c4/0xc90 [ 365.851675][T12394] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 365.858071][T12394] ? do_syscall_64+0x100/0x230 [ 365.862922][T12394] ? do_syscall_64+0xb6/0x230 [ 365.867676][T12394] do_syscall_64+0xf3/0x230 [ 365.872415][T12394] ? clear_bhb_loop+0x35/0x90 [ 365.877254][T12394] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 365.883224][T12394] RIP: 0033:0x7fdf9e575bd9 [ 365.887706][T12394] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 365.907905][T12394] RSP: 002b:00007fdf9f25f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 365.916382][T12394] RAX: ffffffffffffffda RBX: 00007fdf9e704110 RCX: 00007fdf9e575bd9 [ 365.924595][T12394] RDX: 0000000000000000 RSI: 0000000020000180 RDI: 0000000000000006 [ 365.932628][T12394] RBP: 00007fdf9f25f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 365.940675][T12394] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 365.948719][T12394] R13: 000000000000006e R14: 00007fdf9e704110 R15: 00007ffeafa45968 [ 365.956862][T12394] [ 365.968812][ T5112] Bluetooth: hci1: command tx timeout [ 366.201516][ T1091] team0 (unregistering): Port device team_slave_1 removed [ 366.265541][ T1091] team0 (unregistering): Port device team_slave_0 removed [ 366.946720][T10921] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 367.187872][T12353] chnl_net:caif_netlink_parms(): no params data found [ 367.673546][T12353] bridge0: port 1(bridge_slave_0) entered blocking state [ 367.687649][T12353] bridge0: port 1(bridge_slave_0) entered disabled state [ 367.717169][T12353] bridge_slave_0: entered allmulticast mode [ 367.727127][T12353] bridge_slave_0: entered promiscuous mode [ 367.772096][T12353] bridge0: port 2(bridge_slave_1) entered blocking state [ 367.789149][T12353] bridge0: port 2(bridge_slave_1) entered disabled state [ 367.797763][T12353] bridge_slave_1: entered allmulticast mode [ 367.816592][T12353] bridge_slave_1: entered promiscuous mode [ 367.933192][T12353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 367.962326][T12353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 368.028881][ T2831] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 368.039463][ T5112] Bluetooth: hci1: command tx timeout [ 368.125804][T12353] team0: Port device team_slave_0 added [ 368.148322][T12445] FAULT_INJECTION: forcing a failure. [ 368.148322][T12445] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 368.162892][T12445] CPU: 0 PID: 12445 Comm: syz.3.2125 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 368.165988][T12353] team0: Port device team_slave_1 added [ 368.173279][T12445] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 368.173313][T12445] Call Trace: [ 368.173325][T12445] [ 368.173336][T12445] dump_stack_lvl+0x241/0x360 [ 368.173393][T12445] ? __pfx_dump_stack_lvl+0x10/0x10 [ 368.173429][T12445] ? __pfx__printk+0x10/0x10 [ 368.173463][T12445] ? bpf_cgroup_storage_free+0x8f/0xb0 [ 368.173496][T12445] ? __pfx_lock_release+0x10/0x10 [ 368.173521][T12445] ? bpf_test_run+0x840/0x910 [ 368.173563][T12445] should_fail_ex+0x3b0/0x4e0 [ 368.173604][T12445] _copy_to_user+0x2f/0xb0 [ 368.173633][T12445] bpf_test_finish+0x593/0x8b0 [ 368.173674][T12445] ? __might_fault+0xaa/0x120 [ 368.173710][T12445] ? __pfx_bpf_test_finish+0x10/0x10 [ 368.173745][T12445] ? _copy_from_user+0xa6/0xe0 [ 368.173771][T12445] ? bpf_test_init+0x15a/0x180 [ 368.173806][T12445] bpf_prog_test_run_xdp+0x905/0x11b0 [ 368.173848][T12445] ? __pfx_lock_release+0x10/0x10 [ 368.173887][T12445] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 368.173920][T12445] ? __fget_files+0x29/0x470 [ 368.173968][T12445] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 368.174003][T12445] bpf_prog_test_run+0x33a/0x3b0 [ 368.174034][T12445] __sys_bpf+0x48d/0x810 [ 368.174086][T12445] ? __pfx___sys_bpf+0x10/0x10 [ 368.174139][T12445] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 368.174169][T12445] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 368.312172][T12445] ? do_syscall_64+0x100/0x230 [ 368.317001][T12445] __x64_sys_bpf+0x7c/0x90 [ 368.321467][T12445] do_syscall_64+0xf3/0x230 [ 368.326013][T12445] ? clear_bhb_loop+0x35/0x90 [ 368.330738][T12445] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 368.336663][T12445] RIP: 0033:0x7f576d975bd9 [ 368.341109][T12445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 368.360924][T12445] RSP: 002b:00007f576e76f048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 368.369402][T12445] RAX: ffffffffffffffda RBX: 00007f576db03f60 RCX: 00007f576d975bd9 [ 368.377601][T12445] RDX: 0000000000000050 RSI: 0000000020000740 RDI: 000000000000000a [ 368.385697][T12445] RBP: 00007f576e76f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 368.393723][T12445] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 368.401895][T12445] R13: 000000000000000b R14: 00007f576db03f60 R15: 00007ffd3c61a338 [ 368.409920][T12445] [ 368.504710][T12353] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 368.514727][T12353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 368.552682][T12353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 368.582219][T12353] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 368.593307][T12353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 368.647561][T12353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 368.737183][T12455] xt_CT: You must specify a L4 protocol and not use inversions on it [ 368.809658][T12353] hsr_slave_0: entered promiscuous mode [ 368.824024][T12353] hsr_slave_1: entered promiscuous mode [ 368.842777][T12353] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 368.850975][T12353] Cannot create hsr debugfs directory [ 369.323799][T12475] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 369.349201][T12474] xt_TCPMSS: Only works on TCP SYN packets [ 369.465551][T12474] sctp: [Deprecated]: syz.0.2140 (pid 12474) Use of struct sctp_assoc_value in delayed_ack socket option. [ 369.465551][T12474] Use struct sctp_sack_info instead [ 369.540363][T12482] ip6tnl0: entered promiscuous mode [ 369.649756][T12473] ip6tnl0: left promiscuous mode [ 370.074965][T12353] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 370.113201][T12353] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 370.129289][ T5112] Bluetooth: hci1: command tx timeout [ 370.145718][T12353] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 370.177070][T12353] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 370.423532][T12516] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2149'. [ 370.454632][T12518] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2153'. [ 370.511996][T12353] 8021q: adding VLAN 0 to HW filter on device bond0 [ 370.577507][T12353] 8021q: adding VLAN 0 to HW filter on device team0 [ 370.695280][T12526] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 370.710881][T11037] bridge0: port 1(bridge_slave_0) entered blocking state [ 370.718233][T11037] bridge0: port 1(bridge_slave_0) entered forwarding state [ 370.755929][T11037] bridge0: port 2(bridge_slave_1) entered blocking state [ 370.763318][T11037] bridge0: port 2(bridge_slave_1) entered forwarding state [ 370.852376][T12526] ip6tnl0: entered promiscuous mode [ 370.877059][T12525] ip6tnl0: left promiscuous mode [ 371.336699][T12353] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 371.496130][T12555] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2164'. [ 371.565870][ T2831] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2 [ 371.591531][T12560] veth1_macvtap: left promiscuous mode [ 371.918824][T12570] FAULT_INJECTION: forcing a failure. [ 371.918824][T12570] name failslab, interval 1, probability 0, space 0, times 0 [ 371.951346][T12570] CPU: 0 PID: 12570 Comm: syz.3.2168 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 371.953808][T12353] veth0_vlan: entered promiscuous mode [ 371.961565][T12570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 371.961588][T12570] Call Trace: [ 371.961600][T12570] [ 371.961610][T12570] dump_stack_lvl+0x241/0x360 [ 371.961656][T12570] ? __pfx_dump_stack_lvl+0x10/0x10 [ 371.961691][T12570] ? __pfx__printk+0x10/0x10 [ 371.997990][T12570] should_fail_ex+0x3b0/0x4e0 [ 372.002740][T12570] ? __alloc_skb+0x1c3/0x440 [ 372.007377][T12570] should_failslab+0x9/0x20 [ 372.011924][T12570] kmem_cache_alloc_node_noprof+0x71/0x320 [ 372.017790][T12570] __alloc_skb+0x1c3/0x440 [ 372.022251][T12570] ? __pfx___might_resched+0x10/0x10 [ 372.027583][T12570] ? __pfx___alloc_skb+0x10/0x10 [ 372.032551][T12570] ? bpf_lsm_socket_getpeersec_dgram+0x9/0x20 [ 372.038644][T12570] ? security_socket_getpeersec_dgram+0x88/0xb0 [ 372.044942][T12570] netlink_sendmsg+0x631/0xcb0 [ 372.049766][T12570] ? __pfx_netlink_sendmsg+0x10/0x10 [ 372.055099][T12570] ? __import_iovec+0x536/0x820 [ 372.059987][T12570] ? aa_sock_msg_perm+0x91/0x160 [ 372.064968][T12570] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 372.070278][T12570] ? security_socket_sendmsg+0x87/0xb0 [ 372.075777][T12570] ? __pfx_netlink_sendmsg+0x10/0x10 [ 372.081129][T12570] __sock_sendmsg+0x221/0x270 [ 372.085942][T12570] ____sys_sendmsg+0x525/0x7d0 [ 372.090750][T12570] ? __pfx_____sys_sendmsg+0x10/0x10 [ 372.096174][T12570] __sys_sendmsg+0x2b0/0x3a0 [ 372.100810][T12570] ? __pfx___sys_sendmsg+0x10/0x10 [ 372.105956][T12570] ? vfs_write+0x7c4/0xc90 [ 372.110446][T12570] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 372.116810][T12570] ? do_syscall_64+0x100/0x230 [ 372.121623][T12570] ? do_syscall_64+0xb6/0x230 [ 372.126347][T12570] do_syscall_64+0xf3/0x230 [ 372.130901][T12570] ? clear_bhb_loop+0x35/0x90 [ 372.135605][T12570] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 372.141555][T12570] RIP: 0033:0x7f576d975bd9 [ 372.146000][T12570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 372.165670][T12570] RSP: 002b:00007f576e76f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 372.174160][T12570] RAX: ffffffffffffffda RBX: 00007f576db03f60 RCX: 00007f576d975bd9 [ 372.182711][T12570] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000003 [ 372.190716][T12570] RBP: 00007f576e76f0a0 R08: 0000000000000000 R09: 0000000000000000 [ 372.198742][T12570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 372.206793][T12570] R13: 000000000000000b R14: 00007f576db03f60 R15: 00007ffd3c61a338 [ 372.214829][T12570] [ 372.240862][T12353] veth1_vlan: entered promiscuous mode [ 372.241588][ T5112] Bluetooth: hci1: command tx timeout [ 372.357723][T12572] netlink: 'syz.1.2169': attribute type 1 has an invalid length. [ 372.384476][T12572] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2169'. [ 372.495553][T12353] veth0_macvtap: entered promiscuous mode [ 372.542516][T12353] veth1_macvtap: entered promiscuous mode [ 372.642577][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.689257][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.708785][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.722880][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.748880][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.764623][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.778533][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 372.789334][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.802047][T12353] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 372.832283][T12589] vlan2: entered allmulticast mode [ 372.837638][T12589] mac80211_hwsim hwsim28 wlan0: entered allmulticast mode [ 372.846499][T12593] sctp: [Deprecated]: syz.2.2177 (pid 12593) Use of int in maxseg socket option. [ 372.846499][T12593] Use struct sctp_assoc_value instead [ 372.864853][T12589] mac80211_hwsim hwsim28 wlan0: left allmulticast mode [ 372.920980][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 372.939425][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.955630][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 372.969512][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 372.980806][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 373.008862][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.021219][T12353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 373.032978][T12353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 373.045980][T12353] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 373.083456][T12353] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.113603][T12353] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.130967][T12353] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.144248][T12353] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 373.397405][T12601] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 373.416317][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 373.438755][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 373.535531][T12601] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 373.560693][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 373.577455][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 373.759293][T12607] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 373.992594][ T5100] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 374.009686][ T5100] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 374.021099][ T5100] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 374.039334][ T5100] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 374.049300][ T5100] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 374.057819][ T5100] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 374.117256][T10918] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.131060][T10918] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.253440][T10918] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.273360][T10918] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.431637][T10918] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.458831][T10918] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 374.589668][T10918] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 374.601060][T10918] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 375.002526][T10918] bridge_slave_1: left allmulticast mode [ 375.019092][T10918] bridge_slave_1: left promiscuous mode [ 375.032173][T10918] bridge0: port 2(bridge_slave_1) entered disabled state [ 375.967313][T10918] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 375.984018][T10918] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 375.999586][T10918] bond0 (unregistering): Released all slaves [ 376.056767][T12659] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2198'. [ 376.124310][ T5112] Bluetooth: hci1: command tx timeout [ 376.165853][T10918] tipc: Left network mode [ 376.166001][T12612] chnl_net:caif_netlink_parms(): no params data found [ 376.446802][T12675] ================================================================== [ 376.454959][T12675] BUG: KASAN: slab-use-after-free in dev_map_enqueue+0x40/0x3e0 [ 376.462633][T12675] Read of size 8 at addr ffff88807b5e7c80 by task syz.2.2206/12675 [ 376.470648][T12675] [ 376.473099][T12675] CPU: 0 PID: 12675 Comm: syz.2.2206 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 376.483281][T12675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 376.493372][T12675] Call Trace: [ 376.496758][T12675] [ 376.499706][T12675] dump_stack_lvl+0x241/0x360 [ 376.504422][T12675] ? __pfx_dump_stack_lvl+0x10/0x10 [ 376.509655][T12675] ? __pfx__printk+0x10/0x10 [ 376.514273][T12675] ? _printk+0xd5/0x120 [ 376.518550][T12675] ? __virt_addr_valid+0x183/0x520 [ 376.523696][T12675] ? __virt_addr_valid+0x183/0x520 [ 376.528834][T12675] print_report+0x169/0x550 [ 376.533364][T12675] ? __virt_addr_valid+0x183/0x520 [ 376.538518][T12675] ? __virt_addr_valid+0x183/0x520 [ 376.543735][T12675] ? __virt_addr_valid+0x44e/0x520 [ 376.548981][T12675] ? __phys_addr+0xba/0x170 [ 376.553608][T12675] ? dev_map_enqueue+0x40/0x3e0 [ 376.558494][T12675] kasan_report+0x143/0x180 [ 376.563036][T12675] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 376.569136][T12675] ? dev_map_enqueue+0x40/0x3e0 [ 376.574013][T12675] dev_map_enqueue+0x40/0x3e0 [ 376.578733][T12675] xdp_do_redirect_frame+0x2a6/0x660 [ 376.584066][T12675] bpf_test_run_xdp_live+0xe60/0x1e60 [ 376.589501][T12675] ? bpf_test_run_xdp_live+0x724/0x1e60 [ 376.595194][T12675] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 376.601057][T12675] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 376.606985][T12675] ? __might_fault+0xaa/0x120 [ 376.611691][T12675] ? __might_fault+0xc6/0x120 [ 376.616395][T12675] ? _copy_from_user+0xa6/0xe0 [ 376.621220][T12675] ? bpf_test_init+0x15a/0x180 [ 376.626033][T12675] ? xdp_convert_md_to_buff+0x5b/0x330 [ 376.631523][T12675] bpf_prog_test_run_xdp+0x80e/0x11b0 [ 376.636947][T12675] ? __pfx_lock_release+0x10/0x10 [ 376.642001][T12675] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 376.647860][T12675] ? __fget_files+0x29/0x470 [ 376.652489][T12675] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 376.658374][T12675] bpf_prog_test_run+0x33a/0x3b0 [ 376.663354][T12675] __sys_bpf+0x48d/0x810 [ 376.667627][T12675] ? __pfx___sys_bpf+0x10/0x10 [ 376.672432][T12675] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 376.678741][T12675] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 376.685274][T12675] ? do_syscall_64+0x100/0x230 [ 376.690074][T12675] __x64_sys_bpf+0x7c/0x90 [ 376.694524][T12675] do_syscall_64+0xf3/0x230 [ 376.699055][T12675] ? clear_bhb_loop+0x35/0x90 [ 376.703777][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.709702][T12675] RIP: 0033:0x7f4405f75bd9 [ 376.714137][T12675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 376.733768][T12675] RSP: 002b:00007f4406c93048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 376.742207][T12675] RAX: ffffffffffffffda RBX: 00007f4406103f60 RCX: 00007f4405f75bd9 [ 376.750237][T12675] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 376.758308][T12675] RBP: 00007f4405fe4aa1 R08: 0000000000000000 R09: 0000000000000000 [ 376.766360][T12675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 376.774352][T12675] R13: 000000000000000b R14: 00007f4406103f60 R15: 00007ffe58ef3eb8 [ 376.782360][T12675] [ 376.785421][T12675] [ 376.787753][T12675] Allocated by task 5096: [ 376.792093][T12675] kasan_save_track+0x3f/0x80 [ 376.796795][T12675] __kasan_kmalloc+0x98/0xb0 [ 376.801429][T12675] kmalloc_trace_noprof+0x19c/0x2c0 [ 376.806731][T12675] alloc_fdtable+0xa1/0x280 [ 376.811315][T12675] dup_fd+0x893/0xce0 [ 376.815418][T12675] copy_files+0x150/0x2a0 [ 376.819766][T12675] copy_process+0x171b/0x3dc0 [ 376.824465][T12675] kernel_clone+0x226/0x8f0 [ 376.829098][T12675] __x64_sys_clone+0x258/0x2a0 [ 376.833978][T12675] do_syscall_64+0xf3/0x230 [ 376.838531][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.844459][T12675] [ 376.846785][T12675] Freed by task 12614: [ 376.850857][T12675] kasan_save_track+0x3f/0x80 [ 376.855548][T12675] kasan_save_free_info+0x40/0x50 [ 376.860609][T12675] poison_slab_object+0xe0/0x150 [ 376.865574][T12675] __kasan_slab_free+0x37/0x60 [ 376.870369][T12675] kfree+0x149/0x360 [ 376.874287][T12675] put_files_struct+0x2e9/0x360 [ 376.879188][T12675] do_exit+0xa08/0x27e0 [ 376.883459][T12675] do_group_exit+0x207/0x2c0 [ 376.888126][T12675] get_signal+0x16a1/0x1740 [ 376.892694][T12675] arch_do_signal_or_restart+0x96/0x860 [ 376.898266][T12675] syscall_exit_to_user_mode+0xc9/0x370 [ 376.903866][T12675] do_syscall_64+0x100/0x230 [ 376.908497][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 376.914450][T12675] [ 376.916988][T12675] The buggy address belongs to the object at ffff88807b5e7c80 [ 376.916988][T12675] which belongs to the cache kmalloc-cg-64 of size 64 [ 376.931164][T12675] The buggy address is located 0 bytes inside of [ 376.931164][T12675] freed 64-byte region [ffff88807b5e7c80, ffff88807b5e7cc0) [ 376.945259][T12675] [ 376.947621][T12675] The buggy address belongs to the physical page: [ 376.954162][T12675] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7b5e7 [ 376.963050][T12675] memcg:ffff88801aec7c01 [ 376.967412][T12675] ksm flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff) [ 376.975022][T12675] page_type: 0xffffefff(slab) [ 376.979743][T12675] raw: 00fff00000000000 ffff88801504dc80 ffffea00018ab900 dead000000000003 [ 376.988442][T12675] raw: 0000000000000000 0000000000200020 00000001ffffefff ffff88801aec7c01 [ 376.997048][T12675] page dumped because: kasan: bad access detected [ 377.003609][T12675] page_owner tracks the page as allocated [ 377.009364][T12675] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5093, tgid 5093 (syz-executor), ts 95847570636, free_ts 95846527415 [ 377.028608][T12675] post_alloc_hook+0x1f3/0x230 [ 377.033431][T12675] get_page_from_freelist+0x2e4c/0x2f10 [ 377.039032][T12675] __alloc_pages_noprof+0x256/0x6c0 [ 377.044258][T12675] alloc_slab_page+0x5f/0x120 [ 377.049050][T12675] allocate_slab+0x5a/0x2f0 [ 377.053613][T12675] ___slab_alloc+0xcd1/0x14b0 [ 377.058312][T12675] __slab_alloc+0x58/0xa0 [ 377.062655][T12675] __kmalloc_node_noprof+0x286/0x440 [ 377.068060][T12675] kvmalloc_node_noprof+0x72/0x190 [ 377.073204][T12675] nf_hook_entries_grow+0x288/0x720 [ 377.078446][T12675] nf_hook_entries_insert_raw+0x4d/0x310 [ 377.084125][T12675] nf_nat_register_fn+0x1c7/0x570 [ 377.089213][T12675] ip6table_nat_table_init+0x1a3/0x2d0 [ 377.094691][T12675] xt_find_table_lock+0x2d4/0x3b0 [ 377.099728][T12675] xt_request_find_table_lock+0x26/0x100 [ 377.105468][T12675] do_ip6t_get_ctl+0x89e/0x1820 [ 377.110346][T12675] page last free pid 5093 tgid 5093 stack trace: [ 377.116705][T12675] free_unref_page+0xd22/0xea0 [ 377.121503][T12675] vfree+0x186/0x2e0 [ 377.125419][T12675] do_ip6t_get_ctl+0x11eb/0x1820 [ 377.130407][T12675] nf_getsockopt+0x299/0x2c0 [ 377.135029][T12675] ipv6_getsockopt+0x263/0x380 [ 377.139815][T12675] tcp_getsockopt+0x163/0x1c0 [ 377.144525][T12675] do_sock_getsockopt+0x373/0x850 [ 377.149573][T12675] __sys_getsockopt+0x271/0x330 [ 377.154445][T12675] __x64_sys_getsockopt+0xb5/0xd0 [ 377.159512][T12675] do_syscall_64+0xf3/0x230 [ 377.164069][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.170011][T12675] [ 377.172350][T12675] Memory state around the buggy address: [ 377.177990][T12675] ffff88807b5e7b80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 377.186266][T12675] ffff88807b5e7c00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 377.194367][T12675] >ffff88807b5e7c80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 377.202472][T12675] ^ [ 377.206576][T12675] ffff88807b5e7d00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 377.214655][T12675] ffff88807b5e7d80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 377.223172][T12675] ================================================================== [ 377.231423][T12675] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 377.238759][T12675] CPU: 0 PID: 12675 Comm: syz.2.2206 Not tainted 6.10.0-rc5-syzkaller-00213-ge367197166a0 #0 [ 377.248980][T12675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 377.259200][T12675] Call Trace: [ 377.262540][T12675] [ 377.265524][T12675] dump_stack_lvl+0x241/0x360 [ 377.270284][T12675] ? __pfx_dump_stack_lvl+0x10/0x10 [ 377.275571][T12675] ? __pfx__printk+0x10/0x10 [ 377.280231][T12675] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 377.286264][T12675] ? vscnprintf+0x5d/0x90 [ 377.290632][T12675] panic+0x349/0x860 [ 377.294562][T12675] ? check_panic_on_warn+0x21/0xb0 [ 377.299714][T12675] ? __pfx_panic+0x10/0x10 [ 377.304163][T12675] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 377.310083][T12675] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 377.315993][T12675] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 377.322482][T12675] check_panic_on_warn+0x86/0xb0 [ 377.327458][T12675] ? dev_map_enqueue+0x40/0x3e0 [ 377.332452][T12675] end_report+0x77/0x160 [ 377.336725][T12675] kasan_report+0x154/0x180 [ 377.341340][T12675] ? __pfx_alloc_pages_bulk_noprof+0x10/0x10 [ 377.347454][T12675] ? dev_map_enqueue+0x40/0x3e0 [ 377.352354][T12675] dev_map_enqueue+0x40/0x3e0 [ 377.357052][T12675] xdp_do_redirect_frame+0x2a6/0x660 [ 377.362391][T12675] bpf_test_run_xdp_live+0xe60/0x1e60 [ 377.367818][T12675] ? bpf_test_run_xdp_live+0x724/0x1e60 [ 377.373404][T12675] ? __pfx_bpf_test_run_xdp_live+0x10/0x10 [ 377.379402][T12675] ? __pfx_xdp_test_run_init_page+0x10/0x10 [ 377.385330][T12675] ? __might_fault+0xaa/0x120 [ 377.390059][T12675] ? __might_fault+0xc6/0x120 [ 377.394768][T12675] ? _copy_from_user+0xa6/0xe0 [ 377.399599][T12675] ? bpf_test_init+0x15a/0x180 [ 377.404390][T12675] ? xdp_convert_md_to_buff+0x5b/0x330 [ 377.409907][T12675] bpf_prog_test_run_xdp+0x80e/0x11b0 [ 377.415323][T12675] ? __pfx_lock_release+0x10/0x10 [ 377.420387][T12675] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 377.426218][T12675] ? __fget_files+0x29/0x470 [ 377.430837][T12675] ? __pfx_bpf_prog_test_run_xdp+0x10/0x10 [ 377.436679][T12675] bpf_prog_test_run+0x33a/0x3b0 [ 377.441641][T12675] __sys_bpf+0x48d/0x810 [ 377.445920][T12675] ? __pfx___sys_bpf+0x10/0x10 [ 377.450719][T12675] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 377.456727][T12675] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 377.463090][T12675] ? do_syscall_64+0x100/0x230 [ 377.467885][T12675] __x64_sys_bpf+0x7c/0x90 [ 377.472328][T12675] do_syscall_64+0xf3/0x230 [ 377.476866][T12675] ? clear_bhb_loop+0x35/0x90 [ 377.481567][T12675] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 377.487584][T12675] RIP: 0033:0x7f4405f75bd9 [ 377.492120][T12675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 377.511843][T12675] RSP: 002b:00007f4406c93048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 377.520321][T12675] RAX: ffffffffffffffda RBX: 00007f4406103f60 RCX: 00007f4405f75bd9 [ 377.528335][T12675] RDX: 0000000000000050 RSI: 0000000020000240 RDI: 000000000000000a [ 377.536611][T12675] RBP: 00007f4405fe4aa1 R08: 0000000000000000 R09: 0000000000000000 [ 377.544607][T12675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 377.552600][T12675] R13: 000000000000000b R14: 00007f4406103f60 R15: 00007ffe58ef3eb8 [ 377.560612][T12675] [ 377.563809][T12675] Kernel Offset: disabled [ 377.568280][T12675] Rebooting in 86400 seconds..