last executing test programs:

7.918735026s ago: executing program 2 (id=5426):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000fdffffff0000000000000000850000002c00000095"], &(0x7f0000000040)='GPL\x00', 0x5}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000440)={r1, r2, 0x25, 0x0, @val=@netkit={@void, @value=r1}}, 0x1c)
mkdirat$cgroup(0xffffffffffffffff, 0x0, 0x1ff)
syz_emit_ethernet(0xfdef, &(0x7f0000000880)={@link_local, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "010448", 0x20, 0x3a, 0xff, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @remote, [{0x2, 0x1, "36dad83aea8d"}]}}}}}}, 0x0)

7.645004653s ago: executing program 2 (id=5428):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, 0x0, 0x10000)
recvfrom$unix(r2, &(0x7f0000000140)=""/263, 0x107, 0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4, 0x0, 0x8}, 0x18)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x8000000000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7fffffff, 0xfffffffffffffffc}, 0x0, 0x0)

6.650858744s ago: executing program 2 (id=5435):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000000079104800000000006104000000000000"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000300)=ANY=[@ANYRES16=0x0, @ANYRES32, @ANYBLOB="81be7edd5b1702aef10805e4e435253acca870d819bcf0b49aa23ecb8cd8c1d9396048eca55f61232951786e880d74b8de1c257cd055f46ca8b87dc4093b053da7c81efa69518c4bce9853dd027040872e4c951a5e468ffeadeed057f67c68c06a5909b75a469a37680ff33ead10ba57f50a29b1bc80f1c2ce642492722bce33d5d7806c6a753920c08372c8839d1de31dfc4dc7845297ea8effe009973751f761a6d03b6ca9900de7fa83c22b3a6eff5ad4ad", @ANYRES32=0x0, @ANYRES32], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000280)={0x3, 0x10001, 0x77, &(0x7f0000000180)=""/119})
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r3, 0x0, 0x484, &(0x7f00000000c0)=""/24, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESOCT=r1], 0x10)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000007d80)={0x0, 0x0, &(0x7f0000007d00)=[{&(0x7f0000000b00)=ANY=[@ANYBLOB="140000006a0015"], 0x14}], 0x1}, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000080)=ANY=[@ANYRES32=r2], 0x40}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x29, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000000), 0x4)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x1c, 0x16, 0xa01, 0x70bd28, 0x25dfdbfc, {0x2}, [@generic="2ab30fb753"]}, 0x1c}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r6)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601"], 0x26c0}}, 0x4000)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r9, 0x400448e3, &(0x7f0000000100)={0x0, 0x4000, '\x00', 0x2})

5.839322529s ago: executing program 2 (id=5441):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, r0)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000001001000001000000dc0000000000000079ddf87a6fb3d45ac1383b9f9d6edae23406000000000000003c6de234f51a47928ddb022e4ad434cb99572b858bb59e38"], 0x18}, 0xfc00)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1002}, 0x28)
r2 = epoll_create1(0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
ppoll(&(0x7f0000000100)=[{r2, 0x1d0}, {r4, 0x80}, {r3}], 0x3, &(0x7f0000000180)={0x77359400}, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r4, 0x0, 0x86, 0xc1, &(0x7f0000000580)="45340c8c727786e54b91e248e8b1cf41f1ea91c80b98d1ce27dec79f11e27fb4c5155c6af658c0705d999b3c1016fd0ae365ae934d9093cb400e2f29cd0587c44d7bfc69e6e19bd132e4513038c907f654cf38cad12eeceb1c8bf151c7d627c8899cc47e98731d59c2b523184053c35e6c434ffa11fd7ff102809e446bec5c9240cba55141ef", &(0x7f0000000780)=""/193, 0x94, 0x0, 0x12, 0x5, &(0x7f00000001c0)="ecfc9bbae35bbe4d410f35c21f195557215a", &(0x7f0000000640)="e8ac8497c3", 0x1, 0x0, 0x9a77}, 0x50)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000380)='/', 0x0}, 0x20)
recvmmsg(r5, &(0x7f0000005c80), 0x400030f, 0x0, 0x0)

2.742331289s ago: executing program 3 (id=5465):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r2)
getsockname$packet(r2, &(0x7f00000002c0)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000001240)=@delchain={0x48, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {0xfff3, 0xffff}, {0x3, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x18, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x14, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}]}, @TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x4}]}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40044}, 0x4804)

2.599462394s ago: executing program 3 (id=5466):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000300)=ANY=[@ANYRES16=0x0, @ANYRES32, @ANYBLOB="81be7edd5b1702aef10805e4e435253acca870d819bcf0b49aa23ecb8cd8c1d9396048eca55f61232951786e880d74b8de1c257cd055f46ca8b87dc4093b053da7c81efa69518c4bce9853dd027040872e4c951a5e468ffeadeed057f67c68c06a5909b75a469a37680ff33ead10ba57f50a29b1bc80f1c2ce642492722bce33d5d7806c6a753920c08372c8839d1de31dfc4dc7845297ea8effe009973751f761a6d03b6ca9900de7fa83c22b3a6eff5ad4ad", @ANYRES32=0x0, @ANYRES32], 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
ioctl$FS_IOC_READ_VERITY_METADATA(r1, 0xc0286687, &(0x7f0000000280)={0x3, 0x10001, 0x77, &(0x7f0000000180)=""/119})
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r2, 0x0, 0xd}, 0x18)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f00000000c0)=""/24, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)=ANY=[@ANYBLOB, @ANYRESOCT=r2], 0x10)
sendmsg$netlink(r0, &(0x7f0000007d80)={0x0, 0x0, &(0x7f0000007d00)=[{&(0x7f0000000b00)=ANY=[@ANYBLOB="140000006a0015"], 0x14}], 0x1}, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000080)=ANY=[@ANYRES32=r3], 0x40}}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r5, 0x0, 0x29, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x4c, &(0x7f0000000000), 0x4)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)={0x1c, 0x16, 0xa01, 0x70bd28, 0x25dfdbfc, {0x2}, [@generic="2ab30fb753"]}, 0x1c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r7)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010)
sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601"], 0x26c0}}, 0x4000)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
r10 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r10, 0x400448e3, &(0x7f0000000100)={0x0, 0x4000, '\x00', 0x2})

2.591543448s ago: executing program 1 (id=5468):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x34, 0x3, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x48000}, 0x880)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$802154_raw(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendto$packet(r2, &(0x7f00000000c0)="37fe0187610488b3d05d92015ee9ad38d34e1b37234adcd7a271dcd87da03ea3c1b0eb949065c29156446f75a0f3128825ba4f61f4b702bf489c5737aa6121dd0090d0729c829124ccc2197c0af536a4bf1add8929dddebfe0edee", 0xfffffffffffffec6, 0x0, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x0, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x94)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000580)=0x6)

2.421774385s ago: executing program 1 (id=5470):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x1, 0x0, 0x1000, {}, {0x77359400}, {0x0, 0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "cbfc0b9af540340c"}}, 0x48}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x1, 0x922, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "5c91440132bb112240fcbcc3fa9d0431575f8614d3538ce09c50eecd6ac579e8e83b944b666113f3afed71231e6653a13532f17b33515bdd7e1be14f53b9fc9b"}}, 0x80}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="02"], 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x10)

2.374678736s ago: executing program 0 (id=5471):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x25dddbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xffff}, {0xffff, 0xffff}, {0x1, 0xd}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd2a, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xa}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_CT_STATE={0x6, 0x5b, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x22044028}, 0x800)

2.366231541s ago: executing program 3 (id=5472):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000940)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000900)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newlink={0x44, 0x10, 0x437, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r3, 0x54583}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_LINK={0x8, 0x1, r3}]}}}, @IFLA_NUM_TX_QUEUES={0x8, 0x1f, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r3, @empty, @dev={0xac, 0x14, 0x14, 0x27}}}}], 0x20}}], 0x1, 0x80)

2.203191456s ago: executing program 4 (id=5473):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x2, 0x1, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r3, @ANYBLOB="01000000000000002800128009000100766c616e000000001800", @ANYRES64=r1], 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {0x2, 0xa}, {0x1, 0xfff1}, {0x7, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080)
r10 = socket$packet(0x11, 0x2, 0x300)
sendto$packet(r10, 0x0, 0x0, 0x44010, &(0x7f0000000040)={0x11, 0x17, r8, 0x1, 0xf9}, 0x14)
r11 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340)={0x0, 0xa}, 0xd58495bc, 0x0, 0xffffffffffffffff, 0x2dc2c9024f5022d2}, 0x29)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r12, 0x2000012, 0xffffffffffffffca, 0x0, &(0x7f0000000c40), 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bind$bt_l2cap(r11, &(0x7f00000005c0)={0x1f, 0x0, @none, 0x4}, 0xe)
connect$bt_l2cap(r11, &(0x7f0000000240)={0x1f, 0x0, @any, 0x4, 0x2}, 0xe)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
r14 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="3fcf00"/28], 0x48)
r15 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xd, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r15, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000000009500000000000000b7080000000000007b9a00fe00000000b509000000000000c3aaf0fff1000000bf86000000000000070800", @ANYRES32=r14, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0xe0, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x9f, 0x7, 0x1, 0x0, "ae30c6652469d550a8437e3e8b97770333c319c0df32f1650cf3bc1fb039336bc6eac347403829945d23b77ab77b46f5d56b910b6d11f60ed30ee657c6a80a56a1e6b8d81eff55fc789dcb0ba37ae7ae2384db372594d89857d1681b74369369ca3e38fea5f93939074886098ca26d7f083ee2b75acff176928b4b9336481c058901157bed37577ad5242a4cb9f219201e97408876ddf4eafc93f0"}]}], {0x14}}, 0x154}}, 0x0)

2.146469434s ago: executing program 3 (id=5474):
r0 = socket$kcm(0x10, 0x3, 0x10)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x10000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x25}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWSETELEM={0x58, 0xc, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x2c, 0x3, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x6}, @NFTA_SET_ELEM_EXPRESSIONS={0x1c, 0xb, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8}]}}}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xdc}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'hsr0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c0000005e0021a5553f8c6b23cbff070000e5373526a01edb"], 0x1c}, 0x1, 0x0, 0x0, 0x48050}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f00000005c0)=@newnexthop={0x40, 0x68, 0x100, 0x100003, 0x7ffffffd, {0x0, 0x0, 0x4}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0x14, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_IDLE_TIMER={0x8, 0x2, 0x7ff}, @NHA_RES_GROUP_UNBALANCED_TIMER={0x8, 0x3, 0x6}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r8, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket$kcm(0x2, 0xa, 0x2)
write$tun(r9, &(0x7f0000000200)={@val={0xa}, @void, @eth={@multicast, @local, @val={@val={0x88a8, 0x0, 0x1}, {0x8100, 0x1, 0x0, 0x1}}, {@ipv6={0x86dd, @udp={0xd, 0x6, '\x00 \x00', 0xc, 0x11, 0xff, @empty, @empty, {[], {0x4e23, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x1, 0x3, 0x4, 0x0, @void}}}}}}}}}, 0x4e)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r6], 0x20}}, 0x0)
sendmsg$nl_route(r7, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB="640000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000440012800e00010069703665727370616e00000030000280140006002001000000000000000000000000000214000700fc02000000000000000000000000070004001200"], 0x64}}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x1, 0x1, 0x0, {0x0, 0x0, 0x0, 0x0, 0x420}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0)
recvmmsg$unix(r4, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1}}], 0x4000000000003b9, 0x26022, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
r12 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000001380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020200000000000000000001a7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000600000095e5380352e34a8cafd8c03407f6af2154b0de6559a531ab89e01cddc76c1aec30ee738e7503f0a0c4a06d01e13237b77119f41daeb38008dd1761d3469a703621896f33ce21fc052c3ae89e969e"], &(0x7f0000000100)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', r3, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r12}, 0x10)

2.115098354s ago: executing program 0 (id=5475):
r0 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x6, @mcast2, 0x6}, 0x1c)
sendto$inet6(r0, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000500)="d7d5", 0x5e0, 0x4004841, &(0x7f0000000000)={0x11, 0x8100, r2, 0x1, 0xe0, 0x6, @local}, 0x14)
read(r0, &(0x7f0000001400)=""/4046, 0xffd8)

2.085758697s ago: executing program 1 (id=5476):
r0 = openat$ppp(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x25, 0x0, 0x0)
ioctl$PPPIOCSACTIVE(r0, 0x40047459, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
getsockname(r2, &(0x7f0000000280)=@ll={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @link_local}, &(0x7f00000000c0)=0xb0)
sendmsg$nl_route_sched(r1, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000009380)={&(0x7f0000003b00)=@deltfilter={0x34, 0x2d, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0x7, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x200480c4}, 0x0)

1.915007671s ago: executing program 4 (id=5477):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xfff3, 0x7}, {}, {0xa, 0x1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14, 0x2, [@TCA_CGROUP_EMATCHES={0x10, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x40010)

1.910174041s ago: executing program 1 (id=5478):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
sendto$inet6(r4, &(0x7f00000005c0)="f5", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffffc, @rand_addr=' \x01\x00'}, 0x1c)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r3, &(0x7f0000000100), 0x1, 0x2b, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r5, 0x8b34, &(0x7f0000000000)={'virt_wifi0\x00', @random="0000230c1100"})
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)={0x7c, r2, 0x400, 0x70bd25, 0x25dfdbfb, {{}, {@void, @void}}, [@chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x9}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x5}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x33}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x7}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1699}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0xa}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x3}], @NL80211_ATTR_HANDLE_DFS={0x4}, @NL80211_ATTR_BSS_BASIC_RATES={0x1b, 0x24, [{0x5}, {0x16}, {0x36}, {0x48}, {0x4, 0x1}, {0x2, 0x1}, {0xb}, {0x24, 0x1}, {0x6c}, {0x36, 0x1}, {0x24}, {0x36, 0x1}, {0x24}, {0x4}, {0x15, 0x1}, {0x30}, {0x6c, 0x1}, {0x16}, {0x9}, {0x60}, {0x9}, {0x30}, {0x6c}]}]}, 0x7c}}, 0x44004)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
sendmsg$NL80211_CMD_GET_SCAN(r1, &(0x7f00000005c0)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000580)={&(0x7f0000000600)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="020028bd7000fedbdf25200000000c009900f1000000570000012501342d6ab05b435f8a573572c0dc587627e56d0abe0d4e314dd40bf7ff00fdc1b7b0a079ca420dad9fbbc4acbd23ddbc0497e18d09bbcf3844cd6808e6e61bb66b26d2199d828f790e03817bb697a282df89eea4c3af734ff7410821e4be63eee12c9d3ed46274105cd6f995120a3df67671a81eb1f870c95e6e323eca0634521c30822c69d21a500898055307f3e6326172ee34a1d98e40d965fbd751463208bc62c9c6c482fc870d555ea61180ea087d7ffcef15e977eef22235712784f4654e5b32ede870475c683e0ded686aa3"], 0x20}, 0x1, 0x0, 0x0, 0x8844}, 0x800)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r6}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
r8 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r8, 0x8922, &(0x7f0000000180)={'netdevsim0\x00', 0x7fff})
ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f00000001c0)={'tunl0\x00'})

1.874924738s ago: executing program 2 (id=5479):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x4c}}, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000c80)={0x5c, 0x9, 0x6, 0x3, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x34, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @remote}}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0xe1f}, @IPSET_ATTR_PROTO={0x5, 0x7, 0x88}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10000042}, 0x90)

1.726358268s ago: executing program 2 (id=5480):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, r0)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f0000000800)=ANY=[], 0x18}, 0xfc00)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1002}, 0x28)
r2 = epoll_create1(0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
ppoll(&(0x7f0000000100)=[{r2, 0x1d0}, {r4, 0x80}, {r3}], 0x3, &(0x7f0000000180)={0x77359400}, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r4, 0x0, 0x86, 0xc1, &(0x7f0000000580)="45340c8c727786e54b91e248e8b1cf41f1ea91c80b98d1ce27dec79f11e27fb4c5155c6af658c0705d999b3c1016fd0ae365ae934d9093cb400e2f29cd0587c44d7bfc69e6e19bd132e4513038c907f654cf38cad12eeceb1c8bf151c7d627c8899cc47e98731d59c2b523184053c35e6c434ffa11fd7ff102809e446bec5c9240cba55141ef", &(0x7f0000000780)=""/193, 0x94, 0x0, 0x12, 0x5, &(0x7f00000001c0)="ecfc9bbae35bbe4d410f35c21f195557215a", &(0x7f0000000640)="e8ac8497c3", 0x1, 0x0, 0x9a77}, 0x50)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000380)='/', 0x0}, 0x20)
recvmmsg(r5, &(0x7f0000005c80), 0x400030f, 0x0, 0x0)

1.670619563s ago: executing program 4 (id=5481):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x34, 0x3, 0x6, 0x101, 0x0, 0x0, {0x7, 0x0, 0x5}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x48000}, 0x880)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$802154_raw(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendto$packet(r2, &(0x7f00000000c0)="37fe0187610488b3d05d92015ee9ad38d34e1b37234adcd7a271dcd87da03ea3c1b0eb949065c29156446f75a0f3128825ba4f61f4b702bf489c5737aa6121dd0090d0729c829124ccc2197c0af536a4bf1add8929dddebfe0edee", 0xfffffffffffffec6, 0x0, 0x0, 0x0)
socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x0, 0x0, 0x0}, 0x94)
pipe(&(0x7f00000001c0)={<r3=>0xffffffffffffffff})
ioctl$int_in(r3, 0x5452, &(0x7f0000000580)=0x6)

1.607198884s ago: executing program 4 (id=5482):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02})
readv(r1, &(0x7f00000001c0)=[{&(0x7f0000001400)=""/227, 0x1c}], 0x4)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000080)={0x0, 'syzkaller1\x00', {0x4}, 0x1})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', @link_local})

1.21803873s ago: executing program 4 (id=5483):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0x80, &(0x7f0000000100)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x1, 0x61, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x4d, 0x0, @wg=@initiation={0x1, 0x1, "65a252e7cb7a5918c004a9971a46afced2c32642b1ec9fe34818d8ccd82041b7", "c930713c550e74ee13c2638ac75b2a9666efd31a34fce4498df8105d8bd8ed283a220c3a9becd8a70d3607ea8270d351", "ae12e16b560f2f8ac4ca3e745ce285f12f6e8719e7f1e7f286a68f76", {"980aa8fb8f80d69f1fb587086447e93e", "55e824bb69e833bd36300b088233545a"}}}}}}}, 0x0)
recvmmsg(r0, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000004080)=""/4096, 0x1000}, 0xc6}], 0x1, 0x20, 0x0)
setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x3, 0x4)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0)

1.074664888s ago: executing program 0 (id=5484):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(0x3)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000f00)=0x1000000, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'veth0_macvtap\x00', <r1=>0x0})
sendmmsg$inet(r0, &(0x7f0000000000)=[{{&(0x7f0000000040)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000440)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r1, @local, @loopback}}}], 0x20}}], 0x1, 0x0)

1.024360226s ago: executing program 0 (id=5485):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000001c0)={0x0, 0x1, 0x20}, 0xc)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f0000000300)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x7e)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0xe0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x2, @loopback, 0xfffffffd}}, 0x0, 0x0, 0x5000000, 0x0, 0x54, 0x6}, 0x9c)

964.115745ms ago: executing program 1 (id=5486):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x18}}, [], [], 'wg1\x00', 'caif0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x4, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000240)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x1300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

827.821625ms ago: executing program 3 (id=5487):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(ecb-aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000040)="11da3cf44b1a8c3d8a39ccbd630e8ef9170ccf07ef1800322de53ae3b183ee66", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x80000)
recvmsg$can_j1939(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001600)=""/113, 0x71}, {&(0x7f0000000600)=""/4095, 0xfff}], 0x2}, 0x12000)
sendmmsg$alg(r1, &(0x7f00000001c0)=[{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000001880)="2cbddd39dad9edc182feabcec21043acf4901b5df84f6709085697efcd0fcbfd23a6ee947703d4caecd6891f8ef08b05deb5c46024483e03e2f5b82ceb60e8c70a3daccd2cc4d80d591400b3b86e89d92e93a7f80fa9422943323f143a75765e287ff71a12b15aa80efc2142c9193a1ac1ffcb5f8e6646e54443915586a7978e", 0x80}], 0x1, 0x0, 0x0, 0x40815}], 0x1, 0x4000000)
sendmmsg$unix(r1, &(0x7f0000007800)=[{{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000001a40)="f8d524d224189b9fabd60213478636b8ea", 0x11}], 0x1, 0x0, 0x0, 0x10}}], 0x1, 0x91)

713.724576ms ago: executing program 0 (id=5488):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x14, 0x2, 0x1, 0x401, 0x0, 0x0, {0xa, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000010008105e9c51c000000000000000000", @ANYRES32=r3, @ANYBLOB="01000000000000002800128009000100766c616e000000001800", @ANYRES64=r1], 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x400}}}]}, 0x38}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=@gettfilter={0x24, 0x2e, 0x1, 0x70bd28, 0x25dfdbfb, {0x0, 0x0, 0x0, r9, {0x2, 0xa}, {0x1, 0xfff1}, {0x7, 0xc}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000090}, 0x4041080)
r10 = socket$packet(0x11, 0x2, 0x300)
sendto$packet(r10, 0x0, 0x0, 0x44010, &(0x7f0000000040)={0x11, 0x17, r8, 0x1, 0xf9}, 0x14)
r11 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r12 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340)={0x0, 0xa}, 0xd58495bc, 0x0, 0xffffffffffffffff, 0x2dc2c9024f5022d2}, 0x29)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r12, 0x2000012, 0xffffffffffffffca, 0x0, &(0x7f0000000c40), 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bind$bt_l2cap(r11, &(0x7f00000005c0)={0x1f, 0x0, @none, 0x4}, 0xe)
connect$bt_l2cap(r11, &(0x7f0000000240)={0x1f, 0x0, @any, 0x4, 0x2}, 0xe)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
r14 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="3fcf00"/28], 0x48)
r15 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xd, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32=r15, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bc8900000000000035090100000000009500000000000000b7080000000000007b9a00fe00000000b509000000000000c3aaf0fff1000000bf86000000000000070800", @ANYRES32=r14, @ANYBLOB="0000000000000000b7050000080000004608ebff76000000bf9800000000000056080000000000008500000000000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(r13, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0xe0, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @tunnel={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_USERDATA={0x9f, 0x7, 0x1, 0x0, "ae30c6652469d550a8437e3e8b97770333c319c0df32f1650cf3bc1fb039336bc6eac347403829945d23b77ab77b46f5d56b910b6d11f60ed30ee657c6a80a56a1e6b8d81eff55fc789dcb0ba37ae7ae2384db372594d89857d1681b74369369ca3e38fea5f93939074886098ca26d7f083ee2b75acff176928b4b9336481c058901157bed37577ad5242a4cb9f219201e97408876ddf4eafc93f0"}]}], {0x14}}, 0x154}}, 0x0)

598.786724ms ago: executing program 3 (id=5489):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, r0)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, 0x0, 0x18}, 0xfc00)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1002}, 0x28)
r2 = epoll_create1(0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
ppoll(&(0x7f0000000100)=[{r2, 0x1d0}, {r4, 0x80}, {r3}], 0x3, &(0x7f0000000180)={0x77359400}, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r4, 0x0, 0x86, 0xc1, &(0x7f0000000580)="45340c8c727786e54b91e248e8b1cf41f1ea91c80b98d1ce27dec79f11e27fb4c5155c6af658c0705d999b3c1016fd0ae365ae934d9093cb400e2f29cd0587c44d7bfc69e6e19bd132e4513038c907f654cf38cad12eeceb1c8bf151c7d627c8899cc47e98731d59c2b523184053c35e6c434ffa11fd7ff102809e446bec5c9240cba55141ef", &(0x7f0000000780)=""/193, 0x94, 0x0, 0x12, 0x5, &(0x7f00000001c0)="ecfc9bbae35bbe4d410f35c21f195557215a", &(0x7f0000000640)="e8ac8497c3", 0x1, 0x0, 0x9a77}, 0x50)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000004c0)={0xffffffffffffffff, &(0x7f0000000380)='/', 0x0}, 0x20)
recvmmsg(r5, &(0x7f0000005c80), 0x400030f, 0x0, 0x0)

139.711756ms ago: executing program 4 (id=5490):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1200000009000000080000000200000000000000", @ANYRES32=0x1, @ANYBLOB="0000000000000000000000bff9a3299648e7fdd7", @ANYRES32=0x0, @ANYRES32], 0x50)
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r3}, &(0x7f0000000180), &(0x7f0000000100)=r2}, 0x20)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'vlan1\x00', &(0x7f0000000040)=@ethtool_channels={0x3d, 0xffffffff, 0x1, 0x0, 0x4, 0x5, 0x5}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000400"], 0x1c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800490400000000000014000a100000000000000100000008001e0001000000"], 0x24}}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48)
r8 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x0, 0x8, 0x3, 0x3, 0xfd}, 0x8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b70400000000000085"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0x1, 0x10}, {0xd}, {0xe, 0x10}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x400c800}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'macvlan0\x00'})
r9 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r9, &(0x7f00000005c0), 0x10)
recvmmsg(r9, &(0x7f0000002880), 0x0, 0x10003, 0x0)
sendmsg$can_bcm(r9, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES8=r4, @ANYRES16=r9], 0x48}, 0x1, 0x0, 0x0, 0x8000010}, 0x20004801)
setsockopt$SO_TIMESTAMP(r9, 0x1, 0x23, &(0x7f0000000580)=0xd, 0x4)

35.841737ms ago: executing program 0 (id=5491):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'erspan0\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000340)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x40009, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="5400000010000104000000000200000000000000", @ANYRES32=r3, @ANYBLOB="0000faffffff000034001280110001006272696467655f736c617665000000001c000580050021000000000006001f0000000000080022"], 0x54}}, 0x0)

0s ago: executing program 1 (id=5492):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1, 0x8}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000c40)=@newtfilter={0x58, 0x2c, 0xd27, 0xf0bd26, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0x10, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x28, 0x2, [@TCA_FLOW_EMATCHES={0x24, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x401}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0x14, 0x1, 0x0, 0x0, {{0xe6a7}, "fe7a0ac1fd"}}]}]}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20048084}, 0x2008c010)

kernel console output (not intermixed with test programs):

te type 17 has an invalid length.
[  810.140110][T22944] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4761'.
[  810.238332][T22939] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  810.303957][T22946] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  810.339837][T22898] wg1 speed is unknown, defaulting to 1000
[  810.370269][T22898] lo speed is unknown, defaulting to 1000
[  810.379945][T22941] wg1 speed is unknown, defaulting to 1000
[  810.395357][T22941] lo speed is unknown, defaulting to 1000
[  810.486848][T22949] A link change request failed with some changes committed already. Interface bond1 may have been left with an inconsistent configuration, please check.
[  811.179225][T22972] netlink: 'syz.2.4771': attribute type 33 has an invalid length.
[  811.189456][T22972] netlink: 152 bytes leftover after parsing attributes in process `syz.2.4771'.
[  811.270305][T22975] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  811.281218][T22975] syzkaller0: entered promiscuous mode
[  811.286904][T22975] syzkaller0: entered allmulticast mode
[  811.314112][T22974] tipc: Resetting bearer <eth:syzkaller0>
[  811.345491][T22974] tipc: Disabling bearer <eth:syzkaller0>
[  811.694688][T22999] netlink: 'syz.2.4776': attribute type 16 has an invalid length.
[  811.724943][T22999] netlink: 'syz.2.4776': attribute type 17 has an invalid length.
[  811.768129][T22998] wg1 speed is unknown, defaulting to 1000
[  811.768257][T23001] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4780'.
[  811.822992][T22999] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  811.925286][T22998] lo speed is unknown, defaulting to 1000
[  811.967913][T23009] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  812.390961][T23013] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  812.682979][T23024] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4785'.
[  813.266057][T23034] wg1: left promiscuous mode
[  813.271153][T23034] wg1: left allmulticast mode
[  813.300553][T23034] team1: left promiscuous mode
[  813.306022][T23034] team1: left allmulticast mode
[  813.317986][T23034] geneve2: left promiscuous mode
[  813.323327][T23034] geneve2: left allmulticast mode
[  813.329867][T23034] bond8: left promiscuous mode
[  813.336757][T23034] bond8: left allmulticast mode
[  813.342529][T23034] vlan2: left promiscuous mode
[  813.347526][T23034] bond9: left promiscuous mode
[  813.352947][T23034] gretap3: left promiscuous mode
[  813.359367][T23034] vlan2: left allmulticast mode
[  813.364665][T23034] bond9: left allmulticast mode
[  813.369776][T23034] gretap3: left allmulticast mode
[  813.375870][T23034] gretap4: left promiscuous mode
[  813.381474][T23034] gretap4: left allmulticast mode
[  813.387671][T23034] veth27: left promiscuous mode
[  813.394559][T23034] veth29: left promiscuous mode
[  813.400766][T23034] veth31: left promiscuous mode
[  813.407969][T23034] sit7: left allmulticast mode
[  813.423306][T23034] ip6gre1: left allmulticast mode
[  813.431024][T23034] veth37: left promiscuous mode
[  813.447870][T23035] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  813.479282][T23052] netlink: 'syz.2.4792': attribute type 10 has an invalid length.
[  813.509147][T23043] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  813.517897][T23052] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4792'.
[  813.550570][T23055] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4794'.
[  813.647078][T23052] batman_adv: batadv0: Adding interface: virt_wifi0
[  813.655236][T23052] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  813.700018][T23052] batman_adv: batadv0: Interface activated: virt_wifi0
[  813.899121][T23063] netlink: 'syz.0.4796': attribute type 3 has an invalid length.
[  813.907953][T23063] netlink: 666 bytes leftover after parsing attributes in process `syz.0.4796'.
[  814.083113][T23073] siw: device registration error -23
[  814.090210][T23073] wg1 speed is unknown, defaulting to 1000
[  814.154180][T23078] netlink: 'syz.4.4797': attribute type 16 has an invalid length.
[  814.194859][T23079] netlink: 132 bytes leftover after parsing attributes in process `syz.3.4802'.
[  814.209688][T23078] netlink: 'syz.4.4797': attribute type 17 has an invalid length.
[  814.309953][T23078] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  814.332342][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  814.347633][T23085] netlink: 'syz.0.4805': attribute type 1 has an invalid length.
[  814.414656][T23085] 8021q: adding VLAN 0 to HW filter on device bond12
[  814.424095][T23089] siw: device registration error -23
[  814.488235][T23088] 8021q: adding VLAN 0 to HW filter on device bond12
[  814.503682][T23088] bond12: (slave vxcan1): The slave device specified does not support setting the MAC address
[  814.517657][T23088] bond12: (slave vxcan1): Error -95 calling set_mac_address
[  814.562079][T23089] wg1 speed is unknown, defaulting to 1000
[  814.616500][T23085] veth5: entered promiscuous mode
[  814.626762][T23085] bond12: (slave veth5): Enslaving as an active interface with a down link
[  814.658067][T23098] syzkaller0: entered promiscuous mode
[  814.664875][T23098] syzkaller0: entered allmulticast mode
[  814.702963][ T1100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  814.712850][ T1100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  814.972303][ T6898] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  815.377235][T23114] wg1 speed is unknown, defaulting to 1000
[  815.755472][T23120] dvmrp0: entered allmulticast mode
[  815.784281][T23114] lo speed is unknown, defaulting to 1000
[  815.864394][T23125] siw: device registration error -23
[  815.891468][T23127] wg1 speed is unknown, defaulting to 1000
[  816.058064][T23136] vlan0: entered promiscuous mode
[  816.086062][T23136] gretap0: entered promiscuous mode
[  816.159110][T23134] netlink: 'syz.3.4815': attribute type 83 has an invalid length.
[  816.311043][T23144] netlink: zone id is out of range
[  816.321077][T23144] netlink: get zone limit has 4 unknown bytes
[  816.493576][T23134] wg1 speed is unknown, defaulting to 1000
[  816.538181][T23134] lo speed is unknown, defaulting to 1000
[  816.825674][T23149] wg1 speed is unknown, defaulting to 1000
[  817.061991][T23149] lo speed is unknown, defaulting to 1000
[  817.359707][T23165] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  817.460170][T23168] netlink: 'syz.4.4829': attribute type 1 has an invalid length.
[  817.527449][T23168] 8021q: adding VLAN 0 to HW filter on device bond10
[  817.657317][T23173] 8021q: adding VLAN 0 to HW filter on device bond10
[  817.666405][T23173] bond10: (slave vxcan3): The slave device specified does not support setting the MAC address
[  817.686697][T23173] bond10: (slave vxcan3): Error -95 calling set_mac_address
[  817.785990][T23184] netlink: 'syz.2.4832': attribute type 16 has an invalid length.
[  817.797988][T23184] netlink: 'syz.2.4832': attribute type 17 has an invalid length.
[  817.957115][T23168] veth17: entered promiscuous mode
[  818.043371][T23168] bond10: (slave veth17): Enslaving as an active interface with a down link
[  818.115752][T23184] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  818.722069][T23195] netlink: 288 bytes leftover after parsing attributes in process `syz.4.4834'.
[  818.785283][T23193] Bluetooth: hci0: invalid length 0, exp 2 for type 16
[  818.937650][T23202] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4837'.
[  818.980407][T23199] SET target dimension over the limit!
[  819.007163][T23197] syzkaller1: entered promiscuous mode
[  819.014899][T23197] syzkaller1: entered allmulticast mode
[  819.553037][T23211] vlan0: left promiscuous mode
[  819.562101][T23211] gretap0: left promiscuous mode
[  819.583634][T23211] veth5: left promiscuous mode
[  819.597894][T19907] lo speed is unknown, defaulting to 1000
[  819.604375][T19907] syz1: Port: 1 Link DOWN
[  821.123950][T23230] netlink: 'syz.2.4843': attribute type 16 has an invalid length.
[  821.132812][T23230] netlink: 'syz.2.4843': attribute type 17 has an invalid length.
[  821.304467][T23230] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  821.465963][T23225] wg1 speed is unknown, defaulting to 1000
[  821.521594][T23225] lo speed is unknown, defaulting to 1000
[  821.540348][T23223] wg1 speed is unknown, defaulting to 1000
[  821.703694][T23223] lo speed is unknown, defaulting to 1000
[  822.037775][T23248] syzkaller1: entered promiscuous mode
[  822.044439][T23248] syzkaller1: entered allmulticast mode
[  822.866878][T23280] netlink: 52 bytes leftover after parsing attributes in process `syz.1.4855'.
[  823.079065][T23266] wg1: left promiscuous mode
[  823.089560][T23266] wg1: left allmulticast mode
[  823.108262][T23266] batadv_slave_0: left promiscuous mode
[  823.126270][T23266] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  823.160299][T23266] tipc: Resetting bearer <eth:syzkaller0>
[  823.167149][T23266] syzkaller0: left promiscuous mode
[  823.173714][T23266] syzkaller0: left allmulticast mode
[  823.240929][T23283] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  823.264090][T23283] CPU: 1 UID: 0 PID: 23283 Comm: syz.4.4856 Not tainted syzkaller #0 PREEMPT(full) 
[  823.264123][T23283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  823.264139][T23283] Call Trace:
[  823.264148][T23283]  <TASK>
[  823.264158][T23283]  dump_stack_lvl+0x189/0x250
[  823.264193][T23283]  ? __pfx_dump_stack_lvl+0x10/0x10
[  823.264218][T23283]  ? __pfx__printk+0x10/0x10
[  823.264248][T23283]  ? kernfs_path_from_node+0x2f/0x290
[  823.264277][T23283]  ? kernfs_path_from_node+0x250/0x290
[  823.264303][T23283]  ? kernfs_path_from_node+0x2f/0x290
[  823.264336][T23283]  sysfs_warn_dup+0x8e/0xa0
[  823.264362][T23283]  sysfs_do_create_link_sd+0xc0/0x110
[  823.264394][T23283]  device_add_class_symlinks+0x1cf/0x240
[  823.264434][T23283]  device_add+0x475/0xb50
[  823.264474][T23283]  wiphy_register+0x1c81/0x2aa0
[  823.264524][T23283]  ? __pfx_wiphy_register+0x10/0x10
[  823.264554][T23283]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  823.264585][T23283]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  823.264626][T23283]  ieee80211_register_hw+0x3473/0x40d0
[  823.264668][T23283]  ? ieee80211_register_hw+0x13e1/0x40d0
[  823.264703][T23283]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  823.264723][T23283]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  823.264755][T23283]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  823.264781][T23283]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  823.264816][T23283]  ? __hrtimer_setup+0x187/0x210
[  823.264840][T23283]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  823.264877][T23283]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  823.264950][T23283]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  823.264976][T23283]  ? trace_kmalloc+0x1f/0xd0
[  823.265004][T23283]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  823.265037][T23283]  ? kstrndup+0xbf/0x160
[  823.265072][T23283]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  823.265107][T23283]  ? __pfx___nla_validate_parse+0x10/0x10
[  823.265158][T23283]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  823.265193][T23283]  ? rcu_is_watching+0x15/0xb0
[  823.265225][T23283]  ? __nla_parse+0x40/0x60
[  823.265261][T23283]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  823.265305][T23283]  genl_family_rcv_msg_doit+0x212/0x300
[  823.265346][T23283]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  823.265392][T23283]  ? bpf_lsm_capable+0x9/0x20
[  823.265420][T23283]  ? security_capable+0x7e/0x2e0
[  823.265456][T23283]  genl_rcv_msg+0x60e/0x790
[  823.265495][T23283]  ? __pfx_genl_rcv_msg+0x10/0x10
[  823.265525][T23283]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  823.265571][T23283]  netlink_rcv_skb+0x205/0x470
[  823.265592][T23283]  ? __lock_acquire+0xab9/0xd20
[  823.265615][T23283]  ? __pfx_genl_rcv_msg+0x10/0x10
[  823.265647][T23283]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  823.265695][T23283]  ? down_read+0x1ad/0x2e0
[  823.265729][T23283]  genl_rcv+0x28/0x40
[  823.265756][T23283]  netlink_unicast+0x82f/0x9e0
[  823.265802][T23283]  ? __pfx_netlink_unicast+0x10/0x10
[  823.265839][T23283]  ? netlink_sendmsg+0x642/0xb30
[  823.265860][T23283]  ? skb_put+0x11b/0x210
[  823.265895][T23283]  netlink_sendmsg+0x805/0xb30
[  823.265931][T23283]  ? __pfx_netlink_sendmsg+0x10/0x10
[  823.265960][T23283]  ? aa_sock_msg_perm+0xf1/0x1d0
[  823.265993][T23283]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  823.266014][T23283]  ? __pfx_netlink_sendmsg+0x10/0x10
[  823.266039][T23283]  __sock_sendmsg+0x21c/0x270
[  823.266074][T23283]  ____sys_sendmsg+0x505/0x830
[  823.266107][T23283]  ? __pfx_____sys_sendmsg+0x10/0x10
[  823.266146][T23283]  ? import_iovec+0x74/0xa0
[  823.266172][T23283]  ___sys_sendmsg+0x21f/0x2a0
[  823.266202][T23283]  ? __pfx____sys_sendmsg+0x10/0x10
[  823.266273][T23283]  ? __fget_files+0x2a/0x420
[  823.266293][T23283]  ? __fget_files+0x3a0/0x420
[  823.266319][T23283]  __x64_sys_sendmsg+0x19b/0x260
[  823.266343][T23283]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  823.266381][T23283]  ? do_syscall_64+0xbe/0xfa0
[  823.266407][T23283]  do_syscall_64+0xfa/0xfa0
[  823.266428][T23283]  ? lockdep_hardirqs_on+0x9c/0x150
[  823.266450][T23283]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.266467][T23283]  ? clear_bhb_loop+0x60/0xb0
[  823.266489][T23283]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  823.266506][T23283] RIP: 0033:0x7f83dfb8eec9
[  823.266523][T23283] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  823.266538][T23283] RSP: 002b:00007f83e0a77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  823.266557][T23283] RAX: ffffffffffffffda RBX: 00007f83dfde5fa0 RCX: 00007f83dfb8eec9
[  823.266569][T23283] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  823.266581][T23283] RBP: 00007f83dfc11f91 R08: 0000000000000000 R09: 0000000000000000
[  823.266592][T23283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  823.266602][T23283] R13: 00007f83dfde6038 R14: 00007f83dfde5fa0 R15: 00007ffd72189908
[  823.266632][T23283]  </TASK>
[  823.949488][T23299] netlink: 'syz.0.4863': attribute type 13 has an invalid length.
[  823.993987][T23299] netlink: 'syz.0.4863': attribute type 17 has an invalid length.
[  824.081392][T23299] 8021q: adding VLAN 0 to HW filter on device bond0
[  824.141640][T23299] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  824.168280][T21679] lo speed is unknown, defaulting to 1000
[  824.177804][T23313] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  824.194604][T21679] syz1: Port: 1 Link ACTIVE
[  824.212170][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  824.897155][T23336] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  824.971873][T23336] syzkaller0: entered promiscuous mode
[  825.012448][T23336] syzkaller0: entered allmulticast mode
[  825.089140][T23343] xt_l2tp: unknown flags: 51
[  825.114776][T23345] ip6t_rpfilter: unknown options
[  825.176480][T23332] tipc: Resetting bearer <eth:syzkaller0>
[  825.275090][T23332] tipc: Disabling bearer <eth:syzkaller0>
[  825.396194][T23354] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  825.413727][T23349] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4882'.
[  825.417741][T23354] CPU: 1 UID: 0 PID: 23354 Comm: syz.0.4884 Not tainted syzkaller #0 PREEMPT(full) 
[  825.417776][T23354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  825.417793][T23354] Call Trace:
[  825.417803][T23354]  <TASK>
[  825.417815][T23354]  dump_stack_lvl+0x189/0x250
[  825.417853][T23354]  ? __pfx_dump_stack_lvl+0x10/0x10
[  825.417882][T23354]  ? __pfx__printk+0x10/0x10
[  825.417915][T23354]  ? kernfs_path_from_node+0x2f/0x290
[  825.417946][T23354]  ? kernfs_path_from_node+0x250/0x290
[  825.417975][T23354]  ? kernfs_path_from_node+0x2f/0x290
[  825.418011][T23354]  sysfs_warn_dup+0x8e/0xa0
[  825.418043][T23354]  sysfs_do_create_link_sd+0xc0/0x110
[  825.418080][T23354]  device_add_class_symlinks+0x1cf/0x240
[  825.418125][T23354]  device_add+0x475/0xb50
[  825.418168][T23354]  wiphy_register+0x1c81/0x2aa0
[  825.418224][T23354]  ? __pfx_wiphy_register+0x10/0x10
[  825.418257][T23354]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  825.418292][T23354]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  825.418338][T23354]  ieee80211_register_hw+0x3473/0x40d0
[  825.418401][T23354]  ? ieee80211_register_hw+0x13e1/0x40d0
[  825.418449][T23354]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  825.418474][T23354]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  825.418511][T23354]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  825.418540][T23354]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  825.418582][T23354]  ? __hrtimer_setup+0x187/0x210
[  825.418609][T23354]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  825.418651][T23354]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  825.418737][T23354]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  825.418765][T23354]  ? trace_kmalloc+0x1f/0xd0
[  825.418797][T23354]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  825.418834][T23354]  ? kstrndup+0xbf/0x160
[  825.418872][T23354]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  825.418913][T23354]  ? __pfx___nla_validate_parse+0x10/0x10
[  825.418988][T23354]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  825.419030][T23354]  ? rcu_is_watching+0x15/0xb0
[  825.419066][T23354]  ? __nla_parse+0x40/0x60
[  825.419106][T23354]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  825.419157][T23354]  genl_family_rcv_msg_doit+0x212/0x300
[  825.419204][T23354]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  825.419259][T23354]  ? bpf_lsm_capable+0x9/0x20
[  825.419291][T23354]  ? security_capable+0x7e/0x2e0
[  825.419345][T23354]  genl_rcv_msg+0x60e/0x790
[  825.419388][T23354]  ? __pfx_genl_rcv_msg+0x10/0x10
[  825.419421][T23354]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  825.419487][T23354]  netlink_rcv_skb+0x205/0x470
[  825.419512][T23354]  ? __lock_acquire+0xab9/0xd20
[  825.419538][T23354]  ? __pfx_genl_rcv_msg+0x10/0x10
[  825.419574][T23354]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  825.419627][T23354]  ? down_read+0x1ad/0x2e0
[  825.419668][T23354]  genl_rcv+0x28/0x40
[  825.419697][T23354]  netlink_unicast+0x82f/0x9e0
[  825.419767][T23354]  ? __pfx_netlink_unicast+0x10/0x10
[  825.419811][T23354]  ? netlink_sendmsg+0x642/0xb30
[  825.419837][T23354]  ? skb_put+0x11b/0x210
[  825.419881][T23354]  netlink_sendmsg+0x805/0xb30
[  825.419923][T23354]  ? __pfx_netlink_sendmsg+0x10/0x10
[  825.419957][T23354]  ? aa_sock_msg_perm+0xf1/0x1d0
[  825.419996][T23354]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  825.420021][T23354]  ? __pfx_netlink_sendmsg+0x10/0x10
[  825.420052][T23354]  __sock_sendmsg+0x21c/0x270
[  825.420095][T23354]  ____sys_sendmsg+0x505/0x830
[  825.420146][T23354]  ? __pfx_____sys_sendmsg+0x10/0x10
[  825.420195][T23354]  ? import_iovec+0x74/0xa0
[  825.420225][T23354]  ___sys_sendmsg+0x21f/0x2a0
[  825.420262][T23354]  ? __pfx____sys_sendmsg+0x10/0x10
[  825.420349][T23354]  ? __fget_files+0x2a/0x420
[  825.420371][T23354]  ? __fget_files+0x3a0/0x420
[  825.420413][T23354]  __x64_sys_sendmsg+0x19b/0x260
[  825.420455][T23354]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  825.420513][T23354]  ? do_syscall_64+0xbe/0xfa0
[  825.420552][T23354]  do_syscall_64+0xfa/0xfa0
[  825.420582][T23354]  ? lockdep_hardirqs_on+0x9c/0x150
[  825.420614][T23354]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.420641][T23354]  ? clear_bhb_loop+0x60/0xb0
[  825.420673][T23354]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  825.420698][T23354] RIP: 0033:0x7f35f218eec9
[  825.420723][T23354] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  825.420747][T23354] RSP: 002b:00007f35f304c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  825.420775][T23354] RAX: ffffffffffffffda RBX: 00007f35f23e5fa0 RCX: 00007f35f218eec9
[  825.420795][T23354] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  825.420813][T23354] RBP: 00007f35f2211f91 R08: 0000000000000000 R09: 0000000000000000
[  825.420831][T23354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  825.420848][T23354] R13: 00007f35f23e6038 R14: 00007f35f23e5fa0 R15: 00007ffe587f3418
[  825.420897][T23354]  </TASK>
[  826.318474][T23383] batadv_slave_1: Caught tx_queue_len zero misconfig
[  826.338224][T23380] siw: device registration error -23
[  826.533472][T23384] wg1 speed is unknown, defaulting to 1000
[  826.776393][T23390] wg1 speed is unknown, defaulting to 1000
[  826.928517][T23395] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4896'.
[  826.966433][T23395] netlink: 'syz.2.4896': attribute type 10 has an invalid length.
[  827.020049][T23395] bond0: (slave wlan1): refused to change device type
[  827.239580][T23410] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4900'.
[  827.484740][T23422] netlink: 'syz.1.4901': attribute type 16 has an invalid length.
[  827.494110][T23422] netlink: 'syz.1.4901': attribute type 17 has an invalid length.
[  827.561077][T23422] 8021q: adding VLAN 0 to HW filter on device bond0
[  827.655601][T23422] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  828.420481][T23441] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4910'.
[  828.435433][T23441] netlink: 'syz.1.4910': attribute type 10 has an invalid length.
[  828.450203][T23441] mac80211_hwsim hwsim7 wlan1: left promiscuous mode
[  828.460385][T23441] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  828.628033][T23446] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  828.641693][T23446] CPU: 0 UID: 0 PID: 23446 Comm: syz.3.4911 Not tainted syzkaller #0 PREEMPT(full) 
[  828.641730][T23446] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  828.641745][T23446] Call Trace:
[  828.641756][T23446]  <TASK>
[  828.641767][T23446]  dump_stack_lvl+0x189/0x250
[  828.641804][T23446]  ? __pfx_dump_stack_lvl+0x10/0x10
[  828.641830][T23446]  ? __pfx__printk+0x10/0x10
[  828.641862][T23446]  ? kernfs_path_from_node+0x2f/0x290
[  828.641897][T23446]  ? kernfs_path_from_node+0x250/0x290
[  828.641923][T23446]  ? kernfs_path_from_node+0x2f/0x290
[  828.641956][T23446]  sysfs_warn_dup+0x8e/0xa0
[  828.641984][T23446]  sysfs_do_create_link_sd+0xc0/0x110
[  828.642015][T23446]  device_add_class_symlinks+0x1cf/0x240
[  828.642055][T23446]  device_add+0x475/0xb50
[  828.642097][T23446]  wiphy_register+0x1c81/0x2aa0
[  828.642146][T23446]  ? __pfx_wiphy_register+0x10/0x10
[  828.642176][T23446]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  828.642207][T23446]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  828.642256][T23446]  ieee80211_register_hw+0x3473/0x40d0
[  828.642297][T23446]  ? ieee80211_register_hw+0x13e1/0x40d0
[  828.642333][T23446]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  828.642355][T23446]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  828.642387][T23446]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  828.642415][T23446]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  828.642450][T23446]  ? __hrtimer_setup+0x187/0x210
[  828.642475][T23446]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  828.642513][T23446]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  828.642579][T23446]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  828.642605][T23446]  ? trace_kmalloc+0x1f/0xd0
[  828.642634][T23446]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  828.642669][T23446]  ? kstrndup+0xbf/0x160
[  828.642707][T23446]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  828.642743][T23446]  ? __pfx___nla_validate_parse+0x10/0x10
[  828.642793][T23446]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  828.642828][T23446]  ? rcu_is_watching+0x15/0xb0
[  828.642858][T23446]  ? __nla_parse+0x40/0x60
[  828.642894][T23446]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  828.642937][T23446]  genl_family_rcv_msg_doit+0x212/0x300
[  828.642978][T23446]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  828.643025][T23446]  ? bpf_lsm_capable+0x9/0x20
[  828.643051][T23446]  ? security_capable+0x7e/0x2e0
[  828.643090][T23446]  genl_rcv_msg+0x60e/0x790
[  828.643129][T23446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  828.643158][T23446]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  828.643204][T23446]  netlink_rcv_skb+0x205/0x470
[  828.643226][T23446]  ? __lock_acquire+0xab9/0xd20
[  828.643280][T23446]  ? __pfx_genl_rcv_msg+0x10/0x10
[  828.643315][T23446]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  828.643366][T23446]  ? down_read+0x1ad/0x2e0
[  828.643405][T23446]  genl_rcv+0x28/0x40
[  828.643434][T23446]  netlink_unicast+0x82f/0x9e0
[  828.643483][T23446]  ? __pfx_netlink_unicast+0x10/0x10
[  828.643523][T23446]  ? netlink_sendmsg+0x642/0xb30
[  828.643546][T23446]  ? skb_put+0x11b/0x210
[  828.643577][T23446]  netlink_sendmsg+0x805/0xb30
[  828.643616][T23446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.643646][T23446]  ? aa_sock_msg_perm+0xf1/0x1d0
[  828.643681][T23446]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  828.643704][T23446]  ? __pfx_netlink_sendmsg+0x10/0x10
[  828.643731][T23446]  __sock_sendmsg+0x21c/0x270
[  828.643771][T23446]  ____sys_sendmsg+0x505/0x830
[  828.643807][T23446]  ? __pfx_____sys_sendmsg+0x10/0x10
[  828.643848][T23446]  ? import_iovec+0x74/0xa0
[  828.643877][T23446]  ___sys_sendmsg+0x21f/0x2a0
[  828.643909][T23446]  ? __pfx____sys_sendmsg+0x10/0x10
[  828.643982][T23446]  ? __fget_files+0x2a/0x420
[  828.644004][T23446]  ? __fget_files+0x3a0/0x420
[  828.644039][T23446]  __x64_sys_sendmsg+0x19b/0x260
[  828.644072][T23446]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  828.644125][T23446]  ? do_syscall_64+0xbe/0xfa0
[  828.644159][T23446]  do_syscall_64+0xfa/0xfa0
[  828.644187][T23446]  ? lockdep_hardirqs_on+0x9c/0x150
[  828.644215][T23446]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.644239][T23446]  ? clear_bhb_loop+0x60/0xb0
[  828.644279][T23446]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  828.644302][T23446] RIP: 0033:0x7fda02d8eec9
[  828.644324][T23446] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  828.644345][T23446] RSP: 002b:00007fda03ba8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  828.644371][T23446] RAX: ffffffffffffffda RBX: 00007fda02fe5fa0 RCX: 00007fda02d8eec9
[  828.644389][T23446] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  828.644405][T23446] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  828.644420][T23446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  828.644435][T23446] R13: 00007fda02fe6038 R14: 00007fda02fe5fa0 R15: 00007ffc4dd999b8
[  828.644477][T23446]  </TASK>
[  829.268106][T23452] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  829.300056][T23452] syzkaller0: entered promiscuous mode
[  829.318210][T23452] syzkaller0: entered allmulticast mode
[  829.409156][T23451] tipc: Resetting bearer <eth:syzkaller0>
[  829.504881][T23451] tipc: Disabling bearer <eth:syzkaller0>
[  829.690713][T23461] wg1 speed is unknown, defaulting to 1000
[  829.764490][T23461] lo speed is unknown, defaulting to 1000
[  830.185504][T23475] siw: device registration error -23
[  830.240139][T23475] wg1 speed is unknown, defaulting to 1000
[  830.403199][T23482] netlink: 'syz.1.4923': attribute type 16 has an invalid length.
[  830.453950][T23482] netlink: 'syz.1.4923': attribute type 17 has an invalid length.
[  830.504033][T23482] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  830.697924][T23488] syzkaller1: entered promiscuous mode
[  830.717598][T23490] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  830.733090][T23488] syzkaller1: entered allmulticast mode
[  831.228754][T23504] Bluetooth: hci0: invalid length 0, exp 2 for type 17
[  831.366423][T23517] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  831.411676][T23516] syzkaller1: entered promiscuous mode
[  831.420160][T23516] syzkaller1: entered allmulticast mode
[  831.475167][T23525] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  831.827666][T23530] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  831.860143][T19906] lo speed is unknown, defaulting to 1000
[  831.866470][T19906] syz1: Port: 1 Link DOWN
[  831.925682][T23538] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4942'.
[  831.936445][T23538] netlink: 'syz.2.4942': attribute type 10 has an invalid length.
[  831.945202][T23538] bond0: (slave wlan1): refused to change device type
[  831.973301][T23530] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  832.110604][T23544] batman_adv: batadv0: Removing interface: virt_wifi0
[  832.304513][T23548] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check.
[  832.669922][T23565] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4949'.
[  832.696053][T23569] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4950'.
[  832.705719][T23569] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4950'.
[  832.791239][T23571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4952'.
[  832.813224][T23571] netlink: 'syz.4.4952': attribute type 10 has an invalid length.
[  832.855575][T23577] siw: device registration error -23
[  832.864832][T23577] wg1 speed is unknown, defaulting to 1000
[  833.154877][T23585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4958'.
[  833.227030][T23595] bond0: option ad_select: unable to set because the bond device is up
[  833.624745][T23615] netlink: 87 bytes leftover after parsing attributes in process `syz.3.4968'.
[  833.715183][T23618] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4970'.
[  834.059262][T23632] Bluetooth: hci0: invalid length 0, exp 2 for type 17
[  834.248038][T23645] wg1 speed is unknown, defaulting to 1000
[  834.256712][T23645] lo speed is unknown, defaulting to 1000
[  834.286613][T23647] netlink: 'syz.4.4980': attribute type 16 has an invalid length.
[  834.304579][T23647] netlink: 'syz.4.4980': attribute type 17 has an invalid length.
[  834.354378][T23647] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  834.375366][ T5818] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  834.391658][T23644] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  834.404308][T23644] CPU: 0 UID: 0 PID: 23644 Comm: syz.3.4983 Not tainted syzkaller #0 PREEMPT(full) 
[  834.404339][T23644] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  834.404353][T23644] Call Trace:
[  834.404363][T23644]  <TASK>
[  834.404373][T23644]  dump_stack_lvl+0x189/0x250
[  834.404407][T23644]  ? __pfx_dump_stack_lvl+0x10/0x10
[  834.404432][T23644]  ? __pfx__printk+0x10/0x10
[  834.404462][T23644]  ? kernfs_path_from_node+0x2f/0x290
[  834.404490][T23644]  ? kernfs_path_from_node+0x250/0x290
[  834.404515][T23644]  ? kernfs_path_from_node+0x2f/0x290
[  834.404547][T23644]  sysfs_warn_dup+0x8e/0xa0
[  834.404578][T23644]  sysfs_do_create_link_sd+0xc0/0x110
[  834.404610][T23644]  device_add_class_symlinks+0x1cf/0x240
[  834.404650][T23644]  device_add+0x475/0xb50
[  834.404688][T23644]  wiphy_register+0x1c81/0x2aa0
[  834.404738][T23644]  ? __pfx_wiphy_register+0x10/0x10
[  834.404765][T23644]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  834.404792][T23644]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  834.404833][T23644]  ieee80211_register_hw+0x3473/0x40d0
[  834.404873][T23644]  ? ieee80211_register_hw+0x13e1/0x40d0
[  834.404909][T23644]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  834.404936][T23644]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  834.404962][T23644]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  834.404996][T23644]  ? __hrtimer_setup+0x187/0x210
[  834.405026][T23644]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  834.405058][T23644]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  834.405115][T23644]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  834.405137][T23644]  ? trace_kmalloc+0x1f/0xd0
[  834.405161][T23644]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  834.405190][T23644]  ? kstrndup+0xbf/0x160
[  834.405222][T23644]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  834.405254][T23644]  ? __pfx___nla_validate_parse+0x10/0x10
[  834.405300][T23644]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  834.405332][T23644]  ? rcu_is_watching+0x15/0xb0
[  834.405360][T23644]  ? __nla_parse+0x40/0x60
[  834.405393][T23644]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  834.405431][T23644]  genl_family_rcv_msg_doit+0x212/0x300
[  834.405466][T23644]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  834.405508][T23644]  ? bpf_lsm_capable+0x9/0x20
[  834.405531][T23644]  ? security_capable+0x7e/0x2e0
[  834.405564][T23644]  genl_rcv_msg+0x60e/0x790
[  834.405597][T23644]  ? __pfx_genl_rcv_msg+0x10/0x10
[  834.405622][T23644]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  834.405662][T23644]  netlink_rcv_skb+0x205/0x470
[  834.405681][T23644]  ? __lock_acquire+0xab9/0xd20
[  834.405704][T23644]  ? __pfx_genl_rcv_msg+0x10/0x10
[  834.405737][T23644]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  834.405786][T23644]  ? down_read+0x1ad/0x2e0
[  834.405822][T23644]  genl_rcv+0x28/0x40
[  834.405850][T23644]  netlink_unicast+0x82f/0x9e0
[  834.405897][T23644]  ? __pfx_netlink_unicast+0x10/0x10
[  834.405937][T23644]  ? netlink_sendmsg+0x642/0xb30
[  834.405959][T23644]  ? skb_put+0x11b/0x210
[  834.405990][T23644]  netlink_sendmsg+0x805/0xb30
[  834.406051][T23644]  ? __pfx_netlink_sendmsg+0x10/0x10
[  834.406084][T23644]  ? aa_sock_msg_perm+0xf1/0x1d0
[  834.406121][T23644]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  834.406144][T23644]  ? __pfx_netlink_sendmsg+0x10/0x10
[  834.406171][T23644]  __sock_sendmsg+0x21c/0x270
[  834.406211][T23644]  ____sys_sendmsg+0x505/0x830
[  834.406247][T23644]  ? __pfx_____sys_sendmsg+0x10/0x10
[  834.406289][T23644]  ? import_iovec+0x74/0xa0
[  834.406318][T23644]  ___sys_sendmsg+0x21f/0x2a0
[  834.406350][T23644]  ? __pfx____sys_sendmsg+0x10/0x10
[  834.406427][T23644]  ? __fget_files+0x2a/0x420
[  834.406449][T23644]  ? __fget_files+0x3a0/0x420
[  834.406483][T23644]  __x64_sys_sendmsg+0x19b/0x260
[  834.406516][T23644]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  834.406567][T23644]  ? do_syscall_64+0xbe/0xfa0
[  834.406603][T23644]  do_syscall_64+0xfa/0xfa0
[  834.406631][T23644]  ? lockdep_hardirqs_on+0x9c/0x150
[  834.406659][T23644]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.406683][T23644]  ? clear_bhb_loop+0x60/0xb0
[  834.406712][T23644]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  834.406736][T23644] RIP: 0033:0x7fda02d8eec9
[  834.406757][T23644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  834.406778][T23644] RSP: 002b:00007fda03ba8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  834.406803][T23644] RAX: ffffffffffffffda RBX: 00007fda02fe5fa0 RCX: 00007fda02d8eec9
[  834.406821][T23644] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  834.406836][T23644] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  834.406851][T23644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  834.406864][T23644] R13: 00007fda02fe6038 R14: 00007fda02fe5fa0 R15: 00007ffc4dd999b8
[  834.406899][T23644]  </TASK>
[  834.508305][T23651] netlink: 364 bytes leftover after parsing attributes in process `syz.2.4984'.
[  834.881767][T23651] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[  835.107801][T23658] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  835.139519][T23658] CPU: 1 UID: 0 PID: 23658 Comm: syz.2.4986 Not tainted syzkaller #0 PREEMPT(full) 
[  835.139553][T23658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  835.139566][T23658] Call Trace:
[  835.139574][T23658]  <TASK>
[  835.139583][T23658]  dump_stack_lvl+0x189/0x250
[  835.139611][T23658]  ? __pfx_dump_stack_lvl+0x10/0x10
[  835.139631][T23658]  ? __pfx__printk+0x10/0x10
[  835.139657][T23658]  ? kernfs_path_from_node+0x2f/0x290
[  835.139680][T23658]  ? kernfs_path_from_node+0x250/0x290
[  835.139723][T23658]  ? kernfs_path_from_node+0x2f/0x290
[  835.139749][T23658]  sysfs_warn_dup+0x8e/0xa0
[  835.139771][T23658]  sysfs_do_create_link_sd+0xc0/0x110
[  835.139796][T23658]  device_add_class_symlinks+0x1cf/0x240
[  835.139827][T23658]  device_add+0x475/0xb50
[  835.139875][T23658]  wiphy_register+0x1c81/0x2aa0
[  835.139931][T23658]  ? __pfx_wiphy_register+0x10/0x10
[  835.139972][T23658]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  835.140009][T23658]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  835.140041][T23658]  ieee80211_register_hw+0x3473/0x40d0
[  835.140073][T23658]  ? ieee80211_register_hw+0x13e1/0x40d0
[  835.140099][T23658]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  835.140115][T23658]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  835.140140][T23658]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  835.140160][T23658]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  835.140187][T23658]  ? __hrtimer_setup+0x187/0x210
[  835.140205][T23658]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  835.140233][T23658]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  835.140283][T23658]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  835.140302][T23658]  ? trace_kmalloc+0x1f/0xd0
[  835.140325][T23658]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  835.140352][T23658]  ? kstrndup+0xbf/0x160
[  835.140380][T23658]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  835.140408][T23658]  ? __pfx___nla_validate_parse+0x10/0x10
[  835.140446][T23658]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  835.140474][T23658]  ? rcu_is_watching+0x15/0xb0
[  835.140498][T23658]  ? __nla_parse+0x40/0x60
[  835.140526][T23658]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  835.140560][T23658]  genl_family_rcv_msg_doit+0x212/0x300
[  835.140591][T23658]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  835.140628][T23658]  ? bpf_lsm_capable+0x9/0x20
[  835.140650][T23658]  ? security_capable+0x7e/0x2e0
[  835.140678][T23658]  genl_rcv_msg+0x60e/0x790
[  835.140714][T23658]  ? __pfx_genl_rcv_msg+0x10/0x10
[  835.140737][T23658]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  835.140772][T23658]  netlink_rcv_skb+0x205/0x470
[  835.140789][T23658]  ? __lock_acquire+0xab9/0xd20
[  835.140807][T23658]  ? __pfx_genl_rcv_msg+0x10/0x10
[  835.140832][T23658]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  835.140887][T23658]  ? down_read+0x1ad/0x2e0
[  835.140915][T23658]  genl_rcv+0x28/0x40
[  835.140937][T23658]  netlink_unicast+0x82f/0x9e0
[  835.140976][T23658]  ? __pfx_netlink_unicast+0x10/0x10
[  835.141014][T23658]  ? netlink_sendmsg+0x642/0xb30
[  835.141032][T23658]  ? skb_put+0x11b/0x210
[  835.141056][T23658]  netlink_sendmsg+0x805/0xb30
[  835.141085][T23658]  ? __pfx_netlink_sendmsg+0x10/0x10
[  835.141109][T23658]  ? aa_sock_msg_perm+0xf1/0x1d0
[  835.141137][T23658]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  835.141154][T23658]  ? __pfx_netlink_sendmsg+0x10/0x10
[  835.141174][T23658]  __sock_sendmsg+0x21c/0x270
[  835.141204][T23658]  ____sys_sendmsg+0x505/0x830
[  835.141231][T23658]  ? __pfx_____sys_sendmsg+0x10/0x10
[  835.141263][T23658]  ? import_iovec+0x74/0xa0
[  835.141284][T23658]  ___sys_sendmsg+0x21f/0x2a0
[  835.141308][T23658]  ? __pfx____sys_sendmsg+0x10/0x10
[  835.141366][T23658]  ? __fget_files+0x2a/0x420
[  835.141381][T23658]  ? __fget_files+0x3a0/0x420
[  835.141408][T23658]  __x64_sys_sendmsg+0x19b/0x260
[  835.141433][T23658]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  835.141472][T23658]  ? do_syscall_64+0xbe/0xfa0
[  835.141498][T23658]  do_syscall_64+0xfa/0xfa0
[  835.141519][T23658]  ? lockdep_hardirqs_on+0x9c/0x150
[  835.141541][T23658]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.141559][T23658]  ? clear_bhb_loop+0x60/0xb0
[  835.141582][T23658]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  835.141599][T23658] RIP: 0033:0x7fd30458eec9
[  835.141617][T23658] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  835.141634][T23658] RSP: 002b:00007fd30539f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  835.141654][T23658] RAX: ffffffffffffffda RBX: 00007fd3047e5fa0 RCX: 00007fd30458eec9
[  835.141668][T23658] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  835.141680][T23658] RBP: 00007fd304611f91 R08: 0000000000000000 R09: 0000000000000000
[  835.141692][T23658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  835.141709][T23658] R13: 00007fd3047e6038 R14: 00007fd3047e5fa0 R15: 00007ffc5c6dbcf8
[  835.141741][T23658]  </TASK>
[  835.609148][T21679] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  835.675717][T23668] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4989'.
[  835.741682][T23663] netlink: 'syz.4.4987': attribute type 10 has an invalid length.
[  836.308557][T23700] Bluetooth: hci0: invalid length 0, exp 2 for type 17
[  836.425810][T23708] siw: device registration error -23
[  836.452615][T23708] wg1 speed is unknown, defaulting to 1000
[  836.568272][T23715] netlink: 'syz.4.5010': attribute type 13 has an invalid length.
[  836.595877][T23715] netlink: 'syz.4.5010': attribute type 17 has an invalid length.
[  836.661788][T23715] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  836.678154][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  836.802393][T23715] wg1 speed is unknown, defaulting to 1000
[  836.824088][T23715] lo speed is unknown, defaulting to 1000
[  837.193771][T23743] wg1 speed is unknown, defaulting to 1000
[  837.252168][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  837.413737][ T3464] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  837.434993][ T3464] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  837.555784][T23756] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  837.588022][T23756] CPU: 0 UID: 0 PID: 23756 Comm: syz.1.5027 Not tainted syzkaller #0 PREEMPT(full) 
[  837.588056][T23756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  837.588073][T23756] Call Trace:
[  837.588083][T23756]  <TASK>
[  837.588094][T23756]  dump_stack_lvl+0x189/0x250
[  837.588131][T23756]  ? __pfx_dump_stack_lvl+0x10/0x10
[  837.588158][T23756]  ? __pfx__printk+0x10/0x10
[  837.588189][T23756]  ? kernfs_path_from_node+0x2f/0x290
[  837.588218][T23756]  ? kernfs_path_from_node+0x250/0x290
[  837.588251][T23756]  ? kernfs_path_from_node+0x2f/0x290
[  837.588286][T23756]  sysfs_warn_dup+0x8e/0xa0
[  837.588313][T23756]  sysfs_do_create_link_sd+0xc0/0x110
[  837.588346][T23756]  device_add_class_symlinks+0x1cf/0x240
[  837.588388][T23756]  device_add+0x475/0xb50
[  837.588455][T23756]  wiphy_register+0x1c81/0x2aa0
[  837.588508][T23756]  ? __pfx_wiphy_register+0x10/0x10
[  837.588538][T23756]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  837.588571][T23756]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  837.588614][T23756]  ieee80211_register_hw+0x3473/0x40d0
[  837.588657][T23756]  ? ieee80211_register_hw+0x13e1/0x40d0
[  837.588693][T23756]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  837.588714][T23756]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  837.588748][T23756]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  837.588774][T23756]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  837.588817][T23756]  ? __hrtimer_setup+0x187/0x210
[  837.588842][T23756]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  837.588880][T23756]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  837.588948][T23756]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  837.588975][T23756]  ? trace_kmalloc+0x1f/0xd0
[  837.589003][T23756]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  837.589044][T23756]  ? kstrndup+0xbf/0x160
[  837.589081][T23756]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  837.589118][T23756]  ? __pfx___nla_validate_parse+0x10/0x10
[  837.589170][T23756]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  837.589207][T23756]  ? rcu_is_watching+0x15/0xb0
[  837.589239][T23756]  ? __nla_parse+0x40/0x60
[  837.589276][T23756]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  837.589321][T23756]  genl_family_rcv_msg_doit+0x212/0x300
[  837.589363][T23756]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  837.589414][T23756]  ? bpf_lsm_capable+0x9/0x20
[  837.589442][T23756]  ? security_capable+0x7e/0x2e0
[  837.589481][T23756]  genl_rcv_msg+0x60e/0x790
[  837.589521][T23756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  837.589552][T23756]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  837.589612][T23756]  netlink_rcv_skb+0x205/0x470
[  837.589633][T23756]  ? __lock_acquire+0xab9/0xd20
[  837.589656][T23756]  ? __pfx_genl_rcv_msg+0x10/0x10
[  837.589689][T23756]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  837.589742][T23756]  ? down_read+0x1ad/0x2e0
[  837.589778][T23756]  genl_rcv+0x28/0x40
[  837.589812][T23756]  netlink_unicast+0x82f/0x9e0
[  837.589859][T23756]  ? __pfx_netlink_unicast+0x10/0x10
[  837.589897][T23756]  ? netlink_sendmsg+0x642/0xb30
[  837.589919][T23756]  ? skb_put+0x11b/0x210
[  837.589949][T23756]  netlink_sendmsg+0x805/0xb30
[  837.589986][T23756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  837.590016][T23756]  ? aa_sock_msg_perm+0xf1/0x1d0
[  837.590049][T23756]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  837.590070][T23756]  ? __pfx_netlink_sendmsg+0x10/0x10
[  837.590096][T23756]  __sock_sendmsg+0x21c/0x270
[  837.590134][T23756]  ____sys_sendmsg+0x505/0x830
[  837.590169][T23756]  ? __pfx_____sys_sendmsg+0x10/0x10
[  837.590209][T23756]  ? import_iovec+0x74/0xa0
[  837.590237][T23756]  ___sys_sendmsg+0x21f/0x2a0
[  837.590267][T23756]  ? __pfx____sys_sendmsg+0x10/0x10
[  837.590342][T23756]  ? __fget_files+0x2a/0x420
[  837.590361][T23756]  ? __fget_files+0x3a0/0x420
[  837.590396][T23756]  __x64_sys_sendmsg+0x19b/0x260
[  837.590428][T23756]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  837.590497][T23756]  ? do_syscall_64+0xbe/0xfa0
[  837.590532][T23756]  do_syscall_64+0xfa/0xfa0
[  837.590560][T23756]  ? lockdep_hardirqs_on+0x9c/0x150
[  837.590589][T23756]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.590613][T23756]  ? clear_bhb_loop+0x60/0xb0
[  837.590642][T23756]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  837.590666][T23756] RIP: 0033:0x7f04ae78eec9
[  837.590688][T23756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  837.590710][T23756] RSP: 002b:00007f04af54a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  837.590742][T23756] RAX: ffffffffffffffda RBX: 00007f04ae9e5fa0 RCX: 00007f04ae78eec9
[  837.590760][T23756] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  837.590776][T23756] RBP: 00007f04ae811f91 R08: 0000000000000000 R09: 0000000000000000
[  837.590798][T23756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  837.590814][T23756] R13: 00007f04ae9e6038 R14: 00007f04ae9e5fa0 R15: 00007fffa7e87bf8
[  837.590856][T23756]  </TASK>
[  838.186893][T23768] netlink: 'syz.3.5033': attribute type 13 has an invalid length.
[  838.196896][T23768] netlink: 'syz.3.5033': attribute type 17 has an invalid length.
[  838.212279][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  838.249551][T23768] 8021q: adding VLAN 0 to HW filter on device bond0
[  838.267035][T23768] 8021q: adding VLAN 0 to HW filter on device team0
[  838.289519][T23768] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  838.335838][T23778] netlink: 'syz.4.5031': attribute type 3 has an invalid length.
[  838.346528][T23779] siw: device registration error -23
[  838.367490][T23779] wg1 speed is unknown, defaulting to 1000
[  838.628407][T23768] wg1 speed is unknown, defaulting to 1000
[  838.676466][T23768] lo speed is unknown, defaulting to 1000
[  838.845422][T23796] dvmrp0: entered allmulticast mode
[  839.209760][T23816] wg1 speed is unknown, defaulting to 1000
[  839.284047][T23816] lo speed is unknown, defaulting to 1000
[  839.363499][T23823] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check.
[  839.675842][T23835] netlink: 'syz.0.5054': attribute type 13 has an invalid length.
[  839.696737][T23835] netlink: 'syz.0.5054': attribute type 17 has an invalid length.
[  839.887751][T23835] 8021q: adding VLAN 0 to HW filter on device bond0
[  839.921732][T23835] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  839.941079][T19907] lo speed is unknown, defaulting to 1000
[  839.960630][T19907] syz1: Port: 1 Link ACTIVE
[  840.078008][T23843] bond0: option resend_igmp: invalid value (1793847487)
[  840.104089][T23843] bond0: option resend_igmp: allowed values 0 - 255
[  840.135812][T23840] wg1 speed is unknown, defaulting to 1000
[  840.145742][T23840] lo speed is unknown, defaulting to 1000
[  840.339019][T23847] netlink: 'syz.2.5057': attribute type 1 has an invalid length.
[  840.349405][T23847] netlink: 'syz.2.5057': attribute type 1 has an invalid length.
[  840.410519][T23852] __nla_validate_parse: 2 callbacks suppressed
[  840.410540][T23852] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.5058'.
[  840.703897][T23863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5064'.
[  841.106483][T23871] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  841.261424][T23879] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  841.282706][T23873] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5068'.
[  841.412101][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  841.472280][T23869] syzkaller1: entered promiscuous mode
[  841.478028][T23869] syzkaller1: entered allmulticast mode
[  841.494605][T23890] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  841.527319][T23890] CPU: 1 UID: 0 PID: 23890 Comm: syz.3.5072 Not tainted syzkaller #0 PREEMPT(full) 
[  841.527353][T23890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  841.527368][T23890] Call Trace:
[  841.527378][T23890]  <TASK>
[  841.527389][T23890]  dump_stack_lvl+0x189/0x250
[  841.527424][T23890]  ? __pfx_dump_stack_lvl+0x10/0x10
[  841.527450][T23890]  ? __pfx__printk+0x10/0x10
[  841.527483][T23890]  ? kernfs_path_from_node+0x2f/0x290
[  841.527520][T23890]  ? kernfs_path_from_node+0x250/0x290
[  841.527547][T23890]  ? kernfs_path_from_node+0x2f/0x290
[  841.527579][T23890]  sysfs_warn_dup+0x8e/0xa0
[  841.527608][T23890]  sysfs_do_create_link_sd+0xc0/0x110
[  841.527640][T23890]  device_add_class_symlinks+0x1cf/0x240
[  841.527681][T23890]  device_add+0x475/0xb50
[  841.527720][T23890]  wiphy_register+0x1c81/0x2aa0
[  841.527769][T23890]  ? __pfx_wiphy_register+0x10/0x10
[  841.527800][T23890]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  841.527833][T23890]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  841.527877][T23890]  ieee80211_register_hw+0x3473/0x40d0
[  841.527920][T23890]  ? ieee80211_register_hw+0x13e1/0x40d0
[  841.527957][T23890]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  841.527979][T23890]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  841.528011][T23890]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  841.528038][T23890]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  841.528075][T23890]  ? __hrtimer_setup+0x187/0x210
[  841.528099][T23890]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  841.528164][T23890]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  841.528233][T23890]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  841.528264][T23890]  ? trace_kmalloc+0x1f/0xd0
[  841.528294][T23890]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  841.528330][T23890]  ? kstrndup+0xbf/0x160
[  841.528368][T23890]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  841.528406][T23890]  ? __pfx___nla_validate_parse+0x10/0x10
[  841.528458][T23890]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  841.528504][T23890]  ? rcu_is_watching+0x15/0xb0
[  841.528537][T23890]  ? __nla_parse+0x40/0x60
[  841.528575][T23890]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  841.528621][T23890]  genl_family_rcv_msg_doit+0x212/0x300
[  841.528665][T23890]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  841.528716][T23890]  ? bpf_lsm_capable+0x9/0x20
[  841.528745][T23890]  ? security_capable+0x7e/0x2e0
[  841.528784][T23890]  genl_rcv_msg+0x60e/0x790
[  841.528826][T23890]  ? __pfx_genl_rcv_msg+0x10/0x10
[  841.528857][T23890]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  841.528905][T23890]  netlink_rcv_skb+0x205/0x470
[  841.528927][T23890]  ? __lock_acquire+0xab9/0xd20
[  841.528952][T23890]  ? __pfx_genl_rcv_msg+0x10/0x10
[  841.528986][T23890]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  841.529035][T23890]  ? down_read+0x1ad/0x2e0
[  841.529073][T23890]  genl_rcv+0x28/0x40
[  841.529103][T23890]  netlink_unicast+0x82f/0x9e0
[  841.529152][T23890]  ? __pfx_netlink_unicast+0x10/0x10
[  841.529192][T23890]  ? netlink_sendmsg+0x642/0xb30
[  841.529215][T23890]  ? skb_put+0x11b/0x210
[  841.529246][T23890]  netlink_sendmsg+0x805/0xb30
[  841.529284][T23890]  ? __pfx_netlink_sendmsg+0x10/0x10
[  841.529316][T23890]  ? aa_sock_msg_perm+0xf1/0x1d0
[  841.529350][T23890]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  841.529372][T23890]  ? __pfx_netlink_sendmsg+0x10/0x10
[  841.529399][T23890]  __sock_sendmsg+0x21c/0x270
[  841.529439][T23890]  ____sys_sendmsg+0x505/0x830
[  841.529474][T23890]  ? __pfx_____sys_sendmsg+0x10/0x10
[  841.529523][T23890]  ? import_iovec+0x74/0xa0
[  841.529551][T23890]  ___sys_sendmsg+0x21f/0x2a0
[  841.529584][T23890]  ? __pfx____sys_sendmsg+0x10/0x10
[  841.529660][T23890]  ? __fget_files+0x2a/0x420
[  841.529683][T23890]  ? __fget_files+0x3a0/0x420
[  841.529718][T23890]  __x64_sys_sendmsg+0x19b/0x260
[  841.529751][T23890]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  841.529803][T23890]  ? do_syscall_64+0xbe/0xfa0
[  841.529839][T23890]  do_syscall_64+0xfa/0xfa0
[  841.529866][T23890]  ? lockdep_hardirqs_on+0x9c/0x150
[  841.529895][T23890]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.529919][T23890]  ? clear_bhb_loop+0x60/0xb0
[  841.529949][T23890]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  841.529971][T23890] RIP: 0033:0x7fda02d8eec9
[  841.529994][T23890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  841.530015][T23890] RSP: 002b:00007fda03ba8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  841.530039][T23890] RAX: ffffffffffffffda RBX: 00007fda02fe5fa0 RCX: 00007fda02d8eec9
[  841.530058][T23890] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  841.530074][T23890] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  841.530089][T23890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  841.530104][T23890] R13: 00007fda02fe6038 R14: 00007fda02fe5fa0 R15: 00007ffc4dd999b8
[  841.530147][T23890]  </TASK>
[  842.305172][T23911] wg1 speed is unknown, defaulting to 1000
[  842.360364][T23910] syzkaller1: entered promiscuous mode
[  842.366010][T23910] syzkaller1: entered allmulticast mode
[  842.689066][T23927] xt_CT: You must specify a L4 protocol and not use inversions on it
[  842.754905][T23929] netlink: 'syz.3.5087': attribute type 4 has an invalid length.
[  842.978887][T23942] netlink: 'syz.1.5089': attribute type 16 has an invalid length.
[  842.988514][T23942] netlink: 'syz.1.5089': attribute type 17 has an invalid length.
[  843.028212][T23942] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  843.564967][T23969] netlink: 'syz.3.5101': attribute type 16 has an invalid length.
[  843.579345][T23969] netlink: 'syz.3.5101': attribute type 17 has an invalid length.
[  843.669294][T23969] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  843.715879][T23975] veth0_to_team: entered promiscuous mode
[  843.830568][T23979] netlink: 'syz.4.5104': attribute type 4 has an invalid length.
[  844.257826][T23994] bond0: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  844.448931][T24004] Bluetooth: hci0: unsupported parameter 512
[  844.465009][T24004] Bluetooth: hci0: invalid length 11, exp 1 for type 31
[  844.653837][T24013] netlink: 'syz.3.5120': attribute type 4 has an invalid length.
[  845.069744][T24032] wg1 speed is unknown, defaulting to 1000
[  845.097296][T24032] lo speed is unknown, defaulting to 1000
[  845.321330][T24043] wg1 speed is unknown, defaulting to 1000
[  845.449991][T24056] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  845.488782][T24055] netlink: 'syz.1.5137': attribute type 1 has an invalid length.
[  845.499517][T24055] netlink: 'syz.1.5137': attribute type 1 has an invalid length.
[  845.529279][T24058] wg1 speed is unknown, defaulting to 1000
[  845.538328][T24058] lo speed is unknown, defaulting to 1000
[  845.618996][T24054] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  845.633992][T24054] CPU: 1 UID: 0 PID: 24054 Comm: syz.0.5136 Not tainted syzkaller #0 PREEMPT(full) 
[  845.634023][T24054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  845.634038][T24054] Call Trace:
[  845.634048][T24054]  <TASK>
[  845.634058][T24054]  dump_stack_lvl+0x189/0x250
[  845.634091][T24054]  ? __pfx_dump_stack_lvl+0x10/0x10
[  845.634117][T24054]  ? __pfx__printk+0x10/0x10
[  845.634148][T24054]  ? kernfs_path_from_node+0x2f/0x290
[  845.634176][T24054]  ? kernfs_path_from_node+0x250/0x290
[  845.634201][T24054]  ? kernfs_path_from_node+0x2f/0x290
[  845.634233][T24054]  sysfs_warn_dup+0x8e/0xa0
[  845.634258][T24054]  sysfs_do_create_link_sd+0xc0/0x110
[  845.634306][T24054]  device_add_class_symlinks+0x1cf/0x240
[  845.634345][T24054]  device_add+0x475/0xb50
[  845.634385][T24054]  wiphy_register+0x1c81/0x2aa0
[  845.634435][T24054]  ? __pfx_wiphy_register+0x10/0x10
[  845.634463][T24054]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  845.634494][T24054]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  845.634552][T24054]  ieee80211_register_hw+0x3473/0x40d0
[  845.634595][T24054]  ? ieee80211_register_hw+0x13e1/0x40d0
[  845.634630][T24054]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  845.634651][T24054]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  845.634682][T24054]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  845.634709][T24054]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  845.634755][T24054]  ? __hrtimer_setup+0x187/0x210
[  845.634779][T24054]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  845.634814][T24054]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  845.634879][T24054]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  845.634904][T24054]  ? trace_kmalloc+0x1f/0xd0
[  845.634933][T24054]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  845.634966][T24054]  ? kstrndup+0xbf/0x160
[  845.635002][T24054]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  845.635038][T24054]  ? __pfx___nla_validate_parse+0x10/0x10
[  845.635088][T24054]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  845.635124][T24054]  ? rcu_is_watching+0x15/0xb0
[  845.635156][T24054]  ? __nla_parse+0x40/0x60
[  845.635192][T24054]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  845.635235][T24054]  genl_family_rcv_msg_doit+0x212/0x300
[  845.635274][T24054]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  845.635331][T24054]  ? bpf_lsm_capable+0x9/0x20
[  845.635357][T24054]  ? security_capable+0x7e/0x2e0
[  845.635393][T24054]  genl_rcv_msg+0x60e/0x790
[  845.635431][T24054]  ? __pfx_genl_rcv_msg+0x10/0x10
[  845.635459][T24054]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  845.635502][T24054]  netlink_rcv_skb+0x205/0x470
[  845.635523][T24054]  ? __lock_acquire+0xab9/0xd20
[  845.635546][T24054]  ? __pfx_genl_rcv_msg+0x10/0x10
[  845.635577][T24054]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  845.635620][T24054]  ? down_read+0x1ad/0x2e0
[  845.635656][T24054]  genl_rcv+0x28/0x40
[  845.635684][T24054]  netlink_unicast+0x82f/0x9e0
[  845.635728][T24054]  ? __pfx_netlink_unicast+0x10/0x10
[  845.635764][T24054]  ? netlink_sendmsg+0x642/0xb30
[  845.635785][T24054]  ? skb_put+0x11b/0x210
[  845.635813][T24054]  netlink_sendmsg+0x805/0xb30
[  845.635848][T24054]  ? __pfx_netlink_sendmsg+0x10/0x10
[  845.635877][T24054]  ? aa_sock_msg_perm+0xf1/0x1d0
[  845.635910][T24054]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  845.635931][T24054]  ? __pfx_netlink_sendmsg+0x10/0x10
[  845.635955][T24054]  __sock_sendmsg+0x21c/0x270
[  845.635993][T24054]  ____sys_sendmsg+0x505/0x830
[  845.636028][T24054]  ? __pfx_____sys_sendmsg+0x10/0x10
[  845.636062][T24054]  ? import_iovec+0x74/0xa0
[  845.636089][T24054]  ___sys_sendmsg+0x21f/0x2a0
[  845.636120][T24054]  ? __pfx____sys_sendmsg+0x10/0x10
[  845.636193][T24054]  ? __fget_files+0x2a/0x420
[  845.636214][T24054]  ? __fget_files+0x3a0/0x420
[  845.636248][T24054]  __x64_sys_sendmsg+0x19b/0x260
[  845.636280][T24054]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  845.636341][T24054]  ? do_syscall_64+0xbe/0xfa0
[  845.636376][T24054]  do_syscall_64+0xfa/0xfa0
[  845.636403][T24054]  ? lockdep_hardirqs_on+0x9c/0x150
[  845.636430][T24054]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.636453][T24054]  ? clear_bhb_loop+0x60/0xb0
[  845.636482][T24054]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  845.636504][T24054] RIP: 0033:0x7f35f218eec9
[  845.636526][T24054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  845.636547][T24054] RSP: 002b:00007f35f304c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  845.636570][T24054] RAX: ffffffffffffffda RBX: 00007f35f23e5fa0 RCX: 00007f35f218eec9
[  845.636588][T24054] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  845.636603][T24054] RBP: 00007f35f2211f91 R08: 0000000000000000 R09: 0000000000000000
[  845.636618][T24054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  845.636632][T24054] R13: 00007f35f23e6038 R14: 00007f35f23e5fa0 R15: 00007ffe587f3418
[  845.636675][T24054]  </TASK>
[  846.291733][T24066] netlink: 'syz.0.5140': attribute type 13 has an invalid length.
[  846.321254][T24066] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  846.588233][T24066] wg1 speed is unknown, defaulting to 1000
[  846.596677][T24066] lo speed is unknown, defaulting to 1000
[  847.085364][T24091] syzkaller1: entered promiscuous mode
[  847.101363][T24091] syzkaller1: entered allmulticast mode
[  847.274386][T24096] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5148'.
[  848.081137][T24114] validate_nla: 1 callbacks suppressed
[  848.081160][T24114] netlink: 'syz.0.5154': attribute type 13 has an invalid length.
[  848.113057][T24114] netlink: 'syz.0.5154': attribute type 17 has an invalid length.
[  848.162794][T24114] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  848.201535][T24121] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.5156'.
[  848.289627][T24114] wg1 speed is unknown, defaulting to 1000
[  848.319655][T24114] lo speed is unknown, defaulting to 1000
[  848.584825][ T1100] tipc: Subscription rejected, illegal request
[  849.130274][T24154] syzkaller1: entered promiscuous mode
[  849.150152][T24154] syzkaller1: entered allmulticast mode
[  849.548582][T24167] netlink: 'syz.1.5173': attribute type 1 has an invalid length.
[  849.733091][T24172] tap0: tun_chr_ioctl cmd 1074025678
[  849.745129][T24172] tap0: group set to 0
[  849.812149][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  849.836769][T24179] siw: device registration error -23
[  849.865071][T24179] wg1 speed is unknown, defaulting to 1000
[  850.629762][T24210] wg1 speed is unknown, defaulting to 1000
[  850.680142][T24211] siw: device registration error -23
[  850.700949][T24211] wg1 speed is unknown, defaulting to 1000
[  851.039586][T24221] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5196'.
[  851.064266][T24221] netlink: 'syz.0.5196': attribute type 10 has an invalid length.
[  851.470981][T24241] netlink: 'syz.2.5204': attribute type 13 has an invalid length.
[  851.490619][T24241] netlink: 'syz.2.5204': attribute type 17 has an invalid length.
[  851.543891][T24245] wg1 speed is unknown, defaulting to 1000
[  851.654734][T24241] 8021q: adding VLAN 0 to HW filter on device bond0
[  851.690456][T24241] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  851.776936][T24248] wg1 speed is unknown, defaulting to 1000
[  851.785372][T24248] lo speed is unknown, defaulting to 1000
[  851.818369][T24250] syzkaller1: entered promiscuous mode
[  851.825928][T24250] syzkaller1: entered allmulticast mode
[  852.335844][T24277] netlink: 'syz.0.5213': attribute type 16 has an invalid length.
[  852.344088][T24277] netlink: 'syz.0.5213': attribute type 17 has an invalid length.
[  852.419046][T24277] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  852.709370][T24290] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  852.741687][T24287] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  852.758048][T24287] CPU: 0 UID: 0 PID: 24287 Comm: syz.2.5217 Not tainted syzkaller #0 PREEMPT(full) 
[  852.758088][T24287] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  852.758103][T24287] Call Trace:
[  852.758113][T24287]  <TASK>
[  852.758124][T24287]  dump_stack_lvl+0x189/0x250
[  852.758160][T24287]  ? __pfx_dump_stack_lvl+0x10/0x10
[  852.758187][T24287]  ? __pfx__printk+0x10/0x10
[  852.758219][T24287]  ? kernfs_path_from_node+0x2f/0x290
[  852.758249][T24287]  ? kernfs_path_from_node+0x250/0x290
[  852.758274][T24287]  ? kernfs_path_from_node+0x2f/0x290
[  852.758307][T24287]  sysfs_warn_dup+0x8e/0xa0
[  852.758334][T24287]  sysfs_do_create_link_sd+0xc0/0x110
[  852.758365][T24287]  device_add_class_symlinks+0x1cf/0x240
[  852.758406][T24287]  device_add+0x475/0xb50
[  852.758445][T24287]  wiphy_register+0x1c81/0x2aa0
[  852.758498][T24287]  ? __pfx_wiphy_register+0x10/0x10
[  852.758528][T24287]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  852.758561][T24287]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  852.758604][T24287]  ieee80211_register_hw+0x3473/0x40d0
[  852.758647][T24287]  ? ieee80211_register_hw+0x13e1/0x40d0
[  852.758684][T24287]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  852.758706][T24287]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  852.758748][T24287]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  852.758776][T24287]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  852.758813][T24287]  ? __hrtimer_setup+0x187/0x210
[  852.758838][T24287]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  852.758876][T24287]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  852.758945][T24287]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  852.758972][T24287]  ? trace_kmalloc+0x1f/0xd0
[  852.759002][T24287]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  852.759037][T24287]  ? kstrndup+0xbf/0x160
[  852.759074][T24287]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  852.759106][T24287]  ? __pfx___nla_validate_parse+0x10/0x10
[  852.759160][T24287]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  852.759198][T24287]  ? rcu_is_watching+0x15/0xb0
[  852.759231][T24287]  ? __nla_parse+0x40/0x60
[  852.759269][T24287]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  852.759313][T24287]  genl_family_rcv_msg_doit+0x212/0x300
[  852.759353][T24287]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  852.759403][T24287]  ? bpf_lsm_capable+0x9/0x20
[  852.759431][T24287]  ? security_capable+0x7e/0x2e0
[  852.759469][T24287]  genl_rcv_msg+0x60e/0x790
[  852.759511][T24287]  ? __pfx_genl_rcv_msg+0x10/0x10
[  852.759542][T24287]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  852.759590][T24287]  netlink_rcv_skb+0x205/0x470
[  852.759612][T24287]  ? __lock_acquire+0xab9/0xd20
[  852.759637][T24287]  ? __pfx_genl_rcv_msg+0x10/0x10
[  852.759671][T24287]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  852.759727][T24287]  ? down_read+0x1ad/0x2e0
[  852.759765][T24287]  genl_rcv+0x28/0x40
[  852.759794][T24287]  netlink_unicast+0x82f/0x9e0
[  852.759843][T24287]  ? __pfx_netlink_unicast+0x10/0x10
[  852.759882][T24287]  ? netlink_sendmsg+0x642/0xb30
[  852.759905][T24287]  ? skb_put+0x11b/0x210
[  852.759936][T24287]  netlink_sendmsg+0x805/0xb30
[  852.759974][T24287]  ? __pfx_netlink_sendmsg+0x10/0x10
[  852.760006][T24287]  ? aa_sock_msg_perm+0xf1/0x1d0
[  852.760042][T24287]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  852.760065][T24287]  ? __pfx_netlink_sendmsg+0x10/0x10
[  852.760092][T24287]  __sock_sendmsg+0x21c/0x270
[  852.760132][T24287]  ____sys_sendmsg+0x505/0x830
[  852.760168][T24287]  ? __pfx_____sys_sendmsg+0x10/0x10
[  852.760209][T24287]  ? import_iovec+0x74/0xa0
[  852.760238][T24287]  ___sys_sendmsg+0x21f/0x2a0
[  852.760270][T24287]  ? __pfx____sys_sendmsg+0x10/0x10
[  852.760347][T24287]  ? __fget_files+0x2a/0x420
[  852.760369][T24287]  ? __fget_files+0x3a0/0x420
[  852.760405][T24287]  __x64_sys_sendmsg+0x19b/0x260
[  852.760438][T24287]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  852.760489][T24287]  ? do_syscall_64+0xbe/0xfa0
[  852.760524][T24287]  do_syscall_64+0xfa/0xfa0
[  852.760551][T24287]  ? lockdep_hardirqs_on+0x9c/0x150
[  852.760580][T24287]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  852.760604][T24287]  ? clear_bhb_loop+0x60/0xb0
[  852.760633][T24287]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  852.760656][T24287] RIP: 0033:0x7fd30458eec9
[  852.760678][T24287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  852.760699][T24287] RSP: 002b:00007fd30539f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  852.760732][T24287] RAX: ffffffffffffffda RBX: 00007fd3047e5fa0 RCX: 00007fd30458eec9
[  852.760750][T24287] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  852.760765][T24287] RBP: 00007fd304611f91 R08: 0000000000000000 R09: 0000000000000000
[  852.760781][T24287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  852.760795][T24287] R13: 00007fd3047e6038 R14: 00007fd3047e5fa0 R15: 00007ffc5c6dbcf8
[  852.760838][T24287]  </TASK>
[  853.445415][T24297] wg1 speed is unknown, defaulting to 1000
[  853.738788][T24308] netlink: 'syz.2.5225': attribute type 13 has an invalid length.
[  853.748065][T24308] netlink: 'syz.2.5225': attribute type 17 has an invalid length.
[  853.773778][T24308] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  853.917768][T24308] wg1 speed is unknown, defaulting to 1000
[  853.946495][T24308] lo speed is unknown, defaulting to 1000
[  854.194853][T24315] netlink: 'syz.4.5227': attribute type 29 has an invalid length.
[  854.229586][T24315] netlink: 'syz.4.5227': attribute type 29 has an invalid length.
[  854.260494][T24315] netlink: 596 bytes leftover after parsing attributes in process `syz.4.5227'.
[  854.693261][T19906] page_pool_release_retry() stalled pool shutdown: id 101, 1 inflight 60 sec
[  854.883262][T24337] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5236'.
[  855.017967][T24340] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5238'.
[  855.106511][T24342] netlink: 'syz.4.5239': attribute type 13 has an invalid length.
[  855.123958][T24342] netlink: 'syz.4.5239': attribute type 17 has an invalid length.
[  855.145012][T24342] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  855.164031][T21679] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  855.166743][T24346] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5241'.
[  855.290609][T24342] wg1 speed is unknown, defaulting to 1000
[  855.303094][T21679] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  855.334097][T24342] lo speed is unknown, defaulting to 1000
[  855.389058][T24349] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5242'.
[  855.439638][T24351] wg1 speed is unknown, defaulting to 1000
[  856.028911][T24373] netlink: 'syz.2.5248': attribute type 16 has an invalid length.
[  856.037811][T24373] netlink: 'syz.2.5248': attribute type 17 has an invalid length.
[  856.054818][T24373] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[  856.074309][T24374] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  856.921637][T24397] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  857.238597][T24404] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  857.269299][T24405] syzkaller1: entered promiscuous mode
[  857.281706][T24405] syzkaller1: entered allmulticast mode
[  857.827875][T24425] siw: device registration error -23
[  857.859410][T24425] wg1 speed is unknown, defaulting to 1000
[  857.905108][T24427] netlink: 'syz.0.5263': attribute type 4 has an invalid length.
[  857.913227][T19906] lo speed is unknown, defaulting to 1000
[  857.925903][T19906] syz1: Port: 1 Link DOWN
[  858.085769][T24437] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5267'.
[  858.096964][T24437] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5267'.
[  858.719792][T24447] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5271'.
[  858.810747][T24448] bond10: (slave veth17): Releasing active interface
[  858.818959][T21679] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  858.933774][T24448] A link change request failed with some changes committed already. Interface bond1 may have been left with an inconsistent configuration, please check.
[  858.950683][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  859.013801][T24458] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  859.236929][T24466] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  859.384255][T24471] siw: device registration error -23
[  859.391082][T24471] wg1 speed is unknown, defaulting to 1000
[  859.513150][T19907] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  859.688298][T24480] netlink: 'syz.1.5277': attribute type 16 has an invalid length.
[  859.701766][T24480] netlink: 'syz.1.5277': attribute type 17 has an invalid length.
[  859.770698][T24483] siw: device registration error -23
[  859.849410][T24480] 8021q: adding VLAN 0 to HW filter on device bond0
[  859.864480][T24480] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  859.881234][T24483] wg1 speed is unknown, defaulting to 1000
[  860.411372][T24496] wg1 speed is unknown, defaulting to 1000
[  860.556307][T24507] netlink: 'syz.0.5285': attribute type 16 has an invalid length.
[  860.565234][T24507] netlink: 'syz.0.5285': attribute type 17 has an invalid length.
[  860.593385][T24507] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  860.661508][ T5818] lo speed is unknown, defaulting to 1000
[  860.683479][ T5818] syz1: Port: 1 Link ACTIVE
[  860.720632][T24505] wg1 speed is unknown, defaulting to 1000
[  860.770882][T24505] lo speed is unknown, defaulting to 1000
[  860.925342][T24517] wg1 speed is unknown, defaulting to 1000
[  861.199585][T24526] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  861.836216][T24538] siw: device registration error -23
[  861.843321][T24538] wg1 speed is unknown, defaulting to 1000
[  861.923807][T24540] netlink: 'syz.1.5297': attribute type 1 has an invalid length.
[  861.944078][T24540] netlink: 'syz.1.5297': attribute type 1 has an invalid length.
[  862.180317][T24550] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5303'.
[  862.417601][T24559] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5306'.
[  862.687801][T24561] veth0_to_team: left promiscuous mode
[  862.756373][T19906] lo speed is unknown, defaulting to 1000
[  862.769348][T19906] syz1: Port: 1 Link DOWN
[  862.819690][T24574] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  862.865124][T24574] CPU: 1 UID: 0 PID: 24574 Comm: syz.3.5309 Not tainted syzkaller #0 PREEMPT(full) 
[  862.865159][T24574] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  862.865173][T24574] Call Trace:
[  862.865185][T24574]  <TASK>
[  862.865196][T24574]  dump_stack_lvl+0x189/0x250
[  862.865232][T24574]  ? __pfx_dump_stack_lvl+0x10/0x10
[  862.865262][T24574]  ? __pfx__printk+0x10/0x10
[  862.865294][T24574]  ? kernfs_path_from_node+0x2f/0x290
[  862.865322][T24574]  ? kernfs_path_from_node+0x250/0x290
[  862.865349][T24574]  ? kernfs_path_from_node+0x2f/0x290
[  862.865383][T24574]  sysfs_warn_dup+0x8e/0xa0
[  862.865411][T24574]  sysfs_do_create_link_sd+0xc0/0x110
[  862.865442][T24574]  device_add_class_symlinks+0x1cf/0x240
[  862.865483][T24574]  device_add+0x475/0xb50
[  862.865523][T24574]  wiphy_register+0x1c81/0x2aa0
[  862.865574][T24574]  ? __pfx_wiphy_register+0x10/0x10
[  862.865603][T24574]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  862.865635][T24574]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  862.865677][T24574]  ieee80211_register_hw+0x3473/0x40d0
[  862.865717][T24574]  ? ieee80211_register_hw+0x13e1/0x40d0
[  862.865762][T24574]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  862.865783][T24574]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  862.865816][T24574]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  862.865842][T24574]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  862.865878][T24574]  ? __hrtimer_setup+0x187/0x210
[  862.865902][T24574]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  862.865938][T24574]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  862.866004][T24574]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  862.866030][T24574]  ? trace_kmalloc+0x1f/0xd0
[  862.866058][T24574]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  862.866091][T24574]  ? kstrndup+0xbf/0x160
[  862.866128][T24574]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  862.866164][T24574]  ? __pfx___nla_validate_parse+0x10/0x10
[  862.866215][T24574]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  862.866252][T24574]  ? rcu_is_watching+0x15/0xb0
[  862.866283][T24574]  ? __nla_parse+0x40/0x60
[  862.866320][T24574]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  862.866364][T24574]  genl_family_rcv_msg_doit+0x212/0x300
[  862.866406][T24574]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  862.866455][T24574]  ? bpf_lsm_capable+0x9/0x20
[  862.866483][T24574]  ? security_capable+0x7e/0x2e0
[  862.866521][T24574]  genl_rcv_msg+0x60e/0x790
[  862.866561][T24574]  ? __pfx_genl_rcv_msg+0x10/0x10
[  862.866614][T24574]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  862.866682][T24574]  netlink_rcv_skb+0x205/0x470
[  862.866704][T24574]  ? __lock_acquire+0xab9/0xd20
[  862.866729][T24574]  ? __pfx_genl_rcv_msg+0x10/0x10
[  862.866771][T24574]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  862.866821][T24574]  ? down_read+0x1ad/0x2e0
[  862.866859][T24574]  genl_rcv+0x28/0x40
[  862.866887][T24574]  netlink_unicast+0x82f/0x9e0
[  862.866937][T24574]  ? __pfx_netlink_unicast+0x10/0x10
[  862.866975][T24574]  ? netlink_sendmsg+0x642/0xb30
[  862.866998][T24574]  ? skb_put+0x11b/0x210
[  862.867029][T24574]  netlink_sendmsg+0x805/0xb30
[  862.867068][T24574]  ? __pfx_netlink_sendmsg+0x10/0x10
[  862.867099][T24574]  ? aa_sock_msg_perm+0xf1/0x1d0
[  862.867134][T24574]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  862.867157][T24574]  ? __pfx_netlink_sendmsg+0x10/0x10
[  862.867184][T24574]  __sock_sendmsg+0x21c/0x270
[  862.867224][T24574]  ____sys_sendmsg+0x505/0x830
[  862.867260][T24574]  ? __pfx_____sys_sendmsg+0x10/0x10
[  862.867302][T24574]  ? import_iovec+0x74/0xa0
[  862.867330][T24574]  ___sys_sendmsg+0x21f/0x2a0
[  862.867362][T24574]  ? __pfx____sys_sendmsg+0x10/0x10
[  862.867439][T24574]  ? __fget_files+0x2a/0x420
[  862.867462][T24574]  ? __fget_files+0x3a0/0x420
[  862.867498][T24574]  __x64_sys_sendmsg+0x19b/0x260
[  862.867531][T24574]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  862.867582][T24574]  ? do_syscall_64+0xbe/0xfa0
[  862.867617][T24574]  do_syscall_64+0xfa/0xfa0
[  862.867644][T24574]  ? lockdep_hardirqs_on+0x9c/0x150
[  862.867673][T24574]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.867697][T24574]  ? clear_bhb_loop+0x60/0xb0
[  862.867726][T24574]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  862.867756][T24574] RIP: 0033:0x7fda02d8eec9
[  862.867779][T24574] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  862.867802][T24574] RSP: 002b:00007fda03ba8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  862.867828][T24574] RAX: ffffffffffffffda RBX: 00007fda02fe5fa0 RCX: 00007fda02d8eec9
[  862.867847][T24574] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  862.867863][T24574] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  862.867878][T24574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  862.867893][T24574] R13: 00007fda02fe6038 R14: 00007fda02fe5fa0 R15: 00007ffc4dd999b8
[  862.867934][T24574]  </TASK>
[  863.404812][T24577] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  863.446293][T24579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5310'.
[  863.459116][T24579] netlink: 'syz.1.5310': attribute type 10 has an invalid length.
[  863.828821][T24593] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  863.841086][T24593] CPU: 1 UID: 0 PID: 24593 Comm: syz.3.5316 Not tainted syzkaller #0 PREEMPT(full) 
[  863.841121][T24593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  863.841136][T24593] Call Trace:
[  863.841146][T24593]  <TASK>
[  863.841156][T24593]  dump_stack_lvl+0x189/0x250
[  863.841193][T24593]  ? __pfx_dump_stack_lvl+0x10/0x10
[  863.841220][T24593]  ? __pfx__printk+0x10/0x10
[  863.841252][T24593]  ? kernfs_path_from_node+0x2f/0x290
[  863.841282][T24593]  ? kernfs_path_from_node+0x250/0x290
[  863.841309][T24593]  ? kernfs_path_from_node+0x2f/0x290
[  863.841344][T24593]  sysfs_warn_dup+0x8e/0xa0
[  863.841372][T24593]  sysfs_do_create_link_sd+0xc0/0x110
[  863.841405][T24593]  device_add_class_symlinks+0x1cf/0x240
[  863.841447][T24593]  device_add+0x475/0xb50
[  863.841487][T24593]  wiphy_register+0x1c81/0x2aa0
[  863.841541][T24593]  ? __pfx_wiphy_register+0x10/0x10
[  863.841571][T24593]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  863.841604][T24593]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  863.841647][T24593]  ieee80211_register_hw+0x3473/0x40d0
[  863.841690][T24593]  ? ieee80211_register_hw+0x13e1/0x40d0
[  863.841727][T24593]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  863.841748][T24593]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  863.841781][T24593]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  863.841808][T24593]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  863.841844][T24593]  ? __hrtimer_setup+0x187/0x210
[  863.841869][T24593]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  863.841907][T24593]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  863.841981][T24593]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  863.842008][T24593]  ? trace_kmalloc+0x1f/0xd0
[  863.842036][T24593]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  863.842071][T24593]  ? kstrndup+0xbf/0x160
[  863.842109][T24593]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  863.842145][T24593]  ? __pfx___nla_validate_parse+0x10/0x10
[  863.842197][T24593]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  863.842234][T24593]  ? rcu_is_watching+0x15/0xb0
[  863.842266][T24593]  ? __nla_parse+0x40/0x60
[  863.842303][T24593]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  863.842348][T24593]  genl_family_rcv_msg_doit+0x212/0x300
[  863.842390][T24593]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  863.842440][T24593]  ? bpf_lsm_capable+0x9/0x20
[  863.842468][T24593]  ? security_capable+0x7e/0x2e0
[  863.842506][T24593]  genl_rcv_msg+0x60e/0x790
[  863.842546][T24593]  ? __pfx_genl_rcv_msg+0x10/0x10
[  863.842575][T24593]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  863.842623][T24593]  netlink_rcv_skb+0x205/0x470
[  863.842644][T24593]  ? __lock_acquire+0xab9/0xd20
[  863.842668][T24593]  ? __pfx_genl_rcv_msg+0x10/0x10
[  863.842702][T24593]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  863.842751][T24593]  ? down_read+0x1ad/0x2e0
[  863.842787][T24593]  genl_rcv+0x28/0x40
[  863.842815][T24593]  netlink_unicast+0x82f/0x9e0
[  863.842863][T24593]  ? __pfx_netlink_unicast+0x10/0x10
[  863.842902][T24593]  ? netlink_sendmsg+0x642/0xb30
[  863.842933][T24593]  ? skb_put+0x11b/0x210
[  863.842964][T24593]  netlink_sendmsg+0x805/0xb30
[  863.843002][T24593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  863.843032][T24593]  ? aa_sock_msg_perm+0xf1/0x1d0
[  863.843067][T24593]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  863.843089][T24593]  ? __pfx_netlink_sendmsg+0x10/0x10
[  863.843116][T24593]  __sock_sendmsg+0x21c/0x270
[  863.843154][T24593]  ____sys_sendmsg+0x505/0x830
[  863.843189][T24593]  ? __pfx_____sys_sendmsg+0x10/0x10
[  863.843230][T24593]  ? import_iovec+0x74/0xa0
[  863.843259][T24593]  ___sys_sendmsg+0x21f/0x2a0
[  863.843290][T24593]  ? __pfx____sys_sendmsg+0x10/0x10
[  863.843367][T24593]  ? __fget_files+0x2a/0x420
[  863.843387][T24593]  ? __fget_files+0x3a0/0x420
[  863.843435][T24593]  __x64_sys_sendmsg+0x19b/0x260
[  863.843466][T24593]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  863.843514][T24593]  ? do_syscall_64+0xbe/0xfa0
[  863.843547][T24593]  do_syscall_64+0xfa/0xfa0
[  863.843571][T24593]  ? lockdep_hardirqs_on+0x9c/0x150
[  863.843597][T24593]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.843619][T24593]  ? clear_bhb_loop+0x60/0xb0
[  863.843648][T24593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  863.843671][T24593] RIP: 0033:0x7fda02d8eec9
[  863.843693][T24593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  863.843713][T24593] RSP: 002b:00007fda03ba8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  863.843739][T24593] RAX: ffffffffffffffda RBX: 00007fda02fe5fa0 RCX: 00007fda02d8eec9
[  863.843756][T24593] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  863.843772][T24593] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  863.843786][T24593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  863.843800][T24593] R13: 00007fda02fe6038 R14: 00007fda02fe5fa0 R15: 00007ffc4dd999b8
[  863.843841][T24593]  </TASK>
[  864.315925][T24599] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[  864.735394][T24608] syzkaller1: entered promiscuous mode
[  864.740936][T24608] syzkaller1: entered allmulticast mode
[  865.570387][T24630] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5327'.
[  865.703730][T24638] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5332'.
[  865.812275][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  866.019450][T24650] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5337'.
[  866.268992][T24651] bond9: left promiscuous mode
[  866.275372][T24651] veth17: left promiscuous mode
[  866.327782][T24659] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5339'.
[  866.364638][T24659] netlink: 'syz.2.5339': attribute type 10 has an invalid length.
[  866.385251][T24659] bond0: (slave wlan1): refused to change device type
[  866.494426][T24674] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5345'.
[  866.674606][T24686] siw: device registration error -23
[  866.710626][T24686] wg1 speed is unknown, defaulting to 1000
[  866.945112][T24692] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5350'.
[  867.104574][T24699] netlink: 'syz.2.5353': attribute type 11 has an invalid length.
[  867.177883][T24701] netlink: 'syz.1.5354': attribute type 1 has an invalid length.
[  867.196407][T24701] netlink: 'syz.1.5354': attribute type 1 has an invalid length.
[  867.293269][T24705] syzkaller1: entered promiscuous mode
[  867.299314][T24705] syzkaller1: entered allmulticast mode
[  867.403969][T24713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5360'.
[  867.415262][T24713] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5360'.
[  867.673198][T24727] netlink: 52 bytes leftover after parsing attributes in process `syz.4.5366'.
[  868.343964][T24764] netlink: 52 bytes leftover after parsing attributes in process `syz.1.5381'.
[  868.568361][T24771] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  868.597190][T24771] CPU: 1 UID: 0 PID: 24771 Comm: syz.0.5384 Not tainted syzkaller #0 PREEMPT(full) 
[  868.597226][T24771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  868.597242][T24771] Call Trace:
[  868.597252][T24771]  <TASK>
[  868.597263][T24771]  dump_stack_lvl+0x189/0x250
[  868.597299][T24771]  ? __pfx_dump_stack_lvl+0x10/0x10
[  868.597331][T24771]  ? __pfx__printk+0x10/0x10
[  868.597363][T24771]  ? kernfs_path_from_node+0x2f/0x290
[  868.597392][T24771]  ? kernfs_path_from_node+0x250/0x290
[  868.597419][T24771]  ? kernfs_path_from_node+0x2f/0x290
[  868.597454][T24771]  sysfs_warn_dup+0x8e/0xa0
[  868.597483][T24771]  sysfs_do_create_link_sd+0xc0/0x110
[  868.597515][T24771]  device_add_class_symlinks+0x1cf/0x240
[  868.597557][T24771]  device_add+0x475/0xb50
[  868.597604][T24771]  wiphy_register+0x1c81/0x2aa0
[  868.597658][T24771]  ? __pfx_wiphy_register+0x10/0x10
[  868.597688][T24771]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  868.597721][T24771]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  868.597765][T24771]  ieee80211_register_hw+0x3473/0x40d0
[  868.597808][T24771]  ? ieee80211_register_hw+0x13e1/0x40d0
[  868.597844][T24771]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  868.597865][T24771]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  868.597898][T24771]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  868.597925][T24771]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  868.597962][T24771]  ? __hrtimer_setup+0x187/0x210
[  868.597987][T24771]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  868.598025][T24771]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  868.598092][T24771]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  868.598119][T24771]  ? trace_kmalloc+0x1f/0xd0
[  868.598148][T24771]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  868.598183][T24771]  ? kstrndup+0xbf/0x160
[  868.598221][T24771]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  868.598258][T24771]  ? __pfx___nla_validate_parse+0x10/0x10
[  868.598310][T24771]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  868.598348][T24771]  ? rcu_is_watching+0x15/0xb0
[  868.598379][T24771]  ? __nla_parse+0x40/0x60
[  868.598417][T24771]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  868.598461][T24771]  genl_family_rcv_msg_doit+0x212/0x300
[  868.598503][T24771]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  868.598554][T24771]  ? bpf_lsm_capable+0x9/0x20
[  868.598587][T24771]  ? security_capable+0x7e/0x2e0
[  868.598627][T24771]  genl_rcv_msg+0x60e/0x790
[  868.598668][T24771]  ? __pfx_genl_rcv_msg+0x10/0x10
[  868.598700][T24771]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  868.598749][T24771]  netlink_rcv_skb+0x205/0x470
[  868.598771][T24771]  ? __lock_acquire+0xab9/0xd20
[  868.598795][T24771]  ? __pfx_genl_rcv_msg+0x10/0x10
[  868.598829][T24771]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  868.598879][T24771]  ? down_read+0x1ad/0x2e0
[  868.598916][T24771]  genl_rcv+0x28/0x40
[  868.598944][T24771]  netlink_unicast+0x82f/0x9e0
[  868.598993][T24771]  ? __pfx_netlink_unicast+0x10/0x10
[  868.599032][T24771]  ? netlink_sendmsg+0x642/0xb30
[  868.599055][T24771]  ? skb_put+0x11b/0x210
[  868.599085][T24771]  netlink_sendmsg+0x805/0xb30
[  868.599123][T24771]  ? __pfx_netlink_sendmsg+0x10/0x10
[  868.599154][T24771]  ? aa_sock_msg_perm+0xf1/0x1d0
[  868.599189][T24771]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  868.599211][T24771]  ? __pfx_netlink_sendmsg+0x10/0x10
[  868.599238][T24771]  __sock_sendmsg+0x21c/0x270
[  868.599277][T24771]  ____sys_sendmsg+0x505/0x830
[  868.599313][T24771]  ? __pfx_____sys_sendmsg+0x10/0x10
[  868.599354][T24771]  ? import_iovec+0x74/0xa0
[  868.599382][T24771]  ___sys_sendmsg+0x21f/0x2a0
[  868.599414][T24771]  ? __pfx____sys_sendmsg+0x10/0x10
[  868.599490][T24771]  ? __fget_files+0x2a/0x420
[  868.599510][T24771]  ? __fget_files+0x3a0/0x420
[  868.599546][T24771]  __x64_sys_sendmsg+0x19b/0x260
[  868.599578][T24771]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  868.599636][T24771]  ? do_syscall_64+0xbe/0xfa0
[  868.599671][T24771]  do_syscall_64+0xfa/0xfa0
[  868.599698][T24771]  ? lockdep_hardirqs_on+0x9c/0x150
[  868.599726][T24771]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  868.599751][T24771]  ? clear_bhb_loop+0x60/0xb0
[  868.599781][T24771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  868.599804][T24771] RIP: 0033:0x7f35f218eec9
[  868.599826][T24771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  868.599848][T24771] RSP: 002b:00007f35f304c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  868.599875][T24771] RAX: ffffffffffffffda RBX: 00007f35f23e5fa0 RCX: 00007f35f218eec9
[  868.599893][T24771] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  868.599909][T24771] RBP: 00007f35f2211f91 R08: 0000000000000000 R09: 0000000000000000
[  868.599925][T24771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  868.599939][T24771] R13: 00007f35f23e6038 R14: 00007f35f23e5fa0 R15: 00007ffe587f3418
[  868.599982][T24771]  </TASK>
[  869.143425][T24786] siw: device registration error -23
[  869.149947][T24786] wg1 speed is unknown, defaulting to 1000
[  869.357879][T24799] siw: device registration error -23
[  869.566360][T24809] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5395'.
[  869.648843][T24811] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  869.676490][T24811] CPU: 1 UID: 0 PID: 24811 Comm: syz.1.5398 Not tainted syzkaller #0 PREEMPT(full) 
[  869.676526][T24811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  869.676551][T24811] Call Trace:
[  869.676561][T24811]  <TASK>
[  869.676572][T24811]  dump_stack_lvl+0x189/0x250
[  869.676608][T24811]  ? __pfx_dump_stack_lvl+0x10/0x10
[  869.676635][T24811]  ? __pfx__printk+0x10/0x10
[  869.676666][T24811]  ? kernfs_path_from_node+0x2f/0x290
[  869.676696][T24811]  ? kernfs_path_from_node+0x250/0x290
[  869.676723][T24811]  ? kernfs_path_from_node+0x2f/0x290
[  869.676758][T24811]  sysfs_warn_dup+0x8e/0xa0
[  869.676785][T24811]  sysfs_do_create_link_sd+0xc0/0x110
[  869.676818][T24811]  device_add_class_symlinks+0x1cf/0x240
[  869.676861][T24811]  device_add+0x475/0xb50
[  869.676901][T24811]  wiphy_register+0x1c81/0x2aa0
[  869.676951][T24811]  ? __pfx_wiphy_register+0x10/0x10
[  869.676982][T24811]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  869.677013][T24811]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  869.677053][T24811]  ieee80211_register_hw+0x3473/0x40d0
[  869.677094][T24811]  ? ieee80211_register_hw+0x13e1/0x40d0
[  869.677127][T24811]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  869.677147][T24811]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  869.677181][T24811]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  869.677207][T24811]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  869.677243][T24811]  ? __hrtimer_setup+0x187/0x210
[  869.677267][T24811]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  869.677302][T24811]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  869.677367][T24811]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  869.677392][T24811]  ? trace_kmalloc+0x1f/0xd0
[  869.677420][T24811]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  869.677452][T24811]  ? kstrndup+0xbf/0x160
[  869.677487][T24811]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  869.677523][T24811]  ? __pfx___nla_validate_parse+0x10/0x10
[  869.677579][T24811]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  869.677615][T24811]  ? rcu_is_watching+0x15/0xb0
[  869.677647][T24811]  ? __nla_parse+0x40/0x60
[  869.677684][T24811]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  869.677726][T24811]  genl_family_rcv_msg_doit+0x212/0x300
[  869.677767][T24811]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  869.677813][T24811]  ? bpf_lsm_capable+0x9/0x20
[  869.677840][T24811]  ? security_capable+0x7e/0x2e0
[  869.677878][T24811]  genl_rcv_msg+0x60e/0x790
[  869.677917][T24811]  ? __pfx_genl_rcv_msg+0x10/0x10
[  869.677947][T24811]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  869.677995][T24811]  netlink_rcv_skb+0x205/0x470
[  869.678017][T24811]  ? __lock_acquire+0xab9/0xd20
[  869.678040][T24811]  ? __pfx_genl_rcv_msg+0x10/0x10
[  869.678074][T24811]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  869.678122][T24811]  ? down_read+0x1ad/0x2e0
[  869.678158][T24811]  genl_rcv+0x28/0x40
[  869.678192][T24811]  netlink_unicast+0x82f/0x9e0
[  869.678241][T24811]  ? __pfx_netlink_unicast+0x10/0x10
[  869.678279][T24811]  ? netlink_sendmsg+0x642/0xb30
[  869.678303][T24811]  ? skb_put+0x11b/0x210
[  869.678332][T24811]  netlink_sendmsg+0x805/0xb30
[  869.678370][T24811]  ? __pfx_netlink_sendmsg+0x10/0x10
[  869.678400][T24811]  ? aa_sock_msg_perm+0xf1/0x1d0
[  869.678435][T24811]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  869.678457][T24811]  ? __pfx_netlink_sendmsg+0x10/0x10
[  869.678484][T24811]  __sock_sendmsg+0x21c/0x270
[  869.678523][T24811]  ____sys_sendmsg+0x505/0x830
[  869.678568][T24811]  ? __pfx_____sys_sendmsg+0x10/0x10
[  869.678609][T24811]  ? import_iovec+0x74/0xa0
[  869.678636][T24811]  ___sys_sendmsg+0x21f/0x2a0
[  869.678668][T24811]  ? __pfx____sys_sendmsg+0x10/0x10
[  869.678744][T24811]  ? __fget_files+0x2a/0x420
[  869.678764][T24811]  ? __fget_files+0x3a0/0x420
[  869.678798][T24811]  __x64_sys_sendmsg+0x19b/0x260
[  869.678831][T24811]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  869.678883][T24811]  ? do_syscall_64+0xbe/0xfa0
[  869.678916][T24811]  do_syscall_64+0xfa/0xfa0
[  869.678943][T24811]  ? lockdep_hardirqs_on+0x9c/0x150
[  869.678971][T24811]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.678995][T24811]  ? clear_bhb_loop+0x60/0xb0
[  869.679022][T24811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  869.679044][T24811] RIP: 0033:0x7f04ae78eec9
[  869.679065][T24811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  869.679084][T24811] RSP: 002b:00007f04af54a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  869.679108][T24811] RAX: ffffffffffffffda RBX: 00007f04ae9e5fa0 RCX: 00007f04ae78eec9
[  869.679126][T24811] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  869.679141][T24811] RBP: 00007f04ae811f91 R08: 0000000000000000 R09: 0000000000000000
[  869.679166][T24811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  869.679180][T24811] R13: 00007f04ae9e6038 R14: 00007f04ae9e5fa0 R15: 00007fffa7e87bf8
[  869.679219][T24811]  </TASK>
[  869.688137][T24819] siw: device registration error -23
[  869.761413][T24821] wg1 speed is unknown, defaulting to 1000
[  870.457276][T24837] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5406'.
[  870.476327][T24836] siw: device registration error -23
[  870.484595][T24837] netlink: 'syz.2.5406': attribute type 10 has an invalid length.
[  870.501682][T24837] bond0: (slave wlan1): refused to change device type
[  870.567672][T24839] pim6reg1: entered allmulticast mode
[  870.867695][T24852] netlink: 'syz.4.5410': attribute type 1 has an invalid length.
[  870.879951][T24852] netlink: 'syz.4.5410': attribute type 1 has an invalid length.
[  871.054721][T24856] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  871.075771][T24856] CPU: 0 UID: 0 PID: 24856 Comm: syz.4.5412 Not tainted syzkaller #0 PREEMPT(full) 
[  871.075802][T24856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  871.075819][T24856] Call Trace:
[  871.075828][T24856]  <TASK>
[  871.075839][T24856]  dump_stack_lvl+0x189/0x250
[  871.075874][T24856]  ? __pfx_dump_stack_lvl+0x10/0x10
[  871.075901][T24856]  ? __pfx__printk+0x10/0x10
[  871.075931][T24856]  ? kernfs_path_from_node+0x2f/0x290
[  871.075960][T24856]  ? kernfs_path_from_node+0x250/0x290
[  871.075988][T24856]  ? kernfs_path_from_node+0x2f/0x290
[  871.076022][T24856]  sysfs_warn_dup+0x8e/0xa0
[  871.076050][T24856]  sysfs_do_create_link_sd+0xc0/0x110
[  871.076082][T24856]  device_add_class_symlinks+0x1cf/0x240
[  871.076125][T24856]  device_add+0x475/0xb50
[  871.076179][T24856]  wiphy_register+0x1c81/0x2aa0
[  871.076231][T24856]  ? __pfx_wiphy_register+0x10/0x10
[  871.076261][T24856]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  871.076294][T24856]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  871.076336][T24856]  ieee80211_register_hw+0x3473/0x40d0
[  871.076378][T24856]  ? ieee80211_register_hw+0x13e1/0x40d0
[  871.076413][T24856]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  871.076435][T24856]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  871.076468][T24856]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  871.076496][T24856]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  871.076533][T24856]  ? __hrtimer_setup+0x187/0x210
[  871.076557][T24856]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  871.076594][T24856]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  871.076661][T24856]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  871.076689][T24856]  ? trace_kmalloc+0x1f/0xd0
[  871.076719][T24856]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  871.076755][T24856]  ? kstrndup+0xbf/0x160
[  871.076792][T24856]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  871.076828][T24856]  ? __pfx___nla_validate_parse+0x10/0x10
[  871.076881][T24856]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  871.076919][T24856]  ? rcu_is_watching+0x15/0xb0
[  871.076953][T24856]  ? __nla_parse+0x40/0x60
[  871.076992][T24856]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  871.077038][T24856]  genl_family_rcv_msg_doit+0x212/0x300
[  871.077081][T24856]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  871.077131][T24856]  ? bpf_lsm_capable+0x9/0x20
[  871.077170][T24856]  ? security_capable+0x7e/0x2e0
[  871.077208][T24856]  genl_rcv_msg+0x60e/0x790
[  871.077249][T24856]  ? __pfx_genl_rcv_msg+0x10/0x10
[  871.077281][T24856]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  871.077330][T24856]  netlink_rcv_skb+0x205/0x470
[  871.077352][T24856]  ? __lock_acquire+0xab9/0xd20
[  871.077375][T24856]  ? __pfx_genl_rcv_msg+0x10/0x10
[  871.077410][T24856]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  871.077461][T24856]  ? down_read+0x1ad/0x2e0
[  871.077498][T24856]  genl_rcv+0x28/0x40
[  871.077527][T24856]  netlink_unicast+0x82f/0x9e0
[  871.077573][T24856]  ? __pfx_netlink_unicast+0x10/0x10
[  871.077611][T24856]  ? netlink_sendmsg+0x642/0xb30
[  871.077634][T24856]  ? skb_put+0x11b/0x210
[  871.077664][T24856]  netlink_sendmsg+0x805/0xb30
[  871.077702][T24856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  871.077733][T24856]  ? aa_sock_msg_perm+0xf1/0x1d0
[  871.077768][T24856]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  871.077791][T24856]  ? __pfx_netlink_sendmsg+0x10/0x10
[  871.077818][T24856]  __sock_sendmsg+0x21c/0x270
[  871.077857][T24856]  ____sys_sendmsg+0x505/0x830
[  871.077894][T24856]  ? __pfx_____sys_sendmsg+0x10/0x10
[  871.077936][T24856]  ? import_iovec+0x74/0xa0
[  871.077963][T24856]  ___sys_sendmsg+0x21f/0x2a0
[  871.077996][T24856]  ? __pfx____sys_sendmsg+0x10/0x10
[  871.078072][T24856]  ? __fget_files+0x2a/0x420
[  871.078094][T24856]  ? __fget_files+0x3a0/0x420
[  871.078129][T24856]  __x64_sys_sendmsg+0x19b/0x260
[  871.078169][T24856]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  871.078222][T24856]  ? do_syscall_64+0xbe/0xfa0
[  871.078257][T24856]  do_syscall_64+0xfa/0xfa0
[  871.078285][T24856]  ? lockdep_hardirqs_on+0x9c/0x150
[  871.078314][T24856]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  871.078338][T24856]  ? clear_bhb_loop+0x60/0xb0
[  871.078368][T24856]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  871.078391][T24856] RIP: 0033:0x7f83dfb8eec9
[  871.078412][T24856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  871.078433][T24856] RSP: 002b:00007f83e0a77038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  871.078458][T24856] RAX: ffffffffffffffda RBX: 00007f83dfde5fa0 RCX: 00007f83dfb8eec9
[  871.078477][T24856] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  871.078492][T24856] RBP: 00007f83dfc11f91 R08: 0000000000000000 R09: 0000000000000000
[  871.078507][T24856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  871.078522][T24856] R13: 00007f83dfde6038 R14: 00007f83dfde5fa0 R15: 00007ffd72189908
[  871.078564][T24856]  </TASK>
[  871.856482][T24870] siw: device registration error -23
[  872.048140][T24872] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5419'.
[  872.089370][T24872] netlink: 'syz.1.5419': attribute type 10 has an invalid length.
[  872.263143][T24877] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  872.356365][T24881] netlink: 'syz.4.5423': attribute type 1 has an invalid length.
[  872.366291][T24881] netlink: 'syz.4.5423': attribute type 1 has an invalid length.
[  872.466164][T24884] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check.
[  872.887011][T24901] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  872.917791][T24901] CPU: 1 UID: 0 PID: 24901 Comm: syz.1.5427 Not tainted syzkaller #0 PREEMPT(full) 
[  872.917838][T24901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  872.917853][T24901] Call Trace:
[  872.917864][T24901]  <TASK>
[  872.917874][T24901]  dump_stack_lvl+0x189/0x250
[  872.917909][T24901]  ? __pfx_dump_stack_lvl+0x10/0x10
[  872.917934][T24901]  ? __pfx__printk+0x10/0x10
[  872.917965][T24901]  ? kernfs_path_from_node+0x2f/0x290
[  872.917994][T24901]  ? kernfs_path_from_node+0x250/0x290
[  872.918026][T24901]  ? kernfs_path_from_node+0x2f/0x290
[  872.918060][T24901]  sysfs_warn_dup+0x8e/0xa0
[  872.918088][T24901]  sysfs_do_create_link_sd+0xc0/0x110
[  872.918119][T24901]  device_add_class_symlinks+0x1cf/0x240
[  872.918159][T24901]  device_add+0x475/0xb50
[  872.918198][T24901]  wiphy_register+0x1c81/0x2aa0
[  872.918249][T24901]  ? __pfx_wiphy_register+0x10/0x10
[  872.918279][T24901]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  872.918310][T24901]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  872.918352][T24901]  ieee80211_register_hw+0x3473/0x40d0
[  872.918393][T24901]  ? ieee80211_register_hw+0x13e1/0x40d0
[  872.918428][T24901]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  872.918448][T24901]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  872.918480][T24901]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  872.918506][T24901]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  872.918540][T24901]  ? __hrtimer_setup+0x187/0x210
[  872.918563][T24901]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  872.918598][T24901]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  872.918663][T24901]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  872.918689][T24901]  ? trace_kmalloc+0x1f/0xd0
[  872.918716][T24901]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  872.918750][T24901]  ? kstrndup+0xbf/0x160
[  872.918787][T24901]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  872.918823][T24901]  ? __pfx___nla_validate_parse+0x10/0x10
[  872.918874][T24901]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  872.918929][T24901]  ? rcu_is_watching+0x15/0xb0
[  872.918962][T24901]  ? __nla_parse+0x40/0x60
[  872.919001][T24901]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  872.919054][T24901]  genl_family_rcv_msg_doit+0x212/0x300
[  872.919098][T24901]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  872.919150][T24901]  ? bpf_lsm_capable+0x9/0x20
[  872.919180][T24901]  ? security_capable+0x7e/0x2e0
[  872.919219][T24901]  genl_rcv_msg+0x60e/0x790
[  872.919261][T24901]  ? __pfx_genl_rcv_msg+0x10/0x10
[  872.919292][T24901]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  872.919341][T24901]  netlink_rcv_skb+0x205/0x470
[  872.919363][T24901]  ? __lock_acquire+0xab9/0xd20
[  872.919388][T24901]  ? __pfx_genl_rcv_msg+0x10/0x10
[  872.919422][T24901]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  872.919472][T24901]  ? down_read+0x1ad/0x2e0
[  872.919510][T24901]  genl_rcv+0x28/0x40
[  872.919539][T24901]  netlink_unicast+0x82f/0x9e0
[  872.919588][T24901]  ? __pfx_netlink_unicast+0x10/0x10
[  872.919628][T24901]  ? netlink_sendmsg+0x642/0xb30
[  872.919651][T24901]  ? skb_put+0x11b/0x210
[  872.919682][T24901]  netlink_sendmsg+0x805/0xb30
[  872.919721][T24901]  ? __pfx_netlink_sendmsg+0x10/0x10
[  872.919752][T24901]  ? aa_sock_msg_perm+0xf1/0x1d0
[  872.919787][T24901]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  872.919819][T24901]  ? __pfx_netlink_sendmsg+0x10/0x10
[  872.919847][T24901]  __sock_sendmsg+0x21c/0x270
[  872.919887][T24901]  ____sys_sendmsg+0x505/0x830
[  872.919924][T24901]  ? __pfx_____sys_sendmsg+0x10/0x10
[  872.919966][T24901]  ? import_iovec+0x74/0xa0
[  872.919993][T24901]  ___sys_sendmsg+0x21f/0x2a0
[  872.920032][T24901]  ? __pfx____sys_sendmsg+0x10/0x10
[  872.920109][T24901]  ? __fget_files+0x2a/0x420
[  872.920141][T24901]  ? __fget_files+0x3a0/0x420
[  872.920175][T24901]  __x64_sys_sendmsg+0x19b/0x260
[  872.920207][T24901]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  872.920256][T24901]  ? do_syscall_64+0xbe/0xfa0
[  872.920289][T24901]  do_syscall_64+0xfa/0xfa0
[  872.920315][T24901]  ? lockdep_hardirqs_on+0x9c/0x150
[  872.920342][T24901]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.920365][T24901]  ? clear_bhb_loop+0x60/0xb0
[  872.920393][T24901]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  872.920415][T24901] RIP: 0033:0x7f04ae78eec9
[  872.920437][T24901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  872.920457][T24901] RSP: 002b:00007f04af54a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  872.920480][T24901] RAX: ffffffffffffffda RBX: 00007f04ae9e5fa0 RCX: 00007f04ae78eec9
[  872.920497][T24901] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000008
[  872.920512][T24901] RBP: 00007f04ae811f91 R08: 0000000000000000 R09: 0000000000000000
[  872.920526][T24901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  872.920541][T24901] R13: 00007f04ae9e6038 R14: 00007f04ae9e5fa0 R15: 00007fffa7e87bf8
[  872.920582][T24901]  </TASK>
[  873.644733][T24910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5430'.
[  873.657438][T24909] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5429'.
[  873.659501][T24910] netlink: 'syz.1.5430': attribute type 10 has an invalid length.
[  873.675988][T24909] netlink: 'syz.0.5429': attribute type 1 has an invalid length.
[  873.950798][T24918] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  873.972084][T24918] CPU: 1 UID: 0 PID: 24918 Comm: syz.0.5434 Not tainted syzkaller #0 PREEMPT(full) 
[  873.972122][T24918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  873.972138][T24918] Call Trace:
[  873.972148][T24918]  <TASK>
[  873.972158][T24918]  dump_stack_lvl+0x189/0x250
[  873.972194][T24918]  ? __pfx_dump_stack_lvl+0x10/0x10
[  873.972221][T24918]  ? __pfx__printk+0x10/0x10
[  873.972252][T24918]  ? kernfs_path_from_node+0x2f/0x290
[  873.972282][T24918]  ? kernfs_path_from_node+0x250/0x290
[  873.972309][T24918]  ? kernfs_path_from_node+0x2f/0x290
[  873.972343][T24918]  sysfs_warn_dup+0x8e/0xa0
[  873.972370][T24918]  sysfs_do_create_link_sd+0xc0/0x110
[  873.972403][T24918]  device_add_class_symlinks+0x1cf/0x240
[  873.972445][T24918]  device_add+0x475/0xb50
[  873.972485][T24918]  wiphy_register+0x1c81/0x2aa0
[  873.972536][T24918]  ? __pfx_wiphy_register+0x10/0x10
[  873.972566][T24918]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  873.972599][T24918]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  873.972641][T24918]  ieee80211_register_hw+0x3473/0x40d0
[  873.972683][T24918]  ? ieee80211_register_hw+0x13e1/0x40d0
[  873.972718][T24918]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  873.972740][T24918]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  873.972773][T24918]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  873.972800][T24918]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  873.972837][T24918]  ? __hrtimer_setup+0x187/0x210
[  873.972861][T24918]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  873.972898][T24918]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  873.972974][T24918]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  873.973000][T24918]  ? trace_kmalloc+0x1f/0xd0
[  873.973030][T24918]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  873.973065][T24918]  ? kstrndup+0xbf/0x160
[  873.973103][T24918]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  873.973140][T24918]  ? __pfx___nla_validate_parse+0x10/0x10
[  873.973204][T24918]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  873.973240][T24918]  ? rcu_is_watching+0x15/0xb0
[  873.973269][T24918]  ? __nla_parse+0x40/0x60
[  873.973302][T24918]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  873.973346][T24918]  genl_family_rcv_msg_doit+0x212/0x300
[  873.973386][T24918]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  873.973433][T24918]  ? bpf_lsm_capable+0x9/0x20
[  873.973460][T24918]  ? security_capable+0x7e/0x2e0
[  873.973497][T24918]  genl_rcv_msg+0x60e/0x790
[  873.973536][T24918]  ? __pfx_genl_rcv_msg+0x10/0x10
[  873.973564][T24918]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  873.973610][T24918]  netlink_rcv_skb+0x205/0x470
[  873.973631][T24918]  ? __lock_acquire+0xab9/0xd20
[  873.973654][T24918]  ? __pfx_genl_rcv_msg+0x10/0x10
[  873.973687][T24918]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  873.973734][T24918]  ? down_read+0x1ad/0x2e0
[  873.973769][T24918]  genl_rcv+0x28/0x40
[  873.973796][T24918]  netlink_unicast+0x82f/0x9e0
[  873.973842][T24918]  ? __pfx_netlink_unicast+0x10/0x10
[  873.973878][T24918]  ? netlink_sendmsg+0x642/0xb30
[  873.973899][T24918]  ? skb_put+0x11b/0x210
[  873.973956][T24918]  netlink_sendmsg+0x805/0xb30
[  873.974001][T24918]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.974029][T24918]  ? aa_sock_msg_perm+0xf1/0x1d0
[  873.974068][T24918]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  873.974090][T24918]  ? __pfx_netlink_sendmsg+0x10/0x10
[  873.974117][T24918]  __sock_sendmsg+0x21c/0x270
[  873.974168][T24918]  ____sys_sendmsg+0x505/0x830
[  873.974202][T24918]  ? __pfx_____sys_sendmsg+0x10/0x10
[  873.974260][T24918]  ? import_iovec+0x74/0xa0
[  873.974287][T24918]  ___sys_sendmsg+0x21f/0x2a0
[  873.974320][T24918]  ? __pfx____sys_sendmsg+0x10/0x10
[  873.974397][T24918]  ? __fget_files+0x2a/0x420
[  873.974416][T24918]  ? __fget_files+0x3a0/0x420
[  873.974453][T24918]  __x64_sys_sendmsg+0x19b/0x260
[  873.974484][T24918]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  873.974535][T24918]  ? do_syscall_64+0xbe/0xfa0
[  873.974568][T24918]  do_syscall_64+0xfa/0xfa0
[  873.974594][T24918]  ? lockdep_hardirqs_on+0x9c/0x150
[  873.974623][T24918]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.974647][T24918]  ? clear_bhb_loop+0x60/0xb0
[  873.974676][T24918]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  873.974698][T24918] RIP: 0033:0x7f35f218eec9
[  873.974719][T24918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  873.974741][T24918] RSP: 002b:00007f35f304c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  873.974778][T24918] RAX: ffffffffffffffda RBX: 00007f35f23e5fa0 RCX: 00007f35f218eec9
[  873.974795][T24918] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  873.974810][T24918] RBP: 00007f35f2211f91 R08: 0000000000000000 R09: 0000000000000000
[  873.974824][T24918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  873.974838][T24918] R13: 00007f35f23e6038 R14: 00007f35f23e5fa0 R15: 00007ffe587f3418
[  873.974878][T24918]  </TASK>
[  874.540863][T24926] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5437'.
[  874.559570][T24923] netlink: 'syz.2.5435': attribute type 1 has an invalid length.
[  874.580109][T24923] netlink: 'syz.2.5435': attribute type 1 has an invalid length.
[  874.767017][T24935] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  874.909621][T24950] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  875.038619][T24956] netlink: 'syz.0.5443': attribute type 4 has an invalid length.
[  875.370433][T24961] siw: device registration error -23
[  875.379430][T24961] wg1 speed is unknown, defaulting to 1000
[  875.928224][T24973] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  875.953543][T24973] CPU: 0 UID: 0 PID: 24973 Comm: syz.0.5450 Not tainted syzkaller #0 PREEMPT(full) 
[  875.953590][T24973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  875.953606][T24973] Call Trace:
[  875.953616][T24973]  <TASK>
[  875.953628][T24973]  dump_stack_lvl+0x189/0x250
[  875.953666][T24973]  ? __pfx_dump_stack_lvl+0x10/0x10
[  875.953692][T24973]  ? __pfx__printk+0x10/0x10
[  875.953724][T24973]  ? kernfs_path_from_node+0x2f/0x290
[  875.953753][T24973]  ? kernfs_path_from_node+0x250/0x290
[  875.953789][T24973]  ? kernfs_path_from_node+0x2f/0x290
[  875.953824][T24973]  sysfs_warn_dup+0x8e/0xa0
[  875.953853][T24973]  sysfs_do_create_link_sd+0xc0/0x110
[  875.953886][T24973]  device_add_class_symlinks+0x1cf/0x240
[  875.953928][T24973]  device_add+0x475/0xb50
[  875.953970][T24973]  wiphy_register+0x1c81/0x2aa0
[  875.954023][T24973]  ? __pfx_wiphy_register+0x10/0x10
[  875.954053][T24973]  ? minstrel_ht_alloc+0x6e0/0x7e0
[  875.954086][T24973]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  875.954128][T24973]  ieee80211_register_hw+0x3473/0x40d0
[  875.954171][T24973]  ? ieee80211_register_hw+0x13e1/0x40d0
[  875.954218][T24973]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  875.954239][T24973]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  875.954271][T24973]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  875.954298][T24973]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  875.954352][T24973]  ? __hrtimer_setup+0x187/0x210
[  875.954377][T24973]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  875.954415][T24973]  mac80211_hwsim_new_radio+0x2f7a/0x5220
[  875.954484][T24973]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  875.954511][T24973]  ? trace_kmalloc+0x1f/0xd0
[  875.954540][T24973]  ? __kmalloc_node_track_caller_noprof+0x587/0x800
[  875.954577][T24973]  ? kstrndup+0xbf/0x160
[  875.954615][T24973]  hwsim_new_radio_nl+0xf5b/0x1bd0
[  875.954651][T24973]  ? __pfx___nla_validate_parse+0x10/0x10
[  875.954704][T24973]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  875.954741][T24973]  ? rcu_is_watching+0x15/0xb0
[  875.954775][T24973]  ? __nla_parse+0x40/0x60
[  875.954821][T24973]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  875.954867][T24973]  genl_family_rcv_msg_doit+0x212/0x300
[  875.954909][T24973]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  875.954960][T24973]  ? bpf_lsm_capable+0x9/0x20
[  875.954989][T24973]  ? security_capable+0x7e/0x2e0
[  875.955026][T24973]  genl_rcv_msg+0x60e/0x790
[  875.955067][T24973]  ? __pfx_genl_rcv_msg+0x10/0x10
[  875.955099][T24973]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  875.955146][T24973]  netlink_rcv_skb+0x205/0x470
[  875.955168][T24973]  ? __lock_acquire+0xab9/0xd20
[  875.955192][T24973]  ? __pfx_genl_rcv_msg+0x10/0x10
[  875.955226][T24973]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  875.955277][T24973]  ? down_read+0x1ad/0x2e0
[  875.955315][T24973]  genl_rcv+0x28/0x40
[  875.955345][T24973]  netlink_unicast+0x82f/0x9e0
[  875.955394][T24973]  ? __pfx_netlink_unicast+0x10/0x10
[  875.955434][T24973]  ? netlink_sendmsg+0x642/0xb30
[  875.955456][T24973]  ? skb_put+0x11b/0x210
[  875.955487][T24973]  netlink_sendmsg+0x805/0xb30
[  875.955527][T24973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  875.955558][T24973]  ? aa_sock_msg_perm+0xf1/0x1d0
[  875.955593][T24973]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  875.955615][T24973]  ? __pfx_netlink_sendmsg+0x10/0x10
[  875.955643][T24973]  __sock_sendmsg+0x21c/0x270
[  875.955683][T24973]  ____sys_sendmsg+0x505/0x830
[  875.955719][T24973]  ? __pfx_____sys_sendmsg+0x10/0x10
[  875.955761][T24973]  ? import_iovec+0x74/0xa0
[  875.955798][T24973]  ___sys_sendmsg+0x21f/0x2a0
[  875.955831][T24973]  ? __pfx____sys_sendmsg+0x10/0x10
[  875.955909][T24973]  ? __fget_files+0x2a/0x420
[  875.955929][T24973]  ? __fget_files+0x3a0/0x420
[  875.955963][T24973]  __x64_sys_sendmsg+0x19b/0x260
[  875.955995][T24973]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  875.956047][T24973]  ? do_syscall_64+0xbe/0xfa0
[  875.956083][T24973]  do_syscall_64+0xfa/0xfa0
[  875.956109][T24973]  ? lockdep_hardirqs_on+0x9c/0x150
[  875.956139][T24973]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  875.956162][T24973]  ? clear_bhb_loop+0x60/0xb0
[  875.956192][T24973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  875.956215][T24973] RIP: 0033:0x7f35f218eec9
[  875.956238][T24973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  875.956260][T24973] RSP: 002b:00007f35f304c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  875.956286][T24973] RAX: ffffffffffffffda RBX: 00007f35f23e5fa0 RCX: 00007f35f218eec9
[  875.956304][T24973] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000009
[  875.956319][T24973] RBP: 00007f35f2211f91 R08: 0000000000000000 R09: 0000000000000000
[  875.956334][T24973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  875.956348][T24973] R13: 00007f35f23e6038 R14: 00007f35f23e5fa0 R15: 00007ffe587f3418
[  875.956389][T24973]  </TASK>
[  876.030654][T24977] netlink: 'syz.4.5451': attribute type 1 has an invalid length.
[  876.453808][T24977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5451'.
[  876.467022][T24977] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5451'.
[  876.505399][T24980] netlink: 'syz.3.5452': attribute type 1 has an invalid length.
[  877.499902][T25000] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check.
[  877.836384][T25013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5464'.
[  877.848508][T25013] validate_nla: 2 callbacks suppressed
[  877.848529][T25013] netlink: 'syz.1.5464': attribute type 10 has an invalid length.
[  878.016945][T25021] netlink: 'syz.3.5466': attribute type 1 has an invalid length.
[  878.032791][T25021] netlink: 'syz.3.5466': attribute type 1 has an invalid length.
[  878.232159][T25028] ipip0: entered promiscuous mode
[  878.420415][T25035] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5473'.
[  878.567412][T25043] ipip0: left promiscuous mode
[  878.694876][T25047] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  878.830877][T25051] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  879.627470][T25072] xt_hashlimit: size too large, truncated to 1048576
[  879.910409][T25080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5488'.
[  880.531918][    C0] ------------[ cut here ]------------
[  880.537820][    C0] ODEBUG: free active (active state 0) object: ffff888077df0090 object type: timer_list hint: rose_t0timer_expiry+0x0/0x350
[  880.551470][    C0] WARNING: CPU: 0 PID: 25084 at lib/debugobjects.c:615 debug_print_object+0x16b/0x1e0
[  880.561145][    C0] Modules linked in:
[  880.565476][    C0] CPU: 0 UID: 0 PID: 25084 Comm: syz.3.5489 Not tainted syzkaller #0 PREEMPT(full) 
[  880.575026][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  880.585195][    C0] RIP: 0010:debug_print_object+0x16b/0x1e0
[  880.591078][    C0] Code: 4c 89 ff e8 37 f9 8b fd 4d 8b 0f 48 c7 c7 80 7e c0 8b 48 8b 34 24 4c 89 ea 89 e9 4d 89 f0 41 54 e8 fa 77 e9 fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 77 06 05 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41
[  880.610780][    C0] RSP: 0018:ffffc90000007a00 EFLAGS: 00010296
[  880.616946][    C0] RAX: 02fc640ec460d300 RBX: dffffc0000000000 RCX: ffff88805521dac0
[  880.625008][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  880.633071][    C0] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  880.641097][    C0] R10: dffffc0000000000 R11: fffffbfff1bfa658 R12: ffffffff8a3e0c00
[  880.649172][    C0] R13: ffffffff8bc08000 R14: ffff888077df0090 R15: ffffffff8b6cf600
[  880.657241][    C0] FS:  00007fda03b666c0(0000) GS:ffff888125d0f000(0000) knlGS:0000000000000000
[  880.666279][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  880.672957][    C0] CR2: 00002000002c7000 CR3: 00000000559ba000 CR4: 00000000003526f0
[  880.680982][    C0] Call Trace:
[  880.684340][    C0]  <IRQ>
[  880.687229][    C0]  debug_check_no_obj_freed+0x3a2/0x470
[  880.692881][    C0]  ? rose_timer_expiry+0x4cb/0x600
[  880.698048][    C0]  kfree+0x115/0x6d0
[  880.702038][    C0]  rose_timer_expiry+0x4cb/0x600
[  880.707030][    C0]  call_timer_fn+0x17e/0x5f0
[  880.711665][    C0]  ? __pfx_rose_timer_expiry+0x10/0x10
[  880.717221][    C0]  ? call_timer_fn+0xbe/0x5f0
[  880.721985][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  880.727161][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  880.732453][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  880.737697][    C0]  ? __pfx_rose_timer_expiry+0x10/0x10
[  880.743264][    C0]  __run_timer_base+0x61a/0x860
[  880.748202][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  880.753664][    C0]  ? seqcount_lockdep_reader_access+0x15e/0x1c0
[  880.759978][    C0]  run_timer_softirq+0xb7/0x180
[  880.764932][    C0]  handle_softirqs+0x283/0x870
[  880.769772][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  880.774630][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  880.779977][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  880.785265][    C0]  __irq_exit_rcu+0xca/0x1f0
[  880.789933][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  880.795237][    C0]  irq_exit_rcu+0x9/0x30
[  880.799534][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  880.805275][    C0]  </IRQ>
[  880.808266][    C0]  <TASK>
[  880.811246][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  880.817331][    C0] RIP: 0010:css_rstat_updated+0x222/0x4f0
[  880.823248][    C0] Code: df e8 a2 ca 6c 00 48 8b 03 49 01 c4 49 83 c4 10 4c 89 e1 48 c1 e9 03 48 b8 00 00 00 00 00 fc ff df 48 89 4c 24 28 80 3c 01 00 <74> 08 4c 89 e7 e8 74 ca 6c 00 49 8b 04 24 4c 39 e0 74 16 e8 36 2c
[  880.842934][    C0] RSP: 0018:ffffc9001c7df660 EFLAGS: 00000246
[  880.849058][    C0] RAX: dffffc0000000000 RBX: ffffffff8da0add0 RCX: 1ffffd1ffff8f966
[  880.857109][T25094] netlink: 'syz.4.5490': attribute type 16 has an invalid length.
[  880.857135][T25094] netlink: 'syz.4.5490': attribute type 17 has an invalid length.
[  880.864978][    C0] RDX: ffffc9000f41e000 RSI: 000000000007ffff RDI: 0000000000080000
[  880.865024][    C0] RBP: ffffc9001c7df728 R08: 0000000000000000 R09: ffffffff820bb6d1
[  880.865044][    C0] R10: dffffc0000000000 R11: ffffed1009e59aa9 R12: ffffe8ffffc7cb30
[  880.865063][    C0] R13: 1ffffffff1b415ba R14: ffff88801ae9a720 R15: 1ffff110035d34e4
[  880.865093][    C0]  ? count_memcg_event_mm+0x21/0x260
[  880.865148][    C0]  ? __pfx_css_rstat_updated+0x10/0x10
[  880.865193][    C0]  memcg_rstat_updated+0x2c/0x220
[  880.865230][    C0]  count_memcg_events+0xbd/0x270
[  880.865258][    C0]  ? count_memcg_event_mm+0x21/0x260
[  880.865294][    C0]  count_memcg_event_mm+0x14c/0x260
[  880.865353][    C0]  handle_mm_fault+0x50f/0x8e0
[  880.941560][    C0]  do_user_addr_fault+0x764/0x1380
[  880.946791][    C0]  exc_page_fault+0x82/0x100
[  880.951439][    C0]  asm_exc_page_fault+0x26/0x30
[  880.956371][    C0] RIP: 0010:rep_movs_alternative+0x30/0x90
[  880.962277][    C0] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 7d 35 04 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  880.982307][    C0] RSP: 0018:ffffc9001c7dfa18 EFLAGS: 00050206
[  880.988428][    C0] RAX: 00007ffffffff001 RBX: 0000000000000038 RCX: 0000000000000038
[  880.996484][    C0] RDX: 0000000000000001 RSI: 00002000002c7000 RDI: ffffc9001c7dfaa0
[  881.004547][    C0] RBP: ffffc9001c7dfc30 R08: ffffc9001c7dfad7 R09: 1ffff920038fbf5a
[  881.012612][    C0] R10: dffffc0000000000 R11: fffff520038fbf5b R12: 0000000000000000
[  881.020795][    C0] R13: dffffc0000000000 R14: ffffc9001c7dfaa0 R15: 00002000002c7000
[  881.028889][    C0]  _copy_from_user+0x7a/0xb0
[  881.033581][    C0]  ___sys_recvmsg+0x12e/0x510
[  881.038323][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  881.043663][    C0]  ? __might_fault+0xb0/0x130
[  881.048411][    C0]  do_recvmmsg+0x307/0x770
[  881.053021][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  881.058117][    C0]  ? __pfx_do_futex+0x10/0x10
[  881.062926][    C0]  __x64_sys_recvmmsg+0x190/0x240
[  881.068100][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  881.073761][    C0]  ? do_syscall_64+0xbe/0xfa0
[  881.078523][    C0]  do_syscall_64+0xfa/0xfa0
[  881.083128][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  881.088382][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.094539][    C0]  ? clear_bhb_loop+0x60/0xb0
[  881.099275][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.105243][    C0] RIP: 0033:0x7fda02d8eec9
[  881.109717][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  881.129407][    C0] RSP: 002b:00007fda03b66038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  881.138005][    C0] RAX: ffffffffffffffda RBX: 00007fda02fe6180 RCX: 00007fda02d8eec9
[  881.146081][    C0] RDX: 000000000400030f RSI: 0000200000005c80 RDI: 000000000000000a
[  881.154242][    C0] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  881.162401][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  881.170422][    C0] R13: 00007fda02fe6218 R14: 00007fda02fe6180 R15: 00007ffc4dd999b8
[  881.178503][    C0]  </TASK>
[  881.181568][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  881.188884][    C0] CPU: 0 UID: 0 PID: 25084 Comm: syz.3.5489 Not tainted syzkaller #0 PREEMPT(full) 
[  881.198289][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  881.208369][    C0] Call Trace:
[  881.211671][    C0]  <IRQ>
[  881.214527][    C0]  dump_stack_lvl+0x99/0x250
[  881.219159][    C0]  ? __asan_memcpy+0x40/0x70
[  881.223771][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  881.229019][    C0]  ? __pfx__printk+0x10/0x10
[  881.233829][    C0]  vpanic+0x237/0x6d0
[  881.237859][    C0]  ? __pfx_vpanic+0x10/0x10
[  881.242405][    C0]  panic+0xb9/0xc0
[  881.246166][    C0]  ? __pfx_panic+0x10/0x10
[  881.250671][    C0]  __warn+0x31b/0x4b0
[  881.254695][    C0]  ? debug_print_object+0x16b/0x1e0
[  881.259935][    C0]  ? debug_print_object+0x16b/0x1e0
[  881.265153][    C0]  report_bug+0x2be/0x4f0
[  881.269505][    C0]  ? debug_print_object+0x16b/0x1e0
[  881.274720][    C0]  ? debug_print_object+0x16b/0x1e0
[  881.279936][    C0]  ? debug_print_object+0x16d/0x1e0
[  881.285150][    C0]  handle_bug+0x84/0x160
[  881.289414][    C0]  exc_invalid_op+0x1a/0x50
[  881.293941][    C0]  asm_exc_invalid_op+0x1a/0x20
[  881.298815][    C0] RIP: 0010:debug_print_object+0x16b/0x1e0
[  881.304658][    C0] Code: 4c 89 ff e8 37 f9 8b fd 4d 8b 0f 48 c7 c7 80 7e c0 8b 48 8b 34 24 4c 89 ea 89 e9 4d 89 f0 41 54 e8 fa 77 e9 fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 77 06 05 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41
[  881.324300][    C0] RSP: 0018:ffffc90000007a00 EFLAGS: 00010296
[  881.330388][    C0] RAX: 02fc640ec460d300 RBX: dffffc0000000000 RCX: ffff88805521dac0
[  881.338379][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002
[  881.346359][    C0] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004
[  881.354340][    C0] R10: dffffc0000000000 R11: fffffbfff1bfa658 R12: ffffffff8a3e0c00
[  881.362323][    C0] R13: ffffffff8bc08000 R14: ffff888077df0090 R15: ffffffff8b6cf600
[  881.370421][    C0]  ? __pfx_rose_t0timer_expiry+0x10/0x10
[  881.376105][    C0]  debug_check_no_obj_freed+0x3a2/0x470
[  881.381722][    C0]  ? rose_timer_expiry+0x4cb/0x600
[  881.386877][    C0]  kfree+0x115/0x6d0
[  881.390816][    C0]  rose_timer_expiry+0x4cb/0x600
[  881.395788][    C0]  call_timer_fn+0x17e/0x5f0
[  881.400401][    C0]  ? __pfx_rose_timer_expiry+0x10/0x10
[  881.405875][    C0]  ? call_timer_fn+0xbe/0x5f0
[  881.410570][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  881.415706][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  881.420918][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  881.426140][    C0]  ? __pfx_rose_timer_expiry+0x10/0x10
[  881.431640][    C0]  __run_timer_base+0x61a/0x860
[  881.436543][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  881.441948][    C0]  ? seqcount_lockdep_reader_access+0x15e/0x1c0
[  881.448265][    C0]  run_timer_softirq+0xb7/0x180
[  881.453150][    C0]  handle_softirqs+0x283/0x870
[  881.457935][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  881.462723][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  881.468030][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  881.473338][    C0]  __irq_exit_rcu+0xca/0x1f0
[  881.477944][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  881.483165][    C0]  irq_exit_rcu+0x9/0x30
[  881.487429][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  881.493076][    C0]  </IRQ>
[  881.496014][    C0]  <TASK>
[  881.498956][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  881.504966][    C0] RIP: 0010:css_rstat_updated+0x222/0x4f0
[  881.510719][    C0] Code: df e8 a2 ca 6c 00 48 8b 03 49 01 c4 49 83 c4 10 4c 89 e1 48 c1 e9 03 48 b8 00 00 00 00 00 fc ff df 48 89 4c 24 28 80 3c 01 00 <74> 08 4c 89 e7 e8 74 ca 6c 00 49 8b 04 24 4c 39 e0 74 16 e8 36 2c
[  881.530358][    C0] RSP: 0018:ffffc9001c7df660 EFLAGS: 00000246
[  881.536461][    C0] RAX: dffffc0000000000 RBX: ffffffff8da0add0 RCX: 1ffffd1ffff8f966
[  881.544454][    C0] RDX: ffffc9000f41e000 RSI: 000000000007ffff RDI: 0000000000080000
[  881.552538][    C0] RBP: ffffc9001c7df728 R08: 0000000000000000 R09: ffffffff820bb6d1
[  881.560663][    C0] R10: dffffc0000000000 R11: ffffed1009e59aa9 R12: ffffe8ffffc7cb30
[  881.568653][    C0] R13: 1ffffffff1b415ba R14: ffff88801ae9a720 R15: 1ffff110035d34e4
[  881.576650][    C0]  ? count_memcg_event_mm+0x21/0x260
[  881.581984][    C0]  ? __pfx_css_rstat_updated+0x10/0x10
[  881.587469][    C0]  memcg_rstat_updated+0x2c/0x220
[  881.592515][    C0]  count_memcg_events+0xbd/0x270
[  881.597550][    C0]  ? count_memcg_event_mm+0x21/0x260
[  881.602856][    C0]  count_memcg_event_mm+0x14c/0x260
[  881.608083][    C0]  handle_mm_fault+0x50f/0x8e0
[  881.612895][    C0]  do_user_addr_fault+0x764/0x1380
[  881.618054][    C0]  exc_page_fault+0x82/0x100
[  881.622660][    C0]  asm_exc_page_fault+0x26/0x30
[  881.627537][    C0] RIP: 0010:rep_movs_alternative+0x30/0x90
[  881.633388][    C0] Code: 83 f9 08 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 7d 35 04 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 <48> 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08
[  881.653005][    C0] RSP: 0018:ffffc9001c7dfa18 EFLAGS: 00050206
[  881.659188][    C0] RAX: 00007ffffffff001 RBX: 0000000000000038 RCX: 0000000000000038
[  881.667186][    C0] RDX: 0000000000000001 RSI: 00002000002c7000 RDI: ffffc9001c7dfaa0
[  881.675170][    C0] RBP: ffffc9001c7dfc30 R08: ffffc9001c7dfad7 R09: 1ffff920038fbf5a
[  881.683152][    C0] R10: dffffc0000000000 R11: fffff520038fbf5b R12: 0000000000000000
[  881.691152][    C0] R13: dffffc0000000000 R14: ffffc9001c7dfaa0 R15: 00002000002c7000
[  881.699241][    C0]  _copy_from_user+0x7a/0xb0
[  881.703847][    C0]  ___sys_recvmsg+0x12e/0x510
[  881.708643][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  881.713976][    C0]  ? __might_fault+0xb0/0x130
[  881.718763][    C0]  do_recvmmsg+0x307/0x770
[  881.723241][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  881.728209][    C0]  ? __pfx_do_futex+0x10/0x10
[  881.733052][    C0]  __x64_sys_recvmmsg+0x190/0x240
[  881.738100][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  881.743671][    C0]  ? do_syscall_64+0xbe/0xfa0
[  881.748371][    C0]  do_syscall_64+0xfa/0xfa0
[  881.752889][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  881.758107][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.764185][    C0]  ? clear_bhb_loop+0x60/0xb0
[  881.768881][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  881.774786][    C0] RIP: 0033:0x7fda02d8eec9
[  881.779644][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  881.799349][    C0] RSP: 002b:00007fda03b66038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  881.807781][    C0] RAX: ffffffffffffffda RBX: 00007fda02fe6180 RCX: 00007fda02d8eec9
[  881.815813][    C0] RDX: 000000000400030f RSI: 0000200000005c80 RDI: 000000000000000a
[  881.823797][    C0] RBP: 00007fda02e11f91 R08: 0000000000000000 R09: 0000000000000000
[  881.831778][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  881.839760][    C0] R13: 00007fda02fe6218 R14: 00007fda02fe6180 R15: 00007ffc4dd999b8
[  881.847765][    C0]  </TASK>
[  881.851138][    C0] Kernel Offset: disabled
[  881.855469][    C0] Rebooting in 86400 seconds..