last executing test programs:

7.870099063s ago: executing program 4 (id=929):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0xd7, 0x0, 0x0, 0x0, 0xb}, [@call={0x85, 0x0, 0x0, 0x28}, @printk={@lld, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x70}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000040)="e09f547ed3f02dc1fd3d6487775b", 0x0, 0x4, 0x0, 0x0, 0x2f, 0x0, 0x0}, 0x50)

7.738940181s ago: executing program 4 (id=931):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB='d\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="3f9d00000000fedbdf251700000008000300", @ANYRES32=r2, @ANYBLOB="4800308014000400403a050c5baee2004ef2b6d733459a7a2800018008000100000000001c00038006000300a0aa800006000100000000000800020002000000050002"], 0x64}}, 0x10)

7.397055938s ago: executing program 4 (id=934):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001640)=@ipv4_newroute={0x24, 0x1a, 0x1, 0x3, 0x0, {0x2, 0x0, 0x0, 0x0, 0xfe}, [@RTA_UID={0x8, 0x19, 0xffffffffffffffff}]}, 0x24}}, 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x20, 0x30}, 0xc)
socketpair(0x1, 0x3, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @fib={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FIB_DREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_FIB_RESULT={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_FIB_FLAGS={0x8, 0x3, 0x1, 0x0, 0x32}]}}}]}]}], {0x14}}, 0x80}, 0x1, 0x0, 0x0, 0x20000884}, 0x8800)
bind$unix(r2, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f00000001c0))
close(r2)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @private1}, 0x1c)
r5 = socket$inet(0xa, 0x80000, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r5, 0x0, 0x4, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)='T', 0x1}], 0x1)
writev(r0, &(0x7f0000000600)=[{&(0x7f0000000100)='^', 0x34000}], 0x1c)

6.466990779s ago: executing program 4 (id=943):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000005"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f0000000340), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xd50, 0x0, &(0x7f0000000580)="b9ff03076804268c989e14f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) (fail_nth: 12)

6.004044502s ago: executing program 4 (id=945):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r3, 0x89f0, &(0x7f0000001440)={'bridge0\x00', &(0x7f0000000100)=@ethtool_ringparam={0x8, 0x0, 0x0, 0x0, 0x0, 0xf}})
syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), r3)
close(0x3)
setsockopt$inet_sctp6_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(0xffffffffffffffff, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(r1, 0x29, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESHEX=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r4, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
socket$unix(0x1, 0x2, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r7=>0x0})
r8 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000000)={r7, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
sendmsg$nl_route_sched(r8, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r7}}, 0x24}}, 0x0)
close(r5)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000001100)={@local, @mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4, 0x1, 0x6, 0x400, 0x7, 0x700080})

5.609016824s ago: executing program 3 (id=948):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000100)}], 0x1, 0x0, 0x0, 0x44}], 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

4.402348801s ago: executing program 3 (id=950):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00100000bfa200000000000007020000f8ffffffb703000008000000b704000001000200850000008200000095000000000d5ff2"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f00000002c0)='br_fdb_add\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="280000001c000100000000000000000007000000", @ANYRES32=r4, @ANYBLOB="4000aa000a0002"], 0x28}}, 0x0)

4.31739335s ago: executing program 4 (id=952):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000c00)=ANY=[], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000002000000000000000000000a00000000000000000000000d"], 0x0, 0x32, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)={0x54, 0x9, 0x6, 0x201, 0x300, 0x0, {0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x2c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x29}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @loopback}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_MCAST_JOIN_GROUP(r6, 0x0, 0x2a, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r5, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0x5}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x8, &(0x7f0000000180)=@raw=[@printk={@lu, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x8000}}], &(0x7f0000000200)='GPL\x00', 0x5, 0x20, &(0x7f00000002c0)=""/32, 0x41000, 0x0, '\x00', 0x0, 0x0, r2, 0x8, &(0x7f0000000340)={0x8, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x101, @void, @value}, 0x94)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r7, &(0x7f0000000280)={0xa, 0x4e21, 0xff, @private1, 0x7}, 0x1c)
setsockopt$inet6_udp_encap(r7, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r7, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYRES32=r0, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4110020060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce851400040002000000ac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a000000140002000000000000000000000000000000000105000300030000001c000080060001000200da0008000200e000000105000300000000001c000080060001000200000008000200ac141400050003000000000074000080200004000a004e2200000000fc0000000000000000000000000000000400000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff080003000100000024000200cde20bc0d9b90ac13642d7b66459dd9db5e20b4b16d3d23f2cb03a8aa417dce6080007000000000014000200776730", @ANYBLOB, @ANYRES16=r0, @ANYRES8=r7], 0x1c8}, 0x1, 0x0, 0x0, 0x4}, 0x0)
socket$kcm(0x10, 0x2, 0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r8, 0x89f8, &(0x7f0000000040)={'sit0\x00', &(0x7f00000001c0)={'gre0\x00', 0x0, 0x20, 0x8, 0x7, 0x8, {{0x5, 0x4, 0x1, 0x3, 0xb, 0x64, 0x0, 0x7, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @loopback}}}})
r9 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r9, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000580)=[@in6={0xa, 0x4e24, 0x0, @private1}]}, &(0x7f0000000180)=0x10)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000440)={'team_slave_0\x00', @local})
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
pselect6(0x1, &(0x7f00000001c0)={0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x2}, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x1, &(0x7f0000000180)=[{0x94}]}, 0x10)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x22, &(0x7f0000000bc0)=""/19, &(0x7f0000000c00)=0x13)

4.224150536s ago: executing program 3 (id=954):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r2, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESHEX=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
socket$unix(0x1, 0x2, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000000)={r6, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)
close(r4)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000001100)={@local, @mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4, 0x1, 0x6, 0x400, 0x7, 0x700080})

3.724029224s ago: executing program 3 (id=961):
r0 = socket$nl_audit(0x10, 0x3, 0x9)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_SPORT={0x6, 0x10, 0x4e20}, @IFLA_GRE_ENCAP_FLAGS={0x6}]}}}]}, 0x44}}, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000440)=0x2, 0x4)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0xa87, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r2}, 0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000ffffffff00000000000000008500000011000000b7080000000000007b8af8ff00000000b7080000ff0100007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000002a50000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000100)="b34715ecd04550d3abc89b6f7bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close(r0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r5, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
socket$can_raw(0x1d, 0x3, 0x1)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r6)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x0, 0x1, 0xb1}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
r7 = socket$inet_mptcp(0x2, 0x1, 0x106)
unshare(0x68040200)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x9200000000000000)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x48, 0x3, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x4}}], {0x14}}, 0xa4}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
connect$inet(r7, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
accept(r6, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

2.926382798s ago: executing program 1 (id=971):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r2, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESHEX=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
socket$unix(0x1, 0x2, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000000)={r6, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)
close(r4)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000001100)={@local, @mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4, 0x1, 0x6, 0x400, 0x7, 0x700080})

2.388638382s ago: executing program 2 (id=973):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000003100)=[{{&(0x7f0000000240)={0xa, 0x0, 0x0, @remote}, 0x1c, 0x0, 0xf5}}, {{&(0x7f0000000440)={0xa, 0x0, 0x0, @empty, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='(\x00\x00\x00\x00\x00\x00\x00)'], 0x28}}], 0x2, 0x4008014)

2.290202032s ago: executing program 2 (id=975):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000040)={&(0x7f0000000180)="978fe72257dbf9e43478c4a813eb90f8199be6185c7502382afa37613943486cc5dbb9f2ca23249dabbb00cd9ea074ed82a9ac59427e688f35324c92a275380d87459dd8e0a7a05d565cc7961ef47018db72", &(0x7f0000000280)=""/88, &(0x7f0000000300)="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", &(0x7f0000001300)="cf62aeed95368133560e318c6c89033df68140dc3784a09168aa0b6863a175a92ccbddabb21fc2f7d2df72bfeee3e8403349d1ebb44adf18f9b94b9b7bfbc31b5c4e022602931a6a82d374ed504f581cc5360a0fa4a00e0180096fd42c066b0a97da55abbd1fe941f97f635007042ec518773d5e3a621943a3cf837ec71083275d9d02d2", 0x76, r0}, 0x38)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c0000002400010029bd8700fddbdf25040000000600030000000000"], 0x1c}}, 0x0)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000280)=0xa79, 0x4)
r3 = socket(0x11, 0x3, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000180)=0x82a, 0x3d)
setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f00000000c0), 0x4)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000002900)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x14, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x20000804}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r7=>0x0})
r8 = socket$netlink(0x10, 0x3, 0x6)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000001400)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="18007e2cfb7270e222af55b9000000000000", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
sendmsg$nl_route_sched(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@gettclass={0x24, 0x25, 0x1}, 0x24}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000240)={'macvlan0\x00', <r10=>0x0})
r11 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r11, &(0x7f0000000dc0)="d0b4163e964573", 0x7, 0x48001, &(0x7f00000001c0)={0x11, 0x9, r10, 0x1, 0x70, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x42}}, 0x14)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000002c0)={&(0x7f0000000180)={0x64, r6, 0x200, 0x70bd26, 0x25dfdbff, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x16, 0x39, 0x5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_BONDING_ENABLED={0x5, 0x2d, 0x1}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x3}, @BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x4}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x2}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0x1dc}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r10}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5, 0x38, 0x1}]}, 0x64}, 0x1, 0x0, 0x0, 0x4004840}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0xfffffffffffffe11, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d000100"], 0xcc}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x10, 0xc, &(0x7f00000005c0)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x8a}}]}, &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r12, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
r13 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r13, &(0x7f0000000140)={'full'}, 0xfffffdef)

1.996995637s ago: executing program 3 (id=978):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0x6, @ipv4={'\x00', '\xff\xff', @remote}, 0x9}, 0x1c)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000001c0)=0x3b)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYRESDEC=r1, @ANYRES8=r1], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000004700)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000040)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r5, @ANYBLOB="4400028040000100240001006d6f646500000000000000000000000000000000000000000000000000000000050003000800000010"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6gre0\x00', <r6=>0x0, 0x29, 0x96, 0x5, 0x1, 0x48, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8, 0x40, 0x8, 0x26c}})
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'virt_wifi0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ES={0x5, 0xa, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x44}}, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000300)={<r9=>0x0, @dev, @initdev}, &(0x7f0000000340)=0xc)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000400)={'syztnl0\x00', &(0x7f0000000380)={'syztnl0\x00', <r10=>0x0, 0x40, 0x40, 0x80, 0x1, {{0x14, 0x4, 0x1, 0x7, 0x50, 0x65, 0x0, 0x6, 0x29, 0x0, @multicast2, @loopback, {[@timestamp={0x44, 0x18, 0x3e, 0x0, 0x4, [0x9, 0x5a, 0x0, 0x8, 0x1000]}, @end, @ssrr={0x89, 0x23, 0xa4, [@local, @broadcast, @local, @rand_addr=0x64010101, @broadcast, @empty, @rand_addr=0x64010102, @empty]}]}}}}})
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000440)={@initdev, <r11=>0x0}, &(0x7f0000000480)=0x14)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000005c0)={&(0x7f0000000040), 0xc, &(0x7f0000000580)={&(0x7f0000000b00)={0x2c8, r4, 0x100, 0x70bd25, 0x25dfdbfd, {}, [{{0x8}, {0x1d8, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r9}, {0x80, 0x2, 0x0, 0x1, [{0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x1e7, 0x2, 0x81, 0x7}, {0x7, 0x6, 0x4c, 0x3}]}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r11}}}]}}]}, 0x2c8}, 0x1, 0x0, 0x0, 0x4c085}, 0x20000000)
r12 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r12, &(0x7f00000000c0), 0x10)
r13 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r13, &(0x7f00000001c0)={0x2, 0x0, @local, 0x18}, 0x10)
bind$inet(r1, 0x0, 0xfffffffffffffe55)
close(r13)
r14 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1a, 0xf, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYRES16=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r14}, 0xc)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x8, 0x3, 0x448, 0x160, 0xa, 0x148, 0x0, 0x10, 0x3b0, 0x2a8, 0x2a8, 0x3b0, 0x2a8, 0x3, 0x0, {[{{@ip={@local, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x120, 0x160, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'macvlan0\x00', {0x0, 0x0, 0x9, 0x1, 0xfffffffc, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00', 0x0}, {'pim6reg0\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "335d2565d31034fbd4bf655e219c13faa9dfed5859a72255f7c2027c2073"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4a8)

1.711982311s ago: executing program 1 (id=980):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001900010000000000fedbdf250a00003f0001c8"], 0x4e}}, 0x0)

1.524844953s ago: executing program 3 (id=982):
socket$nl_crypto(0x10, 0x3, 0x15) (async)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000200025021080079f0000080800"/28], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x28)
r0 = socket$can_bcm(0x1d, 0x2, 0x2) (async)
unshare(0x8040480) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000900)=ANY=[@ANYBLOB="98000000", @ANYRES16=r2, @ANYBLOB="01000000000000000000390000000800030081af0a89c847952f5b11ee08fe2175a726a61ce59b3cf89c84e86e8f961e126ab6b357ce28345048115095631ca1868ec6f399285cf1fa4e1688dabef6884702f514f336ac292a0ce2197c16e7d50ad0f2b5c50bb91e281b5bd979c241e62dc3b6d99ae352b1f8f7a3654080731525278005ba35ee05e16b0d", @ANYRES32=r3, @ANYBLOB="7c005a807400008005000700020000001e0001000a300c9f4816161b091b030430300109093006220b5112093003000007000100182418", @ANYRESDEC=r0, @ANYRESOCT=r2, @ANYRES64=r1, @ANYBLOB="a0c9fa2c0132939c6655d6", @ANYRESHEX=r2], 0x98}, 0x1, 0x0, 0x0, 0x40080}, 0x20048840) (async)
unshare(0x42000000) (async)
mmap(&(0x7f0000164000/0x2000)=nil, 0x2000, 0x1000005, 0x30, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x769f00b363895638, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
socket$l2tp(0x2, 0x2, 0x73)
unshare(0x62040200)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000010000000000000a20000000000a0300000000000000000007001bbd56eb7a55cab67a30000000007c000000090a0104001c0000000000000700000008000a40000000000900020073797a30000000835f00010073797a3000000000080005400400000d38001280140001800c000100636f756e7465720004000280204001800e000100636f6e6e6c696d69740000000c000280080001400000000808000340000001"], 0xc4}, 0x1, 0x0, 0x0, 0x20044814}, 0x20050800)
r5 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10) (async)
bind$inet(r5, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000025a51b8b288366f00"/24], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='contention_end\x00', r6}, 0x18)
r7 = socket$netlink(0x10, 0x3, 0x10)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-blowfish-asm\x00'}, 0x58) (async)
r8 = accept$alg(0xffffffffffffffff, 0x0, 0x0) (async)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000080)="ad060000", 0x4)
sendmsg$alg(r8, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000640)="fe1c438c64a534d2915080a450b2ede7319cdb2549416665", 0x18}], 0x1, &(0x7f0000000a40)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x880}, 0x2000)
recvmmsg(r1, &(0x7f000001b900)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000280)=""/1, 0x1}, {&(0x7f00000002c0)=""/194, 0xc2}], 0x2}, 0x6}], 0x1, 0x0, 0x0)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$XDP_TX_RING(r5, 0x11b, 0x3, &(0x7f0000000140)=0x110204, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r7, 0x10e, 0x1, &(0x7f0000000040)=0x16, 0x4)

1.471973081s ago: executing program 1 (id=983):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000180), 0xffffffffffffffff)
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r2, &(0x7f0000000100)={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_GET(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x101}, 0x14}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000005240), 0x4000095, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x45, &(0x7f0000000140)={0x0, 0x0}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x2b, &(0x7f0000000000)=0x4, 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000080)={r5, 0x1}, 0x8)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
socket$pppl2tp(0x18, 0x1, 0x1)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r7, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wpan4\x00'})
sendmsg$NL802154_CMD_NEW_SEC_KEY(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000200180000000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x8000, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x9, 0x8, 0x4, 0x4009, 0xa, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value=0x3f000000}, 0x48)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r9=>0xffffffffffffffff})
setsockopt$TIPC_DEST_DROPPABLE(r9, 0x10f, 0x81, &(0x7f0000000080), 0x4)
sendmmsg$inet(r9, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)

1.36047165s ago: executing program 2 (id=984):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="340000001400010000000000000000000a00a100", @ANYRES32=r4, @ANYBLOB="14000100060000000000000000000000000000010800080002040000"], 0x34}}, 0x0)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd1, &(0x7f0000000000)=0x7, 0x4)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x3c1, 0x3, 0x3a8, 0x0, 0xc8, 0x8, 0x180, 0x5803, 0x2d8, 0x2e8, 0x2e8, 0x2d8, 0x2e8, 0x3, 0x0, {[{{@ipv6={@empty, @private1, [], [], 'pim6reg0\x00', 'wlan0\x00'}, 0x0, 0x118, 0x180, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@pkttype={{0x28}, {0x7, 0xddad}}, @common=@dst={{0x48}, {0x4}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x138, 0x158, 0x0, {}, [@common=@unspec=@rateest={{0x68}, {'dvmrp0\x00', 'batadv_slave_1\x00', 0x12, 0x3}}, @inet=@rpfilter={{0x28}}]}, @unspec=@NOTRACK={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x408)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x14, 0x0, 0x4, 0x70bd29}, 0x14}}, 0x40000)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r5)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r5)
sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000000000000eeff120000000a0004007778616e3300000008001500", @ANYRES32=0x0, @ANYBLOB="080001"], 0x30}}, 0x0)
r7 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="01000000000000000000010000000800010040"], 0x6c}}, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, 0x0}, 0x1f00)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000b80)=@delchain={0xe4, 0x65, 0x810, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x5, 0x2}, {0x0, 0x9}, {0x9, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0xfffffffe}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa}, {0xa4, 0x2, [@TCA_ROUTE4_TO={0x8, 0x2, 0xffffffff}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_ACT={0x90, 0x6, [@m_skbedit={0x8c, 0xd, 0x0, 0x0, {{0xc}, {0x4}, {0x5d, 0x6, "a707b36aaa9f7af7d3b4438eb81ccd8c40a11da73586f8e91ba98cf4b06aea06a75b1413c78cca3c419f9095aafa256bce3950c25943fca70489b3f03d378675d9c2515fcb79f523793a6f8477ff7f8e1546cfdfba51e1529b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0xe4}, 0x1, 0x0, 0x0, 0x600400c5}, 0x40001)
r8 = socket(0x10, 0x803, 0x0)
sendto(r8, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r8, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4086, 0xff6}, {&(0x7f0000000900)=""/111, 0x6f}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000880)=""/77, 0x4d}, {&(0x7f0000000a00)=""/154, 0x9a}, {&(0x7f00000005c0)=""/31, 0x1f}], 0x8, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x0, &(0x7f0000003700)={0x77359400})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000540))
r9 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$inet(0x2, 0x3, 0x84)
r10 = socket(0x28, 0x5, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_DEBUG(r10, 0x28, 0x6, 0xc, 0x4)
setsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f0000000640)={{{@in=@local, @in=@local, 0x100, 0x4000, 0x2, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x2, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x4, 0x1, 0xfff}, {0x0, 0x40000000, 0x0, 0xfd}, 0x0, 0x0, 0x1, 0x0, 0x1}, {{@in=@remote, 0x0, 0x32}, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3507, 0x4, 0x0, 0x0, 0x40000000}}, 0xe8)
sendmmsg$inet6(r9, &(0x7f0000000300)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @dev}, 0x1c, 0x0}}], 0x1, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000580))

1.144658114s ago: executing program 2 (id=986):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendto$packet(r1, 0x0, 0x0, 0x20008801, 0x0, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)={0x28, 0x1410, 0x1, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x4}]}, 0x28}, 0x1, 0x6040000, 0x0, 0x24044836}, 0xc094)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

996.098482ms ago: executing program 0 (id=987):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='contention_end\x00', r1}, 0x10)
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="20000000150a050000000000050000090900020073797a300000000000"], 0x20}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)

966.962801ms ago: executing program 2 (id=988):
sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="300000000000000084000000010000000000000004"], 0x30}], 0x1, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r1, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r2, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

924.958815ms ago: executing program 1 (id=989):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000340), &(0x7f00000003c0)=0x2)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x2ddfdbff, 0x2ffffffff}, 0xc)
r3 = socket$netlink(0x10, 0x3, 0x10)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x806000)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x4030582a, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r4}, 0x10)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x14, 0x0, 0x4, 0x70bd06}, 0x14}}, 0x850)
syz_genetlink_get_family_id$nfc(0x0, r5)
r6 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80800)
sendfile(r6, 0xffffffffffffffff, 0x0, 0x40000002)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
close(r7)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f00000001c0)=ANY=[@ANYRES32=r7, @ANYRES32, @ANYRES64=r7], 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x6, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="8500000008000000010000006f000000186700000d000000000000000600000018490000fcffffff0000000000000000184a0000f9ffffff0000000000000000d5244b89fcffffff850000004c00000018000000070000000002000000000000"], &(0x7f0000000180)='GPL\x00', 0x8, 0x0, 0x0, 0x40f00, 0x71, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000380)={0xa, 0x2}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x1, 0x3}, 0x10, 0x0, 0x0, 0x4, &(0x7f0000000440)=[0xffffffffffffffff, r7], &(0x7f0000000480)=[{0x2, 0x5, 0x3, 0x2}, {0x2, 0x2, 0x7, 0xb}, {0x5, 0x3, 0x6, 0x5}, {0x3, 0x5, 0x5, 0xa}], 0x10, 0x0, @void, @value}, 0x94)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab0700"], 0xfe33)
socket$inet6(0x10, 0x3, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000002c00010026bd7000fedbdf250400"], 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e1406ca000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

777.145394ms ago: executing program 2 (id=990):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, 0x0, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r2, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8)
sendto$inet6(r2, &(0x7f00000004c0)='W', 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback, 0x8}, 0x1c)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x3c, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRESHEX=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r3, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x1c)
socket$unix(0x1, 0x2, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_add_memb(r4, 0x107, 0x1, &(0x7f0000000000)={r6, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)
close(r4)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000001100)={@local, @mcast2, @ipv4={'\x00', '\xff\xff', @loopback}, 0x4, 0x1, 0x6, 0x400, 0x7, 0x700080})

776.844391ms ago: executing program 0 (id=991):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32], 0x58}}, 0x0)

620.880755ms ago: executing program 1 (id=992):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0x6, @ipv4={'\x00', '\xff\xff', @remote}, 0x9}, 0x1c)
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f00000001c0)=0x3b)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="1b00000000000000000000000080", @ANYRESDEC=r1, @ANYRES8=r1], 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000004700)={'team0\x00', <r5=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f0000000040)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050427bd7000fedbdf250100000008000100", @ANYRES32=r5, @ANYBLOB="4400028040000100240001006d6f646500000000000000000000000000000000000000000000000000000000050003000800000010"], 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r2, 0x89f0, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000240)={'ip6gre0\x00', <r6=>0x0, 0x29, 0x96, 0x5, 0x1, 0x48, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, @private0={0xfc, 0x0, '\x00', 0x1}, 0x8, 0x40, 0x8, 0x26c}})
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'virt_wifi0\x00', <r8=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ES={0x5, 0xa, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x44}}, 0x0)
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000300)={<r9=>0x0, @dev, @initdev}, &(0x7f0000000340)=0xc)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000400)={'syztnl0\x00', &(0x7f0000000380)={'syztnl0\x00', <r10=>0x0, 0x40, 0x40, 0x80, 0x1, {{0x14, 0x4, 0x1, 0x7, 0x50, 0x65, 0x0, 0x6, 0x29, 0x0, @multicast2, @loopback, {[@timestamp={0x44, 0x18, 0x3e, 0x0, 0x4, [0x9, 0x5a, 0x0, 0x8, 0x1000]}, @end, @ssrr={0x89, 0x23, 0xa4, [@local, @broadcast, @local, @rand_addr=0x64010101, @broadcast, @empty, @rand_addr=0x64010102, @empty]}]}}}}})
getsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000440)={@initdev, <r11=>0x0}, &(0x7f0000000480)=0x14)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000005c0)={&(0x7f0000000040), 0xc, &(0x7f0000000580)={&(0x7f0000000b00)={0x2c8, r4, 0x100, 0x70bd25, 0x25dfdbfd, {}, [{{0x8}, {0x1d8, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x6}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r6}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r8}}, {0x8}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24}, {0x5}, {0x8, 0x4, 0x3ff}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xffff}}}, {0x3c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x9, 0x4, 'hash\x00'}}}]}}, {{0x8, 0x1, r9}, {0x80, 0x2, 0x0, 0x1, [{0x44, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x14, 0x4, [{0x1e7, 0x2, 0x81, 0x7}, {0x7, 0x6, 0x4c, 0x3}]}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x5}}}]}}, {{0x8, 0x1, r10}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r11}}}]}}]}, 0x2c8}, 0x1, 0x0, 0x0, 0x4c085}, 0x20000000)
r12 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r12, &(0x7f00000000c0), 0x10)
r13 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r13, &(0x7f00000001c0)={0x2, 0x0, @local, 0x18}, 0x10)
bind$inet(r1, 0x0, 0xfffffffffffffe55)
close(r13)
r14 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1a, 0xf, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYRES16=r1], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r14}, 0xc)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x8, 0x3, 0x448, 0x160, 0xa, 0x148, 0x0, 0x10, 0x3b0, 0x2a8, 0x2a8, 0x3b0, 0x2a8, 0x3, 0x0, {[{{@ip={@local, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0x120, 0x160, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'macvlan0\x00', {0x0, 0x0, 0x9, 0x1, 0xfffffffc, 0xffffffff, 0x7}}}, @common=@inet=@hashlimit1={{0x58, 'hashlimit\x00', 0x0}, {'pim6reg0\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "335d2565d31034fbd4bf655e219c13faa9dfed5859a72255f7c2027c2073"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x1f0, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'geneve0\x00'}}, @inet=@rpfilter={{0x28}}]}, @common=@SET={0x60}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x4a8)

618.346463ms ago: executing program 0 (id=993):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000440)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000340)=ANY=[@ANYBLOB="580000000200030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800c0001006d6163766c616e0020000280080001001000000008000300000000000a000400aaaaaaaaaaaa000008000500", @ANYRES32=r2], 0x58}}, 0x0)

419.736797ms ago: executing program 0 (id=994):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_REMOVE(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000200)={0x1060, 0x1, 0x5, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}, [{{0x254, 0x1, {{0x0, 0x5}, 0x24, 0x5, 0x4, 0x48, 0xd, 'syz1\x00', "306f0313d42304869c59a9a3fe5d757b10af05aaf6f876a6aaeabb5bb306e623", "e0a205a0fe232e7125946441191ca633f15db8287c92b8da46aa7cd49975ba8e", [{0x81, 0xfff, {0x3, 0x30a7}}, {0xfffb, 0x5, {0x2}}, {0x6, 0x2, {0x2, 0x4a2548}}, {0x5, 0xa, {0x2, 0x9e}}, {0x1, 0x3, {0x3, 0x6}}, {0xffff, 0x401, {0x0, 0x8}}, {0x2, 0x7, {0x0, 0xd656}}, {0x400, 0x7, {0x2, 0x8}}, {0x4eb, 0xb, {0x3, 0x4}}, {0x6c8a, 0x3, {0x1}}, {0x800, 0x0, {0x2, 0xfffffff7}}, {0x3, 0xfffb, {0x1, 0x9}}, {0x1000, 0x9, {0x1}}, {0x5, 0x8001, {0x0, 0x3}}, {0x8, 0x0, {0x2, 0x7d3383a3}}, {0x800, 0xd, {0x2, 0x3}}, {0xfff7, 0x2, {0x1, 0x8}}, {0x6, 0x1, {0x0, 0x8}}, {0x3, 0xa, {0x3, 0x8}}, {0x7, 0x7272, {0x3, 0x2a830435}}, {0x2, 0x8, {0x3, 0x7}}, {0xffff, 0xffff, {0x3, 0x6}}, {0x9, 0x4, {0x2, 0x9}}, {0x7, 0x95, {0x0, 0x1}}, {0x5, 0x9}, {0x8000, 0x7, {0x2, 0xe}}, {0x4, 0x4, {0x3, 0x401}}, {0x1, 0x6, {0x1, 0xfffffb3e}}, {0x0, 0xfff, {0x0, 0x7fffffff}}, {0x1000, 0x1000, {0x2, 0x6}}, {0x1ff, 0x7, {0x1, 0x2}}, {0xe9, 0x2, {0x0, 0x73a3}}, {0x6, 0x8, {0x1, 0x3}}, {0x7, 0x2, {0xa8192f7120beceeb, 0x3}}, {0x9, 0x3, {0x0, 0x6}}, {0x7, 0x7, {0x3, 0x8}}, {0x2, 0x6, {0x3, 0x2}}, {0x1000, 0x6, {0x2, 0x7fff}}, {0xc, 0x3, {0x0, 0x4}}, {0x0, 0x7, {0x2}}]}}}, {{0x254, 0x1, {{0x3, 0x101}, 0x29, 0x80, 0x0, 0xc971, 0x7, 'syz0\x00', "4c6ac387abae00218af37a1d92b19936760a5e4a6478c38c093f3179bf11faf5", "980ea93a1cd5bc42668fafe6eba35cf718852c56a3eb769624015c35e5342bfb", [{0x1, 0x8, {0x2, 0x3}}, {0x7, 0x17, {0x1, 0xefce}}, {0x3, 0x2, {0x2, 0x2}}, {0x419, 0x7, {0x0, 0x6}}, {0x1, 0x0, {0x0, 0x2}}, {0x102, 0x3, {0x2, 0xb47a}}, {0x2, 0x3, {0x3, 0x5}}, {0x9, 0x1, {0x0, 0x7}}, {0x0, 0x9, {0x2, 0x6}}, {0x3, 0x81, {0x2, 0x4}}, {0x40, 0x9, {0x2, 0x2}}, {0x1, 0x89, {0x1, 0x7fff}}, {0x2, 0x401, {0x1, 0x8001}}, {0x4000, 0x6, {0x2, 0x5}}, {0xffa3, 0x5, {0x2, 0x5}}, {0x8c6f, 0x1, {0x2, 0x4}}, {0x1}, {0x1, 0x7, {0x2, 0x43}}, {0x0, 0xcd, {0x1, 0x75}}, {0xb10, 0x7ff, {0x1, 0xff}}, {0x100, 0x8001, {0x1, 0xffff}}, {0xffff, 0x5dc1, {0x3, 0x6}}, {0x0, 0x3, {0x0, 0xe2aa}}, {0x6, 0x0, {0x3, 0x1e}}, {0x4, 0x2, {0x2, 0x29}}, {0x471, 0xf088, {0x2, 0x743}}, {0x4, 0x7, {0x0, 0x8}}, {0x1, 0x7ff, {0x2, 0x83d}}, {0x10, 0x8000, {0x1, 0x3}}, {0x2, 0x0, {0x0, 0x8}}, {0x5, 0x8, {0x0, 0x311}}, {0x7, 0x1, {0x2, 0x9}}, {0x7, 0xd, {0x1, 0x81}}, {0x8, 0x6, {0x3, 0x21f986b}}, {0x10, 0x8, {0x1, 0x9}}, {0xffff}, {0x0, 0x4711, {0x0, 0x2}}, {0x1, 0x9de, {0x2, 0x1}}, {0x19f1, 0x7fff, {0x1, 0xffff}}, {0x1ff, 0x7, {0x3, 0xb}}]}}}, {{0x254, 0x1, {{0x2, 0x9}, 0x3, 0x5, 0x10, 0x800, 0x1, 'syz0\x00', "2ca56f9c3e3fc5709066bc01c20022c012c7827e9f2beacbf9e35a9cd3407e0b", "74a42928dbec1cefc2b6dd5309914811aa943a683b60f178688bf0d67cfb26f6", [{0x7, 0x3, {0x1}}, {0xe2c, 0x9, {0x1, 0x8}}, {0x800, 0xb, {0x3, 0x7}}, {0x5, 0x7000, {0x1, 0x7}}, {0x7f, 0x3cbc, {0x2, 0x401}}, {0x3, 0xb69, {0x0, 0x7}}, {0x6, 0xbf, {0x0, 0xffff6e8b}}, {0xfff7, 0xe657, {0x3, 0x9}}, {0x2, 0x4, {0x0, 0x6}}, {0x2, 0xf609}, {0x9946, 0x1, {0x3, 0x5}}, {0x9, 0x4, {0x3, 0xf9c}}, {0x33e0, 0xa, {0x2, 0x3}}, {0x2, 0x7ff, {0x1, 0x100000}}, {0x4, 0x2, {0x2, 0xfff}}, {0x0, 0x30ee, {0x1, 0x8}}, {0x8001, 0x1, {0x2, 0x401}}, {0x9, 0xe3, {0x2, 0x1de}}, {0xae, 0x8, {0x2, 0x8}}, {0x45d, 0x2, {0x0, 0x9e82}}, {0x2, 0x7, {0x3, 0x1000}}, {0x2, 0x2e, {0x2, 0x4}}, {0x1, 0x3, {0x2, 0x3}}, {0xfffd, 0x3, {0x1, 0x7fff}}, {0xd692, 0x6, {0x0, 0x2}}, {0xf, 0x6, {0x0, 0x6}}, {0x2, 0xe, {0x1, 0x8000000}}, {0x3, 0xd99a, {0xa75f1f26512cbbac, 0x3}}, {0xea78, 0x1, {0x2, 0x3}}, {0xe4, 0x4, {0x1, 0x6}}, {0x9, 0x1, {0x2}}, {0xffff, 0x0, {0x2, 0xaa7b}}, {0x7, 0x9, {0x2, 0x2}}, {0x22, 0x7, {0x2, 0xfffffff5}}, {0x9, 0xfff, {0x1, 0x1}}, {0xa218, 0x2, {0x0, 0x1ffe0}}, {0x81, 0x7fff, {0x2, 0x6}}, {0x3, 0xb, {0x2, 0x9}}, {0xf2, 0xff, {0x3, 0x9}}, {0x7fff, 0x2, {0x0, 0x6}}]}}}, {{0x254, 0x1, {{0x1, 0x12a}, 0x76, 0x5, 0xfffa, 0x9, 0x11, 'syz1\x00', "47c5100383bfb4dd51a2a5de73f702eb2b838e8290411c4045595810c6ed4f95", "97969faf65a5169acd5bdf46529d8f29db562a605289068b006260a022063d34", [{0x0, 0x2, {0x3, 0x7}}, {0x1, 0x2, {0x0, 0x1}}, {0x1, 0x200, {0x2, 0x2}}, {0x6, 0x5, {0x2, 0x7}}, {0x1, 0x7, {0x1, 0xff}}, {0x6, 0x0, {0x2, 0x6}}, {0xff31, 0x176, {0x2, 0x6000}}, {0x4f, 0x1000, {0x7babe9596ed5e3d0, 0x4}}, {0x6, 0x5, {0x2, 0x7da4b35}}, {0x7f, 0x4, {0x2, 0x7}}, {0x6, 0x4, {0x0, 0x5}}, {0x5, 0x2, {0x2, 0x1}}, {0x3, 0x5, {0x0, 0x2}}, {0x9, 0x2, {0x1, 0x2ca0}}, {0x9, 0x446, {0x3, 0x1}}, {0x3eb3, 0x100, {0x0, 0x36e4}}, {0x3, 0x8, {0x0, 0x4}}, {0x9, 0x8, {0x2, 0x5}}, {0xba, 0x3, {0x2, 0x7b7}}, {0x2, 0x1ff, {0x2, 0x6}}, {0xca4a, 0x2, {0x2, 0x1}}, {0xcdb, 0x1, {0x2, 0x7}}, {0x0, 0x6d, {0x0, 0x2}}, {0x1ff, 0x7, {0x0, 0xc000000}}, {0x40, 0x4, {0x2, 0xf65}}, {0xda, 0x8, {0x1, 0x8}}, {0x6, 0x2, {0x3, 0xb}}, {0x0, 0x8, {0x2, 0x4}}, {0x2, 0x2, {0x1, 0x5}}, {0x5, 0x33e6, {0x3, 0xfff}}, {0x8, 0x6, {0x0, 0x7}}, {0x206, 0x9, {0x1, 0x8}}, {0x194e, 0xf, {0x1, 0xf9}}, {0x5, 0x5, {0x1, 0xfffff000}}, {0x101, 0x3, {0x1, 0x4}}, {0x2, 0x3, {0x3, 0x1}}, {0xfffa, 0x9, {0x0, 0xab}}, {0x5, 0xfcf, {0x1, 0x2}}, {0x380, 0x4, {0x3, 0xa}}, {0xff01, 0x967, {0x1}}]}}}, {{0x254, 0x1, {{0x1, 0xd}, 0xd, 0xff, 0xf05b, 0x6, 0xf, 'syz1\x00', "3186e7e82b7e59e88e083aea90c712b0e395690d390490af52c5fb66148193f8", "72ff8942df52a8c178053e7e0e4d5f613227330b535965ee85e8e3f3e4e804b4", [{0x9, 0x9, {0x2, 0x3d5}}, {0x773, 0x4, {0x0, 0xfffffffa}}, {0x7b, 0x400, {0x0, 0x8}}, {0xf800, 0x8, {0x2, 0xffffffff}}, {0x833, 0x1, {0x3, 0xfffffffc}}, {0xb085, 0x80, {0x2, 0x51ba}}, {0x401, 0x5, {0x2, 0x6}}, {0x2, 0x1, {0x1, 0xffffffff}}, {0x6, 0x5, {0x0, 0x8000}}, {0x0, 0xb, {0x1, 0xfffffffb}}, {0xd, 0x7ff, {0x3, 0x1}}, {0x8001, 0x0, {0x0, 0xa}}, {0x7, 0x8, {0x0, 0x7}}, {0x3, 0x0, {0x3, 0x8}}, {0xb, 0xf5f5, {0x1, 0x5}}, {0x9e2, 0x93f8, {0x3, 0x2}}, {0x1, 0x5}, {0x2, 0x1, {0x0, 0xd}}, {0x6, 0xe, {0x2, 0x7fffffff}}, {0xfff8, 0xf3, {0x1, 0x3}}, {0xda9, 0x0, {0x2, 0x81}}, {0x4, 0x5, {0x2, 0xd4e2}}, {0x8, 0x47, {0x1, 0xc3c8}}, {0x8, 0xff, {0x3, 0xff}}, {0x8, 0x9, {0x0, 0x1}}, {0x2, 0x0, {0x2, 0x8}}, {0x200, 0x2, {0x1, 0x1}}, {0x6, 0x7, {0x2, 0x80}}, {0xc04, 0x4, {0x2, 0x9}}, {0x3, 0x9, {0x3, 0x3}}, {0x6, 0x7, {0x0, 0x5}}, {0x101, 0x101, {0x1, 0x9}}, {0x6, 0x4, {0x0, 0x8}}, {0x7, 0xf41, {0x2, 0x2}}, {0x3, 0xf598, {0x3, 0x7fff}}, {0x40, 0xd6, {0x0, 0xffff}}, {0x8000, 0x25e1, {0x2, 0x7}}, {0x9, 0x0, {0x1, 0x1}}, {0x1, 0x0, {0x0, 0x1000}}, {0x2, 0x9, {0x2, 0x4}}]}}}, {{0x254, 0x1, {{0x3, 0x4}, 0xe, 0x93, 0x8, 0xac2, 0x1b, 'syz1\x00', "995309b68a7aa449b3724d378cbe7ec020efc0ce2ee6b4bf07d61902ac14c513", "4fd429afb439d642e5ec72bc7dc69d41ff8179a7a3ba83559fe59fb804c71fcc", [{0x8, 0x9, {0x2, 0x4}}, {0xf, 0x2, {0x2, 0x8}}, {0x9, 0x0, {0x3}}, {0x8, 0x2, {0x0, 0x400}}, {0x8, 0x1, {0x2, 0x9}}, {0x200, 0x400, {0x0, 0xf}}, {0xd60, 0x3, {0x0, 0x8001}}, {0x80, 0xa323, {0x3, 0x1}}, {0x5, 0x400, {0x0, 0x2}}, {0x9, 0x6, {0x0, 0x7ff}}, {0x5, 0x3, {0x3, 0x400}}, {0x1, 0x800, {0x3, 0x6}}, {0x5, 0x1, {0x0, 0x1}}, {0x5, 0xd76f, {0x2, 0x6d0e}}, {0xe47, 0x0, {0x1}}, {0x40, 0x4, {0x3, 0x7fffffff}}, {0x6, 0x7d, {0x1}}, {0x5, 0x7, {0x3, 0x4}}, {0x5, 0x6, {0x6f917bd75f3296b2, 0x1cd4}}, {0x1, 0x7, {0x3, 0x8}}, {0x2, 0x3ff, {0x3, 0x7fffffff}}, {0x8, 0x5, {0x1}}, {0x1ff, 0x0, {0x2}}, {0x4, 0xfffe, {0x3, 0xfffffff8}}, {0x9, 0x6, {0x1, 0x1ff}}, {0xffff, 0x6478, {0x0, 0x4}}, {0xfde4, 0x1, {0x3, 0x40}}, {0x3, 0xa, {0x0, 0x1000}}, {0x9, 0x5, {0x1, 0x7}}, {0x6, 0x4, {0x2, 0x5}}, {0x2, 0x4, {0x2, 0x6}}, {0x200, 0x1da, {0x1, 0x4}}, {0x7, 0x1, {0x1, 0x80000000}}, {0x800, 0x6, {0x0, 0x8}}, {0x1200, 0x7, {0x0, 0x800}}, {0xae, 0x7, {0x0, 0xe}}, {0x6, 0x100, {0x0, 0x7}}, {0x9, 0xfffb, {0x0, 0x1}}, {0x2, 0x50, {0x0, 0x7f}}, {0x7fff, 0x2, {0x0, 0x64b1}}]}}}, {{0x254, 0x1, {{0x0, 0x1}, 0x6, 0x31, 0xb5, 0x5, 0x3, 'syz1\x00', "587abf8cbb489712bea3288308b1be5c4e4e5802b40f7f591473ee6d7ade03c6", "77ff18df91ce95cb08fc902aea09320877308335bd86658fefafec1b3109edd2", [{0xf0, 0x101, {0x2, 0x2}}, {0x1, 0x5, {0x2, 0x6}}, {0x3, 0x4, {0x3, 0x7}}, {0xd1, 0x1, {0x3, 0x80}}, {0x6ead, 0x7, {0x0, 0x6}}, {0x400, 0xec7, {0x2, 0x8}}, {0x773, 0x40, {0x3, 0x7}}, {0x81, 0x3, {0x0, 0x9}}, {0xfff, 0x1, {0x0, 0x8}}, {0x4, 0x5, {0x2, 0x7}}, {0x2, 0x6, {0x2, 0xb}}, {0x0, 0xfffc, {0x1, 0x5}}, {0x6, 0x8, {0x0, 0x389945fb}}, {0x100, 0x8, {0x3, 0x1}}, {0xd, 0x9, {0x4, 0xfff}}, {0xba00, 0x8, {0x1, 0x1ff}}, {0x1000, 0x1, {0x0, 0x401}}, {0x800, 0x2, {0x3, 0xfffffe67}}, {0x1, 0x30ab, {0x3, 0x10}}, {0x6, 0x401, {0x0, 0xe}}, {0x8000, 0x401, {0x2, 0x7}}, {0x2, 0x6, {0x3, 0xb6c4}}, {0x1, 0x18, {0x3, 0xef}}, {0x4, 0x2, {0x0, 0x6}}, {0x4, 0xfffe, {0x0, 0x10001}}, {0x3, 0x4, {0x0, 0x4}}, {0xff01, 0x2, {0x2}}, {0xfe2, 0x1, {0x2, 0xe}}, {0x4, 0x4, {0x1, 0x10000}}, {0x1000, 0x8, {0x3, 0x4e}}, {0x1000, 0x8001, {0x3, 0x8}}, {0x100, 0x0, {0x0, 0x9}}, {0x0, 0x9, {0x0, 0x200}}, {0x1000, 0x2, {0x1}}, {0xfff8, 0x7, {0x1, 0x4}}, {0x2, 0x4, {0x3, 0x9}}, {0x2, 0x81, {0x0, 0x6}}, {0x1ff, 0x2, {0x3, 0x9}}, {0x80, 0x3, {0x3, 0x8}}, {0x19, 0x0, {0x3, 0x4}}]}}}]}, 0x1060}, 0x1, 0x0, 0x0, 0x20000000}, 0x4000884)
socket$packet(0x11, 0x2, 0x300)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000))
socket$packet(0x11, 0x2, 0x300)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r3, 0x0, 0x40000003)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0xb, 0x0, 0x0, 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$TEAM_CMD_OPTIONS_GET(r0, &(0x7f00000030c0)={0x0, 0x0, &(0x7f0000003080)={0x0}, 0x1, 0x0, 0x0, 0xa045}, 0x8084)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x4, 0x4, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0), 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
socket$kcm(0x11, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000003100)=ANY=[], 0xd)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r7}, 0x10)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8b05, &(0x7f00000004c0)={'wlan0\x00'})
ioctl$sock_SIOCBRDELBR(r5, 0x89a2, &(0x7f0000000200)='bridge0\x00')
ioctl$sock_SIOCBRDELBR(r4, 0x89a3, &(0x7f0000000200)='bridge0\x00')
bpf$MAP_CREATE(0x100000000000000, 0x0, 0x0)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
socket$kcm(0x10, 0x2, 0x0)

242.254529ms ago: executing program 1 (id=995):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800c3dd35a6c220ffe00000000000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x18, &(0x7f0000000200), 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x6d)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x1030000, 0x1000, 0x5, 0x4}, 0x20)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
unshare(0x6a040000)
unshare(0x20000400)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x5, &(0x7f0000000000)=@raw=[@generic={0x2, 0x2, 0x4, 0x9, 0x2a6}, @map_idx_val={0x18, 0x4, 0x6, 0x0, 0x1, 0x0, 0x0, 0x0, 0x10000}, @initr0={0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x2}], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$nfc_raw(0x27, 0x0, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000080000007f09000008000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0xde, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={r2, 0x58, &(0x7f00000003c0)}, 0x10)
r3 = socket(0x10, 0x80003, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0xf, "0000000000000000000100000e00"}}}]}, 0x48}}, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[], 0x78}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, 0x0, 0x0)
r9 = syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r7, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=ANY=[@ANYRES16=r9, @ANYBLOB="f3f40000000000000000030100007000018008000300000000000d0001007564703a73797bb100000000440004c3ab451590f10bc462d2732ff43d5d81a8412017eac0dd61cfdf3963cdf25d323b456b1a86ff48f9a0d06b27"], 0x84}}, 0x0)
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
setsockopt$X25_QBITINCL(r10, 0x106, 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000020000000900010073797a310000000060000000160a03000000000000000000020000000900010073797a31000000000900020073797a31000000002c000380080002400000000008000140000000001800038014000100776c616e3100000000000000000000000800074000000001"], 0xa8}}, 0x0)

189.707194ms ago: executing program 0 (id=996):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000180)=0x7ff, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x5, 0x0, 0xffffffff}, 0x1c)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vcan0\x00', <r2=>0x0})
sendmsg$can_raw(r1, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r2}, 0x10, &(0x7f0000000480)={&(0x7f0000000140)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}, 0x1, 0x1f4}, 0x0)

0s ago: executing program 0 (id=997):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
syz_emit_ethernet(0x4a, &(0x7f0000000280)=ANY=[@ANYRES32=0x41424344, @ANYBLOB="000001cfcf7451da"], 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="020e000010000000000000000004830008001200000001000000ff000000400000001ea0abff7f00000000000000d41f9ab9000100700000ebdf000008000000c4fc0000100000000000e2ffff1c004f030006000020"], 0x80}}, 0x4814)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x8c, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, 0x0, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x5c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3], 0x0, [0x8, 0x4, 0x2, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}}]}}]}, 0x8c}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)
recvmmsg(r4, &(0x7f0000000100)=[{{0x0, 0xff32, 0x0, 0x0, &(0x7f0000000000)=""/10, 0x17}}], 0x400000000000078, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@ipv6_newaddr={0x18, 0x14, 0x400, 0x70bd29, 0x25dfdbfb, {0xa, 0x40, 0x82, 0xff}}, 0x18}, 0x1, 0x0, 0x0, 0x20008100}, 0x40)
close(r0)

kernel console output (not intermixed with test programs):

man_adv: batadv0: Interface activated: batadv_slave_0
[   73.782203][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.813858][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.832072][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.851748][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.874942][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.893367][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.903531][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.914078][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.925015][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.934278][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.945075][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.955129][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.966515][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.977598][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.988410][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.000835][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.029065][ T5923] vlan2: entered allmulticast mode
[   74.034356][ T5923] hsr0: entered allmulticast mode
[   74.044819][ T5923] hsr_slave_0: entered allmulticast mode
[   74.050701][ T5923] hsr_slave_1: entered allmulticast mode
[   74.061212][ T5923] hsr0: left allmulticast mode
[   74.066169][ T5923] hsr_slave_0: left allmulticast mode
[   74.071574][ T5923] hsr_slave_1: left allmulticast mode
[   74.093574][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.104240][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.118191][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.129082][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.139012][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.149556][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.159448][ T5833] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.169947][ T5833] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.181656][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.195005][ T5836] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.210021][ T5836] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.219524][ T5836] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.228438][ T5836] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.257662][ T5833] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.277105][ T5833] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.296558][ T5833] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.305670][ T5833] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   74.332745][ T5923] vlan2: entered allmulticast mode
[   74.344212][ T5923] hsr0: entered allmulticast mode
[   74.352245][ T5923] hsr_slave_0: entered allmulticast mode
[   74.356385][ T5149] Bluetooth: hci3: command tx timeout
[   74.358408][ T5850] Bluetooth: hci1: command tx timeout
[   74.378271][ T5923] hsr_slave_1: entered allmulticast mode
[   74.392595][ T5923] hsr0: left allmulticast mode
[   74.399222][ T5923] hsr_slave_0: left allmulticast mode
[   74.404724][ T5923] hsr_slave_1: left allmulticast mode
[   74.436398][ T5850] Bluetooth: hci0: command tx timeout
[   74.441853][ T5850] Bluetooth: hci4: command tx timeout
[   74.443711][ T5149] Bluetooth: hci2: command tx timeout
[   74.476300][ T3552] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.505762][ T3552] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.568110][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.577620][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.716677][ T4529] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.725068][ T4529] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.810560][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.827275][ T4529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.835206][ T4529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.846760][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.945338][ T3451] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.990820][ T3451] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.189490][ T5942] netlink: 'syz.4.5': attribute type 39 has an invalid length.
[   75.223650][ T5945] netlink: 'syz.2.7': attribute type 39 has an invalid length.
[   76.178773][ T5964] netlink: 'syz.2.9': attribute type 39 has an invalid length.
[   76.436510][ T5149] Bluetooth: hci3: command tx timeout
[   76.436541][ T5850] Bluetooth: hci1: command tx timeout
[   76.518899][ T5850] Bluetooth: hci2: command tx timeout
[   76.533146][ T5850] Bluetooth: hci4: command tx timeout
[   76.533162][ T5149] Bluetooth: hci0: command tx timeout
[   77.422362][ T5972] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13'.
[   77.708704][ T5973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.13'.
[   78.471504][ T5929] Set syz1 is full, maxelem 65536 reached
[   78.830164][ T5974] ipvlan0: entered promiscuous mode
[   78.862556][ T5974] ipvlan0: left promiscuous mode
[   79.551683][ T5991] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[   80.551999][ T6007] af_packet: tpacket_rcv: packet too big, clamped from 3954 to 3710. macoff=82
[   80.587154][ T6009] veth0_macvtap: left promiscuous mode
[   80.665504][ T5957] Set syz1 is full, maxelem 65536 reached
[   80.684090][ T6011] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.729997][ T6012] syz.4.21 uses obsolete (PF_INET,SOCK_PACKET)
[   80.859486][ T6011] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.914099][ T6020] netlink: 8 bytes leftover after parsing attributes in process `syz.3.25'.
[   80.950162][ T6018] netlink: 12 bytes leftover after parsing attributes in process `syz.1.24'.
[   80.997735][ T6011] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.177938][ T6011] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.204362][ T6027] netlink: 'syz.1.27': attribute type 10 has an invalid length.
[   81.256369][ T6027] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.265082][ T6027] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.310287][ T6027] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.317761][ T6027] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.326064][ T6027] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.333902][ T6027] bridge0: port 1(bridge_slave_0) entered forwarding state
[   81.574920][ T6027] team0: Port device bridge0 added
[   81.814694][ T6011] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.884620][ T6011] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.932822][ T6011] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.028672][ T6011] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.132298][   T25] cfg80211: failed to load regulatory.db
[   82.516303][ T6044] netlink: 8 bytes leftover after parsing attributes in process `syz.3.31'.
[   82.536790][ T6043] netlink: 8 bytes leftover after parsing attributes in process `syz.3.31'.
[   82.574656][ T6046] netlink: 'syz.4.32': attribute type 8 has an invalid length.
[   84.013285][ T5996] Set syz1 is full, maxelem 65536 reached
[   84.187135][ T6077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.39'.
[   84.289717][ T6081] ipvlan0: entered promiscuous mode
[   84.306917][ T6081] ipvlan0: left promiscuous mode
[   84.484875][ T6083] netlink: 'syz.3.41': attribute type 8 has an invalid length.
[   85.896249][ T6105] netlink: 'syz.2.47': attribute type 8 has an invalid length.
[   86.106675][ T6111] netlink: 4 bytes leftover after parsing attributes in process `syz.2.50'.
[   86.156045][ T6112] netlink: 'syz.3.48': attribute type 1 has an invalid length.
[   86.175941][ T6112] Zero length message leads to an empty skb
[   86.224327][ T6113] ipvlan0: entered promiscuous mode
[   86.309355][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.2.50'.
[   86.327734][ T6113] ipvlan0 (unregistering): left promiscuous mode
[   86.579775][ T6051] Set syz1 is full, maxelem 65536 reached
[   86.693139][ T6122] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   86.856879][ T6130] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.58'.
[   86.892609][ T6130] openvswitch: netlink: Missing key (keys=40, expected=80)
[   86.947043][ T6131] netlink: 'syz.3.56': attribute type 39 has an invalid length.
[   86.986741][ T6134] netlink: 44 bytes leftover after parsing attributes in process `syz.4.59'.
[   87.040581][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.60'.
[   87.275201][ T6139] netlink: 4 bytes leftover after parsing attributes in process `syz.0.60'.
[   87.374044][ T6134] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.381677][ T6134] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.605855][ T6134] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   87.614639][ T6158] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   87.620517][ T6134] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   87.639453][ T6158] netlink: 16 bytes leftover after parsing attributes in process `syz.3.66'.
[   87.692841][ T6134] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.703400][ T6134] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.713569][ T6134] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.722991][ T6134] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   87.770612][ T6136] ipvlan0: entered promiscuous mode
[   87.778069][ T6136] ipvlan0: left promiscuous mode
[   87.854969][ T6158] netlink: 16 bytes leftover after parsing attributes in process `syz.3.66'.
[   87.916542][ T6158] xt_hashlimit: max too large, truncated to 1048576
[   87.948555][ T6159] macsec1: entered promiscuous mode
[   87.953823][ T6159] macsec1: entered allmulticast mode
[   88.147555][ T6168] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.67'.
[   88.280282][ T6180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.71'.
[   88.333902][ T6180] netlink: 8 bytes leftover after parsing attributes in process `syz.0.71'.
[   88.396691][ T6183] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.73'.
[   88.434242][ T6183] openvswitch: netlink: Missing key (keys=40, expected=80)
[   88.650282][ T6193] netlink: 4 bytes leftover after parsing attributes in process `syz.3.77'.
[   88.733359][ T6196] ipvlan0: entered promiscuous mode
[   88.780592][ T6196] netlink: 4 bytes leftover after parsing attributes in process `syz.3.77'.
[   88.804464][ T6199] netlink: 'syz.0.78': attribute type 39 has an invalid length.
[   88.927663][ T6205] netlink: 1688 bytes leftover after parsing attributes in process `syz.4.81'.
[   89.000228][ T6208] netlink: 44 bytes leftover after parsing attributes in process `syz.2.80'.
[   89.094608][ T6210] macsec1: entered promiscuous mode
[   89.100313][ T6210] macsec1: entered allmulticast mode
[   89.179958][ T6214] xt_hashlimit: max too large, truncated to 1048576
[   89.241152][ T6211] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.249831][ T6211] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.371498][ T6211] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   89.383744][ T6211] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   89.445382][ T6211] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[   89.466006][ T6211] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[   89.474411][ T6211] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[   89.497353][ T6211] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[   90.090490][ T6244] netlink: 'syz.2.92': attribute type 72 has an invalid length.
[   90.187072][ T6250] netlink: 'syz.4.94': attribute type 1 has an invalid length.
[   90.351349][ T6254] netlink: 'syz.4.95': attribute type 39 has an invalid length.
[   90.388315][ T6252] netlink: 'syz.1.97': attribute type 8 has an invalid length.
[   90.537424][ T6258] macsec1: entered promiscuous mode
[   90.543161][ T6258] macsec1: entered allmulticast mode
[   90.614282][ T6266] xt_hashlimit: max too large, truncated to 1048576
[   90.804455][ T6270] netlink: 'syz.0.111': attribute type 8 has an invalid length.
[   91.268719][ T6288] netlink: 'syz.1.106': attribute type 72 has an invalid length.
[   91.337460][ T6291] macsec1: entered promiscuous mode
[   91.342769][ T6291] macsec1: entered allmulticast mode
[   91.580160][ T6298] netlink: 'syz.1.120': attribute type 72 has an invalid length.
[   91.805047][ T6309] netlink: 'syz.0.108': attribute type 1 has an invalid length.
[   92.658358][ T6330] netlink: 'syz.0.115': attribute type 8 has an invalid length.
[   92.968112][ T6332] __nla_validate_parse: 14 callbacks suppressed
[   92.968134][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.118'.
[   93.544526][ T6260] Set syz1 is full, maxelem 65536 reached
[   93.690743][ T6351] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.124'.
[   93.939294][ T6358] netlink: 'syz.4.130': attribute type 8 has an invalid length.
[   94.188135][ T6370] netlink: 4 bytes leftover after parsing attributes in process `syz.4.133'.
[   94.337449][ T6377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.133'.
[   94.824391][ T6388] netlink: 'syz.0.138': attribute type 10 has an invalid length.
[   94.850514][ T6388] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.858030][ T6388] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.892769][ T6388] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.900151][ T6388] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.908643][ T6388] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.915907][ T6388] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.953454][ T6388] team0: Port device bridge0 added
[   95.358631][ T6393] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.384949][ T6401] netlink: 4 bytes leftover after parsing attributes in process `syz.1.140'.
[   95.527945][ T6393] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.572966][ T6396] ipvlan0: entered promiscuous mode
[   95.580362][ T6396] netlink: 4 bytes leftover after parsing attributes in process `syz.1.140'.
[   95.603060][ T6396] ipvlan0 (unregistering): left promiscuous mode
[   95.667355][ T6405] netlink: 'syz.4.143': attribute type 8 has an invalid length.
[   95.689767][ T6393] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.834815][ T6393] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.848835][ T6407] netlink: 12 bytes leftover after parsing attributes in process `syz.0.145'.
[   96.077752][ T6393] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.182378][ T6393] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.260407][ T6393] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.319467][ T6393] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.263086][ T6439] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.155'.
[   97.276353][ T6442] netlink: 'syz.4.157': attribute type 8 has an invalid length.
[   97.432269][ T6444] netlink: 4 bytes leftover after parsing attributes in process `syz.0.158'.
[   97.462225][ T6447] netlink: 12 bytes leftover after parsing attributes in process `syz.3.159'.
[   97.627275][ T6454] netlink: 'syz.3.162': attribute type 10 has an invalid length.
[   97.654189][ T6454] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.661735][ T6454] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.703799][ T6454] bridge0: port 2(bridge_slave_1) entered blocking state
[   97.711226][ T6454] bridge0: port 2(bridge_slave_1) entered forwarding state
[   97.719770][ T6454] bridge0: port 1(bridge_slave_0) entered blocking state
[   97.726979][ T6454] bridge0: port 1(bridge_slave_0) entered forwarding state
[   97.752796][ T6454] team0: Port device bridge0 added
[   98.173661][ T6363] Set syz1 is full, maxelem 65536 reached
[   98.689863][ T6477] __nla_validate_parse: 1 callbacks suppressed
[   98.689882][ T6477] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.169'.
[   98.824246][ T6485] netlink: 'syz.3.172': attribute type 8 has an invalid length.
[   99.108615][ T6490] netlink: 12 bytes leftover after parsing attributes in process `syz.2.174'.
[   99.302838][ T6497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.177'.
[   99.620799][ T6507] netlink: 4 bytes leftover after parsing attributes in process `syz.3.179'.
[   99.760969][ T6512] netlink: 4 bytes leftover after parsing attributes in process `syz.3.179'.
[  100.459629][ T6526] netlink: 'syz.2.186': attribute type 8 has an invalid length.
[  100.740462][ T6530] netlink: 12 bytes leftover after parsing attributes in process `syz.2.188'.
[  100.887884][ T6537] netlink: 16 bytes leftover after parsing attributes in process `syz.2.191'.
[  100.897157][ T6537] netlink: 16 bytes leftover after parsing attributes in process `syz.2.191'.
[  101.904500][ T6462] Set syz1 is full, maxelem 65536 reached
[  102.015181][ T6554] netlink: 'syz.4.200': attribute type 8 has an invalid length.
[  102.111308][ T6558] netlink: 4 bytes leftover after parsing attributes in process `syz.3.199'.
[  102.291943][ T6562] netlink: 12 bytes leftover after parsing attributes in process `syz.4.202'.
[  103.742550][ T6474] Set syz1 is full, maxelem 65536 reached
[  104.193300][ T6623] __nla_validate_parse: 5 callbacks suppressed
[  104.193321][ T6623] netlink: 4 bytes leftover after parsing attributes in process `syz.0.223'.
[  104.200155][ T6626] netlink: 4 bytes leftover after parsing attributes in process `syz.2.224'.
[  104.310923][ T6631] netlink: 12 bytes leftover after parsing attributes in process `syz.4.228'.
[  104.446588][ T6638] netlink: 4 bytes leftover after parsing attributes in process `syz.0.223'.
[  104.490808][ T6637] netlink: 16 bytes leftover after parsing attributes in process `syz.3.229'.
[  104.533513][ T6637] netlink: 16 bytes leftover after parsing attributes in process `syz.3.229'.
[  105.062023][ T6669] netlink: 4 bytes leftover after parsing attributes in process `syz.2.240'.
[  105.251506][ T6674] netlink: 12 bytes leftover after parsing attributes in process `syz.1.242'.
[  106.251783][ T6704] netlink: 16 bytes leftover after parsing attributes in process `syz.2.253'.
[  106.276576][ T6704] netlink: 16 bytes leftover after parsing attributes in process `syz.2.253'.
[  106.406549][ T6708] xt_hashlimit: max too large, truncated to 1048576
[  107.961006][ T6737] netlink: 'syz.1.265': attribute type 8 has an invalid length.
[  108.448659][ T6747] xt_hashlimit: max too large, truncated to 1048576
[  109.202112][ T6659] Set syz1 is full, maxelem 65536 reached
[  109.389795][ T6680] Set syz1 is full, maxelem 65536 reached
[  109.635455][ T6781] __nla_validate_parse: 8 callbacks suppressed
[  109.635475][ T6781] netlink: 12 bytes leftover after parsing attributes in process `syz.3.283'.
[  109.785187][ T6785] netlink: 16 bytes leftover after parsing attributes in process `syz.4.286'.
[  109.815026][ T6785] netlink: 16 bytes leftover after parsing attributes in process `syz.4.286'.
[  109.963000][ T6796] xt_hashlimit: max too large, truncated to 1048576
[  110.049951][ T6803] netlink: 'syz.0.290': attribute type 8 has an invalid length.
[  110.276207][ T6807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.292'.
[  110.423501][ T6819] netlink: 4 bytes leftover after parsing attributes in process `syz.3.292'.
[  110.703629][ T6826] netlink: 12 bytes leftover after parsing attributes in process `syz.2.298'.
[  111.131870][ T6839] netlink: 16 bytes leftover after parsing attributes in process `syz.1.304'.
[  111.144701][ T6839] netlink: 16 bytes leftover after parsing attributes in process `syz.1.304'.
[  111.216392][ T6839] macsec1: entered promiscuous mode
[  111.221687][ T6839] macsec1: entered allmulticast mode
[  111.303840][ T6844] xt_hashlimit: max too large, truncated to 1048576
[  111.578939][ T6858] netlink: 12 bytes leftover after parsing attributes in process `syz.4.310'.
[  111.832874][ T6867] netlink: 4 bytes leftover after parsing attributes in process `syz.4.315'.
[  112.529292][ T6889] xt_hashlimit: max too large, truncated to 1048576
[  113.891922][ T6933] xt_hashlimit: max too large, truncated to 1048576
[  114.738606][ T6871] Set syz1 is full, maxelem 65536 reached
[  115.145366][ T6955] __nla_validate_parse: 9 callbacks suppressed
[  115.145386][ T6955] netlink: 36 bytes leftover after parsing attributes in process `syz.0.343'.
[  115.180520][ T6957] netlink: 12 bytes leftover after parsing attributes in process `syz.2.341'.
[  115.403947][ T6963] netlink: 16 bytes leftover after parsing attributes in process `syz.0.347'.
[  115.419114][ T6963] netlink: 16 bytes leftover after parsing attributes in process `syz.0.347'.
[  115.541670][ T6963] xt_hashlimit: max too large, truncated to 1048576
[  116.130713][ T6981] netlink: 4 bytes leftover after parsing attributes in process `syz.2.351'.
[  116.211371][ T6986] netlink: 4 bytes leftover after parsing attributes in process `syz.2.351'.
[  116.881534][ T7002] netlink: 8 bytes leftover after parsing attributes in process `syz.0.355'.
[  116.971444][ T7005] netlink: 12 bytes leftover after parsing attributes in process `syz.0.356'.
[  117.183262][ T7009] netlink: 36 bytes leftover after parsing attributes in process `syz.1.358'.
[  117.403204][ T7015] netlink: 16 bytes leftover after parsing attributes in process `syz.0.362'.
[  117.522823][ T7015] xt_hashlimit: max too large, truncated to 1048576
[  117.665438][ T6920] Set syz1 is full, maxelem 65536 reached
[  119.351424][ T7058] xt_hashlimit: max too large, truncated to 1048576
[  120.810598][ T6983] Set syz1 is full, maxelem 65536 reached
[  120.962823][ T7079] __nla_validate_parse: 8 callbacks suppressed
[  120.962842][ T7079] netlink: 36 bytes leftover after parsing attributes in process `syz.3.383'.
[  121.345921][ T6997] Set syz1 is full, maxelem 65536 reached
[  121.358409][ T7091] netlink: 16 bytes leftover after parsing attributes in process `syz.3.388'.
[  121.375924][ T7091] netlink: 16 bytes leftover after parsing attributes in process `syz.3.388'.
[  121.413355][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz.4.389'.
[  121.526850][ T7091] xt_hashlimit: max too large, truncated to 1048576
[  121.567577][ T7102] netlink: 4 bytes leftover after parsing attributes in process `syz.4.389'.
[  122.329023][ T7114] netlink: 36 bytes leftover after parsing attributes in process `syz.2.394'.
[  122.991950][ T7130] netlink: 16 bytes leftover after parsing attributes in process `syz.1.402'.
[  123.094425][ T7135] netlink: 12 bytes leftover after parsing attributes in process `syz.3.403'.
[  123.134079][ T7130] netlink: 16 bytes leftover after parsing attributes in process `syz.1.402'.
[  123.172919][ T7130] xt_hashlimit: max too large, truncated to 1048576
[  123.439759][ T7146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.405'.
[  124.141950][ T7047] Set syz1 is full, maxelem 65536 reached
[  124.346452][ T7170] netlink: 'syz.4.412': attribute type 11 has an invalid length.
[  124.531343][ T7173] vlan2: entered allmulticast mode
[  124.565356][ T7182] xt_hashlimit: max too large, truncated to 1048576
[  124.568890][ T7173] hsr0: entered allmulticast mode
[  124.626113][ T7173] hsr_slave_0: entered allmulticast mode
[  124.637038][ T7173] hsr_slave_1: entered allmulticast mode
[  124.646584][ T7173] hsr0: left allmulticast mode
[  124.651667][ T7173] hsr_slave_0: left allmulticast mode
[  124.663209][ T7173] hsr_slave_1: left allmulticast mode
[  124.762527][ T7173] vlan2: entered allmulticast mode
[  124.813949][ T7173] hsr0: entered allmulticast mode
[  124.824132][ T7173] hsr_slave_0: entered allmulticast mode
[  124.834680][ T7173] hsr_slave_1: entered allmulticast mode
[  124.843331][ T7173] hsr0: left allmulticast mode
[  124.848338][ T7173] hsr_slave_0: left allmulticast mode
[  124.855713][ T7173] hsr_slave_1: left allmulticast mode
[  125.442712][ T7218] FAULT_INJECTION: forcing a failure.
[  125.442712][ T7218] name failslab, interval 1, probability 0, space 0, times 1
[  125.520404][ T7218] CPU: 1 UID: 0 PID: 7218 Comm: syz.1.429 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  125.520431][ T7218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  125.520445][ T7218] Call Trace:
[  125.520451][ T7218]  <TASK>
[  125.520458][ T7218]  dump_stack_lvl+0x241/0x360
[  125.520495][ T7218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.520513][ T7218]  ? __pfx__printk+0x10/0x10
[  125.520532][ T7218]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  125.520555][ T7218]  ? __pfx___might_resched+0x10/0x10
[  125.520573][ T7218]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  125.520600][ T7218]  should_fail_ex+0x40a/0x550
[  125.520625][ T7218]  should_failslab+0xac/0x100
[  125.520645][ T7218]  kmem_cache_alloc_node_noprof+0x77/0x380
[  125.520664][ T7218]  ? __alloc_skb+0x1c3/0x440
[  125.520683][ T7218]  __alloc_skb+0x1c3/0x440
[  125.520703][ T7218]  ? __pfx___alloc_skb+0x10/0x10
[  125.520719][ T7218]  ? __pfx_nft_chain_hash+0x10/0x10
[  125.520738][ T7218]  ? __pfx_nft_chain_hash_obj+0x10/0x10
[  125.520758][ T7218]  ? kasan_quarantine_put+0xdc/0x230
[  125.520774][ T7218]  ? lockdep_hardirqs_on+0x99/0x150
[  125.520796][ T7218]  nf_tables_chain_notify+0xa8/0x4b0
[  125.520825][ T7218]  nf_tables_commit+0x4918/0x9170
[  125.520877][ T7218]  ? __pfx_nf_tables_commit+0x10/0x10
[  125.520898][ T7218]  ? nft_trans_commit_list_add_tail+0x190/0x550
[  125.520918][ T7218]  ? nft_flush_table+0xd4f/0xee0
[  125.520942][ T7218]  ? nf_tables_deltable+0x827/0x1170
[  125.520973][ T7218]  ? __pfx_nf_tables_deltable+0x10/0x10
[  125.521001][ T7218]  ? __nla_parse+0x40/0x60
[  125.521021][ T7218]  nfnetlink_rcv+0xc77/0x2ab0
[  125.521063][ T7218]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  125.521112][ T7218]  ? netlink_deliver_tap+0x2e/0x1b0
[  125.521130][ T7218]  ? skb_clone+0x240/0x390
[  125.521146][ T7218]  ? __pfx_lock_release+0x10/0x10
[  125.521177][ T7218]  ? netlink_deliver_tap+0x2e/0x1b0
[  125.521198][ T7218]  netlink_unicast+0x7f6/0x990
[  125.521224][ T7218]  ? __pfx_netlink_unicast+0x10/0x10
[  125.521239][ T7218]  ? __virt_addr_valid+0x45f/0x530
[  125.521256][ T7218]  ? __phys_addr_symbol+0x2f/0x70
[  125.521269][ T7218]  ? __check_object_size+0x47a/0x730
[  125.521292][ T7218]  netlink_sendmsg+0x8de/0xcb0
[  125.521325][ T7218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.521348][ T7218]  ? aa_sock_msg_perm+0x91/0x160
[  125.521382][ T7218]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.521399][ T7218]  __sock_sendmsg+0x221/0x270
[  125.521419][ T7218]  ____sys_sendmsg+0x53a/0x860
[  125.521442][ T7218]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.521455][ T7218]  ? __fget_files+0x2a/0x410
[  125.521475][ T7218]  ? __fget_files+0x2a/0x410
[  125.521503][ T7218]  __sys_sendmsg+0x269/0x350
[  125.521523][ T7218]  ? __pfx___sys_sendmsg+0x10/0x10
[  125.521551][ T7218]  ? do_sys_openat2+0x17a/0x1d0
[  125.521593][ T7218]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  125.521614][ T7218]  ? do_syscall_64+0x100/0x230
[  125.521633][ T7218]  ? do_syscall_64+0xb6/0x230
[  125.521651][ T7218]  do_syscall_64+0xf3/0x230
[  125.521668][ T7218]  ? clear_bhb_loop+0x35/0x90
[  125.521691][ T7218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.521716][ T7218] RIP: 0033:0x7f320238d169
[  125.521734][ T7218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.521747][ T7218] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.521765][ T7218] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  125.521777][ T7218] RDX: 0000000000000000 RSI: 000040000000c2c0 RDI: 0000000000000003
[  125.521787][ T7218] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  125.521796][ T7218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  125.521805][ T7218] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  125.521829][ T7218]  </TASK>
[  126.063268][ T7227] __nla_validate_parse: 11 callbacks suppressed
[  126.063285][ T7227] netlink: 16 bytes leftover after parsing attributes in process `syz.2.433'.
[  126.091587][ T7227] netlink: 16 bytes leftover after parsing attributes in process `syz.2.433'.
[  126.345811][ T7227] xt_hashlimit: max too large, truncated to 1048576
[  126.713223][ T7245] netlink: 12 bytes leftover after parsing attributes in process `syz.2.439'.
[  126.831171][ T7251] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  126.894588][ T7253] netlink: 12 bytes leftover after parsing attributes in process `syz.2.443'.
[  126.921071][ T7253] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check.
[  126.967739][ T7256] netlink: 28 bytes leftover after parsing attributes in process `syz.3.442'.
[  126.978216][ T7256] netlink: 28 bytes leftover after parsing attributes in process `syz.3.442'.
[  127.060839][ T7251] netlink: 'syz.3.442': attribute type 10 has an invalid length.
[  127.097467][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.445'.
[  127.101432][ T7251] hsr0: entered promiscuous mode
[  127.142961][ T7251] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  127.154993][ T7251] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  127.197008][ T7251] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  127.259321][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.445'.
[  127.339612][ T7266] netlink: 400 bytes leftover after parsing attributes in process `syz.0.447'.
[  127.355126][ T7268] netlink: 'syz.1.448': attribute type 10 has an invalid length.
[  127.377941][ T7268] veth0_vlan: left promiscuous mode
[  127.385556][ T7268] veth0_vlan: entered promiscuous mode
[  127.410324][ T7268] team0: Device veth0_vlan failed to register rx_handler
[  127.522387][ T7268] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (5)
[  127.581000][ T7275] netlink: 'syz.2.450': attribute type 10 has an invalid length.
[  127.618863][ T7275] netlink: 40 bytes leftover after parsing attributes in process `syz.2.450'.
[  127.668722][ T7275] batman_adv: batadv0: Adding interface: virt_wifi0
[  127.715830][ T7275] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.742720][ T7275] batman_adv: batadv0: Interface activated: virt_wifi0
[  128.106829][ T7294] netlink: 'syz.2.457': attribute type 1 has an invalid length.
[  128.290333][ T7296] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.298076][ T7296] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.325182][ T7296] team0: Port device bridge0 removed
[  128.340429][ T7296] bridge_slave_0: left allmulticast mode
[  128.367458][ T7296] bridge_slave_0: left promiscuous mode
[  128.373264][ T7296] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.482762][ T7296] bridge_slave_1: left allmulticast mode
[  128.494131][ T7296] bridge_slave_1: left promiscuous mode
[  128.510789][ T7296] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.541171][ T7296] bond0: (slave bond_slave_0): Releasing backup interface
[  128.582986][ T7296] bond0: (slave bond_slave_1): Releasing backup interface
[  128.618356][ T7296] team0: Port device team_slave_0 removed
[  128.638686][ T7296] team0: Port device team_slave_1 removed
[  128.645499][ T7296] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  128.663141][ T7296] batman_adv: batadv0: Removing interface: batadv_slave_0
[  128.674725][ T7296] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  128.689612][ T7296] batman_adv: batadv0: Removing interface: batadv_slave_1
[  128.797740][ T7307] vlan2: entered allmulticast mode
[  128.841810][ T7307] bond0: entered allmulticast mode
[  128.850886][ T7315] FAULT_INJECTION: forcing a failure.
[  128.850886][ T7315] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  128.852209][ T7187] Set syz1 is full, maxelem 65536 reached
[  128.877139][ T7307] bridge0: port 1(vlan2) entered blocking state
[  128.895820][ T7307] bridge0: port 1(vlan2) entered disabled state
[  128.910659][ T7315] CPU: 1 UID: 0 PID: 7315 Comm: syz.1.461 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  128.910682][ T7315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  128.910691][ T7315] Call Trace:
[  128.910697][ T7315]  <TASK>
[  128.910705][ T7315]  dump_stack_lvl+0x241/0x360
[  128.910730][ T7315]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.910747][ T7315]  ? __pfx__printk+0x10/0x10
[  128.910774][ T7315]  should_fail_ex+0x40a/0x550
[  128.910800][ T7315]  _copy_to_user+0x31/0xb0
[  128.910821][ T7315]  generic_map_lookup_batch+0x98a/0xf20
[  128.910856][ T7315]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  128.910881][ T7315]  ? __pfx_generic_map_lookup_batch+0x10/0x10
[  128.910900][ T7315]  bpf_map_do_batch+0x288/0x660
[  128.910927][ T7315]  __sys_bpf+0x653/0x820
[  128.910949][ T7315]  ? __pfx___sys_bpf+0x10/0x10
[  128.910980][ T7315]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  128.911004][ T7315]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  128.911027][ T7315]  ? do_syscall_64+0x100/0x230
[  128.911049][ T7315]  __x64_sys_bpf+0x7c/0x90
[  128.911069][ T7315]  do_syscall_64+0xf3/0x230
[  128.911095][ T7315]  ? clear_bhb_loop+0x35/0x90
[  128.911118][ T7315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.911137][ T7315] RIP: 0033:0x7f320238d169
[  128.911152][ T7315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.911165][ T7315] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  128.911182][ T7315] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  128.911195][ T7315] RDX: 0000000000000038 RSI: 00004000000003c0 RDI: 0000000000000018
[  128.911205][ T7315] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  128.911215][ T7315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  128.911224][ T7315] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  128.911249][ T7315]  </TASK>
[  129.874401][ T7340] netlink: 'syz.3.472': attribute type 1 has an invalid length.
[  130.536645][ T7376] warning: `syz.1.481' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  130.750772][ T7382] netlink: 'syz.4.486': attribute type 1 has an invalid length.
[  131.078970][ T7395] __nla_validate_parse: 9 callbacks suppressed
[  131.078988][ T7395] netlink: 12 bytes leftover after parsing attributes in process `syz.4.492'.
[  131.336757][ T7407] netlink: 830 bytes leftover after parsing attributes in process `syz.4.496'.
[  131.681734][ T7423] netlink: 8 bytes leftover after parsing attributes in process `syz.0.497'.
[  131.759823][ T7426] netlink: 'syz.3.504': attribute type 29 has an invalid length.
[  131.799205][ T7426] FAULT_INJECTION: forcing a failure.
[  131.799205][ T7426] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.862838][ T7426] CPU: 0 UID: 0 PID: 7426 Comm: syz.3.504 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  131.862865][ T7426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  131.862874][ T7426] Call Trace:
[  131.862880][ T7426]  <TASK>
[  131.862887][ T7426]  dump_stack_lvl+0x241/0x360
[  131.862912][ T7426]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.862929][ T7426]  ? __pfx__printk+0x10/0x10
[  131.862947][ T7426]  ? __pfx_lock_release+0x10/0x10
[  131.862987][ T7426]  should_fail_ex+0x40a/0x550
[  131.863015][ T7426]  _copy_to_iter+0x427/0x1c40
[  131.863048][ T7426]  ? __pfx__copy_to_iter+0x10/0x10
[  131.863067][ T7426]  ? __virt_addr_valid+0x183/0x530
[  131.863081][ T7426]  ? __virt_addr_valid+0x183/0x530
[  131.863094][ T7426]  ? __virt_addr_valid+0x45f/0x530
[  131.863109][ T7426]  ? __check_object_size+0x47a/0x730
[  131.863134][ T7426]  __skb_datagram_iter+0x107/0x900
[  131.863155][ T7426]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  131.863175][ T7426]  ? __pfx___might_resched+0x10/0x10
[  131.863200][ T7426]  skb_copy_datagram_iter+0xd1/0x250
[  131.863222][ T7426]  netlink_recvmsg+0x2d1/0x11a0
[  131.863252][ T7426]  ? __pfx_netlink_recvmsg+0x10/0x10
[  131.863276][ T7426]  ? __pfx_aa_sk_perm+0x10/0x10
[  131.863301][ T7426]  ? aa_sock_msg_perm+0x91/0x160
[  131.863325][ T7426]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  131.863343][ T7426]  ? __pfx_netlink_recvmsg+0x10/0x10
[  131.863366][ T7426]  sock_recvmsg+0x22f/0x280
[  131.863390][ T7426]  ____sys_recvmsg+0x1c6/0x480
[  131.863415][ T7426]  ? __pfx_____sys_recvmsg+0x10/0x10
[  131.863453][ T7426]  __sys_recvmsg+0x291/0x390
[  131.863475][ T7426]  ? __pfx___sys_recvmsg+0x10/0x10
[  131.863503][ T7426]  ? __fget_files+0x2a/0x410
[  131.863538][ T7426]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  131.863561][ T7426]  ? do_syscall_64+0x100/0x230
[  131.863583][ T7426]  ? do_syscall_64+0xb6/0x230
[  131.863604][ T7426]  do_syscall_64+0xf3/0x230
[  131.863622][ T7426]  ? clear_bhb_loop+0x35/0x90
[  131.863645][ T7426]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.863665][ T7426] RIP: 0033:0x7f83c278d169
[  131.863680][ T7426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.863693][ T7426] RSP: 002b:00007f83c36b2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  131.863711][ T7426] RAX: ffffffffffffffda RBX: 00007f83c29a5fa0 RCX: 00007f83c278d169
[  131.863723][ T7426] RDX: 0000000060002002 RSI: 0000400000000000 RDI: 0000000000000003
[  131.863732][ T7426] RBP: 00007f83c36b2090 R08: 0000000000000000 R09: 0000000000000000
[  131.863739][ T7426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.863745][ T7426] R13: 0000000000000000 R14: 00007f83c29a5fa0 R15: 00007ffc4b4c4488
[  131.863764][ T7426]  </TASK>
[  131.864032][ T7426] netlink: 'syz.3.504': attribute type 29 has an invalid length.
[  132.630668][ T7431] netlink: 'syz.1.503': attribute type 29 has an invalid length.
[  132.642839][ T7433] netlink: 'syz.1.503': attribute type 29 has an invalid length.
[  132.662644][ T7440] netlink: 12 bytes leftover after parsing attributes in process `syz.3.506'.
[  132.804715][ T7444] netlink: 1752 bytes leftover after parsing attributes in process `syz.1.508'.
[  132.926598][ T7450] netlink: 12 bytes leftover after parsing attributes in process `syz.3.511'.
[  133.010976][ T7450] Bluetooth: MGMT ver 1.23
[  133.044067][ T7452] FAULT_INJECTION: forcing a failure.
[  133.044067][ T7452] name failslab, interval 1, probability 0, space 0, times 0
[  133.066613][ T7452] CPU: 0 UID: 0 PID: 7452 Comm: syz.2.513 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  133.066637][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.066646][ T7452] Call Trace:
[  133.066652][ T7452]  <TASK>
[  133.066659][ T7452]  dump_stack_lvl+0x241/0x360
[  133.066685][ T7452]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.066703][ T7452]  ? __pfx__printk+0x10/0x10
[  133.066722][ T7452]  ? kmem_cache_alloc_bulk_noprof+0x51/0x7c0
[  133.066745][ T7452]  ? __pfx___might_resched+0x10/0x10
[  133.066770][ T7452]  should_fail_ex+0x40a/0x550
[  133.066798][ T7452]  should_failslab+0xac/0x100
[  133.066820][ T7452]  kmem_cache_alloc_bulk_noprof+0x7d/0x7c0
[  133.066843][ T7452]  ? rcu_is_watching+0x15/0xb0
[  133.066861][ T7452]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  133.066880][ T7452]  ? kmem_cache_alloc_noprof+0x22d/0x380
[  133.066913][ T7452]  mas_alloc_nodes+0x38e/0x7e0
[  133.066940][ T7452]  mas_preallocate+0x575/0x8d0
[  133.066962][ T7452]  ? __pfx_mas_preallocate+0x10/0x10
[  133.066985][ T7452]  ? vma_expand+0x545/0x8e0
[  133.067006][ T7452]  ? __mas_set_range+0x133/0x3c0
[  133.067031][ T7452]  commit_merge+0x405/0x790
[  133.067058][ T7452]  ? __pfx_commit_merge+0x10/0x10
[  133.067084][ T7452]  ? dup_anon_vma+0x7d/0x2b0
[  133.067109][ T7452]  vma_expand+0x667/0x8e0
[  133.067131][ T7452]  ? __pfx_vma_expand+0x10/0x10
[  133.067146][ T7452]  ? anon_vma_name+0x86/0xf0
[  133.067165][ T7452]  ? can_vma_merge_right+0x454/0x500
[  133.067189][ T7452]  vma_merge_new_range+0x666/0x7e0
[  133.067217][ T7452]  mmap_region+0x15cc/0x2fa0
[  133.067249][ T7452]  ? validate_chain+0x11e/0x5920
[  133.067285][ T7452]  ? __pfx_mmap_region+0x10/0x10
[  133.067311][ T7452]  ? _parse_integer_limit+0x1b5/0x200
[  133.067383][ T7452]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[  133.067420][ T7452]  ? cap_mmap_addr+0xaa/0xf0
[  133.067439][ T7452]  ? bpf_lsm_mmap_addr+0x9/0x10
[  133.067458][ T7452]  ? security_mmap_addr+0x6f/0x250
[  133.067485][ T7452]  do_mmap+0xecc/0x13a0
[  133.067513][ T7452]  ? ima_file_mmap+0xd6/0x220
[  133.067538][ T7452]  ? __pfx_do_mmap+0x10/0x10
[  133.067556][ T7452]  ? down_write_killable+0x19e/0x260
[  133.067576][ T7452]  ? vm_mmap_pgoff+0x182/0x430
[  133.067592][ T7452]  ? __pfx_down_write_killable+0x10/0x10
[  133.067617][ T7452]  ? apparmor_mmap_file+0xc3/0xe0
[  133.067640][ T7452]  vm_mmap_pgoff+0x214/0x430
[  133.067665][ T7452]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  133.067681][ T7452]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  133.067702][ T7452]  ? do_syscall_64+0x100/0x230
[  133.067720][ T7452]  ? ksys_mmap_pgoff+0xdf/0x720
[  133.067741][ T7452]  ? __x64_sys_mmap+0x7f/0x140
[  133.067765][ T7452]  do_syscall_64+0xf3/0x230
[  133.067783][ T7452]  ? clear_bhb_loop+0x35/0x90
[  133.067807][ T7452]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.067826][ T7452] RIP: 0033:0x7f087ab8d169
[  133.067841][ T7452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.067853][ T7452] RSP: 002b:00007f087b96b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  133.067870][ T7452] RAX: ffffffffffffffda RBX: 00007f087ada5fa0 RCX: 00007f087ab8d169
[  133.067882][ T7452] RDX: 0000000000000000 RSI: 0000000000fff002 RDI: 0000400000000000
[  133.067892][ T7452] RBP: 00007f087b96b090 R08: ffffffffffffffff R09: 0000000000000000
[  133.067902][ T7452] R10: 0002000000000032 R11: 0000000000000246 R12: 0000000000000001
[  133.067918][ T7452] R13: 0000000000000000 R14: 00007f087ada5fa0 R15: 00007ffde2e73838
[  133.067944][ T7452]  </TASK>
[  133.424017][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  133.430384][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  133.441132][ T7458] FAULT_INJECTION: forcing a failure.
[  133.441132][ T7458] name failslab, interval 1, probability 0, space 0, times 0
[  133.453853][ T7458] CPU: 1 UID: 0 PID: 7458 Comm: syz.0.515 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  133.453877][ T7458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  133.453887][ T7458] Call Trace:
[  133.453893][ T7458]  <TASK>
[  133.453901][ T7458]  dump_stack_lvl+0x241/0x360
[  133.453927][ T7458]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.453944][ T7458]  ? __pfx__printk+0x10/0x10
[  133.453974][ T7458]  should_fail_ex+0x40a/0x550
[  133.454001][ T7458]  should_failslab+0xac/0x100
[  133.454022][ T7458]  ? skb_clone+0x20c/0x390
[  133.454038][ T7458]  kmem_cache_alloc_noprof+0x70/0x380
[  133.454065][ T7458]  skb_clone+0x20c/0x390
[  133.454086][ T7458]  bpf_clone_redirect+0xab/0x3d0
[  133.454114][ T7458]  bpf_prog_3f6021c58a22d550+0x5f/0x64
[  133.454133][ T7458]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  133.454162][ T7458]  ? bpf_test_run+0x370/0xa90
[  133.454182][ T7458]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  133.454203][ T7458]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  133.454235][ T7458]  ? bpf_test_run+0x370/0xa90
[  133.454253][ T7458]  ? __pfx___cant_migrate+0x10/0x10
[  133.454271][ T7458]  ? bpf_test_run+0x370/0xa90
[  133.454289][ T7458]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  133.454311][ T7458]  ? bpf_test_timer_continue+0x11a/0x350
[  133.454335][ T7458]  bpf_test_run+0x4f0/0xa90
[  133.454360][ T7458]  ? bpf_test_run+0x370/0xa90
[  133.454410][ T7458]  ? __pfx_bpf_test_run+0x10/0x10
[  133.454453][ T7458]  ? __pfx_eth_type_trans+0x10/0x10
[  133.454472][ T7458]  ? convert___skb_to_skb+0x41/0x630
[  133.454496][ T7458]  bpf_prog_test_run_skb+0xcaa/0x1830
[  133.454542][ T7458]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  133.454560][ T7458]  ? __fget_files+0x2a/0x410
[  133.454585][ T7458]  ? fput+0x21b/0x290
[  133.454603][ T7458]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  133.454625][ T7458]  bpf_prog_test_run+0x2e4/0x360
[  133.454650][ T7458]  __sys_bpf+0x487/0x820
[  133.454673][ T7458]  ? __pfx___sys_bpf+0x10/0x10
[  133.454706][ T7458]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  133.454730][ T7458]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  133.454753][ T7458]  ? do_syscall_64+0x100/0x230
[  133.454775][ T7458]  __x64_sys_bpf+0x7c/0x90
[  133.454796][ T7458]  do_syscall_64+0xf3/0x230
[  133.454814][ T7458]  ? clear_bhb_loop+0x35/0x90
[  133.454838][ T7458]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.454858][ T7458] RIP: 0033:0x7f07f1f8d169
[  133.454872][ T7458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.454885][ T7458] RSP: 002b:00007f07f2ebe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  133.454902][ T7458] RAX: ffffffffffffffda RBX: 00007f07f21a5fa0 RCX: 00007f07f1f8d169
[  133.454913][ T7458] RDX: 000000000000002c RSI: 0000400000000080 RDI: 000000000000000a
[  133.454924][ T7458] RBP: 00007f07f2ebe090 R08: 0000000000000000 R09: 0000000000000000
[  133.454933][ T7458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  133.454943][ T7458] R13: 0000000000000000 R14: 00007f07f21a5fa0 R15: 00007ffcb7752578
[  133.454968][ T7458]  </TASK>
[  134.509993][ T7492] netlink: 12 bytes leftover after parsing attributes in process `syz.1.526'.
[  134.831870][ T7465] ip6gre1: entered promiscuous mode
[  134.914251][ T7507] netlink: 'syz.1.530': attribute type 4 has an invalid length.
[  135.249185][ T7516] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$û'
[  135.270421][ T7516] CPU: 1 UID: 0 PID: 7516 Comm: syz.1.532 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  135.270445][ T7516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  135.270456][ T7516] Call Trace:
[  135.270462][ T7516]  <TASK>
[  135.270470][ T7516]  dump_stack_lvl+0x241/0x360
[  135.270497][ T7516]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.270517][ T7516]  ? __pfx__printk+0x10/0x10
[  135.270540][ T7516]  ? __kmalloc_cache_noprof+0x243/0x390
[  135.270562][ T7516]  ? sysfs_warn_dup+0x51/0xa0
[  135.270587][ T7516]  sysfs_warn_dup+0x8e/0xa0
[  135.270606][ T7516]  sysfs_do_create_link_sd+0xbe/0x110
[  135.270630][ T7516]  device_add_class_symlinks+0x1c5/0x250
[  135.270667][ T7516]  device_add+0x553/0xbf0
[  135.270698][ T7516]  wiphy_register+0x1922/0x2650
[  135.270734][ T7516]  ? __pfx_wiphy_register+0x10/0x10
[  135.270753][ T7516]  ? minstrel_ht_alloc+0x84b/0x940
[  135.270783][ T7516]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  135.270807][ T7516]  ieee80211_register_hw+0x35d9/0x42e0
[  135.270841][ T7516]  ? ieee80211_register_hw+0x1651/0x42e0
[  135.270872][ T7516]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  135.270906][ T7516]  ? __asan_memset+0x23/0x50
[  135.270924][ T7516]  ? __hrtimer_init+0x170/0x250
[  135.270944][ T7516]  mac80211_hwsim_new_radio+0x2a89/0x49f0
[  135.270997][ T7516]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  135.271016][ T7516]  ? trace_kmalloc+0x1f/0xd0
[  135.271035][ T7516]  ? __kmalloc_node_track_caller_noprof+0x2a8/0x4c0
[  135.271058][ T7516]  ? kstrndup+0xbb/0x150
[  135.271091][ T7516]  hwsim_new_radio_nl+0xece/0x2290
[  135.271125][ T7516]  ? __pfx___nla_validate_parse+0x10/0x10
[  135.271148][ T7516]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  135.271204][ T7516]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  135.271233][ T7516]  genl_rcv_msg+0xb1f/0xec0
[  135.271257][ T7516]  ? __pfx_genl_rcv_msg+0x10/0x10
[  135.271305][ T7516]  ? __pfx_lock_acquire+0x10/0x10
[  135.271329][ T7516]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  135.271351][ T7516]  ? __pfx___might_resched+0x10/0x10
[  135.271384][ T7516]  netlink_rcv_skb+0x206/0x480
[  135.271411][ T7516]  ? __pfx_genl_rcv_msg+0x10/0x10
[  135.271430][ T7516]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  135.271483][ T7516]  genl_rcv+0x28/0x40
[  135.271498][ T7516]  netlink_unicast+0x7f6/0x990
[  135.271527][ T7516]  ? __pfx_netlink_unicast+0x10/0x10
[  135.271544][ T7516]  ? __virt_addr_valid+0x45f/0x530
[  135.271562][ T7516]  ? __phys_addr_symbol+0x2f/0x70
[  135.271576][ T7516]  ? __check_object_size+0x47a/0x730
[  135.271603][ T7516]  netlink_sendmsg+0x8de/0xcb0
[  135.271644][ T7516]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.271672][ T7516]  ? aa_sock_msg_perm+0x91/0x160
[  135.271704][ T7516]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.271725][ T7516]  __sock_sendmsg+0x221/0x270
[  135.271751][ T7516]  ____sys_sendmsg+0x53a/0x860
[  135.271779][ T7516]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.271794][ T7516]  ? __fget_files+0x2a/0x410
[  135.271820][ T7516]  ? __fget_files+0x2a/0x410
[  135.271852][ T7516]  __sys_sendmsg+0x269/0x350
[  135.271876][ T7516]  ? __pfx___sys_sendmsg+0x10/0x10
[  135.271938][ T7516]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  135.271963][ T7516]  ? do_syscall_64+0x100/0x230
[  135.271986][ T7516]  ? do_syscall_64+0xb6/0x230
[  135.272009][ T7516]  do_syscall_64+0xf3/0x230
[  135.272028][ T7516]  ? clear_bhb_loop+0x35/0x90
[  135.272053][ T7516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.272074][ T7516] RIP: 0033:0x7f320238d169
[  135.272091][ T7516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.272104][ T7516] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.272123][ T7516] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  135.272135][ T7516] RDX: 0000000000000000 RSI: 0000400000000040 RDI: 0000000000000004
[  135.272145][ T7516] RBP: 00007f320240e2a0 R08: 0000000000000000 R09: 0000000000000000
[  135.272155][ T7516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  135.272165][ T7516] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  135.272195][ T7516]  </TASK>
[  136.146074][ T7531] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.536'.
[  136.189644][ T7534] netlink: 12 bytes leftover after parsing attributes in process `syz.0.538'.
[  136.217935][ T7536] workqueue: name exceeds WQ_NAME_LEN. Truncating to: !寿$ûÌÌULÙvy¸ÚØ¢
…D£øUDŒw˜}�z
[  136.424088][ T7541] FAULT_INJECTION: forcing a failure.
[  136.424088][ T7541] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.465850][ T7541] CPU: 1 UID: 0 PID: 7541 Comm: syz.2.541 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  136.465873][ T7541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  136.465882][ T7541] Call Trace:
[  136.465887][ T7541]  <TASK>
[  136.465894][ T7541]  dump_stack_lvl+0x241/0x360
[  136.465921][ T7541]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.465937][ T7541]  ? __pfx__printk+0x10/0x10
[  136.465962][ T7541]  should_fail_ex+0x40a/0x550
[  136.465988][ T7541]  _copy_to_user+0x31/0xb0
[  136.466009][ T7541]  bpf_test_finish+0x59c/0x890
[  136.466038][ T7541]  ? __pfx_bpf_test_finish+0x10/0x10
[  136.466063][ T7541]  ? convert___skb_to_skb+0x41/0x630
[  136.466080][ T7541]  ? convert_skb_to___skb+0x2d3/0x510
[  136.466101][ T7541]  bpf_prog_test_run_skb+0xff8/0x1830
[  136.466138][ T7541]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  136.466156][ T7541]  ? __fget_files+0x2a/0x410
[  136.466180][ T7541]  ? fput+0x21b/0x290
[  136.466198][ T7541]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  136.466217][ T7541]  bpf_prog_test_run+0x2e4/0x360
[  136.466242][ T7541]  __sys_bpf+0x487/0x820
[  136.466262][ T7541]  ? __pfx___sys_bpf+0x10/0x10
[  136.466302][ T7541]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  136.466327][ T7541]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  136.466350][ T7541]  ? do_syscall_64+0x100/0x230
[  136.466372][ T7541]  __x64_sys_bpf+0x7c/0x90
[  136.466393][ T7541]  do_syscall_64+0xf3/0x230
[  136.466410][ T7541]  ? clear_bhb_loop+0x35/0x90
[  136.466433][ T7541]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.466453][ T7541] RIP: 0033:0x7f087ab8d169
[  136.466468][ T7541] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.466479][ T7541] RSP: 002b:00007f087b96b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  136.466496][ T7541] RAX: ffffffffffffffda RBX: 00007f087ada5fa0 RCX: 00007f087ab8d169
[  136.466507][ T7541] RDX: 000000000000004c RSI: 0000400000000240 RDI: 000000000000000a
[  136.466517][ T7541] RBP: 00007f087b96b090 R08: 0000000000000000 R09: 0000000000000000
[  136.466526][ T7541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  136.466534][ T7541] R13: 0000000000000000 R14: 00007f087ada5fa0 R15: 00007ffde2e73838
[  136.466556][ T7541]  </TASK>
[  137.224021][ T7566] netlink: 12 bytes leftover after parsing attributes in process `syz.4.550'.
[  137.241565][ T7568] netlink: 8 bytes leftover after parsing attributes in process `syz.0.548'.
[  137.250709][ T7570] netlink: 16 bytes leftover after parsing attributes in process `syz.2.549'.
[  137.614222][ T7583] netlink: 76 bytes leftover after parsing attributes in process `syz.2.554'.
[  137.646756][ T7583] netlink: 76 bytes leftover after parsing attributes in process `syz.2.554'.
[  137.707967][ T7586] sch_tbf: burst 1127 is lower than device lo mtu (65550) !
[  138.217814][ T7608] netlink: 12 bytes leftover after parsing attributes in process `syz.2.561'.
[  138.970705][ T7635] netlink: 20 bytes leftover after parsing attributes in process `syz.0.566'.
[  139.468607][ T7471] Set syz1 is full, maxelem 65536 reached
[  139.592015][ T7665] netlink: 8 bytes leftover after parsing attributes in process `syz.2.572'.
[  141.896322][ T7703] __nla_validate_parse: 66 callbacks suppressed
[  141.896340][ T7703] netlink: 12 bytes leftover after parsing attributes in process `syz.2.584'.
[  141.986172][ T7708] FAULT_INJECTION: forcing a failure.
[  141.986172][ T7708] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.060304][ T7708] CPU: 0 UID: 0 PID: 7708 Comm: syz.1.585 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  142.060328][ T7708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  142.060338][ T7708] Call Trace:
[  142.060344][ T7708]  <TASK>
[  142.060351][ T7708]  dump_stack_lvl+0x241/0x360
[  142.060376][ T7708]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.060393][ T7708]  ? __pfx__printk+0x10/0x10
[  142.060410][ T7708]  ? __pfx_lock_release+0x10/0x10
[  142.060439][ T7708]  should_fail_ex+0x40a/0x550
[  142.060466][ T7708]  _copy_from_iter+0x1df/0x1c40
[  142.060484][ T7708]  ? __virt_addr_valid+0x183/0x530
[  142.060501][ T7708]  ? __pfx_lock_release+0x10/0x10
[  142.060530][ T7708]  ? __pfx__copy_from_iter+0x10/0x10
[  142.060549][ T7708]  ? __virt_addr_valid+0x183/0x530
[  142.060564][ T7708]  ? __virt_addr_valid+0x183/0x530
[  142.060577][ T7708]  ? __virt_addr_valid+0x45f/0x530
[  142.060593][ T7708]  ? __phys_addr_symbol+0x2f/0x70
[  142.060607][ T7708]  ? __check_object_size+0x47a/0x730
[  142.060632][ T7708]  hci_sock_sendmsg+0x4f1/0x11c0
[  142.060654][ T7708]  ? __pfx_aa_sk_perm+0x10/0x10
[  142.060675][ T7708]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  142.060693][ T7708]  ? __pfx_aa_file_perm+0x10/0x10
[  142.060706][ T7708]  ? aa_sock_msg_perm+0x91/0x160
[  142.060732][ T7708]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  142.060747][ T7708]  __sock_sendmsg+0x221/0x270
[  142.060771][ T7708]  sock_write_iter+0x2d7/0x3f0
[  142.060792][ T7708]  ? __pfx_sock_write_iter+0x10/0x10
[  142.060819][ T7708]  ? bpf_lsm_file_permission+0x9/0x10
[  142.060847][ T7708]  vfs_write+0xacf/0xd10
[  142.060868][ T7708]  ? __pfx_sock_write_iter+0x10/0x10
[  142.060887][ T7708]  ? __pfx_vfs_write+0x10/0x10
[  142.060908][ T7708]  ? do_sys_openat2+0x17a/0x1d0
[  142.060931][ T7708]  ? __fget_files+0x2a/0x410
[  142.060955][ T7708]  ? __fget_files+0x2a/0x410
[  142.060983][ T7708]  ksys_write+0x18f/0x2b0
[  142.061002][ T7708]  ? __pfx_ksys_write+0x10/0x10
[  142.061018][ T7708]  ? do_syscall_64+0x100/0x230
[  142.061039][ T7708]  ? do_syscall_64+0xb6/0x230
[  142.061059][ T7708]  do_syscall_64+0xf3/0x230
[  142.061077][ T7708]  ? clear_bhb_loop+0x35/0x90
[  142.061100][ T7708]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.061119][ T7708] RIP: 0033:0x7f320238d169
[  142.061134][ T7708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.061147][ T7708] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  142.061164][ T7708] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  142.061176][ T7708] RDX: 0000000000000007 RSI: 0000400000000000 RDI: 0000000000000004
[  142.061185][ T7708] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  142.061195][ T7708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.061204][ T7708] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  142.061229][ T7708]  </TASK>
[  142.459578][ T7719] Illegal XDP return value 393001480 on prog  (id 130) dev N/A, expect packet loss!
[  142.536061][ T7725] sctp: [Deprecated]: syz.2.590 (pid 7725) Use of int in max_burst socket option deprecated.
[  142.536061][ T7725] Use struct sctp_assoc_value instead
[  142.635381][ T7730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.594'.
[  142.702655][ T7730] 8021q: adding VLAN 0 to HW filter on device team1
[  143.658635][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.1.601'.
[  143.684800][ T7770] netlink: 8 bytes leftover after parsing attributes in process `syz.1.601'.
[  143.873476][ T7777] netlink: 8 bytes leftover after parsing attributes in process `syz.3.603'.
[  144.262542][ T7789] netlink: 24 bytes leftover after parsing attributes in process `syz.4.608'.
[  144.324771][ T7790] netlink: 4 bytes leftover after parsing attributes in process `syz.0.604'.
[  144.366757][ T7790] netlink: 20 bytes leftover after parsing attributes in process `syz.0.604'.
[  144.379568][ T7793] netlink: 8 bytes leftover after parsing attributes in process `syz.4.608'.
[  144.426186][ T7790] bridge5: the hash_elasticity option has been deprecated and is always 16
[  144.525823][ T7786] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  144.675787][ T5149] Bluetooth: hci4: command 0x0405 tx timeout
[  145.067832][   T25] hid-generic 0005:0458:0009.0001: unknown main item tag 0x0
[  145.075546][   T25] hid-generic 0005:0458:0009.0001: unknown main item tag 0x0
[  145.103479][   T25] hid-generic 0005:0458:0009.0001: hidraw0: BLUETOOTH HID v0.09 Device [syz0] on aa:aa:aa:aa:aa:aa
[  145.442667][ T7845] IPv6: Can't replace route, no match found
[  145.761466][ T7857] tipc: Started in network mode
[  145.790661][ T7857] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711
[  145.816059][ T7863] FAULT_INJECTION: forcing a failure.
[  145.816059][ T7863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.825800][ T7857] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  145.829379][ T7863] CPU: 0 UID: 0 PID: 7863 Comm: syz.4.629 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  145.829401][ T7863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  145.829410][ T7863] Call Trace:
[  145.829417][ T7863]  <TASK>
[  145.829424][ T7863]  dump_stack_lvl+0x241/0x360
[  145.829450][ T7863]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.829468][ T7863]  ? __pfx__printk+0x10/0x10
[  145.829487][ T7863]  ? __pfx_lock_release+0x10/0x10
[  145.829523][ T7863]  should_fail_ex+0x40a/0x550
[  145.829550][ T7863]  _copy_from_user+0x2d/0xb0
[  145.829571][ T7863]  copy_msghdr_from_user+0xae/0x680
[  145.829592][ T7863]  ? __pfx___might_resched+0x10/0x10
[  145.829614][ T7863]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  145.829633][ T7863]  ? __fget_files+0x2a/0x410
[  145.829658][ T7863]  ? __sys_sendmmsg+0x392/0x720
[  145.829675][ T7863]  ? __might_fault+0xaa/0x120
[  145.829695][ T7863]  __sys_sendmmsg+0x32b/0x720
[  145.829723][ T7863]  ? __pfx___sys_sendmmsg+0x10/0x10
[  145.829751][ T7863]  ? __pfx_lock_release+0x10/0x10
[  145.829770][ T7863]  ? kstrtouint_from_user+0x128/0x190
[  145.829808][ T7863]  ? ksys_write+0x22a/0x2b0
[  145.829823][ T7863]  ? __pfx_lock_release+0x10/0x10
[  145.829850][ T7863]  ? sb_end_write+0xe9/0x1c0
[  145.829871][ T7863]  ? vfs_write+0x7fa/0xd10
[  145.829889][ T7863]  ? __mutex_unlock_slowpath+0x227/0x800
[  145.829933][ T7863]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  145.829957][ T7863]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  145.829979][ T7863]  ? do_syscall_64+0x100/0x230
[  145.830000][ T7863]  __x64_sys_sendmmsg+0xa0/0xb0
[  145.830019][ T7863]  do_syscall_64+0xf3/0x230
[  145.830037][ T7863]  ? clear_bhb_loop+0x35/0x90
[  145.830060][ T7863]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.830079][ T7863] RIP: 0033:0x7f1e9118d169
[  145.830094][ T7863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.830107][ T7863] RSP: 002b:00007f1e91ff2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  145.830125][ T7863] RAX: ffffffffffffffda RBX: 00007f1e913a5fa0 RCX: 00007f1e9118d169
[  145.830137][ T7863] RDX: 04924924924925c6 RSI: 0000400000000680 RDI: 0000000000000006
[  145.830147][ T7863] RBP: 00007f1e91ff2090 R08: 0000000000000000 R09: 0000000000000000
[  145.830158][ T7863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  145.830168][ T7863] R13: 0000000000000000 R14: 00007f1e913a5fa0 R15: 00007fffa5a40028
[  145.830194][ T7863]  </TASK>
[  146.317090][ T7880] netlink: 56 bytes leftover after parsing attributes in process `syz.1.634'.
[  146.567387][ T7896] pimreg: entered allmulticast mode
[  147.207867][ T7920] __nla_validate_parse: 1 callbacks suppressed
[  147.207883][ T7920] netlink: 56 bytes leftover after parsing attributes in process `syz.4.649'.
[  147.225676][ T7920] netlink: 576 bytes leftover after parsing attributes in process `syz.4.649'.
[  147.346462][ T7925] netlink: 16 bytes leftover after parsing attributes in process `syz.4.652'.
[  147.387315][ T7925] netlink: 16 bytes leftover after parsing attributes in process `syz.4.652'.
[  147.463009][ T7929] netlink: 'syz.3.653': attribute type 2 has an invalid length.
[  147.483004][ T7929] fþ²¹¥‰: entered promiscuous mode
[  147.514027][ T7927] xt_hashlimit: max too large, truncated to 1048576
[  147.852756][ T7945] netlink: 16 bytes leftover after parsing attributes in process `syz.4.658'.
[  148.083646][ T7949] syzkaller0: entered promiscuous mode
[  148.103106][ T7949] syzkaller0: entered allmulticast mode
[  148.428601][ T7968] netlink: 24 bytes leftover after parsing attributes in process `syz.3.666'.
[  148.522843][ T7971] netlink: 'syz.2.663': attribute type 1 has an invalid length.
[  148.709471][ T7980] netlink: 16 bytes leftover after parsing attributes in process `syz.4.668'.
[  148.914555][ T7985] xt_hashlimit: max too large, truncated to 1048576
[  150.051571][ T7971] 8021q: adding VLAN 0 to HW filter on device bond1
[  150.060910][ T7980] netlink: 16 bytes leftover after parsing attributes in process `syz.4.668'.
[  150.457555][ T8001] netlink: 8 bytes leftover after parsing attributes in process `syz.1.675'.
[  150.524273][ T8001] FAULT_INJECTION: forcing a failure.
[  150.524273][ T8001] name failslab, interval 1, probability 0, space 0, times 0
[  150.574425][ T8001] CPU: 0 UID: 0 PID: 8001 Comm: syz.1.675 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  150.574455][ T8001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  150.574464][ T8001] Call Trace:
[  150.574470][ T8001]  <TASK>
[  150.574479][ T8001]  dump_stack_lvl+0x241/0x360
[  150.574505][ T8001]  ? __pfx_dump_stack_lvl+0x10/0x10
[  150.574523][ T8001]  ? __pfx__printk+0x10/0x10
[  150.574546][ T8001]  ? ref_tracker_alloc+0x332/0x490
[  150.574573][ T8001]  should_fail_ex+0x40a/0x550
[  150.574600][ T8001]  should_failslab+0xac/0x100
[  150.574622][ T8001]  ? skb_clone+0x20c/0x390
[  150.574639][ T8001]  kmem_cache_alloc_noprof+0x70/0x380
[  150.574666][ T8001]  skb_clone+0x20c/0x390
[  150.574688][ T8001]  __netlink_deliver_tap+0x3c4/0x7f0
[  150.574720][ T8001]  ? netlink_deliver_tap+0x2e/0x1b0
[  150.574739][ T8001]  netlink_deliver_tap+0x19d/0x1b0
[  150.574767][ T8001]  __netlink_sendskb+0x60/0xd0
[  150.574788][ T8001]  netlink_dump+0x9f0/0xe10
[  150.574821][ T8001]  ? __pfx_netlink_dump+0x10/0x10
[  150.574857][ T8001]  ? __pfx_lock_acquire+0x10/0x10
[  150.574889][ T8001]  __netlink_dump_start+0x5a2/0x790
[  150.574920][ T8001]  rtnetlink_rcv_msg+0xb3d/0xcf0
[  150.574947][ T8001]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  150.574968][ T8001]  ? __pfx_rtnl_net_dumpid+0x10/0x10
[  150.574995][ T8001]  ? ref_tracker_free+0x643/0x7e0
[  150.575017][ T8001]  netlink_rcv_skb+0x206/0x480
[  150.575039][ T8001]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  150.575061][ T8001]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  150.575106][ T8001]  ? netlink_deliver_tap+0x2e/0x1b0
[  150.575128][ T8001]  netlink_unicast+0x7f6/0x990
[  150.575156][ T8001]  ? __pfx_netlink_unicast+0x10/0x10
[  150.575172][ T8001]  ? __virt_addr_valid+0x45f/0x530
[  150.575189][ T8001]  ? __phys_addr_symbol+0x2f/0x70
[  150.575203][ T8001]  ? __check_object_size+0x47a/0x730
[  150.575228][ T8001]  netlink_sendmsg+0x8de/0xcb0
[  150.575261][ T8001]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.575286][ T8001]  ? aa_sock_msg_perm+0x91/0x160
[  150.575315][ T8001]  ? __pfx_netlink_sendmsg+0x10/0x10
[  150.575333][ T8001]  __sock_sendmsg+0x221/0x270
[  150.575356][ T8001]  ____sys_sendmsg+0x53a/0x860
[  150.575380][ T8001]  ? __pfx_____sys_sendmsg+0x10/0x10
[  150.575395][ T8001]  ? __fget_files+0x2a/0x410
[  150.575419][ T8001]  ? __fget_files+0x2a/0x410
[  150.575449][ T8001]  __sys_sendmsg+0x269/0x350
[  150.575472][ T8001]  ? __pfx___sys_sendmsg+0x10/0x10
[  150.575503][ T8001]  ? do_sys_openat2+0x17a/0x1d0
[  150.575551][ T8001]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  150.575575][ T8001]  ? do_syscall_64+0x100/0x230
[  150.575593][ T8001]  ? do_syscall_64+0xb6/0x230
[  150.575611][ T8001]  do_syscall_64+0xf3/0x230
[  150.575627][ T8001]  ? clear_bhb_loop+0x35/0x90
[  150.575650][ T8001]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  150.575668][ T8001] RIP: 0033:0x7f320238d169
[  150.575683][ T8001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  150.575696][ T8001] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  150.575714][ T8001] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  150.575725][ T8001] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000003
[  150.575735][ T8001] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  150.575756][ T8001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  150.575766][ T8001] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  150.575793][ T8001]  </TASK>
[  151.023048][ T8007] netlink: 28 bytes leftover after parsing attributes in process `syz.2.676'.
[  151.110531][ T8007] erspan0: entered promiscuous mode
[  151.164284][ T8007] erspan0: left promiscuous mode
[  151.772220][ T8021] netlink: 'syz.0.681': attribute type 1 has an invalid length.
[  152.107003][ T8028] batman_adv: The newly added mac address (52:42:16:1a:69:2c) already exists on: virt_wifi0
[  152.146501][ T8028] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  152.268076][ T8034] xt_hashlimit: max too large, truncated to 1048576
[  152.559513][ T8047] __nla_validate_parse: 5 callbacks suppressed
[  152.559531][ T8047] netlink: 60 bytes leftover after parsing attributes in process `syz.4.688'.
[  152.601359][ T8047] netlink: 12 bytes leftover after parsing attributes in process `syz.4.688'.
[  152.640930][ T8047] netlink: 'syz.4.688': attribute type 2 has an invalid length.
[  152.649839][ T8049] FAULT_INJECTION: forcing a failure.
[  152.649839][ T8049] name failslab, interval 1, probability 0, space 0, times 0
[  152.684682][ T8049] CPU: 0 UID: 0 PID: 8049 Comm: syz.2.689 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  152.684706][ T8049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.684717][ T8049] Call Trace:
[  152.684723][ T8049]  <TASK>
[  152.684730][ T8049]  dump_stack_lvl+0x241/0x360
[  152.684755][ T8049]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.684772][ T8049]  ? __pfx__printk+0x10/0x10
[  152.684791][ T8049]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  152.684813][ T8049]  ? __pfx___might_resched+0x10/0x10
[  152.684838][ T8049]  should_fail_ex+0x40a/0x550
[  152.684866][ T8049]  should_failslab+0xac/0x100
[  152.684887][ T8049]  kmem_cache_alloc_node_noprof+0x77/0x380
[  152.684907][ T8049]  ? __alloc_skb+0x1c3/0x440
[  152.684927][ T8049]  __alloc_skb+0x1c3/0x440
[  152.684947][ T8049]  ? __pfx___alloc_skb+0x10/0x10
[  152.684964][ T8049]  ? netlink_autobind+0xd6/0x2f0
[  152.684984][ T8049]  ? netlink_autobind+0x2b0/0x2f0
[  152.685009][ T8049]  netlink_sendmsg+0x634/0xcb0
[  152.685040][ T8049]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.685065][ T8049]  ? aa_sock_msg_perm+0x91/0x160
[  152.685092][ T8049]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.685111][ T8049]  __sock_sendmsg+0x221/0x270
[  152.685134][ T8049]  ____sys_sendmsg+0x53a/0x860
[  152.685159][ T8049]  ? __pfx_____sys_sendmsg+0x10/0x10
[  152.685174][ T8049]  ? __fget_files+0x2a/0x410
[  152.685199][ T8049]  ? __fget_files+0x2a/0x410
[  152.685227][ T8049]  __sys_sendmsg+0x269/0x350
[  152.685249][ T8049]  ? __pfx___sys_sendmsg+0x10/0x10
[  152.685278][ T8049]  ? do_sys_openat2+0x17a/0x1d0
[  152.685324][ T8049]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  152.685348][ T8049]  ? do_syscall_64+0x100/0x230
[  152.685370][ T8049]  ? do_syscall_64+0xb6/0x230
[  152.685390][ T8049]  do_syscall_64+0xf3/0x230
[  152.685408][ T8049]  ? clear_bhb_loop+0x35/0x90
[  152.685431][ T8049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.685451][ T8049] RIP: 0033:0x7f087ab8d169
[  152.685466][ T8049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.685479][ T8049] RSP: 002b:00007f087b96b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.685496][ T8049] RAX: ffffffffffffffda RBX: 00007f087ada5fa0 RCX: 00007f087ab8d169
[  152.685508][ T8049] RDX: 0000000020000010 RSI: 0000400000001000 RDI: 0000000000000003
[  152.685549][ T8049] RBP: 00007f087b96b090 R08: 0000000000000000 R09: 0000000000000000
[  152.685560][ T8049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.685569][ T8049] R13: 0000000000000000 R14: 00007f087ada5fa0 R15: 00007ffde2e73838
[  152.685594][ T8049]  </TASK>
[  153.233140][ T8054] Set syz1 is full, maxelem 65536 reached
[  153.915050][ T8083] netlink: 4 bytes leftover after parsing attributes in process `syz.1.697'.
[  155.121896][ T8111] tipc: Started in network mode
[  155.143927][ T8111] tipc: Node identity c2aa56cd222d, cluster identity 4711
[  155.152814][ T8111] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  155.204945][ T8107] tipc: Resetting bearer <eth:syzkaller0>
[  155.730785][ T8131] netlink: 4 bytes leftover after parsing attributes in process `syz.4.715'.
[  156.210899][    T8] tipc: Node number set to 3766965965
[  156.276863][ T5149] Bluetooth: hci4: command 0x0405 tx timeout
[  156.881552][ T8107] tipc: Disabling bearer <eth:syzkaller0>
[  157.030445][ T8138] netlink: 20 bytes leftover after parsing attributes in process `syz.2.716'.
[  157.299651][ T8159] netlink: 20 bytes leftover after parsing attributes in process `syz.2.721'.
[  157.431040][ T8166] netlink: 'syz.0.722': attribute type 1 has an invalid length.
[  157.929795][ T8192] netlink: 12 bytes leftover after parsing attributes in process `syz.4.727'.
[  158.118030][ T8203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.730'.
[  158.181482][ T8202] netlink: 20 bytes leftover after parsing attributes in process `syz.1.731'.
[  158.299354][ T8216] batadv_slave_1: entered promiscuous mode
[  158.305261][ T8216] batadv_slave_1: entered allmulticast mode
[  158.358828][ T8216] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.400717][ T8218] netlink: 20 bytes leftover after parsing attributes in process `syz.0.744'.
[  158.404133][ T8216] batman_adv: batadv0: Removing interface: batadv_slave_1
[  158.446522][ T8216] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check.
[  158.471388][ T8223] netlink: 9 bytes leftover after parsing attributes in process `syz.4.735'.
[  158.487351][ T8223] 0·: renamed from hsr_slave_1
[  158.538864][ T8223] 0·: entered allmulticast mode
[  158.552358][ T8223] A link change request failed with some changes committed already. Interface 
c0· may have been left with an inconsistent configuration, please check.
[  158.733424][ T8237] A link change request failed with some changes committed already. Interface wg2 may have been left with an inconsistent configuration, please check.
[  159.263688][ T8263] 0·: left allmulticast mode
[  159.274680][ T8263] macsec1: left promiscuous mode
[  159.285098][ T8263] macsec1: left allmulticast mode
[  159.390554][ T8264] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  159.426489][ T8267] netlink: 8 bytes leftover after parsing attributes in process `syz.4.747'.
[  159.768379][ T8279] netlink: 16 bytes leftover after parsing attributes in process `syz.0.752'.
[  159.787046][ T8279] netlink: 16 bytes leftover after parsing attributes in process `syz.0.752'.
[  159.804848][ T8281] netlink: 4 bytes leftover after parsing attributes in process `syz.1.750'.
[  159.919180][ T8287] xt_hashlimit: max too large, truncated to 1048576
[  159.945451][ T8285] netlink: 596 bytes leftover after parsing attributes in process `syz.4.753'.
[  160.246584][ T8301] netlink: 'syz.3.759': attribute type 1 has an invalid length.
[  160.940758][ T8324] xt_hashlimit: max too large, truncated to 1048576
[  161.645978][ T8344] netlink: 'syz.2.775': attribute type 18 has an invalid length.
[  161.709845][ T8348] raw_sendmsg: syz.0.773 forgot to set AF_INET. Fix it!
[  162.163683][ T8368] netlink: 'syz.4.781': attribute type 39 has an invalid length.
[  162.233768][ T8366] xt_hashlimit: max too large, truncated to 1048576
[  162.887293][ T8387] vlan0: entered promiscuous mode
[  163.601029][ T8423] __nla_validate_parse: 17 callbacks suppressed
[  163.601047][ T8423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.800'.
[  164.270096][ T8441] netlink: 32 bytes leftover after parsing attributes in process `syz.2.808'.
[  164.796775][ T8453] netlink: set zone limit has 4 unknown bytes
[  164.996184][ T8461] netlink: 4 bytes leftover after parsing attributes in process `syz.3.816'.
[  165.106739][ T8464] vlan2: entered promiscuous mode
[  165.128984][ T8464] bond0: entered promiscuous mode
[  165.161438][ T8464] bond_slave_0: entered promiscuous mode
[  165.193486][ T8464] bond_slave_1: entered promiscuous mode
[  165.219004][ T8464] bond0: left promiscuous mode
[  165.225892][ T8464] bond_slave_0: left promiscuous mode
[  165.244425][ T8464] bond_slave_1: left promiscuous mode
[  165.327572][   T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.348108][   T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.508359][ T8472] netlink: 'syz.3.820': attribute type 1 has an invalid length.
[  165.531307][ T8472] netlink: 224 bytes leftover after parsing attributes in process `syz.3.820'.
[  166.056451][ T8474] FAULT_INJECTION: forcing a failure.
[  166.056451][ T8474] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  166.074793][ T8474] CPU: 0 UID: 0 PID: 8474 Comm: syz.2.821 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  166.074821][ T8474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  166.074831][ T8474] Call Trace:
[  166.074837][ T8474]  <TASK>
[  166.074845][ T8474]  dump_stack_lvl+0x241/0x360
[  166.074872][ T8474]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.074890][ T8474]  ? __pfx__printk+0x10/0x10
[  166.074911][ T8474]  ? is_bpf_text_address+0x26/0x2a0
[  166.074938][ T8474]  should_fail_ex+0x40a/0x550
[  166.074964][ T8474]  prepare_alloc_pages+0x1da/0x5b0
[  166.074990][ T8474]  __alloc_frozen_pages_noprof+0x16f/0x710
[  166.075011][ T8474]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  166.075056][ T8474]  alloc_pages_mpol+0x311/0x660
[  166.075082][ T8474]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  166.075110][ T8474]  alloc_pages_noprof+0x121/0x190
[  166.075132][ T8474]  get_free_pages_noprof+0xc/0x30
[  166.075157][ T8474]  kasan_populate_vmalloc_pte+0x38/0xe0
[  166.075177][ T8474]  __apply_to_page_range+0x806/0xde0
[  166.075206][ T8474]  ? __pfx_kasan_populate_vmalloc_pte+0x10/0x10
[  166.075228][ T8474]  ? __pfx___apply_to_page_range+0x10/0x10
[  166.075251][ T8474]  ? do_raw_spin_unlock+0x13c/0x8b0
[  166.075277][ T8474]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  166.075301][ T8474]  alloc_vmap_area+0x1d4e/0x2400
[  166.075343][ T8474]  ? __pfx_alloc_vmap_area+0x10/0x10
[  166.075365][ T8474]  ? __kasan_kmalloc+0x98/0xb0
[  166.075393][ T8474]  ? __kmalloc_cache_node_noprof+0x25d/0x3a0
[  166.075414][ T8474]  ? __get_vm_area_node+0x132/0x2d0
[  166.075436][ T8474]  ? prealloc_init+0x139/0x840
[  166.075455][ T8474]  __get_vm_area_node+0x1c8/0x2d0
[  166.075482][ T8474]  __vmalloc_node_range_noprof+0x344/0x1380
[  166.075499][ T8474]  ? prealloc_init+0x139/0x840
[  166.075552][ T8474]  ? __pfx_lock_acquire+0x10/0x10
[  166.075580][ T8474]  ? __pfx_lock_release+0x10/0x10
[  166.075612][ T8474]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  166.075628][ T8474]  ? __pfx___might_resched+0x10/0x10
[  166.075646][ T8474]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  166.075669][ T8474]  bpf_map_area_alloc+0xfc/0x120
[  166.075689][ T8474]  ? prealloc_init+0x139/0x840
[  166.075708][ T8474]  prealloc_init+0x139/0x840
[  166.075738][ T8474]  htab_map_alloc+0x86e/0xe70
[  166.075764][ T8474]  map_create+0x946/0x11c0
[  166.075793][ T8474]  __sys_bpf+0x6d3/0x820
[  166.075816][ T8474]  ? __pfx___sys_bpf+0x10/0x10
[  166.075848][ T8474]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  166.075873][ T8474]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  166.075896][ T8474]  ? do_syscall_64+0x100/0x230
[  166.075919][ T8474]  __x64_sys_bpf+0x7c/0x90
[  166.075940][ T8474]  do_syscall_64+0xf3/0x230
[  166.075958][ T8474]  ? clear_bhb_loop+0x35/0x90
[  166.075981][ T8474]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.076000][ T8474] RIP: 0033:0x7f087ab8d169
[  166.076015][ T8474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.076028][ T8474] RSP: 002b:00007f087b96b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  166.076053][ T8474] RAX: ffffffffffffffda RBX: 00007f087ada5fa0 RCX: 00007f087ab8d169
[  166.076065][ T8474] RDX: 0000000000000050 RSI: 0000400000000140 RDI: 0000000000000000
[  166.076075][ T8474] RBP: 00007f087b96b090 R08: 0000000000000000 R09: 0000000000000000
[  166.076084][ T8474] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  166.076093][ T8474] R13: 0000000000000001 R14: 00007f087ada5fa0 R15: 00007ffde2e73838
[  166.076119][ T8474]  </TASK>
[  166.777659][ T8385] Set syz1 is full, maxelem 65536 reached
[  166.882806][ T8486] netlink: 256 bytes leftover after parsing attributes in process `syz.4.822'.
[  166.934558][ T8486] netlink: 72 bytes leftover after parsing attributes in process `syz.4.822'.
[  167.047326][ T8489] FAULT_INJECTION: forcing a failure.
[  167.047326][ T8489] name failslab, interval 1, probability 0, space 0, times 0
[  167.146147][ T8489] CPU: 0 UID: 0 PID: 8489 Comm: syz.1.825 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  167.146171][ T8489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  167.146181][ T8489] Call Trace:
[  167.146186][ T8489]  <TASK>
[  167.146193][ T8489]  dump_stack_lvl+0x241/0x360
[  167.146220][ T8489]  ? __pfx_dump_stack_lvl+0x10/0x10
[  167.146237][ T8489]  ? __pfx__printk+0x10/0x10
[  167.146256][ T8489]  ? __kmalloc_cache_noprof+0x48/0x390
[  167.146277][ T8489]  ? __pfx___might_resched+0x10/0x10
[  167.146295][ T8489]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  167.146316][ T8489]  should_fail_ex+0x40a/0x550
[  167.146341][ T8489]  should_failslab+0xac/0x100
[  167.146363][ T8489]  __kmalloc_cache_noprof+0x70/0x390
[  167.146381][ T8489]  ? ovs_ct_limit_cmd_set+0x2f9/0xaf0
[  167.146407][ T8489]  ovs_ct_limit_cmd_set+0x2f9/0xaf0
[  167.146441][ T8489]  genl_rcv_msg+0xb1f/0xec0
[  167.146468][ T8489]  ? __pfx_genl_rcv_msg+0x10/0x10
[  167.146512][ T8489]  ? __pfx_lock_acquire+0x10/0x10
[  167.146534][ T8489]  ? __pfx_ovs_ct_limit_cmd_set+0x10/0x10
[  167.146555][ T8489]  ? __pfx___might_resched+0x10/0x10
[  167.146583][ T8489]  netlink_rcv_skb+0x206/0x480
[  167.146604][ T8489]  ? __pfx_genl_rcv_msg+0x10/0x10
[  167.146622][ T8489]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  167.146655][ T8489]  ? __netlink_deliver_tap+0x7b0/0x7f0
[  167.146688][ T8489]  genl_rcv+0x28/0x40
[  167.146702][ T8489]  netlink_unicast+0x7f6/0x990
[  167.146729][ T8489]  ? __pfx_netlink_unicast+0x10/0x10
[  167.146746][ T8489]  ? __virt_addr_valid+0x45f/0x530
[  167.146762][ T8489]  ? __phys_addr_symbol+0x2f/0x70
[  167.146776][ T8489]  ? __check_object_size+0x47a/0x730
[  167.146801][ T8489]  netlink_sendmsg+0x8de/0xcb0
[  167.146832][ T8489]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.146857][ T8489]  ? __sanitizer_cov_trace_pc+0x37/0x70
[  167.146881][ T8489]  ? __pfx_netlink_sendmsg+0x10/0x10
[  167.146900][ T8489]  __sock_sendmsg+0x221/0x270
[  167.146923][ T8489]  ____sys_sendmsg+0x53a/0x860
[  167.146948][ T8489]  ? __pfx_____sys_sendmsg+0x10/0x10
[  167.146963][ T8489]  ? __fget_files+0x2a/0x410
[  167.146994][ T8489]  ? __fget_files+0x2a/0x410
[  167.147022][ T8489]  __sys_sendmsg+0x269/0x350
[  167.147043][ T8489]  ? __pfx___sys_sendmsg+0x10/0x10
[  167.147072][ T8489]  ? do_sys_openat2+0x17a/0x1d0
[  167.147117][ T8489]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  167.147140][ T8489]  ? do_syscall_64+0x100/0x230
[  167.147161][ T8489]  ? do_syscall_64+0xb6/0x230
[  167.147180][ T8489]  do_syscall_64+0xf3/0x230
[  167.147195][ T8489]  ? clear_bhb_loop+0x35/0x90
[  167.147218][ T8489]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.147236][ T8489] RIP: 0033:0x7f320238d169
[  167.147251][ T8489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  167.147263][ T8489] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  167.147280][ T8489] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  167.147291][ T8489] RDX: 0000000000000000 RSI: 0000400000000100 RDI: 0000000000000003
[  167.147300][ T8489] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  167.147310][ T8489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  167.147319][ T8489] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  167.147346][ T8489]  </TASK>
[  167.488254][ T8497] netlink: 'syz.0.830': attribute type 1 has an invalid length.
[  167.653717][ T8503] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  167.707712][ T8503] netlink: 20 bytes leftover after parsing attributes in process `syz.4.827'.
[  167.718358][ T8503] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  167.741855][ T8517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.829'.
[  167.782575][ T8504] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  167.791769][ T8509] netlink: 12 bytes leftover after parsing attributes in process `syz.2.832'.
[  167.840398][ T8497] 8021q: adding VLAN 0 to HW filter on device bond1
[  167.852979][   T81] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  167.922877][ T8518] veth3: entered promiscuous mode
[  167.949535][ T8518] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  167.982721][   T52] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  168.178988][ T8532] FAULT_INJECTION: forcing a failure.
[  168.178988][ T8532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.239946][ T8532] CPU: 0 UID: 0 PID: 8532 Comm: syz.1.838 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  168.239972][ T8532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  168.239981][ T8532] Call Trace:
[  168.239987][ T8532]  <TASK>
[  168.239994][ T8532]  dump_stack_lvl+0x241/0x360
[  168.240020][ T8532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  168.240038][ T8532]  ? __pfx__printk+0x10/0x10
[  168.240068][ T8532]  ? snprintf+0xda/0x120
[  168.240092][ T8532]  should_fail_ex+0x40a/0x550
[  168.240119][ T8532]  _copy_to_user+0x31/0xb0
[  168.240141][ T8532]  simple_read_from_buffer+0xca/0x150
[  168.240166][ T8532]  proc_fail_nth_read+0x1e9/0x250
[  168.240189][ T8532]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.240210][ T8532]  ? rw_verify_area+0x243/0x630
[  168.240224][ T8532]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  168.240245][ T8532]  vfs_read+0x1f8/0xb40
[  168.240261][ T8532]  ? fdget_pos+0x254/0x320
[  168.240284][ T8532]  ? __pfx___mutex_lock+0x10/0x10
[  168.240303][ T8532]  ? __pfx_vfs_read+0x10/0x10
[  168.240323][ T8532]  ? __fget_files+0x2a/0x410
[  168.240343][ T8532]  ? __fget_files+0x395/0x410
[  168.240360][ T8532]  ? __fget_files+0x2a/0x410
[  168.240387][ T8532]  ksys_read+0x18f/0x2b0
[  168.240404][ T8532]  ? __pfx_ksys_read+0x10/0x10
[  168.240419][ T8532]  ? do_syscall_64+0x100/0x230
[  168.240438][ T8532]  ? do_syscall_64+0xb6/0x230
[  168.240456][ T8532]  do_syscall_64+0xf3/0x230
[  168.240473][ T8532]  ? clear_bhb_loop+0x35/0x90
[  168.240496][ T8532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.240514][ T8532] RIP: 0033:0x7f320238bb7c
[  168.240528][ T8532] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  168.240540][ T8532] RSP: 002b:00007f32001f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  168.240557][ T8532] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238bb7c
[  168.240569][ T8532] RDX: 000000000000000f RSI: 00007f32001f60a0 RDI: 0000000000000006
[  168.240579][ T8532] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  168.240588][ T8532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  168.240597][ T8532] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  168.240622][ T8532]  </TASK>
[  168.308766][ T8543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.841'.
[  168.727566][ T8562] netlink: 12 bytes leftover after parsing attributes in process `syz.0.846'.
[  168.732192][ T8557] xt_hashlimit: size too large, truncated to 1048576
[  168.766430][ T8560] xt_hashlimit: size too large, truncated to 1048576
[  168.847442][ T8557] syz.2.847: vmalloc error: size 8392704, failed to allocated page array size 16392, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  168.862914][ T8565] netlink: 4 bytes leftover after parsing attributes in process `syz.1.849'.
[  168.890567][ T8557] CPU: 0 UID: 0 PID: 8557 Comm: syz.2.847 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  168.890592][ T8557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  168.890620][ T8557] Call Trace:
[  168.890626][ T8557]  <TASK>
[  168.890633][ T8557]  dump_stack_lvl+0x241/0x360
[  168.890659][ T8557]  ? __pfx_dump_stack_lvl+0x10/0x10
[  168.890677][ T8557]  ? __pfx__printk+0x10/0x10
[  168.890700][ T8557]  ? __rcu_read_unlock+0xa1/0x110
[  168.890725][ T8557]  warn_alloc+0x278/0x410
[  168.890745][ T8557]  ? __pfx_warn_alloc+0x10/0x10
[  168.890768][ T8557]  ? htable_create+0x102/0x880
[  168.890790][ T8557]  ? __get_vm_area_node+0x1c8/0x2d0
[  168.890811][ T8557]  ? __get_vm_area_node+0x25c/0x2d0
[  168.890839][ T8557]  __vmalloc_node_range_noprof+0x62f/0x1380
[  168.890882][ T8557]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  168.890907][ T8557]  ? htable_create+0x102/0x880
[  168.890928][ T8557]  vmalloc_noprof+0x79/0x90
[  168.890943][ T8557]  ? htable_create+0x102/0x880
[  168.890962][ T8557]  htable_create+0x102/0x880
[  168.890989][ T8557]  hashlimit_mt_check_common+0x710/0xa40
[  168.891012][ T8557]  hashlimit_mt_check_v1+0x2ea/0x540
[  168.891032][ T8557]  ? __pfx_hashlimit_mt_check_v1+0x10/0x10
[  168.891048][ T8557]  ? trace_contention_end+0x3c/0x120
[  168.891066][ T8557]  ? cpus_read_unlock+0xa6/0x140
[  168.891082][ T8557]  ? __mutex_unlock_slowpath+0x227/0x800
[  168.891100][ T8557]  xt_check_match+0x368/0xa40
[  168.891118][ T8557]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  168.891133][ T8557]  ? __pfx_xt_check_match+0x10/0x10
[  168.891159][ T8557]  ? xt_find_match+0x1df/0x230
[  168.891181][ T8557]  translate_table+0x1704/0x2490
[  168.891216][ T8557]  ? __pfx_translate_table+0x10/0x10
[  168.891231][ T8557]  ? __might_fault+0xaa/0x120
[  168.891243][ T8557]  ? __pfx_lock_release+0x10/0x10
[  168.891265][ T8557]  ? __virt_addr_valid+0x183/0x530
[  168.891282][ T8557]  ? __might_fault+0xc6/0x120
[  168.891301][ T8557]  ? copy_from_sockptr_offset+0x6b/0xb0
[  168.891318][ T8557]  do_ip6t_set_ctl+0xe4c/0x1270
[  168.891337][ T8557]  ? nf_setsockopt+0x240/0x2c0
[  168.891353][ T8557]  ? aa_label_sk_perm+0x4f3/0x6c0
[  168.891369][ T8557]  ? __pfx_do_ip6t_set_ctl+0x10/0x10
[  168.891385][ T8557]  ? rcu_is_watching+0x15/0xb0
[  168.891398][ T8557]  ? trace_contention_end+0x3c/0x120
[  168.891419][ T8557]  ? __mutex_unlock_slowpath+0x227/0x800
[  168.891439][ T8557]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  168.891465][ T8557]  nf_setsockopt+0x295/0x2c0
[  168.891486][ T8557]  rawv6_setsockopt+0x2ac/0x690
[  168.891506][ T8557]  ? __pfx_rawv6_setsockopt+0x10/0x10
[  168.891522][ T8557]  ? __pfx_lock_acquire+0x10/0x10
[  168.891537][ T8557]  ? aa_sock_opt_perm+0x79/0x120
[  168.891554][ T8557]  ? sock_common_setsockopt+0x37/0xc0
[  168.891573][ T8557]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  168.891589][ T8557]  do_sock_setsockopt+0x3af/0x720
[  168.891606][ T8557]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  168.891622][ T8557]  ? __fget_files+0x395/0x410
[  168.891639][ T8557]  ? __fget_files+0x2a/0x410
[  168.891660][ T8557]  __x64_sys_setsockopt+0x1ee/0x280
[  168.891678][ T8557]  do_syscall_64+0xf3/0x230
[  168.891693][ T8557]  ? clear_bhb_loop+0x35/0x90
[  168.891712][ T8557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.891727][ T8557] RIP: 0033:0x7f087ab8d169
[  168.891741][ T8557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.891751][ T8557] RSP: 002b:00007f087b96b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  168.891766][ T8557] RAX: ffffffffffffffda RBX: 00007f087ada5fa0 RCX: 00007f087ab8d169
[  168.891775][ T8557] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000008
[  168.891782][ T8557] RBP: 00007f087ac0e2a0 R08: 00000000000004c0 R09: 0000000000000000
[  168.891790][ T8557] R10: 00004000000004c0 R11: 0000000000000246 R12: 0000000000000000
[  168.891797][ T8557] R13: 0000000000000000 R14: 00007f087ada5fa0 R15: 00007ffde2e73838
[  168.891817][ T8557]  </TASK>
[  168.891827][ T8557] Mem-Info:
[  169.092092][ T8575] trusted_key: syz.4.851 sent an empty control message without MSG_MORE.
[  169.122088][ T8557] active_anon:5695 inactive_anon:0 isolated_anon:0
[  169.122088][ T8557]  active_file:1606 inactive_file:38338 isolated_file:0
[  169.122088][ T8557]  unevictable:768 dirty:282 writeback:0
[  169.122088][ T8557]  slab_reclaimable:9919 slab_unreclaimable:99963
[  169.122088][ T8557]  mapped:28626 shmem:1416 pagetables:864
[  169.122088][ T8557]  sec_pagetables:0 bounce:0
[  169.122088][ T8557]  kernel_misc_reclaimable:0
[  169.122088][ T8557]  free:1338280 free_pcp:455 free_cma:0
[  169.165385][ T8577] netlink: 'syz.3.852': attribute type 10 has an invalid length.
[  169.218062][ T8557] Node 0 active_anon:22680kB inactive_anon:0kB active_file:6424kB inactive_file:153276kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:114504kB dirty:1128kB writeback:0kB shmem:4128kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10760kB pagetables:3556kB sec_pagetables:0kB all_unreclaimable? no
[  169.313331][ T8577] hsr0: left promiscuous mode
[  169.347295][ T8557] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  169.457629][ T8577] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  169.465653][ T8557] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  169.495219][ T8577] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  169.571137][ T8557] lowmem_reserve[]: 0 2489 2490 0 0
[  169.588173][ T8577] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  169.615642][ T8557] Node 0 DMA32 free:1435208kB boost:0kB min:34168kB low:42708kB high:51248kB reserved_highatomic:0KB active_anon:22624kB inactive_anon:0kB active_file:6424kB inactive_file:152952kB unevictable:1536kB writepending:1140kB present:3129332kB managed:2549728kB mlocked:0kB bounce:0kB free_pcp:1928kB local_pcp:1016kB free_cma:0kB
[  169.661672][ T8597] FAULT_INJECTION: forcing a failure.
[  169.661672][ T8597] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.661879][ T8557] lowmem_reserve[]: 0 0 0 0 0
[  169.689862][ T8557] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:324kB unevictable:0kB writepending:0kB present:1048580kB managed:364kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  169.696079][ T8597] CPU: 0 UID: 0 PID: 8597 Comm: syz.1.857 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  169.696101][ T8597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  169.696111][ T8597] Call Trace:
[  169.696117][ T8597]  <TASK>
[  169.696124][ T8597]  dump_stack_lvl+0x241/0x360
[  169.696148][ T8597]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.696163][ T8597]  ? __pfx__printk+0x10/0x10
[  169.696180][ T8597]  ? __pfx_lock_release+0x10/0x10
[  169.696210][ T8597]  should_fail_ex+0x40a/0x550
[  169.696235][ T8597]  _copy_from_user+0x2d/0xb0
[  169.696255][ T8597]  ____sys_sendmsg+0x30b/0x860
[  169.696279][ T8597]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.696294][ T8597]  ? __fget_files+0x2a/0x410
[  169.696317][ T8597]  ? __fget_files+0x2a/0x410
[  169.696345][ T8597]  __sys_sendmmsg+0x36a/0x720
[  169.696371][ T8597]  ? __pfx___sys_sendmmsg+0x10/0x10
[  169.696398][ T8597]  ? __pfx_lock_release+0x10/0x10
[  169.696416][ T8597]  ? kstrtouint_from_user+0x128/0x190
[  169.696453][ T8597]  ? ksys_write+0x22a/0x2b0
[  169.696469][ T8597]  ? __pfx_lock_release+0x10/0x10
[  169.696494][ T8597]  ? sb_end_write+0xe9/0x1c0
[  169.696514][ T8597]  ? vfs_write+0x7fa/0xd10
[  169.696532][ T8597]  ? __mutex_unlock_slowpath+0x227/0x800
[  169.696574][ T8597]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  169.696597][ T8597]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  169.696620][ T8597]  ? do_syscall_64+0x100/0x230
[  169.696640][ T8597]  __x64_sys_sendmmsg+0xa0/0xb0
[  169.696658][ T8597]  do_syscall_64+0xf3/0x230
[  169.696675][ T8597]  ? clear_bhb_loop+0x35/0x90
[  169.696697][ T8597]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.696715][ T8597] RIP: 0033:0x7f320238d169
[  169.696729][ T8597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.696742][ T8597] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  169.696759][ T8597] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  169.696770][ T8597] RDX: 0000000000000001 RSI: 0000400000004580 RDI: 0000000000000003
[  169.696780][ T8597] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  169.696789][ T8597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.696798][ T8597] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  169.696822][ T8597]  </TASK>
[  169.954384][ T8557] lowmem_reserve[]: 0 0 0 0 0
[  169.959405][ T8557] Node 1 Normal free:3903544kB boost:0kB min:55728kB low:69660kB high:83592kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:32kB local_pcp:32kB free_cma:0kB
[  169.988571][ T8557] lowmem_reserve[]: 0 0 0 0 0
[  169.993668][ T8557] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  170.016613][ T8557] Node 0 DMA32: 1756*4kB (UME) 835*8kB (UM) 230*16kB (UM) 445*32kB (UM) 298*64kB (UM) 113*128kB (UM) 65*256kB (UME) 39*512kB (UM) 24*1024kB (UM) 6*2048kB (UM) 316*4096kB (UM) = 1432968kB
[  170.062707][ T8557] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[  170.074740][ T8557] Node 1 Normal: 192*4kB (UE) 43*8kB (UME) 40*16kB (UME) 217*32kB (UME) 97*64kB (UME) 28*128kB (UME) 12*256kB (UME) 6*512kB (UME) 4*1024kB (UM) 4*2048kB (UE) 944*4096kB (M) = 3903544kB
[  170.094131][ T8557] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  170.120840][ T8608] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  170.142526][ T8610] netlink: 12 bytes leftover after parsing attributes in process `syz.3.863'.
[  170.162309][ T8557] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  170.181226][ T8557] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  170.203355][ T8557] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  170.228012][ T8557] 41363 total pagecache pages
[  170.239481][ T8557] 0 pages in swap cache
[  170.275761][ T8557] Free swap  = 124996kB
[  170.280002][ T8557] Total swap = 124996kB
[  170.284265][ T8557] 2097051 pages RAM
[  170.296965][ T8557] 0 pages HighMem/MovableOnly
[  170.313615][ T8557] 427897 pages reserved
[  170.331295][ T8557] 0 pages cma reserved
[  170.462349][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.4.867'.
[  170.609100][ T8636] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[  171.219023][ T8661] netlink: 28 bytes leftover after parsing attributes in process `syz.3.876'.
[  171.239934][ T8660] netlink: 'syz.1.875': attribute type 10 has an invalid length.
[  171.248195][ T8660] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.255495][ T8660] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.319467][ T8659] infiniband syz0: set active
[  171.326105][ T8659] infiniband syz0: added bond0
[  171.354597][ T8659] RDS/IB: syz0: added
[  171.359651][ T8659] smc: adding ib device syz0 with port count 1
[  171.366184][ T8659] smc:    ib device syz0 port 1 has pnetid 
[  171.724984][ T8668] netlink: 16 bytes leftover after parsing attributes in process `syz.4.878'.
[  171.744806][ T8668] netlink: 16 bytes leftover after parsing attributes in process `syz.4.878'.
[  171.817419][ T8668] xt_hashlimit: max too large, truncated to 1048576
[  171.913303][ T8676] netlink: 4 bytes leftover after parsing attributes in process `syz.3.879'.
[  172.128006][ T8686] netlink: 'syz.1.884': attribute type 10 has an invalid length.
[  172.142911][ T8686] bond0: (slave hsr0): The slave device specified does not support setting the MAC address
[  172.154229][ T8686] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[  172.174649][ T8686] bond0: (slave hsr0): Error -22 calling dev_set_mtu
[  172.188684][ T8688] FAULT_INJECTION: forcing a failure.
[  172.188684][ T8688] name failslab, interval 1, probability 0, space 0, times 0
[  172.202304][   T29] audit: type=1800 audit(1741335649.285:2): pid=8688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.885" name=3199 dev="tmpfs" ino=900 res=0 errno=0
[  172.245668][ T8688] CPU: 1 UID: 0 PID: 8688 Comm: syz.3.885 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  172.245693][ T8688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  172.245703][ T8688] Call Trace:
[  172.245709][ T8688]  <TASK>
[  172.245716][ T8688]  dump_stack_lvl+0x241/0x360
[  172.245742][ T8688]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.245759][ T8688]  ? __pfx__printk+0x10/0x10
[  172.245779][ T8688]  ? __kmalloc_noprof+0xb5/0x4c0
[  172.245801][ T8688]  ? __pfx___might_resched+0x10/0x10
[  172.245827][ T8688]  should_fail_ex+0x40a/0x550
[  172.245855][ T8688]  should_failslab+0xac/0x100
[  172.245877][ T8688]  __kmalloc_noprof+0xdd/0x4c0
[  172.245897][ T8688]  ? ima_write_template_field_data+0x44/0x490
[  172.245916][ T8688]  ? process_measurement+0x150b/0x1fb0
[  172.245943][ T8688]  ima_write_template_field_data+0x44/0x490
[  172.245963][ T8688]  ? ima_eventdigest_init_common+0x29e/0x3b0
[  172.245989][ T8688]  ima_eventdigest_init_common+0x2d2/0x3b0
[  172.246016][ T8688]  ? __pfx_ima_eventdigest_init_common+0x10/0x10
[  172.246060][ T8688]  ? rcu_is_watching+0x15/0xb0
[  172.246079][ T8688]  ? __kmalloc_noprof+0x2a5/0x4c0
[  172.246099][ T8688]  ? ima_alloc_init_template+0x162/0x6e0
[  172.246115][ T8688]  ? __pfx_ima_eventdigest_ng_init+0x10/0x10
[  172.246138][ T8688]  ima_alloc_init_template+0x2f9/0x6e0
[  172.246164][ T8688]  ima_store_measurement+0x289/0x6f0
[  172.246191][ T8688]  ? __pfx_ima_store_measurement+0x10/0x10
[  172.246209][ T8688]  ? ima_d_path+0x1a4/0x270
[  172.246246][ T8688]  process_measurement+0x150b/0x1fb0
[  172.246289][ T8688]  ? __pfx_process_measurement+0x10/0x10
[  172.246312][ T8688]  ? __pfx_lock_acquire+0x10/0x10
[  172.246334][ T8688]  ? aa_file_perm+0x137/0xf50
[  172.246387][ T8688]  ? __lock_acquire+0x1397/0x2100
[  172.246413][ T8688]  ? apparmor_current_getlsmprop_subj+0xde/0x160
[  172.246438][ T8688]  ima_file_mmap+0x1cd/0x220
[  172.246472][ T8688]  ? __pfx_ima_file_mmap+0x10/0x10
[  172.246494][ T8688]  ? end_current_label_crit_section+0x151/0x180
[  172.246518][ T8688]  ? common_file_perm+0x1a6/0x210
[  172.246545][ T8688]  security_mmap_file+0x7aa/0xa40
[  172.246567][ T8688]  vm_mmap_pgoff+0x141/0x430
[  172.246592][ T8688]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  172.246610][ T8688]  ? __fget_files+0x2a/0x410
[  172.246632][ T8688]  ? __fget_files+0x395/0x410
[  172.246652][ T8688]  ? __fget_files+0x2a/0x410
[  172.246677][ T8688]  ksys_mmap_pgoff+0x4eb/0x720
[  172.246700][ T8688]  ? __x64_sys_mmap+0x7f/0x140
[  172.246724][ T8688]  do_syscall_64+0xf3/0x230
[  172.246744][ T8688]  ? clear_bhb_loop+0x35/0x90
[  172.246768][ T8688]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.246788][ T8688] RIP: 0033:0x7f83c278d169
[  172.246803][ T8688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.246817][ T8688] RSP: 002b:00007f83c36b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  172.246835][ T8688] RAX: ffffffffffffffda RBX: 00007f83c29a5fa0 RCX: 00007f83c278d169
[  172.246847][ T8688] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000400000000000
[  172.246857][ T8688] RBP: 00007f83c36b2090 R08: 0000000000000005 R09: 00000000d9b63000
[  172.246868][ T8688] R10: 0000000000004010 R11: 0000000000000246 R12: 0000000000000002
[  172.246878][ T8688] R13: 0000000000000000 R14: 00007f83c29a5fa0 R15: 00007ffc4b4c4488
[  172.246906][ T8688]  </TASK>
[  172.316034][   T29] audit: type=1804 audit(1741335649.345:3): pid=8688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.3.885" name=2F6E6577726F6F742F3137342F3199 dev="tmpfs" ino=900 res=0 errno=0
[  172.614520][ T8701] netlink: 16 bytes leftover after parsing attributes in process `syz.4.890'.
[  172.626335][ T8701] netlink: 16 bytes leftover after parsing attributes in process `syz.4.890'.
[  172.694724][ T8701] xt_hashlimit: max too large, truncated to 1048576
[  172.989327][ T8723] FAULT_INJECTION: forcing a failure.
[  172.989327][ T8723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.010547][ T8723] CPU: 0 UID: 0 PID: 8723 Comm: syz.4.897 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  173.010574][ T8723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.010584][ T8723] Call Trace:
[  173.010590][ T8723]  <TASK>
[  173.010598][ T8723]  dump_stack_lvl+0x241/0x360
[  173.010625][ T8723]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.010643][ T8723]  ? __pfx__printk+0x10/0x10
[  173.010711][ T8723]  ? __pfx_lock_release+0x10/0x10
[  173.010749][ T8723]  should_fail_ex+0x40a/0x550
[  173.010774][ T8723]  _copy_from_user+0x2d/0xb0
[  173.010793][ T8723]  copy_msghdr_from_user+0xae/0x680
[  173.010814][ T8723]  ? __pfx___might_resched+0x10/0x10
[  173.010835][ T8723]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  173.010858][ T8723]  ? do_recvmmsg+0x44e/0xab0
[  173.010875][ T8723]  ? __might_fault+0xaa/0x120
[  173.010895][ T8723]  do_recvmmsg+0x3bd/0xab0
[  173.010923][ T8723]  ? __pfx_do_recvmmsg+0x10/0x10
[  173.010957][ T8723]  ? ksys_write+0x22a/0x2b0
[  173.010975][ T8723]  ? __pfx_lock_release+0x10/0x10
[  173.011004][ T8723]  ? sb_end_write+0xe9/0x1c0
[  173.011025][ T8723]  ? vfs_write+0x7fa/0xd10
[  173.011044][ T8723]  ? __mutex_unlock_slowpath+0x227/0x800
[  173.011070][ T8723]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  173.011087][ T8723]  ? __fget_files+0x2a/0x410
[  173.011122][ T8723]  __x64_sys_recvmmsg+0x199/0x250
[  173.011143][ T8723]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  173.011162][ T8723]  ? do_syscall_64+0x100/0x230
[  173.011184][ T8723]  ? do_syscall_64+0xb6/0x230
[  173.011205][ T8723]  do_syscall_64+0xf3/0x230
[  173.011224][ T8723]  ? clear_bhb_loop+0x35/0x90
[  173.011247][ T8723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.011267][ T8723] RIP: 0033:0x7f1e9118d169
[  173.011283][ T8723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.011297][ T8723] RSP: 002b:00007f1e91ff2038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  173.011316][ T8723] RAX: ffffffffffffffda RBX: 00007f1e913a5fa0 RCX: 00007f1e9118d169
[  173.011328][ T8723] RDX: 000000000400007c RSI: 0000400000000f40 RDI: 0000000000000006
[  173.011339][ T8723] RBP: 00007f1e91ff2090 R08: 0000000000000000 R09: 0000000000000000
[  173.011378][ T8723] R10: 0000000000002302 R11: 0000000000000246 R12: 0000000000000002
[  173.011388][ T8723] R13: 0000000000000000 R14: 00007f1e913a5fa0 R15: 00007fffa5a40028
[  173.011414][ T8723]  </TASK>
[  173.543007][ T8735] xt_hashlimit: max too large, truncated to 1048576
[  173.792360][ T8750] ieee802154 phy0 wpan0: encryption failed: -22
[  173.805228][ T8753] __nla_validate_parse: 8 callbacks suppressed
[  173.805247][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.4.906'.
[  173.822809][ T8752] FAULT_INJECTION: forcing a failure.
[  173.822809][ T8752] name failslab, interval 1, probability 0, space 0, times 0
[  173.842527][ T8752] CPU: 0 UID: 0 PID: 8752 Comm: syz.1.908 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  173.842552][ T8752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.842563][ T8752] Call Trace:
[  173.842570][ T8752]  <TASK>
[  173.842578][ T8752]  dump_stack_lvl+0x241/0x360
[  173.842604][ T8752]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.842623][ T8752]  ? __pfx__printk+0x10/0x10
[  173.842642][ T8752]  ? kmem_cache_alloc_noprof+0x48/0x380
[  173.842664][ T8752]  ? __pfx___might_resched+0x10/0x10
[  173.842691][ T8752]  should_fail_ex+0x40a/0x550
[  173.842718][ T8752]  should_failslab+0xac/0x100
[  173.842740][ T8752]  ? __kernfs_new_node+0xd8/0x870
[  173.842759][ T8752]  kmem_cache_alloc_noprof+0x70/0x380
[  173.842785][ T8752]  __kernfs_new_node+0xd8/0x870
[  173.842807][ T8752]  ? up_write+0x1a9/0x590
[  173.842830][ T8752]  ? __pfx___kernfs_new_node+0x10/0x10
[  173.842849][ T8752]  ? up_write+0x1a9/0x590
[  173.842872][ T8752]  ? __pfx_up_write+0x10/0x10
[  173.842901][ T8752]  kernfs_new_node+0x137/0x240
[  173.842928][ T8752]  __kernfs_create_file+0x49/0x2e0
[  173.842947][ T8752]  sysfs_add_file_mode_ns+0x24a/0x310
[  173.842973][ T8752]  internal_create_group+0x782/0x12d0
[  173.843008][ T8752]  ? __pfx_internal_create_group+0x10/0x10
[  173.843043][ T8752]  sysfs_create_groups+0x56/0x120
[  173.843063][ T8752]  device_add_attrs+0xe5/0x600
[  173.843086][ T8752]  ? __pfx_device_add_attrs+0x10/0x10
[  173.843116][ T8752]  device_add+0x576/0xbf0
[  173.843137][ T8752]  ? device_initialize+0x266/0x460
[  173.843160][ T8752]  netdev_register_kobject+0x157/0x2f0
[  173.843180][ T8752]  register_netdevice+0x12c3/0x1b70
[  173.843212][ T8752]  ? __pfx_register_netdevice+0x10/0x10
[  173.843238][ T8752]  ? net_generic+0x1f/0x240
[  173.843256][ T8752]  ip6_tnl_create2+0x76/0x150
[  173.843274][ T8752]  ip6_tnl_newlink+0x2e7/0x5b0
[  173.843292][ T8752]  ? __pfx_ip6_tnl_newlink+0x10/0x10
[  173.843309][ T8752]  ? rtnl_create_link+0x95b/0xc90
[  173.843330][ T8752]  ? __pfx_ip6_tnl_newlink+0x10/0x10
[  173.843347][ T8752]  rtnl_newlink_create+0x37b/0xbd0
[  173.843374][ T8752]  ? __pfx_aa_get_newest_label+0x10/0x10
[  173.843400][ T8752]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  173.843426][ T8752]  ? __pfx___mutex_lock+0x10/0x10
[  173.843462][ T8752]  ? ns_capable+0x8a/0xf0
[  173.843483][ T8752]  rtnl_newlink+0x167a/0x1d90
[  173.843503][ T8752]  ? stack_depot_save_flags+0x37/0x940
[  173.843535][ T8752]  ? __pfx_rtnl_newlink+0x10/0x10
[  173.843551][ T8752]  ? __netlink_deliver_tap+0x561/0x7f0
[  173.843571][ T8752]  ? __pfx_validate_chain+0x10/0x10
[  173.843587][ T8752]  ? __sock_sendmsg+0x221/0x270
[  173.843604][ T8752]  ? ____sys_sendmsg+0x53a/0x860
[  173.843618][ T8752]  ? __sys_sendmsg+0x269/0x350
[  173.843632][ T8752]  ? do_syscall_64+0xf3/0x230
[  173.843648][ T8752]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.843689][ T8752]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  173.843714][ T8752]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.843745][ T8752]  ? mark_lock+0x9a/0x360
[  173.843764][ T8752]  ? __lock_acquire+0x1397/0x2100
[  173.843818][ T8752]  ? __pfx_lock_release+0x10/0x10
[  173.843855][ T8752]  ? __pfx_rtnl_newlink+0x10/0x10
[  173.843878][ T8752]  rtnetlink_rcv_msg+0x791/0xcf0
[  173.843897][ T8752]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  173.843923][ T8752]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  173.843952][ T8752]  ? ref_tracker_free+0x643/0x7e0
[  173.843976][ T8752]  netlink_rcv_skb+0x206/0x480
[  173.843997][ T8752]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  173.844021][ T8752]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  173.844065][ T8752]  ? netlink_deliver_tap+0x2e/0x1b0
[  173.844088][ T8752]  netlink_unicast+0x7f6/0x990
[  173.844117][ T8752]  ? __pfx_netlink_unicast+0x10/0x10
[  173.844134][ T8752]  ? __virt_addr_valid+0x45f/0x530
[  173.844151][ T8752]  ? __phys_addr_symbol+0x2f/0x70
[  173.844166][ T8752]  ? __check_object_size+0x47a/0x730
[  173.844191][ T8752]  netlink_sendmsg+0x8de/0xcb0
[  173.844223][ T8752]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.844249][ T8752]  ? aa_sock_msg_perm+0x91/0x160
[  173.844277][ T8752]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.844297][ T8752]  __sock_sendmsg+0x221/0x270
[  173.844320][ T8752]  ____sys_sendmsg+0x53a/0x860
[  173.844347][ T8752]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.844362][ T8752]  ? __fget_files+0x2a/0x410
[  173.844387][ T8752]  ? __fget_files+0x2a/0x410
[  173.844417][ T8752]  __sys_sendmsg+0x269/0x350
[  173.844441][ T8752]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.844478][ T8752]  ? do_sys_openat2+0x17a/0x1d0
[  173.844528][ T8752]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  173.844552][ T8752]  ? do_syscall_64+0x100/0x230
[  173.844574][ T8752]  ? do_syscall_64+0xb6/0x230
[  173.844595][ T8752]  do_syscall_64+0xf3/0x230
[  173.844613][ T8752]  ? clear_bhb_loop+0x35/0x90
[  173.844635][ T8752]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.844654][ T8752] RIP: 0033:0x7f320238d169
[  173.844670][ T8752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.844684][ T8752] RSP: 002b:00007f32001f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.844703][ T8752] RAX: ffffffffffffffda RBX: 00007f32025a5fa0 RCX: 00007f320238d169
[  173.844715][ T8752] RDX: 0000000000008044 RSI: 0000400000000440 RDI: 0000000000000004
[  173.844726][ T8752] RBP: 00007f32001f6090 R08: 0000000000000000 R09: 0000000000000000
[  173.844736][ T8752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  173.844745][ T8752] R13: 0000000000000000 R14: 00007f32025a5fa0 R15: 00007ffcb7a2c678
[  173.844773][ T8752]  </TASK>
[  174.603473][ T8763] xt_CT: You must specify a L4 protocol and not use inversions on it
[  174.854430][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.1.916'.
[  174.863670][ T8777] netlink: 16 bytes leftover after parsing attributes in process `syz.1.916'.
[  174.912481][ T8781] netlink: 'syz.4.917': attribute type 1 has an invalid length.
[  174.978332][ T8781] 8021q: adding VLAN 0 to HW filter on device bond1
[  174.988436][ T8777] xt_hashlimit: max too large, truncated to 1048576
[  174.994657][ T8790] netlink: 12 bytes leftover after parsing attributes in process `syz.2.918'.
[  175.039527][ T8786] bond1: (slave bridge6): making interface the new active one
[  175.052272][ T8786] bond1: (slave bridge6): Enslaving as an active interface with an up link
[  175.174638][ T8799] netlink: 1688 bytes leftover after parsing attributes in process `syz.0.921'.
[  175.415509][ T8805] netlink: 4 bytes leftover after parsing attributes in process `syz.4.923'.
[  176.050968][ T8841] batman_adv: The newly added mac address (52:42:16:1a:69:2c) already exists on: virt_wifi0
[  176.081230][ T8841] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  176.108499][ T8844] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  176.180792][ T8835] pim6reg1: entered promiscuous mode
[  176.195952][ T8841] xt_hashlimit: max too large, truncated to 1048576
[  176.216621][ T8835] pim6reg1: entered allmulticast mode
[  176.507298][ T8856] syzkaller0: entered promiscuous mode
[  176.521920][ T8856] syzkaller0: entered allmulticast mode
[  176.546596][ T8856] netlink: 20 bytes leftover after parsing attributes in process `syz.1.936'.
[  176.561534][ T8863] netlink: 4 bytes leftover after parsing attributes in process `syz.2.937'.
[  177.148393][ T8878] FAULT_INJECTION: forcing a failure.
[  177.148393][ T8878] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.171167][ T8878] CPU: 1 UID: 0 PID: 8878 Comm: syz.4.943 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  177.171195][ T8878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.171223][ T8878] Call Trace:
[  177.171230][ T8878]  <TASK>
[  177.171238][ T8878]  dump_stack_lvl+0x241/0x360
[  177.171265][ T8878]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.171282][ T8878]  ? __pfx__printk+0x10/0x10
[  177.171302][ T8878]  ? 0xffffffffa0001ba8
[  177.171324][ T8878]  should_fail_ex+0x40a/0x550
[  177.171351][ T8878]  _copy_to_user+0x31/0xb0
[  177.171373][ T8878]  bpf_test_finish+0x2e6/0x890
[  177.171403][ T8878]  ? __pfx_bpf_test_finish+0x10/0x10
[  177.171422][ T8878]  ? rep_movs_alternative+0x4a/0x70
[  177.171448][ T8878]  ? bpf_test_init+0x137/0x160
[  177.171471][ T8878]  bpf_prog_test_run_xdp+0x8f4/0x11e0
[  177.171498][ T8878]  ? __pfx_lock_release+0x10/0x10
[  177.171529][ T8878]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  177.171551][ T8878]  ? __fget_files+0x2a/0x410
[  177.171575][ T8878]  ? __fget_files+0x2a/0x410
[  177.171600][ T8878]  ? fput+0x21b/0x290
[  177.171618][ T8878]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  177.171641][ T8878]  bpf_prog_test_run+0x2e4/0x360
[  177.171666][ T8878]  __sys_bpf+0x487/0x820
[  177.171688][ T8878]  ? __pfx___sys_bpf+0x10/0x10
[  177.171721][ T8878]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  177.171745][ T8878]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  177.171768][ T8878]  ? do_syscall_64+0x100/0x230
[  177.171794][ T8878]  __x64_sys_bpf+0x7c/0x90
[  177.171814][ T8878]  do_syscall_64+0xf3/0x230
[  177.171832][ T8878]  ? clear_bhb_loop+0x35/0x90
[  177.171855][ T8878]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.171875][ T8878] RIP: 0033:0x7f1e9118d169
[  177.171889][ T8878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.171902][ T8878] RSP: 002b:00007f1e91ff2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  177.171921][ T8878] RAX: ffffffffffffffda RBX: 00007f1e913a5fa0 RCX: 00007f1e9118d169
[  177.171933][ T8878] RDX: 0000000000000050 RSI: 0000400000000000 RDI: 000000000000000a
[  177.171944][ T8878] RBP: 00007f1e91ff2090 R08: 0000000000000000 R09: 0000000000000000
[  177.171954][ T8878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  177.171963][ T8878] R13: 0000000000000000 R14: 00007f1e913a5fa0 R15: 00007fffa5a40028
[  177.171989][ T8878]  </TASK>
[  177.541695][ T8886] netlink: 4 bytes leftover after parsing attributes in process `syz.4.945'.
[  177.737181][ T8888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.945'.
[  177.928478][ T8899] xt_hashlimit: max too large, truncated to 1048576
[  179.035874][ T8893] __nla_validate_parse: 1 callbacks suppressed
[  179.035889][ T8893] netlink: 16 bytes leftover after parsing attributes in process `syz.0.947'.
[  179.262042][ T8912] netlink: 'syz.1.951': attribute type 10 has an invalid length.
[  179.303590][ T8912] veth0_vlan: left promiscuous mode
[  179.313129][ T8912] veth0_vlan: entered promiscuous mode
[  179.328337][ T8912] team0: Device veth0_vlan failed to register rx_handler
[  179.377620][ T8920] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.955'.
[  179.519543][ T8924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.954'.
[  179.720026][ T8935] netlink: 40 bytes leftover after parsing attributes in process `syz.1.959'.
[  179.987348][ T8944] netlink: 16 bytes leftover after parsing attributes in process `syz.2.963'.
[  180.023829][ T8944] netlink: 16 bytes leftover after parsing attributes in process `syz.2.963'.
[  180.083494][ T8949] batman_adv: The newly added mac address (52:42:16:1a:69:2c) already exists on: virt_wifi0
[  180.096125][ T8949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  180.210426][ T8949] xt_hashlimit: max too large, truncated to 1048576
[  180.340044][ T8957] netlink: 56 bytes leftover after parsing attributes in process `syz.0.966'.
[  180.584416][ T8969] FAULT_INJECTION: forcing a failure.
[  180.584416][ T8969] name failslab, interval 1, probability 0, space 0, times 0
[  180.649942][ T8969] CPU: 0 UID: 0 PID: 8969 Comm: syz.0.969 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  180.649968][ T8969] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.649978][ T8969] Call Trace:
[  180.649984][ T8969]  <TASK>
[  180.649992][ T8969]  dump_stack_lvl+0x241/0x360
[  180.650029][ T8969]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.650051][ T8969]  ? __pfx__printk+0x10/0x10
[  180.650074][ T8969]  ? klist_iter_exit+0x9d/0x100
[  180.650092][ T8969]  ? do_raw_spin_lock+0x14f/0x370
[  180.650117][ T8969]  should_fail_ex+0x40a/0x550
[  180.650146][ T8969]  should_failslab+0xac/0x100
[  180.650168][ T8969]  kmem_cache_alloc_node_noprof+0x77/0x380
[  180.650190][ T8969]  ? __alloc_skb+0x1c3/0x440
[  180.650210][ T8969]  __alloc_skb+0x1c3/0x440
[  180.650232][ T8969]  ? __pfx___alloc_skb+0x10/0x10
[  180.650259][ T8969]  ieee802154_nl_new_reply+0x32/0xf0
[  180.650282][ T8969]  ieee802154_add_iface+0x27b/0x7d0
[  180.650309][ T8969]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  180.650331][ T8969]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  180.650358][ T8969]  genl_rcv_msg+0xb1f/0xec0
[  180.650385][ T8969]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.650429][ T8969]  ? __pfx_lock_acquire+0x10/0x10
[  180.650451][ T8969]  ? __pfx_ieee802154_add_iface+0x10/0x10
[  180.650474][ T8969]  ? __pfx___might_resched+0x10/0x10
[  180.650505][ T8969]  netlink_rcv_skb+0x206/0x480
[  180.650527][ T8969]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.650545][ T8969]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  180.650604][ T8969]  genl_rcv+0x28/0x40
[  180.650618][ T8969]  netlink_unicast+0x7f6/0x990
[  180.650648][ T8969]  ? __pfx_netlink_unicast+0x10/0x10
[  180.650665][ T8969]  ? __virt_addr_valid+0x45f/0x530
[  180.650681][ T8969]  ? __phys_addr_symbol+0x2f/0x70
[  180.650696][ T8969]  ? __check_object_size+0x47a/0x730
[  180.650723][ T8969]  netlink_sendmsg+0x8de/0xcb0
[  180.650757][ T8969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.650783][ T8969]  ? aa_sock_msg_perm+0x91/0x160
[  180.650811][ T8969]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.650830][ T8969]  __sock_sendmsg+0x221/0x270
[  180.650854][ T8969]  ____sys_sendmsg+0x53a/0x860
[  180.650881][ T8969]  ? __pfx_____sys_sendmsg+0x10/0x10
[  180.650896][ T8969]  ? __fget_files+0x2a/0x410
[  180.650921][ T8969]  ? __fget_files+0x2a/0x410
[  180.650951][ T8969]  __sys_sendmsg+0x269/0x350
[  180.650974][ T8969]  ? __pfx___sys_sendmsg+0x10/0x10
[  180.651002][ T8969]  ? do_sys_openat2+0x17a/0x1d0
[  180.651051][ T8969]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  180.651075][ T8969]  ? do_syscall_64+0x100/0x230
[  180.651097][ T8969]  ? do_syscall_64+0xb6/0x230
[  180.651119][ T8969]  do_syscall_64+0xf3/0x230
[  180.651136][ T8969]  ? clear_bhb_loop+0x35/0x90
[  180.651160][ T8969]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.651179][ T8969] RIP: 0033:0x7f07f1f8d169
[  180.651201][ T8969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.651215][ T8969] RSP: 002b:00007f07f2ebe038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.651240][ T8969] RAX: ffffffffffffffda RBX: 00007f07f21a5fa0 RCX: 00007f07f1f8d169
[  180.651252][ T8969] RDX: 16ba183637aa1df2 RSI: 00004000000087c0 RDI: 0000000000000004
[  180.651264][ T8969] RBP: 00007f07f2ebe090 R08: 0000000000000000 R09: 0000000000000000
[  180.651274][ T8969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.651284][ T8969] R13: 0000000000000000 R14: 00007f07f21a5fa0 R15: 00007ffcb7752578
[  180.651313][ T8969]  </TASK>
[  180.881773][ T8976] netlink: 4 bytes leftover after parsing attributes in process `syz.1.971'.
[  181.309063][ T8990] netlink: 16 bytes leftover after parsing attributes in process `syz.2.975'.
[  181.350236][ T8990] netlink: 4 bytes leftover after parsing attributes in process `syz.2.975'.
[  181.749787][ T9005] xt_hashlimit: max too large, truncated to 1048576
[  182.026057][ T9013] IPVS: length: 78 != 8
[  182.233049][ T9025] netlink: 'syz.2.984': attribute type 4 has an invalid length.
[  182.735832][ T9035] netlink: 'syz.1.989': attribute type 10 has an invalid length.
[  182.770935][ T9035] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  183.088086][ T9051] xt_hashlimit: max too large, truncated to 1048576
[  183.762276][ T9064] ------------[ cut here ]------------
[  183.768436][ T9064] RTNL: assertion failed at net/core/dev.c (1769)
[  183.786738][ T9064] WARNING: CPU: 0 PID: 9064 at net/core/dev.c:1769 dev_setup_tc+0x315/0x360
[  183.795499][ T9064] Modules linked in:
[  183.799652][ T9064] CPU: 0 UID: 0 PID: 9064 Comm: syz.1.995 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  183.810328][ T9064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  183.820499][ T9064] RIP: 0010:dev_setup_tc+0x315/0x360
[  183.825880][ T9064] Code: cc 49 89 ee e8 dc da f7 f7 c6 05 c0 39 5d 06 01 90 48 c7 c7 a0 5e 2e 8d 48 c7 c6 80 5e 2e 8d ba e9 06 00 00 e8 3c 97 b7 f7 90 <0f> 0b 90 90 e9 66 fd ff ff 89 d1 80 e1 07 38 c1 0f 8c aa fd ff ff
[  183.845608][ T9064] RSP: 0018:ffffc90004a1eed0 EFLAGS: 00010246
[  183.852330][ T9064] RAX: 126591eb4d438600 RBX: 0000000000000000 RCX: 0000000000080000
[  183.861181][ T9064] RDX: ffffc9000fe0a000 RSI: 0000000000004806 RDI: 0000000000004807
[  183.869262][ T9064] RBP: ffff888028c1c008 R08: ffffffff81818e32 R09: 1ffff110170c519a
[  183.877339][ T9064] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffffc90004a1f070
[  183.885343][ T9064] R13: ffffffff8d4ab1e0 R14: ffff888028c1c008 R15: ffff888028c1c000
[  183.893422][ T9064] FS:  00007f32001b46c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  183.902453][ T9064] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  183.909143][ T9064] CR2: 0000000000000000 CR3: 00000000330b6000 CR4: 00000000003526f0
[  183.917204][ T9064] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  183.925398][ T9064] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  183.933475][ T9064] Call Trace:
[  183.936859][ T9064]  <TASK>
[  183.939815][ T9064]  ? __warn+0x165/0x4d0
[  183.943999][ T9064]  ? dev_setup_tc+0x315/0x360
[  183.948751][ T9064]  ? report_bug+0x2b3/0x500
[  183.953801][ T9064]  ? dev_setup_tc+0x315/0x360
[  183.959154][ T9064]  ? handle_bug+0x60/0x90
[  183.963539][ T9064]  ? exc_invalid_op+0x1a/0x50
[  183.968313][ T9064]  ? asm_exc_invalid_op+0x1a/0x20
[  183.973377][ T9064]  ? __warn_printk+0x292/0x360
[  183.978248][ T9064]  ? dev_setup_tc+0x315/0x360
[  183.982975][ T9064]  nf_flow_table_offload_setup+0x2ff/0x710
[  183.988902][ T9064]  ? __pfx_ieee80211_netdev_setup_tc+0x10/0x10
[  183.995100][ T9064]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  184.001584][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.006736][ T9064]  ? nft_pernet+0x23/0x240
[  184.011190][ T9064]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  184.017630][ T9064]  nft_register_flowtable_net_hooks+0x24c/0x570
[  184.023938][ T9064]  nf_tables_newflowtable+0x19f4/0x23d0
[  184.029607][ T9064]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  184.035546][ T9064]  ? nfnl_pernet+0x23/0x240
[  184.040172][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.045291][ T9064]  ? __nla_parse+0x40/0x60
[  184.049799][ T9064]  nfnetlink_rcv+0x14e3/0x2ab0
[  184.055129][ T9064]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  184.061013][ T9064]  ? netlink_deliver_tap+0x2e/0x1b0
[  184.066293][ T9064]  ? skb_clone+0x240/0x390
[  184.070743][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.075883][ T9064]  ? netlink_deliver_tap+0x2e/0x1b0
[  184.081125][ T9064]  netlink_unicast+0x7f6/0x990
[  184.086026][ T9064]  ? __pfx_netlink_unicast+0x10/0x10
[  184.091341][ T9064]  ? __virt_addr_valid+0x45f/0x530
[  184.096550][ T9064]  ? __phys_addr_symbol+0x2f/0x70
[  184.101605][ T9064]  ? __check_object_size+0x47a/0x730
[  184.106975][ T9064]  netlink_sendmsg+0x8de/0xcb0
[  184.111785][ T9064]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.117275][ T9064]  ? aa_sock_msg_perm+0x91/0x160
[  184.122370][ T9064]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.127805][ T9064]  __sock_sendmsg+0x221/0x270
[  184.132524][ T9064]  ____sys_sendmsg+0x53a/0x860
[  184.137416][ T9064]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.142766][ T9064]  ? futex_wake+0x523/0x5c0
[  184.147443][ T9064]  __sys_sendmsg+0x269/0x350
[  184.152081][ T9064]  ? __pfx_futex_wake+0x10/0x10
[  184.157547][ T9064]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.162753][ T9064]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  184.169745][ T9064]  ? do_syscall_64+0x100/0x230
[  184.174557][ T9064]  ? do_syscall_64+0xb6/0x230
[  184.179426][ T9064]  do_syscall_64+0xf3/0x230
[  184.184097][ T9064]  ? clear_bhb_loop+0x35/0x90
[  184.188869][ T9064]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.194806][ T9064] RIP: 0033:0x7f320238d169
[  184.199353][ T9064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.219060][ T9064] RSP: 002b:00007f32001b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.227557][ T9064] RAX: ffffffffffffffda RBX: 00007f32025a6160 RCX: 00007f320238d169
[  184.235631][ T9064] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 000000000000000f
[  184.243639][ T9064] RBP: 00007f320240e2a0 R08: 0000000000000000 R09: 0000000000000000
[  184.251901][ T9064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.260483][ T9064] R13: 0000000000000000 R14: 00007f32025a6160 R15: 00007ffcb7a2c678
[  184.269124][ T9064]  </TASK>
[  184.272205][ T9064] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  184.279502][ T9064] CPU: 0 UID: 0 PID: 9064 Comm: syz.1.995 Not tainted 6.14.0-rc5-syzkaller-01064-g2525e16a2bae #0
[  184.290109][ T9064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.300189][ T9064] Call Trace:
[  184.303468][ T9064]  <TASK>
[  184.306397][ T9064]  dump_stack_lvl+0x241/0x360
[  184.311081][ T9064]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.316278][ T9064]  ? __pfx__printk+0x10/0x10
[  184.320924][ T9064]  ? vscnprintf+0x5d/0x90
[  184.325256][ T9064]  panic+0x349/0x880
[  184.329153][ T9064]  ? __warn+0x174/0x4d0
[  184.333339][ T9064]  ? __pfx_panic+0x10/0x10
[  184.337762][ T9064]  __warn+0x344/0x4d0
[  184.341756][ T9064]  ? dev_setup_tc+0x315/0x360
[  184.346458][ T9064]  report_bug+0x2b3/0x500
[  184.350799][ T9064]  ? dev_setup_tc+0x315/0x360
[  184.355501][ T9064]  handle_bug+0x60/0x90
[  184.359680][ T9064]  exc_invalid_op+0x1a/0x50
[  184.364193][ T9064]  asm_exc_invalid_op+0x1a/0x20
[  184.369484][ T9064] RIP: 0010:dev_setup_tc+0x315/0x360
[  184.374775][ T9064] Code: cc 49 89 ee e8 dc da f7 f7 c6 05 c0 39 5d 06 01 90 48 c7 c7 a0 5e 2e 8d 48 c7 c6 80 5e 2e 8d ba e9 06 00 00 e8 3c 97 b7 f7 90 <0f> 0b 90 90 e9 66 fd ff ff 89 d1 80 e1 07 38 c1 0f 8c aa fd ff ff
[  184.394391][ T9064] RSP: 0018:ffffc90004a1eed0 EFLAGS: 00010246
[  184.400460][ T9064] RAX: 126591eb4d438600 RBX: 0000000000000000 RCX: 0000000000080000
[  184.408428][ T9064] RDX: ffffc9000fe0a000 RSI: 0000000000004806 RDI: 0000000000004807
[  184.416405][ T9064] RBP: ffff888028c1c008 R08: ffffffff81818e32 R09: 1ffff110170c519a
[  184.424378][ T9064] R10: dffffc0000000000 R11: ffffed10170c519b R12: ffffc90004a1f070
[  184.432357][ T9064] R13: ffffffff8d4ab1e0 R14: ffff888028c1c008 R15: ffff888028c1c000
[  184.440341][ T9064]  ? __warn_printk+0x292/0x360
[  184.445125][ T9064]  nf_flow_table_offload_setup+0x2ff/0x710
[  184.450942][ T9064]  ? __pfx_ieee80211_netdev_setup_tc+0x10/0x10
[  184.457101][ T9064]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  184.463441][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.468481][ T9064]  ? nft_pernet+0x23/0x240
[  184.472899][ T9064]  ? __pfx_nf_flow_table_offload_setup+0x10/0x10
[  184.479230][ T9064]  nft_register_flowtable_net_hooks+0x24c/0x570
[  184.485483][ T9064]  nf_tables_newflowtable+0x19f4/0x23d0
[  184.491045][ T9064]  ? __pfx_nf_tables_newflowtable+0x10/0x10
[  184.496941][ T9064]  ? nfnl_pernet+0x23/0x240
[  184.501448][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.506493][ T9064]  ? __nla_parse+0x40/0x60
[  184.510913][ T9064]  nfnetlink_rcv+0x14e3/0x2ab0
[  184.515704][ T9064]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  184.520863][ T9064]  ? netlink_deliver_tap+0x2e/0x1b0
[  184.526072][ T9064]  ? skb_clone+0x240/0x390
[  184.530490][ T9064]  ? __pfx_lock_release+0x10/0x10
[  184.535528][ T9064]  ? netlink_deliver_tap+0x2e/0x1b0
[  184.540729][ T9064]  netlink_unicast+0x7f6/0x990
[  184.545502][ T9064]  ? __pfx_netlink_unicast+0x10/0x10
[  184.550784][ T9064]  ? __virt_addr_valid+0x45f/0x530
[  184.555894][ T9064]  ? __phys_addr_symbol+0x2f/0x70
[  184.560922][ T9064]  ? __check_object_size+0x47a/0x730
[  184.566210][ T9064]  netlink_sendmsg+0x8de/0xcb0
[  184.570995][ T9064]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.576286][ T9064]  ? aa_sock_msg_perm+0x91/0x160
[  184.581231][ T9064]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.586514][ T9064]  __sock_sendmsg+0x221/0x270
[  184.591197][ T9064]  ____sys_sendmsg+0x53a/0x860
[  184.596050][ T9064]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.601343][ T9064]  ? futex_wake+0x523/0x5c0
[  184.605862][ T9064]  __sys_sendmsg+0x269/0x350
[  184.610454][ T9064]  ? __pfx_futex_wake+0x10/0x10
[  184.615309][ T9064]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.620450][ T9064]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  184.626780][ T9064]  ? do_syscall_64+0x100/0x230
[  184.631551][ T9064]  ? do_syscall_64+0xb6/0x230
[  184.636231][ T9064]  do_syscall_64+0xf3/0x230
[  184.640733][ T9064]  ? clear_bhb_loop+0x35/0x90
[  184.645409][ T9064]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.651301][ T9064] RIP: 0033:0x7f320238d169
[  184.655712][ T9064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.675320][ T9064] RSP: 002b:00007f32001b4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.683743][ T9064] RAX: ffffffffffffffda RBX: 00007f32025a6160 RCX: 00007f320238d169
[  184.691719][ T9064] RDX: 0000000000000000 RSI: 0000400000000300 RDI: 000000000000000f
[  184.699695][ T9064] RBP: 00007f320240e2a0 R08: 0000000000000000 R09: 0000000000000000
[  184.707665][ T9064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.715636][ T9064] R13: 0000000000000000 R14: 00007f32025a6160 R15: 00007ffcb7a2c678
[  184.723623][ T9064]  </TASK>
[  184.726923][ T9064] Kernel Offset: disabled
[  184.731328][ T9064] Rebooting in 86400 seconds..