last executing test programs:

48.776062701s ago: executing program 1 (id=989):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
r2 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x177ffb498171ed1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c00000010000104000002000000000000000000", @ANYRES32=0x0, @ANYBLOB="03800000000000001c0012800b0001006970766c616e00000c000280060001000200000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES8], 0x4c}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000002000000a4c000000060a0b040000000072bc6161020000002c0004802800018007000100637400001c00028008000140000000030800024000000016080004400000000c0900010073797a3000000000140000001100010000000000000000000000000a"], 0x74}}, 0x80)
socket$kcm(0x2, 0x0, 0x73)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005345c0f63cdc2e82818254950ee03568b8809a1f04c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab66c1aae9314d7381fcfeb970bea672010000000000000043144648a07a975bd89dc398712376610faa54f12495b4659be8673086f6f3543205d4bc4ce05b8b961103673dff7f158052e62bfbdcddde6985f3f1ac5d9a94cc53207899762a07282a1914452d11858e795a3ca30a101af5574f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5ed44039aab46419496362e54cfad05b4004ac71a003d7b85d07191bed4e5a8908263722d4146f7ed569985439baa355cf3d8731f5e7a237bc06d035a8d601f21746d880819f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c5b9f87d988c9fbd2b9d9b4e2d71753b1549fa734f0b2e5fcf9549804cddad721971637f9c9730a9cc384eed30345979db9c93e1c52f42cad0a4d4f9436d3f39b0ed09c395dc6e970366087a8e4daeeb1b017006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f710c490ecd085d2811a7555c53030000007f00000000bfa6478eb96b079c277e2910b7ccdc3d672ed34aa65278c549e2abb549ad954884289130bc71cee2b7de62bf48129ae1af052a2d46a6165eb0954dac7265f1f425735acf6377793946b3229e861d8ea49806b3b533345d36ecef9df700000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c000000aaae37f044bcadeb0f6846582b7653665aa336db9f0384d3c7ddf79c2e0000000000000000000000000000000000000000000000e154aa0d3e41986a668ee1e5ef93a8ceac75f44aae95e26742f895f287111f8ee86f7e3ffb63cfb0e345cf7fc63dd2b0d30977899c6f03640040af4db71f7452bfc79a05118d8bb42b63b195771e42f9942ec626bd4b5461b74324012164e8"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock}, 0x70)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r6, r5, 0x2, 0x0, 0x4000}, 0x10)
socket$kcm(0x2, 0x2, 0x73)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
unshare(0x22020600)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000044000701fcffff7c00000c0004"], 0x20}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x10, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2, 0x0, 0x0, 0xf5000000}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000002040)={0x0, 0x0, &(0x7f0000002000)={&(0x7f0000001f80)=ANY=[@ANYBLOB="2c46d00002030d75c70000000000000007000002080001000100002c080004400000000d0800054000000002"], 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r8, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000280)=[{0x20, 0x0, 0x3, 0xfffff038}, {0x1d}, {0x6, 0x0, 0xa}]}, 0x10)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="060001002518aa2cb3c4e5d5e1e360b95b50954a738f4da40857f2dee5c7440a4b08020b87f522479f4b2a08c326f2742e296968e2fdfd56c01ad4407bce"], 0x9)
sendto$inet6(r0, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
pwritev(r9, &(0x7f0000000100)=[{&(0x7f0000000000)="8e", 0x1}], 0x1, 0x8001, 0x80)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000280), &(0x7f00000013c0)=0xc)

48.500663368s ago: executing program 1 (id=993):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x4a301, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8d11}) (async)
r1 = socket$kcm(0x2, 0xa, 0x2) (async)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'\x00', 0x400})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'geneve1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}) (async)
r2 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, 0x0, 0x1000000}}) (async, rerun: 32)
ioctl$sock_bt_hci(r2, 0x800448f0, &(0x7f00000001c0)="4caf4953dac66eb06ff82911c8f193461e7a165a008740ae545a440f1decbd6ce3f497889843ad67f0265e18d12d4961abe80dc5063b135fa517023ad306b989183562dfaf89727b8524eb6d349dc8f4d7064f1a6fb262fdf90947e35a2a1be780666306efb4f3c90a61c4d2609cb125c6a18dd5d4513e4843fa8216cf889999a5c01d38518317db12520d50189ee7ffa9ec605688ae8bb8173cecef3360503c4b421da4040bd3652b6a5fa344") (async, rerun: 32)
write$tun(r0, &(0x7f0000000440)=ANY=[], 0x3e)

48.147645053s ago: executing program 1 (id=995):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0) (async, rerun: 64)
r2 = socket$unix(0x1, 0x2, 0x0) (rerun: 64)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0x54, r3, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x47a}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xea7}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xe05}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x1c7}, @NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040009) (async)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64)
ppoll(&(0x7f0000000200)=[{r1, 0x6600}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x5a1}, 0x9c) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f00000003c0)=0x9c) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000018c0)=ANY=[@ANYBLOB="b00e0000", @ANYRES16=0x0, @ANYBLOB="20002cbd7000fedbdf250e0000000c009900000000005f00000073010e00808804000802110000010802110000019c6f6b12682c8200060089c102000000000000000500801000060101010101010102066c030128059ffe8786c611da4a03a77f8c5a28a7dfe0e12e8842ce07d88002b3b421590a4884a24470f67162e2ca14d4b9a0fd01e8fedb675fa1bd622262baf29060b90364d0785da416795423568386301c1994dd77b91cdb3acee89d6d888b74deb839f6b2637a572642069ce580e04fcd439bc6bb00a5856b9efc1dda2994ab4a40f74bebec06530c805a74f7dcb922f86e9261d049b47b80cb8afad19611fb2aeeec1d25030001e22a01022d1a000417080000000000000006000c00000000000100070000000476060c051300f82cdd69830169dbdf48d967b02579a7f9d9997802c7050b4732ade3c97aa8f035017ab9ca343b2fc8ec44a0e4b69e783bf9448bef8a301d76c18f60d5d8f3366bc21678e5254ba37ddbf8190023ab788580bde356dd87af4ec7a41ed39135d6aa852d62597d6143d4982862aa00b5002a003c040102a10206020004710701ffff00020301089ca4442c17b560913e1930dfab5ff6ba1ae26745cc558b79cb53b298403c9e1b5818a544d0bcb70079827d09d94f629044b62fa96a560c471f515044c118e1616d837d7e26a83e2ec439bae243c189fac933d0541e63796f0958426a856ff01d530eeeb5ffc837acc68a81f2163a69068d38b6acd1a80bb1be00a11fbb869fb3976911ffa54ad22fdcb173391f7737d2ef6dcf46c14cee8b6206758d5a00000047039100b52746db35b398919d168e1c5de131bb323c3fdbfe189f4534d1b94c9e86bc4ba6705b32212619956e67f8d03117252b7c833be0bd39e4aac920067c2881b29469b8abeeceea75cc3cfb025f0ed4e078f49cabe3dcaf40d32106d48f0d2e5b546a675eab0b8848263a81c6cc72a7fe77f84858470983af7b90f65742c628de871f95f5637e8a5fab8b41bcbd842862c4d5fa6c34398d453433a9e30116b869f0355f973930e6fd20841dd4f2e7ba84ad2e25baa17abdb8aa608fdcc31563d61c8964012fb2368516ddee8335a0679a3b6a8e66973b7d9d139a1dd4e32f2b5c825cf99c859fc54d8544ec948315892debe44bf7864570d8a3826efa393bcb4c182028fd14040aff4e26d33c26e6630cb83899f1c18426e9990b56e1c2578caa1d00d321f57a76549889c0c1447cbbfd7edb074634255892dbabe64c1d1bd594002496845f8b36bf6568ac76e304d8cf7a38878c3d23a594fbfa9f5580c051a978a05647a12b9e5de17053107dd49fb9f076cea0e757176b3b415179e73e3aa92b8d97fff646336b7fb4c98312385aec12c76f67c2fe2132b063aa5845b21016ab63387ca77c30f42a105425b08b216d55ce16e025b1c00e83bc62a45e962ce69c628eb7f9baab9c6409574af7a57da8a27115ddcc8264cfc5527b0adc4e46ac6bf7218fe01ab9867662fdae189a5ed4c6d96940bbd7ef0a0e9e264e020692075494237abbc0ff521c640c69c46d0b1f6a7b9997076c467585be16f09035d4180c807045b74b0518ffd4755d6ffa0e387bc60b84e0f61b960f1f297359ad8ebaa2c8ad3622e69992b252e3b83c8aea1c564d1221e76501c31aa0c68dcda98a6285a17f63c1f0bb36311288bbb262f20ddcb5e03245bacae492b3299fae0491eb5f61d201c10e70add9a23922abff636625afc977bd302bdd359fba46ac93ebee55cb735e36ac74ee6fac660a671a93890a470f1b5956bd031531e5e332dfe776d8bc2dc1ebaef9e74905832f160695a4dfe4bbd5c07c6a262c5a6199101f8404c83767795b56e2105a070e398e05b00a82656455c86d60edba2045fec4d0034f0a2671a371a1d5108e2b721835bc8a40357a4ec4f47878aab3ac41d07e274328a9ce7dc94a3ef25c5274424c91f7cf10839ae7078134e919b31da8598c9b5791957463910008012a0084f5010f0008021100000018eb0000170000ffffffffffff030000001b0040080211000000e34500000802110000002a0040fffffffffffffd010000ffffffffffff0a0000ffffffffffff4000000028004008021100000101000000ffffffffffff150040ffffffffffff09000000080211000001050040080211000000ff010000ffffffffffff110000080211000000008000001f0000ffffffffffff08000000150000ffffffffffff100000003800000802110000010700000009004008021100000107000000080211000000b4bd4008021100000105000000080211000001400040080211000000030000000802110000000d0001054805a40c823c0401b72c9bd0010e008034ff00080211000001080211000001505050505050480009000000000000006400260001020516250300acfe7606e70537000000dda1a125c03e243e7eb3187f723d5b20aa5c875cf36d269987e1f10839cd28d111fb9f609086caba5f514d6f65f259cc5daa13e57e7506b3f7d21171fd9db20dfb39ab585d106a2c1a36434eb0f625c39298a91a5eacfcc173ec596d33b82bda68fdc4040cf455a2f70dfae214fd1782069ae628007b9355fa75bcddf355ccd44f99df40907a754a99c70a26596859835fe1c7ce38c5d609b4c6b8fbabfe374292a323dd3bd817ff9f33860e6b23803eb9f018b2185c550840c0d980338b5287322f1c34172e6fe2fc46a94a6d4a4bbd7161fcf65f834195dcbb8e38890436f9ddb5e6add3a138158a76716492cdd0bd2bb0852ac0326d1f12f2ab3fa650e08378cceb980c2684c5b83977d14f599b4b72f5577197f12f4e84c6e01565ffe4dca406fc094adaa47d1a670309b3c290bd45eb0f9e3e7988dd6fe747092d61708772351f39d58264c394045d6ebb1d0bb058146d0e63aa2c65ecf66a9b263386fa149e9744879de2fdfee36d5bfaaab17e50597173df64a3d67b1c2b5dbfdb8d6ae472160055bd0de0d802ff6bdca2ee8350ac09e398f8e1b9040e00801c0a00080211000001080211000001505050505050ee7c02000000000000000900204004060f0f0500ff0305500036023d8dabd4e864a57e3db844706bf5414f355d0ae698715e7dcf69f0c34c82f04784726304a2d0c3c8c5e618ce06fd378fea9332292fcfcd6a7aa7b748ae5544145426fc98e8fff8add61953914c2a01043c0400050b01720603030303030371070101ff010108a0760606800a000900dd83b0e85f631c23e63c5c9814a45bf748171145174c8bc565d234c74a5db007225c4eb3249732f11754d929c4d4d0c9fc6afbadfd574b03aefd7f451af9472c3fcd5668b5fd25ed7bfed3f4f28a57f3c5511f88fbf51fa6d5067a3418c7b101d2fddd6de60f1d91616f32b616c36585977abef6d6f5d1738eee794b10d901741d4a8196d2ddc85346376540c46f321bfc4dcbf84bf1844a6ba32e8aea837b2fe20bc57498c59fad341454115698828b993b09416459bdc9eb3cef801eb5b61c25d98de93de59aa3f8d66f9bbc9f18102423af445acf858934ae49bc1f1e3c181b1b18e14329c79adf3faf4ee729888a608208814ef9d5d038fde63e84b193aa923c7cf4364d04c4a87fbdd362a727662d85af533c060ba637e8657bad9c3d57de3ce2c3247f83c21186c3ad63d2f63414f672fc0d811161d506d176a0ddf5377fe457a3508272828190d50aa6d80fdd2fedb0894a810983990205500c64dfb1ff128f61792b0b648b01db6b225555d9233e5d45834e79f5632f6ee0209cfa36ddd19ceadeda21f1163d34d80df105ccf369382149c71321934d518c79a8598af8a0e0b096028823e79ef6dfc4ca654016ac0c0a241d7d9e04185dd889ca100c9f0de3351c868ed254be871cec4507b80bb6190cb3051da08db74a11e32d644b1f472d5ac832604d01db08017c81fd794fde9c14b9d4f2e74b6d2cf6a85c8f98339fae5a9f26af19dc216cc36785f0724b011e52d3a5130b67d987af3846b8042561cd14e2a482e6a5d98a60ca63052458d804c44a24db1ae74f53f03595cf3a4ac1205f68b6d69fac1e6774f41488165bc91adda229549dbf252c2d92ae1c3650ccac31bd651baea66147557bf0f7165f1a26defd402cd55e8c7344b1a38d48d690379ba3531e27033eaa1d06f5e40a490d9f99dc59670c10856018db476d81f08e259d489a07131ea44551cac8e185eec086869c7dbc3bae50f8b2c2a8d22626c99d6b944f33b4c87de270048806e394df56c30bffd9e22ebffb3936c79d8ae431295ff93c83e052267d2cdf7a2f436b38b1a433d68edd3884315f8cc3eee8a43cc1eee846f8a106ae82429898da97f86b238b629f99fbd622df8c5e7e5c88e7b8f6cb7b82a62379a0c05d6a68498030dd5453cca2c5f7c779e57e1d069b02cb5e29648a69cf78dc7a9618d7bb98bbf62fa0b3bcde31cffa1f8650050a91171f6eefffe62700674d935b185d707257d85369a6ca965b429f9e33b8d3ba3ade9ee9ef8403d939dd8c59a716895557a29971aa2495c8e034e29ceb4d875acb7f221a6c2f71b2e9945e4cb2351e0a3b102e20e19c0d632a082403c9db70e767eb92eb277e98a7d1a54d8be5e7306ca9181761f77ea195e91adda7117ac87f7fbd31e4fc15161706cdec3f03ba06c2057af0731acfd032df9f26866a73d0231ccfb42d57bd2dcecb234f969fa36ffaf2c8593f8ced5e00000076010f00832540d525080211000001001000000802110000018000000002000000080211000000080000003c0400ff0500651250505050505008021100000008021100000175080100060000003f0068049302280f84fd081140080211000001050000000802110000014000400802110000000300000008021100000137004008021100000101000000ffffffffffff1e00000802110000010600000014000008021100000100000080120000ffffffffffff62dc0000190000080211000001000000003b0000080211000001000000be37000008021100000009000000160000080211000000010000003f00000802110000009dffffff360000ffffffffffff3000000006000008021100000108000000000040080211000000050000000802110000012c0040fffffffffffffcffffffffffffffffff410000080211000000ffffffff410000ffffffffffff0500000030003c04010970012d1a2000040300000000000000ff00090015000000010002000000c800000d002a006804050006002a01050000002cd299b621bd73e5d6ceda3fa5b954841bf992f372033fd8982a69b01e9a866fa39f0221d263e9917d4d47181370b1ef644fcdcfe306e8a1055ee1cf14b3466d27444d48511551345f368e93d33c427028bea6520d56fbaa5b66c797d0c4fba0f02d922bf375727a3c19a50967108417d09edcdf8791af6afa42ff7796140ab414f4290470f28b537b72ee1c37c7d8b645e3078394f7fd132b6576efa454c0371d00390c98974faba1ce79512be709d321f104854a3e98e52f1f8ddc46d1"], 0xeb0}, 0x1, 0x0, 0x0, 0x26f9ceeb160ed091}, 0x0)
connect$unix(r1, &(0x7f0000000340)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

33.25722715s ago: executing program 1 (id=995):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0) (async, rerun: 64)
r2 = socket$unix(0x1, 0x2, 0x0) (rerun: 64)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0x54, r3, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x47a}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xea7}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xe05}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x1c7}, @NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040009) (async)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64)
ppoll(&(0x7f0000000200)=[{r1, 0x6600}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x5a1}, 0x9c) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f00000003c0)=0x9c) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000018c0)=ANY=[@ANYBLOB="b00e0000", @ANYRES16=0x0, @ANYBLOB="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"], 0xeb0}, 0x1, 0x0, 0x0, 0x26f9ceeb160ed091}, 0x0)
connect$unix(r1, &(0x7f0000000340)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

16.03052402s ago: executing program 1 (id=995):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0) (async, rerun: 64)
r2 = socket$unix(0x1, 0x2, 0x0) (rerun: 64)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0x54, r3, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x47a}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xea7}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xe05}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x1c7}, @NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040009) (async)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64)
ppoll(&(0x7f0000000200)=[{r1, 0x6600}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x5a1}, 0x9c) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f00000003c0)=0x9c) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000018c0)=ANY=[@ANYBLOB="b00e0000", @ANYRES16=0x0, @ANYBLOB="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"], 0xeb0}, 0x1, 0x0, 0x0, 0x26f9ceeb160ed091}, 0x0)
connect$unix(r1, &(0x7f0000000340)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

3.226530692s ago: executing program 1 (id=995):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0) (async, rerun: 64)
r2 = socket$unix(0x1, 0x2, 0x0) (rerun: 64)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async)
sendmmsg(r2, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x3ec0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000480)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000400)={0x54, r3, 0x200, 0x70bd2d, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x47a}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xea7}, @NL80211_ATTR_CRIT_PROT_ID={0x6, 0xb3, 0x1}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0xe05}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x1c7}, @NL80211_ATTR_CRIT_PROT_ID={0x6}, @NL80211_ATTR_MAX_CRIT_PROT_DURATION={0x6, 0xb4, 0x4}, @NL80211_ATTR_CRIT_PROT_ID={0x6}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000000}, 0x20040009) (async)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) (async, rerun: 64)
ppoll(&(0x7f0000000200)=[{r1, 0x6600}], 0x1, 0x0, 0x0, 0x0) (async, rerun: 64)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000940)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x5a1}, 0x9c) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f00000003c0)=0x9c) (async, rerun: 64)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_BEACON(r5, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000040)={&(0x7f00000018c0)=ANY=[@ANYBLOB="b00e0000", @ANYRES16=0x0, @ANYBLOB="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"], 0xeb0}, 0x1, 0x0, 0x0, 0x26f9ceeb160ed091}, 0x0)
connect$unix(r1, &(0x7f0000000340)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)

1.907758706s ago: executing program 2 (id=1292):
socket(0x2a, 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
pipe(&(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write$cgroup_int(r1, &(0x7f0000000000)=0x8, 0x12)
close(r1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x7a05, 0x1700)
splice(r0, 0x0, r1, &(0x7f00000002c0)=0x87ffffe, 0x6, 0x0)

1.886034816s ago: executing program 4 (id=1295):
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=[@cred={{0x18, 0x1, 0x2, {r0}}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}], 0x28, 0x4000}}], 0x1, 0x0)

1.675754551s ago: executing program 2 (id=1297):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f0000000300)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="0500"/12, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="0000000001"], 0x48}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r4, {0x1}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

1.630419913s ago: executing program 4 (id=1299):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a0101000000000000000002"], 0x88}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'batadv_slave_1\x00', &(0x7f00000000c0)=@ethtool_coalesce={0xf, 0x101, 0x13263500, 0x7f, 0x54, 0x100, 0x400, 0x3, 0x8001, 0x8, 0x3ff, 0x5, 0x0, 0x2fe, 0x497, 0x2, 0x7f, 0xa, 0xc7, 0x7, 0x401, 0x2, 0x7}})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg(0xffffffffffffffff, &(0x7f00000007c0)=[{{&(0x7f0000000380)=@in={0x2, 0x4e24, @local}, 0x80, 0x0}}], 0x1, 0x2c000011)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.470829577s ago: executing program 0 (id=1301):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xe, &(0x7f0000000080)=0x8, 0x4)

1.232279151s ago: executing program 0 (id=1303):
r0 = socket$inet6(0xa, 0x3, 0x5)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
sendmsg$inet6(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@flowinfo={{0x10, 0x29, 0xb, 0x8007}}], 0x10}, 0x20000000)

1.155737638s ago: executing program 0 (id=1305):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0202}}}, 0x14, &(0x7f0000000080)={&(0x7f0000000040)="cb95", 0x2}, 0x1, 0x0, 0x0, 0x40000}, 0x8004)

1.128363952s ago: executing program 3 (id=1306):
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000000c0)={0x14, 0x51, 0x1, 0x70bd29, 0x25dfdbfd, {0x23}}, 0x14}, 0x1, 0x0, 0x0, 0x4408d}, 0x40)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

1.044388533s ago: executing program 0 (id=1307):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x403, 0xfffffff9, 0x25dfdbfe, {0x0, 0x0, 0x74, 0x0, 0x19c04, 0x55007}, [@IFLA_NET_NS_PID={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4802}, 0x0)

1.006689063s ago: executing program 0 (id=1308):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[], 0x3c}}, 0x0)
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r1, 0x0, {0x0, 0x0, 0x4}, 0x1}, 0x18)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000400)="81b641f1f3843704b6", 0x9}], 0x1}, 0x48005)
readv(r0, &(0x7f0000000000), 0x2a)

965.535931ms ago: executing program 3 (id=1309):
r0 = socket$kcm(0x10, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f00000047c0)=""/4060, 0xfdc}, {&(0x7f00000017c0)=""/4075, 0xfeb}, {&(0x7f0000000080)=""/244, 0xf4}, {&(0x7f00000005c0)=""/125, 0x7d}, {&(0x7f0000000000)=""/46, 0x2e}], 0x5}, 0x40000100)
sendmsg$inet(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="5c00000012006bab9a3fe3d86e17aa0a046b4877c4aaf68187bae53dca2b20dd9dc19d7fac80841b6234ead9f6aea35be46a876c1d0048007ea608649e7524765f0ef82e3c0000a705259a3651f60a84c9f4d4938037e70e4509c5bb", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x40000000)

644.019217ms ago: executing program 4 (id=1310):
socket$nl_route(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180200009b1aecb60000000000000000850000007500000095"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='i2c_reply\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fcfc0000080011000000000008000e00800000000800", @ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0x20008005}, 0x0)

643.798365ms ago: executing program 2 (id=1311):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10)

612.256041ms ago: executing program 3 (id=1312):
r0 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000100)=@rxrpc=@in6={0x21, 0x3, 0x2, 0x1c, {0xa, 0x4e20, 0x9c000000, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x1df}}, 0x80, 0x0, 0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="100000001001000001"], 0x10}, 0x40)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x20012142)

498.671601ms ago: executing program 2 (id=1313):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)

440.298679ms ago: executing program 3 (id=1314):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000380)={0x0, 'bridge_slave_0\x00', {}, 0x1ff})

398.498686ms ago: executing program 4 (id=1315):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000000000000001000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000280)='netlink_extack\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=@bridge_dellink={0x2c, 0x11, 0x5, 0x0, 0x0, {0x7, 0x0, 0x0, r3, 0x0, 0x2000}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4, 0xa}}]}]}, 0x2c}}, 0x60040050)

314.604899ms ago: executing program 2 (id=1316):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000780)=ANY=[@ANYBLOB="380100001000"], 0x138}}, 0x0)

188.309038ms ago: executing program 3 (id=1317):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve1\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f0000009f00)="0b032200e0ff25000200475400f6a13bb1000000080008004803218f69fb1e4c1df27f22e71c401826e0ca28b8371d250a5dd6", 0x33, 0x0, &(0x7f0000000140)={0x11, 0x0, r1}, 0x14)

166.539563ms ago: executing program 4 (id=1318):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000d000000000001"], 0x38}}, 0x0)

160.489153ms ago: executing program 2 (id=1319):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000001c00128009000100626f6e64000000000c0002800800070003"], 0x3c}}, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000300)="2e00000010008188040f80ec59acbc0413a181000b00000000010000000000000e000a000f000000028002002d1f", 0x2e}], 0x1}, 0x0)

263.737µs ago: executing program 0 (id=1320):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e1c, @local}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x5, 0x3)
socket$netlink(0x10, 0x3, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
unshare(0x22020400)
connect$can_j1939(r0, &(0x7f0000000600)={0x1d, 0x0, 0x0, {0x2, 0xff, 0x1}, 0xff}, 0x18)

99.929µs ago: executing program 4 (id=1321):
unshare(0x8000480)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x11, 0x0, 0x0)

0s ago: executing program 3 (id=1322):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r1=>0x0})
r2 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r2, &(0x7f0000000080)={0x1d, r1, 0x0, {0x0, 0x0, 0x4}, 0xfe}, 0x18)
sendmsg$can_j1939(r2, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
close(r2)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)=@newtfilter={0x24, 0x11, 0x101, 0x70bd2d, 0x100000, {0x0, 0x0, 0x74, r1, {0xa, 0x1}, {0x5, 0x10}, {0xfff1, 0xffe0}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4010}, 0xc4)

kernel console output (not intermixed with test programs):

3981][ T8911]  ? _copy_from_user+0x94/0xb0
[  173.834028][ T8911]  __x64_sys_recvmmsg+0x1af/0x240
[  173.834055][ T8911]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  173.834074][ T8911]  ? rcu_is_watching+0x15/0xb0
[  173.834107][ T8911]  ? do_syscall_64+0xbe/0x3b0
[  173.834141][ T8911]  do_syscall_64+0xfa/0x3b0
[  173.834168][ T8911]  ? lockdep_hardirqs_on+0x9c/0x150
[  173.834195][ T8911]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.834225][ T8911]  ? clear_bhb_loop+0x60/0xb0
[  173.834252][ T8911]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.834273][ T8911] RIP: 0033:0x7fcab958e929
[  173.834293][ T8911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.834311][ T8911] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  173.834334][ T8911] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  173.834349][ T8911] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  173.834364][ T8911] RBP: 00007fcaba377090 R08: 00002000000001c0 R09: 0000000000000000
[  173.834378][ T8911] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  173.834391][ T8911] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  173.834426][ T8911]  </TASK>
[  174.198332][ T8915] bond4: entered promiscuous mode
[  174.204363][ T8915] bond4: entered allmulticast mode
[  174.237648][   T92] hid-generic 0005:0B57:0007.0001: collection stack underflow
[  174.245563][   T92] hid-generic 0005:0B57:0007.0001: item 0 0 0 12 parsing failed
[  174.254016][   T92] hid-generic 0005:0B57:0007.0001: probe with driver hid-generic failed with error -22
[  174.304678][ T8915] 8021q: adding VLAN 0 to HW filter on device bond4
[  174.427254][ T8924] team0: Port device team_slave_0 removed
[  174.758342][ T8951] netlink: 'syz.1.825': attribute type 10 has an invalid length.
[  174.767635][ T8946] netlink: 'syz.4.827': attribute type 1 has an invalid length.
[  174.821825][ T8951] team0: Port device dummy0 added
[  174.834158][ T8952] FAULT_INJECTION: forcing a failure.
[  174.834158][ T8952] name failslab, interval 1, probability 0, space 0, times 0
[  174.852412][ T8952] CPU: 1 UID: 0 PID: 8952 Comm: syz.2.829 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  174.852444][ T8952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.852457][ T8952] Call Trace:
[  174.852465][ T8952]  <TASK>
[  174.852474][ T8952]  dump_stack_lvl+0x189/0x250
[  174.852505][ T8952]  ? __pfx____ratelimit+0x10/0x10
[  174.852532][ T8952]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.852558][ T8952]  ? __pfx__printk+0x10/0x10
[  174.852584][ T8952]  ? __mutex_unlock_slowpath+0x68a/0x700
[  174.852630][ T8952]  should_fail_ex+0x414/0x560
[  174.852668][ T8952]  should_failslab+0xa8/0x100
[  174.852700][ T8952]  kmem_cache_alloc_noprof+0x73/0x3c0
[  174.852725][ T8952]  ? skb_clone+0x212/0x3a0
[  174.852752][ T8952]  skb_clone+0x212/0x3a0
[  174.852777][ T8952]  __netlink_deliver_tap+0x404/0x850
[  174.852822][ T8952]  ? netlink_deliver_tap+0x2e/0x1b0
[  174.852852][ T8952]  netlink_deliver_tap+0x19c/0x1b0
[  174.852882][ T8952]  netlink_dump+0x8e4/0xe20
[  174.852908][ T8952]  ? __bpf_trace_skb_copy_datagram_iovec+0xe6/0x150
[  174.852944][ T8952]  ? __pfx_netlink_dump+0x10/0x10
[  174.852998][ T8952]  netlink_recvmsg+0x676/0xa30
[  174.853038][ T8952]  ? __pfx_netlink_recvmsg+0x10/0x10
[  174.853066][ T8952]  ? irqentry_exit+0x74/0x90
[  174.853089][ T8952]  ? exc_page_fault+0x9f/0xf0
[  174.853133][ T8952]  ? __pfx_netlink_recvmsg+0x10/0x10
[  174.853164][ T8952]  sock_recvmsg_nosec+0x186/0x1c0
[  174.853195][ T8952]  ____sys_recvmsg+0x3aa/0x460
[  174.853227][ T8952]  ? __pfx_____sys_recvmsg+0x10/0x10
[  174.853266][ T8952]  ? import_iovec+0x74/0xa0
[  174.853296][ T8952]  ___sys_recvmsg+0x1b5/0x510
[  174.853324][ T8952]  ? __pfx____sys_recvmsg+0x10/0x10
[  174.853374][ T8952]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  174.853410][ T8952]  do_recvmmsg+0x307/0x770
[  174.853441][ T8952]  ? __pfx_do_recvmmsg+0x10/0x10
[  174.853478][ T8952]  ? _copy_from_user+0x94/0xb0
[  174.853522][ T8952]  __x64_sys_recvmmsg+0x1af/0x240
[  174.853546][ T8952]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  174.853565][ T8952]  ? rcu_is_watching+0x15/0xb0
[  174.853597][ T8952]  ? do_syscall_64+0xbe/0x3b0
[  174.853629][ T8952]  do_syscall_64+0xfa/0x3b0
[  174.853656][ T8952]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.853681][ T8952]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.853702][ T8952]  ? clear_bhb_loop+0x60/0xb0
[  174.853728][ T8952]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.853749][ T8952] RIP: 0033:0x7fcab958e929
[  174.853769][ T8952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.853786][ T8952] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  174.853808][ T8952] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  174.853823][ T8952] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  174.853837][ T8952] RBP: 00007fcaba377090 R08: 00002000000001c0 R09: 0000000000000000
[  174.853869][ T8952] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  174.853882][ T8952] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  174.853917][ T8952]  </TASK>
[  175.226718][ T8954] bond2: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  175.272340][ T8961] 8021q: adding VLAN 0 to HW filter on device bond2
[  175.296582][ T8645] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  175.382899][ T8946] veth7: entered promiscuous mode
[  175.392183][ T8946] bond2: (slave veth7): Enslaving as a backup interface with a down link
[  175.426236][ T8645] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  175.964652][ T8985] IPv6: Can't replace route, no match found
[  175.985299][ T8985] __nla_validate_parse: 7 callbacks suppressed
[  175.985320][ T8985] netlink: 388 bytes leftover after parsing attributes in process `syz.2.837'.
[  176.180396][ T8968] wg1 speed is unknown, defaulting to 1000
[  176.230826][ T8998] netlink: 20 bytes leftover after parsing attributes in process `syz.2.840'.
[  176.239748][ T8998] netlink: 12 bytes leftover after parsing attributes in process `syz.2.840'.
[  176.307262][ T8992] xt_CT: No such helper "snmp"
[  176.344005][ T9003] netlink: 24 bytes leftover after parsing attributes in process `syz.3.842'.
[  176.470410][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  176.490964][ T9001] netlink: 8 bytes leftover after parsing attributes in process `syz.0.841'.
[  176.519170][ T9008] FAULT_INJECTION: forcing a failure.
[  176.519170][ T9008] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  176.536307][ T9008] CPU: 1 UID: 0 PID: 9008 Comm: syz.4.843 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  176.536340][ T9008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  176.536352][ T9008] Call Trace:
[  176.536360][ T9008]  <TASK>
[  176.536369][ T9008]  dump_stack_lvl+0x189/0x250
[  176.536399][ T9008]  ? __pfx____ratelimit+0x10/0x10
[  176.536425][ T9008]  ? __pfx_dump_stack_lvl+0x10/0x10
[  176.536450][ T9008]  ? __pfx__printk+0x10/0x10
[  176.536479][ T9008]  ? __might_fault+0xb0/0x130
[  176.536515][ T9008]  should_fail_ex+0x414/0x560
[  176.536551][ T9008]  _copy_from_user+0x2d/0xb0
[  176.536579][ T9008]  ___sys_recvmsg+0x12e/0x510
[  176.536605][ T9008]  ? __pfx____sys_recvmsg+0x10/0x10
[  176.536653][ T9008]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  176.536688][ T9008]  do_recvmmsg+0x307/0x770
[  176.536719][ T9008]  ? __pfx_do_recvmmsg+0x10/0x10
[  176.536755][ T9008]  ? _copy_from_user+0x94/0xb0
[  176.536798][ T9008]  __x64_sys_recvmmsg+0x1af/0x240
[  176.536823][ T9008]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  176.536842][ T9008]  ? rcu_is_watching+0x15/0xb0
[  176.536873][ T9008]  ? do_syscall_64+0xbe/0x3b0
[  176.536906][ T9008]  do_syscall_64+0xfa/0x3b0
[  176.536932][ T9008]  ? lockdep_hardirqs_on+0x9c/0x150
[  176.536958][ T9008]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.536986][ T9008]  ? clear_bhb_loop+0x60/0xb0
[  176.537013][ T9008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.537034][ T9008] RIP: 0033:0x7f2de3d8e929
[  176.537053][ T9008] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.537069][ T9008] RSP: 002b:00007f2de4c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  176.537091][ T9008] RAX: ffffffffffffffda RBX: 00007f2de3fb6080 RCX: 00007f2de3d8e929
[  176.537106][ T9008] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  176.537120][ T9008] RBP: 00007f2de4c1e090 R08: 00002000000001c0 R09: 0000000000000000
[  176.537133][ T9008] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  176.537145][ T9008] R13: 0000000000000001 R14: 00007f2de3fb6080 R15: 00007ffc487d3e28
[  176.537178][ T9008]  </TASK>
[  177.374606][ T9029] netlink: 100 bytes leftover after parsing attributes in process `syz.2.849'.
[  177.402028][ T9029] netlink: 100 bytes leftover after parsing attributes in process `syz.2.849'.
[  177.610792][ T9013] wg1 speed is unknown, defaulting to 1000
[  177.723258][ T9043] netlink: 'syz.3.853': attribute type 1 has an invalid length.
[  178.219151][ T9062] FAULT_INJECTION: forcing a failure.
[  178.219151][ T9062] name failslab, interval 1, probability 0, space 0, times 0
[  178.237232][ T9062] CPU: 1 UID: 0 PID: 9062 Comm: syz.3.858 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  178.237265][ T9062] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  178.237278][ T9062] Call Trace:
[  178.237286][ T9062]  <TASK>
[  178.237296][ T9062]  dump_stack_lvl+0x189/0x250
[  178.237328][ T9062]  ? __pfx____ratelimit+0x10/0x10
[  178.237356][ T9062]  ? __pfx_dump_stack_lvl+0x10/0x10
[  178.237383][ T9062]  ? __pfx__printk+0x10/0x10
[  178.237420][ T9062]  ? __pfx___might_resched+0x10/0x10
[  178.237452][ T9062]  should_fail_ex+0x414/0x560
[  178.237491][ T9062]  should_failslab+0xa8/0x100
[  178.237523][ T9062]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  178.237558][ T9062]  ? __alloc_skb+0x112/0x2d0
[  178.237595][ T9062]  __alloc_skb+0x112/0x2d0
[  178.237630][ T9062]  netlink_dump+0x22b/0xe20
[  178.237658][ T9062]  ? __bpf_trace_skb_copy_datagram_iovec+0xe6/0x150
[  178.237695][ T9062]  ? __pfx_netlink_dump+0x10/0x10
[  178.237752][ T9062]  netlink_recvmsg+0x676/0xa30
[  178.237793][ T9062]  ? __pfx_netlink_recvmsg+0x10/0x10
[  178.237823][ T9062]  ? irqentry_exit+0x74/0x90
[  178.237848][ T9062]  ? exc_page_fault+0x9f/0xf0
[  178.237887][ T9062]  ? __pfx_netlink_recvmsg+0x10/0x10
[  178.237918][ T9062]  sock_recvmsg_nosec+0x186/0x1c0
[  178.237951][ T9062]  ____sys_recvmsg+0x3aa/0x460
[  178.237984][ T9062]  ? __pfx_____sys_recvmsg+0x10/0x10
[  178.238024][ T9062]  ? import_iovec+0x74/0xa0
[  178.238055][ T9062]  ___sys_recvmsg+0x1b5/0x510
[  178.238084][ T9062]  ? __pfx____sys_recvmsg+0x10/0x10
[  178.238136][ T9062]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  178.238172][ T9062]  do_recvmmsg+0x307/0x770
[  178.238205][ T9062]  ? __pfx_do_recvmmsg+0x10/0x10
[  178.238243][ T9062]  ? _copy_from_user+0x94/0xb0
[  178.238289][ T9062]  __x64_sys_recvmmsg+0x1af/0x240
[  178.238315][ T9062]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  178.238335][ T9062]  ? rcu_is_watching+0x15/0xb0
[  178.238367][ T9062]  ? do_syscall_64+0xbe/0x3b0
[  178.238401][ T9062]  do_syscall_64+0xfa/0x3b0
[  178.238428][ T9062]  ? lockdep_hardirqs_on+0x9c/0x150
[  178.238454][ T9062]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.238476][ T9062]  ? clear_bhb_loop+0x60/0xb0
[  178.238502][ T9062]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  178.238523][ T9062] RIP: 0033:0x7f016398e929
[  178.238548][ T9062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  178.238566][ T9062] RSP: 002b:00007f01647be038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  178.238588][ T9062] RAX: ffffffffffffffda RBX: 00007f0163bb5fa0 RCX: 00007f016398e929
[  178.238604][ T9062] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  178.238618][ T9062] RBP: 00007f01647be090 R08: 00002000000001c0 R09: 0000000000000000
[  178.238632][ T9062] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  178.238644][ T9062] R13: 0000000000000000 R14: 00007f0163bb5fa0 R15: 00007fffb9aab2b8
[  178.238679][ T9062]  </TASK>
[  178.573786][ T9012] wg1 speed is unknown, defaulting to 1000
[  178.883418][ T9069] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.026844][ T9080] netlink: 8 bytes leftover after parsing attributes in process `syz.2.864'.
[  179.218308][ T9069] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.263266][ T9078] tipc: Started in network mode
[  179.274803][ T9078] tipc: Node identity , cluster identity 4711
[  179.357207][ T9069] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.612911][ T9069] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.662093][ T9088] netlink: 20 bytes leftover after parsing attributes in process `syz.1.866'.
[  179.678532][ T9088] netlink: 28 bytes leftover after parsing attributes in process `syz.1.866'.
[  179.863846][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  179.915415][   T12] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  179.969417][   T12] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  180.015747][ T9076] wg1 speed is unknown, defaulting to 1000
[  180.061630][ T8657] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  180.515483][ T9104] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  180.565322][   T24] IPVS: starting estimator thread 0...
[  180.691136][ T9106] IPVS: using max 25 ests per chain, 60000 per kthread
[  180.714688][ T9109] FAULT_INJECTION: forcing a failure.
[  180.714688][ T9109] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.752568][ T9109] CPU: 0 UID: 0 PID: 9109 Comm: syz.2.871 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  180.752604][ T9109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  180.752617][ T9109] Call Trace:
[  180.752626][ T9109]  <TASK>
[  180.752635][ T9109]  dump_stack_lvl+0x189/0x250
[  180.752667][ T9109]  ? __pfx____ratelimit+0x10/0x10
[  180.752694][ T9109]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.752720][ T9109]  ? __pfx__printk+0x10/0x10
[  180.752750][ T9109]  ? __might_fault+0xb0/0x130
[  180.752790][ T9109]  should_fail_ex+0x414/0x560
[  180.752828][ T9109]  _copy_from_user+0x2d/0xb0
[  180.752855][ T9109]  ___sys_recvmsg+0x12e/0x510
[  180.752884][ T9109]  ? __pfx____sys_recvmsg+0x10/0x10
[  180.752934][ T9109]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  180.752970][ T9109]  do_recvmmsg+0x307/0x770
[  180.753002][ T9109]  ? __pfx_do_recvmmsg+0x10/0x10
[  180.753038][ T9109]  ? _copy_from_user+0x94/0xb0
[  180.753083][ T9109]  __x64_sys_recvmmsg+0x1af/0x240
[  180.753108][ T9109]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  180.753136][ T9109]  ? do_syscall_64+0xbe/0x3b0
[  180.753170][ T9109]  do_syscall_64+0xfa/0x3b0
[  180.753196][ T9109]  ? lockdep_hardirqs_on+0x9c/0x150
[  180.753223][ T9109]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.753244][ T9109]  ? clear_bhb_loop+0x60/0xb0
[  180.753271][ T9109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.753291][ T9109] RIP: 0033:0x7fcab958e929
[  180.753310][ T9109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.753328][ T9109] RSP: 002b:00007fcaba356038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  180.753357][ T9109] RAX: ffffffffffffffda RBX: 00007fcab97b6080 RCX: 00007fcab958e929
[  180.753373][ T9109] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  180.753387][ T9109] RBP: 00007fcaba356090 R08: 00002000000001c0 R09: 0000000000000000
[  180.753401][ T9109] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  180.753413][ T9109] R13: 0000000000000001 R14: 00007fcab97b6080 R15: 00007fff99fc09e8
[  180.753447][ T9109]  </TASK>
[  181.054545][ T9111] netlink: 'syz.1.872': attribute type 32 has an invalid length.
[  181.534082][ T9126] netlink: ct family unspecified
[  181.541158][ T9126] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  181.875613][ T9115] wg1 speed is unknown, defaulting to 1000
[  182.251391][ T9153] FAULT_INJECTION: forcing a failure.
[  182.251391][ T9153] name failslab, interval 1, probability 0, space 0, times 0
[  182.264531][ T9153] CPU: 0 UID: 0 PID: 9153 Comm: syz.1.883 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  182.264560][ T9153] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  182.264571][ T9153] Call Trace:
[  182.264577][ T9153]  <TASK>
[  182.264585][ T9153]  dump_stack_lvl+0x189/0x250
[  182.264612][ T9153]  ? __pfx____ratelimit+0x10/0x10
[  182.264634][ T9153]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.264655][ T9153]  ? __pfx__printk+0x10/0x10
[  182.264676][ T9153]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  182.264713][ T9153]  should_fail_ex+0x414/0x560
[  182.264744][ T9153]  should_failslab+0xa8/0x100
[  182.264769][ T9153]  kmem_cache_alloc_noprof+0x73/0x3c0
[  182.264790][ T9153]  ? skb_clone+0x212/0x3a0
[  182.264811][ T9153]  skb_clone+0x212/0x3a0
[  182.264831][ T9153]  __netlink_deliver_tap+0x404/0x850
[  182.264866][ T9153]  ? netlink_deliver_tap+0x2e/0x1b0
[  182.264890][ T9153]  netlink_deliver_tap+0x19c/0x1b0
[  182.264914][ T9153]  netlink_dump+0x8e4/0xe20
[  182.264935][ T9153]  ? __bpf_trace_skb_copy_datagram_iovec+0xe6/0x150
[  182.264965][ T9153]  ? __pfx_netlink_dump+0x10/0x10
[  182.265007][ T9153]  netlink_recvmsg+0x676/0xa30
[  182.265039][ T9153]  ? __pfx_netlink_recvmsg+0x10/0x10
[  182.265061][ T9153]  ? irqentry_exit+0x74/0x90
[  182.265081][ T9153]  ? exc_page_fault+0x9f/0xf0
[  182.265111][ T9153]  ? __pfx_netlink_recvmsg+0x10/0x10
[  182.265135][ T9153]  sock_recvmsg_nosec+0x186/0x1c0
[  182.265160][ T9153]  ____sys_recvmsg+0x3aa/0x460
[  182.265184][ T9153]  ? __pfx_____sys_recvmsg+0x10/0x10
[  182.265222][ T9153]  ? import_iovec+0x74/0xa0
[  182.265247][ T9153]  ___sys_recvmsg+0x1b5/0x510
[  182.265269][ T9153]  ? __pfx____sys_recvmsg+0x10/0x10
[  182.265308][ T9153]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  182.265336][ T9153]  do_recvmmsg+0x307/0x770
[  182.265361][ T9153]  ? __pfx_do_recvmmsg+0x10/0x10
[  182.265390][ T9153]  ? _copy_from_user+0x94/0xb0
[  182.265425][ T9153]  __x64_sys_recvmmsg+0x1af/0x240
[  182.265445][ T9153]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  182.265462][ T9153]  ? rcu_is_watching+0x15/0xb0
[  182.265486][ T9153]  ? do_syscall_64+0xbe/0x3b0
[  182.265513][ T9153]  do_syscall_64+0xfa/0x3b0
[  182.265534][ T9153]  ? lockdep_hardirqs_on+0x9c/0x150
[  182.265555][ T9153]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.265571][ T9153]  ? clear_bhb_loop+0x60/0xb0
[  182.265592][ T9153]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.265608][ T9153] RIP: 0033:0x7fd371d8e929
[  182.265624][ T9153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.265638][ T9153] RSP: 002b:00007fd372c52038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  182.265656][ T9153] RAX: ffffffffffffffda RBX: 00007fd371fb5fa0 RCX: 00007fd371d8e929
[  182.265668][ T9153] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  182.265680][ T9153] RBP: 00007fd372c52090 R08: 00002000000001c0 R09: 0000000000000000
[  182.265690][ T9153] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  182.265700][ T9153] R13: 0000000000000000 R14: 00007fd371fb5fa0 R15: 00007ffeaa41d7d8
[  182.265726][ T9153]  </TASK>
[  182.748229][ T9162] __nla_validate_parse: 1 callbacks suppressed
[  182.748249][ T9162] netlink: 20 bytes leftover after parsing attributes in process `syz.0.885'.
[  183.021554][ T9140] wg1 speed is unknown, defaulting to 1000
[  183.541038][ T9183] xt_CT: No such helper "snmp"
[  183.992610][ T9211] FAULT_INJECTION: forcing a failure.
[  183.992610][ T9211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.010885][ T9211] CPU: 0 UID: 0 PID: 9211 Comm: syz.3.897 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  184.010917][ T9211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  184.010930][ T9211] Call Trace:
[  184.010938][ T9211]  <TASK>
[  184.010947][ T9211]  dump_stack_lvl+0x189/0x250
[  184.010977][ T9211]  ? __pfx____ratelimit+0x10/0x10
[  184.011005][ T9211]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.011031][ T9211]  ? __pfx__printk+0x10/0x10
[  184.011060][ T9211]  ? __might_fault+0xb0/0x130
[  184.011099][ T9211]  should_fail_ex+0x414/0x560
[  184.011139][ T9211]  _copy_from_user+0x2d/0xb0
[  184.011167][ T9211]  ___sys_recvmsg+0x12e/0x510
[  184.011195][ T9211]  ? __pfx____sys_recvmsg+0x10/0x10
[  184.011245][ T9211]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  184.011281][ T9211]  do_recvmmsg+0x307/0x770
[  184.011313][ T9211]  ? __pfx_do_recvmmsg+0x10/0x10
[  184.011358][ T9211]  ? _copy_from_user+0x94/0xb0
[  184.011403][ T9211]  __x64_sys_recvmmsg+0x1af/0x240
[  184.011429][ T9211]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  184.011448][ T9211]  ? rcu_is_watching+0x15/0xb0
[  184.011480][ T9211]  ? do_syscall_64+0xbe/0x3b0
[  184.011513][ T9211]  do_syscall_64+0xfa/0x3b0
[  184.011540][ T9211]  ? lockdep_hardirqs_on+0x9c/0x150
[  184.011567][ T9211]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.011589][ T9211]  ? clear_bhb_loop+0x60/0xb0
[  184.011613][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.011633][ T9211] RIP: 0033:0x7f016398e929
[  184.011651][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.011669][ T9211] RSP: 002b:00007f01647be038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  184.011691][ T9211] RAX: ffffffffffffffda RBX: 00007f0163bb5fa0 RCX: 00007f016398e929
[  184.011706][ T9211] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  184.011721][ T9211] RBP: 00007f01647be090 R08: 00002000000001c0 R09: 0000000000000000
[  184.011734][ T9211] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  184.011747][ T9211] R13: 0000000000000000 R14: 00007f0163bb5fa0 R15: 00007fffb9aab2b8
[  184.011780][ T9211]  </TASK>
[  184.346237][ T9221] netlink: 'syz.3.902': attribute type 3 has an invalid length.
[  184.514588][ T9229] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  184.881258][ T9242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.909'.
[  184.915086][ T9242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.909'.
[  185.093823][ T9249] netlink: 'syz.1.912': attribute type 5 has an invalid length.
[  185.103982][ T9242] 
 (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  185.108937][ T9249] netlink: 8 bytes leftover after parsing attributes in process `syz.1.912'.
[  185.138697][ T9251] FAULT_INJECTION: forcing a failure.
[  185.138697][ T9251] name failslab, interval 1, probability 0, space 0, times 0
[  185.187501][ T9251] CPU: 1 UID: 0 PID: 9251 Comm: syz.2.913 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  185.187533][ T9251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  185.187545][ T9251] Call Trace:
[  185.187554][ T9251]  <TASK>
[  185.187563][ T9251]  dump_stack_lvl+0x189/0x250
[  185.187595][ T9251]  ? __pfx____ratelimit+0x10/0x10
[  185.187623][ T9251]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.187646][ T9251]  ? __pfx__printk+0x10/0x10
[  185.187676][ T9251]  ? __pfx___might_resched+0x10/0x10
[  185.187702][ T9251]  should_fail_ex+0x414/0x560
[  185.187735][ T9251]  should_failslab+0xa8/0x100
[  185.187762][ T9251]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  185.187787][ T9251]  ? __alloc_skb+0x112/0x2d0
[  185.187818][ T9251]  __alloc_skb+0x112/0x2d0
[  185.187852][ T9251]  netlink_dump+0x22b/0xe20
[  185.187875][ T9251]  ? __bpf_trace_skb_copy_datagram_iovec+0xe6/0x150
[  185.187911][ T9251]  ? __pfx_netlink_dump+0x10/0x10
[  185.187962][ T9251]  netlink_recvmsg+0x676/0xa30
[  185.187999][ T9251]  ? __pfx_netlink_recvmsg+0x10/0x10
[  185.188039][ T9251]  ? irqentry_exit+0x74/0x90
[  185.188064][ T9251]  ? exc_page_fault+0x9f/0xf0
[  185.188100][ T9251]  ? __pfx_netlink_recvmsg+0x10/0x10
[  185.188129][ T9251]  sock_recvmsg_nosec+0x186/0x1c0
[  185.188158][ T9251]  ____sys_recvmsg+0x3aa/0x460
[  185.188189][ T9251]  ? __pfx_____sys_recvmsg+0x10/0x10
[  185.188226][ T9251]  ? import_iovec+0x74/0xa0
[  185.188256][ T9251]  ___sys_recvmsg+0x1b5/0x510
[  185.188282][ T9251]  ? __pfx____sys_recvmsg+0x10/0x10
[  185.188329][ T9251]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  185.188365][ T9251]  do_recvmmsg+0x307/0x770
[  185.188400][ T9251]  ? __pfx_do_recvmmsg+0x10/0x10
[  185.188436][ T9251]  ? _copy_from_user+0x94/0xb0
[  185.188480][ T9251]  __x64_sys_recvmmsg+0x1af/0x240
[  185.188504][ T9251]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  185.188523][ T9251]  ? rcu_is_watching+0x15/0xb0
[  185.188552][ T9251]  ? do_syscall_64+0xbe/0x3b0
[  185.188585][ T9251]  do_syscall_64+0xfa/0x3b0
[  185.188610][ T9251]  ? lockdep_hardirqs_on+0x9c/0x150
[  185.188633][ T9251]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.188653][ T9251]  ? clear_bhb_loop+0x60/0xb0
[  185.188679][ T9251]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.188698][ T9251] RIP: 0033:0x7fcab958e929
[  185.188719][ T9251] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  185.188736][ T9251] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  185.188759][ T9251] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  185.188774][ T9251] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  185.188787][ T9251] RBP: 00007fcaba377090 R08: 00002000000001c0 R09: 0000000000000000
[  185.188800][ T9251] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  185.188812][ T9251] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  185.188845][ T9251]  </TASK>
[  185.795596][ T9249] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  185.827181][ T9249] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  185.866849][ T9249] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  185.936169][ T9249] bond0 (unregistering): Released all slaves
[  186.001101][ T9264] netlink: 12 bytes leftover after parsing attributes in process `syz.2.915'.
[  186.109335][ T8653] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  186.137256][ T8653] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  186.475914][ T9288] netlink: 'syz.2.925': attribute type 1 has an invalid length.
[  186.509674][ T9291] netlink: 'syz.0.926': attribute type 11 has an invalid length.
[  186.548491][ T9291] netlink: 224 bytes leftover after parsing attributes in process `syz.0.926'.
[  186.777871][ T9300] netlink: 24 bytes leftover after parsing attributes in process `syz.2.932'.
[  186.867782][ T9303] ip6tnl1: entered promiscuous mode
[  186.875049][ T9303] ip6tnl1: entered allmulticast mode
[  186.978299][ T9313] netlink: 4 bytes leftover after parsing attributes in process `syz.3.933'.
[  187.073278][ T9318] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.935'.
[  187.211464][ T9327] netlink: 20 bytes leftover after parsing attributes in process `syz.1.937'.
[  188.883959][ T9353] __nla_validate_parse: 1 callbacks suppressed
[  188.883981][ T9353] netlink: 8 bytes leftover after parsing attributes in process `syz.0.943'.
[  188.951530][   T13] wlan1: Trigger new scan to find an IBSS to join
[  188.995327][ T9359] netlink: 'syz.2.945': attribute type 3 has an invalid length.
[  189.005116][ T9359] netlink: 24 bytes leftover after parsing attributes in process `syz.2.945'.
[  189.047758][ T9359] netlink: 47 bytes leftover after parsing attributes in process `syz.2.945'.
[  189.070104][   T30] audit: type=1800 audit(1751822808.424:2): pid=9360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.943" name="memory.events" dev="tmpfs" ino=843 res=0 errno=0
[  189.125646][   T30] audit: type=1804 audit(1751822808.434:3): pid=9360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.943" name="/newroot/161/memory.events" dev="tmpfs" ino=843 res=1 errno=0
[  189.594218][ T9390] FAULT_INJECTION: forcing a failure.
[  189.594218][ T9390] name failslab, interval 1, probability 0, space 0, times 0
[  189.658208][ T9390] CPU: 0 UID: 0 PID: 9390 Comm: syz.4.951 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  189.658242][ T9390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  189.658255][ T9390] Call Trace:
[  189.658264][ T9390]  <TASK>
[  189.658273][ T9390]  dump_stack_lvl+0x189/0x250
[  189.658307][ T9390]  ? __pfx____ratelimit+0x10/0x10
[  189.658335][ T9390]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.658361][ T9390]  ? __pfx__printk+0x10/0x10
[  189.658398][ T9390]  ? __pfx___might_resched+0x10/0x10
[  189.658423][ T9390]  ? fs_reclaim_acquire+0x7d/0x100
[  189.658461][ T9390]  should_fail_ex+0x414/0x560
[  189.658499][ T9390]  should_failslab+0xa8/0x100
[  189.658531][ T9390]  __kmalloc_noprof+0xcb/0x4f0
[  189.658557][ T9390]  ? bpf_test_init+0xc2/0x170
[  189.658589][ T9390]  bpf_test_init+0xc2/0x170
[  189.658622][ T9390]  bpf_prog_test_run_xdp+0x37c/0x1000
[  189.658671][ T9390]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  189.658707][ T9390]  ? __fget_files+0x2a/0x420
[  189.658744][ T9390]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  189.658775][ T9390]  bpf_prog_test_run+0x2c4/0x340
[  189.658804][ T9390]  __sys_bpf+0x4a4/0x860
[  189.658827][ T9390]  ? __pfx___sys_bpf+0x10/0x10
[  189.658871][ T9390]  ? ksys_write+0x22a/0x250
[  189.658900][ T9390]  ? __pfx_ksys_write+0x10/0x10
[  189.658924][ T9390]  ? rcu_is_watching+0x15/0xb0
[  189.658959][ T9390]  __x64_sys_bpf+0x7c/0x90
[  189.658993][ T9390]  do_syscall_64+0xfa/0x3b0
[  189.659020][ T9390]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.659048][ T9390]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.659070][ T9390]  ? clear_bhb_loop+0x60/0xb0
[  189.659097][ T9390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.659118][ T9390] RIP: 0033:0x7f2de3d8e929
[  189.659137][ T9390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.659157][ T9390] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  189.659181][ T9390] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  189.659197][ T9390] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  189.659211][ T9390] RBP: 00007f2de4c3f090 R08: 0000000000000000 R09: 0000000000000000
[  189.659224][ T9390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.659238][ T9390] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  189.659272][ T9390]  </TASK>
[  190.219429][ T9404] netlink: 'syz.2.955': attribute type 29 has an invalid length.
[  190.619189][ T9421] netlink: 8 bytes leftover after parsing attributes in process `syz.1.958'.
[  190.628043][ T9423] netlink: 16 bytes leftover after parsing attributes in process `syz.2.962'.
[  190.843390][ T9430] FAULT_INJECTION: forcing a failure.
[  190.843390][ T9430] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.906603][ T9430] CPU: 1 UID: 0 PID: 9430 Comm: syz.4.964 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  190.906637][ T9430] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  190.906651][ T9430] Call Trace:
[  190.906661][ T9430]  <TASK>
[  190.906670][ T9430]  dump_stack_lvl+0x189/0x250
[  190.906703][ T9430]  ? __pfx____ratelimit+0x10/0x10
[  190.906732][ T9430]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.906760][ T9430]  ? __pfx__printk+0x10/0x10
[  190.906791][ T9430]  ? __might_fault+0xb0/0x130
[  190.906830][ T9430]  should_fail_ex+0x414/0x560
[  190.906867][ T9430]  _copy_from_user+0x2d/0xb0
[  190.906895][ T9430]  ___sys_recvmsg+0x12e/0x510
[  190.906924][ T9430]  ? __pfx____sys_recvmsg+0x10/0x10
[  190.906973][ T9430]  ? __pfx_set_normalized_timespec64+0x10/0x10
[  190.907009][ T9430]  do_recvmmsg+0x307/0x770
[  190.907042][ T9430]  ? __pfx_do_recvmmsg+0x10/0x10
[  190.907078][ T9430]  ? _copy_from_user+0x94/0xb0
[  190.907122][ T9430]  __x64_sys_recvmmsg+0x1af/0x240
[  190.907148][ T9430]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  190.907168][ T9430]  ? rcu_is_watching+0x15/0xb0
[  190.907200][ T9430]  ? do_syscall_64+0xbe/0x3b0
[  190.907234][ T9430]  do_syscall_64+0xfa/0x3b0
[  190.907261][ T9430]  ? lockdep_hardirqs_on+0x9c/0x150
[  190.907289][ T9430]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.907310][ T9430]  ? clear_bhb_loop+0x60/0xb0
[  190.907337][ T9430]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.907359][ T9430] RIP: 0033:0x7f2de3d8e929
[  190.907378][ T9430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.907397][ T9430] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  190.907420][ T9430] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  190.907437][ T9430] RDX: 0400000000000ec0 RSI: 0000200000002ec0 RDI: 0000000000000005
[  190.907452][ T9430] RBP: 00007f2de4c3f090 R08: 00002000000001c0 R09: 0000000000000000
[  190.907467][ T9430] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000002
[  190.907491][ T9430] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  190.907526][ T9430]  </TASK>
[  191.304049][ T9441] netlink: 136 bytes leftover after parsing attributes in process `syz.3.970'.
[  191.469870][ T9449] netlink: 12 bytes leftover after parsing attributes in process `syz.3.972'.
[  191.804792][ T9466] netlink: 12 bytes leftover after parsing attributes in process `syz.2.977'.
[  192.065970][ T9478] tipc: Started in network mode
[  192.073594][ T9478] tipc: Node identity 6a0fd1d53be, cluster identity 4711
[  192.094400][ T9478] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  192.110854][ T9487] FAULT_INJECTION: forcing a failure.
[  192.110854][ T9487] name failslab, interval 1, probability 0, space 0, times 0
[  192.133869][ T9487] CPU: 0 UID: 0 PID: 9487 Comm: syz.1.982 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  192.133903][ T9487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  192.133917][ T9487] Call Trace:
[  192.133926][ T9487]  <TASK>
[  192.133935][ T9487]  dump_stack_lvl+0x189/0x250
[  192.133967][ T9487]  ? __pfx____ratelimit+0x10/0x10
[  192.133995][ T9487]  ? __pfx_dump_stack_lvl+0x10/0x10
[  192.134020][ T9487]  ? __pfx__printk+0x10/0x10
[  192.134057][ T9487]  ? __pfx___might_resched+0x10/0x10
[  192.134088][ T9487]  should_fail_ex+0x414/0x560
[  192.134125][ T9487]  ? bpf_test_run_xdp_live+0x18e/0x1b10
[  192.134154][ T9487]  should_failslab+0xa8/0x100
[  192.134186][ T9487]  __kvmalloc_node_noprof+0x161/0x5f0
[  192.134215][ T9487]  ? bpf_test_run_xdp_live+0x18e/0x1b10
[  192.134251][ T9487]  bpf_test_run_xdp_live+0x18e/0x1b10
[  192.134293][ T9487]  ? stack_depot_save_flags+0x40/0x900
[  192.134340][ T9487]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  192.134369][ T9487]  ? bpf_prog_test_run_xdp+0x37c/0x1000
[  192.134396][ T9487]  ? bpf_prog_test_run+0x2c4/0x340
[  192.134416][ T9487]  ? __sys_bpf+0x4a4/0x860
[  192.134434][ T9487]  ? __x64_sys_bpf+0x7c/0x90
[  192.134496][ T9487]  ? __lock_acquire+0xab9/0xd20
[  192.134532][ T9487]  ? __might_fault+0xb0/0x130
[  192.134570][ T9487]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  192.134610][ T9487]  ? _copy_from_user+0x94/0xb0
[  192.134637][ T9487]  ? bpf_test_init+0x133/0x170
[  192.134667][ T9487]  ? xdp_convert_md_to_buff+0x5b/0x330
[  192.134701][ T9487]  bpf_prog_test_run_xdp+0x713/0x1000
[  192.134750][ T9487]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  192.134786][ T9487]  ? __fget_files+0x2a/0x420
[  192.134822][ T9487]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  192.134856][ T9487]  bpf_prog_test_run+0x2c4/0x340
[  192.134881][ T9487]  __sys_bpf+0x4a4/0x860
[  192.134902][ T9487]  ? __pfx___sys_bpf+0x10/0x10
[  192.134938][ T9487]  ? ksys_write+0x22a/0x250
[  192.134967][ T9487]  ? __pfx_ksys_write+0x10/0x10
[  192.134991][ T9487]  ? rcu_is_watching+0x15/0xb0
[  192.135024][ T9487]  __x64_sys_bpf+0x7c/0x90
[  192.135055][ T9487]  do_syscall_64+0xfa/0x3b0
[  192.135082][ T9487]  ? lockdep_hardirqs_on+0x9c/0x150
[  192.135109][ T9487]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.135130][ T9487]  ? clear_bhb_loop+0x60/0xb0
[  192.135154][ T9487]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.135176][ T9487] RIP: 0033:0x7fd371d8e929
[  192.135196][ T9487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.135215][ T9487] RSP: 002b:00007fd372c52038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  192.135236][ T9487] RAX: ffffffffffffffda RBX: 00007fd371fb5fa0 RCX: 00007fd371d8e929
[  192.135251][ T9487] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  192.135265][ T9487] RBP: 00007fd372c52090 R08: 0000000000000000 R09: 0000000000000000
[  192.135278][ T9487] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.135290][ T9487] R13: 0000000000000000 R14: 00007fd371fb5fa0 R15: 00007ffeaa41d7d8
[  192.135323][ T9487]  </TASK>
[  192.138733][ T9478] syzkaller0: MTU too low for tipc bearer
[  192.511170][ T9478] tipc: Disabling bearer <eth:syzkaller0>
[  192.566199][ T9496] netlink: 8 bytes leftover after parsing attributes in process `syz.0.984'.
[  192.576065][ T9496] netlink: 15 bytes leftover after parsing attributes in process `syz.0.984'.
[  192.733142][ T9504] ip6_vti0: Master is either lo or non-ether device
[  192.809297][ T9508] netlink: 'syz.1.989': attribute type 1 has an invalid length.
[  192.950107][   T37] wlan1: Trigger new scan to find an IBSS to join
[  193.392684][ T8657] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.414888][ T9528] FAULT_INJECTION: forcing a failure.
[  193.414888][ T9528] name failslab, interval 1, probability 0, space 0, times 0
[  193.436161][ T9528] CPU: 0 UID: 0 PID: 9528 Comm: syz.2.996 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  193.436196][ T9528] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.436211][ T9528] Call Trace:
[  193.436219][ T9528]  <TASK>
[  193.436229][ T9528]  dump_stack_lvl+0x189/0x250
[  193.436262][ T9528]  ? __pfx____ratelimit+0x10/0x10
[  193.436290][ T9528]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.436316][ T9528]  ? __pfx__printk+0x10/0x10
[  193.436354][ T9528]  ? __pfx___might_resched+0x10/0x10
[  193.436385][ T9528]  should_fail_ex+0x414/0x560
[  193.436422][ T9528]  ? bpf_test_run_xdp_live+0x1b5/0x1b10
[  193.436449][ T9528]  should_failslab+0xa8/0x100
[  193.436480][ T9528]  __kvmalloc_node_noprof+0x161/0x5f0
[  193.436509][ T9528]  ? bpf_test_run_xdp_live+0x1b5/0x1b10
[  193.436544][ T9528]  bpf_test_run_xdp_live+0x1b5/0x1b10
[  193.436593][ T9528]  ? stack_depot_save_flags+0x40/0x900
[  193.436639][ T9528]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  193.436667][ T9528]  ? bpf_prog_test_run_xdp+0x37c/0x1000
[  193.436693][ T9528]  ? bpf_prog_test_run+0x2c4/0x340
[  193.436713][ T9528]  ? __sys_bpf+0x4a4/0x860
[  193.436730][ T9528]  ? __x64_sys_bpf+0x7c/0x90
[  193.436785][ T9528]  ? __lock_acquire+0xab9/0xd20
[  193.436820][ T9528]  ? __might_fault+0xb0/0x130
[  193.436857][ T9528]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  193.436897][ T9528]  ? _copy_from_user+0x94/0xb0
[  193.436923][ T9528]  ? bpf_test_init+0x133/0x170
[  193.436948][ T9528]  ? xdp_convert_md_to_buff+0x5b/0x330
[  193.436980][ T9528]  bpf_prog_test_run_xdp+0x713/0x1000
[  193.437032][ T9528]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  193.437064][ T9528]  ? __fget_files+0x2a/0x420
[  193.437096][ T9528]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  193.437125][ T9528]  bpf_prog_test_run+0x2c4/0x340
[  193.437152][ T9528]  __sys_bpf+0x4a4/0x860
[  193.437175][ T9528]  ? __pfx___sys_bpf+0x10/0x10
[  193.437211][ T9528]  ? ksys_write+0x22a/0x250
[  193.437242][ T9528]  ? __pfx_ksys_write+0x10/0x10
[  193.437265][ T9528]  ? rcu_is_watching+0x15/0xb0
[  193.437300][ T9528]  __x64_sys_bpf+0x7c/0x90
[  193.437334][ T9528]  do_syscall_64+0xfa/0x3b0
[  193.437362][ T9528]  ? lockdep_hardirqs_on+0x9c/0x150
[  193.437390][ T9528]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.437412][ T9528]  ? clear_bhb_loop+0x60/0xb0
[  193.437440][ T9528]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.437461][ T9528] RIP: 0033:0x7fcab958e929
[  193.437481][ T9528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.437500][ T9528] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  193.437523][ T9528] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  193.437539][ T9528] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  193.437553][ T9528] RBP: 00007fcaba377090 R08: 0000000000000000 R09: 0000000000000000
[  193.437573][ T9528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.437587][ T9528] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  193.437621][ T9528]  </TASK>
[  193.803387][ T2152] wg1 speed is unknown, defaulting to 1000
[  193.809440][ T2152] syz2: Port: 1 Link DOWN
[  194.027676][ T8657] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  194.414601][ T5854] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  194.425888][ T5854] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  194.434945][ T5854] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  194.445160][ T5854] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  194.456027][ T5854] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  194.841523][ T8653] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  194.849485][ T9533] __nla_validate_parse: 2 callbacks suppressed
[  194.849513][ T9533] netlink: 550 bytes leftover after parsing attributes in process `syz.4.999'.
[  194.873304][ T9535] netlink: 12 bytes leftover after parsing attributes in process `syz.3.998'.
[  195.037279][ T8657] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  195.083575][ T9554] bond0: option lp_interval: invalid value (18446744073709551604)
[  195.105454][ T9554] bond0: option lp_interval: allowed values 1 - 2147483647
[  195.125738][ T9551] tipc: Cannot configure node identity twice
[  195.194056][ T9564] netlink: 'syz.3.1006': attribute type 15 has an invalid length.
[  195.230244][ T8657] vlan2 (unregistering): left allmulticast mode
[  195.236809][ T8657] netdevsim netdevsim1 netdevsim0 (unregistering): left allmulticast mode
[  195.251218][ T8657] vlan2 (unregistering): left promiscuous mode
[  195.258013][ T8657] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode
[  195.277707][ T8657] bridge0: port 3(vlan2) entered disabled state
[  195.343637][ T9570] FAULT_INJECTION: forcing a failure.
[  195.343637][ T9570] name failslab, interval 1, probability 0, space 0, times 0
[  195.381094][ T9570] CPU: 0 UID: 0 PID: 9570 Comm: syz.2.1007 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  195.381139][ T9570] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  195.381153][ T9570] Call Trace:
[  195.381162][ T9570]  <TASK>
[  195.381171][ T9570]  dump_stack_lvl+0x189/0x250
[  195.381203][ T9570]  ? __pfx____ratelimit+0x10/0x10
[  195.381231][ T9570]  ? __pfx_dump_stack_lvl+0x10/0x10
[  195.381258][ T9570]  ? __pfx__printk+0x10/0x10
[  195.381292][ T9570]  ? __pfx___might_resched+0x10/0x10
[  195.381317][ T9570]  ? fs_reclaim_acquire+0x7d/0x100
[  195.381356][ T9570]  should_fail_ex+0x414/0x560
[  195.381394][ T9570]  should_failslab+0xa8/0x100
[  195.381426][ T9570]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  195.381455][ T9570]  ? page_pool_create_percpu+0x76/0xbe0
[  195.381485][ T9570]  page_pool_create_percpu+0x76/0xbe0
[  195.381506][ T9570]  ? __kvmalloc_node_noprof+0x331/0x5f0
[  195.381534][ T9570]  ? bpf_test_run_xdp_live+0x1b5/0x1b10
[  195.381570][ T9570]  bpf_test_run_xdp_live+0x1ca/0x1b10
[  195.381614][ T9570]  ? stack_depot_save_flags+0x40/0x900
[  195.381662][ T9570]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  195.381690][ T9570]  ? bpf_prog_test_run_xdp+0x37c/0x1000
[  195.381717][ T9570]  ? bpf_prog_test_run+0x2c4/0x340
[  195.381738][ T9570]  ? __sys_bpf+0x4a4/0x860
[  195.381755][ T9570]  ? __x64_sys_bpf+0x7c/0x90
[  195.381808][ T9570]  ? __lock_acquire+0xab9/0xd20
[  195.381843][ T9570]  ? __might_fault+0xb0/0x130
[  195.381882][ T9570]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  195.381922][ T9570]  ? _copy_from_user+0x94/0xb0
[  195.381949][ T9570]  ? bpf_test_init+0x133/0x170
[  195.381973][ T9570]  ? xdp_convert_md_to_buff+0x5b/0x330
[  195.382006][ T9570]  bpf_prog_test_run_xdp+0x713/0x1000
[  195.382054][ T9570]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  195.382090][ T9570]  ? __fget_files+0x2a/0x420
[  195.382131][ T9570]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  195.382162][ T9570]  bpf_prog_test_run+0x2c4/0x340
[  195.382189][ T9570]  __sys_bpf+0x4a4/0x860
[  195.382213][ T9570]  ? __pfx___sys_bpf+0x10/0x10
[  195.382249][ T9570]  ? ksys_write+0x22a/0x250
[  195.382277][ T9570]  ? __pfx_ksys_write+0x10/0x10
[  195.382300][ T9570]  ? rcu_is_watching+0x15/0xb0
[  195.382334][ T9570]  __x64_sys_bpf+0x7c/0x90
[  195.382366][ T9570]  do_syscall_64+0xfa/0x3b0
[  195.382393][ T9570]  ? lockdep_hardirqs_on+0x9c/0x150
[  195.382420][ T9570]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.382441][ T9570]  ? clear_bhb_loop+0x60/0xb0
[  195.382468][ T9570]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.382489][ T9570] RIP: 0033:0x7fcab958e929
[  195.382508][ T9570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.382527][ T9570] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  195.382551][ T9570] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  195.382578][ T9570] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  195.382592][ T9570] RBP: 00007fcaba377090 R08: 0000000000000000 R09: 0000000000000000
[  195.382604][ T9570] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.382616][ T9570] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  195.382649][ T9570]  </TASK>
[  195.724309][ T8657] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  196.191927][ T9595] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1015'.
[  196.223787][ T8657] bridge_slave_1: left allmulticast mode
[  196.243722][ T8657] bridge_slave_1: left promiscuous mode
[  196.266767][ T8657] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.342202][ T8657] bridge_slave_0: left allmulticast mode
[  196.374387][ T8657] bridge_slave_0: left promiscuous mode
[  196.381992][ T8657] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.472090][ T5857] Bluetooth: hci0: command tx timeout
[  197.164841][ T8657] bond1 (unregistering): Released all slaves
[  197.184195][ T9545] wg1 speed is unknown, defaulting to 1000
[  197.194737][ T9609] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  197.267906][ T9622] FAULT_INJECTION: forcing a failure.
[  197.267906][ T9622] name failslab, interval 1, probability 0, space 0, times 0
[  197.281416][ T9622] CPU: 1 UID: 0 PID: 9622 Comm: syz.4.1021 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  197.281449][ T9622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  197.281463][ T9622] Call Trace:
[  197.281471][ T9622]  <TASK>
[  197.281480][ T9622]  dump_stack_lvl+0x189/0x250
[  197.281512][ T9622]  ? __pfx____ratelimit+0x10/0x10
[  197.281541][ T9622]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.281568][ T9622]  ? __pfx__printk+0x10/0x10
[  197.281603][ T9622]  ? __pfx___might_resched+0x10/0x10
[  197.281629][ T9622]  ? fs_reclaim_acquire+0x7d/0x100
[  197.281666][ T9622]  should_fail_ex+0x414/0x560
[  197.281704][ T9622]  ? page_pool_create_percpu+0x32a/0xbe0
[  197.281725][ T9622]  should_failslab+0xa8/0x100
[  197.281756][ T9622]  __kvmalloc_node_noprof+0x161/0x5f0
[  197.281786][ T9622]  ? page_pool_create_percpu+0x32a/0xbe0
[  197.281816][ T9622]  page_pool_create_percpu+0x32a/0xbe0
[  197.281840][ T9622]  ? bpf_test_run_xdp_live+0x1b5/0x1b10
[  197.281883][ T9622]  bpf_test_run_xdp_live+0x1ca/0x1b10
[  197.281926][ T9622]  ? stack_depot_save_flags+0x40/0x900
[  197.281973][ T9622]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  197.282002][ T9622]  ? bpf_prog_test_run_xdp+0x37c/0x1000
[  197.282029][ T9622]  ? bpf_prog_test_run+0x2c4/0x340
[  197.282073][ T9622]  ? __sys_bpf+0x4a4/0x860
[  197.282090][ T9622]  ? __x64_sys_bpf+0x7c/0x90
[  197.282145][ T9622]  ? __lock_acquire+0xab9/0xd20
[  197.282179][ T9622]  ? __might_fault+0xb0/0x130
[  197.282217][ T9622]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  197.282256][ T9622]  ? _copy_from_user+0x94/0xb0
[  197.282283][ T9622]  ? bpf_test_init+0x133/0x170
[  197.282307][ T9622]  ? xdp_convert_md_to_buff+0x5b/0x330
[  197.282339][ T9622]  bpf_prog_test_run_xdp+0x713/0x1000
[  197.282386][ T9622]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  197.282438][ T9622]  ? __fget_files+0x2a/0x420
[  197.282475][ T9622]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  197.282506][ T9622]  bpf_prog_test_run+0x2c4/0x340
[  197.282533][ T9622]  __sys_bpf+0x4a4/0x860
[  197.282557][ T9622]  ? __pfx___sys_bpf+0x10/0x10
[  197.282594][ T9622]  ? ksys_write+0x22a/0x250
[  197.282623][ T9622]  ? __pfx_ksys_write+0x10/0x10
[  197.282646][ T9622]  ? rcu_is_watching+0x15/0xb0
[  197.282681][ T9622]  __x64_sys_bpf+0x7c/0x90
[  197.282713][ T9622]  do_syscall_64+0xfa/0x3b0
[  197.282741][ T9622]  ? lockdep_hardirqs_on+0x9c/0x150
[  197.282769][ T9622]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.282790][ T9622]  ? clear_bhb_loop+0x60/0xb0
[  197.282817][ T9622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.282839][ T9622] RIP: 0033:0x7f2de3d8e929
[  197.282859][ T9622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.282878][ T9622] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  197.282902][ T9622] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  197.282919][ T9622] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  197.282933][ T9622] RBP: 00007f2de4c3f090 R08: 0000000000000000 R09: 0000000000000000
[  197.282946][ T9622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.282959][ T9622] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  197.282994][ T9622]  </TASK>
[  197.283122][ T9622] page_pool_create_percpu() gave up with errno -12
[  197.551328][ T9624] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1022'.
[  197.780855][ T8657] _ÐZ`Ô€@: left promiscuous mode
[  197.930791][ T8657] tipc: Disabling bearer <udp:syz0>
[  197.939581][ T8657] tipc: Left network mode
[  198.116028][ T9650] bridge_slave_0: invalid flags given to default FDB implementation
[  198.217941][ T9650] dummy0: entered promiscuous mode
[  198.236709][ T9650] dummy0: left promiscuous mode
[  198.551239][ T5857] Bluetooth: hci0: command tx timeout
[  198.566276][ T9669] netlink: 'syz.2.1033': attribute type 5 has an invalid length.
[  198.679772][ T9545] chnl_net:caif_netlink_parms(): no params data found
[  198.786269][ T9675] netlink: 'syz.3.1035': attribute type 21 has an invalid length.
[  198.868708][ T9679] FAULT_INJECTION: forcing a failure.
[  198.868708][ T9679] name failslab, interval 1, probability 0, space 0, times 0
[  198.894365][ T9679] CPU: 0 UID: 0 PID: 9679 Comm: syz.4.1037 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  198.894399][ T9679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  198.894413][ T9679] Call Trace:
[  198.894420][ T9679]  <TASK>
[  198.894430][ T9679]  dump_stack_lvl+0x189/0x250
[  198.894461][ T9679]  ? __pfx____ratelimit+0x10/0x10
[  198.894489][ T9679]  ? __pfx_dump_stack_lvl+0x10/0x10
[  198.894516][ T9679]  ? __pfx__printk+0x10/0x10
[  198.894551][ T9679]  ? __pfx___might_resched+0x10/0x10
[  198.894577][ T9679]  ? fs_reclaim_acquire+0x7d/0x100
[  198.894613][ T9679]  should_fail_ex+0x414/0x560
[  198.894649][ T9679]  should_failslab+0xa8/0x100
[  198.894680][ T9679]  __kmalloc_cache_noprof+0x70/0x3d0
[  198.894707][ T9679]  ? __xdp_reg_mem_model+0x1d8/0x5a0
[  198.894745][ T9679]  __xdp_reg_mem_model+0x1d8/0x5a0
[  198.894796][ T9679]  ? __pfx___xdp_reg_mem_model+0x10/0x10
[  198.894830][ T9679]  ? page_pool_create_percpu+0x800/0xbe0
[  198.894859][ T9679]  xdp_reg_mem_model+0x22/0x40
[  198.894889][ T9679]  bpf_test_run_xdp_live+0x215/0x1b10
[  198.894930][ T9679]  ? stack_depot_save_flags+0x40/0x900
[  198.894974][ T9679]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  198.895001][ T9679]  ? bpf_prog_test_run_xdp+0x37c/0x1000
[  198.895028][ T9679]  ? bpf_prog_test_run+0x2c4/0x340
[  198.895048][ T9679]  ? __sys_bpf+0x4a4/0x860
[  198.895065][ T9679]  ? __x64_sys_bpf+0x7c/0x90
[  198.895128][ T9679]  ? __lock_acquire+0xab9/0xd20
[  198.895163][ T9679]  ? __might_fault+0xb0/0x130
[  198.895200][ T9679]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  198.895239][ T9679]  ? _copy_from_user+0x94/0xb0
[  198.895265][ T9679]  ? bpf_test_init+0x133/0x170
[  198.895289][ T9679]  ? xdp_convert_md_to_buff+0x5b/0x330
[  198.895321][ T9679]  bpf_prog_test_run_xdp+0x713/0x1000
[  198.895369][ T9679]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  198.895404][ T9679]  ? __fget_files+0x2a/0x420
[  198.895440][ T9679]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  198.895470][ T9679]  bpf_prog_test_run+0x2c4/0x340
[  198.895496][ T9679]  __sys_bpf+0x4a4/0x860
[  198.895520][ T9679]  ? __pfx___sys_bpf+0x10/0x10
[  198.895555][ T9679]  ? ksys_write+0x22a/0x250
[  198.895584][ T9679]  ? __pfx_ksys_write+0x10/0x10
[  198.895606][ T9679]  ? rcu_is_watching+0x15/0xb0
[  198.895640][ T9679]  __x64_sys_bpf+0x7c/0x90
[  198.895672][ T9679]  do_syscall_64+0xfa/0x3b0
[  198.895699][ T9679]  ? lockdep_hardirqs_on+0x9c/0x150
[  198.895725][ T9679]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.895746][ T9679]  ? clear_bhb_loop+0x60/0xb0
[  198.895772][ T9679]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.895793][ T9679] RIP: 0033:0x7f2de3d8e929
[  198.895812][ T9679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.895830][ T9679] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  198.895853][ T9679] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  198.895868][ T9679] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  198.895882][ T9679] RBP: 00007f2de4c3f090 R08: 0000000000000000 R09: 0000000000000000
[  198.895895][ T9679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.895908][ T9679] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  198.895941][ T9679]  </TASK>
[  199.348215][ T9692] netlink: 'syz.0.1038': attribute type 10 has an invalid length.
[  199.454970][ T9695] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1040'.
[  199.475481][ T9694] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1040'.
[  199.513689][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  199.679128][ T9545] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.702352][ T9703] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1042'.
[  199.712407][ T9545] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.719701][ T9545] bridge_slave_0: entered allmulticast mode
[  199.732827][ T9545] bridge_slave_0: entered promiscuous mode
[  199.774575][ T8657] hsr_slave_0: left promiscuous mode
[  199.789576][ T8657] hsr_slave_1: left promiscuous mode
[  199.806563][ T8657] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  199.820953][ T8657] batman_adv: batadv0: Removing interface: batadv_slave_0
[  199.848965][ T8657] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  199.862920][ T8657] batman_adv: batadv0: Removing interface: batadv_slave_1
[  199.933766][ T8657] veth1_macvtap: left promiscuous mode
[  199.950324][ T8657] veth0_macvtap: left promiscuous mode
[  199.964246][ T9716] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1045'.
[  200.630696][ T5857] Bluetooth: hci0: command tx timeout
[  200.707249][ T8657] team0 (unregistering): Port device team_slave_1 removed
[  200.746800][ T8657] team0 (unregistering): Port device team_slave_0 removed
[  201.058912][ T8657] team0 (unregistering): Port device dummy0 removed
[  201.179035][ T9545] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.186354][ T9545] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.199049][ T9545] bridge_slave_1: entered allmulticast mode
[  201.207378][ T9545] bridge_slave_1: entered promiscuous mode
[  201.335142][ T9730] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1050'.
[  201.367289][ T9545] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.388566][ T9730] netlink: 52 bytes leftover after parsing attributes in process `syz.0.1050'.
[  201.452686][ T9545] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.596811][ T9745] Cannot find set identified by id 0 to match
[  201.634720][ T9545] team0: Port device team_slave_0 added
[  201.687416][ T9545] team0: Port device team_slave_1 added
[  201.867070][ T9545] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.885815][ T9545] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.918156][ T9545] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.954123][ T9761] Unknown status report in ack skb
[  201.988011][ T9545] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.016496][ T9545] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.060822][ T9545] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.141010][ T9770] netlink: 'syz.0.1060': attribute type 2 has an invalid length.
[  202.153776][ T9770] netlink: 5356 bytes leftover after parsing attributes in process `syz.0.1060'.
[  202.176614][ T9770] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1060'.
[  202.300960][ T9769] IPVS: Scheduler module ip_vs_sip not found
[  202.340849][ T9545] hsr_slave_0: entered promiscuous mode
[  202.347291][ T9545] hsr_slave_1: entered promiscuous mode
[  202.362640][ T9545] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.370484][ T9545] Cannot create hsr debugfs directory
[  202.586979][ T9786] ip6t_srh: unknown srh match flags  5294
[  202.595283][ T9788] netlink: 'syz.0.1063': attribute type 2 has an invalid length.
[  202.604704][ T9788] netlink: 164 bytes leftover after parsing attributes in process `syz.0.1063'.
[  202.657542][ T9787] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1063'.
[  202.675139][ T9787] bridge_slave_1: left allmulticast mode
[  202.681969][ T9787] bridge_slave_1: left promiscuous mode
[  202.687844][ T9787] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.710356][ T5857] Bluetooth: hci0: command tx timeout
[  202.728678][ T9787] bridge_slave_0: left allmulticast mode
[  202.757927][ T9787] bridge_slave_0: left promiscuous mode
[  202.770899][ T9787] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.781437][ T9791] FAULT_INJECTION: forcing a failure.
[  202.781437][ T9791] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.818432][ T9791] CPU: 1 UID: 0 PID: 9791 Comm: syz.2.1064 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  202.818461][ T9791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.818472][ T9791] Call Trace:
[  202.818480][ T9791]  <TASK>
[  202.818508][ T9791]  dump_stack_lvl+0x189/0x250
[  202.818549][ T9791]  ? __pfx____ratelimit+0x10/0x10
[  202.818573][ T9791]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.818594][ T9791]  ? __pfx__printk+0x10/0x10
[  202.818631][ T9791]  should_fail_ex+0x414/0x560
[  202.818662][ T9791]  _copy_to_user+0x31/0xb0
[  202.818686][ T9791]  bpf_test_finish+0x1ab/0x700
[  202.818716][ T9791]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  202.818743][ T9791]  ? __pfx_bpf_test_finish+0x10/0x10
[  202.818773][ T9791]  ? bpf_test_init+0x133/0x170
[  202.818800][ T9791]  bpf_prog_test_run_xdp+0x79a/0x1000
[  202.818840][ T9791]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  202.818869][ T9791]  ? __fget_files+0x2a/0x420
[  202.818900][ T9791]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  202.818925][ T9791]  bpf_prog_test_run+0x2c4/0x340
[  202.818947][ T9791]  __sys_bpf+0x4a4/0x860
[  202.818967][ T9791]  ? __pfx___sys_bpf+0x10/0x10
[  202.818997][ T9791]  ? ksys_write+0x22a/0x250
[  202.819020][ T9791]  ? __pfx_ksys_write+0x10/0x10
[  202.819039][ T9791]  ? rcu_is_watching+0x15/0xb0
[  202.819068][ T9791]  __x64_sys_bpf+0x7c/0x90
[  202.819095][ T9791]  do_syscall_64+0xfa/0x3b0
[  202.819118][ T9791]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.819140][ T9791]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.819158][ T9791]  ? clear_bhb_loop+0x60/0xb0
[  202.819180][ T9791]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.819198][ T9791] RIP: 0033:0x7fcab958e929
[  202.819214][ T9791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.819230][ T9791] RSP: 002b:00007fcaba377038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  202.819249][ T9791] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958e929
[  202.819262][ T9791] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  202.819274][ T9791] RBP: 00007fcaba377090 R08: 0000000000000000 R09: 0000000000000000
[  202.819285][ T9791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  202.819295][ T9791] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  202.819323][ T9791]  </TASK>
[  203.827910][ T9545] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  203.842412][ T9545] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  203.856647][ T9803] openvswitch: netlink: ct_state flags 0000ee01 unsupported
[  203.863998][ T9545] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  203.877462][ T9545] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  204.064187][ T9812] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1069'.
[  204.104308][ T9812] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1069'.
[  204.123216][ T9812] netlink: 'syz.3.1069': attribute type 5 has an invalid length.
[  204.133667][ T9545] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.157745][ T9812] netlink: 43 bytes leftover after parsing attributes in process `syz.3.1069'.
[  204.185595][ T9545] 8021q: adding VLAN 0 to HW filter on device team0
[  204.255685][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.262953][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.372256][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.379452][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.458683][ T9829] netlink: 'syz.4.1074': attribute type 1 has an invalid length.
[  205.006008][ T9545] 8021q: adding VLAN 0 to HW filter on device batadv0
[  205.175165][ T9545] veth0_vlan: entered promiscuous mode
[  205.219730][ T9545] veth1_vlan: entered promiscuous mode
[  205.247455][ T9863] xt_bpf: check failed: parse error
[  205.257153][ T9861] __nla_validate_parse: 1 callbacks suppressed
[  205.257170][ T9861] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1083'.
[  205.350484][ T5854] Bluetooth: hci0: command 0x0405 tx timeout
[  205.371836][ T9545] veth0_macvtap: entered promiscuous mode
[  205.407472][ T9545] veth1_macvtap: entered promiscuous mode
[  205.437366][ T9545] batman_adv: batadv0: Interface activated: batadv_slave_0
[  205.459852][ T9545] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.505600][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.537265][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.598028][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.614828][ T9873] FAULT_INJECTION: forcing a failure.
[  205.614828][ T9873] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.630565][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.687705][ T9873] CPU: 1 UID: 0 PID: 9873 Comm: syz.4.1087 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  205.687734][ T9873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.687745][ T9873] Call Trace:
[  205.687751][ T9873]  <TASK>
[  205.687759][ T9873]  dump_stack_lvl+0x189/0x250
[  205.687785][ T9873]  ? __pfx____ratelimit+0x10/0x10
[  205.687810][ T9873]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.687831][ T9873]  ? __pfx__printk+0x10/0x10
[  205.687885][ T9873]  should_fail_ex+0x414/0x560
[  205.687920][ T9873]  _copy_to_user+0x31/0xb0
[  205.687947][ T9873]  bpf_test_finish+0x56f/0x700
[  205.687981][ T9873]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  205.688007][ T9873]  ? __pfx_bpf_test_finish+0x10/0x10
[  205.688038][ T9873]  ? bpf_test_init+0x133/0x170
[  205.688065][ T9873]  bpf_prog_test_run_xdp+0x79a/0x1000
[  205.688111][ T9873]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  205.688143][ T9873]  ? __fget_files+0x2a/0x420
[  205.688180][ T9873]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  205.688210][ T9873]  bpf_prog_test_run+0x2c4/0x340
[  205.688238][ T9873]  __sys_bpf+0x4a4/0x860
[  205.688271][ T9873]  ? __pfx___sys_bpf+0x10/0x10
[  205.688307][ T9873]  ? ksys_write+0x22a/0x250
[  205.688336][ T9873]  ? __pfx_ksys_write+0x10/0x10
[  205.688359][ T9873]  ? rcu_is_watching+0x15/0xb0
[  205.688395][ T9873]  __x64_sys_bpf+0x7c/0x90
[  205.688428][ T9873]  do_syscall_64+0xfa/0x3b0
[  205.688456][ T9873]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.688483][ T9873]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.688505][ T9873]  ? clear_bhb_loop+0x60/0xb0
[  205.688532][ T9873]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.688554][ T9873] RIP: 0033:0x7f2de3d8e929
[  205.688574][ T9873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.688594][ T9873] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  205.688618][ T9873] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  205.688634][ T9873] RDX: 0000000000000050 RSI: 0000200000000280 RDI: 000000000000000a
[  205.688649][ T9873] RBP: 00007f2de4c3f090 R08: 0000000000000000 R09: 0000000000000000
[  205.688662][ T9873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  205.688674][ T9873] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  205.688707][ T9873]  </TASK>
[  206.024933][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  206.054851][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  206.072340][ T9894] netlink: 'syz.2.1092': attribute type 16 has an invalid length.
[  206.088322][ T9894] netlink: 'syz.2.1092': attribute type 17 has an invalid length.
[  206.124808][ T9895] team0: mtu less than device minimum
[  206.287891][ T9907] IPv6: NLM_F_REPLACE set, but no existing node found!
[  206.589846][ T9896] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1092'.
[  206.621768][ T9905] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1095'.
[  206.648020][ T8657] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.670969][ T8657] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0
[  206.684197][ T8657] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.696558][ T8657] netdevsim netdevsim2 netdevsim1: unset [1, 1] type 2 family 0 port 256 - 0
[  206.712834][ T8653] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.723451][ T8653] netdevsim netdevsim2 netdevsim2: unset [1, 1] type 2 family 0 port 256 - 0
[  206.739298][ T8653] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  206.757667][ T8653] netdevsim netdevsim2 netdevsim3: unset [1, 1] type 2 family 0 port 256 - 0
[  206.771802][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  206.782001][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  206.857228][ T9918] netlink: 6774 bytes leftover after parsing attributes in process `syz.4.1098'.
[  207.125780][ T9931] FAULT_INJECTION: forcing a failure.
[  207.125780][ T9931] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  207.139118][ T9931] CPU: 0 UID: 0 PID: 9931 Comm: syz.2.1103 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  207.139145][ T9931] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  207.139155][ T9931] Call Trace:
[  207.139162][ T9931]  <TASK>
[  207.139170][ T9931]  dump_stack_lvl+0x189/0x250
[  207.139194][ T9931]  ? __pfx____ratelimit+0x10/0x10
[  207.139214][ T9931]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.139235][ T9931]  ? __pfx__printk+0x10/0x10
[  207.139267][ T9931]  should_fail_ex+0x414/0x560
[  207.139295][ T9931]  _copy_to_user+0x31/0xb0
[  207.139316][ T9931]  simple_read_from_buffer+0xe1/0x170
[  207.139341][ T9931]  proc_fail_nth_read+0x1df/0x250
[  207.139367][ T9931]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  207.139393][ T9931]  ? rw_verify_area+0x258/0x650
[  207.139410][ T9931]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  207.139435][ T9931]  vfs_read+0x200/0x980
[  207.139457][ T9931]  ? __pfx___mutex_lock+0x10/0x10
[  207.139485][ T9931]  ? __pfx_vfs_read+0x10/0x10
[  207.139504][ T9931]  ? __fget_files+0x2a/0x420
[  207.139530][ T9931]  ? __fget_files+0x3a0/0x420
[  207.139550][ T9931]  ? __fget_files+0x2a/0x420
[  207.139579][ T9931]  ksys_read+0x145/0x250
[  207.139599][ T9931]  ? __pfx_ksys_read+0x10/0x10
[  207.139615][ T9931]  ? rcu_is_watching+0x15/0xb0
[  207.139639][ T9931]  ? do_syscall_64+0xbe/0x3b0
[  207.139663][ T9931]  do_syscall_64+0xfa/0x3b0
[  207.139683][ T9931]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.139702][ T9931]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.139718][ T9931]  ? clear_bhb_loop+0x60/0xb0
[  207.139738][ T9931]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.139753][ T9931] RIP: 0033:0x7fcab958d33c
[  207.139767][ T9931] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  207.139781][ T9931] RSP: 002b:00007fcaba377030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  207.139798][ T9931] RAX: ffffffffffffffda RBX: 00007fcab97b5fa0 RCX: 00007fcab958d33c
[  207.139809][ T9931] RDX: 000000000000000f RSI: 00007fcaba3770a0 RDI: 0000000000000007
[  207.139819][ T9931] RBP: 00007fcaba377090 R08: 0000000000000000 R09: 0000000000000000
[  207.139828][ T9931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  207.139837][ T9931] R13: 0000000000000000 R14: 00007fcab97b5fa0 R15: 00007fff99fc09e8
[  207.139861][ T9931]  </TASK>
[  207.677020][ T9948] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1107'.
[  207.793489][ T9954] sctp: [Deprecated]: syz.3.1109 (pid 9954) Use of struct sctp_assoc_value in delayed_ack socket option.
[  207.793489][ T9954] Use struct sctp_sack_info instead
[  207.817702][ T9948] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1107'.
[  207.857208][ T9946] syzkaller0: entered promiscuous mode
[  207.862804][ T9946] syzkaller0: entered allmulticast mode
[  207.896224][ T9961] sctp: [Deprecated]: syz.0.1110 (pid 9961) Use of int in maxseg socket option.
[  207.896224][ T9961] Use struct sctp_assoc_value instead
[  208.900403][ T5857] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  208.909910][ T5857] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  208.927055][ T5857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  208.943245][ T5857] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  208.956739][ T5857] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  209.541189][ T9965] kthread_run failed with err -4
[  209.715775][   T37] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.885320][ T9988] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1115'.
[  209.940651][ T9993] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1115'.
[  210.034195][   T37] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.179758][T10003] IPv6: addrconf: prefix option has invalid lifetime
[  210.247363][T10008] IPv6: addrconf: prefix option has invalid lifetime
[  210.269891][   T37] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.441548][   T37] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.849590][   T37] bridge_slave_1: left allmulticast mode
[  210.856026][   T37] bridge_slave_1: left promiscuous mode
[  210.871969][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.891107][T10025] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1123'.
[  210.922290][   T37] bridge_slave_0: left allmulticast mode
[  210.930185][   T37] bridge_slave_0: left promiscuous mode
[  210.946940][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.031630][ T5864] Bluetooth: hci0: command tx timeout
[  211.243535][T10035] netlink: 'syz.2.1126': attribute type 6 has an invalid length.
[  211.524758][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  211.536132][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  211.547701][   T37] bond0 (unregistering): Released all slaves
[  211.576156][T10043] netlink: 'syz.3.1127': attribute type 4 has an invalid length.
[  211.585013][T10036] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1125'.
[  211.603530][T10036] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1125'.
[  211.830388][ T5864] Bluetooth: hci1: command 0x0406 tx timeout
[  211.830869][ T5170] Bluetooth: hci2: command 0x0406 tx timeout
[  211.837715][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  211.996864][T10048] mpoa:atm_mpoa_vcc_attach: mpoa:Short read (missed 12 bytes) from userland
[  212.495947][ T9973] chnl_net:caif_netlink_parms(): no params data found
[  212.959595][T10091] FAULT_INJECTION: forcing a failure.
[  212.959595][T10091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.974315][T10091] CPU: 1 UID: 0 PID: 10091 Comm: syz.0.1137 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  212.974348][T10091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  212.974362][T10091] Call Trace:
[  212.974371][T10091]  <TASK>
[  212.974380][T10091]  dump_stack_lvl+0x189/0x250
[  212.974412][T10091]  ? __pfx____ratelimit+0x10/0x10
[  212.974440][T10091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.974468][T10091]  ? __pfx__printk+0x10/0x10
[  212.974498][T10091]  ? __might_fault+0xb0/0x130
[  212.974538][T10091]  should_fail_ex+0x414/0x560
[  212.974577][T10091]  _copy_from_user+0x2d/0xb0
[  212.974605][T10091]  ___sys_recvmsg+0x12e/0x510
[  212.974633][T10091]  ? __pfx____sys_recvmsg+0x10/0x10
[  212.974692][T10091]  ? __fget_files+0x3a0/0x420
[  212.974736][T10091]  __x64_sys_recvmsg+0x198/0x260
[  212.974761][T10091]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  212.974794][T10091]  ? __pfx_ksys_write+0x10/0x10
[  212.974827][T10091]  ? do_syscall_64+0xbe/0x3b0
[  212.974862][T10091]  do_syscall_64+0xfa/0x3b0
[  212.974889][T10091]  ? lockdep_hardirqs_on+0x9c/0x150
[  212.974917][T10091]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.974939][T10091]  ? clear_bhb_loop+0x60/0xb0
[  212.974966][T10091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.974987][T10091] RIP: 0033:0x7f9fbe78e929
[  212.975006][T10091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.975025][T10091] RSP: 002b:00007f9fbf574038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  212.975048][T10091] RAX: ffffffffffffffda RBX: 00007f9fbe9b6080 RCX: 00007f9fbe78e929
[  212.975065][T10091] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  212.975079][T10091] RBP: 00007f9fbf574090 R08: 0000000000000000 R09: 0000000000000000
[  212.975092][T10091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  212.975105][T10091] R13: 0000000000000001 R14: 00007f9fbe9b6080 R15: 00007ffe64e99ea8
[  212.975139][T10091]  </TASK>
[  212.993475][T10088] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1139'.
[  213.031112][T10092] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1139'.
[  213.141182][ T5857] Bluetooth: hci0: command tx timeout
[  213.235024][T10093] tipc: MTU too low for tipc bearer
[  213.301964][   T37] hsr_slave_0: left promiscuous mode
[  213.308323][   T37] hsr_slave_1: left promiscuous mode
[  213.314665][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  213.322704][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[  213.333290][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  213.341738][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[  213.387734][   T37] veth1_macvtap: left promiscuous mode
[  213.403660][   T37] veth0_macvtap: left promiscuous mode
[  213.409640][   T37] veth1_vlan: left promiscuous mode
[  213.420957][   T37] veth0_vlan: left promiscuous mode
[  213.656830][T10105] netlink: 'syz.2.1143': attribute type 1 has an invalid length.
[  213.676929][T10105] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1143'.
[  213.809800][T10111] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  213.831797][T10113] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  214.148115][   T37] team0 (unregistering): Port device team_slave_1 removed
[  214.188986][   T37] team0 (unregistering): Port device team_slave_0 removed
[  214.557058][ T9973] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.564624][ T9973] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.572197][ T9973] bridge_slave_0: entered allmulticast mode
[  214.579613][ T9973] bridge_slave_0: entered promiscuous mode
[  214.609660][T10103] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1142'.
[  214.675440][ T9973] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.695271][ T9973] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.730359][ T9973] bridge_slave_1: entered allmulticast mode
[  214.744345][ T9973] bridge_slave_1: entered promiscuous mode
[  214.898668][T10129] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1148'.
[  214.927840][ T9973] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  214.938114][T10129] batadv_slave_1: entered promiscuous mode
[  215.020385][T10123] syzkaller0: entered promiscuous mode
[  215.025896][T10123] syzkaller0: entered allmulticast mode
[  215.032932][T10129] netlink: 112 bytes leftover after parsing attributes in process `syz.0.1148'.
[  215.045612][T10129] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1148'.
[  215.070414][ T9973] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.200283][ T5857] Bluetooth: hci0: command tx timeout
[  215.773802][T10141] IPVS: set_ctl: invalid protocol: 1 224.0.0.1:20003
[  216.199205][T10144] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  216.758369][ T9973] team0: Port device team_slave_0 added
[  216.779178][ T9973] team0: Port device team_slave_1 added
[  216.854864][ T9973] batman_adv: batadv0: Adding interface: batadv_slave_0
[  216.866491][ T9973] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.897925][ T9973] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  216.925366][ T9973] batman_adv: batadv0: Adding interface: batadv_slave_1
[  216.936527][ T9973] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  216.964521][T10154] FAULT_INJECTION: forcing a failure.
[  216.964521][T10154] name failslab, interval 1, probability 0, space 0, times 0
[  216.981326][ T9973] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  216.992988][T10154] CPU: 0 UID: 0 PID: 10154 Comm: syz.2.1154 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  216.993022][T10154] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  216.993035][T10154] Call Trace:
[  216.993044][T10154]  <TASK>
[  216.993053][T10154]  dump_stack_lvl+0x189/0x250
[  216.993085][T10154]  ? __pfx____ratelimit+0x10/0x10
[  216.993113][T10154]  ? __pfx_dump_stack_lvl+0x10/0x10
[  216.993139][T10154]  ? __pfx__printk+0x10/0x10
[  216.993172][T10154]  ? __pfx___might_resched+0x10/0x10
[  216.993199][T10154]  ? fs_reclaim_acquire+0x7d/0x100
[  216.993235][T10154]  should_fail_ex+0x414/0x560
[  216.993274][T10154]  should_failslab+0xa8/0x100
[  216.993305][T10154]  __kmalloc_noprof+0xcb/0x4f0
[  216.993331][T10154]  ? iovec_from_user+0x87/0x250
[  216.993362][T10154]  iovec_from_user+0x87/0x250
[  216.993394][T10154]  __import_iovec+0x163/0x7f0
[  216.993432][T10154]  import_iovec+0x74/0xa0
[  216.993463][T10154]  ___sys_recvmsg+0x43a/0x510
[  216.993491][T10154]  ? __pfx____sys_recvmsg+0x10/0x10
[  216.993543][T10154]  ? __fget_files+0x3a0/0x420
[  216.993586][T10154]  __x64_sys_recvmsg+0x198/0x260
[  216.993611][T10154]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  216.993651][T10154]  ? __pfx_ksys_write+0x10/0x10
[  216.993683][T10154]  ? do_syscall_64+0xbe/0x3b0
[  216.993717][T10154]  do_syscall_64+0xfa/0x3b0
[  216.993743][T10154]  ? lockdep_hardirqs_on+0x9c/0x150
[  216.993770][T10154]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.993792][T10154]  ? clear_bhb_loop+0x60/0xb0
[  216.993818][T10154]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.993839][T10154] RIP: 0033:0x7fcab958e929
[  216.993858][T10154] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.993878][T10154] RSP: 002b:00007fcaba356038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  216.993900][T10154] RAX: ffffffffffffffda RBX: 00007fcab97b6080 RCX: 00007fcab958e929
[  216.993916][T10154] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  216.993930][T10154] RBP: 00007fcaba356090 R08: 0000000000000000 R09: 0000000000000000
[  216.993943][T10154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  216.993956][T10154] R13: 0000000000000001 R14: 00007fcab97b6080 R15: 00007fff99fc09e8
[  216.993991][T10154]  </TASK>
[  217.271465][ T5857] Bluetooth: hci0: command tx timeout
[  217.337213][ T9973] hsr_slave_0: entered promiscuous mode
[  217.345491][ T9973] hsr_slave_1: entered promiscuous mode
[  217.352110][ T9973] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  217.362223][ T9973] Cannot create hsr debugfs directory
[  217.645187][T10168] vlan3: entered promiscuous mode
[  217.650437][T10168] !
: entered promiscuous mode
[  218.205078][T10181] geneve4: entered promiscuous mode
[  218.379686][ T8657] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  218.416488][ T8657] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  218.518485][T10200] netlink: 'syz.3.1167': attribute type 39 has an invalid length.
[  218.528336][ T8657] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  218.545343][ T8657] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  219.008559][T10215] FAULT_INJECTION: forcing a failure.
[  219.008559][T10215] name failslab, interval 1, probability 0, space 0, times 0
[  219.036488][T10215] CPU: 1 UID: 0 PID: 10215 Comm: syz.3.1173 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  219.036523][T10215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  219.036537][T10215] Call Trace:
[  219.036545][T10215]  <TASK>
[  219.036555][T10215]  dump_stack_lvl+0x189/0x250
[  219.036588][T10215]  ? __pfx____ratelimit+0x10/0x10
[  219.036617][T10215]  ? __pfx_dump_stack_lvl+0x10/0x10
[  219.036644][T10215]  ? __pfx__printk+0x10/0x10
[  219.036682][T10215]  ? __pfx___might_resched+0x10/0x10
[  219.036715][T10215]  should_fail_ex+0x414/0x560
[  219.036753][T10215]  should_failslab+0xa8/0x100
[  219.036786][T10215]  __kmalloc_noprof+0xcb/0x4f0
[  219.036812][T10215]  ? sock_kmalloc+0xd6/0x160
[  219.036841][T10215]  sock_kmalloc+0xd6/0x160
[  219.036866][T10215]  af_alg_alloc_areq+0x8d/0x260
[  219.036902][T10215]  skcipher_recvmsg+0x356/0x11c0
[  219.036928][T10215]  ? aa_sk_perm+0x81e/0x950
[  219.036973][T10215]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  219.036999][T10215]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  219.037019][T10215]  ? security_socket_recvmsg+0x7e/0x2e0
[  219.037045][T10215]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  219.037065][T10215]  sock_recvmsg+0x229/0x270
[  219.037097][T10215]  ____sys_recvmsg+0x1c9/0x460
[  219.037129][T10215]  ? __pfx_____sys_recvmsg+0x10/0x10
[  219.037195][T10215]  ? import_iovec+0x74/0xa0
[  219.037227][T10215]  ___sys_recvmsg+0x1b5/0x510
[  219.037254][T10215]  ? __pfx____sys_recvmsg+0x10/0x10
[  219.037305][T10215]  ? __fget_files+0x3a0/0x420
[  219.037348][T10215]  __x64_sys_recvmsg+0x198/0x260
[  219.037372][T10215]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  219.037403][T10215]  ? __pfx_ksys_write+0x10/0x10
[  219.037435][T10215]  ? do_syscall_64+0xbe/0x3b0
[  219.037470][T10215]  do_syscall_64+0xfa/0x3b0
[  219.037497][T10215]  ? lockdep_hardirqs_on+0x9c/0x150
[  219.037525][T10215]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.037547][T10215]  ? clear_bhb_loop+0x60/0xb0
[  219.037573][T10215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  219.037594][T10215] RIP: 0033:0x7f016398e929
[  219.037614][T10215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  219.037632][T10215] RSP: 002b:00007f016479d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  219.037655][T10215] RAX: ffffffffffffffda RBX: 00007f0163bb6080 RCX: 00007f016398e929
[  219.037672][T10215] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  219.037685][T10215] RBP: 00007f016479d090 R08: 0000000000000000 R09: 0000000000000000
[  219.037699][T10215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  219.037711][T10215] R13: 0000000000000001 R14: 00007f0163bb6080 R15: 00007fffb9aab2b8
[  219.037746][T10215]  </TASK>
[  219.455769][ T9973] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  219.467935][ T9973] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  219.485950][ T9973] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  219.498750][ T9973] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  219.602352][ T9973] 8021q: adding VLAN 0 to HW filter on device bond0
[  219.626820][ T9973] 8021q: adding VLAN 0 to HW filter on device team0
[  219.687352][ T8653] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.694602][ T8653] bridge0: port 1(bridge_slave_0) entered forwarding state
[  219.743617][ T8653] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.751707][ T8653] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.014881][T10246] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1179'.
[  220.096240][T10246] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1179'.
[  220.153218][T10250] bridge_slave_1: left allmulticast mode
[  220.160550][T10250] bridge_slave_1: left promiscuous mode
[  220.169099][T10250] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.203563][T10250] bond0: (slave bond_slave_0): Releasing backup interface
[  220.226494][T10250] bond0: (slave bond_slave_1): Releasing backup interface
[  220.246447][T10250] batman_adv: batadv0: Removing interface: batadv_slave_0
[  220.262093][T10250] batman_adv: batadv0: Removing interface: batadv_slave_1
[  220.276650][T10250] bond2: (slave bridge1): Releasing active interface
[  220.295885][T10250] bond2: (slave bridge1): the permanent HWaddr of slave - b6:3c:c0:0d:1d:0d - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  220.321377][ T5941] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  220.357654][T10250] bond2: (slave bridge2): Releasing active interface
[  220.379010][T10250] bond2: (slave bridge3): Releasing active interface
[  220.402404][T10250] bond2: (slave bridge4): Releasing active interface
[  220.558026][T10250] bond2: (slave bridge5): Releasing active interface
[  220.587446][T10250] bond2: (slave bridge6): Releasing active interface
[  220.606436][T10250] bond2: (slave bridge7): Releasing active interface
[  220.627800][T10250] bond3: (slave ip6gretap1): Releasing active interface
[  220.879253][T10260] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  220.957624][T10260] syzkaller0: entered promiscuous mode
[  220.966340][T10260] syzkaller0: entered allmulticast mode
[  220.973292][T10260] tipc: Resetting bearer <eth:syzkaller0>
[  221.228843][T10259] tipc: Resetting bearer <eth:syzkaller0>
[  221.271595][ T2152] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  221.943213][ T5941] tipc: Node number set to 1374671317
[  222.743985][T10259] tipc: Disabling bearer <eth:syzkaller0>
[  222.999073][ T9973] 8021q: adding VLAN 0 to HW filter on device batadv0
[  223.041348][T10288] FAULT_INJECTION: forcing a failure.
[  223.041348][T10288] name failslab, interval 1, probability 0, space 0, times 0
[  223.071538][T10288] CPU: 1 UID: 0 PID: 10288 Comm: syz.4.1190 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  223.071572][T10288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  223.071586][T10288] Call Trace:
[  223.071595][T10288]  <TASK>
[  223.071604][T10288]  dump_stack_lvl+0x189/0x250
[  223.071638][T10288]  ? __pfx____ratelimit+0x10/0x10
[  223.071666][T10288]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.071693][T10288]  ? __pfx__printk+0x10/0x10
[  223.071732][T10288]  ? __pfx___might_resched+0x10/0x10
[  223.071764][T10288]  should_fail_ex+0x414/0x560
[  223.071803][T10288]  should_failslab+0xa8/0x100
[  223.071836][T10288]  __kmalloc_noprof+0xcb/0x4f0
[  223.071862][T10288]  ? sock_kmalloc+0xd6/0x160
[  223.071890][T10288]  sock_kmalloc+0xd6/0x160
[  223.071916][T10288]  af_alg_get_rsgl+0x236/0x810
[  223.071971][T10288]  skcipher_recvmsg+0x3c0/0x11c0
[  223.071997][T10288]  ? aa_sk_perm+0x81e/0x950
[  223.072042][T10288]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  223.072067][T10288]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  223.072086][T10288]  ? security_socket_recvmsg+0x7e/0x2e0
[  223.072112][T10288]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  223.072133][T10288]  sock_recvmsg+0x229/0x270
[  223.072165][T10288]  ____sys_recvmsg+0x1c9/0x460
[  223.072207][T10288]  ? __pfx_____sys_recvmsg+0x10/0x10
[  223.072249][T10288]  ? import_iovec+0x74/0xa0
[  223.072280][T10288]  ___sys_recvmsg+0x1b5/0x510
[  223.072309][T10288]  ? __pfx____sys_recvmsg+0x10/0x10
[  223.072361][T10288]  ? __fget_files+0x3a0/0x420
[  223.072405][T10288]  __x64_sys_recvmsg+0x198/0x260
[  223.072430][T10288]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  223.072465][T10288]  ? __pfx_ksys_write+0x10/0x10
[  223.072499][T10288]  ? do_syscall_64+0xbe/0x3b0
[  223.072532][T10288]  do_syscall_64+0xfa/0x3b0
[  223.072559][T10288]  ? lockdep_hardirqs_on+0x9c/0x150
[  223.072586][T10288]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.072608][T10288]  ? clear_bhb_loop+0x60/0xb0
[  223.072635][T10288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.072657][T10288] RIP: 0033:0x7f2de3d8e929
[  223.072677][T10288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.072697][T10288] RSP: 002b:00007f2de4c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  223.072721][T10288] RAX: ffffffffffffffda RBX: 00007f2de3fb6080 RCX: 00007f2de3d8e929
[  223.072737][T10288] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  223.072750][T10288] RBP: 00007f2de4c1e090 R08: 0000000000000000 R09: 0000000000000000
[  223.072764][T10288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  223.072777][T10288] R13: 0000000000000001 R14: 00007f2de3fb6080 R15: 00007ffc487d3e28
[  223.072812][T10288]  </TASK>
[  223.458427][ T9973] veth0_vlan: entered promiscuous mode
[  223.473909][ T9973] veth1_vlan: entered promiscuous mode
[  223.523800][ T9973] veth0_macvtap: entered promiscuous mode
[  223.556793][ T9973] veth1_macvtap: entered promiscuous mode
[  223.592229][ T9973] batman_adv: batadv0: Interface activated: batadv_slave_0
[  223.607416][ T9973] batman_adv: batadv0: Interface activated: batadv_slave_1
[  223.646296][   T37] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  223.664991][   T37] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  223.694150][   T13] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  223.704122][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.875714][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.895518][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.935806][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.954730][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  224.606354][T10333] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1197'.
[  224.952247][T10301] macvtap0: left promiscuous mode
[  225.027687][T10301] ipvlan2: left promiscuous mode
[  225.049209][T10301] vlan2: left promiscuous mode
[  225.060040][T10301] bridge0: left promiscuous mode
[  225.065202][T10301] vlan2: left allmulticast mode
[  225.070939][T10301] bridge0: left allmulticast mode
[  225.088696][T10301] batman_adv: batadv0: Interface deactivated: gretap1
[  225.129476][T10301] veth7: left promiscuous mode
[  225.136307][T10301] ip6tnl1: left promiscuous mode
[  225.141849][T10301] ip6tnl1: left allmulticast mode
[  225.264918][T10331] syzkaller1: entered promiscuous mode
[  225.276997][T10331] syzkaller1: entered allmulticast mode
[  225.302332][ T8657] netdevsim netdevsim4 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.325739][ T8657] netdevsim netdevsim4 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.389030][ T8657] netdevsim netdevsim4 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.410921][ T8651] netdevsim netdevsim4 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  225.619742][   T37] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.639521][T10360] FAULT_INJECTION: forcing a failure.
[  225.639521][T10360] name failslab, interval 1, probability 0, space 0, times 0
[  225.657730][T10360] CPU: 1 UID: 0 PID: 10360 Comm: syz.4.1203 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  225.657776][T10360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  225.657789][T10360] Call Trace:
[  225.657797][T10360]  <TASK>
[  225.657806][T10360]  dump_stack_lvl+0x189/0x250
[  225.657836][T10360]  ? __pfx____ratelimit+0x10/0x10
[  225.657863][T10360]  ? __pfx_dump_stack_lvl+0x10/0x10
[  225.657889][T10360]  ? __pfx__printk+0x10/0x10
[  225.657925][T10360]  ? __pfx___might_resched+0x10/0x10
[  225.657955][T10360]  should_fail_ex+0x414/0x560
[  225.657993][T10360]  should_failslab+0xa8/0x100
[  225.658024][T10360]  __kmalloc_noprof+0xcb/0x4f0
[  225.658050][T10360]  ? sock_kmalloc+0xd6/0x160
[  225.658094][T10360]  sock_kmalloc+0xd6/0x160
[  225.658120][T10360]  af_alg_get_rsgl+0x236/0x810
[  225.658175][T10360]  skcipher_recvmsg+0x3c0/0x11c0
[  225.658202][T10360]  ? aa_sk_perm+0x81e/0x950
[  225.658246][T10360]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  225.658272][T10360]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  225.658291][T10360]  ? security_socket_recvmsg+0x7e/0x2e0
[  225.658316][T10360]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  225.658337][T10360]  sock_recvmsg+0x229/0x270
[  225.658369][T10360]  ____sys_recvmsg+0x1c9/0x460
[  225.658403][T10360]  ? __pfx_____sys_recvmsg+0x10/0x10
[  225.658444][T10360]  ? import_iovec+0x74/0xa0
[  225.658475][T10360]  ___sys_recvmsg+0x1b5/0x510
[  225.658504][T10360]  ? __pfx____sys_recvmsg+0x10/0x10
[  225.658557][T10360]  ? __fget_files+0x3a0/0x420
[  225.658601][T10360]  __x64_sys_recvmsg+0x198/0x260
[  225.658633][T10360]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  225.658667][T10360]  ? __pfx_ksys_write+0x10/0x10
[  225.658699][T10360]  ? do_syscall_64+0xbe/0x3b0
[  225.658734][T10360]  do_syscall_64+0xfa/0x3b0
[  225.658762][T10360]  ? lockdep_hardirqs_on+0x9c/0x150
[  225.658789][T10360]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.658811][T10360]  ? clear_bhb_loop+0x60/0xb0
[  225.658838][T10360]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.658859][T10360] RIP: 0033:0x7f2de3d8e929
[  225.658880][T10360] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  225.658900][T10360] RSP: 002b:00007f2de4c1e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  225.658923][T10360] RAX: ffffffffffffffda RBX: 00007f2de3fb6080 RCX: 00007f2de3d8e929
[  225.658939][T10360] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  225.658953][T10360] RBP: 00007f2de4c1e090 R08: 0000000000000000 R09: 0000000000000000
[  225.658967][T10360] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.658980][T10360] R13: 0000000000000001 R14: 00007f2de3fb6080 R15: 00007ffc487d3e28
[  225.659015][T10360]  </TASK>
[  226.164306][   T37] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.222901][ T5859] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  226.238552][ T5859] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  226.248184][ T5859] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  226.265167][ T5859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  226.275257][ T5859] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  226.511518][   T37] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.608335][T10391] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1209'.
[  226.907417][   T37] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.967810][T10400] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  226.970009][T10405] syz.3.1212 (10405) used obsolete PPPIOCDETACH ioctl
[  226.979238][T10400] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  227.113274][T10414] syz.4.1216: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  227.186560][T10414] CPU: 1 UID: 0 PID: 10414 Comm: syz.4.1216 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  227.186602][T10414] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.186617][T10414] Call Trace:
[  227.186627][T10414]  <TASK>
[  227.186636][T10414]  dump_stack_lvl+0x189/0x250
[  227.186674][T10414]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.186702][T10414]  ? __pfx__printk+0x10/0x10
[  227.186735][T10414]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  227.186770][T10414]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  227.186805][T10414]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  227.186841][T10414]  warn_alloc+0x214/0x310
[  227.186874][T10414]  ? stack_depot_save_flags+0x40/0x900
[  227.186914][T10414]  ? __pfx_warn_alloc+0x10/0x10
[  227.186948][T10414]  ? kasan_save_track+0x4f/0x80
[  227.186976][T10414]  ? xskq_create+0x56/0x170
[  227.187002][T10414]  ? xsk_init_queue+0xb0/0x110
[  227.187026][T10414]  ? xsk_setsockopt+0x43f/0x710
[  227.187048][T10414]  ? do_sock_setsockopt+0x257/0x3e0
[  227.187080][T10414]  ? __x64_sys_setsockopt+0x18b/0x220
[  227.187112][T10414]  ? do_syscall_64+0xfa/0x3b0
[  227.187140][T10414]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.187172][T10414]  __vmalloc_node_range_noprof+0x125/0x12f0
[  227.187238][T10414]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  227.187270][T10414]  ? xskq_create+0x56/0x170
[  227.187298][T10414]  ? __kasan_kmalloc+0x93/0xb0
[  227.187329][T10414]  vmalloc_user_noprof+0xad/0xf0
[  227.187360][T10414]  ? xskq_create+0xbf/0x170
[  227.187388][T10414]  xskq_create+0xbf/0x170
[  227.187419][T10414]  xsk_init_queue+0xb0/0x110
[  227.187449][T10414]  xsk_setsockopt+0x43f/0x710
[  227.187478][T10414]  ? __pfx_xsk_setsockopt+0x10/0x10
[  227.187501][T10414]  ? __lock_acquire+0xab9/0xd20
[  227.187535][T10414]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  227.187557][T10414]  ? __pfx_xsk_setsockopt+0x10/0x10
[  227.187592][T10414]  do_sock_setsockopt+0x257/0x3e0
[  227.187631][T10414]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  227.187672][T10414]  ? __fget_files+0x2a/0x420
[  227.187712][T10414]  __x64_sys_setsockopt+0x18b/0x220
[  227.187754][T10414]  do_syscall_64+0xfa/0x3b0
[  227.187783][T10414]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.187812][T10414]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.187835][T10414]  ? clear_bhb_loop+0x60/0xb0
[  227.187863][T10414]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.187885][T10414] RIP: 0033:0x7f2de3d8e929
[  227.187905][T10414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.187923][T10414] RSP: 002b:00007f2de4c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  227.187946][T10414] RAX: ffffffffffffffda RBX: 00007f2de3fb5fa0 RCX: 00007f2de3d8e929
[  227.187964][T10414] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000004
[  227.187977][T10414] RBP: 00007f2de3e10b39 R08: 0000000000000004 R09: 0000000000000000
[  227.187992][T10414] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  227.188005][T10414] R13: 0000000000000000 R14: 00007f2de3fb5fa0 R15: 00007ffc487d3e28
[  227.188043][T10414]  </TASK>
[  227.498004][T10414] Mem-Info:
[  227.542099][T10414] active_anon:5737 inactive_anon:0 isolated_anon:0
[  227.542099][T10414]  active_file:1532 inactive_file:39882 isolated_file:0
[  227.542099][T10414]  unevictable:768 dirty:72 writeback:0
[  227.542099][T10414]  slab_reclaimable:11817 slab_unreclaimable:110619
[  227.542099][T10414]  mapped:29107 shmem:1363 pagetables:1015
[  227.542099][T10414]  sec_pagetables:0 bounce:0
[  227.542099][T10414]  kernel_misc_reclaimable:0
[  227.542099][T10414]  free:1311525 free_pcp:13860 free_cma:0
[  227.589753][T10414] Node 0 active_anon:22848kB inactive_anon:0kB active_file:6128kB inactive_file:159328kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116428kB dirty:288kB writeback:0kB shmem:3916kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13220kB pagetables:4000kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  227.602572][   T37] bridge_slave_1: left allmulticast mode
[  227.629301][T10414] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:160kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  227.665589][T10414] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  227.699907][T10414] lowmem_reserve[]: 0 2498 2499 2499 2499
[  227.708082][T10414] Node 0 DMA32 free:1329544kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22900kB inactive_anon:0kB active_file:6128kB inactive_file:157752kB unevictable:1536kB writepending:284kB present:3129332kB managed:2558316kB mlocked:0kB bounce:0kB free_pcp:36652kB local_pcp:21200kB free_cma:0kB
[  227.722698][   T37] bridge_slave_1: left promiscuous mode
[  227.744116][T10414] lowmem_reserve[]: 0 0 1 1 1
[  227.751992][T10414] Node 0 Normal free:12kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1576kB unevictable:0kB writepending:4kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[  227.788835][T10414] lowmem_reserve[]: 0 0 0 0 0
[  227.794847][T10414] Node 1 Normal free:3900884kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:19108kB local_pcp:9828kB free_cma:0kB
[  227.808226][   T37] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.828058][T10428] FAULT_INJECTION: forcing a failure.
[  227.828058][T10428] name failslab, interval 1, probability 0, space 0, times 0
[  227.847619][T10414] lowmem_reserve[]: 0 0 0 0 0
[  227.850429][T10428] CPU: 0 UID: 0 PID: 10428 Comm: syz.3.1220 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  227.850464][T10428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  227.850480][T10428] Call Trace:
[  227.850489][T10428]  <TASK>
[  227.850500][T10428]  dump_stack_lvl+0x189/0x250
[  227.850537][T10428]  ? __pfx____ratelimit+0x10/0x10
[  227.850569][T10428]  ? __pfx_dump_stack_lvl+0x10/0x10
[  227.850600][T10428]  ? __pfx__printk+0x10/0x10
[  227.850643][T10428]  ? __pfx___might_resched+0x10/0x10
[  227.850678][T10428]  should_fail_ex+0x414/0x560
[  227.850729][T10428]  should_failslab+0xa8/0x100
[  227.850766][T10428]  __kmalloc_noprof+0xcb/0x4f0
[  227.850796][T10428]  ? sock_kmalloc+0xd6/0x160
[  227.850826][T10428]  sock_kmalloc+0xd6/0x160
[  227.850854][T10428]  af_alg_get_rsgl+0x236/0x810
[  227.850914][T10428]  skcipher_recvmsg+0x3c0/0x11c0
[  227.850943][T10428]  ? aa_sk_perm+0x81e/0x950
[  227.850993][T10428]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  227.851021][T10428]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  227.851042][T10428]  ? security_socket_recvmsg+0x7e/0x2e0
[  227.851070][T10428]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  227.851094][T10428]  sock_recvmsg+0x229/0x270
[  227.851130][T10428]  ____sys_recvmsg+0x1c9/0x460
[  227.851165][T10428]  ? __pfx_____sys_recvmsg+0x10/0x10
[  227.851211][T10428]  ? import_iovec+0x74/0xa0
[  227.851245][T10428]  ___sys_recvmsg+0x1b5/0x510
[  227.851276][T10428]  ? __pfx____sys_recvmsg+0x10/0x10
[  227.851335][T10428]  ? __fget_files+0x3a0/0x420
[  227.851383][T10428]  __x64_sys_recvmsg+0x198/0x260
[  227.851411][T10428]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  227.851448][T10428]  ? __pfx_ksys_write+0x10/0x10
[  227.851486][T10428]  ? do_syscall_64+0xbe/0x3b0
[  227.851523][T10428]  do_syscall_64+0xfa/0x3b0
[  227.851552][T10428]  ? lockdep_hardirqs_on+0x9c/0x150
[  227.851582][T10428]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.851607][T10428]  ? clear_bhb_loop+0x60/0xb0
[  227.851637][T10428]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  227.851659][T10428] RIP: 0033:0x7f016398e929
[  227.851682][T10428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  227.851709][T10428] RSP: 002b:00007f016479d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  227.851734][T10428] RAX: ffffffffffffffda RBX: 00007f0163bb6080 RCX: 00007f016398e929
[  227.851754][T10428] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  227.851768][T10428] RBP: 00007f016479d090 R08: 0000000000000000 R09: 0000000000000000
[  227.851783][T10428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  227.851797][T10428] R13: 0000000000000001 R14: 00007f0163bb6080 R15: 00007fffb9aab2b8
[  227.851835][T10428]  </TASK>
[  228.008532][T10433] xt_hashlimit: size too large, truncated to 1048576
[  228.014300][T10414] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  228.163388][T10414] Node 0 DMA32: 2*4kB (ME) 34*8kB (ME) 185*16kB (M) 167*32kB (UM) 171*64kB (UM) 92*128kB (UME) 75*256kB (UM) 
[  228.163587][   T37] bridge_slave_0: left allmulticast mode
[  228.163595][T10414] 47*512kB 
[  228.163614][   T37] bridge_slave_0: left promiscuous mode
[  228.175886][T10414] (UM) 22*1024kB (UM) 3*2048kB (UM) 298*4096kB (M) = 1323848kB
[  228.199436][T10414] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB
[  228.214280][   T37] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.230669][T10414] Node 1 Normal: 203*4kB (UE) 57*8kB (UME) 40*16kB (UME) 63*32kB (UME) 24*64kB (UME) 5*128kB (UME) 4*256kB (UM) 3*512kB (ME) 3*1024kB (UME) 1*2048kB (E) 949*4096kB (M) = 3900884kB
[  228.286440][T10414] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  228.317816][T10414] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  228.329764][T10414] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  228.380614][T10414] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  228.390248][ T5857] Bluetooth: hci0: command tx timeout
[  228.425137][T10414] 42776 total pagecache pages
[  228.429890][T10414] 0 pages in swap cache
[  228.438982][T10414] Free swap  = 124996kB
[  228.457463][T10414] Total swap = 124996kB
[  228.479532][T10414] 2097051 pages RAM
[  228.494352][T10414] 0 pages HighMem/MovableOnly
[  228.499185][T10414] 425430 pages reserved
[  228.534709][T10414] 0 pages cma reserved
[  228.962525][T10455] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1224'.
[  228.992900][   T37] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  229.014178][   T37] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  229.029873][   T37] bond0 (unregistering): Released all slaves
[  229.057963][T10434] 
: renamed from bridge_slave_0 (while UP)
[  229.266644][T10460] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  229.291682][T10463] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1226'.
[  229.696778][T10371] chnl_net:caif_netlink_parms(): no params data found
[  229.874881][T10479] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1229'.
[  229.900151][T10479] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1229'.
[  230.077041][T10371] bridge0: port 1(bridge_slave_0) entered blocking state
[  230.101267][T10371] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.122439][T10371] bridge_slave_0: entered allmulticast mode
[  230.139802][T10371] bridge_slave_0: entered promiscuous mode
[  230.201930][T10371] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.215651][T10371] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.224284][T10371] bridge_slave_1: entered allmulticast mode
[  230.240959][T10371] bridge_slave_1: entered promiscuous mode
[  230.361880][T10371] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.395383][T10371] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.470869][ T5857] Bluetooth: hci0: command tx timeout
[  231.292441][T10371] team0: Port device team_slave_0 added
[  231.312353][T10371] team0: Port device team_slave_1 added
[  231.386855][   T37] hsr_slave_0: left promiscuous mode
[  231.426471][   T37] hsr_slave_1: left promiscuous mode
[  231.458198][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  231.473837][   T37] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.483558][   T37] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  231.500990][   T37] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.543632][   T37] veth1_macvtap: left promiscuous mode
[  231.549258][   T37] veth0_macvtap: left promiscuous mode
[  231.555885][   T37] veth1_vlan: left promiscuous mode
[  231.562051][   T37] veth0_vlan: left promiscuous mode
[  232.038202][   T37] team0 (unregistering): Port device team_slave_1 removed
[  232.077163][   T37] team0 (unregistering): Port device team_slave_0 removed
[  232.527277][T10371] batman_adv: batadv0: Adding interface: batadv_slave_0
[  232.539088][T10371] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.568131][T10371] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  232.570506][ T5857] Bluetooth: hci0: command tx timeout
[  232.584146][T10371] batman_adv: batadv0: Adding interface: batadv_slave_1
[  232.584201][T10371] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.621492][T10371] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  232.767233][T10500] FAULT_INJECTION: forcing a failure.
[  232.767233][T10500] name failslab, interval 1, probability 0, space 0, times 0
[  232.820712][T10500] CPU: 1 UID: 0 PID: 10500 Comm: syz.0.1233 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  232.820745][T10500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  232.820757][T10500] Call Trace:
[  232.820766][T10500]  <TASK>
[  232.820774][T10500]  dump_stack_lvl+0x189/0x250
[  232.820807][T10500]  ? __pfx____ratelimit+0x10/0x10
[  232.820836][T10500]  ? __pfx_dump_stack_lvl+0x10/0x10
[  232.820862][T10500]  ? __pfx__printk+0x10/0x10
[  232.820896][T10500]  ? __pfx___might_resched+0x10/0x10
[  232.820922][T10500]  ? fs_reclaim_acquire+0x7d/0x100
[  232.820960][T10500]  should_fail_ex+0x414/0x560
[  232.820998][T10500]  should_failslab+0xa8/0x100
[  232.821042][T10500]  __kmalloc_noprof+0xcb/0x4f0
[  232.821068][T10500]  ? sock_kmalloc+0xd6/0x160
[  232.821096][T10500]  sock_kmalloc+0xd6/0x160
[  232.821122][T10500]  skcipher_recvmsg+0x55c/0x11c0
[  232.821164][T10500]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  232.821188][T10500]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  232.821208][T10500]  ? security_socket_recvmsg+0x7e/0x2e0
[  232.821234][T10500]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  232.821256][T10500]  sock_recvmsg+0x229/0x270
[  232.821287][T10500]  ____sys_recvmsg+0x1c9/0x460
[  232.821332][T10500]  ? __pfx_____sys_recvmsg+0x10/0x10
[  232.821371][T10500]  ? import_iovec+0x74/0xa0
[  232.821402][T10500]  ___sys_recvmsg+0x1b5/0x510
[  232.821429][T10500]  ? __pfx____sys_recvmsg+0x10/0x10
[  232.821481][T10500]  ? __fget_files+0x3a0/0x420
[  232.821523][T10500]  __x64_sys_recvmsg+0x198/0x260
[  232.821548][T10500]  ? __pfx___x64_sys_recvmsg+0x10/0x10
[  232.821581][T10500]  ? __pfx_ksys_write+0x10/0x10
[  232.821613][T10500]  ? do_syscall_64+0xbe/0x3b0
[  232.821647][T10500]  do_syscall_64+0xfa/0x3b0
[  232.821673][T10500]  ? lockdep_hardirqs_on+0x9c/0x150
[  232.821699][T10500]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.821720][T10500]  ? clear_bhb_loop+0x60/0xb0
[  232.821747][T10500]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  232.821767][T10500] RIP: 0033:0x7f9fbe78e929
[  232.821786][T10500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  232.821805][T10500] RSP: 002b:00007f9fbf574038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  232.821827][T10500] RAX: ffffffffffffffda RBX: 00007f9fbe9b6080 RCX: 00007f9fbe78e929
[  232.821843][T10500] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  232.821856][T10500] RBP: 00007f9fbf574090 R08: 0000000000000000 R09: 0000000000000000
[  232.821869][T10500] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  232.821882][T10500] R13: 0000000000000001 R14: 00007f9fbe9b6080 R15: 00007ffe64e99ea8
[  232.821916][T10500]  </TASK>
[  233.261399][T10371] hsr_slave_0: entered promiscuous mode
[  233.268853][T10371] hsr_slave_1: entered promiscuous mode
[  233.282540][T10371] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  233.295439][T10371] Cannot create hsr debugfs directory
[  233.403494][T10507] netlink: 324 bytes leftover after parsing attributes in process `syz.2.1236'.
[  233.671334][T10513] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1238'.
[  233.738734][T10514] netlink: 'syz.0.1238': attribute type 1 has an invalid length.
[  233.762412][   T37] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  233.775110][   T37] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  233.783907][T10311] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  233.791220][T10514] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1238'.
[  233.815962][T10516] netlink: 'syz.2.1239': attribute type 39 has an invalid length.
[  233.828351][T10518] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1240'.
[  233.951109][T10311] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  234.121227][T10311] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  234.263434][T10525] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1241'.
[  234.297122][T10371] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  234.333395][T10371] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  234.387330][T10371] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  234.427174][T10371] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  234.564657][T10542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1246'.
[  234.577563][T10541] netlink: 'syz.4.1245': attribute type 15 has an invalid length.
[  234.609680][T10541] netlink: 136 bytes leftover after parsing attributes in process `syz.4.1245'.
[  234.624100][T10541] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  234.640277][ T5857] Bluetooth: hci0: command tx timeout
[  234.795649][T10371] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.854010][T10371] 8021q: adding VLAN 0 to HW filter on device team0
[  234.896688][ T8645] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.903944][ T8645] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.933013][ T8639] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.940246][ T8639] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.282064][T10564] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1252'.
[  235.450446][T10572] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1251'.
[  235.583579][T10576] netlink: 'syz.2.1254': attribute type 1 has an invalid length.
[  235.622190][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1252'.
[  235.675477][T10576] 8021q: adding VLAN 0 to HW filter on device bond7
[  235.777216][T10575] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  236.206531][T10371] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.373508][T10371] veth0_vlan: entered promiscuous mode
[  236.416804][T10371] veth1_vlan: entered promiscuous mode
[  236.466112][T10371] veth0_macvtap: entered promiscuous mode
[  236.553161][T10371] veth1_macvtap: entered promiscuous mode
[  236.627355][T10371] batman_adv: batadv0: Interface activated: batadv_slave_0
[  236.663787][T10371] batman_adv: batadv0: Interface activated: batadv_slave_1
[  236.696770][ T8639] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  236.710301][ T5857] Bluetooth: hci0: command tx timeout
[  236.722847][ T8639] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  236.734985][ T8639] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  236.745567][ T8639] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  236.945805][ T8651] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  236.967025][ T8651] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  237.033856][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  237.051521][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  237.230039][T10617] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  237.510315][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  237.778760][T10631] veth0_virt_wifi: renamed from veth0_macvtap
[  238.377795][ T8657] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.646118][ T8657] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.957051][T10651] __nla_validate_parse: 3 callbacks suppressed
[  238.957072][T10651] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1279'.
[  239.112846][ T8657] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.144821][T10656] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1283'.
[  239.195919][T10660] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1285'.
[  239.354884][ T8657] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.449978][T10668] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1289'.
[  239.657941][T10678] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1294'.
[  239.692054][ T5859] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  239.701722][ T5859] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  239.716280][ T5859] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  239.732642][ T5859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  239.750754][ T5859] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  239.753068][ T8657] bridge_slave_1: left allmulticast mode
[  239.795298][ T8657] bridge_slave_1: left promiscuous mode
[  239.805544][ T8657] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.838647][ T8657] bridge_slave_0: left allmulticast mode
[  239.850167][ T8657] bridge_slave_0: left promiscuous mode
[  239.856090][ T8657] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.936188][T10691] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1298'.
[  240.026065][T10696] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1297'.
[  240.470463][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  240.674103][ T8657] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  240.687266][ T8657] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  240.699570][ T8657] bond0 (unregistering): Released all slaves
[  240.721262][T10720] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1309'.
[  240.731829][T10719] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1309'.
[  241.218012][T10735] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1316'.
[  241.425490][T10740] netlink: 'syz.2.1319': attribute type 10 has an invalid length.
[  241.481830][T10740] ieee802154 phy0 wpan0: entered promiscuous mode
[  241.513520][T10311] ==================================================================
[  241.521642][T10311] BUG: KASAN: null-ptr-deref in mac802154_header_create+0x144/0x5f0
[  241.529664][T10311] Write of size 4 at addr 000000000000004c by task kworker/1:8/10311
[  241.537759][T10311] 
[  241.540110][T10311] CPU: 1 UID: 0 PID: 10311 Comm: kworker/1:8 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  241.540141][T10311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  241.540156][T10311] Workqueue: mld mld_ifc_work
[  241.540199][T10311] Call Trace:
[  241.540208][T10311]  <TASK>
[  241.540216][T10311]  dump_stack_lvl+0x189/0x250
[  241.540245][T10311]  ? __pfx__printk+0x10/0x10
[  241.540274][T10311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.540300][T10311]  ? __pfx__printk+0x10/0x10
[  241.540327][T10311]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  241.540363][T10311]  ? mac802154_header_create+0x144/0x5f0
[  241.540397][T10311]  ? mac802154_header_create+0x144/0x5f0
[  241.540427][T10311]  kasan_report+0x118/0x150
[  241.540457][T10311]  ? mac802154_header_create+0x144/0x5f0
[  241.540493][T10311]  kasan_check_range+0x2b0/0x2c0
[  241.540524][T10311]  mac802154_header_create+0x144/0x5f0
[  241.540558][T10311]  ? __pfx_mac802154_header_create+0x10/0x10
[  241.540592][T10311]  ? read_seqbegin+0x122/0x250
[  241.540618][T10311]  ? neigh_connected_output+0x1ea/0x460
[  241.540645][T10311]  ? lockdep_hardirqs_on+0x9c/0x150
[  241.540680][T10311]  ? ___neigh_create+0x1c83/0x2260
[  241.540705][T10311]  ? __pfx_mac802154_header_create+0x10/0x10
[  241.540738][T10311]  neigh_connected_output+0x286/0x460
[  241.540777][T10311]  ip6_finish_output2+0x11fe/0x16a0
[  241.540800][T10311]  ? ip6_finish_output2+0x701/0x16a0
[  241.540824][T10311]  ? __pfx_ip6_finish_output2+0x10/0x10
[  241.540858][T10311]  ? ip6_mtu+0x7d/0x3f0
[  241.540888][T10311]  ? ip6_mtu+0x7d/0x3f0
[  241.540919][T10311]  ip6_finish_output+0x234/0x7d0
[  241.540952][T10311]  NF_HOOK+0x9e/0x380
[  241.540983][T10311]  ? NF_HOOK+0x101/0x380
[  241.541013][T10311]  ? __pfx_NF_HOOK+0x10/0x10
[  241.541045][T10311]  ? __pfx_dst_output+0x10/0x10
[  241.541076][T10311]  ? icmp6_dst_alloc+0x3a5/0x420
[  241.541107][T10311]  ? icmp6_dst_alloc+0x3a5/0x420
[  241.541140][T10311]  mld_sendpack+0x800/0xd80
[  241.541182][T10311]  ? mld_sendpack+0x1de/0xd80
[  241.541213][T10311]  ? __pfx_mld_sendpack+0x10/0x10
[  241.541258][T10311]  mld_ifc_work+0x835/0xde0
[  241.541291][T10311]  ? process_scheduled_works+0x9ef/0x17b0
[  241.541318][T10311]  process_scheduled_works+0xade/0x17b0
[  241.541366][T10311]  ? __pfx_process_scheduled_works+0x10/0x10
[  241.541402][T10311]  worker_thread+0x8a0/0xda0
[  241.541436][T10311]  ? __kthread_parkme+0x7b/0x200
[  241.541469][T10311]  kthread+0x70e/0x8a0
[  241.541500][T10311]  ? __pfx_worker_thread+0x10/0x10
[  241.541526][T10311]  ? __pfx_kthread+0x10/0x10
[  241.541556][T10311]  ? _raw_spin_unlock_irq+0x23/0x50
[  241.541580][T10311]  ? lockdep_hardirqs_on+0x9c/0x150
[  241.541606][T10311]  ? __pfx_kthread+0x10/0x10
[  241.541636][T10311]  ret_from_fork+0x3fc/0x770
[  241.541661][T10311]  ? __pfx_ret_from_fork+0x10/0x10
[  241.541688][T10311]  ? __switch_to_asm+0x39/0x70
[  241.541715][T10311]  ? __switch_to_asm+0x33/0x70
[  241.541743][T10311]  ? __pfx_kthread+0x10/0x10
[  241.541773][T10311]  ret_from_fork_asm+0x1a/0x30
[  241.541811][T10311]  </TASK>
[  241.541819][T10311] ==================================================================
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  241.888809][T10740] bond0: (slave wpan0): Enslaving as an active interface with an up link
[  241.900591][ T5859] Bluetooth: hci0: command tx timeout
[  241.959865][T10311] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  241.967123][T10311] CPU: 1 UID: 0 PID: 10311 Comm: kworker/1:8 Not tainted 6.16.0-rc4-syzkaller-00991-g6b9fd8857b9f #0 PREEMPT(full) 
[  241.979373][T10311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  241.989437][T10311] Workqueue: mld mld_ifc_work
[  241.994136][T10311] Call Trace:
[  241.997424][T10311]  <TASK>
[  242.000363][T10311]  dump_stack_lvl+0x99/0x250
[  242.004963][T10311]  ? __asan_memcpy+0x40/0x70
[  242.009560][T10311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  242.014765][T10311]  ? __pfx__printk+0x10/0x10
[  242.019378][T10311]  panic+0x2db/0x790
[  242.023283][T10311]  ? __pfx_panic+0x10/0x10
[  242.027735][T10311]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  242.033635][T10311]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  242.039967][T10311]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[  242.045356][T10311]  ? mac802154_header_create+0x144/0x5f0
[  242.051003][T10311]  check_panic_on_warn+0x89/0xb0
[  242.056039][T10311]  ? mac802154_header_create+0x144/0x5f0
[  242.061692][T10311]  end_report+0x78/0x160
[  242.065960][T10311]  kasan_report+0x129/0x150
[  242.070491][T10311]  ? mac802154_header_create+0x144/0x5f0
[  242.076146][T10311]  kasan_check_range+0x2b0/0x2c0
[  242.081117][T10311]  mac802154_header_create+0x144/0x5f0
[  242.086593][T10311]  ? __pfx_mac802154_header_create+0x10/0x10
[  242.092602][T10311]  ? read_seqbegin+0x122/0x250
[  242.097375][T10311]  ? neigh_connected_output+0x1ea/0x460
[  242.102928][T10311]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.108141][T10311]  ? ___neigh_create+0x1c83/0x2260
[  242.113260][T10311]  ? __pfx_mac802154_header_create+0x10/0x10
[  242.119252][T10311]  neigh_connected_output+0x286/0x460
[  242.124642][T10311]  ip6_finish_output2+0x11fe/0x16a0
[  242.129849][T10311]  ? ip6_finish_output2+0x701/0x16a0
[  242.135136][T10311]  ? __pfx_ip6_finish_output2+0x10/0x10
[  242.140695][T10311]  ? ip6_mtu+0x7d/0x3f0
[  242.144860][T10311]  ? ip6_mtu+0x7d/0x3f0
[  242.149027][T10311]  ip6_finish_output+0x234/0x7d0
[  242.153979][T10311]  NF_HOOK+0x9e/0x380
[  242.157978][T10311]  ? NF_HOOK+0x101/0x380
[  242.162234][T10311]  ? __pfx_NF_HOOK+0x10/0x10
[  242.166840][T10311]  ? __pfx_dst_output+0x10/0x10
[  242.171704][T10311]  ? icmp6_dst_alloc+0x3a5/0x420
[  242.176652][T10311]  ? icmp6_dst_alloc+0x3a5/0x420
[  242.181610][T10311]  mld_sendpack+0x800/0xd80
[  242.186136][T10311]  ? mld_sendpack+0x1de/0xd80
[  242.190828][T10311]  ? __pfx_mld_sendpack+0x10/0x10
[  242.195873][T10311]  mld_ifc_work+0x835/0xde0
[  242.200387][T10311]  ? process_scheduled_works+0x9ef/0x17b0
[  242.206115][T10311]  process_scheduled_works+0xade/0x17b0
[  242.211684][T10311]  ? __pfx_process_scheduled_works+0x10/0x10
[  242.217676][T10311]  worker_thread+0x8a0/0xda0
[  242.222313][T10311]  ? __kthread_parkme+0x7b/0x200
[  242.227267][T10311]  kthread+0x70e/0x8a0
[  242.231453][T10311]  ? __pfx_worker_thread+0x10/0x10
[  242.236577][T10311]  ? __pfx_kthread+0x10/0x10
[  242.241188][T10311]  ? _raw_spin_unlock_irq+0x23/0x50
[  242.246394][T10311]  ? lockdep_hardirqs_on+0x9c/0x150
[  242.251605][T10311]  ? __pfx_kthread+0x10/0x10
[  242.256209][T10311]  ret_from_fork+0x3fc/0x770
[  242.260808][T10311]  ? __pfx_ret_from_fork+0x10/0x10
[  242.265958][T10311]  ? __switch_to_asm+0x39/0x70
[  242.270732][T10311]  ? __switch_to_asm+0x33/0x70
[  242.275510][T10311]  ? __pfx_kthread+0x10/0x10
[  242.280110][T10311]  ret_from_fork_asm+0x1a/0x30
[  242.284890][T10311]  </TASK>
[  242.288225][T10311] Kernel Offset: disabled
[  242.292561][T10311] Rebooting in 86400 seconds..