last executing test programs:

3m58.719014436s ago: executing program 1 (id=179):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b40a000040000900000000000000000003000000040060809c0a01"], 0xab4}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCSIFBR(r1, 0x8941, &(0x7f0000000240)=@generic={0x3, 0x100000000, 0x9})
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000480)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="01000000142000000000000091df57fa964bbc9586ab1ff06f58ff5479f4d28292d4ca5265fc224793d98a9d84294722906b0a5fc81b7e0683326756f2d3a8b04a85843b3961ace361dc28cc59f183ef42126bd6e7b2cf3c2a456d0039ae646405be2c9cde5f653434ce183eabcce2e37876f8dcb0a2ce626f4c2bf70e02818408d19b1a262cc66f9ed0124171f664ba7d04cdc1b82a85111c68e7f10f1c91c9f9ecfef7f0eebb2bf599998384a7c260a5ff041a5a6b0305b80f83c03bf811e5131060d1b87317f816133d8b6adf2237e724ad8153adf3ea2d01cf37ab11905906fb5c02483face71943d69916befb35cef40b90f54f7e", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0x2a, 0x0, &(0x7f0000000140)="06ff03076844babeb89e14f086dd", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f0000000000)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x61}, @call={0x85, 0x0, 0x0, 0x23}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r3, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000440)="b9ff033168440372b89e14f00800a25e4113c182879e029dbaeeaa7caa23c54957f1", 0x0, 0xa, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m58.532627278s ago: executing program 1 (id=180):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmsg$inet(r1, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x240080c0)
setsockopt$inet_int(r1, 0x0, 0xf, &(0x7f0000001c00), 0x4)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x30, r2, 0x10, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_TDLS_OPERATION={0x5, 0x8a, 0x1}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x30}, 0x1, 0x0, 0x0, 0x50}, 0x4004810)
sendmsg$TIPC_NL_KEY_FLUSH(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000040)={&(0x7f0000000200)={0xd4, 0x0, 0x1, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x28, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x1c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x81}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x1}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0xa}]}, @TIPC_NLA_BEARER={0x48, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x44, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e24, 0x5, @local, 0x8000}}, {0x20, 0x2, @in6={0xa, 0x4e22, 0xb, @private1, 0xfffffffa}}}}]}, @TIPC_NLA_PUBL={0x44, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x84}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1b80}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x2e8}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xdf4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x2}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xb}, @TIPC_NLA_PUBL_TYPE={0x18, 0x1, 0x579}]}, @TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8001}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x4}, 0x200000c0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000180)={0x32, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x4e20, 0x0, 'lblcr\x00', 0x18, 0x5, 0x21}, 0x2c)

3m58.426579894s ago: executing program 1 (id=182):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="ec00000021000100feffffff000000000000000000000000000000000000000000000000007c0000000000000000000000000000000000001700a00000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c00110000000000000000000000000000000000fe8000000000000000000000000000bbac1414210000000000000000000000002001000000000000000001a800000000000000000000000000000a0000000000000000000000000000000000fe8000000000000000000000000000bb"], 0xec}}, 0x0)

3m58.239975873s ago: executing program 1 (id=183):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10) (async)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r1}, 0x18)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000020642500000000002020207b1af8ff00000000bfa108000000000047010000f6ffffffb702000008"], &(0x7f0000000300)='GPL\x00', 0x1, 0x17, &(0x7f0000000000)=""/23}, 0x94) (async)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000200), 0xc0200, 0x0)
epoll_create1(0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$BTRFS_IOC_SPACE_INFO(r2, 0xc0109414, &(0x7f0000004c80)={0xf9c, 0x5, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) (async)
sendmsg$TIPC_NL_MON_PEER_GET(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0d030000000000000000130000001c000980080002"], 0x30}}, 0x0) (async)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10) (async)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0) (async)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4) (async)
connect$inet6(r5, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c) (async)
getpeername$inet6(r5, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000280)=0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000002c0), 0x4) (async)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) (async)
sendmsg$NFNL_MSG_CTHELPER_NEW(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000004c40)=ANY=[@ANYRESDEC], 0x14}, 0x1, 0x0, 0x0, 0x20008004}, 0x20004000) (async)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f00000000c0)=@gcm_256={{0x303, 0x36}, "f1ff5ef2fe010017", "9e8ecc7bb5352776725e1047711330ff2bb17b5508000000000000009bc400", "dc5d3f00", "46b0dc72b7b1d30e"}, 0x38) (async)
setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f00000000c0)={0x1d}, 0x8)
recvmsg(r5, &(0x7f0000001700)={&(0x7f0000000480)=@ethernet={0x0, @link_local}, 0x80, &(0x7f0000001680)=[{&(0x7f00000003c0)=""/15, 0xf}, {&(0x7f0000000500)}, {&(0x7f0000000540)=""/82, 0x52}, {&(0x7f00000005c0)=""/4096, 0x1000}, {&(0x7f00000015c0)=""/137, 0x89}], 0x5}, 0x40010102) (async)
setsockopt$inet6_tcp_TLS_TX(r5, 0x6, 0x1, &(0x7f0000000080)=@gcm_256={{0x303}, "6ca1a6d77a28e69e", "7e15d87b4a8a2b48ff8aaca4f1730e818ea5f89d3e72b1df46e812944f978945", 'KP!4', "8679abeb8bed6817"}, 0x38) (async)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x100000011, @multicast2, 0x0, 0x0, 'sh\x00', 0x2d, 0xff, 0xf}, 0x2c)

3m58.062851418s ago: executing program 1 (id=186):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000300), 0x4) (async)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x50, &(0x7f00000000c0)=0x2, 0x4) (async)
unshare(0x20000400) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 32)
r4 = socket$igmp6(0xa, 0x3, 0x2) (rerun: 32)
splice(r3, 0xfffffffffffffffe, r4, 0x0, 0x8, 0x0)
socketpair(0x11, 0x1, 0x401, 0x0) (async)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_START_AP(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r2, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000140)={<r6=>0x0, 0x2c, &(0x7f0000000180)=[@in6={0xa, 0x4e20, 0x0, @private0}, @in={0x2, 0x4e20, @private=0xa010101}]}, &(0x7f0000000040)=0x10)
r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x101842, 0x0)
ioctl$PPPIOCNEWUNIT(r7, 0xc004743e, &(0x7f0000000040))
readv(r3, &(0x7f0000001500)=[{&(0x7f0000000280)=""/100, 0x64}, {0x0}], 0x2) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x85, &(0x7f00000004c0)={r6, @in={{0x2, 0xfffe, @empty}}, 0x0, 0x80}, 0x90) (async)
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, 0x0, 0x8001)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x4000004) (async)
syz_init_net_socket$ax25(0x3, 0x2, 0xce)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000004900010028bd7000fedbdf250a008000", @ANYRES32=0x0, @ANYBLOB="00000000080002000100000014000100fc000000000000000000000000000000202ada3a2b0cee5d146024e752b31e5f2ddfcf37452f012abb0c6d5c25061e0d003396f9412149078e04be23d192962cdb70209a8fcd60bf15fdef6d44379b8f0e5d081004efdbb7e5d9fe2c"], 0x38}, 0x1, 0x0, 0x0, 0x14000000}, 0x80)
socket$kcm(0x10, 0x4, 0x0)
openat$cgroup_int(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.2MB.failcnt\x00', 0x2, 0x0) (async)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)

3m57.668525759s ago: executing program 1 (id=190):
unshare(0x8040480)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x4000000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r3, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$ITER_CREATE(0x3f, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r8=>0x0})
bind$can_j1939(r7, &(0x7f00000000c0)={0x1d, r8}, 0x18) (async)
bind$can_j1939(r7, &(0x7f00000000c0)={0x1d, r8}, 0x18)
connect$can_j1939(r7, &(0x7f0000000140)={0x1d, r8, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18)
sendmmsg(r7, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'vxcan1\x00', @remote}) (async)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'vxcan1\x00', @remote})
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r10=>0x0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) (async)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="010000080000000000000800000008000300", @ANYRES32=r10], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c000)
readv(r2, &(0x7f0000000580)=[{&(0x7f0000000240)=""/73, 0x49}], 0x1) (async)
readv(r2, &(0x7f0000000580)=[{&(0x7f0000000240)=""/73, 0x49}], 0x1)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r1, &(0x7f0000000000), &(0x7f0000000140)=""/75}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r12, 0x0, 0x0) (async)
sendmsg$nl_generic(r12, 0x0, 0x0)
accept4$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @local}, 0x10, 0x80000)
r13 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})

3m42.654172821s ago: executing program 32 (id=190):
unshare(0x8040480)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, 0x0, 0x4000000)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000e40)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000380)={0x1c, r3, 0xf21, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$ITER_CREATE(0x3f, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vxcan1\x00', <r8=>0x0})
bind$can_j1939(r7, &(0x7f00000000c0)={0x1d, r8}, 0x18) (async)
bind$can_j1939(r7, &(0x7f00000000c0)={0x1d, r8}, 0x18)
connect$can_j1939(r7, &(0x7f0000000140)={0x1d, r8, 0x0, {0x1, 0xff, 0xa8fe8ad4eea2351f}, 0x2}, 0x18)
sendmmsg(r7, &(0x7f0000003e40), 0x3fffffffffffe3d, 0xf5)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'vxcan1\x00', @remote}) (async)
ioctl$SIOCSIFHWADDR(r9, 0x8914, &(0x7f0000000040)={'vxcan1\x00', @remote})
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r10=>0x0})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) (async)
r11 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r11, @ANYBLOB="010000080000000000000800000008000300", @ANYRES32=r10], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x2000c000)
readv(r2, &(0x7f0000000580)=[{&(0x7f0000000240)=""/73, 0x49}], 0x1) (async)
readv(r2, &(0x7f0000000580)=[{&(0x7f0000000240)=""/73, 0x49}], 0x1)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r1, &(0x7f0000000000), &(0x7f0000000140)=""/75}, 0x20)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r12, 0x0, 0x0) (async)
sendmsg$nl_generic(r12, 0x0, 0x0)
accept4$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x2711, @local}, 0x10, 0x80000)
r13 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX(r13, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})

7.64822169s ago: executing program 4 (id=2911):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000d40)={0x0, 0x7000000, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}, 0x20001)

7.488024276s ago: executing program 4 (id=2913):
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$tipc(r1, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000005c0)='kfree_skb\x00', r2}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='kfree_skb\x00', r3}, 0x10)
close(r0)

7.436225341s ago: executing program 4 (id=2916):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fb6bba8839fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4ee9bcb25b1811dbf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91201c2796173864", 0x3d}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd)
close(r2)

7.296009345s ago: executing program 4 (id=2920):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffc4, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xa, 0x7, 0x7ffc, 0xcc, 0x0, 0xffffffffffffffff, 0x8000c}, 0x50)

6.931520282s ago: executing program 4 (id=2927):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7020000bfd50000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b70000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000e40)=""/4096, 0x1000}], 0x1}, 0x0)

6.612776715s ago: executing program 4 (id=2933):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x183081, 0x0)
close(r3)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_subtree(r2, &(0x7f0000000380)=ANY=[@ANYBLOB="8fedcb5d07081196f37538e486dd63"], 0x20a)

2.215831638s ago: executing program 0 (id=2957):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

1.996159068s ago: executing program 0 (id=2962):
bpf$PROG_LOAD(0x5, &(0x7f0000000a80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

1.876363828s ago: executing program 0 (id=2964):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.803752349s ago: executing program 3 (id=2966):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r4}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.74059828s ago: executing program 2 (id=2967):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff0000001100a200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd}, 0x50)

1.622909736s ago: executing program 0 (id=2969):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r2, &(0x7f0000000180), 0x40010)

1.56251873s ago: executing program 3 (id=2970):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x7}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001800)={&(0x7f0000000580)='kfree\x00', r2}, 0x9)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close(r0)

1.400488197s ago: executing program 5 (id=2971):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000f80)=ANY=[@ANYBLOB="9feb01001800000000000000dd000000dd00000003000000030000000000000e04000000010000000d0000000900000f0100000005000000040000000900000001000000020000000400000003000000ffffffffffffff7f01000000f3ffffff0000000003000000060000000700000005000000ffff0000fdffffff04000000071f00000000000004000000060000008b000000050000000500000001040000830100000000000002020000001000000005000005b284"], 0x0, 0xfb, 0x0, 0x1, 0x7}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000000000ffffffff9500000e00000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='finish_task_reaping\x00', r0}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="b702000026000000bfa300000000000005000000000000007a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065060400010000050404000001007d60b7030000000000006a0a00fe00000000850000000d000000b7000000000000009500000000000000496cf27fb6d2c643c4e8d41cdb7e2d5fb4b0936cdf827fb43a431ca711fcd0cdfa146ed3d09a6175037958e27106e225b7937f02008b5e5a076d83923dd29c034055b67d5b310efcfa89147a09000000f110026e6d2ef831ab7ea0c34f17e3ad6eecbb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b0a341a2d7cbdb9cd38bdb2ca8e050000003a14817ac61e4dd11183a13477bf7e060e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c214733a18c8b6659f28d9961b626c57c2691208173656d60a17e3c184b751c51160fbcbbdb5b1e7be6148ba532e60a0ac346dfebd31a08060000000200000000000000334d83239dd27080e71113610e10d858e8327ef01fb6c86acac1223331f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e957bc73ddc4eabba08ab1e1ad828267d4eadd3964663e88535c133f7130856f756436303767d2e24f29e5dad9796edb697a6ea0182babc190ae2ebf8aad34732181feb215139f15ea7e8cb0bae7c34d5ac5e7c805210600000000000000c3dec04b25dfc17975238345d4f71ab158c36657b7218baa0700f781c0a99bd50499ccc421ace5e845885efb5b9964e4beba3da8223fe5308e4e65ee93e107000000f8ddebf70132a4d0175b989b8eccf707882042e716df9b57b290c661d4e85031086197bcc5cb0e221a0c34323c129102b6ff0100002e88a1940b3c02ed9c92d6f64b1282dc51bb0015982730711c599e1c72ffa11ed8be1a6830d7507005154c46bd3ca96318c570f0721fc7aa2a5836ba99fe1f86468694f22cdf550ef091a78098534f0d973059594119d06d5ea9a8d0857382ec6e2a071474cfc12346e47ad97f4ead7cf70a9d1cdac944779dc08a705414888700a30e2366c6a06b3367a389ca39059787790017b0689a173db9c24db65c1e00015c1d093dab18fd0699fe3304000000323e9c7080397bc49d70c060d57bc88fbe3bbaa058b040362ab926150363fb099408885afc2bf9a46a076b7babfcddeff8c35030669ea69f5e4be1b8e0d6697e97186f9ae97d5670dba6623279f73db9dec75070cd9ab0fda6b069ef6d2857ca3e4effcf7462710d133d541da86e0477e4a6cc999dc21c3ef408e6b178e7c9f274d7fafc8d757d33dfa35aa2000034837d365e63845f3c1092f8dde8af3904ea0f4b82649b83ed4fa0f873339c4cadecc13219ba7518aa4f7db34ead13484742067ab743c1d82a5687f2ed690000000000000000000000000000000000000000000099d4fa0000000000003f0ecdc7c82e72919c91d2039afe17e95edeeeba72205beff7771bcb293747b88486cacee403000000a2919a4bff2ed893f2c814679fa69fc7e0cf761f918725704a01c56009a9f748e5aaf30a10bd8c409b1870c1f75e26b45264e3d3f8e0048e55ae289ce2ad779ce71d4dc30cbb2cc4289d2f884d66cddc76eb7f601110ff39053c262279f4ef00fbdb8c328615a9ec84f27a9f3938ae736138b8c1ec220c1540bf3d162dc1c27fa30f0dc60b9f257db5d1c7ed2e152cb2cf06f8edb30177fead735a952ffce676a93110904d5ee2abdab2ef3ff84c4d61443f73552195c7ccfbf9f03c44432eaa3b7501d4239354da8de21eada75d3a3afb2c76ff0700007976699b6c0f0e946766f57544ff52cef0dd811bec4e3c0a30f2d7d19d26d2503a3ea376721b8eded3bc475958dd498ee2b2d6146e33fc0de1dc2e0516ac565ddb1d4ae89e6712824a85eb9ee0a3b68c9e209756623adf685dd715d68ed11e4b4d5502f5124948f8f98c615cac3666c58f785c3f758be352a71871d5c081197d37980e4f4e26b5476fb20407ff7098b7174bef66fa03a99b5c0c20b378065fac4ef9ac2d0d804b9400000060e5d3f1749f6aecf69ba83a71caa9bdddc679f1b826f74b6563a4be1fd82b73c8c2bc65f63982b951fb058fd3c7b6341c4580376b6c16bd94d2da66059de81abfa15eeeb88b6ae5882ad341032c73f1285e21fff5a1d138e061b1dc7bbda199b5fab8e0719e9cd69b47dcb52b0be6a3a73afdf328132e1d4f21065716be0c53a23940d07188b015fa341dbc92231c8b5e5717eac184f46c9f61b69f55cd2231bcf821052429a1f250e8b734be0605a15f25923d599544b319319ff0a32621019347df460a098119a6f47eb1bac47946d7a009cbc6ec74c19a93cc7c7138b28c95270116181fd5f553573c48104d2ad0e10d3663488e664401453f22f0d76d2162635365258af61ae1f46f4a7862f302d91e3f7c2781f602220522e84602a939a8d5e4137ae31ccd397404dc72e06715a6503d4d865182803ee6725da7293b23daeebefd6fce7411c9624a7e8d5ba5a13e1c32adc4f3274497c6882a72475e4280a4d9a47c003c6ed3071330c58145be813a10788a720a6b5a498ca2b42496c479a0a71e2f6f9bad8c84bc6be20281bde0b348cf2c60538a505ad4a0510eebb023e4954c9eb6cd70627f5c03d867dbf3ad5d1f1dc852064dd0efafc3df20ec8faf3d194db76127f88f284fa1b71ab964fdd2474471da76373e65e9a8bf844bdfdd348bc7d00c4c7e7afe8a1f8cde79b7a6c5aafe954b8ba37818e40c14b37c23f9f614576b689436fef2f27f8b1e756e00262e22bca49c43fd73e7e99b2fa44a8c1db99c2cf2735ad6c5fabf082e0df0f8ba7e24272165f2f5b28230c095162b3b5fb3832ee68e2b53d44bd84bf6770157e96bbb96b5e1f165c87e7a9a7d53c281d88ebb175a4dbb82130e6870982947913110f091d21760d985afd3163f2e6880682432f9b3b97d57a9f980edfa1116a3d04d58872a07d6a7e12db673acd2f7b8988d833e71943fe2c1c65a3cf36b955c56b55bfd3ecf0af694c71a03f2996c15b1ba971de1cb9c7e6a0000000000000014783ef54c51199317413f98dca8ff3df3572a7d9ef5f6103997f1f9e4b0c3970bda50f6c0af58dbd6c031b1a5a7512c5896514adfa17d31429c68db50a93d88199defd3b4625fea426ff9293a28a544a6a9e2a79b55daa1b3c6b14c4ec6d164e902ce4913843d65d841973468729ea12bf6d3499036dbb66718f3497855c3baa6cc07c0fa388ec9df0617c1a28ef5a595ee267a76175b8a057e6efaf4fefe46def451f2858fe71a53e77b1a44e98843bb3a40102da3703dfb9f61bdcea2fb810b32d52e2157a150a63ea6135d1cf6f864c2e68884d7245bc5d61dc5a114d10ffb22e76678bbfc1e3865d17d128306d1b81884a934cb00000000000000000098a4526e6468987dbc63bff7590eb388afaba43d811996333eef7e9f472bee293f0c40d434b8be07cbd52325296e22802493edb5c590ad208bac683a8b2d4c9d2d57ff846ae8c422e0b28546671f11d8157bb762c91f3fbcca8e21589c92446ae65d408c0637ffcc2d44d715ce003dd1e12b085e186d069a55c2e96efbe5024d61a56a36d988c0f51a973a6c238e545b28211a92000000001501aed80000010000000000e293690c5e697b3a1480e46df5371bca1cfb28a57c1b3c956ec81397e81fbf870a67385fea04220423f52ad8178b9f"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r1, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000380)="76389e147583ddd0569ba56a888e55", 0x0, 0xff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.400205595s ago: executing program 0 (id=2972):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1.353253756s ago: executing program 2 (id=2973):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0xc, 0x4, 0x1, 0xffffffffffffffff, 0xffffffff}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000005c0)='kfree_skb\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000980)='kfree_skb\x00', r2}, 0x18)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000004440)={&(0x7f0000000ec0)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x2}}, 0x10, 0x0}, 0x0)

1.239916986s ago: executing program 0 (id=2974):
r0 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r0, @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00', r3}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})

1.112684691s ago: executing program 3 (id=2975):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))

1.112404177s ago: executing program 5 (id=2976):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000640)=ANY=[@ANYBLOB="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"/2566], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r3, 0x18000000000002a0, 0xe40, 0x0, &(0x7f0000000100)="b9ff03076844268cb89e14f005dd1be0ffff00fe3a21632f77fbac14141de007031762079f4b4d2f87e5feca6aab845013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0x8, 0x60000000}, 0x1e)

1.112234411s ago: executing program 2 (id=2977):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000008140)={&(0x7f0000000180)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@enum={0x2}]}, {0x0, [0x71, 0x5f, 0x2e]}}, 0x0, 0x29}, 0x28)

1.018170859s ago: executing program 3 (id=2978):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuset.memory_pressure_enabled\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0xc0189436, 0x2000141a)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000d8ffffffb703000008000000b70400000000925e850000000800000095"], 0x0, 0x0, 0xfffffffffffffe09, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
recvmsg(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/236, 0xec}], 0x1}, 0x23)
recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1, 0x0, 0x20}, 0x1f00)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)

1.014720688s ago: executing program 2 (id=2979):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000f1600018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000600)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$tipc(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000040)="fb", 0x1}], 0x1}, 0x0)
recvmsg(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000700)=""/87, 0x57}], 0x1}, 0x409d)

960.7676ms ago: executing program 5 (id=2980):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0x1}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r2, <r3=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r3, 0x0, &(0x7f0000001780)=""/4096}, 0x20)

883.848345ms ago: executing program 2 (id=2981):
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$tipc(r2, &(0x7f0000004440)={&(0x7f0000000ec0)=@id={0x1e, 0x3, 0x0, {0x4e21}}, 0x10, 0x0}, 0x0)

873.354659ms ago: executing program 5 (id=2982):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000012c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000005c0)='F', 0x1}], 0x1}, 0x0)
recvmsg(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000340)=""/251, 0x2}], 0x1}, 0x40000100)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001300)="d3", 0x1}], 0x1}, 0x0)

772.784372ms ago: executing program 2 (id=2983):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
close(r1)

656.592843ms ago: executing program 5 (id=2984):
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x20)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc6751dfb265a0e3ccae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fd52347125907000000000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df262ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71d20fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada12f7a1001500a710eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff000000000000000000000000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18a904c0e585a66c3b84b138efc20a546d3d5227e23b03f2a834391ad24fe7d9b20cf92cb151763d41f5c76e2ff3e93ee296c4082ee73e7e197253a2b66c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0842b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f04c7f0be31491eb8c9ff68236c8600000000000000000000000066e034c81c3cab4e33fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f2243471221c15fa12313ffbfa7c2730302b66a99f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca20508011132153c528f7bca92980a3223c5b9cdddedb0a14adddf9a6e70a26b5c0ee0879c349814bee9d96d8bd23db4e801d49201ae84090455682794098afa42b34196b1d849020eeeb1ef48d003d71524683d7cdfa841bca708414fb8ff49742420d1ab7fa678aa4806d5247616e8bc0b02887f8efe9310ccf9bec1c9b7f6671c9d59ac6b09b4436cafdd1887c8e884c930d21ace088ccc99a94d4b33da2fc1b1310bb607a9ad65844655de1ac9fd36d12e07a821fb950368a970c58fb4f3f403fdaf68902874"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b05, &(0x7f0000000000)={'wlan1\x00', @broadcast})
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000380)='sched_switch\x00', r0}, 0x10)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r1, 0x30}, 0x10)

521.159477ms ago: executing program 5 (id=2985):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
close(r1)

7.333262ms ago: executing program 3 (id=2986):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x14, &(0x7f0000000700)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f0000000040)=r1}, 0x20)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c0000000a000000000000000000000b02000000000000000400000d00000000000000000300000000000000030000000400000003000000000000000000000500"], &(0x7f0000000b80)=""/4090, 0x5e, 0xffa, 0x1}, 0x28)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_freezer_state(r2, &(0x7f0000000380), 0x2, 0x0)
r3 = openat$cgroup_freezer_state(r2, &(0x7f0000002b00), 0x2, 0x0)
close(r3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r4}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={0xffffffffffffffff, &(0x7f0000000080), 0x0}, 0x20)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0x1d, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x800}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000480)={0xffffffffffffffff, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xaa, 0x0, 0x0, 0x10, &(0x7f00000002c0), &(0x7f0000000300), 0x8, 0xa, 0x8, 0x8, &(0x7f0000000340)}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r6, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r7}, 0x18)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000400)={r4, 0xe0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0], ""/16, <r8=>0x0, 0x0, 0x0, 0x0, 0x200000000000005f, 0x1, &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000002c0)=[0x0], 0x0, 0x84, &(0x7f0000000300)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000340), &(0x7f0000000380), 0x8, 0xdb, 0x8, 0x8, &(0x7f00000003c0)}}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r8, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r9}, 0x10)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000080))
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000500)={<r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000000ac0)={&(0x7f0000000540)={0x2, 0x4e22, @broadcast}, 0x10, &(0x7f0000000940)=[{&(0x7f0000000800)="4ceb5e178c25e9848bd5829e21e6033a7dce3016c98c8b1d6fca1f2a94ad463f1155d65fe83db082e62e9152cc6db087bcbcfaf951f0b821188e3b557e96403f91157bf48d4a21f88dc1a2ea10a300e7ea209b9babe538d1c4b447d16ae13f2ce0b0d883b59d1a463e482d728771e9afab53b8dac34ee980355750f484064d2230d82525e88ffeb0a6cec113e0511a2137689d0d40525c196c338f7e9e800703ec2d3760484f07e9f0618fabb773840f11d7730a3e246f0ec5e92f0dbbbd3d9128d811b9864187db3fd4191650403d0fdefc35079d6c07f096931061bfe12606", 0xe0}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000580)="5dfb757324e72c9ba9eb536e3bb90dd7e8e871748f5a2e44ce471c0ada7c", 0x1e}, {&(0x7f0000000900)="0c0576373e67ebeefd", 0x9}], 0x4, &(0x7f0000000980)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @broadcast, @empty}}}, @ip_ttl={{0x14, 0x0, 0x2, 0x1}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @rand_addr=0x64010100, @local}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @private=0xa010100, @empty}}}], 0x90}, 0x4000001)

0s ago: executing program 3 (id=2987):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

kernel console output (not intermixed with test programs):

0
[  268.892884][T12646] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8d3bc
[  268.892898][T12646] RDX: 000000000000000f RSI: 00007f86d7c020a0 RDI: 0000000000000005
[  268.892909][T12646] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  268.892920][T12646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.892931][T12646] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  268.892963][T12646]  </TASK>
[  269.531305][T12675] pim6reg1: entered promiscuous mode
[  269.544126][T12675] pim6reg1: entered allmulticast mode
[  269.728522][T12678] netlink: 'syz.0.1882': attribute type 10 has an invalid length.
[  270.840535][T12710] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  271.070126][T12719] tipc: Disabling bearer <eth:syzkaller0>
[  271.177839][T12732] __nla_validate_parse: 3 callbacks suppressed
[  271.177856][T12732] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1889'.
[  271.683368][T12751] pim6reg1: entered promiscuous mode
[  271.712417][T12751] pim6reg1: entered allmulticast mode
[  271.751437][T12756] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1900'.
[  271.787148][T12756] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1900'.
[  271.819036][T12756] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1900'.
[  271.894175][T12756] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1900'.
[  273.032617][T12821] netlink: 27 bytes leftover after parsing attributes in process `syz.4.1923'.
[  273.062754][T12821] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1923'.
[  273.168982][T12822] pim6reg1: entered promiscuous mode
[  273.197951][T12822] pim6reg1: entered allmulticast mode
[  273.263569][T12831] IPVS: ip_vs_edit_dest(): lower threshold is higher than upper threshold
[  273.389293][T12836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1928'.
[  273.442439][T12837] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  273.456006][T12837] syzkaller0: entered promiscuous mode
[  273.467615][T12837] syzkaller0: entered allmulticast mode
[  273.667579][T12841] tipc: Resetting bearer <eth:syzkaller0>
[  273.704945][T12832] tipc: Resetting bearer <eth:syzkaller0>
[  273.736440][T12832] tipc: Disabling bearer <eth:syzkaller0>
[  274.051814][T12854] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  274.115136][T12859] netlink: 'syz.0.1935': attribute type 1 has an invalid length.
[  274.153273][T12859] 8021q: adding VLAN 0 to HW filter on device bond6
[  274.173987][T12863] netlink: 'syz.3.1936': attribute type 2 has an invalid length.
[  274.216970][T12863] netlink: 'syz.3.1936': attribute type 2 has an invalid length.
[  274.272910][T12865] 8021q: adding VLAN 0 to HW filter on device bond6
[  274.281411][T12865] bond6: (slave vxcan3): The slave device specified does not support setting the MAC address
[  274.342902][T12865] bond6: (slave vxcan3): Error -95 calling set_mac_address
[  274.408456][T12874] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1939'.
[  274.510168][T12878] netlink: 'syz.0.1935': attribute type 11 has an invalid length.
[  274.593561][T12859] veth7: entered promiscuous mode
[  274.637147][T12859] bond6: (slave veth7): Enslaving as an active interface with a down link
[  274.681361][T12871] erspan0: entered allmulticast mode
[  274.786138][T12877] bond5: (slave bridge6): Enslaving as an active interface with an up link
[  274.843034][T12879] macvlan2: entered promiscuous mode
[  274.848792][T12879] macvlan2: entered allmulticast mode
[  274.856153][T12879] bond5: (slave macvlan2): Error -98 calling set_mac_address
[  275.161215][T12902] bpq0: entered promiscuous mode
[  275.187894][T12902] bpq0: entered allmulticast mode
[  275.196373][T12901] netlink: 144 bytes leftover after parsing attributes in process `syz.3.1944'.
[  275.206293][T12902] netlink: 'syz.5.1945': attribute type 1 has an invalid length.
[  275.249744][T12902] bond4: entered promiscuous mode
[  275.265909][T12902] 8021q: adding VLAN 0 to HW filter on device bond4
[  275.431021][T12906] bond4: (slave bridge5): making interface the new active one
[  275.460010][T12906] bridge5: entered promiscuous mode
[  275.475754][T12906] bond4: (slave bridge5): Enslaving as an active interface with an up link
[  275.519151][T12923] pim6reg1: entered promiscuous mode
[  275.526166][T12923] pim6reg1: entered allmulticast mode
[  276.420812][T12955] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1959'.
[  276.537878][T12953] netlink: 156 bytes leftover after parsing attributes in process `syz.5.1956'.
[  276.932528][T12986] pimreg: entered allmulticast mode
[  276.960755][T12986] pimreg: left allmulticast mode
[  277.052567][T12994] netlink: 10 bytes leftover after parsing attributes in process `syz.3.1975'.
[  277.321061][T13003] bond1: (slave dummy0): Releasing active interface
[  277.341112][T13003] bridge_slave_0: left allmulticast mode
[  277.350829][T13003] bridge_slave_0: left promiscuous mode
[  277.358182][T13003] bridge0: port 1(bridge_slave_0) entered disabled state
[  277.381293][T13003] bridge_slave_1: left allmulticast mode
[  277.408680][T13003] bridge_slave_1: left promiscuous mode
[  277.428247][T13003] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.471075][T13003] bond0: (slave bond_slave_0): Releasing backup interface
[  277.527085][T13003] bond0: (slave bond_slave_1): Releasing backup interface
[  277.580934][T13003] bond4: (slave bridge5): Releasing backup interface
[  277.588566][T13003] bridge5: left promiscuous mode
[  277.792963][T13027] netlink: 830 bytes leftover after parsing attributes in process `syz.4.1984'.
[  277.921074][T13035] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1988'.
[  278.174157][T13046] netlink: 'syz.3.1993': attribute type 4 has an invalid length.
[  278.230747][T13046] netlink: 'syz.3.1993': attribute type 4 has an invalid length.
[  278.298842][T13047] pim6reg1: entered promiscuous mode
[  278.316432][T13047] pim6reg1: entered allmulticast mode
[  278.807868][T13067] net_ratelimit: 13 callbacks suppressed
[  278.807888][T13067] openvswitch: netlink: IP tunnel attribute has 20 unknown bytes.
[  279.504110][T13115] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2010'.
[  279.875738][T13124] netlink: 'syz.2.2013': attribute type 4 has an invalid length.
[  279.883666][T13124] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2013'.
[  280.140919][T13136] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  280.411988][T13146] netlink: 'syz.5.2021': attribute type 4 has an invalid length.
[  280.422442][T13145] pim6reg1: entered promiscuous mode
[  280.442219][T13145] pim6reg1: entered allmulticast mode
[  281.065608][T13168] netlink: 'syz.0.2031': attribute type 1 has an invalid length.
[  281.088766][T13168] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2031'.
[  281.608152][T13202] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  283.641292][T13201] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  283.783045][T13255] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2053'.
[  283.801943][T13255] netlink: 'syz.0.2053': attribute type 7 has an invalid length.
[  283.826697][T13255] netlink: 'syz.0.2053': attribute type 8 has an invalid length.
[  283.866721][T13255] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2053'.
[  284.061661][T13276] netlink: 'syz.4.2059': attribute type 142 has an invalid length.
[  284.385409][T13293] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2062'.
[  284.782197][T13318] FAULT_INJECTION: forcing a failure.
[  284.782197][T13318] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  284.836229][ T5842] Bluetooth: hci5: command 0x040f tx timeout
[  284.928211][T13320] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2073'.
[  284.943884][T13318] CPU: 0 UID: 0 PID: 13318 Comm: syz.2.2071 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  284.943911][T13318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  284.943921][T13318] Call Trace:
[  284.943929][T13318]  <TASK>
[  284.943937][T13318]  dump_stack_lvl+0x189/0x250
[  284.943962][T13318]  ? __pfx____ratelimit+0x10/0x10
[  284.943986][T13318]  ? __pfx_dump_stack_lvl+0x10/0x10
[  284.944004][T13318]  ? __pfx__printk+0x10/0x10
[  284.944036][T13318]  should_fail_ex+0x414/0x560
[  284.944067][T13318]  _copy_to_user+0x31/0xb0
[  284.944093][T13318]  copy_to_sockptr+0x5e/0xa0
[  284.944120][T13318]  do_tcp_getsockopt+0x2019/0x2660
[  284.944155][T13318]  ? __pfx_do_tcp_getsockopt+0x10/0x10
[  284.944179][T13318]  ? sock_common_getsockopt+0x10/0xb0
[  284.944201][T13318]  ? __pfx_css_rstat_updated+0x10/0x10
[  284.944230][T13318]  ? count_memcg_event_mm+0x21/0x260
[  284.944260][T13318]  ? count_memcg_event_mm+0x21/0x260
[  284.944286][T13318]  ? __up_read+0x280/0x680
[  284.944307][T13318]  ? __pfx___up_read+0x10/0x10
[  284.944327][T13318]  ? do_user_addr_fault+0xbc1/0x1390
[  284.944357][T13318]  ? do_user_addr_fault+0xc8a/0x1390
[  284.944413][T13318]  tcp_getsockopt+0x83/0x130
[  284.944430][T13318]  ? sock_common_getsockopt+0x10/0xb0
[  284.944450][T13318]  ? rep_movs_alternative+0xf/0x90
[  284.944468][T13318]  ? sock_common_getsockopt+0x10/0xb0
[  284.944490][T13318]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  284.944514][T13318]  do_sock_getsockopt+0x372/0x450
[  284.944536][T13318]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  284.944553][T13318]  ? do_syscall_64+0x20/0x3b0
[  284.944578][T13318]  ? ksys_write+0x1e1/0x250
[  284.944608][T13318]  __x64_sys_getsockopt+0x1a5/0x250
[  284.944624][T13318]  ? do_syscall_64+0x20/0x3b0
[  284.944648][T13318]  ? do_syscall_64+0x20/0x3b0
[  284.944675][T13318]  do_syscall_64+0xfa/0x3b0
[  284.944697][T13318]  ? lockdep_hardirqs_on+0x9c/0x150
[  284.944720][T13318]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.944737][T13318]  ? clear_bhb_loop+0x60/0xb0
[  284.944758][T13318]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  284.944775][T13318] RIP: 0033:0x7efc4e38e9a9
[  284.944792][T13318] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.944807][T13318] RSP: 002b:00007efc4f18e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  284.944834][T13318] RAX: ffffffffffffffda RBX: 00007efc4e5b5fa0 RCX: 00007efc4e38e9a9
[  284.944847][T13318] RDX: 0000000000000023 RSI: 0000000000000006 RDI: 0000000000000004
[  284.944858][T13318] RBP: 00007efc4f18e090 R08: 0000200000000040 R09: 0000000000000000
[  284.944870][T13318] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  284.944882][T13318] R13: 0000000000000000 R14: 00007efc4e5b5fa0 R15: 00007ffdbe4fffd8
[  284.944911][T13318]  </TASK>
[  285.335693][T13327] pimreg3: entered allmulticast mode
[  285.725793][T13349] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2081'.
[  285.755663][T13349] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2081'.
[  285.922840][T13357] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2085'.
[  285.932041][T13357] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2085'.
[  286.141724][T13372] FAULT_INJECTION: forcing a failure.
[  286.141724][T13372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  286.153262][T13370] tipc: Resetting bearer <eth:gre0>
[  286.182444][T13372] CPU: 1 UID: 0 PID: 13372 Comm: syz.3.2090 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  286.182469][T13372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  286.182480][T13372] Call Trace:
[  286.182487][T13372]  <TASK>
[  286.182495][T13372]  dump_stack_lvl+0x189/0x250
[  286.182517][T13372]  ? __pfx____ratelimit+0x10/0x10
[  286.182540][T13372]  ? __pfx_dump_stack_lvl+0x10/0x10
[  286.182558][T13372]  ? __pfx__printk+0x10/0x10
[  286.182591][T13372]  should_fail_ex+0x414/0x560
[  286.182621][T13372]  _copy_to_user+0x31/0xb0
[  286.182646][T13372]  simple_read_from_buffer+0xe1/0x170
[  286.182682][T13372]  proc_fail_nth_read+0x1b3/0x220
[  286.182706][T13372]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  286.182729][T13372]  ? rw_verify_area+0x258/0x650
[  286.182751][T13372]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  286.182772][T13372]  vfs_read+0x1fd/0x980
[  286.182804][T13372]  ? __pfx_vfs_read+0x10/0x10
[  286.182826][T13372]  ? tcp_getsockopt+0x83/0x130
[  286.182842][T13372]  ? sock_common_getsockopt+0x10/0xb0
[  286.182862][T13372]  ? rep_movs_alternative+0xf/0x90
[  286.182884][T13372]  ? sock_common_getsockopt+0x10/0xb0
[  286.182905][T13372]  ? __pfx_sock_common_getsockopt+0x10/0x10
[  286.182930][T13372]  ? do_sock_getsockopt+0x372/0x450
[  286.182958][T13372]  ksys_read+0x145/0x250
[  286.182984][T13372]  ? __pfx_ksys_read+0x10/0x10
[  286.183003][T13372]  ? rcu_is_watching+0x15/0xb0
[  286.183034][T13372]  ? do_syscall_64+0xbe/0x3b0
[  286.183070][T13372]  do_syscall_64+0xfa/0x3b0
[  286.183099][T13372]  ? lockdep_hardirqs_on+0x9c/0x150
[  286.183124][T13372]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.183141][T13372]  ? clear_bhb_loop+0x60/0xb0
[  286.183163][T13372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  286.183179][T13372] RIP: 0033:0x7fd44b98d3bc
[  286.183195][T13372] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  286.183210][T13372] RSP: 002b:00007fd44c8d3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  286.183231][T13372] RAX: ffffffffffffffda RBX: 00007fd44bbb5fa0 RCX: 00007fd44b98d3bc
[  286.183244][T13372] RDX: 000000000000000f RSI: 00007fd44c8d30a0 RDI: 0000000000000005
[  286.183256][T13372] RBP: 00007fd44c8d3090 R08: 0000000000000000 R09: 0000000000000000
[  286.183266][T13372] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  286.183278][T13372] R13: 0000000000000000 R14: 00007fd44bbb5fa0 R15: 00007ffe03e65e58
[  286.183306][T13372]  </TASK>
[  286.481561][T13370] erspan0: left allmulticast mode
[  286.997337][T13370] mac80211_hwsim hwsim6 wlan0: left promiscuous mode
[  287.011300][T13370] ipvlan2: left allmulticast mode
[  287.018687][T13370] bond1: left allmulticast mode
[  287.024733][T13370] bond2: left promiscuous mode
[  287.030003][T13370] bond2: left allmulticast mode
[  287.077878][T13370] bridge0: left promiscuous mode
[  287.087267][T13370] veth7: left promiscuous mode
[  287.124947][   T44] netdevsim netdevsim0 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  287.148331][   T44] netdevsim netdevsim0 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  287.181136][   T44] netdevsim netdevsim0 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  287.216442][   T44] netdevsim netdevsim0 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  287.271093][T13406] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2098'.
[  287.303576][T13406] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2098'.
[  288.141199][T13462] geneve2: entered promiscuous mode
[  288.159534][T13462] geneve2: entered allmulticast mode
[  289.029626][T13520] netlink: 'syz.3.2138': attribute type 4 has an invalid length.
[  289.054410][T13521] __nla_validate_parse: 4 callbacks suppressed
[  289.054427][T13521] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2136'.
[  289.108464][T13526] IPVS: length: 209 != 24
[  289.132799][T13521] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2136'.
[  289.163603][T13521] netlink: 'syz.5.2136': attribute type 11 has an invalid length.
[  289.261184][T13533] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2142'.
[  289.302492][T13533] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:0000
[  289.320945][T13538] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2144'.
[  289.330640][T13533] tipc: Enabled bearer <udp:syz1>, priority 10
[  289.540826][T13546] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  289.694774][T13556] syz.3.2146: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  289.722063][T13546] bond7: entered promiscuous mode
[  289.759712][T13546] bond7: entered allmulticast mode
[  289.767983][T13546] 8021q: adding VLAN 0 to HW filter on device bond7
[  289.824886][T13556] CPU: 1 UID: 0 PID: 13556 Comm: syz.3.2146 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  289.824917][T13556] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  289.824929][T13556] Call Trace:
[  289.824937][T13556]  <TASK>
[  289.824947][T13556]  dump_stack_lvl+0x189/0x250
[  289.824974][T13556]  ? __pfx_dump_stack_lvl+0x10/0x10
[  289.824995][T13556]  ? __pfx__printk+0x10/0x10
[  289.825017][T13556]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  289.825039][T13556]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  289.825063][T13556]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  289.825088][T13556]  warn_alloc+0x214/0x310
[  289.825114][T13556]  ? stack_depot_save_flags+0x40/0x900
[  289.825138][T13556]  ? __pfx_warn_alloc+0x10/0x10
[  289.825160][T13556]  ? kasan_save_track+0x4f/0x80
[  289.825185][T13556]  ? xskq_create+0x56/0x170
[  289.825206][T13556]  ? xsk_init_queue+0xb0/0x110
[  289.825225][T13556]  ? xsk_setsockopt+0x4dc/0x8d0
[  289.825244][T13556]  ? do_sock_setsockopt+0x17c/0x1b0
[  289.825260][T13556]  ? __x64_sys_setsockopt+0x13f/0x1b0
[  289.825276][T13556]  ? do_syscall_64+0xfa/0x3b0
[  289.825299][T13556]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.825327][T13556]  __vmalloc_node_range_noprof+0x125/0x12f0
[  289.825379][T13556]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  289.825405][T13556]  ? __kasan_kmalloc+0x93/0xb0
[  289.825433][T13556]  vmalloc_user_noprof+0xad/0xf0
[  289.825452][T13556]  ? xskq_create+0xbf/0x170
[  289.825476][T13556]  xskq_create+0xbf/0x170
[  289.825503][T13556]  xsk_init_queue+0xb0/0x110
[  289.825529][T13556]  xsk_setsockopt+0x4dc/0x8d0
[  289.825554][T13556]  ? __pfx_xsk_setsockopt+0x10/0x10
[  289.825576][T13556]  ? __pfx_aa_sk_perm+0x10/0x10
[  289.825604][T13556]  ? aa_sock_opt_perm+0x74/0x110
[  289.825629][T13556]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  289.825648][T13556]  ? __pfx_xsk_setsockopt+0x10/0x10
[  289.825672][T13556]  do_sock_setsockopt+0x17c/0x1b0
[  289.825695][T13556]  __x64_sys_setsockopt+0x13f/0x1b0
[  289.825720][T13556]  do_syscall_64+0xfa/0x3b0
[  289.825743][T13556]  ? lockdep_hardirqs_on+0x9c/0x150
[  289.825766][T13556]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.825784][T13556]  ? clear_bhb_loop+0x60/0xb0
[  289.825806][T13556]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  289.825823][T13556] RIP: 0033:0x7fd44b98e9a9
[  289.825845][T13556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  289.825861][T13556] RSP: 002b:00007fd44c8b2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  289.825883][T13556] RAX: ffffffffffffffda RBX: 00007fd44bbb6080 RCX: 00007fd44b98e9a9
[  289.825897][T13556] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000007
[  289.825909][T13556] RBP: 00007fd44ba10d69 R08: 0000000000000004 R09: 0000000000000000
[  289.825921][T13556] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[  289.825933][T13556] R13: 0000000000000000 R14: 00007fd44bbb6080 R15: 00007ffe03e65e58
[  289.825966][T13556]  </TASK>
[  289.827052][T13556] Mem-Info:
[  290.305602][T13556] active_anon:3855 inactive_anon:0 isolated_anon:0
[  290.305602][T13556]  active_file:1860 inactive_file:39917 isolated_file:0
[  290.305602][T13556]  unevictable:768 dirty:272 writeback:0
[  290.305602][T13556]  slab_reclaimable:12098 slab_unreclaimable:120219
[  290.305602][T13556]  mapped:30339 shmem:1494 pagetables:960
[  290.305602][T13556]  sec_pagetables:0 bounce:0
[  290.305602][T13556]  kernel_misc_reclaimable:0
[  290.305602][T13556]  free:1303974 free_pcp:15767 free_cma:0
[  290.469274][T13579] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2151'.
[  290.487283][T13556] Node 0 active_anon:15320kB inactive_anon:0kB active_file:7440kB inactive_file:159464kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121356kB dirty:1088kB writeback:0kB shmem:4440kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12816kB pagetables:3716kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  290.549946][T13556] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:124kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  290.590583][T13556] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  290.657523][T13556] lowmem_reserve[]: 0 2500 2502 2502 2502
[  290.702126][T13556] Node 0 DMA32 free:1303268kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:15172kB inactive_anon:0kB active_file:7440kB inactive_file:157632kB unevictable:1536kB writepending:1088kB present:3129332kB managed:2560292kB mlocked:0kB bounce:0kB free_pcp:43568kB local_pcp:23012kB free_cma:0kB
[  290.769691][T13556] lowmem_reserve[]: 0 0 1 1 1
[  290.780864][T13556] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1832kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[  290.815976][T13556] lowmem_reserve[]: 0 0 0 0 0
[  290.821899][T13556] Node 1 Normal free:3897264kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:20288kB local_pcp:10640kB free_cma:0kB
[  290.857786][T13556] lowmem_reserve[]: 0 0 0 0 0
[  290.862761][T13556] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  290.880269][T13556] Node 0 DMA32: 1859*4kB (UM) 570*8kB (UME) 188*16kB (UME) 282*32kB (UM) 85*64kB (UME) 26*128kB (UM) 22*256kB (UME) 6*512kB (M) 8*1024kB (UME) 7*2048kB (UME) 303*4096kB (M) = 1305116kB
[  290.900973][T13556] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[  290.929256][T13556] Node 1 Normal: 204*4kB (UE) 54*8kB (UME) 43*16kB (UME) 83*32kB (UME) 29*64kB (UME) 11*128kB (UME) 5*256kB (UME) 2*512kB (M) 2*1024kB (UM) 1*2048kB (E) 948*4096kB (M) = 3897264kB
[  290.949203][T13556] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  290.960834][T13556] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  290.971830][T13556] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  290.982111][T13556] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  290.997824][T13556] 43268 total pagecache pages
[  291.003506][T13556] 0 pages in swap cache
[  291.011535][T13556] Free swap  = 124996kB
[  291.028983][T13556] Total swap = 124996kB
[  291.038161][T13556] 2097051 pages RAM
[  291.056240][T13556] 0 pages HighMem/MovableOnly
[  291.069075][T13556] 424872 pages reserved
[  291.102255][T13556] 0 pages cma reserved
[  291.375576][T13615] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2156'.
[  291.841218][T13640] FAULT_INJECTION: forcing a failure.
[  291.841218][T13640] name failslab, interval 1, probability 0, space 0, times 0
[  291.859767][T13640] CPU: 0 UID: 0 PID: 13640 Comm: syz.0.2166 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  291.859796][T13640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  291.859807][T13640] Call Trace:
[  291.859815][T13640]  <TASK>
[  291.859829][T13640]  dump_stack_lvl+0x189/0x250
[  291.859853][T13640]  ? __pfx____ratelimit+0x10/0x10
[  291.859877][T13640]  ? __pfx_dump_stack_lvl+0x10/0x10
[  291.859895][T13640]  ? __pfx__printk+0x10/0x10
[  291.859922][T13640]  ? __pfx___might_resched+0x10/0x10
[  291.859951][T13640]  should_fail_ex+0x414/0x560
[  291.859982][T13640]  should_failslab+0xa8/0x100
[  291.860001][T13640]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  291.860032][T13640]  ? __alloc_skb+0x112/0x2d0
[  291.860060][T13640]  __alloc_skb+0x112/0x2d0
[  291.860089][T13640]  netlink_sendmsg+0x5c6/0xb30
[  291.860123][T13640]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.860151][T13640]  ? aa_sock_msg_perm+0x94/0x160
[  291.860174][T13640]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  291.860194][T13640]  ? __pfx_netlink_sendmsg+0x10/0x10
[  291.860219][T13640]  __sock_sendmsg+0x219/0x270
[  291.860245][T13640]  ____sys_sendmsg+0x505/0x830
[  291.860269][T13640]  ? __pfx_____sys_sendmsg+0x10/0x10
[  291.860297][T13640]  ? import_iovec+0x74/0xa0
[  291.860324][T13640]  ___sys_sendmsg+0x21f/0x2a0
[  291.860345][T13640]  ? __pfx____sys_sendmsg+0x10/0x10
[  291.860400][T13640]  ? __fget_files+0x2a/0x420
[  291.860417][T13640]  ? __fget_files+0x3a0/0x420
[  291.860445][T13640]  __x64_sys_sendmsg+0x19b/0x260
[  291.860466][T13640]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  291.860494][T13640]  ? __pfx_ksys_write+0x10/0x10
[  291.860515][T13640]  ? rcu_is_watching+0x15/0xb0
[  291.860544][T13640]  ? do_syscall_64+0xbe/0x3b0
[  291.860571][T13640]  do_syscall_64+0xfa/0x3b0
[  291.860593][T13640]  ? lockdep_hardirqs_on+0x9c/0x150
[  291.860615][T13640]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.860632][T13640]  ? clear_bhb_loop+0x60/0xb0
[  291.860653][T13640]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  291.860670][T13640] RIP: 0033:0x7f86d6d8e9a9
[  291.860686][T13640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  291.860700][T13640] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  291.860722][T13640] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  291.860735][T13640] RDX: 0000000020044040 RSI: 00002000000000c0 RDI: 0000000000000004
[  291.860747][T13640] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  291.860757][T13640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  291.860767][T13640] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  291.860794][T13640]  </TASK>
[  292.230113][T13644] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2167'.
[  292.577352][T13661] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2174'.
[  292.829651][T13655] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2168'.
[  293.260299][T13688] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  293.946735][T13725] FAULT_INJECTION: forcing a failure.
[  293.946735][T13725] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  293.994171][T13725] CPU: 0 UID: 0 PID: 13725 Comm: syz.0.2193 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  293.994199][T13725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  293.994210][T13725] Call Trace:
[  293.994222][T13725]  <TASK>
[  293.994229][T13725]  dump_stack_lvl+0x189/0x250
[  293.994252][T13725]  ? __pfx____ratelimit+0x10/0x10
[  293.994275][T13725]  ? __pfx_dump_stack_lvl+0x10/0x10
[  293.994292][T13725]  ? __pfx__printk+0x10/0x10
[  293.994312][T13725]  ? __might_fault+0xb0/0x130
[  293.994347][T13725]  should_fail_ex+0x414/0x560
[  293.994377][T13725]  _copy_from_iter+0x1db/0x16f0
[  293.994402][T13725]  ? rcu_is_watching+0x15/0xb0
[  293.994428][T13725]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  293.994454][T13725]  ? __pfx__copy_from_iter+0x10/0x10
[  293.994477][T13725]  ? __build_skb_around+0x257/0x3e0
[  293.994505][T13725]  ? netlink_sendmsg+0x642/0xb30
[  293.994527][T13725]  ? skb_put+0x11b/0x210
[  293.994547][T13725]  netlink_sendmsg+0x6b2/0xb30
[  293.994580][T13725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.994619][T13725]  ? aa_sock_msg_perm+0x94/0x160
[  293.994641][T13725]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  293.994661][T13725]  ? __pfx_netlink_sendmsg+0x10/0x10
[  293.994685][T13725]  __sock_sendmsg+0x219/0x270
[  293.994711][T13725]  ____sys_sendmsg+0x505/0x830
[  293.994734][T13725]  ? __pfx_____sys_sendmsg+0x10/0x10
[  293.994762][T13725]  ? import_iovec+0x74/0xa0
[  293.994788][T13725]  ___sys_sendmsg+0x21f/0x2a0
[  293.994809][T13725]  ? __pfx____sys_sendmsg+0x10/0x10
[  293.994863][T13725]  ? __fget_files+0x2a/0x420
[  293.994880][T13725]  ? __fget_files+0x3a0/0x420
[  293.994907][T13725]  __x64_sys_sendmsg+0x19b/0x260
[  293.994928][T13725]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  293.994956][T13725]  ? __pfx_ksys_write+0x10/0x10
[  293.994977][T13725]  ? rcu_is_watching+0x15/0xb0
[  293.995005][T13725]  ? do_syscall_64+0xbe/0x3b0
[  293.995033][T13725]  do_syscall_64+0xfa/0x3b0
[  293.995054][T13725]  ? lockdep_hardirqs_on+0x9c/0x150
[  293.995076][T13725]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.995093][T13725]  ? clear_bhb_loop+0x60/0xb0
[  293.995114][T13725]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  293.995130][T13725] RIP: 0033:0x7f86d6d8e9a9
[  293.995147][T13725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  293.995161][T13725] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  293.995182][T13725] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  293.995195][T13725] RDX: 0000000020044040 RSI: 00002000000000c0 RDI: 0000000000000004
[  293.995207][T13725] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  293.995218][T13725] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  293.995228][T13725] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  293.995258][T13725]  </TASK>
[  294.367254][T13730] netlink: 'syz.0.2195': attribute type 10 has an invalid length.
[  294.410392][T13730] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2195'.
[  294.449777][T13734] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.2195'.
[  294.502971][T13730] batadv0: entered promiscuous mode
[  294.574284][T13730] batadv0: entered allmulticast mode
[  294.584800][T13730] 8021q: adding VLAN 0 to HW filter on device batadv0
[  294.592653][T13730] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  294.806281][T13750] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  295.036044][T13750] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  295.181495][T13773] FAULT_INJECTION: forcing a failure.
[  295.181495][T13773] name failslab, interval 1, probability 0, space 0, times 0
[  295.202097][T13773] CPU: 1 UID: 0 PID: 13773 Comm: syz.5.2205 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  295.202125][T13773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  295.202136][T13773] Call Trace:
[  295.202144][T13773]  <TASK>
[  295.202152][T13773]  dump_stack_lvl+0x189/0x250
[  295.202176][T13773]  ? __pfx____ratelimit+0x10/0x10
[  295.202200][T13773]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.202219][T13773]  ? __pfx__printk+0x10/0x10
[  295.202243][T13773]  ? __pfx___might_resched+0x10/0x10
[  295.202268][T13773]  ? fs_reclaim_acquire+0x7d/0x100
[  295.202292][T13773]  should_fail_ex+0x414/0x560
[  295.202324][T13773]  should_failslab+0xa8/0x100
[  295.202344][T13773]  __kmalloc_noprof+0xcb/0x4f0
[  295.202367][T13773]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  295.202394][T13773]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  295.202422][T13773]  genl_family_rcv_msg_doit+0xb8/0x300
[  295.202451][T13773]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  295.202477][T13773]  ? __pfx_genl_get_cmd+0x10/0x10
[  295.202494][T13773]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  295.202520][T13773]  ? stack_trace_save+0x9c/0xe0
[  295.202547][T13773]  genl_rcv_msg+0x60e/0x790
[  295.202574][T13773]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.202592][T13773]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  295.202627][T13773]  netlink_rcv_skb+0x205/0x470
[  295.202649][T13773]  ? __lock_acquire+0xab9/0xd20
[  295.202672][T13773]  ? __pfx_genl_rcv_msg+0x10/0x10
[  295.202694][T13773]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  295.202746][T13773]  ? down_read+0x1ad/0x2e0
[  295.202766][T13773]  genl_rcv+0x28/0x40
[  295.202784][T13773]  netlink_unicast+0x82c/0x9e0
[  295.202817][T13773]  ? __pfx_netlink_unicast+0x10/0x10
[  295.202842][T13773]  ? netlink_sendmsg+0x642/0xb30
[  295.202864][T13773]  ? skb_put+0x11b/0x210
[  295.202885][T13773]  netlink_sendmsg+0x805/0xb30
[  295.202921][T13773]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.202949][T13773]  ? aa_sock_msg_perm+0x94/0x160
[  295.202973][T13773]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  295.202992][T13773]  ? __pfx_netlink_sendmsg+0x10/0x10
[  295.203017][T13773]  __sock_sendmsg+0x219/0x270
[  295.203043][T13773]  ____sys_sendmsg+0x505/0x830
[  295.203069][T13773]  ? __pfx_____sys_sendmsg+0x10/0x10
[  295.203099][T13773]  ? import_iovec+0x74/0xa0
[  295.203127][T13773]  ___sys_sendmsg+0x21f/0x2a0
[  295.203149][T13773]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.203211][T13773]  ? __fget_files+0x2a/0x420
[  295.203227][T13773]  ? __fget_files+0x3a0/0x420
[  295.203257][T13773]  __x64_sys_sendmsg+0x19b/0x260
[  295.203279][T13773]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  295.203310][T13773]  ? __pfx_ksys_write+0x10/0x10
[  295.203330][T13773]  ? rcu_is_watching+0x15/0xb0
[  295.203362][T13773]  ? do_syscall_64+0xbe/0x3b0
[  295.203390][T13773]  do_syscall_64+0xfa/0x3b0
[  295.203412][T13773]  ? lockdep_hardirqs_on+0x9c/0x150
[  295.203435][T13773]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.203452][T13773]  ? clear_bhb_loop+0x60/0xb0
[  295.203474][T13773]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.203490][T13773] RIP: 0033:0x7fb26bd8e9a9
[  295.203507][T13773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.203522][T13773] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.203544][T13773] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  295.203557][T13773] RDX: 0000000020044040 RSI: 00002000000000c0 RDI: 0000000000000004
[  295.203569][T13773] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  295.203581][T13773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.203592][T13773] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  295.203624][T13773]  </TASK>
[  295.807047][T13789] netlink: 'syz.3.2213': attribute type 10 has an invalid length.
[  295.848675][T13796] IPVS: set_ctl: invalid protocol: 44 172.30.0.1:20000
[  295.858551][T13789] netlink: 'syz.3.2213': attribute type 10 has an invalid length.
[  295.920945][T13804] FAULT_INJECTION: forcing a failure.
[  295.920945][T13804] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  295.941796][T13804] CPU: 1 UID: 0 PID: 13804 Comm: syz.5.2219 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  295.941822][T13804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  295.941833][T13804] Call Trace:
[  295.941841][T13804]  <TASK>
[  295.941848][T13804]  dump_stack_lvl+0x189/0x250
[  295.941870][T13804]  ? __pfx____ratelimit+0x10/0x10
[  295.941893][T13804]  ? __pfx_dump_stack_lvl+0x10/0x10
[  295.941909][T13804]  ? __pfx__printk+0x10/0x10
[  295.941928][T13804]  ? __might_fault+0xb0/0x130
[  295.941957][T13804]  should_fail_ex+0x414/0x560
[  295.941982][T13804]  _copy_from_user+0x2d/0xb0
[  295.942003][T13804]  ___sys_sendmsg+0x158/0x2a0
[  295.942021][T13804]  ? __pfx____sys_sendmsg+0x10/0x10
[  295.942064][T13804]  ? __fget_files+0x2a/0x420
[  295.942076][T13804]  ? __fget_files+0x3a0/0x420
[  295.942098][T13804]  __x64_sys_sendmsg+0x19b/0x260
[  295.942115][T13804]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  295.942136][T13804]  ? __pfx_ksys_write+0x10/0x10
[  295.942154][T13804]  ? rcu_is_watching+0x15/0xb0
[  295.942179][T13804]  ? do_syscall_64+0xbe/0x3b0
[  295.942202][T13804]  do_syscall_64+0xfa/0x3b0
[  295.942220][T13804]  ? lockdep_hardirqs_on+0x9c/0x150
[  295.942238][T13804]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.942252][T13804]  ? clear_bhb_loop+0x60/0xb0
[  295.942269][T13804]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  295.942283][T13804] RIP: 0033:0x7fb26bd8e9a9
[  295.942295][T13804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  295.942307][T13804] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  295.942324][T13804] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  295.942335][T13804] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  295.942345][T13804] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  295.942353][T13804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  295.942362][T13804] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  295.942386][T13804]  </TASK>
[  296.321379][T13809] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  296.491718][T13821] FAULT_INJECTION: forcing a failure.
[  296.491718][T13821] name failslab, interval 1, probability 0, space 0, times 0
[  296.512496][T13821] CPU: 0 UID: 0 PID: 13821 Comm: syz.5.2226 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  296.512522][T13821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  296.512533][T13821] Call Trace:
[  296.512541][T13821]  <TASK>
[  296.512548][T13821]  dump_stack_lvl+0x189/0x250
[  296.512585][T13821]  ? __pfx____ratelimit+0x10/0x10
[  296.512609][T13821]  ? __pfx_dump_stack_lvl+0x10/0x10
[  296.512627][T13821]  ? __pfx__printk+0x10/0x10
[  296.512654][T13821]  ? __pfx___might_resched+0x10/0x10
[  296.512683][T13821]  should_fail_ex+0x414/0x560
[  296.512714][T13821]  should_failslab+0xa8/0x100
[  296.512733][T13821]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  296.512759][T13821]  ? __alloc_skb+0x112/0x2d0
[  296.512789][T13821]  __alloc_skb+0x112/0x2d0
[  296.512817][T13821]  netlbl_cipsov4_list+0xf3/0x1660
[  296.512855][T13821]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  296.512873][T13821]  ? __nla_parse+0x40/0x60
[  296.512895][T13821]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  296.512921][T13821]  genl_family_rcv_msg_doit+0x215/0x300
[  296.512947][T13821]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  296.512981][T13821]  ? stack_trace_save+0x9c/0xe0
[  296.513007][T13821]  genl_rcv_msg+0x60e/0x790
[  296.513034][T13821]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.513053][T13821]  ? __pfx_netlbl_cipsov4_list+0x10/0x10
[  296.513089][T13821]  netlink_rcv_skb+0x205/0x470
[  296.513110][T13821]  ? __lock_acquire+0xab9/0xd20
[  296.513133][T13821]  ? __pfx_genl_rcv_msg+0x10/0x10
[  296.513154][T13821]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  296.513196][T13821]  ? down_read+0x1ad/0x2e0
[  296.513216][T13821]  genl_rcv+0x28/0x40
[  296.513232][T13821]  netlink_unicast+0x82c/0x9e0
[  296.513263][T13821]  ? __pfx_netlink_unicast+0x10/0x10
[  296.513288][T13821]  ? netlink_sendmsg+0x642/0xb30
[  296.513328][T13821]  ? skb_put+0x11b/0x210
[  296.513349][T13821]  netlink_sendmsg+0x805/0xb30
[  296.513383][T13821]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.513410][T13821]  ? aa_sock_msg_perm+0x94/0x160
[  296.513435][T13821]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  296.513454][T13821]  ? __pfx_netlink_sendmsg+0x10/0x10
[  296.513479][T13821]  __sock_sendmsg+0x219/0x270
[  296.513505][T13821]  ____sys_sendmsg+0x505/0x830
[  296.513530][T13821]  ? __pfx_____sys_sendmsg+0x10/0x10
[  296.513565][T13821]  ? import_iovec+0x74/0xa0
[  296.513593][T13821]  ___sys_sendmsg+0x21f/0x2a0
[  296.513615][T13821]  ? __pfx____sys_sendmsg+0x10/0x10
[  296.513664][T13808] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  296.513667][T13821]  ? __fget_files+0x2a/0x420
[  296.513687][T13821]  ? __fget_files+0x3a0/0x420
[  296.513713][T13821]  __x64_sys_sendmsg+0x19b/0x260
[  296.513735][T13821]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  296.513766][T13821]  ? __pfx_ksys_write+0x10/0x10
[  296.513786][T13821]  ? rcu_is_watching+0x15/0xb0
[  296.513817][T13821]  ? do_syscall_64+0xbe/0x3b0
[  296.513846][T13821]  do_syscall_64+0xfa/0x3b0
[  296.513868][T13821]  ? lockdep_hardirqs_on+0x9c/0x150
[  296.513891][T13821]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.513908][T13821]  ? clear_bhb_loop+0x60/0xb0
[  296.513930][T13821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.513946][T13821] RIP: 0033:0x7fb26bd8e9a9
[  296.513963][T13821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  296.513978][T13821] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  296.513998][T13821] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  296.514012][T13821] RDX: 0000000020044040 RSI: 00002000000000c0 RDI: 0000000000000004
[  296.514024][T13821] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  296.514035][T13821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.514046][T13821] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  296.514078][T13821]  </TASK>
[  297.070075][T13837] netem: change failed
[  297.259405][T13852] FAULT_INJECTION: forcing a failure.
[  297.259405][T13852] name failslab, interval 1, probability 0, space 0, times 0
[  297.280448][T13852] CPU: 0 UID: 0 PID: 13852 Comm: syz.5.2235 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  297.280474][T13852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  297.280484][T13852] Call Trace:
[  297.280491][T13852]  <TASK>
[  297.280498][T13852]  dump_stack_lvl+0x189/0x250
[  297.280521][T13852]  ? __pfx____ratelimit+0x10/0x10
[  297.280552][T13852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  297.280569][T13852]  ? __pfx__printk+0x10/0x10
[  297.280595][T13852]  ? __pfx___might_resched+0x10/0x10
[  297.280624][T13852]  should_fail_ex+0x414/0x560
[  297.280655][T13852]  should_failslab+0xa8/0x100
[  297.280673][T13852]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  297.280697][T13852]  ? __alloc_skb+0x112/0x2d0
[  297.280725][T13852]  __alloc_skb+0x112/0x2d0
[  297.280753][T13852]  netlink_sendmsg+0x5c6/0xb30
[  297.280788][T13852]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.280816][T13852]  ? aa_sock_msg_perm+0x94/0x160
[  297.280840][T13852]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  297.280859][T13852]  ? __pfx_netlink_sendmsg+0x10/0x10
[  297.280884][T13852]  __sock_sendmsg+0x219/0x270
[  297.280908][T13852]  ____sys_sendmsg+0x505/0x830
[  297.280932][T13852]  ? __pfx_____sys_sendmsg+0x10/0x10
[  297.280959][T13852]  ? import_iovec+0x74/0xa0
[  297.280985][T13852]  ___sys_sendmsg+0x21f/0x2a0
[  297.281006][T13852]  ? __pfx____sys_sendmsg+0x10/0x10
[  297.281061][T13852]  ? __fget_files+0x2a/0x420
[  297.281078][T13852]  ? __fget_files+0x3a0/0x420
[  297.281106][T13852]  __x64_sys_sendmsg+0x19b/0x260
[  297.281127][T13852]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  297.281155][T13852]  ? __pfx_ksys_write+0x10/0x10
[  297.281175][T13852]  ? rcu_is_watching+0x15/0xb0
[  297.281204][T13852]  ? do_syscall_64+0xbe/0x3b0
[  297.281231][T13852]  do_syscall_64+0xfa/0x3b0
[  297.281252][T13852]  ? lockdep_hardirqs_on+0x9c/0x150
[  297.281274][T13852]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.281290][T13852]  ? clear_bhb_loop+0x60/0xb0
[  297.281310][T13852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  297.281325][T13852] RIP: 0033:0x7fb26bd8e9a9
[  297.281340][T13852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  297.281355][T13852] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  297.281375][T13852] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  297.281388][T13852] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  297.281399][T13852] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  297.281409][T13852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  297.281420][T13852] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  297.281448][T13852]  </TASK>
[  297.858645][T13865] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  297.869834][T13865] syzkaller0: entered promiscuous mode
[  297.875487][T13865] syzkaller0: entered allmulticast mode
[  297.905537][T13865] tipc: Resetting bearer <eth:syzkaller0>
[  297.918667][T13864] tipc: Resetting bearer <eth:syzkaller0>
[  297.955723][T13864] tipc: Disabling bearer <eth:syzkaller0>
[  298.041900][T13872] netlink: 104 bytes leftover after parsing attributes in process `syz.4.2242'.
[  298.552824][T13905] netlink: 'syz.0.2253': attribute type 14 has an invalid length.
[  298.561306][T13905] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2253'.
[  298.577682][T13908] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2255'.
[  298.584668][T13905] netlink: 'syz.0.2253': attribute type 14 has an invalid length.
[  298.628968][T13905] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2253'.
[  298.632472][T13909] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2255'.
[  298.778000][T13918] netlink: 'syz.2.2258': attribute type 7 has an invalid length.
[  298.794419][T13918] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2258'.
[  299.029848][T13931] netlink: 88 bytes leftover after parsing attributes in process `syz.5.2263'.
[  299.106086][T13933] FAULT_INJECTION: forcing a failure.
[  299.106086][T13933] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  299.150237][T13933] CPU: 1 UID: 0 PID: 13933 Comm: syz.2.2264 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  299.150265][T13933] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  299.150275][T13933] Call Trace:
[  299.150285][T13933]  <TASK>
[  299.150293][T13933]  dump_stack_lvl+0x189/0x250
[  299.150316][T13933]  ? __pfx____ratelimit+0x10/0x10
[  299.150339][T13933]  ? __pfx_dump_stack_lvl+0x10/0x10
[  299.150356][T13933]  ? __pfx__printk+0x10/0x10
[  299.150377][T13933]  ? __might_fault+0xb0/0x130
[  299.150410][T13933]  should_fail_ex+0x414/0x560
[  299.150440][T13933]  _copy_from_user+0x2d/0xb0
[  299.150464][T13933]  ___sys_sendmsg+0x158/0x2a0
[  299.150485][T13933]  ? __pfx____sys_sendmsg+0x10/0x10
[  299.150538][T13933]  ? __fget_files+0x2a/0x420
[  299.150554][T13933]  ? __fget_files+0x3a0/0x420
[  299.150580][T13933]  __x64_sys_sendmsg+0x19b/0x260
[  299.150601][T13933]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  299.150628][T13933]  ? __pfx_ksys_write+0x10/0x10
[  299.150648][T13933]  ? rcu_is_watching+0x15/0xb0
[  299.150678][T13933]  ? do_syscall_64+0xbe/0x3b0
[  299.150705][T13933]  do_syscall_64+0xfa/0x3b0
[  299.150727][T13933]  ? lockdep_hardirqs_on+0x9c/0x150
[  299.150748][T13933]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.150765][T13933]  ? clear_bhb_loop+0x60/0xb0
[  299.150785][T13933]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  299.150801][T13933] RIP: 0033:0x7efc4e38e9a9
[  299.150816][T13933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  299.150830][T13933] RSP: 002b:00007efc4f18e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  299.150851][T13933] RAX: ffffffffffffffda RBX: 00007efc4e5b5fa0 RCX: 00007efc4e38e9a9
[  299.150863][T13933] RDX: 00000000000040c0 RSI: 0000200000001480 RDI: 0000000000000004
[  299.150874][T13933] RBP: 00007efc4f18e090 R08: 0000000000000000 R09: 0000000000000000
[  299.150885][T13933] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  299.150895][T13933] R13: 0000000000000000 R14: 00007efc4e5b5fa0 R15: 00007ffdbe4fffd8
[  299.150923][T13933]  </TASK>
[  300.100701][T13977] FAULT_INJECTION: forcing a failure.
[  300.100701][T13977] name failslab, interval 1, probability 0, space 0, times 0
[  300.123163][T13973] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2276'.
[  300.127837][T13977] CPU: 0 UID: 0 PID: 13977 Comm: syz.3.2278 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  300.127863][T13977] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  300.127874][T13977] Call Trace:
[  300.127881][T13977]  <TASK>
[  300.127889][T13977]  dump_stack_lvl+0x189/0x250
[  300.127912][T13977]  ? __pfx____ratelimit+0x10/0x10
[  300.127936][T13977]  ? __pfx_dump_stack_lvl+0x10/0x10
[  300.127953][T13977]  ? __pfx__printk+0x10/0x10
[  300.127979][T13977]  ? __pfx___might_resched+0x10/0x10
[  300.128008][T13977]  should_fail_ex+0x414/0x560
[  300.128038][T13977]  should_failslab+0xa8/0x100
[  300.128057][T13977]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  300.128082][T13977]  ? __alloc_skb+0x112/0x2d0
[  300.128110][T13977]  __alloc_skb+0x112/0x2d0
[  300.128138][T13977]  netlink_sendmsg+0x5c6/0xb30
[  300.128171][T13977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  300.128205][T13977]  ? aa_sock_msg_perm+0x94/0x160
[  300.128229][T13977]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  300.128248][T13977]  ? __pfx_netlink_sendmsg+0x10/0x10
[  300.128272][T13977]  __sock_sendmsg+0x219/0x270
[  300.128296][T13977]  ____sys_sendmsg+0x505/0x830
[  300.128320][T13977]  ? __pfx_____sys_sendmsg+0x10/0x10
[  300.128348][T13977]  ? import_iovec+0x74/0xa0
[  300.128373][T13977]  ___sys_sendmsg+0x21f/0x2a0
[  300.128394][T13977]  ? __pfx____sys_sendmsg+0x10/0x10
[  300.128447][T13977]  ? __fget_files+0x2a/0x420
[  300.128463][T13977]  ? __fget_files+0x3a0/0x420
[  300.128490][T13977]  __x64_sys_sendmsg+0x19b/0x260
[  300.128511][T13977]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  300.128538][T13977]  ? __pfx_ksys_write+0x10/0x10
[  300.128558][T13977]  ? rcu_is_watching+0x15/0xb0
[  300.128587][T13977]  ? do_syscall_64+0xbe/0x3b0
[  300.128615][T13977]  do_syscall_64+0xfa/0x3b0
[  300.128636][T13977]  ? lockdep_hardirqs_on+0x9c/0x150
[  300.128658][T13977]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.128674][T13977]  ? clear_bhb_loop+0x60/0xb0
[  300.128695][T13977]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  300.128711][T13977] RIP: 0033:0x7fd44b98e9a9
[  300.128727][T13977] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  300.128741][T13977] RSP: 002b:00007fd44c8d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  300.128761][T13977] RAX: ffffffffffffffda RBX: 00007fd44bbb5fa0 RCX: 00007fd44b98e9a9
[  300.128774][T13977] RDX: 00000000000040c0 RSI: 0000200000001480 RDI: 0000000000000004
[  300.128785][T13977] RBP: 00007fd44c8d3090 R08: 0000000000000000 R09: 0000000000000000
[  300.128796][T13977] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  300.128806][T13977] R13: 0000000000000000 R14: 00007fd44bbb5fa0 R15: 00007ffe03e65e58
[  300.128834][T13977]  </TASK>
[  300.333580][T13988] netlink: 260 bytes leftover after parsing attributes in process `syz.4.2277'.
[  300.452339][T13989] veth0: entered promiscuous mode
[  300.459477][T13989] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2280'.
[  300.573297][T13996] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2280'.
[  300.614740][T13996] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2280'.
[  300.681109][T13996] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2280'.
[  300.766645][T14003] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2286'.
[  300.772220][T14007] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  300.827634][T14003] 8021q: adding VLAN 0 to HW filter on device bond3
[  301.054715][T14032] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2292'.
[  301.066825][T14023] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2292'.
[  301.076977][T14030] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.2292'.
[  301.222384][T14038] FAULT_INJECTION: forcing a failure.
[  301.222384][T14038] name failslab, interval 1, probability 0, space 0, times 0
[  301.239916][T14038] CPU: 0 UID: 0 PID: 14038 Comm: syz.5.2297 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  301.239944][T14038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  301.239955][T14038] Call Trace:
[  301.239962][T14038]  <TASK>
[  301.239970][T14038]  dump_stack_lvl+0x189/0x250
[  301.239993][T14038]  ? __pfx____ratelimit+0x10/0x10
[  301.240017][T14038]  ? __pfx_dump_stack_lvl+0x10/0x10
[  301.240035][T14038]  ? __pfx__printk+0x10/0x10
[  301.240061][T14038]  ? __pfx___might_resched+0x10/0x10
[  301.240084][T14038]  ? fs_reclaim_acquire+0x7d/0x100
[  301.240106][T14038]  should_fail_ex+0x414/0x560
[  301.240137][T14038]  should_failslab+0xa8/0x100
[  301.240155][T14038]  kmem_cache_alloc_noprof+0x73/0x3c0
[  301.240178][T14038]  ? skb_clone+0x212/0x3a0
[  301.240201][T14038]  skb_clone+0x212/0x3a0
[  301.240216][T14038]  ? nfnetlink_rcv+0x486/0x2520
[  301.240240][T14038]  nfnetlink_rcv+0x4b4/0x2520
[  301.240264][T14038]  ? __dev_queue_xmit+0x1d79/0x3b50
[  301.240293][T14038]  ? __dev_queue_xmit+0x27b/0x3b50
[  301.240324][T14038]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  301.240360][T14038]  ? ref_tracker_free+0x63a/0x7d0
[  301.240379][T14038]  ? __asan_memcpy+0x40/0x70
[  301.240398][T14038]  ? __pfx_ref_tracker_free+0x10/0x10
[  301.240432][T14038]  ? skb_clone+0x246/0x3a0
[  301.240454][T14038]  ? __netlink_deliver_tap+0x807/0x850
[  301.240478][T14038]  ? netlink_deliver_tap+0x2e/0x1b0
[  301.240517][T14038]  netlink_unicast+0x82c/0x9e0
[  301.240548][T14038]  ? __pfx_netlink_unicast+0x10/0x10
[  301.240572][T14038]  ? netlink_sendmsg+0x642/0xb30
[  301.240593][T14038]  ? skb_put+0x11b/0x210
[  301.240614][T14038]  netlink_sendmsg+0x805/0xb30
[  301.240647][T14038]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.240675][T14038]  ? aa_sock_msg_perm+0x94/0x160
[  301.240699][T14038]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  301.240717][T14038]  ? __pfx_netlink_sendmsg+0x10/0x10
[  301.240742][T14038]  __sock_sendmsg+0x219/0x270
[  301.240768][T14038]  ____sys_sendmsg+0x505/0x830
[  301.240792][T14038]  ? __pfx_____sys_sendmsg+0x10/0x10
[  301.240819][T14038]  ? import_iovec+0x74/0xa0
[  301.240854][T14038]  ___sys_sendmsg+0x21f/0x2a0
[  301.240875][T14038]  ? __pfx____sys_sendmsg+0x10/0x10
[  301.240931][T14038]  ? __fget_files+0x2a/0x420
[  301.240948][T14038]  ? __fget_files+0x3a0/0x420
[  301.240976][T14038]  __x64_sys_sendmsg+0x19b/0x260
[  301.241004][T14038]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  301.241032][T14038]  ? __pfx_ksys_write+0x10/0x10
[  301.241053][T14038]  ? rcu_is_watching+0x15/0xb0
[  301.241082][T14038]  ? do_syscall_64+0xbe/0x3b0
[  301.241110][T14038]  do_syscall_64+0xfa/0x3b0
[  301.241132][T14038]  ? lockdep_hardirqs_on+0x9c/0x150
[  301.241154][T14038]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.241172][T14038]  ? clear_bhb_loop+0x60/0xb0
[  301.241193][T14038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  301.241210][T14038] RIP: 0033:0x7fb26bd8e9a9
[  301.241227][T14038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  301.241242][T14038] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  301.241262][T14038] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  301.241276][T14038] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  301.241288][T14038] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  301.241299][T14038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  301.241309][T14038] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  301.241339][T14038]  </TASK>
[  301.859840][T14054] bridge4: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[  301.887072][T14054] netlink: 'syz.4.2302': attribute type 13 has an invalid length.
[  301.892689][T14060] netlink: 'syz.4.2302': attribute type 13 has an invalid length.
[  302.135609][T14076] FAULT_INJECTION: forcing a failure.
[  302.135609][T14076] name failslab, interval 1, probability 0, space 0, times 0
[  302.159096][T14076] CPU: 1 UID: 0 PID: 14076 Comm: syz.0.2311 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  302.159124][T14076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  302.159134][T14076] Call Trace:
[  302.159142][T14076]  <TASK>
[  302.159149][T14076]  dump_stack_lvl+0x189/0x250
[  302.159172][T14076]  ? __pfx____ratelimit+0x10/0x10
[  302.159197][T14076]  ? __pfx_dump_stack_lvl+0x10/0x10
[  302.159214][T14076]  ? __pfx__printk+0x10/0x10
[  302.159240][T14076]  ? __pfx___might_resched+0x10/0x10
[  302.159263][T14076]  ? fs_reclaim_acquire+0x7d/0x100
[  302.159286][T14076]  should_fail_ex+0x414/0x560
[  302.159316][T14076]  should_failslab+0xa8/0x100
[  302.159335][T14076]  __kmalloc_cache_noprof+0x70/0x3d0
[  302.159356][T14076]  ? nf_tables_newtable+0x435/0x1890
[  302.159373][T14076]  ? nla_strcmp+0x106/0x140
[  302.159395][T14076]  nf_tables_newtable+0x435/0x1890
[  302.159434][T14076]  nfnetlink_rcv+0x112f/0x2520
[  302.159486][T14076]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  302.159563][T14076]  ? netlink_deliver_tap+0x2e/0x1b0
[  302.159606][T14076]  netlink_unicast+0x82c/0x9e0
[  302.159637][T14076]  ? __pfx_netlink_unicast+0x10/0x10
[  302.159662][T14076]  ? netlink_sendmsg+0x642/0xb30
[  302.159684][T14076]  ? skb_put+0x11b/0x210
[  302.159704][T14076]  netlink_sendmsg+0x805/0xb30
[  302.159735][T14076]  ? __pfx_netlink_sendmsg+0x10/0x10
[  302.159763][T14076]  ? aa_sock_msg_perm+0x94/0x160
[  302.159786][T14076]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  302.159805][T14076]  ? __pfx_netlink_sendmsg+0x10/0x10
[  302.159829][T14076]  __sock_sendmsg+0x219/0x270
[  302.159854][T14076]  ____sys_sendmsg+0x505/0x830
[  302.159878][T14076]  ? __pfx_____sys_sendmsg+0x10/0x10
[  302.159905][T14076]  ? import_iovec+0x74/0xa0
[  302.159932][T14076]  ___sys_sendmsg+0x21f/0x2a0
[  302.159952][T14076]  ? __pfx____sys_sendmsg+0x10/0x10
[  302.160016][T14076]  ? __fget_files+0x2a/0x420
[  302.160034][T14076]  ? __fget_files+0x3a0/0x420
[  302.160063][T14076]  __x64_sys_sendmsg+0x19b/0x260
[  302.160085][T14076]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  302.160114][T14076]  ? __pfx_ksys_write+0x10/0x10
[  302.160133][T14076]  ? rcu_is_watching+0x15/0xb0
[  302.160163][T14076]  ? do_syscall_64+0xbe/0x3b0
[  302.160190][T14076]  do_syscall_64+0xfa/0x3b0
[  302.160212][T14076]  ? lockdep_hardirqs_on+0x9c/0x150
[  302.160234][T14076]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.160250][T14076]  ? clear_bhb_loop+0x60/0xb0
[  302.160272][T14076]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.160288][T14076] RIP: 0033:0x7f86d6d8e9a9
[  302.160304][T14076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.160319][T14076] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  302.160338][T14076] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  302.160351][T14076] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  302.160362][T14076] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  302.160373][T14076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.160382][T14076] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  302.160412][T14076]  </TASK>
[  302.891781][T14106] FAULT_INJECTION: forcing a failure.
[  302.891781][T14106] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.909875][T14106] CPU: 0 UID: 0 PID: 14106 Comm: syz.0.2321 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  302.909903][T14106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  302.909939][T14106] Call Trace:
[  302.909946][T14106]  <TASK>
[  302.909954][T14106]  dump_stack_lvl+0x189/0x250
[  302.909978][T14106]  ? __pfx____ratelimit+0x10/0x10
[  302.910001][T14106]  ? __pfx_dump_stack_lvl+0x10/0x10
[  302.910018][T14106]  ? __pfx__printk+0x10/0x10
[  302.910038][T14106]  ? __might_fault+0xb0/0x130
[  302.910073][T14106]  should_fail_ex+0x414/0x560
[  302.910103][T14106]  _copy_from_user+0x2d/0xb0
[  302.910127][T14106]  do_sock_getsockopt+0x17d/0x450
[  302.910149][T14106]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  302.910165][T14106]  ? do_syscall_64+0x20/0x3b0
[  302.910188][T14106]  ? __fget_files+0x3a0/0x420
[  302.910203][T14106]  ? __fget_files+0x2a/0x420
[  302.910226][T14106]  __x64_sys_getsockopt+0x1a5/0x250
[  302.910242][T14106]  ? do_syscall_64+0x20/0x3b0
[  302.910267][T14106]  ? do_syscall_64+0x20/0x3b0
[  302.910294][T14106]  do_syscall_64+0xfa/0x3b0
[  302.910323][T14106]  ? lockdep_hardirqs_on+0x9c/0x150
[  302.910345][T14106]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.910362][T14106]  ? clear_bhb_loop+0x60/0xb0
[  302.910383][T14106]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.910399][T14106] RIP: 0033:0x7f86d6d8e9a9
[  302.910416][T14106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.910429][T14106] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  302.910450][T14106] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  302.910463][T14106] RDX: 0000000000000009 RSI: 0000000000000107 RDI: 0000000000000003
[  302.910474][T14106] RBP: 00007f86d7c02090 R08: 0000200000000640 R09: 0000000000000000
[  302.910485][T14106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  302.910496][T14106] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  302.910526][T14106]  </TASK>
[  302.919425][T14108] IPVS: set_ctl: invalid protocol: 47 224.0.0.2:20000
[  303.003587][T14110] FAULT_INJECTION: forcing a failure.
[  303.003587][T14110] name failslab, interval 1, probability 0, space 0, times 0
[  303.011939][T14110] CPU: 0 UID: 0 PID: 14110 Comm: syz.0.2323 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  303.011963][T14110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  303.011973][T14110] Call Trace:
[  303.011981][T14110]  <TASK>
[  303.011989][T14110]  dump_stack_lvl+0x189/0x250
[  303.012013][T14110]  ? __pfx____ratelimit+0x10/0x10
[  303.012037][T14110]  ? __pfx_dump_stack_lvl+0x10/0x10
[  303.012055][T14110]  ? __pfx__printk+0x10/0x10
[  303.012082][T14110]  ? __pfx___might_resched+0x10/0x10
[  303.012105][T14110]  ? fs_reclaim_acquire+0x7d/0x100
[  303.012130][T14110]  should_fail_ex+0x414/0x560
[  303.012161][T14110]  should_failslab+0xa8/0x100
[  303.012180][T14110]  __kmalloc_cache_noprof+0x70/0x3d0
[  303.012203][T14110]  ? genl_start+0x1c9/0x6c0
[  303.012227][T14110]  genl_start+0x1c9/0x6c0
[  303.012245][T14110]  ? netlink_lookup+0x30/0x200
[  303.012273][T14110]  __netlink_dump_start+0x469/0x7e0
[  303.012306][T14110]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[  303.012330][T14110]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  303.012349][T14110]  ? genl_get_cmd+0x7d9/0x910
[  303.012368][T14110]  ? __pfx___mutex_lock+0x10/0x10
[  303.012393][T14110]  ? __pfx_genl_start+0x10/0x10
[  303.012409][T14110]  ? __pfx_genl_dumpit+0x10/0x10
[  303.012425][T14110]  ? __pfx_genl_done+0x10/0x10
[  303.012450][T14110]  ? stack_trace_save+0x9c/0xe0
[  303.012475][T14110]  genl_rcv_msg+0x5da/0x790
[  303.012501][T14110]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.012520][T14110]  ? __pfx_tipc_nl_net_dump+0x10/0x10
[  303.012556][T14110]  netlink_rcv_skb+0x205/0x470
[  303.012577][T14110]  ? __lock_acquire+0xab9/0xd20
[  303.012599][T14110]  ? __pfx_genl_rcv_msg+0x10/0x10
[  303.012620][T14110]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  303.012687][T14110]  ? down_read+0x1ad/0x2e0
[  303.012706][T14110]  genl_rcv+0x28/0x40
[  303.012723][T14110]  netlink_unicast+0x82c/0x9e0
[  303.012758][T14110]  ? __pfx_netlink_unicast+0x10/0x10
[  303.012782][T14110]  ? netlink_sendmsg+0x642/0xb30
[  303.012802][T14110]  ? skb_put+0x11b/0x210
[  303.012823][T14110]  netlink_sendmsg+0x805/0xb30
[  303.012857][T14110]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.012884][T14110]  ? aa_sock_msg_perm+0x94/0x160
[  303.012908][T14110]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  303.012927][T14110]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.012952][T14110]  __sock_sendmsg+0x219/0x270
[  303.012977][T14110]  ____sys_sendmsg+0x505/0x830
[  303.013001][T14110]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.013029][T14110]  ? import_iovec+0x74/0xa0
[  303.013057][T14110]  ___sys_sendmsg+0x21f/0x2a0
[  303.013077][T14110]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.013135][T14110]  ? __fget_files+0x2a/0x420
[  303.013152][T14110]  ? __fget_files+0x3a0/0x420
[  303.013179][T14110]  __x64_sys_sendmsg+0x19b/0x260
[  303.013201][T14110]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  303.013229][T14110]  ? __pfx_ksys_write+0x10/0x10
[  303.013250][T14110]  ? rcu_is_watching+0x15/0xb0
[  303.013279][T14110]  ? do_syscall_64+0xbe/0x3b0
[  303.013307][T14110]  do_syscall_64+0xfa/0x3b0
[  303.013328][T14110]  ? lockdep_hardirqs_on+0x9c/0x150
[  303.013350][T14110]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.013366][T14110]  ? clear_bhb_loop+0x60/0xb0
[  303.013387][T14110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.013404][T14110] RIP: 0033:0x7f86d6d8e9a9
[  303.013420][T14110] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.013434][T14110] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  303.013454][T14110] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  303.013467][T14110] RDX: 00000000000040c0 RSI: 0000200000001480 RDI: 0000000000000004
[  303.013478][T14110] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  303.013489][T14110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.013499][T14110] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  303.013529][T14110]  </TASK>
[  303.123420][T14112] macsec1: entered promiscuous mode
[  303.185565][T14115] FAULT_INJECTION: forcing a failure.
[  303.185565][T14115] name failslab, interval 1, probability 0, space 0, times 0
[  303.192541][T14112] macsec1: entered allmulticast mode
[  303.202488][T14115] CPU: 1 UID: 0 PID: 14115 Comm: syz.2.2325 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  303.202514][T14115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  303.202525][T14115] Call Trace:
[  303.202532][T14115]  <TASK>
[  303.202540][T14115]  dump_stack_lvl+0x189/0x250
[  303.202563][T14115]  ? __pfx____ratelimit+0x10/0x10
[  303.202587][T14115]  ? __pfx_dump_stack_lvl+0x10/0x10
[  303.202605][T14115]  ? __pfx__printk+0x10/0x10
[  303.202631][T14115]  ? __pfx___might_resched+0x10/0x10
[  303.202656][T14115]  ? fs_reclaim_acquire+0x7d/0x100
[  303.202680][T14115]  should_fail_ex+0x414/0x560
[  303.202711][T14115]  should_failslab+0xa8/0x100
[  303.202730][T14115]  __kmalloc_cache_noprof+0x70/0x3d0
[  303.202753][T14115]  ? nf_tables_newtable+0x435/0x1890
[  303.202769][T14115]  ? nla_strcmp+0x106/0x140
[  303.202792][T14115]  nf_tables_newtable+0x435/0x1890
[  303.202831][T14115]  nfnetlink_rcv+0x112f/0x2520
[  303.202893][T14115]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  303.202932][T14115]  ? ref_tracker_free+0x63a/0x7d0
[  303.202981][T14115]  ? __netlink_deliver_tap+0x807/0x850
[  303.203004][T14115]  ? netlink_deliver_tap+0x2e/0x1b0
[  303.203046][T14115]  netlink_unicast+0x82c/0x9e0
[  303.203078][T14115]  ? __pfx_netlink_unicast+0x10/0x10
[  303.203102][T14115]  ? netlink_sendmsg+0x642/0xb30
[  303.203122][T14115]  ? skb_put+0x11b/0x210
[  303.203146][T14115]  netlink_sendmsg+0x805/0xb30
[  303.203179][T14115]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.203206][T14115]  ? aa_sock_msg_perm+0x94/0x160
[  303.203229][T14115]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  303.203248][T14115]  ? __pfx_netlink_sendmsg+0x10/0x10
[  303.203273][T14115]  __sock_sendmsg+0x219/0x270
[  303.203299][T14115]  ____sys_sendmsg+0x505/0x830
[  303.203322][T14115]  ? __pfx_____sys_sendmsg+0x10/0x10
[  303.203351][T14115]  ? import_iovec+0x74/0xa0
[  303.203377][T14115]  ___sys_sendmsg+0x21f/0x2a0
[  303.203402][T14115]  ? __pfx____sys_sendmsg+0x10/0x10
[  303.203458][T14115]  ? __fget_files+0x2a/0x420
[  303.203474][T14115]  ? __fget_files+0x3a0/0x420
[  303.203502][T14115]  __x64_sys_sendmsg+0x19b/0x260
[  303.203522][T14115]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  303.203550][T14115]  ? __pfx_ksys_write+0x10/0x10
[  303.203571][T14115]  ? rcu_is_watching+0x15/0xb0
[  303.203601][T14115]  ? do_syscall_64+0xbe/0x3b0
[  303.203628][T14115]  do_syscall_64+0xfa/0x3b0
[  303.203650][T14115]  ? lockdep_hardirqs_on+0x9c/0x150
[  303.203672][T14115]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.203688][T14115]  ? clear_bhb_loop+0x60/0xb0
[  303.203709][T14115]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  303.203725][T14115] RIP: 0033:0x7efc4e38e9a9
[  303.203741][T14115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  303.203756][T14115] RSP: 002b:00007efc4f18e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  303.203776][T14115] RAX: ffffffffffffffda RBX: 00007efc4e5b5fa0 RCX: 00007efc4e38e9a9
[  303.203788][T14115] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  303.203799][T14115] RBP: 00007efc4f18e090 R08: 0000000000000000 R09: 0000000000000000
[  303.203809][T14115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  303.203820][T14115] R13: 0000000000000000 R14: 00007efc4e5b5fa0 R15: 00007ffdbe4fffd8
[  303.203849][T14115]  </TASK>
[  303.893465][T14112] ip6gretap0: entered allmulticast mode
[  304.093405][T14130] IPVS: set_ctl: invalid protocol: 255 224.0.0.1:20004
[  304.217181][T14137] FAULT_INJECTION: forcing a failure.
[  304.217181][T14137] name failslab, interval 1, probability 0, space 0, times 0
[  304.238441][T14137] CPU: 0 UID: 0 PID: 14137 Comm: syz.4.2334 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  304.238471][T14137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  304.238482][T14137] Call Trace:
[  304.238489][T14137]  <TASK>
[  304.238497][T14137]  dump_stack_lvl+0x189/0x250
[  304.238521][T14137]  ? __pfx____ratelimit+0x10/0x10
[  304.238552][T14137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.238570][T14137]  ? __pfx__printk+0x10/0x10
[  304.238597][T14137]  ? __pfx___might_resched+0x10/0x10
[  304.238627][T14137]  should_fail_ex+0x414/0x560
[  304.238660][T14137]  should_failslab+0xa8/0x100
[  304.238679][T14137]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  304.238705][T14137]  ? __alloc_skb+0x112/0x2d0
[  304.238734][T14137]  __alloc_skb+0x112/0x2d0
[  304.238763][T14137]  netlink_dump+0x1b7/0xe90
[  304.238799][T14137]  ? __pfx_netlink_dump+0x10/0x10
[  304.238822][T14137]  ? genl_start+0x1c9/0x6c0
[  304.238858][T14137]  ? genl_start+0x499/0x6c0
[  304.238887][T14137]  __netlink_dump_start+0x5cb/0x7e0
[  304.238921][T14137]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[  304.238946][T14137]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[  304.238964][T14137]  ? genl_get_cmd+0x7d9/0x910
[  304.238984][T14137]  ? __pfx___mutex_lock+0x10/0x10
[  304.239009][T14137]  ? __pfx_genl_start+0x10/0x10
[  304.239025][T14137]  ? __pfx_genl_dumpit+0x10/0x10
[  304.239042][T14137]  ? __pfx_genl_done+0x10/0x10
[  304.239068][T14137]  ? stack_trace_save+0x9c/0xe0
[  304.239094][T14137]  genl_rcv_msg+0x5da/0x790
[  304.239121][T14137]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.239140][T14137]  ? __pfx_tipc_nl_net_dump+0x10/0x10
[  304.239178][T14137]  netlink_rcv_skb+0x205/0x470
[  304.239199][T14137]  ? __lock_acquire+0xab9/0xd20
[  304.239223][T14137]  ? __pfx_genl_rcv_msg+0x10/0x10
[  304.239244][T14137]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  304.239291][T14137]  ? down_read+0x1ad/0x2e0
[  304.239310][T14137]  genl_rcv+0x28/0x40
[  304.239327][T14137]  netlink_unicast+0x82c/0x9e0
[  304.239360][T14137]  ? __pfx_netlink_unicast+0x10/0x10
[  304.239385][T14137]  ? netlink_sendmsg+0x642/0xb30
[  304.239407][T14137]  ? skb_put+0x11b/0x210
[  304.239428][T14137]  netlink_sendmsg+0x805/0xb30
[  304.239464][T14137]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.239492][T14137]  ? aa_sock_msg_perm+0x94/0x160
[  304.239517][T14137]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  304.239535][T14137]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.239567][T14137]  __sock_sendmsg+0x219/0x270
[  304.239593][T14137]  ____sys_sendmsg+0x505/0x830
[  304.239619][T14137]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.239647][T14137]  ? import_iovec+0x74/0xa0
[  304.239675][T14137]  ___sys_sendmsg+0x21f/0x2a0
[  304.239696][T14137]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.239758][T14137]  ? __fget_files+0x2a/0x420
[  304.239774][T14137]  ? __fget_files+0x3a0/0x420
[  304.239802][T14137]  __x64_sys_sendmsg+0x19b/0x260
[  304.239824][T14137]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  304.239854][T14137]  ? __pfx_ksys_write+0x10/0x10
[  304.239875][T14137]  ? rcu_is_watching+0x15/0xb0
[  304.239906][T14137]  ? do_syscall_64+0xbe/0x3b0
[  304.239934][T14137]  do_syscall_64+0xfa/0x3b0
[  304.239956][T14137]  ? lockdep_hardirqs_on+0x9c/0x150
[  304.239979][T14137]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.239996][T14137]  ? clear_bhb_loop+0x60/0xb0
[  304.240018][T14137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.240035][T14137] RIP: 0033:0x7f9b0918e9a9
[  304.240051][T14137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.240066][T14137] RSP: 002b:00007f9b0a0b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.240088][T14137] RAX: ffffffffffffffda RBX: 00007f9b093b5fa0 RCX: 00007f9b0918e9a9
[  304.240101][T14137] RDX: 00000000000040c0 RSI: 0000200000001480 RDI: 0000000000000004
[  304.240113][T14137] RBP: 00007f9b0a0b9090 R08: 0000000000000000 R09: 0000000000000000
[  304.240125][T14137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.240135][T14137] R13: 0000000000000000 R14: 00007f9b093b5fa0 R15: 00007ffca1ced958
[  304.240167][T14137]  </TASK>
[  304.697390][T14145] FAULT_INJECTION: forcing a failure.
[  304.697390][T14145] name failslab, interval 1, probability 0, space 0, times 0
[  304.743361][T14145] CPU: 0 UID: 0 PID: 14145 Comm: syz.0.2337 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  304.743388][T14145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  304.743399][T14145] Call Trace:
[  304.743407][T14145]  <TASK>
[  304.743414][T14145]  dump_stack_lvl+0x189/0x250
[  304.743438][T14145]  ? __pfx____ratelimit+0x10/0x10
[  304.743462][T14145]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.743490][T14145]  ? __pfx__printk+0x10/0x10
[  304.743517][T14145]  ? __pfx___might_resched+0x10/0x10
[  304.743540][T14145]  ? fs_reclaim_acquire+0x7d/0x100
[  304.743564][T14145]  should_fail_ex+0x414/0x560
[  304.743593][T14145]  ? rhashtable_init_noprof+0x4ee/0xbb0
[  304.743613][T14145]  should_failslab+0xa8/0x100
[  304.743632][T14145]  __kvmalloc_node_noprof+0x161/0x5f0
[  304.743656][T14145]  ? rhashtable_init_noprof+0x4ee/0xbb0
[  304.743685][T14145]  rhashtable_init_noprof+0x4ee/0xbb0
[  304.743712][T14145]  rhltable_init_noprof+0x1e/0x60
[  304.743732][T14145]  nf_tables_newtable+0x68f/0x1890
[  304.743772][T14145]  nfnetlink_rcv+0x112f/0x2520
[  304.743827][T14145]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  304.743903][T14145]  ? netlink_deliver_tap+0x2e/0x1b0
[  304.743947][T14145]  netlink_unicast+0x82c/0x9e0
[  304.743978][T14145]  ? __pfx_netlink_unicast+0x10/0x10
[  304.744001][T14145]  ? netlink_sendmsg+0x642/0xb30
[  304.744022][T14145]  ? skb_put+0x11b/0x210
[  304.744043][T14145]  netlink_sendmsg+0x805/0xb30
[  304.744076][T14145]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.744104][T14145]  ? aa_sock_msg_perm+0x94/0x160
[  304.744128][T14145]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  304.744147][T14145]  ? __pfx_netlink_sendmsg+0x10/0x10
[  304.744171][T14145]  __sock_sendmsg+0x219/0x270
[  304.744197][T14145]  ____sys_sendmsg+0x505/0x830
[  304.744222][T14145]  ? __pfx_____sys_sendmsg+0x10/0x10
[  304.744251][T14145]  ? import_iovec+0x74/0xa0
[  304.744277][T14145]  ___sys_sendmsg+0x21f/0x2a0
[  304.744299][T14145]  ? __pfx____sys_sendmsg+0x10/0x10
[  304.744357][T14145]  ? __fget_files+0x2a/0x420
[  304.744374][T14145]  ? __fget_files+0x3a0/0x420
[  304.744402][T14145]  __x64_sys_sendmsg+0x19b/0x260
[  304.744424][T14145]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  304.744454][T14145]  ? __pfx_ksys_write+0x10/0x10
[  304.744482][T14145]  ? rcu_is_watching+0x15/0xb0
[  304.744512][T14145]  ? do_syscall_64+0xbe/0x3b0
[  304.744540][T14145]  do_syscall_64+0xfa/0x3b0
[  304.744562][T14145]  ? lockdep_hardirqs_on+0x9c/0x150
[  304.744583][T14145]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.744601][T14145]  ? clear_bhb_loop+0x60/0xb0
[  304.744622][T14145]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.744638][T14145] RIP: 0033:0x7f86d6d8e9a9
[  304.744655][T14145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.744670][T14145] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  304.744690][T14145] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  304.744703][T14145] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  304.744714][T14145] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  304.744725][T14145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.744736][T14145] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  304.744767][T14145]  </TASK>
[  305.119141][T14151] bridge0: entered promiscuous mode
[  305.125997][T14151] ip6gretap0: entered promiscuous mode
[  305.132509][T14151] debugfs: 'hsr1' already exists in 'hsr'
[  305.138316][T14151] Cannot create hsr debugfs directory
[  305.160066][T14151] hsr1: Slave A (bridge0) is not up; please bring it up to get a fully working HSR network
[  305.191273][T14151] hsr1: Slave B (ip6gretap0) is not up; please bring it up to get a fully working HSR network
[  305.525211][T14169] __nla_validate_parse: 10 callbacks suppressed
[  305.525228][T14169] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2345'.
[  306.335329][T14199] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2350'.
[  306.391793][T14199] netlink: 108 bytes leftover after parsing attributes in process `syz.5.2350'.
[  306.435227][T14202] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2352'.
[  306.906414][T14231] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2360'.
[  306.928249][T14231] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2360'.
[  306.953800][T14231] netlink: 'syz.3.2360': attribute type 6 has an invalid length.
[  307.276978][T14245] netlink: 248 bytes leftover after parsing attributes in process `syz.2.2363'.
[  307.473841][T14245] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2363'.
[  307.794848][T14245] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  307.955353][ T8369] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0x9
[  308.362637][T14281] FAULT_INJECTION: forcing a failure.
[  308.362637][T14281] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.381595][T14281] CPU: 1 UID: 0 PID: 14281 Comm: syz.3.2371 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  308.381620][T14281] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  308.381631][T14281] Call Trace:
[  308.381638][T14281]  <TASK>
[  308.381646][T14281]  dump_stack_lvl+0x189/0x250
[  308.381671][T14281]  ? __pfx____ratelimit+0x10/0x10
[  308.381693][T14281]  ? __pfx_dump_stack_lvl+0x10/0x10
[  308.381711][T14281]  ? __pfx__printk+0x10/0x10
[  308.381745][T14281]  should_fail_ex+0x414/0x560
[  308.381777][T14281]  _copy_to_user+0x31/0xb0
[  308.381803][T14281]  simple_read_from_buffer+0xe1/0x170
[  308.381833][T14281]  proc_fail_nth_read+0x1b3/0x220
[  308.381857][T14281]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  308.381881][T14281]  ? rw_verify_area+0x258/0x650
[  308.381904][T14281]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  308.381925][T14281]  vfs_read+0x1fd/0x980
[  308.381947][T14281]  ? fdget_pos+0x247/0x320
[  308.381969][T14281]  ? __pfx___mutex_lock+0x10/0x10
[  308.381994][T14281]  ? __pfx_vfs_read+0x10/0x10
[  308.382018][T14281]  ? __fget_files+0x2a/0x420
[  308.382039][T14281]  ? __fget_files+0x3a0/0x420
[  308.382055][T14281]  ? __fget_files+0x2a/0x420
[  308.382082][T14281]  ksys_read+0x145/0x250
[  308.382109][T14281]  ? __pfx_ksys_read+0x10/0x10
[  308.382138][T14281]  ? do_syscall_64+0xbe/0x3b0
[  308.382165][T14281]  do_syscall_64+0xfa/0x3b0
[  308.382187][T14281]  ? lockdep_hardirqs_on+0x9c/0x150
[  308.382210][T14281]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.382227][T14281]  ? clear_bhb_loop+0x60/0xb0
[  308.382248][T14281]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.382265][T14281] RIP: 0033:0x7fd44b98d3bc
[  308.382281][T14281] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  308.382296][T14281] RSP: 002b:00007fd44c8b2030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  308.382318][T14281] RAX: ffffffffffffffda RBX: 00007fd44bbb6080 RCX: 00007fd44b98d3bc
[  308.382338][T14281] RDX: 000000000000000f RSI: 00007fd44c8b20a0 RDI: 0000000000000006
[  308.382350][T14281] RBP: 00007fd44c8b2090 R08: 0000000000000000 R09: 0000000000000000
[  308.382361][T14281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.382371][T14281] R13: 0000000000000001 R14: 00007fd44bbb6080 R15: 00007ffe03e65e58
[  308.382401][T14281]  </TASK>
[  308.644578][T14259] netlink: 'syz.4.2364': attribute type 11 has an invalid length.
[  308.662168][T14259] netlink: 'syz.4.2364': attribute type 11 has an invalid length.
[  308.671979][T14259] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2364'.
[  308.761875][T14294] sit0: entered promiscuous mode
[  308.773570][T14294] netlink: 'syz.3.2375': attribute type 1 has an invalid length.
[  308.784675][T14294] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2375'.
[  308.922905][T14301] netlink: 'syz.2.2377': attribute type 1 has an invalid length.
[  308.953292][T14304] netlink: 'syz.2.2377': attribute type 1 has an invalid length.
[  309.076842][T14307] gretap0: entered promiscuous mode
[  309.084963][T14307] gretap0: left promiscuous mode
[  309.340202][T14319] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  309.649961][T14343] FAULT_INJECTION: forcing a failure.
[  309.649961][T14343] name failslab, interval 1, probability 0, space 0, times 0
[  309.677728][T14343] CPU: 0 UID: 0 PID: 14343 Comm: syz.4.2389 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  309.677756][T14343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  309.677766][T14343] Call Trace:
[  309.677773][T14343]  <TASK>
[  309.677779][T14343]  dump_stack_lvl+0x189/0x250
[  309.677799][T14343]  ? __pfx____ratelimit+0x10/0x10
[  309.677823][T14343]  ? __pfx_dump_stack_lvl+0x10/0x10
[  309.677842][T14343]  ? __pfx__printk+0x10/0x10
[  309.677870][T14343]  ? __pfx___might_resched+0x10/0x10
[  309.677891][T14343]  ? fs_reclaim_acquire+0x7d/0x100
[  309.677915][T14343]  should_fail_ex+0x414/0x560
[  309.677947][T14343]  should_failslab+0xa8/0x100
[  309.677965][T14343]  __kmalloc_cache_noprof+0x70/0x3d0
[  309.677989][T14343]  ? nfnetlink_rcv+0xeff/0x2520
[  309.678012][T14343]  nfnetlink_rcv+0xeff/0x2520
[  309.678065][T14343]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  309.678134][T14343]  ? netlink_deliver_tap+0x2e/0x1b0
[  309.678174][T14343]  netlink_unicast+0x82c/0x9e0
[  309.678210][T14343]  ? __pfx_netlink_unicast+0x10/0x10
[  309.678234][T14343]  ? netlink_sendmsg+0x642/0xb30
[  309.678256][T14343]  ? skb_put+0x11b/0x210
[  309.678276][T14343]  netlink_sendmsg+0x805/0xb30
[  309.678309][T14343]  ? __pfx_netlink_sendmsg+0x10/0x10
[  309.678337][T14343]  ? aa_sock_msg_perm+0x94/0x160
[  309.678361][T14343]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  309.678380][T14343]  ? __pfx_netlink_sendmsg+0x10/0x10
[  309.678405][T14343]  __sock_sendmsg+0x219/0x270
[  309.678430][T14343]  ____sys_sendmsg+0x505/0x830
[  309.678453][T14343]  ? __pfx_____sys_sendmsg+0x10/0x10
[  309.678481][T14343]  ? import_iovec+0x74/0xa0
[  309.678507][T14343]  ___sys_sendmsg+0x21f/0x2a0
[  309.678534][T14343]  ? __pfx____sys_sendmsg+0x10/0x10
[  309.678593][T14343]  ? __fget_files+0x2a/0x420
[  309.678609][T14343]  ? __fget_files+0x3a0/0x420
[  309.678636][T14343]  __x64_sys_sendmsg+0x19b/0x260
[  309.678658][T14343]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  309.678691][T14343]  ? __pfx_ksys_write+0x10/0x10
[  309.678711][T14343]  ? rcu_is_watching+0x15/0xb0
[  309.678742][T14343]  ? do_syscall_64+0xbe/0x3b0
[  309.678769][T14343]  do_syscall_64+0xfa/0x3b0
[  309.678791][T14343]  ? lockdep_hardirqs_on+0x9c/0x150
[  309.678813][T14343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.678827][T14343]  ? clear_bhb_loop+0x60/0xb0
[  309.678847][T14343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.678863][T14343] RIP: 0033:0x7f9b0918e9a9
[  309.678880][T14343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.678894][T14343] RSP: 002b:00007f9b0a0b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  309.678914][T14343] RAX: ffffffffffffffda RBX: 00007f9b093b5fa0 RCX: 00007f9b0918e9a9
[  309.678927][T14343] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  309.678939][T14343] RBP: 00007f9b0a0b9090 R08: 0000000000000000 R09: 0000000000000000
[  309.678950][T14343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  309.678961][T14343] R13: 0000000000000000 R14: 00007f9b093b5fa0 R15: 00007ffca1ced958
[  309.678992][T14343]  </TASK>
[  310.481799][T14359] netlink: 'syz.0.2394': attribute type 6 has an invalid length.
[  310.725344][T14383] FAULT_INJECTION: forcing a failure.
[  310.725344][T14383] name failslab, interval 1, probability 0, space 0, times 0
[  310.779149][T14383] CPU: 1 UID: 0 PID: 14383 Comm: syz.5.2401 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  310.779177][T14383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  310.779188][T14383] Call Trace:
[  310.779195][T14383]  <TASK>
[  310.779204][T14383]  dump_stack_lvl+0x189/0x250
[  310.779226][T14383]  ? __pfx____ratelimit+0x10/0x10
[  310.779250][T14383]  ? __pfx_dump_stack_lvl+0x10/0x10
[  310.779269][T14383]  ? __pfx__printk+0x10/0x10
[  310.779297][T14383]  ? __pfx___might_resched+0x10/0x10
[  310.779322][T14383]  ? fs_reclaim_acquire+0x7d/0x100
[  310.779346][T14383]  should_fail_ex+0x414/0x560
[  310.779378][T14383]  should_failslab+0xa8/0x100
[  310.779397][T14383]  __kmalloc_cache_noprof+0x70/0x3d0
[  310.779421][T14383]  ? nfnetlink_rcv+0xeff/0x2520
[  310.779447][T14383]  nfnetlink_rcv+0xeff/0x2520
[  310.779502][T14383]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  310.779541][T14383]  ? ref_tracker_free+0x63a/0x7d0
[  310.779590][T14383]  ? __netlink_deliver_tap+0x807/0x850
[  310.779614][T14383]  ? netlink_deliver_tap+0x2e/0x1b0
[  310.779657][T14383]  netlink_unicast+0x82c/0x9e0
[  310.779690][T14383]  ? __pfx_netlink_unicast+0x10/0x10
[  310.779714][T14383]  ? netlink_sendmsg+0x642/0xb30
[  310.779736][T14383]  ? skb_put+0x11b/0x210
[  310.779758][T14383]  netlink_sendmsg+0x805/0xb30
[  310.779792][T14383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.779834][T14383]  ? aa_sock_msg_perm+0x94/0x160
[  310.779859][T14383]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  310.779878][T14383]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.779903][T14383]  __sock_sendmsg+0x219/0x270
[  310.779930][T14383]  ____sys_sendmsg+0x505/0x830
[  310.779955][T14383]  ? __pfx_____sys_sendmsg+0x10/0x10
[  310.779984][T14383]  ? import_iovec+0x74/0xa0
[  310.780011][T14383]  ___sys_sendmsg+0x21f/0x2a0
[  310.780033][T14383]  ? __pfx____sys_sendmsg+0x10/0x10
[  310.780090][T14383]  ? __fget_files+0x2a/0x420
[  310.780106][T14383]  ? __fget_files+0x3a0/0x420
[  310.780134][T14383]  __x64_sys_sendmsg+0x19b/0x260
[  310.780157][T14383]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  310.780187][T14383]  ? __pfx_ksys_write+0x10/0x10
[  310.780207][T14383]  ? rcu_is_watching+0x15/0xb0
[  310.780238][T14383]  ? do_syscall_64+0xbe/0x3b0
[  310.780267][T14383]  do_syscall_64+0xfa/0x3b0
[  310.780290][T14383]  ? lockdep_hardirqs_on+0x9c/0x150
[  310.780312][T14383]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.780329][T14383]  ? clear_bhb_loop+0x60/0xb0
[  310.780351][T14383]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.780368][T14383] RIP: 0033:0x7fb26bd8e9a9
[  310.780384][T14383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.780399][T14383] RSP: 002b:00007fb26cb53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.780419][T14383] RAX: ffffffffffffffda RBX: 00007fb26bfb5fa0 RCX: 00007fb26bd8e9a9
[  310.780432][T14383] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  310.780444][T14383] RBP: 00007fb26cb53090 R08: 0000000000000000 R09: 0000000000000000
[  310.780455][T14383] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  310.780466][T14383] R13: 0000000000000000 R14: 00007fb26bfb5fa0 R15: 00007ffd14a31a38
[  310.780497][T14383]  </TASK>
[  312.028537][T14425] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  312.052530][T14425] syzkaller0: entered promiscuous mode
[  312.052670][T14428] __nla_validate_parse: 15 callbacks suppressed
[  312.052683][T14428] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2416'.
[  312.061680][T14425] syzkaller0: entered allmulticast mode
[  312.102328][T14434] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  312.110260][T14428] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2416'.
[  312.167732][T14425] tipc: Resetting bearer <eth:syzkaller0>
[  312.214743][T14429] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  312.237951][T14424] tipc: Resetting bearer <eth:syzkaller0>
[  312.270607][T14424] tipc: Disabling bearer <eth:syzkaller0>
[  312.397930][T14445] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode
[  312.977626][T14486] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  313.121703][T14485] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  313.567876][T14505] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2434'.
[  313.580737][T14504] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2435'.
[  313.648619][T14509] netlink: 'syz.4.2434': attribute type 4 has an invalid length.
[  313.668346][T14509] netlink: 25 bytes leftover after parsing attributes in process `syz.4.2434'.
[  313.909346][T14524] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2442'.
[  313.952681][T14527] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2442'.
[  313.962578][T14524] netlink: 'syz.0.2442': attribute type 8 has an invalid length.
[  314.037061][T14530] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2445'.
[  314.089836][T14532] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2445'.
[  314.295411][T14540] netlink: 228 bytes leftover after parsing attributes in process `syz.2.2448'.
[  314.406521][ T8369] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0x4
[  314.619904][T14561] syzkaller0: entered promiscuous mode
[  314.625707][T14561] syzkaller0: entered allmulticast mode
[  314.658231][T14561] sctp: [Deprecated]: syz.5.2451 (pid 14561) Use of int in maxseg socket option.
[  314.658231][T14561] Use struct sctp_assoc_value instead
[  315.271475][T14575] IPVS: set_ctl: invalid protocol: 122 172.30.0.3:20002
[  315.279605][T14576] !
: renamed from dummy0
[  315.403434][T14583] netlink: 'syz.5.2458': attribute type 13 has an invalid length.
[  315.422275][T14584] netlink: 'syz.5.2458': attribute type 13 has an invalid length.
[  315.482395][T14583] netlink: 'syz.5.2458': attribute type 11 has an invalid length.
[  315.493942][T14584] netlink: 'syz.5.2458': attribute type 11 has an invalid length.
[  315.858906][T14610] mac80211_hwsim hwsim2 ªªªªª": renamed from wlan0 (while UP)
[  317.027223][T14669] macsec2: entered promiscuous mode
[  317.034301][T14669] team0: entered promiscuous mode
[  317.072592][ T1301] aoe: packet could not be sent on bond0.  consider increasing tx_queue_len
[  317.084886][T14671] __nla_validate_parse: 11 callbacks suppressed
[  317.084904][T14671] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2476'.
[  317.373173][T14696] bridge0: entered allmulticast mode
[  317.409751][T14696] pim6reg: entered allmulticast mode
[  317.716751][T14702] smc: net device veth0_macvtap applied user defined pnetid SYZ2
[  317.888937][T14727] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2490'.
[  318.140449][T14738] openvswitch: netlink: Geneve option length err (len 256, max 255).
[  318.524986][T14763] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2504'.
[  318.527899][T14766] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2505'.
[  319.234246][T14798] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2514'.
[  319.317955][T14805] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2516'.
[  319.356729][T14805] netlink: 'syz.3.2516': attribute type 32 has an invalid length.
[  319.386463][T14805] bond0: option coupled_control: mode dependency failed, not supported in mode balance-rr(0)
[  319.619012][T14814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2519'.
[  319.842573][T14824] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2521'.
[  319.872351][T14824] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2521'.
[  319.875865][T14828] netlink: 'syz.5.2520': attribute type 9 has an invalid length.
[  319.896516][T14824] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  319.936599][T14828] netlink: 'syz.5.2520': attribute type 6 has an invalid length.
[  320.032589][T14837] netlink: 'syz.2.2525': attribute type 1 has an invalid length.
[  320.041467][T14837] netlink: 144 bytes leftover after parsing attributes in process `syz.2.2525'.
[  320.051899][T14837] netlink: 'syz.2.2525': attribute type 2 has an invalid length.
[  320.062267][T14837] batadv_slave_0: entered promiscuous mode
[  320.298495][T14837] batadv_slave_0 (unregistering): left promiscuous mode
[  320.745225][T14859] ÿ: renamed from bond_slave_0
[  320.918214][T14868] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  321.769360][T14910] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.784951][T14910] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  321.920866][T14913] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  321.952985][T14914] dvmrp1: entered allmulticast mode
[  322.111189][T14912] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  322.228884][T14922] __nla_validate_parse: 8 callbacks suppressed
[  322.228901][T14922] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2546'.
[  322.295781][T14922] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2546'.
[  322.345244][T14922] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2546'.
[  322.442436][T14924] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2546'.
[  322.644461][T14939] openvswitch: netlink: IP tunnel dst address not specified
[  323.042783][T14962] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2555'.
[  323.167380][T14969] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2556'.
[  323.212782][T14971] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  323.329702][T14970] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  323.749705][T14990] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2564'.
[  323.826102][T14990] batman_adv: batadv0: Removing interface: batadv_slave_0
[  324.348219][T15020] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2571'.
[  324.385191][T15020] openvswitch: netlink: Missing key (keys=40, expected=80)
[  324.412466][T15018] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  324.459280][T15015] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20003
[  324.706082][T15029] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2572'.
[  324.722730][T15029] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2572'.
[  324.887595][T15036] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  324.903189][T15036] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  324.968477][T15036] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  324.978865][T15036] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  325.037861][T15036] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.050466][T15036] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  325.115578][T15036] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  325.129512][T15036] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  325.242323][ T1335] netdevsim netdevsim2 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  325.258389][ T1335] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.281130][   T59] netdevsim netdevsim2 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  325.289924][   T59] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.326684][   T59] netdevsim netdevsim2 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  325.357530][   T59] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.367714][   T59] netdevsim netdevsim2 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  325.379111][   T59] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.859377][T15072] syzkaller0: entered promiscuous mode
[  325.871490][T15072] syzkaller0: entered allmulticast mode
[  326.424076][ T5845] Bluetooth: hci0: command tx timeout
[  327.801542][T15157] bridge4: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  327.922149][T15160] __nla_validate_parse: 5 callbacks suppressed
[  327.922167][T15160] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2613'.
[  328.042712][T15169] syzkaller0: entered promiscuous mode
[  328.051328][T15169] syzkaller0: entered allmulticast mode
[  328.416347][T15181] netdevsim netdevsim5: Direct firmware load for 2Q failed with error -2
[  328.426043][T15181] netdevsim netdevsim5: Falling back to sysfs fallback for: 2Q
[  328.457969][T15185] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2620'.
[  328.511627][T15185] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2620'.
[  328.795272][T15195] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2624'.
[  328.804619][T15195] netlink: 'syz.4.2624': attribute type 7 has an invalid length.
[  328.812527][T15195] netlink: 'syz.4.2624': attribute type 8 has an invalid length.
[  328.830882][T15195] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2624'.
[  329.126588][T15210] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2627'.
[  329.153420][T15210] vlan0: entered allmulticast mode
[  329.158932][T15210] veth1: entered allmulticast mode
[  329.433442][T15222] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2632'.
[  329.440522][T15216] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2630'.
[  329.952423][T15252] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2638'.
[  330.023141][T15248] netlink: 'syz.0.2637': attribute type 32 has an invalid length.
[  330.088618][T15259] netlink: 116 bytes leftover after parsing attributes in process `syz.5.2640'.
[  330.538082][T15257] veth1_virt_wifi: entered allmulticast mode
[  331.802637][T15316] netlink: 'syz.5.2651': attribute type 22 has an invalid length.
[  331.832699][T15316] netlink: 'syz.5.2651': attribute type 22 has an invalid length.
[  331.903538][T15320] smc: net device bond0 applied user defined pnetid SYZ2
[  331.945756][T15319] netlink: 'syz.2.2653': attribute type 1 has an invalid length.
[  332.061287][T15319] 8021q: adding VLAN 0 to HW filter on device bond6
[  332.432494][T15342] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  332.505596][T15352] 0ªî{X¹¦: left allmulticast mode
[  332.516946][T15352] erspan0: left allmulticast mode
[  332.540839][T15352] veth0_to_team: left promiscuous mode
[  332.548810][T15367] netlink: 'syz.3.2659': attribute type 7 has an invalid length.
[  332.551386][T15352] veth0_to_team: left allmulticast mode
[  332.563406][T15352] batadv_slave_1: left promiscuous mode
[  332.587162][T15352] veth1_virt_wifi: left allmulticast mode
[  332.593296][T15371] openvswitch: netlink: Missing key (keys=40, expected=80)
[  332.603620][T15352] mac80211_hwsim hwsim11 wlan1: left allmulticast mode
[  332.618343][T15352] geneve2: left promiscuous mode
[  332.623575][T15352] geneve2: left allmulticast mode
[  332.630735][T15352] bond1: left promiscuous mode
[  332.636331][T15352] wireguard0: left promiscuous mode
[  332.643071][T15352] bond2: left promiscuous mode
[  332.649478][T15352] wireguard1: left promiscuous mode
[  332.660307][T15352] veth5: left promiscuous mode
[  332.683072][T15391] tipc: Resetting bearer <eth:gre0>
[  332.840613][T15403] bond0: entered promiscuous mode
[  332.932157][T15403] bond0: left promiscuous mode
[  333.097546][T15406] (unnamed net_device) (uninitialized): option ad_select: invalid value (34)
[  333.192907][T15412] 8021q: adding VLAN 0 to HW filter on device bond6
[  333.481493][T15431] __nla_validate_parse: 8 callbacks suppressed
[  333.481511][T15431] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2670'.
[  333.831266][T15452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2675'.
[  334.380268][T15475] netlink: 'syz.0.2682': attribute type 1 has an invalid length.
[  334.455349][T15482] syzkaller1: entered promiscuous mode
[  334.471095][T15482] syzkaller1: entered allmulticast mode
[  334.497210][T15482] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 324
[  334.649960][T15494] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2686'.
[  334.665773][T15494] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  334.931044][T15514] netlink: 'syz.5.2693': attribute type 1 has an invalid length.
[  335.040089][T15514] 8021q: adding VLAN 0 to HW filter on device bond5
[  335.460406][T15546] sctp: [Deprecated]: syz.2.2702 (pid 15546) Use of int in max_burst socket option.
[  335.460406][T15546] Use struct sctp_assoc_value instead
[  335.851351][T15571] netlink: 248 bytes leftover after parsing attributes in process `syz.0.2708'.
[  336.362052][T15607] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  337.168294][T15618] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.208126][T14644] netdevsim netdevsim2 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  337.234999][T14644] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  337.264051][T15374] netdevsim netdevsim2 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  337.291613][T15374] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  337.302865][T15374] netdevsim netdevsim2 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  337.320259][T15374] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  337.342269][T15618] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.422061][T15374] netdevsim netdevsim2 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  337.438776][T15374] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  337.491417][T15638] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2721'.
[  337.505136][T15618] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.613002][T15646] netlink: 324 bytes leftover after parsing attributes in process `syz.5.2722'.
[  337.749868][T15648] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  337.822060][T15618] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  337.903602][T15650] netlink: 'syz.0.2724': attribute type 29 has an invalid length.
[  337.914671][T15650] netlink: 'syz.0.2724': attribute type 29 has an invalid length.
[  338.028146][T15374] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.088485][T14644] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  338.121772][T14644] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  338.165676][T14644] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.565590][T15647] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  338.823839][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  339.213204][T15687] geneve0: entered promiscuous mode
[  339.583423][T15705] ipvlan0: entered promiscuous mode
[  339.592780][T15705] 8021q: adding VLAN 0 to HW filter on device ipvlan0
[  340.062159][T15735] veth0_to_team: entered promiscuous mode
[  340.071485][T15735] veth0_to_team: entered allmulticast mode
[  340.460751][T15751] macvtap1: entered promiscuous mode
[  340.477126][T15751] mac80211_hwsim hwsim24 wlan1: entered promiscuous mode
[  340.573448][T15751] mac80211_hwsim hwsim24 wlan1: left promiscuous mode
[  340.597514][T15760] FAULT_INJECTION: forcing a failure.
[  340.597514][T15760] name failslab, interval 1, probability 0, space 0, times 0
[  340.656804][T15760] CPU: 0 UID: 0 PID: 15760 Comm: syz.2.2755 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  340.656831][T15760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  340.656842][T15760] Call Trace:
[  340.656850][T15760]  <TASK>
[  340.656857][T15760]  dump_stack_lvl+0x189/0x250
[  340.656881][T15760]  ? __pfx____ratelimit+0x10/0x10
[  340.656904][T15760]  ? __pfx_dump_stack_lvl+0x10/0x10
[  340.656921][T15760]  ? __pfx__printk+0x10/0x10
[  340.656953][T15760]  ? __pfx___might_resched+0x10/0x10
[  340.656974][T15760]  ? fs_reclaim_acquire+0x7d/0x100
[  340.656997][T15760]  should_fail_ex+0x414/0x560
[  340.657027][T15760]  should_failslab+0xa8/0x100
[  340.657044][T15760]  kmem_cache_alloc_noprof+0x73/0x3c0
[  340.657066][T15760]  ? skb_clone+0x212/0x3a0
[  340.657087][T15760]  skb_clone+0x212/0x3a0
[  340.657103][T15760]  ? nfnetlink_rcv+0x486/0x2520
[  340.657125][T15760]  nfnetlink_rcv+0x4b4/0x2520
[  340.657145][T15760]  ? is_bpf_text_address+0x26/0x2b0
[  340.657172][T15760]  ? kernel_text_address+0xa5/0xe0
[  340.657194][T15760]  ? __kernel_text_address+0xd/0x40
[  340.657212][T15760]  ? unwind_get_return_address+0x4d/0x90
[  340.657228][T15760]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  340.657246][T15760]  ? arch_stack_walk+0xfc/0x150
[  340.657278][T15760]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  340.657333][T15760]  ? __lock_acquire+0xab9/0xd20
[  340.657365][T15760]  ? netlink_deliver_tap+0x2e/0x1b0
[  340.657405][T15760]  netlink_unicast+0x82c/0x9e0
[  340.657435][T15760]  ? __pfx_netlink_unicast+0x10/0x10
[  340.657458][T15760]  ? netlink_sendmsg+0x642/0xb30
[  340.657478][T15760]  ? skb_put+0x11b/0x210
[  340.657498][T15760]  netlink_sendmsg+0x805/0xb30
[  340.657530][T15760]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.657556][T15760]  ? aa_sock_msg_perm+0x94/0x160
[  340.657579][T15760]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  340.657597][T15760]  ? __pfx_netlink_sendmsg+0x10/0x10
[  340.657621][T15760]  __sock_sendmsg+0x219/0x270
[  340.657645][T15760]  ____sys_sendmsg+0x505/0x830
[  340.657668][T15760]  ? __pfx_____sys_sendmsg+0x10/0x10
[  340.657694][T15760]  ? import_iovec+0x74/0xa0
[  340.657720][T15760]  ___sys_sendmsg+0x21f/0x2a0
[  340.657739][T15760]  ? __pfx____sys_sendmsg+0x10/0x10
[  340.657796][T15760]  ? __fget_files+0x2a/0x420
[  340.657811][T15760]  ? __fget_files+0x3a0/0x420
[  340.657837][T15760]  __x64_sys_sendmsg+0x19b/0x260
[  340.657857][T15760]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  340.657884][T15760]  ? __pfx_ksys_write+0x10/0x10
[  340.657904][T15760]  ? rcu_is_watching+0x15/0xb0
[  340.657932][T15760]  ? do_syscall_64+0xbe/0x3b0
[  340.657967][T15760]  do_syscall_64+0xfa/0x3b0
[  340.657987][T15760]  ? lockdep_hardirqs_on+0x9c/0x150
[  340.658008][T15760]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.658025][T15760]  ? clear_bhb_loop+0x60/0xb0
[  340.658045][T15760]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.658060][T15760] RIP: 0033:0x7efc4e38e9a9
[  340.658077][T15760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.658091][T15760] RSP: 002b:00007efc4f18e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  340.658112][T15760] RAX: ffffffffffffffda RBX: 00007efc4e5b5fa0 RCX: 00007efc4e38e9a9
[  340.658124][T15760] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  340.658135][T15760] RBP: 00007efc4f18e090 R08: 0000000000000000 R09: 0000000000000000
[  340.658145][T15760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  340.658155][T15760] R13: 0000000000000000 R14: 00007efc4e5b5fa0 R15: 00007ffdbe4fffd8
[  340.658183][T15760]  </TASK>
[  341.369756][T15769] ip6tnl3: entered promiscuous mode
[  341.398949][T15769] ip6tnl3: entered allmulticast mode
[  341.411912][T15778] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2761'.
[  341.460484][T15783] smc: adding net device syzkaller1 with user defined pnetid SYZ2
[  341.660027][T15793] FAULT_INJECTION: forcing a failure.
[  341.660027][T15793] name failslab, interval 1, probability 0, space 0, times 0
[  341.662884][T15771] smc: removing net device syzkaller1 with user defined pnetid SYZ2
[  341.686867][T15793] CPU: 0 UID: 0 PID: 15793 Comm: syz.0.2767 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  341.686895][T15793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  341.686906][T15793] Call Trace:
[  341.686913][T15793]  <TASK>
[  341.686921][T15793]  dump_stack_lvl+0x189/0x250
[  341.686945][T15793]  ? __pfx____ratelimit+0x10/0x10
[  341.686969][T15793]  ? __pfx_dump_stack_lvl+0x10/0x10
[  341.686987][T15793]  ? __pfx__printk+0x10/0x10
[  341.687015][T15793]  ? __pfx___might_resched+0x10/0x10
[  341.687038][T15793]  ? fs_reclaim_acquire+0x7d/0x100
[  341.687062][T15793]  should_fail_ex+0x414/0x560
[  341.687093][T15793]  should_failslab+0xa8/0x100
[  341.687113][T15793]  __kmalloc_cache_noprof+0x70/0x3d0
[  341.687136][T15793]  ? nfnetlink_rcv+0x8ec/0x2520
[  341.687162][T15793]  nfnetlink_rcv+0x8ec/0x2520
[  341.687195][T15793]  ? unwind_get_return_address+0x4d/0x90
[  341.687234][T15793]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  341.687294][T15793]  ? __lock_acquire+0xab9/0xd20
[  341.687328][T15793]  ? netlink_deliver_tap+0x2e/0x1b0
[  341.687371][T15793]  netlink_unicast+0x82c/0x9e0
[  341.687403][T15793]  ? __pfx_netlink_unicast+0x10/0x10
[  341.687427][T15793]  ? netlink_sendmsg+0x642/0xb30
[  341.687448][T15793]  ? skb_put+0x11b/0x210
[  341.687470][T15793]  netlink_sendmsg+0x805/0xb30
[  341.687504][T15793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.687532][T15793]  ? aa_sock_msg_perm+0x94/0x160
[  341.687560][T15793]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  341.687580][T15793]  ? __pfx_netlink_sendmsg+0x10/0x10
[  341.687605][T15793]  __sock_sendmsg+0x219/0x270
[  341.687632][T15793]  ____sys_sendmsg+0x505/0x830
[  341.687657][T15793]  ? __pfx_____sys_sendmsg+0x10/0x10
[  341.687686][T15793]  ? import_iovec+0x74/0xa0
[  341.687713][T15793]  ___sys_sendmsg+0x21f/0x2a0
[  341.687808][T15793]  ? __pfx____sys_sendmsg+0x10/0x10
[  341.687874][T15793]  ? __fget_files+0x2a/0x420
[  341.687890][T15793]  ? __fget_files+0x3a0/0x420
[  341.687919][T15793]  __x64_sys_sendmsg+0x19b/0x260
[  341.687941][T15793]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  341.687977][T15793]  ? __pfx_ksys_write+0x10/0x10
[  341.687997][T15793]  ? rcu_is_watching+0x15/0xb0
[  341.688028][T15793]  ? do_syscall_64+0xbe/0x3b0
[  341.688056][T15793]  do_syscall_64+0xfa/0x3b0
[  341.688078][T15793]  ? lockdep_hardirqs_on+0x9c/0x150
[  341.688100][T15793]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.688117][T15793]  ? clear_bhb_loop+0x60/0xb0
[  341.688143][T15793]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  341.688160][T15793] RIP: 0033:0x7f86d6d8e9a9
[  341.688176][T15793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.688191][T15793] RSP: 002b:00007f86d7c02038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  341.688212][T15793] RAX: ffffffffffffffda RBX: 00007f86d6fb5fa0 RCX: 00007f86d6d8e9a9
[  341.688226][T15793] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  341.688237][T15793] RBP: 00007f86d7c02090 R08: 0000000000000000 R09: 0000000000000000
[  341.688248][T15793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  341.688259][T15793] R13: 0000000000000000 R14: 00007f86d6fb5fa0 R15: 00007ffe3be77ce8
[  341.688301][T15793]  </TASK>
[  342.026591][T15374] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.034917][T15374] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.372672][T15819] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2774'.
[  342.422116][T15817] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2773'.
[  342.454960][T15817] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  342.845422][T15840] FAULT_INJECTION: forcing a failure.
[  342.845422][T15840] name failslab, interval 1, probability 0, space 0, times 0
[  342.888185][T15840] CPU: 1 UID: 0 PID: 15840 Comm: syz.3.2779 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  342.888214][T15840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  342.888225][T15840] Call Trace:
[  342.888233][T15840]  <TASK>
[  342.888242][T15840]  dump_stack_lvl+0x189/0x250
[  342.888265][T15840]  ? __pfx____ratelimit+0x10/0x10
[  342.888290][T15840]  ? __pfx_dump_stack_lvl+0x10/0x10
[  342.888308][T15840]  ? __pfx__printk+0x10/0x10
[  342.888335][T15840]  ? __pfx___might_resched+0x10/0x10
[  342.888359][T15840]  ? fs_reclaim_acquire+0x7d/0x100
[  342.888383][T15840]  should_fail_ex+0x414/0x560
[  342.888414][T15840]  should_failslab+0xa8/0x100
[  342.888454][T15840]  __kmalloc_cache_noprof+0x70/0x3d0
[  342.888484][T15840]  ? nfnetlink_rcv+0x8ec/0x2520
[  342.888510][T15840]  nfnetlink_rcv+0x8ec/0x2520
[  342.888549][T15840]  ? __dev_queue_xmit+0x27b/0x3b50
[  342.888583][T15840]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  342.888623][T15840]  ? ref_tracker_free+0x63a/0x7d0
[  342.888643][T15840]  ? __asan_memcpy+0x40/0x70
[  342.888663][T15840]  ? __pfx_ref_tracker_free+0x10/0x10
[  342.888699][T15840]  ? skb_clone+0x246/0x3a0
[  342.888721][T15840]  ? __netlink_deliver_tap+0x807/0x850
[  342.888746][T15840]  ? netlink_deliver_tap+0x2e/0x1b0
[  342.888789][T15840]  netlink_unicast+0x82c/0x9e0
[  342.888821][T15840]  ? __pfx_netlink_unicast+0x10/0x10
[  342.888845][T15840]  ? netlink_sendmsg+0x642/0xb30
[  342.888866][T15840]  ? skb_put+0x11b/0x210
[  342.888887][T15840]  netlink_sendmsg+0x805/0xb30
[  342.888922][T15840]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.888950][T15840]  ? aa_sock_msg_perm+0x94/0x160
[  342.888973][T15840]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  342.888992][T15840]  ? __pfx_netlink_sendmsg+0x10/0x10
[  342.889017][T15840]  __sock_sendmsg+0x219/0x270
[  342.889042][T15840]  ____sys_sendmsg+0x505/0x830
[  342.889068][T15840]  ? __pfx_____sys_sendmsg+0x10/0x10
[  342.889097][T15840]  ? import_iovec+0x74/0xa0
[  342.889124][T15840]  ___sys_sendmsg+0x21f/0x2a0
[  342.889145][T15840]  ? __pfx____sys_sendmsg+0x10/0x10
[  342.889207][T15840]  ? __fget_files+0x2a/0x420
[  342.889223][T15840]  ? __fget_files+0x3a0/0x420
[  342.889252][T15840]  __x64_sys_sendmsg+0x19b/0x260
[  342.889273][T15840]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  342.889303][T15840]  ? __pfx_ksys_write+0x10/0x10
[  342.889323][T15840]  ? rcu_is_watching+0x15/0xb0
[  342.889353][T15840]  ? do_syscall_64+0xbe/0x3b0
[  342.889382][T15840]  do_syscall_64+0xfa/0x3b0
[  342.889403][T15840]  ? lockdep_hardirqs_on+0x9c/0x150
[  342.889425][T15840]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.889442][T15840]  ? clear_bhb_loop+0x60/0xb0
[  342.889464][T15840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.889487][T15840] RIP: 0033:0x7fd44b98e9a9
[  342.889504][T15840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  342.889519][T15840] RSP: 002b:00007fd44c8d3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  342.889540][T15840] RAX: ffffffffffffffda RBX: 00007fd44bbb5fa0 RCX: 00007fd44b98e9a9
[  342.889553][T15840] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  342.889565][T15840] RBP: 00007fd44c8d3090 R08: 0000000000000000 R09: 0000000000000000
[  342.889576][T15840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.889586][T15840] R13: 0000000000000000 R14: 00007fd44bbb5fa0 R15: 00007ffe03e65e58
[  342.889617][T15840]  </TASK>
[  343.411425][T15854] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2785'.
[  343.483140][T15374] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x7
[  344.157597][T15888] FAULT_INJECTION: forcing a failure.
[  344.157597][T15888] name failslab, interval 1, probability 0, space 0, times 0
[  344.171533][T15888] CPU: 1 UID: 0 PID: 15888 Comm: syz.4.2795 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  344.171556][T15888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  344.171565][T15888] Call Trace:
[  344.171571][T15888]  <TASK>
[  344.171577][T15888]  dump_stack_lvl+0x189/0x250
[  344.171598][T15888]  ? __pfx____ratelimit+0x10/0x10
[  344.171618][T15888]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.171631][T15888]  ? __pfx__printk+0x10/0x10
[  344.171652][T15888]  ? __pfx___might_resched+0x10/0x10
[  344.171675][T15888]  should_fail_ex+0x414/0x560
[  344.171702][T15888]  should_failslab+0xa8/0x100
[  344.171718][T15888]  __kmalloc_noprof+0xcb/0x4f0
[  344.171737][T15888]  ? __kasan_kmalloc+0x93/0xb0
[  344.171755][T15888]  ? nla_strdup+0x9d/0x140
[  344.171774][T15888]  nla_strdup+0x9d/0x140
[  344.171792][T15888]  nf_tables_newtable+0x491/0x1890
[  344.171826][T15888]  nfnetlink_rcv+0x112f/0x2520
[  344.171870][T15888]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  344.171929][T15888]  ? netlink_deliver_tap+0x2e/0x1b0
[  344.171965][T15888]  netlink_unicast+0x82c/0x9e0
[  344.171990][T15888]  ? __pfx_netlink_unicast+0x10/0x10
[  344.172009][T15888]  ? netlink_sendmsg+0x642/0xb30
[  344.172026][T15888]  ? skb_put+0x11b/0x210
[  344.172042][T15888]  netlink_sendmsg+0x805/0xb30
[  344.172070][T15888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.172094][T15888]  ? aa_sock_msg_perm+0x94/0x160
[  344.172114][T15888]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  344.172133][T15888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  344.172158][T15888]  __sock_sendmsg+0x219/0x270
[  344.172185][T15888]  ____sys_sendmsg+0x505/0x830
[  344.172210][T15888]  ? __pfx_____sys_sendmsg+0x10/0x10
[  344.172240][T15888]  ? import_iovec+0x74/0xa0
[  344.172267][T15888]  ___sys_sendmsg+0x21f/0x2a0
[  344.172287][T15888]  ? __pfx____sys_sendmsg+0x10/0x10
[  344.172353][T15888]  ? __fget_files+0x2a/0x420
[  344.172369][T15888]  ? __fget_files+0x3a0/0x420
[  344.172395][T15888]  __x64_sys_sendmsg+0x19b/0x260
[  344.172415][T15888]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  344.172441][T15888]  ? __pfx_ksys_write+0x10/0x10
[  344.172460][T15888]  ? rcu_is_watching+0x15/0xb0
[  344.172490][T15888]  ? do_syscall_64+0xbe/0x3b0
[  344.172516][T15888]  do_syscall_64+0xfa/0x3b0
[  344.172538][T15888]  ? lockdep_hardirqs_on+0x9c/0x150
[  344.172560][T15888]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.172576][T15888]  ? clear_bhb_loop+0x60/0xb0
[  344.172598][T15888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.172614][T15888] RIP: 0033:0x7f9b0918e9a9
[  344.172629][T15888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  344.172644][T15888] RSP: 002b:00007f9b0a0b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  344.172664][T15888] RAX: ffffffffffffffda RBX: 00007f9b093b5fa0 RCX: 00007f9b0918e9a9
[  344.172677][T15888] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  344.172688][T15888] RBP: 00007f9b0a0b9090 R08: 0000000000000000 R09: 0000000000000000
[  344.172698][T15888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.172709][T15888] R13: 0000000000000000 R14: 00007f9b093b5fa0 R15: 00007ffca1ced958
[  344.172738][T15888]  </TASK>
[  344.919131][T15904] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2800'.
[  345.290101][T15922] netlink: 'syz.5.2805': attribute type 6 has an invalid length.
[  345.316163][T15922] IPv6: NLM_F_CREATE should be specified when creating new route
[  345.316847][T15921] pim6reg1: entered promiscuous mode
[  345.332208][T15921] pim6reg1: entered allmulticast mode
[  345.341571][T15922] netlink: 'syz.5.2805': attribute type 6 has an invalid length.
[  345.621338][T15934] pim6reg1: entered promiscuous mode
[  345.636703][T15934] pim6reg1: entered allmulticast mode
[  345.820633][T15942] syzkaller0: left promiscuous mode
[  345.835890][T15942] syzkaller0: left allmulticast mode
[  345.988735][T15945] pim6reg1: entered promiscuous mode
[  346.004914][T15945] pim6reg1: entered allmulticast mode
[  346.934668][T15994] pim6reg1: entered promiscuous mode
[  346.942541][T15994] pim6reg1: entered allmulticast mode
[  350.261006][T16105] pim6reg1: entered promiscuous mode
[  350.272651][T16105] pim6reg1: entered allmulticast mode
[  350.812101][T16126] pim6reg1: entered promiscuous mode
[  350.818856][T16126] pim6reg1: entered allmulticast mode
[  351.392383][T16152] pim6reg1: entered promiscuous mode
[  351.398330][T16152] pim6reg1: entered allmulticast mode
[  351.508377][T16162] tap0: tun_chr_ioctl cmd 2147767506
[  351.651192][T16171] pim6reg1: entered promiscuous mode
[  351.678244][T16171] pim6reg1: entered allmulticast mode
[  354.282654][T16217] pim6reg1: entered promiscuous mode
[  354.288656][T16217] pim6reg1: entered allmulticast mode
[  354.413091][T16247] pim6reg1: entered promiscuous mode
[  354.425116][T16247] pim6reg1: entered allmulticast mode
[  355.147225][T16256] pim6reg1: entered promiscuous mode
[  355.161397][T16256] pim6reg1: entered allmulticast mode
[  355.256920][ T5842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  355.272376][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  355.281631][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  355.296685][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  355.310021][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  356.836698][T16288] pim6reg1: entered promiscuous mode
[  356.867891][T16288] pim6reg1: entered allmulticast mode
[  356.986259][T16292] pim6reg1: entered promiscuous mode
[  356.991722][T16292] pim6reg1: entered allmulticast mode
[  357.192840][T16301] pim6reg1: entered promiscuous mode
[  357.206168][T16301] pim6reg1: entered allmulticast mode
[  357.399454][ T5845] Bluetooth: hci2: command tx timeout
[  357.866917][T15400] veth0_to_bridge: left allmulticast mode
[  357.872856][T15400] veth0_to_bridge: left promiscuous mode
[  357.894443][T15400] bridge0: port 4(veth0_to_bridge) entered disabled state
[  357.945443][T15400] macsec0: left allmulticast mode
[  357.960782][T15400] macsec0: left promiscuous mode
[  357.971023][T15400] bridge0: port 3(macsec0) entered disabled state
[  358.002829][T15400] bridge_slave_1: left allmulticast mode
[  358.016454][T15400] bridge_slave_1: left promiscuous mode
[  358.022314][T15400] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.046880][T15400] bridge_slave_0: left allmulticast mode
[  358.052567][T15400] bridge_slave_0: left promiscuous mode
[  358.065918][T15400] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.274987][T15400] ip6gretap0 (unregistering): left promiscuous mode
[  358.751169][T15400] team0: Port device geneve0 removed
[  358.780666][T15400] bridge0 (unregistering): left promiscuous mode
[  359.026754][T16364] 
[  359.029285][T16364] =============================
[  359.035255][T16364] WARNING: suspicious RCU usage
[  359.040107][T16364] 6.16.0-syzkaller-06574-gd9104cec3e8f #0 Not tainted
[  359.049088][T16364] -----------------------------
[  359.054528][T16364] kernel/events/callchain.c:163 suspicious rcu_dereference_check() usage!
[  359.063027][T16364] 
[  359.063027][T16364] other info that might help us debug this:
[  359.063027][T16364] 
[  359.074511][T16364] 
[  359.074511][T16364] rcu_scheduler_active = 2, debug_locks = 1
[  359.083018][T16364] 1 lock held by syz.3.2987/16364:
[  359.088723][T16364]  #0: ffffffff8e13c6c0 (rcu_read_lock_trace){....}-{0:0}, at: rcu_read_lock_trace+0x38/0x80
[  359.099286][T16364] 
[  359.099286][T16364] stack backtrace:
[  359.106279][T16364] CPU: 1 UID: 0 PID: 16364 Comm: syz.3.2987 Not tainted 6.16.0-syzkaller-06574-gd9104cec3e8f #0 PREEMPT(full) 
[  359.106306][T16364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  359.106318][T16364] Call Trace:
[  359.106326][T16364]  <TASK>
[  359.106334][T16364]  dump_stack_lvl+0x189/0x250
[  359.106362][T16364]  ? __pfx_dump_stack_lvl+0x10/0x10
[  359.106381][T16364]  ? __pfx__printk+0x10/0x10
[  359.106419][T16364]  lockdep_rcu_suspicious+0x140/0x1d0
[  359.106450][T16364]  get_callchain_entry+0x2b6/0x3c0
[  359.106472][T16364]  get_perf_callchain+0xa1/0x6b0
[  359.106496][T16364]  ? __pfx_get_perf_callchain+0x10/0x10
[  359.106512][T16364]  ? futex_unqueue+0x22/0x240
[  359.106533][T16364]  ? futex_unqueue+0x211/0x240
[  359.106551][T16364]  ? __futex_wait+0x1d1/0x3e0
[  359.106574][T16364]  ? __futex_wait+0x34f/0x3e0
[  359.106599][T16364]  __bpf_get_stack+0x3fc/0xa60
[  359.106628][T16364]  ? __pfx___bpf_get_stack+0x10/0x10
[  359.106647][T16364]  ? __lock_acquire+0xab9/0xd20
[  359.106678][T16364]  bpf_get_stack+0x33/0x50
[  359.106702][T16364]  ? bpf_prog_b8a90dd1efcc4ad9+0x46/0x4e
[  359.106720][T16364]  bpf_get_stack_raw_tp+0x1a9/0x220
[  359.106766][T16364]  bpf_prog_b8a90dd1efcc4ad9+0x46/0x4e
[  359.106784][T16364]  bpf_prog_run_pin_on_cpu+0xbc/0x150
[  359.106815][T16364]  bpf_prog_test_run_syscall+0x312/0x4b0
[  359.106844][T16364]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  359.106868][T16364]  ? __fget_files+0x2a/0x420
[  359.106891][T16364]  ? __pfx_bpf_prog_test_run_syscall+0x10/0x10
[  359.106918][T16364]  bpf_prog_test_run+0x2c4/0x340
[  359.106946][T16364]  __sys_bpf+0x581/0x870
[  359.106971][T16364]  ? __pfx___sys_bpf+0x10/0x10
[  359.107031][T16364]  ? __pfx___se_sys_futex+0x10/0x10
[  359.107066][T16364]  __x64_sys_bpf+0x7c/0x90
[  359.107088][T16364]  do_syscall_64+0xfa/0x3b0
[  359.107111][T16364]  ? lockdep_hardirqs_on+0x9c/0x150
[  359.107134][T16364]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.107151][T16364]  ? clear_bhb_loop+0x60/0xb0
[  359.107173][T16364]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  359.107190][T16364] RIP: 0033:0x7fd44b98e9a9
[  359.107207][T16364] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  359.107223][T16364] RSP: 002b:00007fd44c8d3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  359.107243][T16364] RAX: ffffffffffffffda RBX: 00007fd44bbb5fa0 RCX: 00007fd44b98e9a9
[  359.107257][T16364] RDX: 000000000000000c RSI: 00002000000004c0 RDI: 000000000000000a
[  359.107268][T16364] RBP: 00007fd44ba10d69 R08: 0000000000000000 R09: 0000000000000000
[  359.107280][T16364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  359.107291][T16364] R13: 0000000000000000 R14: 00007fd44bbb5fa0 R15: 00007ffe03e65e58
[  359.107322][T16364]  </TASK>
[  359.464230][ T5845] Bluetooth: hci2: command tx timeout
[  359.496772][T15400] smc: removing net device bond0 with user defined pnetid SYZ2
[  359.507461][T15400] bond0 (unregistering): (slave batadv1): Releasing active interface
[  359.517589][T15400] bond0 (unregistering): Released all slaves
[  359.613743][T15400] bond1 (unregistering): (slave wireguard0): Releasing backup interface
[  359.623590][T15400] bond1 (unregistering): Released all slaves
[  359.722257][T15400] bond2 (unregistering): (slave wireguard1): Releasing backup interface
[  359.732517][T15400] bond2 (unregistering): (slave wireguard2): Releasing backup interface
[  359.742539][T15400] bond2 (unregistering): Released all slaves
[  359.757717][T15400] bond3 (unregistering): Released all slaves
[  359.863451][T15400] bond4 (unregistering): (slave batadv_slave_1): Releasing active interface
[  359.873224][T15400] bond4 (unregistering): Released all slaves
[  359.975490][T15400] bond5 (unregistering): (slave veth5): Releasing active interface
[  359.984611][T15400] bond5 (unregistering): Released all slaves
[  360.084928][T15400] bond6 (unregistering): Released all slaves
[  360.098020][T16330] pim6reg1: entered promiscuous mode
[  360.103352][T16330] pim6reg1: entered allmulticast mode
[  360.170495][T16273] chnl_net:caif_netlink_parms(): no params data found
[  360.327021][T16273] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.335709][T16273] bridge0: port 1(bridge_slave_0) entered disabled state
[  360.342919][T16273] bridge_slave_0: entered allmulticast mode
[  360.350649][T16273] bridge_slave_0: entered promiscuous mode
[  360.359195][T16273] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.367370][T16273] bridge0: port 2(bridge_slave_1) entered disabled state
[  360.376576][T16273] bridge_slave_1: entered allmulticast mode
[  360.384183][T16273] bridge_slave_1: entered promiscuous mode
[  360.413895][T16273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  360.432027][T16273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  360.466390][T16273] team0: Port device team_slave_0 added
[  360.474500][T16273] team0: Port device team_slave_1 added
[  360.505498][T16273] batman_adv: batadv0: Adding interface: batadv_slave_0
[  360.512469][T16273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.538732][T16273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  360.552658][T16273] batman_adv: batadv0: Adding interface: batadv_slave_1
[  360.559893][T16273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  360.586393][T16273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.630782][T16273] hsr_slave_0: entered promiscuous mode
[  360.637221][T16273] hsr_slave_1: entered promiscuous mode
[  360.643316][T16273] debugfs: 'hsr0' already exists in 'hsr'
[  360.649283][T16273] Cannot create hsr debugfs directory
[  361.039564][T16273] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  361.050642][T16273] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  361.061455][T16273] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  361.073143][T16273] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  361.101445][T16273] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.108587][T16273] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.116077][T16273] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.123185][T16273] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.186387][T16273] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.203508][T14640] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.213176][T14640] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.233788][T16273] 8021q: adding VLAN 0 to HW filter on device team0
[  361.247147][T14644] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.254325][T14644] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.271683][T15387] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.278816][T15387] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.461827][T16273] 8021q: adding VLAN 0 to HW filter on device batadv0
[  361.544030][ T5845] Bluetooth: hci2: command tx timeout
[  361.679399][T16273] veth0_vlan: entered promiscuous mode
[  361.690535][T16273] veth1_vlan: entered promiscuous mode
[  361.720506][T16273] veth0_macvtap: entered promiscuous mode
[  361.732487][T16273] veth1_macvtap: entered promiscuous mode
[  361.752519][T16273] batman_adv: batadv0: Interface activated: batadv_slave_0
[  361.772121][T16273] batman_adv: batadv0: Interface activated: batadv_slave_1
[  361.788338][T14640] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.798104][T14640] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.815764][T14640] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.831060][T14640] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.842118][T15400] tipc: Left network mode
[  361.873261][T15400] IPVS: stopping master sync thread 12163 ...
[  361.923495][ T5931] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.937699][ T5931] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  361.990861][ T5931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.999327][ T5931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  362.051228][T15400] hsr_slave_0: left promiscuous mode
[  362.060781][T15400] hsr_slave_1: left promiscuous mode
[  362.350885][T15400] team0 (unregistering): Port device team_slave_1 removed
[  362.386800][T15400] team0 (unregistering): Port device team_slave_0 removed
[  363.074793][T15400] IPVS: stop unused estimator thread 0...
[  363.623965][ T5845] Bluetooth: hci2: command tx timeout