last executing test programs:

5.550582447s ago: executing program 2 (id=1090):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x40054)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) (async)
preadv(r0, 0x0, 0x0, 0x0, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000480)={0x2c, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x2c}}, 0x40054) (async)

5.406134583s ago: executing program 2 (id=1092):
r0 = getpid()
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x10010000004e20}, 0x1c)
syz_emit_ethernet(0x83, &(0x7f0000000500)=ANY=[@ANYRESDEC=r0], 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r1, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r2, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r0}}]}, 0x3c}}, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r6=>0x0})
sendto$packet(r5, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r6}, 0x14)
r7 = socket$netlink(0x10, 0x3, 0x400000000000004)
r8 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r7, 0xc020f509, &(0x7f0000000180)={<r9=>0xffffffffffffffff, 0x9, 0xff, 0x3a78})
openat$cgroup_ro(r9, &(0x7f00000003c0)='devices.list\x00', 0x0, 0x0)
setsockopt$XDP_TX_RING(r8, 0x11b, 0x3, &(0x7f00000001c0)=0x100000, 0x4)
writev(r7, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1)
setsockopt$XDP_TX_RING(r8, 0x11b, 0x3, &(0x7f0000000040), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
connect$unix(r10, 0x0, 0x0)
sendmmsg$unix(r11, &(0x7f0000000000), 0x651, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x1}, 0xc)
r12 = socket(0x1d, 0x2, 0x6)
setsockopt$ALG_SET_KEY(r12, 0x6a, 0x1, 0x0, 0x20)
setsockopt$inet_tcp_int(r12, 0x6, 0x9, &(0x7f0000000280)=0x10001, 0x4)

2.410519067s ago: executing program 3 (id=1118):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000000)={'wlan1\x00', @random="0100c3201000"})
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), r3)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000080)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x4040000)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0xc0189436, &(0x7f0000000140))
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000800)={r5}, 0x25)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r9=>0x0})
sendmsg$nl_route(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r9, @ANYBLOB="0c000280"], 0x24}}, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r10 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000380)=0xffffffffffffffff, 0x4)
r11 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a00000000000000", @ANYRES32=0x1, @ANYBLOB="0500ff00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="02000000000000000400"/28], 0x50)
r12 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x1a, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0xbd80000, 0x0, 0x0, 0x0, 0x10000000}, [@call={0x85, 0x0, 0x0, 0x81}, @alu={0x4, 0x0, 0x8, 0x4, 0x3, 0x80, 0x8}, @printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8000}}, @map_fd={0x18, 0x9, 0x1, 0x0, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x4}]}, &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r9, @fallback=0x12, r10, 0x8, &(0x7f00000003c0)={0x5, 0x2}, 0x8, 0x10, &(0x7f0000000400)={0x4, 0x8, 0x0, 0x9}, 0x10, 0xffffffffffffffff, r0, 0x6, &(0x7f0000000640)=[r11, r12], &(0x7f00000006c0)=[{0x5, 0x1, 0xd, 0x4}, {0x5, 0x1, 0x4000006, 0x8}, {0x1, 0x2, 0xf}, {0x4, 0x1, 0x2, 0x6}, {0x4, 0x1, 0x10, 0x5}, {0x4, 0x1, 0xf, 0x5}], 0x10, 0x3}, 0x94)
r13 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000ac0), r4)
r14 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r14, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r14, 0x84, 0x6f, &(0x7f00000001c0)={<r15=>0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r14, 0x84, 0x78, &(0x7f0000000680)=r15, 0x4)
sendmsg$NLBL_CALIPSO_C_ADD(r4, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000180)={0x24, r13, 0x1, 0x70bd2f, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_MTYPE, @NLBL_CALIPSO_A_MTYPE={0xffd2}]}, 0x24}}, 0x0)
sendmsg$NLBL_CALIPSO_C_REMOVE(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r13, 0x1, 0x70bd25, 0x25dfdbff, {}, [@NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40005}, 0x8000)
sendmsg$NLBL_CALIPSO_C_ADD(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x1)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x20, 0x10, 0x801}, 0x20}}, 0x0)

2.086171416s ago: executing program 3 (id=1119):
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)=ANY=[@ANYRESHEX=r1, @ANYRES16=r2, @ANYRES64=r2, @ANYRES64=r1, @ANYBLOB="1c005a8018000180140003000000200020000100010000000000feff"], 0x38}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f0000000140)=@generic={0x3, 0x0, 0xfffffffffffff800})
socket$packet(0x11, 0x3, 0x300)
r3 = socket$inet6(0xa, 0x802, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000240)={'syztnl2\x00', &(0x7f0000000180)={'syztnl1\x00', <r5=>0x0, 0x2896e27be25763de, 0x7, 0x4, 0x7, {{0x1c, 0x4, 0x0, 0x34, 0x70, 0x64, 0x0, 0x2, 0x4, 0x0, @broadcast, @loopback, {[@ra={0x94, 0x4, 0x1}, @rr={0x7, 0x1b, 0xea, [@remote, @rand_addr=0x64010100, @loopback, @broadcast, @private=0xa010100, @multicast2]}, @timestamp_addr={0x44, 0x2c, 0x44, 0x1, 0x0, [{@empty, 0x3}, {@broadcast, 0x3}, {@loopback, 0xfffffffb}, {@broadcast, 0x5}, {@remote, 0x8}]}, @timestamp={0x44, 0x10, 0x35, 0x0, 0x3, [0x1, 0x105, 0xd2c]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r3, 0x89f2, &(0x7f0000000380)={'ip6gre0\x00', &(0x7f0000000300)={'syztnl0\x00', r5, 0x29, 0x40, 0xc, 0x8, 0x60, @mcast1, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x8, 0x7800, 0x2, 0x2618}})
setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000006ffc)=0x203, 0x4)
r6 = socket(0x2, 0x80805, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000001080)=0x8)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r6, 0x84, 0x66, &(0x7f0000000ac0)={r8}, &(0x7f0000000b00)=0x8)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
setsockopt$inet6_IPV6_DSTOPTS(r9, 0x29, 0x3b, &(0x7f00000003c0)=ANY=[@ANYBLOB="8803000000008b000100c910fc00000000004e0000000000000000f7010482629179acdeab8c0000"], 0x28)
setsockopt$inet6_tcp_int(r6, 0x6, 0x0, &(0x7f0000000440)=0xa3a, 0x4)
bind$packet(r4, &(0x7f0000000000)={0x11, 0x0, r11, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$inet6(r4, &(0x7f0000000280)="02042c08ec074802010e0200c52cf7c20675e005b02f0800eb2b2ff0dac8897c6b112002faffffff3066090cb600c5471d130a66321a54e7df305f80a88161b6fd8f24286a57c3feffff", 0xfc13, 0x800, 0x0, 0x2f)

1.93896662s ago: executing program 3 (id=1121):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000100)={'ip6tnl0\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x2f, 0x3, 0xfa, 0xda, 0x26, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2, 0x7, 0x7, 0xfffffff7, 0x800}})
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000009e8685000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000cbd520850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb=0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000002c0), 0xfffffffffffffe27}, 0x47)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x3, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="660a0000070000006111750000000000850000001d00000095"], &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x41000}, 0x94)

1.937229848s ago: executing program 1 (id=1122):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=@newneigh={0x30, 0x1c, 0x401, 0x0, 0xfffffffc, {0x2, 0x0, 0x0, r4, 0x20, 0x66, 0x8}, [@NDA_DST_MAC={0xa}, @NDA_PROTOCOL={0x5, 0xc, 0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x1804}, 0x4)
r5 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000003c0)=0xffffffffffffffff, 0x4)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000640)={0xffffffffffffffff, 0x20, &(0x7f0000000600)={&(0x7f0000000440)=""/189, 0xbd, <r6=>0x0, &(0x7f0000000500)=""/234, 0xea}}, 0x10)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x5, 0x4, 0x4, 0xa, 0x40}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xd, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b708000000bc7a007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r8}, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x8, 0x10, &(0x7f0000000240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xb0}, [@btf_id={0x18, 0x4, 0x3, 0x0, 0x3}, @call={0x85, 0x0, 0x0, 0x48}, @cb_func={0x18, 0x5, 0x4, 0x0, 0x7}, @map_idx={0x18, 0x2, 0x5, 0x0, 0x8}, @map_idx={0x18, 0x8, 0x5, 0x0, 0xb}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @map_idx={0x18, 0x1, 0x5, 0x0, 0x9}]}, &(0x7f0000000080)='GPL\x00', 0x81, 0xfd, &(0x7f00000002c0)=""/253, 0x40f00, 0x4, '\x00', r4, @fallback=0x23, r5, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000400)={0x4, 0xd, 0xffff, 0x21dc}, 0x10, r6, r8, 0x6, &(0x7f0000000680)=[r0], &(0x7f00000006c0)=[{0x2, 0x2, 0x1, 0x8}, {0x2, 0x4, 0x9}, {0x2, 0x5, 0xa, 0x7}, {0x3, 0x5, 0xa}, {0x0, 0x5, 0x4, 0x5}, {0x5, 0x4, 0x4, 0xb}], 0x10, 0x3f}, 0x94)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f0000000800)={0x0, 'veth1_virt_wifi\x00', {0x3}, 0x4})
sendto$inet6(r0, &(0x7f0000000100)='-', 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x15}, 0x1c)
ioctl$sock_bt_bnep_BNEPGETCONNLIST(0xffffffffffffffff, 0x800442d2, &(0x7f0000000000)={0x8, &(0x7f0000000140)=[{0x0, 0x0, 0x0, @local}, {0x0, 0x0, 0x0, @dev}, {0x0, 0x0, 0x0, @multicast}, {0x0, 0x0, 0x0, @link_local}, {0x0, 0x0, 0x0, @random}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @dev}]})
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x14, 0x4)

1.685084141s ago: executing program 3 (id=1125):
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x2000000, 0x12, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000200)="ba4c38af83b760a8f8a149f1f388", 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006d00)=ANY=[@ANYBLOB="f000000010001304000000000000000000000000000000000000000000000001ac00000000000000000000000000074e24000002000020000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000032000000ac1414fe0000000000000000000000000000000000000000070000000000000000001000000000000400"/84], 0xf0}}, 0x804)
r2 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x5}, [@call={0x85, 0x0, 0x0, 0x8a}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, 0x0, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f000000b000/0x4000)=nil, 0x4000, 0x1000005, 0x8012, r4, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000858000/0x2000)=nil, 0x2000, 0x2000004, 0x12, r5, 0xc08ba000)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000006, 0x12, r5, 0xe93f6000)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r6, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f00000001c0)={0x9, {{0x2, 0xfffe, @multicast2}}, 0x1, 0x1, [{{0x2, 0x4e23, @loopback}}]}, 0x110)
mmap$xdp(&(0x7f0000c45000/0x4000)=nil, 0x4000, 0x7000005, 0x11, r5, 0x180000000)
recvmmsg(r3, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}, 0xa}], 0x1, 0x2b, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/135], 0xfc}}, 0x0)
r8 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_RTHDR(r8, 0x29, 0x39, &(0x7f00000000c0)=ANY=[@ANYBLOB="0002020100000000ff"], 0x18)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
setsockopt$inet6_int(r3, 0x29, 0x5, &(0x7f0000000100)=0x9, 0x4)
setsockopt$inet6_int(r3, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)="b1ccee42fc3f3fb0a90aef372e5a0ec5bf2c3bc0cd457c853d988a7a0cc7d77e309b0021a3266d3651984c0fcc71e0be21f480186d8001bc4b972b04e4b065cf5e90f710ec0efd6acd3556640dc2537eaa897dbad0708f328ee554cb085f07bf8150f13cc928fc806c12dc9cbd402f1a37ddae6f39530b71b464bc89d7961808983634230ece1d0a040d1edb443f8984867c087bb6166f8e8261fc88abd23d10b2d4ffd3ec1cf011c0bdae8986ef08f9f06be3ce743f98af15bb45fecec7277acd72e6457c42", 0xc6}, {&(0x7f0000000100)="3ff7230ab05b60eb2e939d217482c3d2b9a5104500975c6ce0fc14", 0x1b}], 0x2}, 0x0)
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r9, 0x0, 0x48b, &(0x7f0000000180)={0x0, 'syzkaller0\x00', 0x4}, 0x18)

1.516401006s ago: executing program 4 (id=1126):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="300000003c000701fcffffff00000000017c0000100036800c00020008000000007000000c000180060206fe"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000000)={<r2=>0x0, 0x1}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000080)={r2, 0xffff6172}, &(0x7f00000000c0)=0x8)

1.475039843s ago: executing program 2 (id=1127):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000040), r0)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x0, 0x70bd27, 0x25dfdbfe, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x44001}, 0x80)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=ANY=[], 0xf0}, 0x1, 0x0, 0x0, 0x44}, 0x0)

1.327032635s ago: executing program 2 (id=1128):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = accept$alg(r0, 0x0, 0x0)
read$alg(r2, &(0x7f0000000300)=""/226, 0xe2)
sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}, {0x0, 0xfff2}}}, 0x24}}, 0x0)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @empty}, 0x10)
sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0xfc, 0x0, 0x5, 0xffffffff}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x24000081}, 0x24000804)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000140), 0x4)

1.326576305s ago: executing program 4 (id=1129):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2040000, 0x42073, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="020e000010000000000000000004830008001200000001000000ff000000400000001ea0abff7f00000000000000d41f9ab9000100700000ebdf000008000000c4fc0000100000000000e2ffff1c004f030006000020080002000080f5008e24ce6e4ae300a5000003000500001e001e02"], 0x80}}, 0x4814)
r3 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r3, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

1.21904703s ago: executing program 4 (id=1130):
unshare(0x6a040000)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
unshare(0x20000000) (async)
unshare(0x20000000)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}}], {0x14}}, 0x68}}, 0x0) (async)
sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}}], {0x14}}, 0x68}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000f40)=@nat={'nat\x00', 0x1b, 0x5, 0x520, 0x290, 0x390, 0xffffffff, 0xd8, 0x390, 0x488, 0x488, 0xffffffff, 0x488, 0x488, 0x5, &(0x7f00000002c0), {[{{@uncond, 0x0, 0xa0, 0xd8, 0x0, {}, [@common=@ah={{0x30}, {[0xfffffffc, 0x101], 0x1}}]}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x14, @rand_addr=0x64010102, @private=0xa010102, @port=0x4e20, @icmp_id=0x68}}}}, {{@uncond, 0x0, 0x170, 0x1b8, 0x0, {}, [@common=@unspec=@conntrack2={{0xc0}, {{@ipv6=@mcast1, [0xffffff00, 0xff, 0xff, 0xff000000], @ipv4=@multicast2, [0x7fffffff, 0xff000000, 0xffffffff], @ipv6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [0xff000000, 0xff, 0xff000000], @ipv4=@broadcast, [0xffffffff, 0xffffffff, 0xff], 0x1, 0x80000001, 0x0, 0x4e22, 0x4e21, 0x4e21, 0x4e24, 0xe490535f927a19a4, 0x618}, 0x141, 0x710}}, @common=@set={{0x40}, {{0xffffffffffffffff, [0x1, 0x3, 0x5, 0x0, 0x5, 0x3], 0x3, 0x2}}}]}, @unspec=@DNAT1={0x48, 'DNAT\x00', 0x1, {0x0, @ipv6=@loopback, @ipv4=@empty, @icmp_id=0x68, @port=0x4e21}}}, {{@uncond, 0x0, 0xc8, 0x100, 0x0, {}, [@common=@ah={{0x30}, {[0x9, 0x3]}}, @common=@icmp={{0x28}, {0x8, "9d91", 0x1}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x12, @local, @rand_addr=0x64010102, @gre_key, @port=0x4e23}}}}, {{@uncond, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@osf={{0x50}, {'syz1\x00', 0x0, 0x3, 0x2, 0x2}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x10, @loopback, @multicast1, @gre_key=0x8, @gre_key=0x5}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x580)
unshare(0x600)
write(0xffffffffffffffff, 0x0, 0x0) (async)
write(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (async)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x9}, {0x7, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff1, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @sk_msg=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x3b, &(0x7f0000000000)='/proc/sys/net/ipv4\x00\x00s/sync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd11=\x11\xc8\xdd\x15\xcc\xd2\xf1d\'%\x11c\x91l,'}, 0x30)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000004900)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000004c0)="cc", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000b80)="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", 0x390}], 0x1}}], 0x2, 0x4048884)
getsockopt$inet_sctp6_SCTP_STATUS(r3, 0x84, 0xe, &(0x7f0000000540)={0x0, 0x1, 0x0, 0x2, 0x9, 0x200, 0x0, 0xa77a, {0x0, @in6={{0xa, 0x4e22, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0xfffffff7}}, 0x74, 0x4, 0xe60e, 0x8, 0x7}}, &(0x7f0000000280)=0xb0)
connect$inet6(r3, &(0x7f0000000140)={0xa, 0x4e22, 0x6, @mcast2}, 0x1c)
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0), 0x18)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) (async)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) (async)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)

1.203937032s ago: executing program 0 (id=1131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0xe5, 0x59, &(0x7f00000004c0)="468849f9903ae634306837207ba2f784fff90dff5fd6471529f32d84f5c5639fd5b8f6850f649e2223608bd07f95f6864f82bcbae6e7d7b84f9b7729900236f667c7cc3eadcf63572e1acee0863f23c72ac6f27c8a05b0aaa17802e54acb255d7e68bb3874c6423a128c434ff3df943bde681880cbd929860bf7de00c1b1e913cb05ece8a4b1bf6049c221e8f0f0b5429a354637a9fab2a89fcea49cc2f27d0bdbb147785812013371d12e36e9ed5f060bb8ad2237357d195e9e5b22aac6873faa21b61c434b18930948d087d172c0741a5612c9bbc9f1b93ebeaf5b830cacf7c44ed7df96", &(0x7f0000000040)=""/89, 0xff, 0x0, 0xb7, 0xe1, &(0x7f00000005c0)="79e9fc3a1e677f8b4939036982b4e54f922c0dbe18fe25ca7ede182c857fc99b2b70e85c7a1c63045304b9a7ac4a0b8ce1923efb2ee12333d45893d8a6e9a23ce492294362a4f76f9f0c582cbcce1c0759af2de8d994fe756ccb43f115ec617700734d540f7225d0da6ebc06140c58e99562b10b45299c0e16cb2d06fef2da820f36a68760e59d73a93853fe6c764bf62858f136dd7b607e87b575f06fbb8705c27cd752b3f7fff0205a09018967b8b2136845d4c909b1", &(0x7f0000000680)="6f0cdfc0cce1deda80ccd8cb1f19ee16ae0d1d808635d8bb6984adcaa899488600d013fcff8bcc334c9a9c90c6e295d56e9353919955ad152439ddfea913e37114b24932d08fbb384c01e8e433a9c26003cd746e6ed95989c22e4ec97ee7a3b6ff6e575f94784037c1b935df5ab274d6409fa7bbf080ce49eaeb50ac2292644385a44cf5aa599fe739d2498ab5aaf95d11c668450cc4cb4fb8f9d079b876bd883368a0da6b9d7ef92117ce6f7012f90aa7a1e6fa32e9c0fa04873b44a38e08fae95efd980b52f694c188535a528f3c9ac1f2699dc8927895450a268208feff7ab8", 0x2, 0x0, 0xfff}, 0x50) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f000000a780), 0xffffffffffffffff) (async)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r4=>0x0})
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCGSTAMPNS(r1, 0x8907, &(0x7f0000000000)) (async)
sendmsg$nl_route_sched(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r4}}, 0x24}, 0x1, 0x0, 0x0, 0x4000091}, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
syz_emit_ethernet(0x62, &(0x7f0000000080)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00dd02", 0x2c, 0x6, 0x0, @private1={0xfc, 0x1, '\x00', 0x2}, @local, {[], {{0x4e23, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0xb, 0x2, 0x0, 0x0, 0x0, {[@exp_fastopen={0xfe, 0x6, 0xf989, "fc2e"}, @sack={0x5, 0x12, [0xd7a, 0xfc, 0xa0c, 0x6]}]}}}}}}}}, 0x0) (async)
sendmsg$inet(r6, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) (async)
recvmmsg(r6, &(0x7f00000067c0)=[{{0x0, 0xfffffffffffffef1, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x4}, {{0x0, 0x0, 0x0}, 0x7}], 0x4000000000001b7, 0x120, 0x0) (async)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r1, &(0x7f000000a8c0)={0x0, 0x0, &(0x7f000000a880)={&(0x7f000000a7c0)={0x20, r2, 0x201, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x24048091}, 0x80)

930.188684ms ago: executing program 0 (id=1132):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
connect$l2tp6(r0, &(0x7f0000000f40)={0xa, 0x0, 0x0, @empty}, 0x20)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_PUBL_GET(r1, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001480)={&(0x7f0000000040)=ANY=[@ANYRES16=r0], 0x20}}, 0x14)
sendmmsg$inet6(r0, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x17fd147c801ae9ab, 0x0)

929.614133ms ago: executing program 1 (id=1133):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0) (fail_nth: 18)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="020e000010000000000000000004830008001200000001000000ff000000400000001ea0abff7f00000000000000d41f9ab9000100700000ebdf000008000000c4fc0000100000000000e2ffff1c004f030006000020080002000080f5008e24ce6e4ae300a5000003000500001e001e02"], 0x80}}, 0x4814)
r3 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r3, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

911.432008ms ago: executing program 0 (id=1134):
bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0), 0x10)
sendto$l2tp(0xffffffffffffffff, &(0x7f0000000040)="e5786a0d000000000000c83b", 0x5d, 0x0, &(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001fd8)=@framed={{0xffffff85, 0x0, 0x0, 0x0, 0x5, 0xffffff84}}, &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', r1, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000002000000000000000000000d03000000000000000000000110000000800000000000000000000003000000000200000002"], 0x0, 0x4e, 0x0, 0x4}, 0x20)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000080)=@newtfilter={0x2c, 0x2c, 0x100, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xa, 0x4}, {0x0, 0x4}, {0xffe0, 0xaa425b66ad4f1374}}, [@TCA_RATE={0x6, 0x5, {0x2, 0x92}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4040}, 0x200008c0)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="580000000c1400082bbd700009dbdf250800030004000000080001000100000008000300030000000800030003000000080011eb03000200000008000100022d0000080001000100000008003d000100000008000300ffffffff"], 0x58}, 0x1, 0x0, 0x0, 0x10}, 0x84084)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)={0x1b, 0x0, 0x0, 0x7, 0x0, 0x1, 0x12, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x1}, 0x50)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000340)={0x0, 0x2, 0x8}, 0xc)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0x38}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e"], 0x70}}, 0x0)
sendmmsg(r7, &(0x7f0000000180), 0x3ef, 0x0)
r8 = bpf$OBJ_GET_MAP(0x7, &(0x7f00000004c0)=@generic={&(0x7f0000000480)='./file0\x00'}, 0x18)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_VERSION(r9, 0x0, 0x480, &(0x7f0000005680), &(0x7f0000009980)=0x40)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r8, <r10=>0xffffffffffffffff}, &(0x7f0000000500), &(0x7f0000000540)}, 0x20)
r11 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000600)=@o_path={&(0x7f00000005c0)='./file0\x00', 0x0, 0x4000, r4}, 0x18)
r12 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x4695, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x2, 0x1}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0xe, &(0x7f0000000380)=@raw=[@call={0x85, 0x0, 0x0, 0x58}, @map_val={0x18, 0x6, 0x2, 0x0, r5, 0x0, 0x0, 0x0, 0x7}, @ldst={0x3, 0x2, 0x6, 0x4, 0x0, 0xfffffffffffffff0, 0xffffffffffffffff}, @jmp={0x5, 0x1, 0xd, 0x3, 0x5, 0x80, 0x10}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000400)='GPL\x00', 0xa, 0x0, 0x0, 0x40f00, 0x6d, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x1, 0xa, 0x180000, 0x9}, 0x10, 0x0, 0x0, 0x3, &(0x7f00000006c0)=[r8, r10, r11, 0x1, r12], &(0x7f0000000700)=[{0x5, 0x5, 0x4}, {0x3, 0x2, 0x2, 0xc}, {0x3, 0x2, 0xc, 0x3}], 0x10, 0x3ff}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000c40)={@fallback=<r13=>r3, 0x22, 0x1, 0x23, &(0x7f0000000b40)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, &(0x7f0000000b80)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000bc0), &(0x7f0000000c00), <r14=>0x0}, 0x40)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000cc0)={0x1, <r15=>0x0}, 0x8)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000940)=ANY=[@ANYRES32=r1, @ANYRES32, @ANYBLOB="1500001a22000000b0923ca16d527e6ddc8a167c1e4e56098657e1cca7c0b931543394a203b5b2b91796616e29d6bc5091f09df475891c109515a8bb07f93b896d32f7", @ANYRES32=r13, @ANYBLOB, @ANYRES32=r15, @ANYRES64=r14], 0x20)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000001c0)={@fallback, r2, 0xd, 0xe, r2, @void, @value=r13, @void, @void, r14}, 0x20)
ioctl$IMCLEAR_L2(r13, 0x80044946, &(0x7f0000000240)=0x1ff)
recvfrom$l2tp(0xffffffffffffffff, 0x0, 0x0, 0x12142, 0x0, 0x0)

829.463987ms ago: executing program 4 (id=1135):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r1)
sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000380)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="8100010000000c009900a602000900"/26], 0x20}, 0x1, 0x0, 0x0, 0x90}, 0x40000)
getsockname$packet(r0, &(0x7f0000000140)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a)
r4 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f00000009c0)='wg0\x00', 0x10)
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r3, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=<r5=>r3], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000740)=ANY=[@ANYRES16=r5, @ANYBLOB="ec453b4faf4efd48c6184eacbc3193ba34ef801dc5837ec55db7280c128e992d0d5e3a1ac7051330084b6e6696fdf69c95c85f038cfd6f32467eb27cf89f38a6ac43f4245412c2f5c990b9478dd9bbd2fa6f31da6a091a7b50b1f0969c213448bfaed60a230771b605e3c11a85dd69ba979ded79b268140359fe36f55c6903936272b594e1a43b9c53cc6ed76154b155f97258971e00"/164, @ANYRESHEX=r0, @ANYRESDEC=r0, @ANYRESDEC=r4, @ANYRESOCT=0x0, @ANYRES64=r0, @ANYRESDEC=r4, @ANYRES8=r5], 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1, 0x31, 0xffffffffffffffff, 0x8871b000)
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
bind$rose(r6, &(0x7f0000000100)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, 0x6, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x40)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000980)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r9=>0x0, 0x0, 0x0, 0x0, 0x7, 0x4, &(0x7f0000000540)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0], 0x0, 0xf0, &(0x7f0000000600)=[{}], 0x8, 0x10, &(0x7f0000000640), &(0x7f0000000680), 0x8, 0x11, 0x8, 0x8, &(0x7f00000006c0)}}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000005c0)=ANY=[@ANYRESHEX=r9, @ANYRES32, @ANYBLOB="02000000200000000a000000", @ANYRES32=r8, @ANYRES64=0x0], 0x20)
r10 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
ioctl$TUNSETIFF(r11, 0x400454ca, &(0x7f0000000040)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r11, 0x400454c9, 0xad356f19b320d40b)
ioctl$TUNGETFILTER(r11, 0x801054db, &(0x7f0000000380)=""/153)
listen(r10, 0x0)
ioctl$SIOCX25SFACILITIES(r10, 0x89e3, &(0x7f0000000000)={0x67, 0x1, 0x4, 0x5, 0x7f, 0x81})
r12 = socket(0x1, 0x803, 0x0)
unshare(0x22020400)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000500)={'veth1\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0xf, [0xa, 0x1, 0x7fff, 0x1, 0x4, 0x40000009, 0xa4, 0xffb, 0x7, 0xb69, 0xc1, 0x4, 0x1, 0x3, 0x5, 0x101, 0x1000, 0x9, 0x3, 0x3, 0x1, 0xfffffffa, 0x0, 0x6, 0x9, 0x4, 0x7, 0x5, 0x100000, 0x762, 0x3, 0xd, 0xe, 0x2b12, 0x100, 0x6, 0x1c00, 0x4, 0x7, 0xbed4, 0x8, 0x8000100, 0x3, 0x0, 0x11000, 0x8, 0xe, 0x79b, 0x2, 0x1, 0x7f, 0x4, 0xa, 0x7, 0xf, 0x101, 0xd7, 0x1fa0860a, 0x7, 0xaa, 0x81, 0x2, 0x180000, 0x4007, 0x8b, 0x5, 0x2af, 0xf7, 0x5, 0x2, 0x6, 0x9, 0x4, 0x7, 0x4009, 0x0, 0x4, 0x100002, 0x8, 0x752, 0x0, 0x3, 0x0, 0x10001, 0x2, 0xffffffff, 0x6, 0x6, 0x9, 0x80000000, 0xfdffffff, 0x2, 0x2, 0x84, 0x100, 0x7, 0x252, 0x81, 0xb, 0x5, 0x20006, 0x5, 0x2, 0xb, 0x2, 0xd9a, 0xd, 0x2a2, 0xfffffffd, 0x3, 0x7, 0x5, 0x8, 0x0, 0x4, 0x2, 0x40, 0x8, 0x4, 0x4, 0x401, 0x66cd, 0x8, 0x8, 0x1, 0x1fc, 0xc5c, 0xffffffff]}})
ioctl$sock_inet_SIOCGIFADDR(r12, 0x8915, &(0x7f0000000a00)={'vlan0\x00'})
poll(&(0x7f0000000000), 0x20000000000000b5, 0x9)
setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xe501, 0x3, 0x480, 0x0, 0x6affffff, 0x3403000b, 0x318, 0x7, 0x3e8, 0x230, 0x230, 0x3e8, 0x223, 0x3, 0x0, {[{{@ip={@remote, @local, 0x0, 0x0, 'veth1_macvtap\x00', 'veth1_to_team\x00'}, 0x0, 0x2d0, 0x318, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x1, [{0x6}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {0xfffd}, {}, {}, {0x0, 0x0, 0x0, 0xe78a}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x800}, {0x0, 0x0, 0x81}, {}, {}, {0x0, 0x9}, {}, {}, {0x0, 0x72}]}}, @common=@addrtype={{0x30}, {0x80, 0xbcd2095e0916a352, 0x1}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@broadcast, [0xffffffff, 0x0, 0xff], 0x4e23, 0x4e22, 0x4e22, 0x4e22, 0x9, 0x2, 0x8, 0xffffc12b, 0x3}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4e0)

818.25236ms ago: executing program 1 (id=1136):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.net/syz1\x00', 0x200002, 0x0)
openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000000c0), 0x2, 0x0)
r2 = syz_init_net_socket$nfc_llcp(0x27, 0xeabb5159da45c5f, 0x1)
r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000100)={0x0, 0x8, 0x8}, 0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000240)={'syztnl1\x00', &(0x7f0000000140)={'syztnl0\x00', <r4=>0x0, 0x80b0, 0x80, 0x1, 0xfffffe58, {{0x37, 0x4, 0x3, 0x14, 0xdc, 0x64, 0x0, 0x4, 0x2f, 0x0, @multicast1, @loopback, {[@timestamp_prespec={0x44, 0x4c, 0xe7, 0x3, 0x3, [{@multicast2, 0xfffffffa}, {@empty, 0x5}, {@broadcast, 0x9}, {@local, 0x6}, {@empty, 0x4}, {@empty, 0x92}, {@remote, 0x3}, {@loopback, 0x5}, {@dev={0xac, 0x14, 0x14, 0xd}, 0x10}]}, @end, @generic={0x83, 0xf, "4e57aa07b4437be0954287b9ac"}, @end, @lsrr={0x83, 0x27, 0xce, [@empty, @private=0xa010100, @local, @rand_addr=0x64010101, @remote, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x41}, @local, @rand_addr=0x64010102]}, @timestamp_prespec={0x44, 0x34, 0xfe, 0x3, 0x3, [{@dev={0xac, 0x14, 0x14, 0xa}, 0x10}, {@multicast1, 0x8001}, {@local}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x40}, {@rand_addr=0x64010100, 0x200}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x7}]}, @ra={0x94, 0x4, 0x1}, @timestamp_addr={0x44, 0xc, 0xfe, 0x1, 0x3, [{@multicast1, 0x80000001}]}]}}}}})
r5 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000300)={0x0, r2}, 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xd, 0x3, 0xfcc, 0xae, 0x10000, r3, 0x100, '\x00', r4, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0x0, @void, @value, @value=r5}, 0x50)
setsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000340)=0x3, 0x4)
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000380), 0x8)
write$cgroup_subtree(r6, &(0x7f00000003c0)={[{0x2d, 'cpuacct'}]}, 0x9)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'wpan4\x00', <r10=>0x0})
sendmsg$NL802154_CMD_SET_PAN_ID(r8, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x48, r9, 0x20, 0x70bd2c, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_PAN_ID={0x6, 0x9, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0x20008884}, 0x20000100)
getsockname$packet(r6, &(0x7f00000005c0)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000600)=0x14)
r12 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000740)={&(0x7f0000000640)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x9, [@union={0xa, 0x3, 0x0, 0x5, 0x0, 0x3, [{0xf, 0x4, 0xfffffffd}, {0xb, 0x2, 0x3}, {0xe, 0x2, 0x8b35}]}]}, {0x0, [0x61, 0x30, 0x30, 0x0, 0x6f, 0x2e, 0x0]}}, &(0x7f00000006c0)=""/96, 0x51, 0x60, 0x1, 0x9}, 0x28)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000780)={0x1b, 0x0, 0x0, 0x1, 0x0, r6, 0xede, '\x00', r11, r12, 0x7ff, 0x0, 0x3}, 0x50)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r13, &(0x7f0000000c00)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x1010}, 0xc, &(0x7f0000000bc0)={&(0x7f0000000840)={0x380, r9, 0x400, 0x70bd29, 0x25dfdbfe, {}, [@NL802154_ATTR_SEC_KEY={0x54, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "fe5b8dcac0d255876a370541eed1a062"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "470a9060b2683f192c25d7989ca346b7"}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xff}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xfd}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x5}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x7}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x10}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_SEC_KEY={0x11c, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "e3c995e21509d36a6344b80b512d2741"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "154c403f2a56e10c24b465de13e6bd05"}, @NL802154_KEY_ATTR_ID={0xb8, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x9}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_MODE={0x8}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x50, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xfffffffffffe0206}}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xffff}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x3}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x34, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0202}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0x555f}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa0}]}, @NL802154_KEY_ID_ATTR_INDEX={0x5}]}, @NL802154_KEY_ATTR_ID={0xc, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x8}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "0f435103deb058da1754396a275347572a924d04ab0324c1fd51a3f57058967c"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SEC_KEY={0xf8, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_ID={0x68, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x50, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ADDR_ATTR_PAN_ID={0x6, 0x1, 0x3}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0302}}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc}, @NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa2}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x1}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x4}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x3}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0xff}, @NL802154_KEY_ATTR_ID={0x7c, 0x1, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x2}, @NL802154_KEY_ID_ATTR_IMPLICIT={0x20, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_SHORT={0x6, 0x3, 0xaaa1}, @NL802154_DEV_ADDR_ATTR_EXTENDED={0xc, 0x4, {0xaaaaaaaaaaaa0102}}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x8}, @NL802154_KEY_ID_ATTR_MODE={0x8, 0x1, 0x1}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x2}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0x5}, @NL802154_KEY_ID_ATTR_SOURCE_SHORT={0x8, 0x4, 0xfffffb5a}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0x3}, @NL802154_KEY_ID_ATTR_SOURCE_EXTENDED={0xc, 0x5, 0xe018}]}, @NL802154_KEY_ATTR_USAGE_FRAMES={0x5, 0x2, 0x9}]}, @NL802154_ATTR_SEC_KEY={0xc, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_USAGE_FRAMES={0x5}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_SEC_KEY={0xc4, 0x30, 0x0, 0x1, [@NL802154_KEY_ATTR_BYTES={0x14, 0x4, "54561677086648baabe955e81cc50cb6"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "5d86004788acde75f7ad700e0c671360d865d8d2164331f0fb49a5c221415f7d"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "353694580d268e8f880e1626f4430513"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "53516d179bd6d528fd699a8f51f10ecb"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "ecdf898c2757e48d664acafd372b2e25"}, @NL802154_KEY_ATTR_USAGE_CMDS={0x24, 0x3, "15c133b7319736c49dfdbb3297828c8d3e3298ac30ed204978d836a002f485d0"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "c4a55ee1c9c6f0bac2f7aad923837b43"}, @NL802154_KEY_ATTR_BYTES={0x14, 0x4, "59e666a1195e7889ea29fa51e31fe13a"}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0xc6e86b465e7e6fc6}]}, 0x380}, 0x1, 0x0, 0x0, 0x4004004}, 0x24000000)
sendmsg$key(r6, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000c40)={0x2, 0x5, 0x9, 0x3, 0x12, 0x0, 0x70bd25, 0x25dfdbfc, [@sadb_ident={0x2, 0xa, 0x6, 0x0, 0x5}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in6={0xa, 0x4e24, 0x2d, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x10000}}, @sadb_x_kmaddress={0x7, 0x19, 0x0, @in6={0xa, 0x4e22, 0xfff, @mcast2, 0x4}, @in={0x2, 0x4e21, @rand_addr=0x64010101}}]}, 0x90}}, 0x20000080)
sendmsg$NL802154_CMD_SET_CHANNEL(r8, &(0x7f0000000e40)={&(0x7f0000000d80)={0x10, 0x0, 0x0, 0x4000004}, 0xc, &(0x7f0000000e00)={&(0x7f0000000dc0)={0x38, r9, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@NL802154_ATTR_PAGE={0x5, 0x7, 0x3}, @NL802154_ATTR_CHANNEL={0x5, 0x8, 0xa}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r10}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x38}, 0x1, 0x0, 0x0, 0x48005}, 0x4000)
r14 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r15 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000ec0), r13)
sendmsg$NLBL_CIPSOV4_C_ADD(r14, &(0x7f00000012c0)={&(0x7f0000000e80)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001280)={&(0x7f0000000f00)={0x350, r15, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}, {0x5, 0x3, 0x5}, {0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x7c, 0x8, 0x0, 0x1, [{0x44, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x249b5a95}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xb4}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xc1c4fe5}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xef}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x306bc35c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x38}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x22a7cff1}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x97}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x67}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x2a60748a}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x50e35ca0}]}]}, @NLBL_CIPSOV4_A_MLSCATLST={0xa8, 0xc, 0x0, 0x1, [{0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1748}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x7faf}]}, {0x14, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1fdd}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x5b29}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x624c1a38}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x460551b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x36bf0646}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x47b3}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x305ba276}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x33c2b678}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x33cf}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4412}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x47bb061b}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x95a2}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2da}]}, {0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x9ced}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x52eb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x6033eb53}]}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}, @NLBL_CIPSOV4_A_MLSLVLLST={0xd4, 0x8, 0x0, 0x1, [{0x1c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xe}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x1c501dd0}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xd7}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x14d61173}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x5}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4a3b0be6}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}, @NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4b1e7c7c}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xbe}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa}]}, {0x34, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0xc23592}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x39}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x8}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xa2}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x9f}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x27}]}, {0x2c, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x41}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x12}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x7d}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xab}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0xfa}]}, {0x14, 0x7, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8, 0x5, 0x4d9b8a09}, @NLBL_CIPSOV4_A_MLSLVLREM={0x8, 0x6, 0x49}]}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSCATLST={0x110, 0xc, 0x0, 0x1, [{0x1c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb617}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x318127aa}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x6081}]}, {0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2c78f2b3}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x26c891d8}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x5ffbfc1b}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x18d8eef3}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x4566}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1bd85bfd}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x3e830519}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x63ffefc1}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0xc7ca9fa}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xa7cb}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1b8dd117}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x4224c53b}]}, {0x2c, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1f60a004}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x1f3d8adf}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x418256be}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x66c5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x2b38}]}, {0x24, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xd182}, @NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x2870aa72}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x389c}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x1806}]}, {0x34, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATLOC={0x8, 0x9, 0x9fbf8ac}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x3644}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xe775}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xf74}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0x23b5}, @NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xb047}]}]}]}, 0x350}, 0x1, 0x0, 0x0, 0x20000890}, 0x2000c044)
r16 = socket(0x23, 0x800, 0xce)
sendmmsg$inet6(r16, &(0x7f0000003640)=[{{0x0, 0x0, &(0x7f00000035c0)=[{&(0x7f0000001300)="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", 0xfb}, {&(0x7f0000001400)="9eee5e6c4735af2097ab4c1779d0937b182eb06a54598b53f55f78aa2891a378c5160f0b0ca87e1957098638984455f9bfce9dcb88bec0089988f55f38d13d9ec87b61d442c460e2cf24ae7a9c5b9ca0bc2384544dbadbed11e15071", 0x5c}, {&(0x7f0000001480)="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", 0x1000}, {&(0x7f0000002480)="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", 0x1000}, {&(0x7f0000003480)="f27b36068579fc1f2e83556259f79b530c364d5815523dad61a32678fe014812710da78877a31fcb71399b3298111f69f75e0d412bfb594b1dc75d99ab590529bf55e10b5d80321dc9ef57cbb2492116932ed868b8005598f30dc1885fabb6df32f6a73b6f520bb4b70a1a203c36ea1f4cdff0", 0x73}, {&(0x7f0000003500)="07dca8a3677927571d4186860244914cfd229c2c0eb13b63012a0749119205c79221be2b91c51cdb7271b5561aceaa7cf1add76e25171e38c8f5ee78b1dffa1c6aad9c78f200862500b53210a52e9690d99216302bf7514ae2a2e43daf4bdcfd2d9535805549a07f08212ba9c7627a67ead3fa42750d814315f66aa5448323caa8f72b8c269e6e8a9d823716a166973bf197ff896142273e01e9964d2f002501b7da1e226580f4f7483995185ab459a0131014", 0xb3}], 0x6}}], 0x1, 0x90)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000003680)={'batadv_slave_1\x00'})

790.538743ms ago: executing program 3 (id=1137):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000000)={0x18}) (async)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_POOL_SET(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)={0x50, r2, 0x0, 0x70bd25, 0x25dfdbfd, {}, [{@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}, {0x6}, {0x8, 0x13, 0xc}, {0x5}}]}, 0x50}, 0x1, 0x0, 0x0, 0x44040}, 0x4004000) (async, rerun: 32)
sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000040)={&(0x7f00000001c0)={0xfc, r2, 0x800, 0x70bd2c, 0x25dfdbfc, {}, [{@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20000001}, 0x1) (async, rerun: 32)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050017000000000000000600000008000300", @ANYRES32=r5, @ANYBLOB="080005"], 0x24}}, 0x0)

730.317308ms ago: executing program 0 (id=1138):
sendto$inet(0xffffffffffffffff, &(0x7f0000000240)="f633f65d299cafd13516ffaf875575ec2752fc2687ba33c0ecb384f41f33bb9cf3", 0x21, 0x4000044, 0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="ec0000002100390d000000000000020000000000000000000000000000000000e000000200000000000000000000000000000000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000009c001100ff010000000000000000000000000001ffffffff000000000000000000000000ac1414aa000000000000000000000000ac141400000000000000000000000000000000000000000011000a00ff010000000000000000000000000001ffffffff"], 0xec}}, 0x0)

701.312078ms ago: executing program 0 (id=1139):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'caif0\x00', <r2=>0x0})
r3 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r3, 0x84, 0x85, &(0x7f0000000000)=""/4102, &(0x7f0000001040)=0x1006)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000180), r0)
sendmsg$DEVLINK_CMD_PORT_SPLIT(r3, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0xc4, r4, 0x200, 0x70bd2d, 0x25dfdbfc, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0x9, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0x9, 0x8}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x3}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x7}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4050}, 0x4040)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="ff0000100000000000002a0000000c00018008001100", @ANYRES32=r2, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
r5 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$DCCPDIAG_GETSOCK(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x4c, 0x12, 0x100, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x2, [0x0, 0x0, 0x6], [0x0, 0x4, 0x0, 0x4000]}, 0x400}}, 0x4c}, 0x1, 0x0, 0x0, 0x40090}, 0x1010)

644.369732ms ago: executing program 3 (id=1140):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0xb}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r1}, 0xc)
unshare(0x66000080)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="5800000010000104000020000000000000000000", @ANYRES32=0x0, @ANYBLOB="2b12020000000000280012800b00010067656e6576650000180002"], 0x58}}, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'geneve0\x00', <r4=>0x0})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
write$cgroup_int(r6, &(0x7f0000000100), 0x1001)
pread64(r6, 0x0, 0x0, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b705000000000000611059000000000004000000000000009500000000000000"], &(0x7f00000002c0)='GPL\x00', 0x5, 0xfd90, &(0x7f0000000300)=""/188, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f3, 0x10, &(0x7f0000000080), 0xfffffffffffffc79}, 0x2a)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r7, &(0x7f0000000380), 0x20000000}, 0x20)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$tun(r8, &(0x7f0000000000)=ANY=[], 0x38)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r8, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r8}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f00000001c0)='GPL\x00', 0x8000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='kmem_cache_free\x00', r9}, 0x10)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x11, @loopback, 0x0, 0x0, 'sh\x00', 0x3b, 0x0, 0x73}, 0x2c)
sendto$packet(r3, &(0x7f0000000180)="0b032200e0ff251202a6475400f6a13bb100c117080008004803", 0x1a, 0xffffffffffffc117, &(0x7f0000000140)={0x11, 0x0, r4, 0x1, 0x1}, 0x14)
close(0xffffffffffffffff)

553.971925ms ago: executing program 0 (id=1141):
r0 = socket$alg(0x26, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0900000004000000060000000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x15, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r3 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r3, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

530.056909ms ago: executing program 1 (id=1142):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='i2c_reply\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
close(0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
socket$can_raw(0x1d, 0x3, 0x1)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580))
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800080000fcffff08000900fcfc0000080011000000000008000e00800000000800", @ANYRES64=r1], 0x5c}, 0x1, 0x0, 0x0, 0x20008005}, 0x0)

497.438032ms ago: executing program 4 (id=1143):
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000006c0)={@map, 0xffffffffffffffff, 0x14, 0x1}, 0x20)
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r0, &(0x7f0000000c80)=[{{&(0x7f0000000040)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}}], 0x1, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7c, 0x7c, 0x2, [@var, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{}, {}, {}, {}, {}, {}]}, @fwd, @volatile, @volatile, @volatile={0x0, 0x0, 0x0, 0x9, 0x2}]}}, 0x0, 0x96}, 0x20)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x2}, 0x28)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000600000000000000000018200000", @ANYRES32, @ANYBLOB="0000000000000000950000000000000095"], &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r1, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r3, &(0x7f0000000280)="ca", &(0x7f0000000000)=""/3, 0x2}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r3, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000240)={r3, &(0x7f0000000600)='V63', 0x0}, 0x20)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
select(0x300, 0x0, 0x0, &(0x7f0000000400)={0x0, 0x0, 0x2, 0x300}, &(0x7f0000000440)={0x0, 0x2710})
sendmmsg$inet6(r2, &(0x7f0000000780)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000034c0)='\x00', 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES16=r2], 0x1000f)

342.17988ms ago: executing program 4 (id=1144):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='cgroup.controllers\x00', 0x7a44, 0x1700)
socket$inet(0x2, 0x2, 0x7f)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010102000000000000000002000000240002800c000280040001003a00000014000180080001cd4bde2a0192000000000000000c001980080002"], 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendto$inet6(r0, &(0x7f0000000100)='-', 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @dev, 0x15}, 0x1c)
setsockopt$inet6_int(r0, 0x29, 0x4a, &(0x7f0000000040)=0x14, 0x4)
socketpair(0x1e, 0x2, 0xb, &(0x7f0000000140)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket(0x11, 0x3, 0x0)
ioctl$sock_inet_SIOCDELRT(r4, 0x890c, &(0x7f0000000000)={0x0, {0x2, 0x0, @dev}, {0x2, 0x0, @multicast2}, {0x2, 0x0, @broadcast}})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r4)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000240)={<r5=>0x0, 0x9c, &(0x7f00000003c0)=[@in6={0xa, 0x4e20, 0xd82, @local, 0xa4}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x3c}}, @in6={0xa, 0x4e21, 0x852, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x5}, @in6={0xa, 0x4e22, 0x0, @local, 0x7}, @in6={0xa, 0x4e20, 0x3, @private2, 0xfffffffc}, @in6={0xa, 0x4e21, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, 0xab1}]}, &(0x7f0000000280)=0x10)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r3, 0x84, 0x76, &(0x7f00000002c0)={r5, 0x3}, 0x8)

339.948048ms ago: executing program 2 (id=1145):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f00000004c0)={0x2a, 0x8, 0x6, 0xa, 0x6, 0x3, 0xbb, 0x3, 0x1b, 0x81, 0x5, 0x3, 0xcb, 0x2a}, 0xe)
sendmsg$NFNL_MSG_COMPAT_GET(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1200000}, 0xc, &(0x7f0000000100)={&(0x7f0000000280)=ANY=[@ANYBLOB="24000000000b0600bef099a672000000000000000007000002060001002e000000070001006c6f0000ae9032617b3b2e49dddf35a45e9ab499f2e229ced924d7d6c45cad0b90252495ff25bce64a2ebed3459995f7b9af76e7d9262438fbf411377b64ab1a6d8cc584ba0841bac3e43bb8fb623e7ff316d875bc2d88b29fa756df81f8ca525d56e329222e0684cce2136c2f20d2f85749be1a14fa648952df2543046226cca7f986f97885d68c00"], 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x2048001)
connect$inet(r0, &(0x7f0000000840)={0x2, 0x4e20, @loopback}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r4, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f00000008c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000900)=ANY=[@ANYBLOB="88000000031400032bbd7000ffdbdf250900020073797a3100000000080041007278650014003300766c616e3000000000000000000000000900020073797a300000000008004100727865001400330065727370616e300000010000000000000900020073797a320000000008004100727865001400330067656e65766531000000000000000000"], 0x88}, 0x1, 0x0, 0x0, 0x2400c080}, 0x2000c001)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x9c}}, 0x20000800)
getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f00000001c0)={@empty, @empty, <r5=>0x0}, &(0x7f0000000580)=0xc)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="1e00000008000000050000000300000000840000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r5, @ANYRES32, @ANYBLOB="0500000001000000020000000e00000009000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000780)=ANY=[@ANYRES16], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
getsockopt$llc_int(r7, 0x10c, 0x1, 0x0, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c060000000001002abd7000fcdbdf250a342002fe01ff0a00080000"], 0x1c}}, 0x0)
sendmsg$NFT_BATCH(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000"], 0xdc}}, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000500)={0x0, r3}, 0x8)

238.313988ms ago: executing program 1 (id=1146):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0) (async)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00') (async)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) (async)
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00), 0x8) (async)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000480)=r2, 0x2)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={r3, r1, 0x0, r0}, 0x10)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, 0x0)
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r4 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='ip6_vti0\x00', 0x10) (async)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='ip6_vti0\x00', 0x10)
sendmmsg$inet6(r4, &(0x7f0000000980)=[{{&(0x7f0000000340)={0xa, 0x4e21, 0xe48a, @dev={0xfe, 0x80, '\x00', 0x44}, 0x80000006}, 0x1c, &(0x7f0000000b40)=[{&(0x7f00000003c0)="8000079e4a334f46", 0x8}], 0x1}}], 0x1, 0x240000d4)
r5 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$EBT_SO_GET_INIT_ENTRIES(0xffffffffffffffff, 0x0, 0x83, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r6}, 0x10)
r8 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r7}, 0x8)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r8, @ANYBLOB=' \x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES32=r8, @ANYBLOB="1b0304cf"], 0x20) (async)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32, @ANYRES32=r8, @ANYBLOB=' \x00\x00\x00\x00\x00\x00\x00', @ANYRES32, @ANYRES32=r8, @ANYBLOB="1b0304cf"], 0x20)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x3000c89c) (async)
sendmsg$nl_route_sched(r5, 0x0, 0x3000c89c)

33.466169ms ago: executing program 1 (id=1147):
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x2000000, 0x12, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000200)="ba4c38af83b760a8f8a149f1f388", 0x0, 0x700, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000006d00)=ANY=[@ANYBLOB="f000000010001304000000000000000000000000000000000000000000000001ac00000000000000000000000000074e24000002000020000000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000032000000ac1414fe0000000000000000000000000000000000000000070000000000000000001000000000000400"/84], 0xf0}}, 0x804)
r2 = socket$kcm(0x10, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x5}, [@call={0x85, 0x0, 0x0, 0x8a}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, 0x0, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
mmap(&(0x7f000000b000/0x4000)=nil, 0x4000, 0x1000005, 0x8012, r4, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f0000858000/0x2000)=nil, 0x2000, 0x2000004, 0x12, r5, 0xc08ba000)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1000006, 0x12, r5, 0xe93f6000)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r6, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @broadcast}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r6, 0x0, 0x30, &(0x7f00000001c0)={0x9, {{0x2, 0xfffe, @multicast2}}, 0x1, 0x1, [{{0x2, 0x4e23, @loopback}}]}, 0x110)
mmap$xdp(&(0x7f0000c45000/0x4000)=nil, 0x4000, 0x7000005, 0x11, r5, 0x180000000)
recvmmsg(r3, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}, 0xa}], 0x1, 0x2b, 0x0)
r7 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500"/135], 0xfc}}, 0x0)
r8 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_RTHDR(r8, 0x29, 0x39, &(0x7f00000000c0)=ANY=[@ANYBLOB="0002020100000000ff"], 0x18)
connect$inet6(r8, &(0x7f0000000040)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)
setsockopt$inet6_int(r3, 0x29, 0x5, &(0x7f0000000100)=0x9, 0x4)
setsockopt$inet6_int(r3, 0x29, 0x4, &(0x7f0000000000)=0x1, 0x4)
sendto$inet6(r3, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000240)="b1ccee42fc3f3fb0a90aef372e5a0ec5bf2c3bc0cd457c853d988a7a0cc7d77e309b0021a3266d3651984c0fcc71e0be21f480186d8001bc4b972b04e4b065cf5e90f710ec0efd6acd3556640dc2537eaa897dbad0708f328ee554cb085f07bf8150f13cc928fc806c12dc9cbd402f1a37ddae6f39530b71b464bc89d7961808983634230ece1d0a040d1edb443f8984867c087bb6166f8e8261fc88abd23d10b2d4ffd3ec1cf011c0bdae8986ef08f9f06be3ce743f98af15bb45fecec7277acd72e6457c42", 0xc6}, {&(0x7f0000000100)="3ff7230ab05b60eb2e939d217482c3d2b9a5104500975c6ce0fc14", 0x1b}], 0x2}, 0x0)
r9 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r9, 0x0, 0x48b, &(0x7f0000000180)={0x0, 'syzkaller0\x00', 0x4}, 0x18)

0s ago: executing program 2 (id=1148):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0xb, 0x8c4b815a5465c2b1, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0) (fail_nth: 19)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="020e000010000000000000000004830008001200000001000000ff000000400000001ea0abff7f00000000000000d41f9ab9000100700000ebdf000008000000c4fc0000100000000000e2ffff1c004f030006000020080002000080f5008e24ce6e4ae300a5000003000500001e001e02"], 0x80}}, 0x4814)
r3 = socket$key(0xf, 0x3, 0x2)
sendmmsg(r3, &(0x7f0000000180), 0x229ffa1c4ce5369, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000100)='net_dev_xmit\x00', r2}, 0x18)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r4, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c)

kernel console output (not intermixed with test programs):

5374][ T6449] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.149143][ T6449] CPU: 1 UID: 0 PID: 6449 Comm: syz.1.171 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  117.149172][ T6449] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  117.149185][ T6449] Call Trace:
[  117.149193][ T6449]  <TASK>
[  117.149202][ T6449]  dump_stack_lvl+0x189/0x250
[  117.149240][ T6449]  ? __pfx____ratelimit+0x10/0x10
[  117.149265][ T6449]  ? __pfx_dump_stack_lvl+0x10/0x10
[  117.149299][ T6449]  ? __pfx__printk+0x10/0x10
[  117.149322][ T6449]  ? __might_fault+0xb0/0x130
[  117.149355][ T6449]  should_fail_ex+0x414/0x560
[  117.149387][ T6449]  _copy_from_iter+0x1db/0x16f0
[  117.149423][ T6449]  ? rcu_is_watching+0x15/0xb0
[  117.149457][ T6449]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  117.149481][ T6449]  ? __pfx__copy_from_iter+0x10/0x10
[  117.149513][ T6449]  ? __build_skb_around+0x257/0x3e0
[  117.149544][ T6449]  ? netlink_sendmsg+0x642/0xb30
[  117.149569][ T6449]  ? skb_put+0x11b/0x210
[  117.149601][ T6449]  netlink_sendmsg+0x6b2/0xb30
[  117.149638][ T6449]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.149669][ T6449]  ? aa_sock_msg_perm+0x94/0x160
[  117.149697][ T6449]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  117.149724][ T6449]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.149764][ T6449]  __sock_sendmsg+0x219/0x270
[  117.149789][ T6449]  ____sys_sendmsg+0x505/0x830
[  117.149825][ T6449]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.149865][ T6449]  ? import_iovec+0x74/0xa0
[  117.149888][ T6449]  ___sys_sendmsg+0x21f/0x2a0
[  117.149921][ T6449]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.149995][ T6449]  ? __fget_files+0x2a/0x420
[  117.150018][ T6449]  ? __fget_files+0x3a0/0x420
[  117.150056][ T6449]  __x64_sys_sendmsg+0x19b/0x260
[  117.150089][ T6449]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  117.150130][ T6449]  ? __pfx_ksys_write+0x10/0x10
[  117.150146][ T6449]  ? rcu_is_watching+0x15/0xb0
[  117.150183][ T6449]  ? do_syscall_64+0xbe/0x3b0
[  117.150213][ T6449]  do_syscall_64+0xfa/0x3b0
[  117.150237][ T6449]  ? lockdep_hardirqs_on+0x9c/0x150
[  117.150259][ T6449]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.150280][ T6449]  ? clear_bhb_loop+0x60/0xb0
[  117.150305][ T6449]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.150324][ T6449] RIP: 0033:0x7f696fd8e929
[  117.150342][ T6449] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  117.150364][ T6449] RSP: 002b:00007f6970c04038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.150385][ T6449] RAX: ffffffffffffffda RBX: 00007f696ffb5fa0 RCX: 00007f696fd8e929
[  117.150399][ T6449] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  117.150411][ T6449] RBP: 00007f6970c04090 R08: 0000000000000000 R09: 0000000000000000
[  117.150423][ T6449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  117.150435][ T6449] R13: 0000000000000000 R14: 00007f696ffb5fa0 R15: 00007fff86a83468
[  117.150465][ T6449]  </TASK>
[  117.657533][ T6442] xt_hashlimit: size too large, truncated to 1048576
[  117.718110][ T6456] sctp: [Deprecated]: syz.2.173 (pid 6456) Use of struct sctp_assoc_value in delayed_ack socket option.
[  117.718110][ T6456] Use struct sctp_sack_info instead
[  117.762289][ T6445] xt_hashlimit: size too large, truncated to 1048576
[  117.998840][ T6456] bond0: entered promiscuous mode
[  118.013680][ T6456] bond_slave_0: entered promiscuous mode
[  118.019890][ T6468] FAULT_INJECTION: forcing a failure.
[  118.019890][ T6468] name failslab, interval 1, probability 0, space 0, times 0
[  118.033003][ T6456] bond_slave_1: entered promiscuous mode
[  118.063405][ T6456] bond0: left promiscuous mode
[  118.068608][ T6456] bond_slave_0: left promiscuous mode
[  118.094406][ T6456] bond_slave_1: left promiscuous mode
[  118.103846][ T6468] CPU: 1 UID: 0 PID: 6468 Comm: syz.3.175 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  118.103885][ T6468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  118.103898][ T6468] Call Trace:
[  118.103906][ T6468]  <TASK>
[  118.103914][ T6468]  dump_stack_lvl+0x189/0x250
[  118.103952][ T6468]  ? __pfx____ratelimit+0x10/0x10
[  118.103978][ T6468]  ? __pfx_dump_stack_lvl+0x10/0x10
[  118.104010][ T6468]  ? __pfx__printk+0x10/0x10
[  118.104038][ T6468]  ? __pfx___might_resched+0x10/0x10
[  118.104075][ T6468]  should_fail_ex+0x414/0x560
[  118.104108][ T6468]  should_failslab+0xa8/0x100
[  118.104133][ T6468]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  118.104154][ T6468]  ? __alloc_skb+0x112/0x2d0
[  118.104191][ T6468]  __alloc_skb+0x112/0x2d0
[  118.104223][ T6468]  netlink_sendmsg+0x5c6/0xb30
[  118.104261][ T6468]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.104291][ T6468]  ? aa_sock_msg_perm+0x94/0x160
[  118.104320][ T6468]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  118.104346][ T6468]  ? __pfx_netlink_sendmsg+0x10/0x10
[  118.104374][ T6468]  __sock_sendmsg+0x219/0x270
[  118.104401][ T6468]  ____sys_sendmsg+0x505/0x830
[  118.104437][ T6468]  ? __pfx_____sys_sendmsg+0x10/0x10
[  118.104476][ T6468]  ? import_iovec+0x74/0xa0
[  118.104500][ T6468]  ___sys_sendmsg+0x21f/0x2a0
[  118.104532][ T6468]  ? __pfx____sys_sendmsg+0x10/0x10
[  118.104599][ T6468]  ? __fget_files+0x2a/0x420
[  118.104620][ T6468]  ? __fget_files+0x3a0/0x420
[  118.104653][ T6468]  __x64_sys_sendmsg+0x19b/0x260
[  118.104686][ T6468]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  118.104725][ T6468]  ? __pfx_ksys_write+0x10/0x10
[  118.104750][ T6468]  ? do_syscall_64+0xbe/0x3b0
[  118.104779][ T6468]  do_syscall_64+0xfa/0x3b0
[  118.104802][ T6468]  ? lockdep_hardirqs_on+0x9c/0x150
[  118.104825][ T6468]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.104844][ T6468]  ? clear_bhb_loop+0x60/0xb0
[  118.104880][ T6468]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  118.104899][ T6468] RIP: 0033:0x7feedf58e929
[  118.104918][ T6468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  118.104936][ T6468] RSP: 002b:00007feee03c7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  118.104957][ T6468] RAX: ffffffffffffffda RBX: 00007feedf7b6080 RCX: 00007feedf58e929
[  118.104972][ T6468] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  118.104984][ T6468] RBP: 00007feee03c7090 R08: 0000000000000000 R09: 0000000000000000
[  118.104996][ T6468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  118.105008][ T6468] R13: 0000000000000001 R14: 00007feedf7b6080 R15: 00007ffe5eaa1aa8
[  118.105040][ T6468]  </TASK>
[  119.039136][ T6493] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.167712][ T6487] IPVS: Unknown mcast interface: syzkaller0
[  119.621255][ T6493] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.699518][ T6519] ip6tnl1: entered promiscuous mode
[  119.711379][ T6519] ip6tnl1: entered allmulticast mode
[  119.732343][ T6519] team0: Device ip6tnl1 is of different type
[  119.950357][ T6493] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.047400][ T6530] FAULT_INJECTION: forcing a failure.
[  120.047400][ T6530] name failslab, interval 1, probability 0, space 0, times 0
[  120.090253][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: syz.0.191 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  120.090281][ T6530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  120.090293][ T6530] Call Trace:
[  120.090300][ T6530]  <TASK>
[  120.090309][ T6530]  dump_stack_lvl+0x189/0x250
[  120.090344][ T6530]  ? __pfx____ratelimit+0x10/0x10
[  120.090366][ T6530]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.090395][ T6530]  ? __pfx__printk+0x10/0x10
[  120.090422][ T6530]  ? ref_tracker_alloc+0x318/0x460
[  120.090451][ T6530]  should_fail_ex+0x414/0x560
[  120.090479][ T6530]  should_failslab+0xa8/0x100
[  120.090501][ T6530]  kmem_cache_alloc_noprof+0x73/0x3c0
[  120.090531][ T6530]  ? skb_clone+0x212/0x3a0
[  120.090563][ T6530]  skb_clone+0x212/0x3a0
[  120.090596][ T6530]  __netlink_deliver_tap+0x404/0x850
[  120.090633][ T6530]  ? netlink_deliver_tap+0x2e/0x1b0
[  120.090657][ T6530]  netlink_deliver_tap+0x19c/0x1b0
[  120.090681][ T6530]  netlink_unicast+0x72f/0x8d0
[  120.090721][ T6530]  netlink_sendmsg+0x805/0xb30
[  120.090755][ T6530]  ? __pfx_netlink_sendmsg+0x10/0x10
[  120.090782][ T6530]  ? aa_sock_msg_perm+0x94/0x160
[  120.090808][ T6530]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  120.090830][ T6530]  ? __pfx_netlink_sendmsg+0x10/0x10
[  120.090853][ T6530]  __sock_sendmsg+0x219/0x270
[  120.090876][ T6530]  ____sys_sendmsg+0x505/0x830
[  120.090908][ T6530]  ? __pfx_____sys_sendmsg+0x10/0x10
[  120.090945][ T6530]  ? import_iovec+0x74/0xa0
[  120.090968][ T6530]  ___sys_sendmsg+0x21f/0x2a0
[  120.090999][ T6530]  ? __pfx____sys_sendmsg+0x10/0x10
[  120.091065][ T6530]  ? __fget_files+0x2a/0x420
[  120.091085][ T6530]  ? __fget_files+0x3a0/0x420
[  120.091117][ T6530]  __x64_sys_sendmsg+0x19b/0x260
[  120.091148][ T6530]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  120.091186][ T6530]  ? __pfx_ksys_write+0x10/0x10
[  120.091201][ T6530]  ? rcu_is_watching+0x15/0xb0
[  120.091237][ T6530]  ? do_syscall_64+0xbe/0x3b0
[  120.091281][ T6530]  do_syscall_64+0xfa/0x3b0
[  120.091301][ T6530]  ? lockdep_hardirqs_on+0x9c/0x150
[  120.091321][ T6530]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.091338][ T6530]  ? clear_bhb_loop+0x60/0xb0
[  120.091379][ T6530]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.091397][ T6530] RIP: 0033:0x7f1c4858e929
[  120.091424][ T6530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.091438][ T6530] RSP: 002b:00007f1c4936c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  120.091456][ T6530] RAX: ffffffffffffffda RBX: 00007f1c487b5fa0 RCX: 00007f1c4858e929
[  120.091469][ T6530] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  120.091479][ T6530] RBP: 00007f1c4936c090 R08: 0000000000000000 R09: 0000000000000000
[  120.091490][ T6530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  120.091500][ T6530] R13: 0000000000000000 R14: 00007f1c487b5fa0 R15: 00007ffded047878
[  120.091531][ T6530]  </TASK>
[  120.401028][ T6532] __nla_validate_parse: 3 callbacks suppressed
[  120.401048][ T6532] netlink: 28 bytes leftover after parsing attributes in process `syz.3.192'.
[  120.463302][ T6532] netlink: 'syz.3.192': attribute type 7 has an invalid length.
[  120.492418][ T6532] netlink: 'syz.3.192': attribute type 8 has an invalid length.
[  120.616127][ T6532] netlink: 4 bytes leftover after parsing attributes in process `syz.3.192'.
[  120.780141][ T6532] gretap0: entered promiscuous mode
[  120.818318][ T6532] batadv_slave_1: entered promiscuous mode
[  120.876779][ T6493] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  121.096385][ T6548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.194'.
[  121.364973][ T6559] netlink: 12 bytes leftover after parsing attributes in process `syz.3.198'.
[  121.631772][ T1113] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  121.673544][ T1113] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  121.764322][ T1113] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  121.841485][   T59] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  121.947691][ T6568] IPVS: Unknown mcast interface: syzkaller0
[  122.046322][ T6579] FAULT_INJECTION: forcing a failure.
[  122.046322][ T6579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.092104][ T6579] CPU: 1 UID: 0 PID: 6579 Comm: syz.0.203 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  122.092144][ T6579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  122.092156][ T6579] Call Trace:
[  122.092164][ T6579]  <TASK>
[  122.092172][ T6579]  dump_stack_lvl+0x189/0x250
[  122.092208][ T6579]  ? __pfx____ratelimit+0x10/0x10
[  122.092231][ T6579]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.092260][ T6579]  ? __pfx__printk+0x10/0x10
[  122.092295][ T6579]  should_fail_ex+0x414/0x560
[  122.092324][ T6579]  _copy_from_user+0x2d/0xb0
[  122.092344][ T6579]  sctp_setsockopt+0x19f/0x1200
[  122.092387][ T6579]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  122.092414][ T6579]  do_sock_setsockopt+0x257/0x3e0
[  122.092446][ T6579]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  122.092479][ T6579]  ? __fget_files+0x2a/0x420
[  122.092511][ T6579]  __x64_sys_setsockopt+0x18b/0x220
[  122.092545][ T6579]  do_syscall_64+0xfa/0x3b0
[  122.092564][ T6579]  ? lockdep_hardirqs_on+0x9c/0x150
[  122.092591][ T6579]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.092612][ T6579]  ? clear_bhb_loop+0x60/0xb0
[  122.092637][ T6579]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.092656][ T6579] RIP: 0033:0x7f1c4858e929
[  122.092675][ T6579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.092691][ T6579] RSP: 002b:00007f1c4936c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  122.092722][ T6579] RAX: ffffffffffffffda RBX: 00007f1c487b5fa0 RCX: 00007f1c4858e929
[  122.092740][ T6579] RDX: 0000000000000018 RSI: 0000000000000084 RDI: 0000000000000003
[  122.092752][ T6579] RBP: 00007f1c4936c090 R08: 0000000000000008 R09: 0000000000000000
[  122.092764][ T6579] R10: 0000200000000300 R11: 0000000000000246 R12: 0000000000000001
[  122.092777][ T6579] R13: 0000000000000000 R14: 00007f1c487b5fa0 R15: 00007ffded047878
[  122.092815][ T6579]  </TASK>
[  122.419706][ T6583] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  122.966824][ T6583] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.085790][ T6597] netlink: 'syz.1.208': attribute type 12 has an invalid length.
[  123.124959][ T6597] netlink: 132 bytes leftover after parsing attributes in process `syz.1.208'.
[  123.253030][ T6583] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.265694][ T6616] netlink: 12 bytes leftover after parsing attributes in process `syz.3.212'.
[  123.501808][ T6583] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.947814][   T49] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.053708][   T59] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.261800][   T59] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.349059][   T59] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.402995][ T6646] netlink: 60 bytes leftover after parsing attributes in process `syz.1.213'.
[  124.435400][ T6640] IPVS: Unknown mcast interface: syzkaller0
[  125.317448][ T6660] tipc: Started in network mode
[  125.322554][ T6660] tipc: Node identity 4, cluster identity 4711
[  125.355460][ T6660] tipc: Node number set to 4
[  125.562197][ T6667] FAULT_INJECTION: forcing a failure.
[  125.562197][ T6667] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.600462][ T6667] CPU: 0 UID: 0 PID: 6667 Comm: syz.3.223 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  125.600492][ T6667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  125.600504][ T6667] Call Trace:
[  125.600512][ T6667]  <TASK>
[  125.600521][ T6667]  dump_stack_lvl+0x189/0x250
[  125.600557][ T6667]  ? __pfx____ratelimit+0x10/0x10
[  125.600582][ T6667]  ? __pfx_dump_stack_lvl+0x10/0x10
[  125.600614][ T6667]  ? __pfx__printk+0x10/0x10
[  125.600636][ T6667]  ? __might_fault+0xb0/0x130
[  125.600668][ T6667]  should_fail_ex+0x414/0x560
[  125.600698][ T6667]  _copy_from_iter+0x1db/0x16f0
[  125.600733][ T6667]  ? rcu_is_watching+0x15/0xb0
[  125.600766][ T6667]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  125.600788][ T6667]  ? __pfx__copy_from_iter+0x10/0x10
[  125.600820][ T6667]  ? __build_skb_around+0x257/0x3e0
[  125.600851][ T6667]  ? netlink_sendmsg+0x642/0xb30
[  125.600874][ T6667]  ? skb_put+0x11b/0x210
[  125.600905][ T6667]  netlink_sendmsg+0x6b2/0xb30
[  125.600940][ T6667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.600968][ T6667]  ? aa_sock_msg_perm+0x94/0x160
[  125.600995][ T6667]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  125.601020][ T6667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  125.601046][ T6667]  __sock_sendmsg+0x219/0x270
[  125.601072][ T6667]  ____sys_sendmsg+0x505/0x830
[  125.601107][ T6667]  ? __pfx_____sys_sendmsg+0x10/0x10
[  125.601146][ T6667]  ? import_iovec+0x74/0xa0
[  125.601168][ T6667]  ___sys_sendmsg+0x21f/0x2a0
[  125.601200][ T6667]  ? __pfx____sys_sendmsg+0x10/0x10
[  125.601277][ T6667]  ? __fget_files+0x2a/0x420
[  125.601304][ T6667]  ? __fget_files+0x3a0/0x420
[  125.601338][ T6667]  __x64_sys_sendmsg+0x19b/0x260
[  125.601371][ T6667]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  125.601412][ T6667]  ? __pfx_ksys_write+0x10/0x10
[  125.601428][ T6667]  ? rcu_is_watching+0x15/0xb0
[  125.601464][ T6667]  ? do_syscall_64+0xbe/0x3b0
[  125.601493][ T6667]  do_syscall_64+0xfa/0x3b0
[  125.601516][ T6667]  ? lockdep_hardirqs_on+0x9c/0x150
[  125.601538][ T6667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.601558][ T6667]  ? clear_bhb_loop+0x60/0xb0
[  125.601583][ T6667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  125.601602][ T6667] RIP: 0033:0x7feedf58e929
[  125.601620][ T6667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  125.601637][ T6667] RSP: 002b:00007feee03e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  125.601658][ T6667] RAX: ffffffffffffffda RBX: 00007feedf7b5fa0 RCX: 00007feedf58e929
[  125.601673][ T6667] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  125.601685][ T6667] RBP: 00007feee03e8090 R08: 0000000000000000 R09: 0000000000000000
[  125.601697][ T6667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  125.601709][ T6667] R13: 0000000000000000 R14: 00007feedf7b5fa0 R15: 00007ffe5eaa1aa8
[  125.601740][ T6667]  </TASK>
[  125.657554][ T6670] netlink: 12 bytes leftover after parsing attributes in process `syz.4.225'.
[  126.039553][ T6681] FAULT_INJECTION: forcing a failure.
[  126.039553][ T6681] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  126.085531][ T6681] CPU: 1 UID: 0 PID: 6681 Comm: syz.3.227 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  126.085559][ T6681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  126.085570][ T6681] Call Trace:
[  126.085578][ T6681]  <TASK>
[  126.085585][ T6681]  dump_stack_lvl+0x189/0x250
[  126.085620][ T6681]  ? __pfx____ratelimit+0x10/0x10
[  126.085643][ T6681]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.085672][ T6681]  ? __pfx__printk+0x10/0x10
[  126.085692][ T6681]  ? __might_fault+0xb0/0x130
[  126.085722][ T6681]  should_fail_ex+0x414/0x560
[  126.085751][ T6681]  _copy_from_iter+0x1db/0x16f0
[  126.085782][ T6681]  ? rcu_is_watching+0x15/0xb0
[  126.085812][ T6681]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  126.085833][ T6681]  ? __pfx__copy_from_iter+0x10/0x10
[  126.085861][ T6681]  ? __build_skb_around+0x257/0x3e0
[  126.085889][ T6681]  ? netlink_sendmsg+0x642/0xb30
[  126.085911][ T6681]  ? skb_put+0x11b/0x210
[  126.085939][ T6681]  netlink_sendmsg+0x6b2/0xb30
[  126.085972][ T6681]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.085999][ T6681]  ? aa_sock_msg_perm+0x94/0x160
[  126.086024][ T6681]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  126.086048][ T6681]  ? __pfx_netlink_sendmsg+0x10/0x10
[  126.086072][ T6681]  __sock_sendmsg+0x219/0x270
[  126.086096][ T6681]  ____sys_sendmsg+0x505/0x830
[  126.086146][ T6681]  ? __pfx_____sys_sendmsg+0x10/0x10
[  126.086186][ T6681]  ? import_iovec+0x74/0xa0
[  126.086231][ T6681]  ___sys_sendmsg+0x21f/0x2a0
[  126.086261][ T6681]  ? __pfx____sys_sendmsg+0x10/0x10
[  126.086324][ T6681]  ? __fget_files+0x2a/0x420
[  126.086344][ T6681]  ? __fget_files+0x3a0/0x420
[  126.086374][ T6681]  __x64_sys_sendmsg+0x19b/0x260
[  126.086404][ T6681]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  126.086441][ T6681]  ? __pfx_ksys_write+0x10/0x10
[  126.086456][ T6681]  ? rcu_is_watching+0x15/0xb0
[  126.086489][ T6681]  ? do_syscall_64+0xbe/0x3b0
[  126.086516][ T6681]  do_syscall_64+0xfa/0x3b0
[  126.086536][ T6681]  ? lockdep_hardirqs_on+0x9c/0x150
[  126.086557][ T6681]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.086579][ T6681]  ? clear_bhb_loop+0x60/0xb0
[  126.086601][ T6681]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.086619][ T6681] RIP: 0033:0x7feedf58e929
[  126.086635][ T6681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.086651][ T6681] RSP: 002b:00007feee03e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  126.086671][ T6681] RAX: ffffffffffffffda RBX: 00007feedf7b5fa0 RCX: 00007feedf58e929
[  126.086684][ T6681] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000004
[  126.086695][ T6681] RBP: 00007feee03e8090 R08: 0000000000000000 R09: 0000000000000000
[  126.086706][ T6681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.086717][ T6681] R13: 0000000000000000 R14: 00007feedf7b5fa0 R15: 00007ffe5eaa1aa8
[  126.086745][ T6681]  </TASK>
[  126.743077][ T6690] ieee802154 phy0 wpan0: encryption failed: -22
[  126.944871][ T6692] IPVS: Unknown mcast interface: syzkaller0
[  127.843865][ T6722] Driver unsupported XDP return value 0 on prog  (id 60) dev N/A, expect packet loss!
[  128.160993][ T6733] netlink: 12 bytes leftover after parsing attributes in process `syz.3.238'.
[  129.442919][ T6760] xt_limit: Overflow, try lower: 0/0
[  129.515530][ T6758] netlink: 8 bytes leftover after parsing attributes in process `syz.0.245'.
[  129.536831][ T6765] IPVS: Unknown mcast interface: syzkaller0
[  129.612347][ T6768] netlink: 8 bytes leftover after parsing attributes in process `syz.0.245'.
[  129.633133][ T6770] netlink: 12 bytes leftover after parsing attributes in process `syz.1.249'.
[  130.044623][ T6787] FAULT_INJECTION: forcing a failure.
[  130.044623][ T6787] name failslab, interval 1, probability 0, space 0, times 0
[  130.105055][ T6787] CPU: 1 UID: 0 PID: 6787 Comm: syz.4.254 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  130.105084][ T6787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.105096][ T6787] Call Trace:
[  130.105104][ T6787]  <TASK>
[  130.105112][ T6787]  dump_stack_lvl+0x189/0x250
[  130.105149][ T6787]  ? __pfx____ratelimit+0x10/0x10
[  130.105173][ T6787]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.105205][ T6787]  ? __pfx__printk+0x10/0x10
[  130.105230][ T6787]  ? __pfx___might_resched+0x10/0x10
[  130.105261][ T6787]  ? fs_reclaim_acquire+0x7d/0x100
[  130.105301][ T6787]  should_fail_ex+0x414/0x560
[  130.105329][ T6787]  should_failslab+0xa8/0x100
[  130.105352][ T6787]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  130.105372][ T6787]  ? __alloc_skb+0x112/0x2d0
[  130.105401][ T6787]  __alloc_skb+0x112/0x2d0
[  130.105429][ T6787]  alloc_skb_with_frags+0xca/0x890
[  130.105460][ T6787]  ? __lock_acquire+0xab9/0xd20
[  130.105494][ T6787]  sock_alloc_send_pskb+0x857/0x990
[  130.105543][ T6787]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  130.105579][ T6787]  ? dev_get_by_index+0x22/0x2e0
[  130.105598][ T6787]  ? dev_get_by_index+0x22/0x2e0
[  130.105624][ T6787]  packet_sendmsg+0x3672/0x53f0
[  130.105665][ T6787]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  130.105708][ T6787]  ? __pfx___might_resched+0x10/0x10
[  130.105736][ T6787]  ? __lock_acquire+0xab9/0xd20
[  130.105777][ T6787]  ? __pfx_packet_sendmsg+0x10/0x10
[  130.105802][ T6787]  ? aa_sk_perm+0x81e/0x950
[  130.105830][ T6787]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  130.105872][ T6787]  ? aa_sock_msg_perm+0x94/0x160
[  130.105897][ T6787]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  130.105921][ T6787]  ? __pfx_packet_sendmsg+0x10/0x10
[  130.105949][ T6787]  __sock_sendmsg+0x219/0x270
[  130.105973][ T6787]  __sys_sendto+0x3bd/0x520
[  130.106001][ T6787]  ? __pfx___sys_sendto+0x10/0x10
[  130.106023][ T6787]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  130.106060][ T6787]  ? __fget_files+0x3a0/0x420
[  130.106093][ T6787]  ? ksys_write+0x22a/0x250
[  130.106113][ T6787]  ? __pfx_ksys_write+0x10/0x10
[  130.106127][ T6787]  ? rcu_is_watching+0x15/0xb0
[  130.106162][ T6787]  __x64_sys_sendto+0xde/0x100
[  130.106190][ T6787]  do_syscall_64+0xfa/0x3b0
[  130.106211][ T6787]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.106232][ T6787]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.106250][ T6787]  ? clear_bhb_loop+0x60/0xb0
[  130.106274][ T6787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.106292][ T6787] RIP: 0033:0x7fcb15f8e929
[  130.106310][ T6787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.106325][ T6787] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  130.106346][ T6787] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  130.106360][ T6787] RDX: 0000000000000012 RSI: 0000200000000080 RDI: 0000000000000003
[  130.106371][ T6787] RBP: 00007fcb16db8090 R08: 0000200000000200 R09: 0000000000000014
[  130.106384][ T6787] R10: 0000000000040080 R11: 0000000000000246 R12: 0000000000000001
[  130.106395][ T6787] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  130.106425][ T6787]  </TASK>
[  130.823133][ T6802] FAULT_INJECTION: forcing a failure.
[  130.823133][ T6802] name failslab, interval 1, probability 0, space 0, times 0
[  130.844069][ T6802] CPU: 1 UID: 0 PID: 6802 Comm: syz.1.259 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  130.844116][ T6802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.844127][ T6802] Call Trace:
[  130.844134][ T6802]  <TASK>
[  130.844142][ T6802]  dump_stack_lvl+0x189/0x250
[  130.844176][ T6802]  ? __pfx____ratelimit+0x10/0x10
[  130.844199][ T6802]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.844228][ T6802]  ? __pfx__printk+0x10/0x10
[  130.844255][ T6802]  ? __pfx___might_resched+0x10/0x10
[  130.844283][ T6802]  ? fs_reclaim_acquire+0x7d/0x100
[  130.844310][ T6802]  should_fail_ex+0x414/0x560
[  130.844339][ T6802]  should_failslab+0xa8/0x100
[  130.844361][ T6802]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  130.844380][ T6802]  ? __alloc_skb+0x112/0x2d0
[  130.844410][ T6802]  __alloc_skb+0x112/0x2d0
[  130.844440][ T6802]  netlink_ack+0x146/0xa50
[  130.844460][ T6802]  ? __pfx_genl_rcv_msg+0x10/0x10
[  130.844506][ T6802]  netlink_rcv_skb+0x28c/0x470
[  130.844530][ T6802]  ? __pfx_genl_rcv_msg+0x10/0x10
[  130.844560][ T6802]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  130.844601][ T6802]  ? down_read+0x1ad/0x2e0
[  130.844628][ T6802]  genl_rcv+0x28/0x40
[  130.844655][ T6802]  netlink_unicast+0x75b/0x8d0
[  130.844687][ T6802]  netlink_sendmsg+0x805/0xb30
[  130.844719][ T6802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.844747][ T6802]  ? aa_sock_msg_perm+0x94/0x160
[  130.844773][ T6802]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  130.844797][ T6802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  130.844821][ T6802]  __sock_sendmsg+0x219/0x270
[  130.844846][ T6802]  ____sys_sendmsg+0x505/0x830
[  130.844880][ T6802]  ? __pfx_____sys_sendmsg+0x10/0x10
[  130.844915][ T6802]  ? import_iovec+0x74/0xa0
[  130.844938][ T6802]  ___sys_sendmsg+0x21f/0x2a0
[  130.844968][ T6802]  ? __pfx____sys_sendmsg+0x10/0x10
[  130.845032][ T6802]  ? __fget_files+0x2a/0x420
[  130.845053][ T6802]  ? __fget_files+0x3a0/0x420
[  130.845091][ T6802]  __x64_sys_sendmsg+0x19b/0x260
[  130.845123][ T6802]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  130.845161][ T6802]  ? __pfx_ksys_write+0x10/0x10
[  130.845177][ T6802]  ? rcu_is_watching+0x15/0xb0
[  130.845212][ T6802]  ? do_syscall_64+0xbe/0x3b0
[  130.845239][ T6802]  do_syscall_64+0xfa/0x3b0
[  130.845261][ T6802]  ? lockdep_hardirqs_on+0x9c/0x150
[  130.845282][ T6802]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.845301][ T6802]  ? clear_bhb_loop+0x60/0xb0
[  130.845325][ T6802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.845343][ T6802] RIP: 0033:0x7f696fd8e929
[  130.845360][ T6802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.845376][ T6802] RSP: 002b:00007f6970c04038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  130.845396][ T6802] RAX: ffffffffffffffda RBX: 00007f696ffb5fa0 RCX: 00007f696fd8e929
[  130.845410][ T6802] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000004
[  130.845421][ T6802] RBP: 00007f6970c04090 R08: 0000000000000000 R09: 0000000000000000
[  130.845433][ T6802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  130.845444][ T6802] R13: 0000000000000000 R14: 00007f696ffb5fa0 R15: 00007fff86a83468
[  130.845473][ T6802]  </TASK>
[  131.290324][ T6809] netlink: 12 bytes leftover after parsing attributes in process `syz.4.262'.
[  131.460120][ T6817] netlink: 136 bytes leftover after parsing attributes in process `syz.3.258'.
[  131.502171][ T6823] FAULT_INJECTION: forcing a failure.
[  131.502171][ T6823] name failslab, interval 1, probability 0, space 0, times 0
[  131.548901][ T6823] CPU: 1 UID: 0 PID: 6823 Comm: syz.0.266 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  131.548930][ T6823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  131.548941][ T6823] Call Trace:
[  131.548949][ T6823]  <TASK>
[  131.548957][ T6823]  dump_stack_lvl+0x189/0x250
[  131.548993][ T6823]  ? __pfx____ratelimit+0x10/0x10
[  131.549017][ T6823]  ? __pfx_dump_stack_lvl+0x10/0x10
[  131.549047][ T6823]  ? __pfx__printk+0x10/0x10
[  131.549071][ T6823]  ? __pfx___might_resched+0x10/0x10
[  131.549100][ T6823]  ? fs_reclaim_acquire+0x7d/0x100
[  131.549128][ T6823]  should_fail_ex+0x414/0x560
[  131.549157][ T6823]  should_failslab+0xa8/0x100
[  131.549179][ T6823]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  131.549198][ T6823]  ? __local_bh_enable_ip+0x12d/0x1c0
[  131.549225][ T6823]  ? __alloc_skb+0x112/0x2d0
[  131.549254][ T6823]  __alloc_skb+0x112/0x2d0
[  131.549284][ T6823]  batadv_netlink_set_mesh+0xc90/0x1210
[  131.549322][ T6823]  genl_family_rcv_msg_doit+0x215/0x300
[  131.549361][ T6823]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  131.549406][ T6823]  ? bpf_lsm_capable+0x9/0x20
[  131.549423][ T6823]  ? security_capable+0x7e/0x2e0
[  131.549454][ T6823]  genl_rcv_msg+0x60e/0x790
[  131.549490][ T6823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.549517][ T6823]  ? ref_tracker_free+0x63a/0x7d0
[  131.549540][ T6823]  ? __pfx_batadv_pre_doit+0x10/0x10
[  131.549567][ T6823]  ? __pfx_batadv_netlink_set_mesh+0x10/0x10
[  131.549595][ T6823]  ? __pfx_batadv_post_doit+0x10/0x10
[  131.549624][ T6823]  ? __pfx_ref_tracker_free+0x10/0x10
[  131.549661][ T6823]  netlink_rcv_skb+0x208/0x470
[  131.549686][ T6823]  ? __pfx_genl_rcv_msg+0x10/0x10
[  131.549723][ T6823]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  131.549766][ T6823]  ? down_read+0x1ad/0x2e0
[  131.549794][ T6823]  genl_rcv+0x28/0x40
[  131.549820][ T6823]  netlink_unicast+0x75b/0x8d0
[  131.549854][ T6823]  netlink_sendmsg+0x805/0xb30
[  131.549889][ T6823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.549917][ T6823]  ? aa_sock_msg_perm+0x94/0x160
[  131.549943][ T6823]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  131.549967][ T6823]  ? __pfx_netlink_sendmsg+0x10/0x10
[  131.549992][ T6823]  __sock_sendmsg+0x219/0x270
[  131.550025][ T6823]  ____sys_sendmsg+0x505/0x830
[  131.550059][ T6823]  ? __pfx_____sys_sendmsg+0x10/0x10
[  131.550098][ T6823]  ? import_iovec+0x74/0xa0
[  131.550120][ T6823]  ___sys_sendmsg+0x21f/0x2a0
[  131.550151][ T6823]  ? __pfx____sys_sendmsg+0x10/0x10
[  131.550219][ T6823]  ? __fget_files+0x2a/0x420
[  131.550239][ T6823]  ? __fget_files+0x3a0/0x420
[  131.550271][ T6823]  __x64_sys_sendmsg+0x19b/0x260
[  131.550302][ T6823]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  131.550341][ T6823]  ? __pfx_ksys_write+0x10/0x10
[  131.550356][ T6823]  ? rcu_is_watching+0x15/0xb0
[  131.550392][ T6823]  ? do_syscall_64+0xbe/0x3b0
[  131.550420][ T6823]  do_syscall_64+0xfa/0x3b0
[  131.550441][ T6823]  ? lockdep_hardirqs_on+0x9c/0x150
[  131.550462][ T6823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.550481][ T6823]  ? clear_bhb_loop+0x60/0xb0
[  131.550516][ T6823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  131.550533][ T6823] RIP: 0033:0x7f1c4858e929
[  131.550549][ T6823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.550564][ T6823] RSP: 002b:00007f1c4936c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  131.550583][ T6823] RAX: ffffffffffffffda RBX: 00007f1c487b5fa0 RCX: 00007f1c4858e929
[  131.550595][ T6823] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000004
[  131.550606][ T6823] RBP: 00007f1c4936c090 R08: 0000000000000000 R09: 0000000000000000
[  131.550637][ T6823] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.550648][ T6823] R13: 0000000000000000 R14: 00007f1c487b5fa0 R15: 00007ffded047878
[  131.550679][ T6823]  </TASK>
[  131.931745][ T6827] netlink: 24 bytes leftover after parsing attributes in process `syz.2.263'.
[  132.545563][ T6845] netlink: 4 bytes leftover after parsing attributes in process `syz.1.270'.
[  132.556800][ T6840] IPVS: Unknown mcast interface: syzkaller0
[  132.703729][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  132.710097][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  133.210858][ T6865] netlink: 12 bytes leftover after parsing attributes in process `syz.3.277'.
[  133.544601][ T6873] netlink: 4 bytes leftover after parsing attributes in process `syz.0.280'.
[  133.566438][ T6876] netlink: 4 bytes leftover after parsing attributes in process `syz.1.281'.
[  133.936430][ T6888] FAULT_INJECTION: forcing a failure.
[  133.936430][ T6888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.950910][ T6888] CPU: 0 UID: 0 PID: 6888 Comm: syz.2.285 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  133.950941][ T6888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.950954][ T6888] Call Trace:
[  133.950962][ T6888]  <TASK>
[  133.950971][ T6888]  dump_stack_lvl+0x189/0x250
[  133.951008][ T6888]  ? __pfx____ratelimit+0x10/0x10
[  133.951032][ T6888]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.951064][ T6888]  ? __pfx__printk+0x10/0x10
[  133.951088][ T6888]  ? __might_fault+0xb0/0x130
[  133.951121][ T6888]  should_fail_ex+0x414/0x560
[  133.951148][ T6888]  _copy_from_iter+0x1db/0x16f0
[  133.951179][ T6888]  ? rcu_is_watching+0x15/0xb0
[  133.951209][ T6888]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  133.951229][ T6888]  ? __pfx__copy_from_iter+0x10/0x10
[  133.951258][ T6888]  ? __build_skb_around+0x257/0x3e0
[  133.951299][ T6888]  ? netlink_sendmsg+0x642/0xb30
[  133.951319][ T6888]  ? skb_put+0x11b/0x210
[  133.951346][ T6888]  netlink_sendmsg+0x6b2/0xb30
[  133.951378][ T6888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.951403][ T6888]  ? aa_sock_msg_perm+0x94/0x160
[  133.951428][ T6888]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  133.951451][ T6888]  ? __pfx_netlink_sendmsg+0x10/0x10
[  133.951474][ T6888]  __sock_sendmsg+0x219/0x270
[  133.951496][ T6888]  ____sys_sendmsg+0x505/0x830
[  133.951577][ T6888]  ? __pfx_____sys_sendmsg+0x10/0x10
[  133.951639][ T6888]  ? import_iovec+0x74/0xa0
[  133.951660][ T6888]  ___sys_sendmsg+0x21f/0x2a0
[  133.951690][ T6888]  ? __pfx____sys_sendmsg+0x10/0x10
[  133.951754][ T6888]  ? __fget_files+0x2a/0x420
[  133.951773][ T6888]  ? __fget_files+0x3a0/0x420
[  133.951805][ T6888]  __x64_sys_sendmsg+0x19b/0x260
[  133.951835][ T6888]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  133.951873][ T6888]  ? __pfx_ksys_write+0x10/0x10
[  133.951888][ T6888]  ? rcu_is_watching+0x15/0xb0
[  133.951921][ T6888]  ? do_syscall_64+0xbe/0x3b0
[  133.951948][ T6888]  do_syscall_64+0xfa/0x3b0
[  133.951969][ T6888]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.951990][ T6888]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.952008][ T6888]  ? clear_bhb_loop+0x60/0xb0
[  133.952031][ T6888]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.952061][ T6888] RIP: 0033:0x7f16edd8e929
[  133.952077][ T6888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.952092][ T6888] RSP: 002b:00007f16eeca3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  133.952111][ T6888] RAX: ffffffffffffffda RBX: 00007f16edfb5fa0 RCX: 00007f16edd8e929
[  133.952124][ T6888] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000004
[  133.952135][ T6888] RBP: 00007f16eeca3090 R08: 0000000000000000 R09: 0000000000000000
[  133.952146][ T6888] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.952156][ T6888] R13: 0000000000000000 R14: 00007f16edfb5fa0 R15: 00007ffc399f7618
[  133.952184][ T6888]  </TASK>
[  134.589673][ T6903] xt_CT: You must specify a L4 protocol and not use inversions on it
[  134.627929][ T6904] xt_CT: You must specify a L4 protocol and not use inversions on it
[  134.659811][ T6894] IPVS: Unknown mcast interface: syzkaller0
[  134.691934][ T6909] netlink: 12 bytes leftover after parsing attributes in process `syz.4.292'.
[  134.931537][ T6917] ieee802154 phy0 wpan0: encryption failed: -22
[  135.470748][ T6939] FAULT_INJECTION: forcing a failure.
[  135.470748][ T6939] name failslab, interval 1, probability 0, space 0, times 0
[  135.522529][ T6939] CPU: 1 UID: 0 PID: 6939 Comm: syz.1.303 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  135.522559][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  135.522571][ T6939] Call Trace:
[  135.522578][ T6939]  <TASK>
[  135.522586][ T6939]  dump_stack_lvl+0x189/0x250
[  135.522622][ T6939]  ? __pfx____ratelimit+0x10/0x10
[  135.522644][ T6939]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.522674][ T6939]  ? __pfx__printk+0x10/0x10
[  135.522700][ T6939]  ? __pfx___might_resched+0x10/0x10
[  135.522729][ T6939]  ? fs_reclaim_acquire+0x7d/0x100
[  135.522757][ T6939]  should_fail_ex+0x414/0x560
[  135.522786][ T6939]  should_failslab+0xa8/0x100
[  135.522809][ T6939]  kmem_cache_alloc_noprof+0x73/0x3c0
[  135.522840][ T6939]  ? security_inode_alloc+0x39/0x330
[  135.522872][ T6939]  security_inode_alloc+0x39/0x330
[  135.522900][ T6939]  inode_init_always_gfp+0x9ed/0xdc0
[  135.522928][ T6939]  ? __pfx_sock_alloc_inode+0x10/0x10
[  135.522948][ T6939]  alloc_inode+0x82/0x1b0
[  135.522970][ T6939]  __sock_create+0x12d/0x9f0
[  135.523004][ T6939]  udp_sock_create6+0xcb/0x690
[  135.523037][ T6939]  ? __pfx_udp_sock_create6+0x10/0x10
[  135.523070][ T6939]  ? __pfx___nla_validate_parse+0x10/0x10
[  135.523105][ T6939]  fou_nl_add_doit+0x157/0x690
[  135.523133][ T6939]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  135.523177][ T6939]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  135.523217][ T6939]  genl_family_rcv_msg_doit+0x215/0x300
[  135.523254][ T6939]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  135.523297][ T6939]  ? bpf_lsm_capable+0x9/0x20
[  135.523314][ T6939]  ? security_capable+0x7e/0x2e0
[  135.523345][ T6939]  genl_rcv_msg+0x60e/0x790
[  135.523381][ T6939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  135.523417][ T6939]  ? ref_tracker_free+0x63a/0x7d0
[  135.523445][ T6939]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  135.523467][ T6939]  ? __pfx_ref_tracker_free+0x10/0x10
[  135.523502][ T6939]  netlink_rcv_skb+0x208/0x470
[  135.523526][ T6939]  ? __pfx_genl_rcv_msg+0x10/0x10
[  135.523556][ T6939]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  135.523596][ T6939]  ? down_read+0x1ad/0x2e0
[  135.523622][ T6939]  genl_rcv+0x28/0x40
[  135.523649][ T6939]  netlink_unicast+0x75b/0x8d0
[  135.523679][ T6939]  netlink_sendmsg+0x805/0xb30
[  135.523711][ T6939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.523737][ T6939]  ? aa_sock_msg_perm+0x94/0x160
[  135.523763][ T6939]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  135.523786][ T6939]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.523811][ T6939]  __sock_sendmsg+0x219/0x270
[  135.523836][ T6939]  ____sys_sendmsg+0x505/0x830
[  135.523870][ T6939]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.523908][ T6939]  ? import_iovec+0x74/0xa0
[  135.523931][ T6939]  ___sys_sendmsg+0x21f/0x2a0
[  135.523961][ T6939]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.524027][ T6939]  ? __fget_files+0x2a/0x420
[  135.524048][ T6939]  ? __fget_files+0x3a0/0x420
[  135.524081][ T6939]  __x64_sys_sendmsg+0x19b/0x260
[  135.524114][ T6939]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  135.524153][ T6939]  ? __pfx_ksys_write+0x10/0x10
[  135.524168][ T6939]  ? rcu_is_watching+0x15/0xb0
[  135.524204][ T6939]  ? do_syscall_64+0xbe/0x3b0
[  135.524232][ T6939]  do_syscall_64+0xfa/0x3b0
[  135.524252][ T6939]  ? lockdep_hardirqs_on+0x9c/0x150
[  135.524273][ T6939]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.524291][ T6939]  ? clear_bhb_loop+0x60/0xb0
[  135.524315][ T6939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.524333][ T6939] RIP: 0033:0x7f696fd8e929
[  135.524351][ T6939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.524367][ T6939] RSP: 002b:00007f6970c04038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.524396][ T6939] RAX: ffffffffffffffda RBX: 00007f696ffb5fa0 RCX: 00007f696fd8e929
[  135.524410][ T6939] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  135.524421][ T6939] RBP: 00007f6970c04090 R08: 0000000000000000 R09: 0000000000000000
[  135.524433][ T6939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.524443][ T6939] R13: 0000000000000000 R14: 00007f696ffb5fa0 R15: 00007fff86a83468
[  135.524474][ T6939]  </TASK>
[  135.557982][ T6943] netlink: 'syz.2.304': attribute type 4 has an invalid length.
[  135.667206][ T6939] socket: no more sockets
[  136.109724][ T6946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.305'.
[  136.377798][ T6956] netlink: 'syz.0.309': attribute type 4 has an invalid length.
[  136.433904][ T6950] IPVS: Unknown mcast interface: syzkaller0
[  137.572575][ T6984] netlink: 'syz.0.319': attribute type 11 has an invalid length.
[  137.673910][ T6987] FAULT_INJECTION: forcing a failure.
[  137.673910][ T6987] name failslab, interval 1, probability 0, space 0, times 0
[  137.691134][ T6987] CPU: 1 UID: 0 PID: 6987 Comm: syz.4.320 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  137.691161][ T6987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  137.691173][ T6987] Call Trace:
[  137.691181][ T6987]  <TASK>
[  137.691189][ T6987]  dump_stack_lvl+0x189/0x250
[  137.691224][ T6987]  ? __pfx____ratelimit+0x10/0x10
[  137.691247][ T6987]  ? __pfx_dump_stack_lvl+0x10/0x10
[  137.691277][ T6987]  ? __pfx__printk+0x10/0x10
[  137.691300][ T6987]  ? __pfx___might_resched+0x10/0x10
[  137.691329][ T6987]  ? fs_reclaim_acquire+0x7d/0x100
[  137.691356][ T6987]  should_fail_ex+0x414/0x560
[  137.691386][ T6987]  should_failslab+0xa8/0x100
[  137.691408][ T6987]  __kmalloc_noprof+0xcb/0x4f0
[  137.691425][ T6987]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  137.691469][ T6987]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  137.691507][ T6987]  genl_family_rcv_msg_doit+0xb8/0x300
[  137.691543][ T6987]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  137.691575][ T6987]  ? rcu_is_watching+0x15/0xb0
[  137.691607][ T6987]  ? apparmor_capable+0x137/0x1b0
[  137.691638][ T6987]  ? bpf_lsm_capable+0x9/0x20
[  137.691654][ T6987]  ? security_capable+0x7e/0x2e0
[  137.691684][ T6987]  genl_rcv_msg+0x60e/0x790
[  137.691720][ T6987]  ? __pfx_genl_rcv_msg+0x10/0x10
[  137.691746][ T6987]  ? ref_tracker_free+0x63a/0x7d0
[  137.691769][ T6987]  ? __pfx_batadv_pre_doit+0x10/0x10
[  137.691800][ T6987]  ? __pfx_batadv_netlink_set_mesh+0x10/0x10
[  137.691840][ T6987]  ? __pfx_batadv_post_doit+0x10/0x10
[  137.691867][ T6987]  ? __pfx_ref_tracker_free+0x10/0x10
[  137.691901][ T6987]  netlink_rcv_skb+0x208/0x470
[  137.691924][ T6987]  ? __pfx_genl_rcv_msg+0x10/0x10
[  137.691970][ T6987]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  137.692012][ T6987]  ? down_read+0x1ad/0x2e0
[  137.692051][ T6987]  genl_rcv+0x28/0x40
[  137.692076][ T6987]  netlink_unicast+0x75b/0x8d0
[  137.692106][ T6987]  netlink_sendmsg+0x805/0xb30
[  137.692138][ T6987]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.692164][ T6987]  ? aa_sock_msg_perm+0x94/0x160
[  137.692206][ T6987]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  137.692230][ T6987]  ? __pfx_netlink_sendmsg+0x10/0x10
[  137.692255][ T6987]  __sock_sendmsg+0x219/0x270
[  137.692279][ T6987]  ____sys_sendmsg+0x505/0x830
[  137.692313][ T6987]  ? __pfx_____sys_sendmsg+0x10/0x10
[  137.692351][ T6987]  ? import_iovec+0x74/0xa0
[  137.692373][ T6987]  ___sys_sendmsg+0x21f/0x2a0
[  137.692404][ T6987]  ? __pfx____sys_sendmsg+0x10/0x10
[  137.692479][ T6987]  ? __fget_files+0x2a/0x420
[  137.692500][ T6987]  ? __fget_files+0x3a0/0x420
[  137.692532][ T6987]  __x64_sys_sendmsg+0x19b/0x260
[  137.692564][ T6987]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  137.692602][ T6987]  ? __pfx_ksys_write+0x10/0x10
[  137.692617][ T6987]  ? rcu_is_watching+0x15/0xb0
[  137.692652][ T6987]  ? do_syscall_64+0xbe/0x3b0
[  137.692679][ T6987]  do_syscall_64+0xfa/0x3b0
[  137.692700][ T6987]  ? lockdep_hardirqs_on+0x9c/0x150
[  137.692721][ T6987]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.692740][ T6987]  ? clear_bhb_loop+0x60/0xb0
[  137.692763][ T6987]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.692781][ T6987] RIP: 0033:0x7fcb15f8e929
[  137.692798][ T6987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.692814][ T6987] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.692834][ T6987] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  137.692847][ T6987] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000004
[  137.692859][ T6987] RBP: 00007fcb16db8090 R08: 0000000000000000 R09: 0000000000000000
[  137.692870][ T6987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.692881][ T6987] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  137.692912][ T6987]  </TASK>
[  138.440501][ T7000] netlink: 8 bytes leftover after parsing attributes in process `syz.4.324'.
[  138.544003][ T6998] netlink: 60 bytes leftover after parsing attributes in process `syz.4.324'.
[  139.100060][ T7019] IPVS: Unknown mcast interface: syzkaller0
[  139.109999][ T7023] netlink: 12 bytes leftover after parsing attributes in process `syz.2.330'.
[  139.199637][ T7023] netlink: 64 bytes leftover after parsing attributes in process `syz.2.330'.
[  139.271593][ T7023] netlink: 8 bytes leftover after parsing attributes in process `syz.2.330'.
[  140.013946][ T7041] trusted_key: syz.3.338 sent an empty control message without MSG_MORE.
[  140.389845][ T7059] netlink: 'syz.4.339': attribute type 21 has an invalid length.
[  140.398306][ T7059] netlink: 8 bytes leftover after parsing attributes in process `syz.4.339'.
[  140.590033][ T7067] netlink: 132 bytes leftover after parsing attributes in process `syz.2.343'.
[  140.622898][ T7068] bond0: entered promiscuous mode
[  140.628084][ T7068] bond_slave_0: entered promiscuous mode
[  140.700710][ T7068] bond_slave_1: entered promiscuous mode
[  140.728256][ T7068] batadv_slave_0: entered promiscuous mode
[  140.764942][ T7068] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  140.813725][ T7068] Cannot create hsr debugfs directory
[  140.841963][ T7068] hsr1: entered promiscuous mode
[  141.133921][ T7084] IPVS: Unknown mcast interface: syzkaller0
[  141.275481][ T7096] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  141.765089][ T7111] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  142.103119][ T5161] IPVS: starting estimator thread 0...
[  142.227267][ T7121] IPVS: using max 26 ests per chain, 62400 per kthread
[  142.745030][ T7143] lo speed is unknown, defaulting to 1000
[  142.751367][ T7143] lo speed is unknown, defaulting to 1000
[  142.760614][ T7143] lo speed is unknown, defaulting to 1000
[  142.786691][ T7143] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  142.902271][ T7143] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  143.035157][ T5161] IPVS: starting estimator thread 0...
[  143.154037][ T7156] IPVS: using max 31 ests per chain, 74400 per kthread
[  143.174215][ T7143] lo speed is unknown, defaulting to 1000
[  143.196212][ T7143] lo speed is unknown, defaulting to 1000
[  143.230977][ T7143] lo speed is unknown, defaulting to 1000
[  143.245210][ T7143] lo speed is unknown, defaulting to 1000
[  143.257206][ T7143] lo speed is unknown, defaulting to 1000
[  143.458316][ T7171] FAULT_INJECTION: forcing a failure.
[  143.458316][ T7171] name failslab, interval 1, probability 0, space 0, times 0
[  143.471937][ T7171] CPU: 1 UID: 0 PID: 7171 Comm: syz.4.373 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  143.471955][ T7171] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.471981][ T7171] Call Trace:
[  143.471986][ T7171]  <TASK>
[  143.471992][ T7171]  dump_stack_lvl+0x189/0x250
[  143.472021][ T7171]  ? __pfx____ratelimit+0x10/0x10
[  143.472038][ T7171]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.472061][ T7171]  ? __pfx__printk+0x10/0x10
[  143.472080][ T7171]  ? __pfx___might_resched+0x10/0x10
[  143.472107][ T7171]  should_fail_ex+0x414/0x560
[  143.472128][ T7171]  should_failslab+0xa8/0x100
[  143.472145][ T7171]  kmem_cache_alloc_noprof+0x73/0x3c0
[  143.472168][ T7171]  ? sk_prot_alloc+0x57/0x220
[  143.472191][ T7171]  sk_prot_alloc+0x57/0x220
[  143.472209][ T7171]  ? sk_alloc+0x24/0x370
[  143.472238][ T7171]  sk_alloc+0x3a/0x370
[  143.472273][ T7171]  inet_create+0x76b/0x1000
[  143.472299][ T7171]  ? inet_create+0x97/0x1000
[  143.472327][ T7171]  __sock_create+0x4b3/0x9f0
[  143.472362][ T7171]  udp_sock_create4+0xbe/0x4b0
[  143.472388][ T7171]  ? __pfx_udp_sock_create4+0x10/0x10
[  143.472414][ T7171]  ? __pfx___nla_validate_parse+0x10/0x10
[  143.472453][ T7171]  fou_nl_add_doit+0x16c/0x690
[  143.472477][ T7171]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  143.472510][ T7171]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  143.472539][ T7171]  genl_family_rcv_msg_doit+0x215/0x300
[  143.472567][ T7171]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  143.472599][ T7171]  ? bpf_lsm_capable+0x9/0x20
[  143.472612][ T7171]  ? security_capable+0x7e/0x2e0
[  143.472654][ T7171]  genl_rcv_msg+0x60e/0x790
[  143.472681][ T7171]  ? __pfx_genl_rcv_msg+0x10/0x10
[  143.472701][ T7171]  ? ref_tracker_free+0x63a/0x7d0
[  143.472719][ T7171]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  143.472738][ T7171]  ? __pfx_ref_tracker_free+0x10/0x10
[  143.472771][ T7171]  netlink_rcv_skb+0x208/0x470
[  143.472789][ T7171]  ? __pfx_genl_rcv_msg+0x10/0x10
[  143.472813][ T7171]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  143.472844][ T7171]  ? down_read+0x1ad/0x2e0
[  143.472866][ T7171]  genl_rcv+0x28/0x40
[  143.472886][ T7171]  netlink_unicast+0x75b/0x8d0
[  143.472911][ T7171]  netlink_sendmsg+0x805/0xb30
[  143.472937][ T7171]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.472958][ T7171]  ? aa_sock_msg_perm+0x94/0x160
[  143.472978][ T7171]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  143.472997][ T7171]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.473021][ T7171]  __sock_sendmsg+0x219/0x270
[  143.473039][ T7171]  ____sys_sendmsg+0x505/0x830
[  143.473065][ T7171]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.473094][ T7171]  ? import_iovec+0x74/0xa0
[  143.473111][ T7171]  ___sys_sendmsg+0x21f/0x2a0
[  143.473134][ T7171]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.473184][ T7171]  ? __fget_files+0x2a/0x420
[  143.473200][ T7171]  ? __fget_files+0x3a0/0x420
[  143.473224][ T7171]  __x64_sys_sendmsg+0x19b/0x260
[  143.473248][ T7171]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  143.473277][ T7171]  ? __pfx_ksys_write+0x10/0x10
[  143.473288][ T7171]  ? rcu_is_watching+0x15/0xb0
[  143.473316][ T7171]  ? do_syscall_64+0xbe/0x3b0
[  143.473336][ T7171]  do_syscall_64+0xfa/0x3b0
[  143.473353][ T7171]  ? lockdep_hardirqs_on+0x9c/0x150
[  143.473369][ T7171]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.473383][ T7171]  ? clear_bhb_loop+0x60/0xb0
[  143.473401][ T7171]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.473415][ T7171] RIP: 0033:0x7fcb15f8e929
[  143.473429][ T7171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.473453][ T7171] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.473475][ T7171] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  143.473491][ T7171] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  143.473504][ T7171] RBP: 00007fcb16db8090 R08: 0000000000000000 R09: 0000000000000000
[  143.473516][ T7171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.473528][ T7171] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  143.473562][ T7171]  </TASK>
[  145.163162][ T7199] netlink: 248 bytes leftover after parsing attributes in process `syz.3.382'.
[  145.965694][ T7223] netlink: 'syz.0.389': attribute type 2 has an invalid length.
[  145.973385][ T7223] netlink: 'syz.0.389': attribute type 1 has an invalid length.
[  146.006029][ T7223] netlink: 224 bytes leftover after parsing attributes in process `syz.0.389'.
[  146.348148][ T5836] Bluetooth: hci4: link tx timeout
[  146.353826][ T5836] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  146.606774][ T7245] FAULT_INJECTION: forcing a failure.
[  146.606774][ T7245] name failslab, interval 1, probability 0, space 0, times 0
[  146.635570][ T7245] CPU: 1 UID: 0 PID: 7245 Comm: syz.3.393 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  146.635600][ T7245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.635613][ T7245] Call Trace:
[  146.635621][ T7245]  <TASK>
[  146.635630][ T7245]  dump_stack_lvl+0x189/0x250
[  146.635668][ T7245]  ? __pfx____ratelimit+0x10/0x10
[  146.635693][ T7245]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.635732][ T7245]  ? __pfx__printk+0x10/0x10
[  146.635762][ T7245]  ? __pfx___might_resched+0x10/0x10
[  146.635793][ T7245]  ? fs_reclaim_acquire+0x7d/0x100
[  146.635823][ T7245]  should_fail_ex+0x414/0x560
[  146.635855][ T7245]  should_failslab+0xa8/0x100
[  146.635879][ T7245]  __kmalloc_cache_noprof+0x70/0x3d0
[  146.635900][ T7245]  ? fou_nl_add_doit+0x1be/0x690
[  146.635931][ T7245]  fou_nl_add_doit+0x1be/0x690
[  146.635960][ T7245]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  146.636010][ T7245]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  146.636053][ T7245]  genl_family_rcv_msg_doit+0x215/0x300
[  146.636094][ T7245]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  146.636142][ T7245]  ? bpf_lsm_capable+0x9/0x20
[  146.636160][ T7245]  ? security_capable+0x7e/0x2e0
[  146.636194][ T7245]  genl_rcv_msg+0x60e/0x790
[  146.636233][ T7245]  ? __pfx_genl_rcv_msg+0x10/0x10
[  146.636262][ T7245]  ? ref_tracker_free+0x63a/0x7d0
[  146.636288][ T7245]  ? __pfx_fou_nl_add_doit+0x10/0x10
[  146.636315][ T7245]  ? __pfx_ref_tracker_free+0x10/0x10
[  146.636355][ T7245]  netlink_rcv_skb+0x208/0x470
[  146.636383][ T7245]  ? __pfx_genl_rcv_msg+0x10/0x10
[  146.636416][ T7245]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  146.636462][ T7245]  ? down_read+0x1ad/0x2e0
[  146.636492][ T7245]  genl_rcv+0x28/0x40
[  146.636521][ T7245]  netlink_unicast+0x75b/0x8d0
[  146.636557][ T7245]  netlink_sendmsg+0x805/0xb30
[  146.636600][ T7245]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.636630][ T7245]  ? aa_sock_msg_perm+0x94/0x160
[  146.636658][ T7245]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  146.636684][ T7245]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.636717][ T7245]  __sock_sendmsg+0x219/0x270
[  146.636743][ T7245]  ____sys_sendmsg+0x505/0x830
[  146.636781][ T7245]  ? __pfx_____sys_sendmsg+0x10/0x10
[  146.636822][ T7245]  ? import_iovec+0x74/0xa0
[  146.636847][ T7245]  ___sys_sendmsg+0x21f/0x2a0
[  146.636880][ T7245]  ? __pfx____sys_sendmsg+0x10/0x10
[  146.636954][ T7245]  ? __fget_files+0x2a/0x420
[  146.636976][ T7245]  ? __fget_files+0x3a0/0x420
[  146.637012][ T7245]  __x64_sys_sendmsg+0x19b/0x260
[  146.637046][ T7245]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  146.637088][ T7245]  ? __pfx_ksys_write+0x10/0x10
[  146.637104][ T7245]  ? rcu_is_watching+0x15/0xb0
[  146.637142][ T7245]  ? do_syscall_64+0xbe/0x3b0
[  146.637172][ T7245]  do_syscall_64+0xfa/0x3b0
[  146.637195][ T7245]  ? lockdep_hardirqs_on+0x9c/0x150
[  146.637218][ T7245]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.637238][ T7245]  ? clear_bhb_loop+0x60/0xb0
[  146.637264][ T7245]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.637283][ T7245] RIP: 0033:0x7feedf58e929
[  146.637302][ T7245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.637319][ T7245] RSP: 002b:00007feee03e8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  146.637340][ T7245] RAX: ffffffffffffffda RBX: 00007feedf7b5fa0 RCX: 00007feedf58e929
[  146.637360][ T7245] RDX: 0000000000000000 RSI: 0000200000000180 RDI: 0000000000000003
[  146.637373][ T7245] RBP: 00007feee03e8090 R08: 0000000000000000 R09: 0000000000000000
[  146.637385][ T7245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  146.637397][ T7245] R13: 0000000000000000 R14: 00007feedf7b5fa0 R15: 00007ffe5eaa1aa8
[  146.637430][ T7245]  </TASK>
[  147.484393][ T7258] nbd: must specify a size in bytes for the device
[  147.938519][ T7248] Bluetooth: hci0: Opcode 0x0c20 failed: -4
[  148.122693][ T7277] syzkaller0: entered promiscuous mode
[  148.133785][ T7277] syzkaller0: entered allmulticast mode
[  148.266473][ T7284] netlink: 'syz.3.404': attribute type 1 has an invalid length.
[  148.375107][ T5149] Bluetooth: hci4: command 0x0405 tx timeout
[  148.771087][ T7303] netlink: 'syz.3.406': attribute type 9 has an invalid length.
[  148.816039][ T7303] netlink: 'syz.3.406': attribute type 7 has an invalid length.
[  148.857408][ T7303] netlink: 'syz.3.406': attribute type 8 has an invalid length.
[  149.176093][ T5836] Bluetooth: hci0: command 0x0c20 tx timeout
[  150.903085][ T7327] netlink: 8 bytes leftover after parsing attributes in process `syz.1.410'.
[  150.922452][ T7327] netlink: 20 bytes leftover after parsing attributes in process `syz.1.410'.
[  150.998377][ T7330] gretap0: entered promiscuous mode
[  151.051521][ T7330] vlan2: entered promiscuous mode
[  151.730408][ T7350] syzkaller0: entered promiscuous mode
[  151.763090][ T7350] syzkaller0: entered allmulticast mode
[  152.403432][ T7370] FAULT_INJECTION: forcing a failure.
[  152.403432][ T7370] name failslab, interval 1, probability 0, space 0, times 0
[  152.417010][ T7370] CPU: 1 UID: 0 PID: 7370 Comm: syz.4.428 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  152.417036][ T7370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  152.417047][ T7370] Call Trace:
[  152.417055][ T7370]  <TASK>
[  152.417062][ T7370]  dump_stack_lvl+0x189/0x250
[  152.417098][ T7370]  ? __pfx____ratelimit+0x10/0x10
[  152.417120][ T7370]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.417150][ T7370]  ? __pfx__printk+0x10/0x10
[  152.417177][ T7370]  ? __pfx___might_resched+0x10/0x10
[  152.417211][ T7370]  should_fail_ex+0x414/0x560
[  152.417247][ T7370]  should_failslab+0xa8/0x100
[  152.417269][ T7370]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  152.417288][ T7370]  ? __alloc_skb+0x112/0x2d0
[  152.417318][ T7370]  __alloc_skb+0x112/0x2d0
[  152.417347][ T7370]  netlink_sendmsg+0x5c6/0xb30
[  152.417381][ T7370]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.417407][ T7370]  ? aa_sock_msg_perm+0x94/0x160
[  152.417433][ T7370]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  152.417457][ T7370]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.417481][ T7370]  __sock_sendmsg+0x219/0x270
[  152.417504][ T7370]  ____sys_sendmsg+0x505/0x830
[  152.417537][ T7370]  ? __pfx_____sys_sendmsg+0x10/0x10
[  152.417573][ T7370]  ? import_iovec+0x74/0xa0
[  152.417595][ T7370]  ___sys_sendmsg+0x21f/0x2a0
[  152.417624][ T7370]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.417706][ T7370]  ? __fget_files+0x2a/0x420
[  152.417728][ T7370]  ? __fget_files+0x3a0/0x420
[  152.417762][ T7370]  __x64_sys_sendmsg+0x19b/0x260
[  152.417795][ T7370]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  152.417837][ T7370]  ? __pfx_ksys_write+0x10/0x10
[  152.417854][ T7370]  ? rcu_is_watching+0x15/0xb0
[  152.417892][ T7370]  ? do_syscall_64+0xbe/0x3b0
[  152.417922][ T7370]  do_syscall_64+0xfa/0x3b0
[  152.417945][ T7370]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.417968][ T7370]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.417989][ T7370]  ? clear_bhb_loop+0x60/0xb0
[  152.418015][ T7370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.418035][ T7370] RIP: 0033:0x7fcb15f8e929
[  152.418054][ T7370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.418071][ T7370] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.418093][ T7370] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  152.418108][ T7370] RDX: 0000000000000000 RSI: 00002000000016c0 RDI: 0000000000000003
[  152.418121][ T7370] RBP: 00007fcb16db8090 R08: 0000000000000000 R09: 0000000000000000
[  152.418134][ T7370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.418146][ T7370] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  152.418178][ T7370]  </TASK>
[  153.248889][ T7392] x_tables: duplicate underflow at hook 1
[  154.855238][ T7412] lo speed is unknown, defaulting to 1000
[  155.552270][ T7421] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.666001][ T7443] FAULT_INJECTION: forcing a failure.
[  155.666001][ T7443] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  155.679534][ T7443] CPU: 1 UID: 0 PID: 7443 Comm: syz.0.453 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  155.679558][ T7443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  155.679569][ T7443] Call Trace:
[  155.679575][ T7443]  <TASK>
[  155.679582][ T7443]  dump_stack_lvl+0x189/0x250
[  155.679614][ T7443]  ? __pfx____ratelimit+0x10/0x10
[  155.679634][ T7443]  ? __pfx_dump_stack_lvl+0x10/0x10
[  155.679661][ T7443]  ? __pfx__printk+0x10/0x10
[  155.679680][ T7443]  ? __might_fault+0xb0/0x130
[  155.679707][ T7443]  should_fail_ex+0x414/0x560
[  155.679734][ T7443]  _copy_from_iter+0x3f5/0x16f0
[  155.679764][ T7443]  ? rcu_is_watching+0x15/0xb0
[  155.679797][ T7443]  ? __pfx__copy_from_iter+0x10/0x10
[  155.679824][ T7443]  ? __build_skb_around+0x257/0x3e0
[  155.679850][ T7443]  ? netlink_sendmsg+0x642/0xb30
[  155.679870][ T7443]  ? skb_put+0x11b/0x210
[  155.679897][ T7443]  netlink_sendmsg+0x6b2/0xb30
[  155.679927][ T7443]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.679958][ T7443]  ? aa_sock_msg_perm+0x94/0x160
[  155.679982][ T7443]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  155.680004][ T7443]  ? __pfx_netlink_sendmsg+0x10/0x10
[  155.680026][ T7443]  __sock_sendmsg+0x219/0x270
[  155.680048][ T7443]  ____sys_sendmsg+0x505/0x830
[  155.680077][ T7443]  ? __pfx_____sys_sendmsg+0x10/0x10
[  155.680111][ T7443]  ? import_iovec+0x74/0xa0
[  155.680131][ T7443]  ___sys_sendmsg+0x21f/0x2a0
[  155.680158][ T7443]  ? __pfx____sys_sendmsg+0x10/0x10
[  155.680216][ T7443]  ? __fget_files+0x2a/0x420
[  155.680235][ T7443]  ? __fget_files+0x3a0/0x420
[  155.680264][ T7443]  __x64_sys_sendmsg+0x19b/0x260
[  155.680292][ T7443]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  155.680325][ T7443]  ? __pfx_ksys_write+0x10/0x10
[  155.680347][ T7443]  ? do_syscall_64+0xbe/0x3b0
[  155.680371][ T7443]  do_syscall_64+0xfa/0x3b0
[  155.680391][ T7443]  ? lockdep_hardirqs_on+0x9c/0x150
[  155.680409][ T7443]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.680426][ T7443]  ? clear_bhb_loop+0x60/0xb0
[  155.680447][ T7443]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  155.680464][ T7443] RIP: 0033:0x7f1c4858e929
[  155.680480][ T7443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  155.680493][ T7443] RSP: 002b:00007f1c4936c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  155.680511][ T7443] RAX: ffffffffffffffda RBX: 00007f1c487b5fa0 RCX: 00007f1c4858e929
[  155.680524][ T7443] RDX: 0000000000000000 RSI: 00002000000016c0 RDI: 0000000000000003
[  155.680535][ T7443] RBP: 00007f1c4936c090 R08: 0000000000000000 R09: 0000000000000000
[  155.680544][ T7443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  155.680554][ T7443] R13: 0000000000000000 R14: 00007f1c487b5fa0 R15: 00007ffded047878
[  155.680580][ T7443]  </TASK>
[  156.142198][ T7421] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.291752][ T7449] lo speed is unknown, defaulting to 1000
[  156.307404][ T7456] netlink: 4 bytes leftover after parsing attributes in process `syz.1.458'.
[  156.342894][ T7421] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.423737][ T7456] 8021q: adding VLAN 0 to HW filter on device team1
[  156.454586][ T7421] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.762694][ T1113] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.783611][ T1113] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.840926][ T1113] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.901223][ T7450] netlink: 12 bytes leftover after parsing attributes in process `syz.3.455'.
[  157.004943][ T7449] bond1: entered promiscuous mode
[  157.010086][ T7449] bond1: entered allmulticast mode
[  157.019446][ T7449] 8021q: adding VLAN 0 to HW filter on device bond1
[  157.028499][ T1113] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  157.289240][ T7469] netlink: 12 bytes leftover after parsing attributes in process `syz.0.461'.
[  157.834405][ T7492] netlink: 12 bytes leftover after parsing attributes in process `syz.4.468'.
[  158.108637][ T7497] netdevsim netdevsim1 _@��X: renamed from netdevsim0 (while UP)
[  158.608051][ T7515] netlink: 24 bytes leftover after parsing attributes in process `syz.3.474'.
[  158.779002][ T7520] netlink: 8 bytes leftover after parsing attributes in process `syz.4.475'.
[  159.204409][ T7533] FAULT_INJECTION: forcing a failure.
[  159.204409][ T7533] name failslab, interval 1, probability 0, space 0, times 0
[  159.300133][ T7533] CPU: 1 UID: 0 PID: 7533 Comm: syz.0.479 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  159.300160][ T7533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  159.300171][ T7533] Call Trace:
[  159.300178][ T7533]  <TASK>
[  159.300186][ T7533]  dump_stack_lvl+0x189/0x250
[  159.300219][ T7533]  ? __pfx____ratelimit+0x10/0x10
[  159.300241][ T7533]  ? __pfx_dump_stack_lvl+0x10/0x10
[  159.300270][ T7533]  ? __pfx__printk+0x10/0x10
[  159.300296][ T7533]  ? ref_tracker_alloc+0x318/0x460
[  159.300324][ T7533]  should_fail_ex+0x414/0x560
[  159.300352][ T7533]  should_failslab+0xa8/0x100
[  159.300373][ T7533]  kmem_cache_alloc_noprof+0x73/0x3c0
[  159.300412][ T7533]  ? skb_clone+0x212/0x3a0
[  159.300444][ T7533]  skb_clone+0x212/0x3a0
[  159.300475][ T7533]  __netlink_deliver_tap+0x404/0x850
[  159.300510][ T7533]  ? netlink_deliver_tap+0x2e/0x1b0
[  159.300535][ T7533]  netlink_deliver_tap+0x19c/0x1b0
[  159.300559][ T7533]  netlink_unicast+0x72f/0x8d0
[  159.300591][ T7533]  netlink_sendmsg+0x805/0xb30
[  159.300625][ T7533]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.300653][ T7533]  ? aa_sock_msg_perm+0x94/0x160
[  159.300728][ T7533]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  159.300751][ T7533]  ? __pfx_netlink_sendmsg+0x10/0x10
[  159.300776][ T7533]  __sock_sendmsg+0x219/0x270
[  159.300798][ T7533]  ____sys_sendmsg+0x505/0x830
[  159.300832][ T7533]  ? __pfx_____sys_sendmsg+0x10/0x10
[  159.300868][ T7533]  ? import_iovec+0x74/0xa0
[  159.300890][ T7533]  ___sys_sendmsg+0x21f/0x2a0
[  159.300921][ T7533]  ? __pfx____sys_sendmsg+0x10/0x10
[  159.300984][ T7533]  ? __fget_files+0x2a/0x420
[  159.301005][ T7533]  ? __fget_files+0x3a0/0x420
[  159.301037][ T7533]  __x64_sys_sendmsg+0x19b/0x260
[  159.301068][ T7533]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  159.301106][ T7533]  ? __pfx_ksys_write+0x10/0x10
[  159.301130][ T7533]  ? do_syscall_64+0xbe/0x3b0
[  159.301158][ T7533]  do_syscall_64+0xfa/0x3b0
[  159.301179][ T7533]  ? lockdep_hardirqs_on+0x9c/0x150
[  159.301200][ T7533]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.301218][ T7533]  ? clear_bhb_loop+0x60/0xb0
[  159.301242][ T7533]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.301260][ T7533] RIP: 0033:0x7f1c4858e929
[  159.301277][ T7533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.301292][ T7533] RSP: 002b:00007f1c4936c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  159.301312][ T7533] RAX: ffffffffffffffda RBX: 00007f1c487b5fa0 RCX: 00007f1c4858e929
[  159.301326][ T7533] RDX: 0000000000000000 RSI: 00002000000016c0 RDI: 0000000000000003
[  159.301337][ T7533] RBP: 00007f1c4936c090 R08: 0000000000000000 R09: 0000000000000000
[  159.301349][ T7533] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.301360][ T7533] R13: 0000000000000000 R14: 00007f1c487b5fa0 R15: 00007ffded047878
[  159.301390][ T7533]  </TASK>
[  159.779447][ T7537] netlink: 76 bytes leftover after parsing attributes in process `syz.1.481'.
[  159.909336][ T7542] netlink: 'syz.0.482': attribute type 1 has an invalid length.
[  159.932877][ T7542] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  159.940441][ T7542] IPv6: NLM_F_CREATE should be set when creating new route
[  160.016481][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.0.482'.
[  160.076352][ T7548] netlink: 24 bytes leftover after parsing attributes in process `syz.1.484'.
[  160.815084][ T7567] netlink: 20 bytes leftover after parsing attributes in process `syz.0.489'.
[  162.591346][ T7623] __nla_validate_parse: 4 callbacks suppressed
[  162.591368][ T7623] netlink: 24 bytes leftover after parsing attributes in process `syz.4.500'.
[  162.644512][ T7622] netlink: 4 bytes leftover after parsing attributes in process `syz.4.500'.
[  162.656915][ T7622] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  162.664609][ T7622] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.678621][ T7622] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  162.694833][ T7622] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.827446][ T7631] SET target dimension over the limit!
[  162.899694][ T7625] netlink: 'syz.3.504': attribute type 10 has an invalid length.
[  163.173531][ T7640] lo speed is unknown, defaulting to 1000
[  163.246054][ T7646] netlink: 51 bytes leftover after parsing attributes in process `syz.0.508'.
[  163.318482][ T7648] openvswitch: netlink: Message has 8 unknown bytes.
[  163.511668][ T7656] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  163.560191][ T7656] netlink: 16 bytes leftover after parsing attributes in process `syz.3.509'.
[  163.853840][ T7665] Bluetooth: MGMT ver 1.23
[  163.924648][ T7663] syzkaller0: entered promiscuous mode
[  163.930240][ T7663] syzkaller0: entered allmulticast mode
[  163.970110][ T7665] bridge0: port 3(ipvlan4) entered blocking state
[  163.992355][ T7665] bridge0: port 3(ipvlan4) entered disabled state
[  164.000488][ T7665] ipvlan4: entered allmulticast mode
[  164.006149][ T7665] bridge0: entered allmulticast mode
[  164.016563][ T7665] ipvlan4: left allmulticast mode
[  164.021642][ T7665] bridge0: left allmulticast mode
[  164.393007][ T7678] sctp: [Deprecated]: syz.2.523 (pid 7678) Use of struct sctp_assoc_value in delayed_ack socket option.
[  164.393007][ T7678] Use struct sctp_sack_info instead
[  164.739451][ T7694] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.527'.
[  165.904957][ T5149] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  165.905715][ T5836] Bluetooth: hci0: command 0x0c20 tx timeout
[  165.935460][ T7701] netlink: 'syz.3.530': attribute type 10 has an invalid length.
[  165.993974][ T7701] netlink: 40 bytes leftover after parsing attributes in process `syz.3.530'.
[  166.042850][ T7701] batadv0: entered promiscuous mode
[  166.063613][ T7701] batadv0: entered allmulticast mode
[  166.084547][ T7701] bridge0: port 3(batadv0) entered blocking state
[  166.114265][ T7701] bridge0: port 3(batadv0) entered disabled state
[  166.152833][ T7701] bridge0: port 3(batadv0) entered blocking state
[  166.159648][ T7701] bridge0: port 3(batadv0) entered forwarding state
[  166.205712][ T7709] netlink: 4 bytes leftover after parsing attributes in process `syz.4.534'.
[  166.355076][   T12] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  166.364967][   T12] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  166.545473][ T7721] veth0: entered promiscuous mode
[  166.560891][ T7721] netlink: 4 bytes leftover after parsing attributes in process `syz.1.539'.
[  166.571559][ T7722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.540'.
[  166.582435][ T7718] sctp: [Deprecated]: syz.4.538 (pid 7718) Use of struct sctp_assoc_value in delayed_ack socket option.
[  166.582435][ T7718] Use struct sctp_sack_info instead
[  166.597779][ T7722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.540'.
[  167.752816][ T7758] netlink: 'syz.3.553': attribute type 13 has an invalid length.
[  168.016400][ T7766] netlink: 'syz.0.556': attribute type 25 has an invalid length.
[  168.045018][ T7766] netlink: 184 bytes leftover after parsing attributes in process `syz.0.556'.
[  169.824480][ T7830] nbd216: detected capacity change from 0 to 63
[  169.849105][ T7827] syzkaller0: entered promiscuous mode
[  169.884137][ T7827] syzkaller0: entered allmulticast mode
[  170.068260][ T5836] block nbd216: Receive control failed (result -104)
[  171.533311][ T7868] netlink: 136 bytes leftover after parsing attributes in process `syz.1.581'.
[  171.533381][ T7865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.582'.
[  171.542586][ T7871] netlink: 4 bytes leftover after parsing attributes in process `syz.0.582'.
[  171.551184][ T7868] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  172.585670][ T7920] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[  173.324495][ T7951] netlink: 44 bytes leftover after parsing attributes in process `syz.3.603'.
[  173.324938][ T7948] syzkaller0: create flow: hash 3107959683 index 1
[  173.611155][ T7954] syzkaller0: delete flow: hash 3107959683 index 1
[  175.379024][ T7983] netlink: 'syz.3.610': attribute type 13 has an invalid length.
[  175.573944][ T5149] Bluetooth: hci4: command 0x0405 tx timeout
[  175.619904][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.641185][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.706607][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.737054][ T7983] bridge0: port 3(batadv0) entered disabled state
[  175.743902][ T7983] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.752650][ T7983] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.770979][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.796128][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.815066][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.825241][ T8008] netlink: 28 bytes leftover after parsing attributes in process `syz.1.614'.
[  175.845054][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.855395][ T7986] netlink: 12 bytes leftover after parsing attributes in process `syz.4.611'.
[  175.966517][ T7983] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  176.210466][ T7983] syz.3.610 (7983) used greatest stack depth: 19992 bytes left
[  176.275932][   T59] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.312431][   T49] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.445251][   T49] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.476406][   T49] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  176.488420][ T8016] IPVS: Unknown mcast interface: syzkaller0
[  176.672031][ T8027] !
: renamed from dummy0 (while UP)
[  176.771128][ T8032] netlink: 'syz.0.621': attribute type 4 has an invalid length.
[  176.825173][ T8038] netlink: 'syz.0.621': attribute type 4 has an invalid length.
[  177.421302][ T8038] syz.0.621 (8038) used greatest stack depth: 19928 bytes left
[  178.274592][ T8097] erspan0: entered promiscuous mode
[  178.307327][ T8097] batman_adv: batadv0: Adding interface: macvlan2
[  178.314954][ T8099] netlink: 'syz.3.632': attribute type 72 has an invalid length.
[  178.338495][ T8097] batman_adv: batadv0: The MTU of interface macvlan2 is too small (1450) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  178.380657][ T8097] batman_adv: batadv0: Interface activated: macvlan2
[  178.442451][ T8109] netlink: 'syz.2.633': attribute type 1 has an invalid length.
[  178.518597][ T8113] __nla_validate_parse: 61 callbacks suppressed
[  178.518619][ T8113] netlink: 4 bytes leftover after parsing attributes in process `syz.4.635'.
[  178.527257][ T8114] netlink: 28 bytes leftover after parsing attributes in process `syz.2.633'.
[  178.598529][ T8117] netlink: 8 bytes leftover after parsing attributes in process `syz.4.635'.
[  178.748147][ T8109] 8021q: adding VLAN 0 to HW filter on device bond1
[  178.783566][ T8126] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.638'.
[  178.840976][ T8115] veth3: entered promiscuous mode
[  178.867054][ T8120] erspan0: entered allmulticast mode
[  178.880625][ T8122] IPVS: Unknown mcast interface: syzkaller0
[  178.919963][ T8129] netlink: 'syz.1.639': attribute type 3 has an invalid length.
[  178.931861][ T8129] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.639'.
[  178.944286][ T8127] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.957198][ T8127] bridge0: port 2(bridge_slave_1) entered disabled state
[  179.253142][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.297882][ T8124] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.509026][ T8068] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  179.526128][ T8068] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  179.722116][ T8068] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  179.751779][ T8068] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  179.791150][ T8153] netlink: 'syz.2.646': attribute type 72 has an invalid length.
[  179.824204][ T8153] netlink: 36 bytes leftover after parsing attributes in process `syz.2.646'.
[  180.172084][ T8172] pim6reg: entered allmulticast mode
[  180.179243][ T8174] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  180.410707][ T8188] IPVS: Unknown mcast interface: syzkaller0
[  180.553529][ T8196] netlink: 'syz.2.658': attribute type 2 has an invalid length.
[  180.567697][ T8196] netlink: 'syz.2.658': attribute type 1 has an invalid length.
[  180.581514][ T8196] netlink: 44 bytes leftover after parsing attributes in process `syz.2.658'.
[  180.712356][ T8208] netlink: 'syz.2.662': attribute type 72 has an invalid length.
[  180.738351][ T8208] netlink: 36 bytes leftover after parsing attributes in process `syz.2.662'.
[  180.900812][ T8223] netlink: 'syz.4.666': attribute type 1 has an invalid length.
[  180.909160][ T8223] netlink: 'syz.4.666': attribute type 1 has an invalid length.
[  180.921797][ T8223] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-tlb(5)
[  180.942369][ T8224] netlink: 'syz.2.665': attribute type 1 has an invalid length.
[  180.953075][ T8224] netlink: 180 bytes leftover after parsing attributes in process `syz.2.665'.
[  181.176338][ T8228] netlink: 4 bytes leftover after parsing attributes in process `syz.0.669'.
[  181.661430][ T1113] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  181.710610][ T8074] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.740047][ T8074] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.790793][ T8074] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  181.847750][ T8261] tipc: Started in network mode
[  181.859365][ T8261] tipc: Node identity , cluster identity 4711
[  181.864420][ T8259] netlink: 'syz.3.679': attribute type 6 has an invalid length.
[  181.976676][ T8261] 8021q: VLANs not supported on vcan0
[  183.530635][ T8326] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  183.692717][ T8340] __nla_validate_parse: 5 callbacks suppressed
[  183.692736][ T8340] netlink: 36 bytes leftover after parsing attributes in process `syz.3.694'.
[  183.750960][ T8340] netlink: 8 bytes leftover after parsing attributes in process `syz.3.694'.
[  183.957256][ T8348] netlink: 36 bytes leftover after parsing attributes in process `syz.4.705'.
[  183.958689][ T8349] netlink: 4 bytes leftover after parsing attributes in process `syz.3.704'.
[  184.022770][ T8349] bridge0: port 3(batadv0) entered disabled state
[  184.062159][ T8349] bridge_slave_0: left allmulticast mode
[  184.071615][ T8349] bridge_slave_0: left promiscuous mode
[  184.081146][ T8349] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.092374][ T8349] bridge_slave_1: left allmulticast mode
[  184.098602][ T8349] bridge_slave_1: left promiscuous mode
[  184.105693][ T8349] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.118326][ T8349] bond0: (slave bond_slave_0): Releasing backup interface
[  184.130690][ T8349] bond0: (slave bond_slave_1): Releasing backup interface
[  184.141637][ T8349] team0: Port device team_slave_0 removed
[  184.150032][ T8349] team0: Port device team_slave_1 removed
[  184.156324][ T8349] batman_adv: batadv0: Removing interface: batadv_slave_0
[  184.166600][ T8349] batman_adv: batadv0: Removing interface: batadv_slave_1
[  184.497282][ T8359] ipvlan3: entered promiscuous mode
[  184.502945][ T8359] 8021q: adding VLAN 0 to HW filter on device ipvlan3
[  184.534642][ T8359] bond0: (slave ipvlan3): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  184.609776][ T8363] tipc: Started in network mode
[  184.624187][ T8363] tipc: Node identity e6870e12e155, cluster identity 4711
[  184.646376][ T8363] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  184.747466][ T8368] netlink: 212376 bytes leftover after parsing attributes in process `syz.1.711'.
[  184.748435][ T8363] tipc: Disabling bearer <eth:syzkaller0>
[  185.321165][ T8390] netlink: 48 bytes leftover after parsing attributes in process `syz.3.721'.
[  185.449760][ T8398] netlink: 40 bytes leftover after parsing attributes in process `syz.2.718'.
[  185.539102][ T8403] netlink: 8 bytes leftover after parsing attributes in process `syz.0.723'.
[  185.675779][ T8393] syz.4.722 (8393) used greatest stack depth: 19680 bytes left
[  185.983758][ T8413] netlink: 8 bytes leftover after parsing attributes in process `syz.4.727'.
[  186.297118][ T8429] netlink: 'syz.0.730': attribute type 1 has an invalid length.
[  186.321704][ T8429] netlink: 216 bytes leftover after parsing attributes in process `syz.0.730'.
[  186.896432][ T8420] lo speed is unknown, defaulting to 1000
[  186.902247][ T8420] lo speed is unknown, defaulting to 1000
[  186.929890][ T8420] lo speed is unknown, defaulting to 1000
[  186.980309][ T8420] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  187.047054][ T8420] lo speed is unknown, defaulting to 1000
[  187.060623][ T8420] lo speed is unknown, defaulting to 1000
[  187.115591][ T8420] lo speed is unknown, defaulting to 1000
[  187.123239][ T8420] lo speed is unknown, defaulting to 1000
[  187.200126][ T8420] lo speed is unknown, defaulting to 1000
[  187.215856][ T8420] lo speed is unknown, defaulting to 1000
[  187.799346][ T8460] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.005352][ T8460] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.185362][ T8460] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.382689][ T8460] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.507901][ T8489] IPVS: Unknown mcast interface: syzkaller0
[  188.705606][   T12] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.778788][ T8074] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.796339][ T8074] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.839409][ T8074] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  189.548541][ T8503] __nla_validate_parse: 3 callbacks suppressed
[  189.548560][ T8503] netlink: 16 bytes leftover after parsing attributes in process `syz.1.752'.
[  189.582989][ T8503] netlink: 'syz.1.752': attribute type 1 has an invalid length.
[  189.994153][ T8514] netlink: 'syz.4.757': attribute type 30 has an invalid length.
[  190.214020][ T8522] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  190.302679][ T8523] netlink: 24 bytes leftover after parsing attributes in process `syz.4.759'.
[  190.352430][ T8522] RDS: rds_bind could not find a transport for fc00::1, load rds_tcp or rds_rdma?
[  190.806802][ T8528] IPVS: Unknown mcast interface: syzkaller0
[  191.027195][ T8530] netlink: 28 bytes leftover after parsing attributes in process `syz.1.762'.
[  191.370554][ T8550] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.792817][ T8550] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.836971][ T8565] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  191.981270][ T8563] xt_CT: No such helper "netbios-ns"
[  191.981270][ T8550] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.070322][ T8550] netdevsim netdevsim1 _@��X (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.233988][ T8572] netlink: 20 bytes leftover after parsing attributes in process `syz.4.774'.
[  192.353648][   T12] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  192.400230][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  192.696019][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  192.713308][   T12] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  192.985015][ T8590] IPVS: Unknown mcast interface: syzkaller0
[  193.417566][ T8597] syz.4.781 uses old SIOCAX25GETINFO
[  193.594822][ T8600] FAULT_INJECTION: forcing a failure.
[  193.594822][ T8600] name failslab, interval 1, probability 0, space 0, times 0
[  193.607784][ T8600] CPU: 1 UID: 0 PID: 8600 Comm: syz.1.782 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  193.607815][ T8600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.607828][ T8600] Call Trace:
[  193.607836][ T8600]  <TASK>
[  193.607846][ T8600]  dump_stack_lvl+0x189/0x250
[  193.607893][ T8600]  ? __pfx____ratelimit+0x10/0x10
[  193.607917][ T8600]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.607947][ T8600]  ? __pfx__printk+0x10/0x10
[  193.607975][ T8600]  ? __lock_acquire+0xab9/0xd20
[  193.608006][ T8600]  should_fail_ex+0x414/0x560
[  193.608036][ T8600]  should_failslab+0xa8/0x100
[  193.608059][ T8600]  kmem_cache_alloc_noprof+0x73/0x3c0
[  193.608089][ T8600]  ? dst_alloc+0x105/0x170
[  193.608111][ T8600]  dst_alloc+0x105/0x170
[  193.608132][ T8600]  ip_route_output_key_hash_rcu+0x1482/0x23a0
[  193.608165][ T8600]  ? ip_route_output_key_hash_rcu+0x1341/0x23a0
[  193.608202][ T8600]  ? ip_route_output_key_hash+0xde/0x2e0
[  193.608234][ T8600]  ip_route_output_key_hash+0x1b9/0x2e0
[  193.608267][ T8600]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  193.608308][ T8600]  ? dst_cache_get_ip4+0xf6/0x820
[  193.608332][ T8600]  ip_route_output_flow+0x2a/0x150
[  193.608364][ T8600]  udp_tunnel_dst_lookup+0x1ba/0x3e0
[  193.608390][ T8600]  ? __pfx_udp_tunnel_dst_lookup+0x10/0x10
[  193.608409][ T8600]  ? skb_vlan_inet_prepare+0x4cb/0x6a0
[  193.608438][ T8600]  ? __pfx_geneve_get_dsfield+0x10/0x10
[  193.608469][ T8600]  geneve_xmit+0xa99/0x2b70
[  193.608516][ T8600]  ? geneve_xmit+0x128/0x2b70
[  193.608537][ T8600]  ? dev_queue_xmit_nit+0x2d/0xcc0
[  193.608564][ T8600]  ? __pfx_geneve_xmit+0x10/0x10
[  193.608587][ T8600]  ? dev_queue_xmit_nit+0x2d/0xcc0
[  193.608625][ T8600]  dev_hard_start_xmit+0x2d4/0x830
[  193.608672][ T8600]  __dev_queue_xmit+0x1adf/0x3a70
[  193.608701][ T8600]  ? __dev_queue_xmit+0x27e/0x3a70
[  193.608734][ T8600]  ? __pfx___dev_queue_xmit+0x10/0x10
[  193.608750][ T8600]  ? _copy_from_iter+0x24c/0x16f0
[  193.608787][ T8600]  ? sock_alloc_send_pskb+0x875/0x990
[  193.608825][ T8600]  ? packet_parse_headers+0x7ff/0xb60
[  193.608845][ T8600]  ? packet_parse_headers+0x8b8/0xb60
[  193.608874][ T8600]  ? __pfx_packet_parse_headers+0x10/0x10
[  193.608905][ T8600]  ? skb_copy_datagram_from_iter+0x60c/0x720
[  193.608926][ T8600]  ? packet_xmit+0x68/0x330
[  193.608946][ T8600]  packet_sendmsg+0x41b7/0x53f0
[  193.608983][ T8600]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  193.609021][ T8600]  ? __pfx___might_resched+0x10/0x10
[  193.609047][ T8600]  ? __lock_acquire+0xab9/0xd20
[  193.609085][ T8600]  ? __pfx_packet_sendmsg+0x10/0x10
[  193.609107][ T8600]  ? aa_sk_perm+0x81e/0x950
[  193.609132][ T8600]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  193.609162][ T8600]  ? aa_sock_msg_perm+0x94/0x160
[  193.609185][ T8600]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  193.609206][ T8600]  ? __pfx_packet_sendmsg+0x10/0x10
[  193.609231][ T8600]  __sock_sendmsg+0x219/0x270
[  193.609253][ T8600]  __sys_sendto+0x3bd/0x520
[  193.609278][ T8600]  ? __pfx___sys_sendto+0x10/0x10
[  193.609299][ T8600]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  193.609332][ T8600]  ? __fget_files+0x3a0/0x420
[  193.609362][ T8600]  ? ksys_write+0x22a/0x250
[  193.609380][ T8600]  ? __pfx_ksys_write+0x10/0x10
[  193.609393][ T8600]  ? rcu_is_watching+0x15/0xb0
[  193.609424][ T8600]  __x64_sys_sendto+0xde/0x100
[  193.609451][ T8600]  do_syscall_64+0xfa/0x3b0
[  193.609470][ T8600]  ? lockdep_hardirqs_on+0x9c/0x150
[  193.609490][ T8600]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.609507][ T8600]  ? clear_bhb_loop+0x60/0xb0
[  193.609528][ T8600]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.609545][ T8600] RIP: 0033:0x7f696fd8e929
[  193.609568][ T8600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.609584][ T8600] RSP: 002b:00007f6970c04038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  193.609608][ T8600] RAX: ffffffffffffffda RBX: 00007f696ffb5fa0 RCX: 00007f696fd8e929
[  193.609621][ T8600] RDX: 000000000000003a RSI: 0000200000000080 RDI: 0000000000000003
[  193.609632][ T8600] RBP: 00007f6970c04090 R08: 0000200000000200 R09: 0000000000000014
[  193.609644][ T8600] R10: 0000000000040080 R11: 0000000000000246 R12: 0000000000000001
[  193.609653][ T8600] R13: 0000000000000000 R14: 00007f696ffb5fa0 R15: 00007fff86a83468
[  193.609682][ T8600]  </TASK>
[  194.089164][ T8604] netlink: 256 bytes leftover after parsing attributes in process `syz.0.783'.
[  194.139313][ T8603] bond0: option min_links: invalid value (18446744073709551604)
[  194.148838][ T8603] bond0: option min_links: allowed values 0 - 2147483647
[  194.195013][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  194.482160][ T8615] netlink: 8 bytes leftover after parsing attributes in process `syz.4.789'.
[  194.995708][ T8625] team0 (unregistering): Port device team_slave_0 removed
[  195.017179][ T8625] team0 (unregistering): Port device team_slave_1 removed
[  195.037007][ T8628] netlink: 'syz.4.791': attribute type 7 has an invalid length.
[  195.168950][ T8628] : entered promiscuous mode
[  195.694190][ T8634] veth1_macvtap: left promiscuous mode
[  195.699810][ T8634] macsec0: entered allmulticast mode
[  195.741613][ T8635] veth1_macvtap: entered promiscuous mode
[  195.785735][ T8635] veth1_macvtap: entered allmulticast mode
[  195.792364][ T8635] macsec0: left allmulticast mode
[  195.811249][ T8635] veth1_macvtap: left allmulticast mode
[  195.886671][ T8645] netlink: 2 bytes leftover after parsing attributes in process `syz.0.796'.
[  195.931146][ T8645] batadv_slave_1: entered promiscuous mode
[  195.956526][ T8645] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.207292][ T8656] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  196.294555][ T8660] netlink: 9280 bytes leftover after parsing attributes in process `syz.4.801'.
[  196.359742][ T8662] netlink: 36 bytes leftover after parsing attributes in process `syz.4.801'.
[  196.739307][ T8076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.773725][ T8076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.795270][ T8679] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  196.839657][ T8679] pim6reg: left allmulticast mode
[  196.983515][ T8683] netlink: 'syz.4.804': attribute type 1 has an invalid length.
[  197.164230][ T8687] netlink: 24 bytes leftover after parsing attributes in process `syz.1.808'.
[  197.953900][ T8702] FAULT_INJECTION: forcing a failure.
[  197.953900][ T8702] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.996449][ T8702] CPU: 1 UID: 0 PID: 8702 Comm: syz.4.812 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  197.996479][ T8702] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  197.996492][ T8702] Call Trace:
[  197.996500][ T8702]  <TASK>
[  197.996508][ T8702]  dump_stack_lvl+0x189/0x250
[  197.996544][ T8702]  ? __pfx____ratelimit+0x10/0x10
[  197.996567][ T8702]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.996597][ T8702]  ? __pfx__printk+0x10/0x10
[  197.996631][ T8702]  should_fail_ex+0x414/0x560
[  197.996660][ T8702]  _copy_to_user+0x31/0xb0
[  197.996682][ T8702]  simple_read_from_buffer+0xe1/0x170
[  197.996707][ T8702]  proc_fail_nth_read+0x1df/0x250
[  197.996734][ T8702]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  197.996761][ T8702]  ? rw_verify_area+0x258/0x650
[  197.996789][ T8702]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  197.996814][ T8702]  vfs_read+0x200/0x980
[  197.996849][ T8702]  ? __pfx___mutex_lock+0x10/0x10
[  197.996873][ T8702]  ? __pfx_vfs_read+0x10/0x10
[  197.996905][ T8702]  ? __fget_files+0x2a/0x420
[  197.996930][ T8702]  ? __fget_files+0x3a0/0x420
[  197.996950][ T8702]  ? __fget_files+0x2a/0x420
[  197.996999][ T8702]  ksys_read+0x145/0x250
[  197.997034][ T8702]  ? __pfx_ksys_read+0x10/0x10
[  197.997063][ T8702]  ? rcu_is_watching+0x15/0xb0
[  197.997101][ T8702]  ? do_syscall_64+0xbe/0x3b0
[  197.997138][ T8702]  do_syscall_64+0xfa/0x3b0
[  197.997162][ T8702]  ? lockdep_hardirqs_on+0x9c/0x150
[  197.997185][ T8702]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.997205][ T8702]  ? clear_bhb_loop+0x60/0xb0
[  197.997231][ T8702]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.997251][ T8702] RIP: 0033:0x7fcb15f8d33c
[  197.997269][ T8702] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  197.997287][ T8702] RSP: 002b:00007fcb16db8030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  197.997309][ T8702] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8d33c
[  197.997325][ T8702] RDX: 000000000000000f RSI: 00007fcb16db80a0 RDI: 0000000000000004
[  197.997338][ T8702] RBP: 00007fcb16db8090 R08: 0000000000000000 R09: 0000000000000014
[  197.997351][ T8702] R10: 0000000000040080 R11: 0000000000000246 R12: 0000000000000001
[  197.997364][ T8702] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  197.997396][ T8702]  </TASK>
[  198.443801][ T8704] netlink: 12 bytes leftover after parsing attributes in process `syz.1.813'.
[  198.473157][ T8708] netlink: 16 bytes leftover after parsing attributes in process `syz.4.815'.
[  198.806787][ T8704] Bluetooth: MGMT ver 1.23
[  199.319274][ T8723] netlink: 16 bytes leftover after parsing attributes in process `syz.4.818'.
[  199.500022][ T8726] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  199.705824][ T8735] netlink: 'syz.0.824': attribute type 21 has an invalid length.
[  199.714158][ T8735] netlink: 132 bytes leftover after parsing attributes in process `syz.0.824'.
[  199.780439][ T8739] batadv0: left promiscuous mode
[  199.806717][ T8739] batadv0: left allmulticast mode
[  199.837678][ T8741] netlink: 'syz.1.827': attribute type 21 has an invalid length.
[  199.840442][ T8739] bond1: left promiscuous mode
[  199.851334][ T8741] netlink: 128 bytes leftover after parsing attributes in process `syz.1.827'.
[  199.870130][ T8739] bond1: left allmulticast mode
[  199.898978][ T8741] netlink: 'syz.1.827': attribute type 4 has an invalid length.
[  199.905557][   T94] block nbd216: Possible stuck request ffff888028737000: control (read@0,1024B). Runtime 30 seconds
[  199.918555][   T94] block nbd216: Possible stuck request ffff8880287371c0: control (read@1024,1024B). Runtime 30 seconds
[  199.931166][   T94] block nbd216: Possible stuck request ffff888028737380: control (read@2048,1024B). Runtime 30 seconds
[  199.943692][   T94] block nbd216: Possible stuck request ffff888028737540: control (read@3072,1024B). Runtime 30 seconds
[  199.956459][ T8741] netlink: 'syz.1.827': attribute type 5 has an invalid length.
[  199.988285][ T8741] netlink: 3 bytes leftover after parsing attributes in process `syz.1.827'.
[  200.838820][ T8741] netlink: 'syz.1.827': attribute type 6 has an invalid length.
[  201.206225][ T8780] netlink: 8 bytes leftover after parsing attributes in process `syz.4.840'.
[  201.289359][ T8780] vlan0: entered promiscuous mode
[  201.355015][ T8785] ieee802154 phy1 wpan1: encryption failed: -22
[  201.399445][ T8785] netlink: 28 bytes leftover after parsing attributes in process `syz.3.841'.
[  202.072151][ T8804] tipc: Invalid UDP bearer configuration
[  202.072217][ T8804] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  202.156437][ T8808] netlink: 4 bytes leftover after parsing attributes in process `syz.3.850'.
[  202.290099][ T8813] netlink: 4 bytes leftover after parsing attributes in process `syz.1.851'.
[  202.435195][ T8818] FAULT_INJECTION: forcing a failure.
[  202.435195][ T8818] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.478584][ T8818] CPU: 0 UID: 0 PID: 8818 Comm: syz.3.854 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  202.478617][ T8818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.478631][ T8818] Call Trace:
[  202.478640][ T8818]  <TASK>
[  202.478649][ T8818]  dump_stack_lvl+0x189/0x250
[  202.478689][ T8818]  ? __pfx____ratelimit+0x10/0x10
[  202.478714][ T8818]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.478748][ T8818]  ? __pfx__printk+0x10/0x10
[  202.478771][ T8818]  ? __might_fault+0xb0/0x130
[  202.478805][ T8818]  should_fail_ex+0x414/0x560
[  202.478851][ T8818]  _copy_from_user+0x2d/0xb0
[  202.478872][ T8818]  kstrtouint_from_user+0xc4/0x170
[  202.478905][ T8818]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  202.478953][ T8818]  proc_fail_nth_write+0x88/0x240
[  202.478977][ T8818]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  202.479010][ T8818]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  202.479036][ T8818]  vfs_write+0x27e/0xa90
[  202.479085][ T8818]  ? __pfx_vfs_write+0x10/0x10
[  202.479119][ T8818]  ? __fget_files+0x2a/0x420
[  202.479147][ T8818]  ? __fget_files+0x3a0/0x420
[  202.479168][ T8818]  ? __fget_files+0x2a/0x420
[  202.479201][ T8818]  ksys_write+0x145/0x250
[  202.479223][ T8818]  ? __pfx_ksys_write+0x10/0x10
[  202.479239][ T8818]  ? rcu_is_watching+0x15/0xb0
[  202.479277][ T8818]  ? do_syscall_64+0xbe/0x3b0
[  202.479307][ T8818]  do_syscall_64+0xfa/0x3b0
[  202.479329][ T8818]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.479352][ T8818]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.479372][ T8818]  ? clear_bhb_loop+0x60/0xb0
[  202.479398][ T8818]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.479417][ T8818] RIP: 0033:0x7feedf58d3df
[  202.479436][ T8818] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  202.479454][ T8818] RSP: 002b:00007feee03e8030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  202.479476][ T8818] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007feedf58d3df
[  202.479490][ T8818] RDX: 0000000000000001 RSI: 00007feee03e80a0 RDI: 0000000000000004
[  202.479503][ T8818] RBP: 00007feee03e8090 R08: 0000000000000000 R09: 000000000000001c
[  202.479516][ T8818] R10: 0000000020000004 R11: 0000000000000293 R12: 0000000000000001
[  202.479528][ T8818] R13: 0000000000000000 R14: 00007feedf7b5fa0 R15: 00007ffe5eaa1aa8
[  202.479562][ T8818]  </TASK>
[  203.238317][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz.3.859'.
[  203.298393][ T8834] netlink: 12 bytes leftover after parsing attributes in process `syz.3.859'.
[  203.328732][ T8836] netlink: 24 bytes leftover after parsing attributes in process `syz.3.859'.
[  203.614296][ T8845] netlink: 4 bytes leftover after parsing attributes in process `syz.4.863'.
[  203.777757][ T8849] geneve2: entered allmulticast mode
[  203.797134][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.822329][ T8849] netlink: 100 bytes leftover after parsing attributes in process `syz.3.864'.
[  203.824607][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.869374][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.902261][   T12] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.939853][ T8853] FAULT_INJECTION: forcing a failure.
[  203.939853][ T8853] name failslab, interval 1, probability 0, space 0, times 0
[  203.952820][ T8853] CPU: 1 UID: 0 PID: 8853 Comm: syz.4.865 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  203.952851][ T8853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.952864][ T8853] Call Trace:
[  203.952872][ T8853]  <TASK>
[  203.952881][ T8853]  dump_stack_lvl+0x189/0x250
[  203.952931][ T8853]  ? __pfx____ratelimit+0x10/0x10
[  203.952955][ T8853]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.952988][ T8853]  ? __pfx__printk+0x10/0x10
[  203.953016][ T8853]  ? __pfx___might_resched+0x10/0x10
[  203.953053][ T8853]  should_fail_ex+0x414/0x560
[  203.953085][ T8853]  should_failslab+0xa8/0x100
[  203.953109][ T8853]  kmem_cache_alloc_noprof+0x73/0x3c0
[  203.953142][ T8853]  ? security_inode_alloc+0x39/0x330
[  203.953175][ T8853]  security_inode_alloc+0x39/0x330
[  203.953206][ T8853]  inode_init_always_gfp+0x9ed/0xdc0
[  203.953235][ T8853]  ? __pfx_hugetlbfs_alloc_inode+0x10/0x10
[  203.953265][ T8853]  alloc_inode+0x82/0x1b0
[  203.953287][ T8853]  new_inode+0x22/0x170
[  203.953308][ T8853]  ? resv_map_alloc+0x1da/0x2c0
[  203.953340][ T8853]  hugetlbfs_get_inode+0x80/0x660
[  203.953377][ T8853]  hugetlb_file_setup+0x21d/0x630
[  203.953414][ T8853]  ksys_mmap_pgoff+0x22f/0x760
[  203.953453][ T8853]  do_syscall_64+0xfa/0x3b0
[  203.953477][ T8853]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.953499][ T8853]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.953520][ T8853]  ? clear_bhb_loop+0x60/0xb0
[  203.953552][ T8853]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.953571][ T8853] RIP: 0033:0x7fcb15f8e929
[  203.953589][ T8853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.953607][ T8853] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  203.953628][ T8853] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  203.953643][ T8853] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  203.953656][ T8853] RBP: 00007fcb16db8090 R08: ffffffffffffffff R09: 0000000000000000
[  203.953670][ T8853] R10: 0000000000042073 R11: 0000000000000246 R12: 0000000000000001
[  203.953683][ T8853] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  203.953714][ T8853]  </TASK>
[  204.493673][ T8873] ������2�g�,�{: renamed from lo (while UP)
[  204.681549][ T8886] netlink: 4 bytes leftover after parsing attributes in process `syz.4.875'.
[  204.688460][ T8887] xfrm1: entered promiscuous mode
[  204.705786][ T8887] xfrm1: entered allmulticast mode
[  204.731122][ T8887] xt_hashlimit: size too large, truncated to 1048576
[  204.822381][ T8892] IPVS: Unknown mcast interface: syzkaller0
[  205.624949][ T8911] pimreg: entered allmulticast mode
[  205.626556][ T8914] openvswitch: netlink: Missing key (keys=40, expected=2000)
[  205.631329][ T8910] pimreg: left allmulticast mode
[  206.023093][ T8925] FAULT_INJECTION: forcing a failure.
[  206.023093][ T8925] name failslab, interval 1, probability 0, space 0, times 0
[  206.039801][ T8925] CPU: 0 UID: 0 PID: 8925 Comm: syz.4.888 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  206.039831][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.039843][ T8925] Call Trace:
[  206.039852][ T8925]  <TASK>
[  206.039860][ T8925]  dump_stack_lvl+0x189/0x250
[  206.039896][ T8925]  ? __pfx____ratelimit+0x10/0x10
[  206.039919][ T8925]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.039949][ T8925]  ? __pfx__printk+0x10/0x10
[  206.039977][ T8925]  ? __pfx___might_resched+0x10/0x10
[  206.040006][ T8925]  ? fs_reclaim_acquire+0x7d/0x100
[  206.040034][ T8925]  should_fail_ex+0x414/0x560
[  206.040064][ T8925]  should_failslab+0xa8/0x100
[  206.040086][ T8925]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  206.040105][ T8925]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.040125][ T8925]  ? __alloc_skb+0x112/0x2d0
[  206.040155][ T8925]  __alloc_skb+0x112/0x2d0
[  206.040185][ T8925]  sock_wmalloc+0xb2/0x130
[  206.040218][ T8925]  l2tp_ip_sendmsg+0x1bb/0x1650
[  206.040237][ T8925]  ? sock_rps_record_flow+0x19/0x410
[  206.040261][ T8925]  ? inet_sendmsg+0x2f4/0x370
[  206.040280][ T8925]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  206.040308][ T8925]  __sock_sendmsg+0x19c/0x270
[  206.040332][ T8925]  __sys_sendto+0x3bd/0x520
[  206.040361][ T8925]  ? __pfx___sys_sendto+0x10/0x10
[  206.040384][ T8925]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  206.040422][ T8925]  ? __fget_files+0x3a0/0x420
[  206.040455][ T8925]  ? ksys_write+0x22a/0x250
[  206.040476][ T8925]  ? __pfx_ksys_write+0x10/0x10
[  206.040492][ T8925]  ? rcu_is_watching+0x15/0xb0
[  206.040527][ T8925]  __x64_sys_sendto+0xde/0x100
[  206.040557][ T8925]  do_syscall_64+0xfa/0x3b0
[  206.040580][ T8925]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.040601][ T8925]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.040620][ T8925]  ? clear_bhb_loop+0x60/0xb0
[  206.040645][ T8925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.040664][ T8925] RIP: 0033:0x7fcb15f8e929
[  206.040687][ T8925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.040704][ T8925] RSP: 002b:00007fcb16db8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  206.040725][ T8925] RAX: ffffffffffffffda RBX: 00007fcb161b5fa0 RCX: 00007fcb15f8e929
[  206.040740][ T8925] RDX: 000000000000005d RSI: 0000200000000040 RDI: 0000000000000003
[  206.040752][ T8925] RBP: 00007fcb16db8090 R08: 0000200000000100 R09: 0000000000000010
[  206.040769][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  206.040781][ T8925] R13: 0000000000000000 R14: 00007fcb161b5fa0 R15: 00007ffc73416698
[  206.040813][ T8925]  </TASK>
[  206.425795][ T8928] __nla_validate_parse: 5 callbacks suppressed
[  206.425833][ T8928] netlink: 12 bytes leftover after parsing attributes in process `syz.0.889'.
[  206.570780][ T8930] netlink: 36 bytes leftover after parsing attributes in process `syz.4.890'.
[  206.600212][ T8935] netlink: 892 bytes leftover after parsing attributes in process `syz.2.891'.
[  206.778630][ T8944] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  206.805193][ T8947] IPVS: Unknown mcast interface: syzkaller0
[  206.817794][ T8949] netlink: 4 bytes leftover after parsing attributes in process `syz.1.897'.
[  206.922482][ T8950] delete_channel: no stack
[  207.167655][ T8970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.904'.
[  207.225530][ T8972] netlink: 'syz.2.905': attribute type 3 has an invalid length.
[  207.917621][ T9011] netlink: 4 bytes leftover after parsing attributes in process `syz.3.916'.
[  208.207444][ T9025] xt_hashlimit: overflow, rate too high: 1125899906842624
[  208.274959][ T9029] IPVS: Unknown mcast interface: syzkaller0
[  208.288632][ T9032] netlink: 'syz.0.924': attribute type 1 has an invalid length.
[  208.289826][ T9030] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-tlb(5)
[  208.296449][ T9032] netlink: 224 bytes leftover after parsing attributes in process `syz.0.924'.
[  208.324192][ T9030] netlink: 'syz.1.922': attribute type 3 has an invalid length.
[  208.332023][ T9030] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.922'.
[  208.596072][ T9045] IPVS: set_ctl: invalid protocol: 137 172.20.20.170:20002
[  208.839990][ T9054] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.979975][ T9064] netlink: 28 bytes leftover after parsing attributes in process `syz.0.935'.
[  209.044526][ T9054] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.288882][ T9054] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.451037][ T9054] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.107982][ T8068] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.198167][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.280675][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.331411][ T8068] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  210.397145][ T9110] IPVS: Unknown mcast interface: syzkaller0
[  210.429682][ T9106] netlink: 256 bytes leftover after parsing attributes in process `syz.0.948'.
[  210.853323][ T9122] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  211.195193][ T9145] !
: renamed from dummy0
[  211.580305][ T5839] Bluetooth: hci3: command 0x0406 tx timeout
[  211.587366][ T5839] Bluetooth: hci2: command 0x0406 tx timeout
[  211.593979][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  212.433216][ T9189] __nla_validate_parse: 37 callbacks suppressed
[  212.433237][ T9189] netlink: 68 bytes leftover after parsing attributes in process `syz.0.967'.
[  212.788290][ T9157] netlink: 4 bytes leftover after parsing attributes in process `syz.3.961'.
[  212.829564][ T9206] netlink: 20 bytes leftover after parsing attributes in process `syz.4.970'.
[  212.897556][ T9206] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  213.278556][ T9225] IPVS: Unknown mcast interface: syzkaller0
[  213.589582][ T9231] netlink: 20 bytes leftover after parsing attributes in process `syz.0.974'.
[  214.145209][ T9253] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  214.211119][ T9255] netlink: 20 bytes leftover after parsing attributes in process `syz.3.982'.
[  214.288212][ T9252] ipvlan2: entered promiscuous mode
[  214.310312][ T9252] bridge0: port 3(ipvlan2) entered blocking state
[  214.320876][ T9252] bridge0: port 3(ipvlan2) entered disabled state
[  214.331830][ T9252] ipvlan2: entered allmulticast mode
[  214.339054][ T9252] bridge0: entered allmulticast mode
[  214.350268][ T9252] ipvlan2: left allmulticast mode
[  214.356953][ T9252] bridge0: left allmulticast mode
[  214.640475][ T9273] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.787263][ T9273] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.948504][ T9273] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.033896][ T9268] netlink: 12 bytes leftover after parsing attributes in process `syz.2.985'.
[  215.064793][ T9273] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.091858][ T9268] netlink: 'syz.2.985': attribute type 5 has an invalid length.
[  215.110499][ T9268] netlink: 20 bytes leftover after parsing attributes in process `syz.2.985'.
[  215.242913][   T12] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.299913][ T1093] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.313196][ T9296] IPVS: Unknown mcast interface: syzkaller0
[  215.366134][ T9298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.993'.
[  215.394329][ T9298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  215.405547][ T9298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  215.416737][ T9298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  215.424961][ T9298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  215.458270][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.492079][ T9301] netlink: 44 bytes leftover after parsing attributes in process `syz.0.995'.
[  215.515660][ T9302] netlink: 8 bytes leftover after parsing attributes in process `syz.2.993'.
[  215.536887][   T59] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  216.025694][ T9324] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.066219][ T9327] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.392127][ T9324] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.474519][ T9327] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.524690][ T9324] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.672962][ T9327] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  216.720624][ T9324] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.229679][ T9327] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.299169][ T1113] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.349917][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.350526][ T9361] netlink: 'syz.4.1009': attribute type 1 has an invalid length.
[  218.381997][   T12] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.406436][ T8076] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.437452][ T9364] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input6
[  218.460441][ T9366] __nla_validate_parse: 6 callbacks suppressed
[  218.460460][ T9366] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1009'.
[  218.481064][ T9361] 8021q: adding VLAN 0 to HW filter on device bond2
[  218.548932][ T1093] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  218.634805][ T9361] veth3: entered promiscuous mode
[  218.652591][ T9375] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1012'.
[  218.666341][ T1093] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  218.671946][ T9375] netlink: 'syz.0.1012': attribute type 7 has an invalid length.
[  218.683793][ T1093] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  218.692299][ T9375] netlink: 'syz.0.1012': attribute type 8 has an invalid length.
[  218.705586][ T9375] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1012'.
[  218.731619][ T9366] erspan0: entered allmulticast mode
[  218.778303][ T9375] ip6gretap0: entered promiscuous mode
[  218.785268][ T9375] syz_tun: entered promiscuous mode
[  218.795737][ T9375] syz_tun: left promiscuous mode
[  218.824284][ T9375] ip6gretap0: left promiscuous mode
[  218.901464][ T8076] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  218.933577][ T5836] Bluetooth: hci4: command 0x0405 tx timeout
[  219.459491][ T9401] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1017'.
[  219.510827][ T9404] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1017'.
[  219.884849][ T9415] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1026'.
[  220.123243][ T9430] netlink: 148 bytes leftover after parsing attributes in process `syz.4.1028'.
[  220.315585][ T9434] bridge2: entered promiscuous mode
[  220.328771][ T9434] bridge2: entered allmulticast mode
[  220.366082][ T9434] team0: Port device bridge2 added
[  222.157382][ T9476] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1046'.
[  222.176939][ T9477] tipc: Started in network mode
[  222.184669][ T9477] tipc: Node identity 00000000000000000300000040000001, cluster identity 4711
[  222.205301][ T9477] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  223.201237][ T9507] IPVS: Unknown mcast interface: syzkaller0
[  223.468686][ T9512] xt_policy: neither incoming nor outgoing policy selected
[  223.727373][ T9518] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1056'.
[  223.808668][ T9520] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1058'.
[  223.887888][ T9523] netlink: 'syz.4.1059': attribute type 1 has an invalid length.
[  223.923807][ T9523] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1059'.
[  223.954172][ T9523] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[  224.016979][ T9523] macvtap1: entered promiscuous mode
[  224.022549][ T9523] macvtap1: entered allmulticast mode
[  224.063890][ T9523] vlan0: entered allmulticast mode
[  224.077251][ T9531] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1060'.
[  224.105214][ T9523] veth0_vlan: entered allmulticast mode
[  224.135615][ T9523] vlan0: left allmulticast mode
[  224.140653][ T9523] veth0_vlan: left allmulticast mode
[  224.182178][ T9533] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1062'.
[  224.426786][ T9543] netlink: 'syz.3.1063': attribute type 4 has an invalid length.
[  225.260453][ T9570] IPVS: Unknown mcast interface: syzkaller0
[  225.414921][ T9573] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.075856][ T9574] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.220018][ T9573] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.350807][ T9574] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.620070][ T9573] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.770888][ T9574] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.833017][ T9573] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.880024][ T9574] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  227.136379][ T9624] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  227.196552][ T1093] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.210374][ T1093] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  227.287835][ T8066] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.309670][ T8066] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  227.391484][ T8066] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.401694][ T8066] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  227.420102][ T8066] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  227.505779][ T1113] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  227.656987][ T9634] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1078'.
[  228.201543][ T9653] IPVS: Unknown mcast interface: syzkaller0
[  228.342981][ T9659] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1086'.
[  228.403266][ T9659] bond0: (slave macvlan2): Error -98 calling set_mac_address
[  228.576027][ T9671] ip6t_srh: unknown srh invflags 4449
[  228.758192][ T9680] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.176270][ T9680] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.244619][ T9688] vlan2: entered promiscuous mode
[  229.258941][ T9688] vlan2: entered allmulticast mode
[  229.281000][ T9688] hsr_slave_1: entered allmulticast mode
[  229.358519][ T9680] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.502587][ T9680] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.916249][ T9712] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.949123][ T9714] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1101'.
[  229.979275][   T94] block nbd216: Possible stuck request ffff888028737000: control (read@0,1024B). Runtime 60 seconds
[  229.984075][ T9715] netlink: 'syz.1.1100': attribute type 10 has an invalid length.
[  229.990891][   T94] block nbd216: Possible stuck request ffff8880287371c0: control (read@1024,1024B). Runtime 60 seconds
[  230.010505][   T94] block nbd216: Possible stuck request ffff888028737380: control (read@2048,1024B). Runtime 60 seconds
[  230.022195][   T94] block nbd216: Possible stuck request ffff888028737540: control (read@3072,1024B). Runtime 60 seconds
[  230.062234][ T9712] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.140549][ T9718] �x9�: renamed from bridge_slave_0 (while UP)
[  230.176950][ T9712] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.253884][ T9712] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.498300][   T59] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  230.519818][   T12] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  230.542325][   T59] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  230.579008][ T9731] IPVS: Unknown mcast interface: syzkaller0
[  230.579668][ T9733] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1107'.
[  230.607473][   T59] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  230.644237][ T9733] netlink: 'syz.4.1107': attribute type 3 has an invalid length.
[  230.821394][ T9737] netlink: 'syz.1.1109': attribute type 4 has an invalid length.
[  230.852256][ T9738] netlink: 'syz.1.1109': attribute type 4 has an invalid length.
[  231.855042][ T9768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1118'.
[  231.894867][ T9768] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1118'.
[  232.069488][ T9773] netlink: 'syz.3.1119': attribute type 10 has an invalid length.
[  232.086248][ T9773] team0: Port device 
0!
 added
[  232.227726][   T12] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  232.263458][   T12] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  232.300579][   T12] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  232.373531][ T1093] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.709385][ T9794] IPVS: Unknown mcast interface: syzkaller0
[  232.726668][ T9795] netlink: 'syz.4.1126': attribute type 2 has an invalid length.
[  232.748347][ T9795] �: entered promiscuous mode
[  232.982630][ T9806] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1131'.
[  233.001185][ T9806] bridge_slave_1: left allmulticast mode
[  233.008113][ T9806] bridge_slave_1: left promiscuous mode
[  233.015077][ T9806] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.026818][ T9806] bridge_slave_0: left allmulticast mode
[  233.032627][ T9806] bridge_slave_0: left promiscuous mode
[  233.038702][ T9806] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.082438][ T9804] netlink: 'syz.0.1131': attribute type 29 has an invalid length.
[  233.440493][ T9826] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1135'.
[  233.732962][ T9837] netlink: 'syz.1.1142': attribute type 11 has an invalid length.
[  233.747511][ T9839] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1140'.
[  233.778222][ T9839] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1140'.
[  233.881678][ T9845] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1145'.
[  233.894920][ T9839] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  233.912466][ T9846] netlink: 'syz.4.1144': attribute type 1 has an invalid length.
[  233.929167][ T9845] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1145'.
[  234.179229][ T9859] FAULT_INJECTION: forcing a failure.
[  234.179229][ T9859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  234.180303][ T9859] 
[  234.180319][ T9859] ======================================================
[  234.180328][ T9859] WARNING: possible circular locking dependency detected
[  234.180342][ T9859] 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 Not tainted
[  234.180354][ T9859] ------------------------------------------------------
[  234.180363][ T9859] syz.2.1148/9859 is trying to acquire lock:
[  234.180373][ T9859] ffffffff8e133080 (console_owner){-...}-{0:0}, at: console_flush_all+0x13a/0xc40
[  234.180426][ T9859] 
[  234.180426][ T9859] but task is already holding lock:
[  234.180433][ T9859] ffff8880b8639f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  234.180484][ T9859] 
[  234.180484][ T9859] which lock already depends on the new lock.
[  234.180484][ T9859] 
[  234.180491][ T9859] 
[  234.180491][ T9859] the existing dependency chain (in reverse order) is:
[  234.180498][ T9859] 
[  234.180498][ T9859] -> #4 (&rq->__lock){-.-.}-{2:2}:
[  234.180523][ T9859]        lock_acquire+0x120/0x360
[  234.180547][ T9859]        _raw_spin_lock_nested+0x32/0x50
[  234.180568][ T9859]        raw_spin_rq_lock_nested+0x2a/0x140
[  234.180595][ T9859]        task_rq_lock+0xbc/0x470
[  234.180620][ T9859]        cgroup_move_task+0x9a/0x590
[  234.180637][ T9859]        css_set_move_task+0x658/0x9e0
[  234.180656][ T9859]        cgroup_post_fork+0x1ef/0x790
[  234.180674][ T9859]        copy_process+0x3862/0x3c00
[  234.180691][ T9859]        kernel_clone+0x21e/0x870
[  234.180708][ T9859]        user_mode_thread+0xdd/0x140
[  234.180726][ T9859]        rest_init+0x23/0x300
[  234.180751][ T9859]        start_kernel+0x47d/0x500
[  234.180779][ T9859]        x86_64_start_reservations+0x24/0x30
[  234.180801][ T9859]        x86_64_start_kernel+0x143/0x1c0
[  234.180822][ T9859]        common_startup_64+0x13e/0x147
[  234.180841][ T9859] 
[  234.180841][ T9859] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[  234.180868][ T9859]        lock_acquire+0x120/0x360
[  234.180891][ T9859]        _raw_spin_lock_irqsave+0xa7/0xf0
[  234.180908][ T9859]        try_to_wake_up+0x6e/0x1290
[  234.180929][ T9859]        __wake_up_common_lock+0x134/0x1f0
[  234.180951][ T9859]        tty_port_default_wakeup+0xa2/0xf0
[  234.180972][ T9859]        serial8250_tx_chars+0x72e/0x970
[  234.180989][ T9859]        serial8250_handle_irq+0x633/0xbb0
[  234.181006][ T9859]        serial8250_default_handle_irq+0xbf/0x1b0
[  234.181029][ T9859]        serial8250_interrupt+0xa5/0x1d0
[  234.181055][ T9859]        __handle_irq_event_percpu+0x28c/0x980
[  234.181075][ T9859]        handle_irq_event+0x8b/0x1e0
[  234.181095][ T9859]        handle_edge_irq+0x267/0x9c0
[  234.181111][ T9859]        __common_interrupt+0x140/0x250
[  234.181135][ T9859]        common_interrupt+0xb6/0xe0
[  234.181160][ T9859]        asm_common_interrupt+0x26/0x40
[  234.181178][ T9859]        __free_frozen_pages+0xb5f/0xe70
[  234.181198][ T9859]        __put_partials+0x161/0x1c0
[  234.181217][ T9859]        put_cpu_partial+0x17c/0x250
[  234.181239][ T9859]        __slab_free+0x2f7/0x400
[  234.181261][ T9859]        qlist_free_all+0x97/0x140
[  234.181287][ T9859]        kasan_quarantine_reduce+0x148/0x160
[  234.181323][ T9859]        __kasan_slab_alloc+0x22/0x80
[  234.181339][ T9859]        kmem_cache_alloc_noprof+0x1c1/0x3c0
[  234.181368][ T9859]        mas_alloc_nodes+0x2e9/0x8e0
[  234.181387][ T9859]        mas_preallocate+0x3ad/0x6f0
[  234.181404][ T9859]        commit_merge+0x1fd/0x700
[  234.181427][ T9859]        vma_expand+0x41c/0x7d0
[  234.181448][ T9859]        relocate_vma_down+0x2e6/0x500
[  234.181475][ T9859]        setup_arg_pages+0x5df/0xaa0
[  234.181501][ T9859]        load_elf_binary+0xb59/0x2790
[  234.181519][ T9859]        bprm_execve+0x99c/0x1450
[  234.181545][ T9859]        do_execveat_common+0x510/0x6a0
[  234.181561][ T9859]        __x64_sys_execve+0x94/0xb0
[  234.181588][ T9859]        do_syscall_64+0xfa/0x3b0
[  234.181610][ T9859]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.181627][ T9859] 
[  234.181627][ T9859] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[  234.181654][ T9859]        lock_acquire+0x120/0x360
[  234.181678][ T9859]        _raw_spin_lock_irqsave+0xa7/0xf0
[  234.181695][ T9859]        __wake_up_common_lock+0x2f/0x1f0
[  234.181716][ T9859]        tty_port_default_wakeup+0xa2/0xf0
[  234.181736][ T9859]        serial8250_tx_chars+0x72e/0x970
[  234.181752][ T9859]        serial8250_handle_irq+0x633/0xbb0
[  234.181770][ T9859]        serial8250_default_handle_irq+0xbf/0x1b0
[  234.181792][ T9859]        serial8250_interrupt+0xa5/0x1d0
[  234.181818][ T9859]        __handle_irq_event_percpu+0x28c/0x980
[  234.181838][ T9859]        handle_irq_event+0x8b/0x1e0
[  234.181858][ T9859]        handle_edge_irq+0x267/0x9c0
[  234.181874][ T9859]        __common_interrupt+0x140/0x250
[  234.181897][ T9859]        common_interrupt+0xb6/0xe0
[  234.181941][ T9859]        asm_common_interrupt+0x26/0x40
[  234.181959][ T9859]        _raw_spin_unlock_irqrestore+0xa8/0x110
[  234.181978][ T9859]        uart_port_unlock_deref+0x111/0x2f0
[  234.181995][ T9859]        uart_write+0xe8/0x130
[  234.182011][ T9859]        n_tty_write+0xd35/0x11d0
[  234.182034][ T9859]        file_tty_write+0x500/0x990
[  234.182064][ T9859]        vfs_write+0x54b/0xa90
[  234.182093][ T9859]        ksys_write+0x145/0x250
[  234.182108][ T9859]        do_syscall_64+0xfa/0x3b0
[  234.182131][ T9859]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.182149][ T9859] 
[  234.182149][ T9859] -> #1 (&port_lock_key){-.-.}-{3:3}:
[  234.182177][ T9859]        lock_acquire+0x120/0x360
[  234.182202][ T9859]        _raw_spin_lock_irqsave+0xa7/0xf0
[  234.182220][ T9859]        serial8250_console_write+0x17e/0x1ba0
[  234.182241][ T9859]        console_flush_all+0x728/0xc40
[  234.182261][ T9859]        console_unlock+0xc4/0x270
[  234.182278][ T9859]        vprintk_emit+0x5b7/0x7a0
[  234.182294][ T9859]        _printk+0xcf/0x120
[  234.182318][ T9859]        register_console+0xa8b/0xf90
[  234.182339][ T9859]        univ8250_console_init+0x52/0x90
[  234.182360][ T9859]        console_init+0x1a1/0x670
[  234.182380][ T9859]        start_kernel+0x2cc/0x500
[  234.182409][ T9859]        x86_64_start_reservations+0x24/0x30
[  234.182432][ T9859]        x86_64_start_kernel+0x143/0x1c0
[  234.182454][ T9859]        common_startup_64+0x13e/0x147
[  234.182476][ T9859] 
[  234.182476][ T9859] -> #0 (console_owner){-...}-{0:0}:
[  234.182503][ T9859]        validate_chain+0xb9b/0x2140
[  234.182520][ T9859]        __lock_acquire+0xab9/0xd20
[  234.182546][ T9859]        lock_acquire+0x120/0x360
[  234.182571][ T9859]        console_flush_all+0x6d2/0xc40
[  234.182591][ T9859]        console_unlock+0xc4/0x270
[  234.182608][ T9859]        vprintk_emit+0x5b7/0x7a0
[  234.182624][ T9859]        _printk+0xcf/0x120
[  234.182642][ T9859]        should_fail_ex+0x3f5/0x560
[  234.182664][ T9859]        strncpy_from_user+0x36/0x290
[  234.182685][ T9859]        strncpy_from_user_nofault+0x72/0x150
[  234.182711][ T9859]        bpf_probe_read_user_str+0x2a/0x70
[  234.182740][ T9859]        bpf_prog_7acee76fef7300d9+0x64/0x6c
[  234.182756][ T9859]        bpf_trace_run2+0x3ff/0x4b0
[  234.182778][ T9859]        __bpf_trace_tlb_flush+0xf5/0x150
[  234.182796][ T9859]        trace_tlb_flush+0x115/0x140
[  234.182815][ T9859]        switch_mm_irqs_off+0x53e/0x7a0
[  234.182835][ T9859]        __schedule+0x106c/0x4d00
[  234.182852][ T9859]        preempt_schedule_irq+0xb5/0x150
[  234.182872][ T9859]        irqentry_exit+0x6f/0x90
[  234.182892][ T9859]        asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  234.182912][ T9859]        clear_page_erms+0xb/0x20
[  234.182938][ T9859]        post_alloc_hook+0x1bd/0x2a0
[  234.182956][ T9859]        get_page_from_freelist+0x21e4/0x22c0
[  234.182980][ T9859]        __alloc_frozen_pages_noprof+0x181/0x370
[  234.183004][ T9859]        alloc_buddy_hugetlb_folio+0xdf/0x1c0
[  234.183028][ T9859]        only_alloc_fresh_hugetlb_folio+0x8c/0x280
[  234.183052][ T9859]        alloc_surplus_hugetlb_folio+0x103/0x430
[  234.183077][ T9859]        hugetlb_acct_memory+0x59f/0x1050
[  234.183103][ T9859]        hugetlb_reserve_pages+0x892/0xe80
[  234.183124][ T9859]        hugetlbfs_file_mmap+0x490/0x670
[  234.183164][ T9859]        mmap_region+0x127a/0x1f30
[  234.183189][ T9859]        do_mmap+0xc45/0x10d0
[  234.183216][ T9859]        vm_mmap_pgoff+0x31b/0x4c0
[  234.183240][ T9859]        ksys_mmap_pgoff+0x587/0x760
[  234.183269][ T9859]        do_syscall_64+0xfa/0x3b0
[  234.183291][ T9859]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.183315][ T9859] 
[  234.183315][ T9859] other info that might help us debug this:
[  234.183315][ T9859] 
[  234.183322][ T9859] Chain exists of:
[  234.183322][ T9859]   console_owner --> &p->pi_lock --> &rq->__lock
[  234.183322][ T9859] 
[  234.183371][ T9859]  Possible unsafe locking scenario:
[  234.183371][ T9859] 
[  234.183377][ T9859]        CPU0                    CPU1
[  234.183384][ T9859]        ----                    ----
[  234.183391][ T9859]   lock(&rq->__lock);
[  234.183404][ T9859]                                lock(&p->pi_lock);
[  234.183419][ T9859]                                lock(&rq->__lock);
[  234.183434][ T9859]   lock(console_owner);
[  234.183448][ T9859] 
[  234.183448][ T9859]  *** DEADLOCK ***
[  234.183448][ T9859] 
[  234.183453][ T9859] 6 locks held by syz.2.1148/9859:
[  234.183465][ T9859]  #0: ffff8880513181e0 (&mm->mmap_lock){++++}-{4:4}, at: vm_mmap_pgoff+0x1bd/0x4c0
[  234.183519][ T9859]  #1: ffff8880222f24b8 (&sb->s_type->i_mutex_key#20){+.+.}-{4:4}, at: hugetlbfs_file_mmap+0x300/0x670
[  234.183582][ T9859]  #2: ffff8880b8639f98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[  234.183650][ T9859]  #3: ffffffff8e13ee60 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x186/0x4b0
[  234.183699][ T9859]  #4: ffffffff8e1330e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[  234.183744][ T9859]  #5: ffffffff8e01a9b0 (console_srcu){....}-{0:0}, at: console_flush_all+0x13a/0xc40
[  234.183792][ T9859] 
[  234.183792][ T9859] stack backtrace:
[  234.183802][ T9859] CPU: 0 UID: 0 PID: 9859 Comm: syz.2.1148 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  234.183825][ T9859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  234.183838][ T9859] Call Trace:
[  234.183845][ T9859]  <TASK>
[  234.183854][ T9859]  dump_stack_lvl+0x189/0x250
[  234.183887][ T9859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  234.183919][ T9859]  ? __pfx__printk+0x10/0x10
[  234.183941][ T9859]  ? print_lock_name+0xde/0x100
[  234.183963][ T9859]  print_circular_bug+0x2ee/0x310
[  234.183986][ T9859]  check_noncircular+0x134/0x160
[  234.184009][ T9859]  validate_chain+0xb9b/0x2140
[  234.184041][ T9859]  __lock_acquire+0xab9/0xd20
[  234.184071][ T9859]  ? console_flush_all+0x13a/0xc40
[  234.184092][ T9859]  lock_acquire+0x120/0x360
[  234.184118][ T9859]  ? console_flush_all+0x13a/0xc40
[  234.184144][ T9859]  ? do_raw_spin_unlock+0x122/0x240
[  234.184165][ T9859]  ? console_flush_all+0x13a/0xc40
[  234.184188][ T9859]  console_flush_all+0x6d2/0xc40
[  234.184208][ T9859]  ? console_flush_all+0x13a/0xc40
[  234.184232][ T9859]  ? console_flush_all+0x13a/0xc40
[  234.184256][ T9859]  ? __pfx_console_flush_all+0x10/0x10
[  234.184279][ T9859]  ? fixup_exception+0xe2f/0x1c30
[  234.184318][ T9859]  ? is_printk_cpu_sync_owner+0x32/0x40
[  234.184345][ T9859]  console_unlock+0xc4/0x270
[  234.184365][ T9859]  ? __pfx_console_unlock+0x10/0x10
[  234.184387][ T9859]  ? is_printk_cpu_sync_owner+0x32/0x40
[  234.184414][ T9859]  vprintk_emit+0x5b7/0x7a0
[  234.184434][ T9859]  ? __pfx_vprintk_emit+0x10/0x10
[  234.184453][ T9859]  ? __bad_area_nosemaphore+0x11a/0x780
[  234.184506][ T9859]  _printk+0xcf/0x120
[  234.184527][ T9859]  ? __pfx____ratelimit+0x10/0x10
[  234.184551][ T9859]  ? __pfx__printk+0x10/0x10
[  234.184575][ T9859]  ? htab_lock_bucket+0x18c/0x330
[  234.184620][ T9859]  should_fail_ex+0x3f5/0x560
[  234.184646][ T9859]  strncpy_from_user+0x36/0x290
[  234.184671][ T9859]  strncpy_from_user_nofault+0x72/0x150
[  234.184699][ T9859]  bpf_probe_read_user_str+0x2a/0x70
[  234.184731][ T9859]  bpf_prog_7acee76fef7300d9+0x64/0x6c
[  234.184767][ T9859]  bpf_trace_run2+0x3ff/0x4b0
[  234.184791][ T9859]  ? bpf_trace_run2+0x186/0x4b0
[  234.184816][ T9859]  ? __pfx_bpf_trace_run2+0x10/0x10
[  234.184843][ T9859]  ? kvm_sched_clock_read+0x11/0x20
[  234.184864][ T9859]  ? __bpf_trace_tlb_flush+0xe0/0x150
[  234.184886][ T9859]  __bpf_trace_tlb_flush+0xf5/0x150
[  234.184908][ T9859]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[  234.184933][ T9859]  ? psi_group_change+0xbc7/0x1210
[  234.184952][ T9859]  ? rcu_read_lock_sched_held+0x89/0x100
[  234.184987][ T9859]  trace_tlb_flush+0x115/0x140
[  234.185010][ T9859]  switch_mm_irqs_off+0x53e/0x7a0
[  234.185034][ T9859]  ? __pfx_switch_mm_irqs_off+0x10/0x10
[  234.185055][ T9859]  ? psi_task_switch+0x314/0x6d0
[  234.185079][ T9859]  __schedule+0x106c/0x4d00
[  234.185101][ T9859]  ? unwind_get_return_address+0x4d/0x90
[  234.185134][ T9859]  ? arch_stack_walk+0xfc/0x150
[  234.185158][ T9859]  ? preempt_schedule_irq+0xb5/0x150
[  234.185183][ T9859]  ? __pfx___schedule+0x10/0x10
[  234.185208][ T9859]  ? __lock_acquire+0xab9/0xd20
[  234.185251][ T9859]  ? preempt_schedule_irq+0xaa/0x150
[  234.185274][ T9859]  preempt_schedule_irq+0xb5/0x150
[  234.185295][ T9859]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  234.185328][ T9859]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  234.185361][ T9859]  irqentry_exit+0x6f/0x90
[  234.185381][ T9859]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  234.185403][ T9859] RIP: 0010:clear_page_erms+0xb/0x20
[  234.185431][ T9859] Code: 48 8d 7f 40 75 d9 90 c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa b9 00 10 00 00 31 c0 <f3> aa e9 8e 11 04 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  234.185449][ T9859] RSP: 0018:ffffc90003f26ff0 EFLAGS: 00010246
[  234.185466][ T9859] RAX: 0000000000000000 RBX: 0000000000000009 RCX: 0000000000000280
[  234.185479][ T9859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88806e782d80
[  234.185493][ T9859] RBP: 1ffffffff1b74687 R08: ffffffff8fa137f7 R09: 0000000000000000
[  234.185507][ T9859] R10: ffffed100dcc0000 R11: fffffbfff1f426ff R12: fffa80006e782000
[  234.185522][ T9859] R13: fffa800000000000 R14: 1ffffffff1b74685 R15: 000000000000007e
[  234.185546][ T9859]  post_alloc_hook+0x1bd/0x2a0
[  234.185568][ T9859]  get_page_from_freelist+0x21e4/0x22c0
[  234.185617][ T9859]  ? __pfx_get_page_from_freelist+0x10/0x10
[  234.185644][ T9859]  ? prepare_alloc_pages+0x345/0x610
[  234.185671][ T9859]  __alloc_frozen_pages_noprof+0x181/0x370
[  234.185698][ T9859]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  234.185723][ T9859]  ? do_raw_spin_lock+0x121/0x290
[  234.185747][ T9859]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  234.185776][ T9859]  alloc_buddy_hugetlb_folio+0xdf/0x1c0
[  234.185803][ T9859]  only_alloc_fresh_hugetlb_folio+0x8c/0x280
[  234.185831][ T9859]  alloc_surplus_hugetlb_folio+0x103/0x430
[  234.185860][ T9859]  hugetlb_acct_memory+0x59f/0x1050
[  234.185893][ T9859]  ? __pfx_hugetlb_acct_memory+0x10/0x10
[  234.185919][ T9859]  ? do_raw_spin_unlock+0x122/0x240
[  234.185942][ T9859]  ? __pfx___hugetlb_cgroup_charge_cgroup+0x10/0x10
[  234.185973][ T9859]  ? _raw_spin_unlock+0x28/0x50
[  234.185991][ T9859]  ? region_chg+0x347/0x3c0
[  234.186010][ T9859]  ? __raw_spin_lock_init+0x45/0x100
[  234.186055][ T9859]  hugetlb_reserve_pages+0x892/0xe80
[  234.186083][ T9859]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[  234.186111][ T9859]  hugetlbfs_file_mmap+0x490/0x670
[  234.186145][ T9859]  mmap_region+0x127a/0x1f30
[  234.186193][ T9859]  ? __pfx_mmap_region+0x10/0x10
[  234.186221][ T9859]  ? is_bpf_text_address+0x26/0x2b0
[  234.186255][ T9859]  ? kernel_text_address+0xa5/0xe0
[  234.186281][ T9859]  ? __kernel_text_address+0xd/0x40
[  234.186306][ T9859]  ? unwind_get_return_address+0x4d/0x90
[  234.186373][ T9859]  ? __pfx_aa_get_newest_label+0x10/0x10
[  234.186408][ T9859]  ? bpf_lsm_capable+0x9/0x20
[  234.186427][ T9859]  ? security_capable+0x7e/0x2e0
[  234.186451][ T9859]  ? shmem_mapping+0xd/0x50
[  234.186476][ T9859]  ? memfd_check_seals_mmap+0x165/0x200
[  234.186505][ T9859]  do_mmap+0xc45/0x10d0
[  234.186543][ T9859]  ? __pfx_do_mmap+0x10/0x10
[  234.186572][ T9859]  ? down_write_killable+0x178/0x230
[  234.186601][ T9859]  ? end_current_label_crit_section+0x152/0x180
[  234.186627][ T9859]  ? __pfx_down_write_killable+0x10/0x10
[  234.186659][ T9859]  vm_mmap_pgoff+0x31b/0x4c0
[  234.186691][ T9859]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  234.186717][ T9859]  ? rcu_is_watching+0x15/0xb0
[  234.186748][ T9859]  ? hugetlbfs_get_inode+0x448/0x660
[  234.186780][ T9859]  ? hugetlb_file_setup+0x429/0x630
[  234.186809][ T9859]  ksys_mmap_pgoff+0x587/0x760
[  234.186846][ T9859]  do_syscall_64+0xfa/0x3b0
[  234.186871][ T9859]  ? lockdep_hardirqs_on+0x9c/0x150
[  234.186893][ T9859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.186913][ T9859]  ? clear_bhb_loop+0x60/0xb0
[  234.186938][ T9859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  234.186958][ T9859] RIP: 0033:0x7f16edd8e929
[  234.186974][ T9859] Code: Unable to access opcode bytes at 0x7f16edd8e8ff.
[  234.186984][ T9859] RSP: 002b:00007f16eeca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  234.187004][ T9859] RAX: ffffffffffffffda RBX: 00007f16edfb5fa0 RCX: 00007f16edd8e929
[  234.187020][ T9859] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  234.187033][ T9859] RBP: 00007f16eeca3090 R08: ffffffffffffffff R09: 0000000000000000
[  234.187048][ T9859] R10: 0000000000042073 R11: 0000000000000246 R12: 0000000000000002
[  234.187078][ T9859] R13: 0000000000000000 R14: 00007f16edfb5fa0 R15: 00007ffc399f7618
[  234.187102][ T9859]  </TASK>
[  235.839178][ T9859] CPU: 0 UID: 0 PID: 9859 Comm: syz.2.1148 Not tainted 6.16.0-rc3-syzkaller-00837-g28aa52b6189f #0 PREEMPT(full) 
[  235.839200][ T9859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  235.839211][ T9859] Call Trace:
[  235.839219][ T9859]  <TASK>
[  235.839228][ T9859]  dump_stack_lvl+0x189/0x250
[  235.839256][ T9859]  ? __pfx____ratelimit+0x10/0x10
[  235.839273][ T9859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.839295][ T9859]  ? __pfx__printk+0x10/0x10
[  235.839312][ T9859]  ? htab_lock_bucket+0x18c/0x330
[  235.839335][ T9859]  should_fail_ex+0x414/0x560
[  235.839354][ T9859]  strncpy_from_user+0x36/0x290
[  235.839373][ T9859]  strncpy_from_user_nofault+0x72/0x150
[  235.839394][ T9859]  bpf_probe_read_user_str+0x2a/0x70
[  235.839426][ T9859]  bpf_prog_7acee76fef7300d9+0x64/0x6c
[  235.839440][ T9859]  bpf_trace_run2+0x3ff/0x4b0
[  235.839457][ T9859]  ? bpf_trace_run2+0x186/0x4b0
[  235.839475][ T9859]  ? __pfx_bpf_trace_run2+0x10/0x10
[  235.839494][ T9859]  ? kvm_sched_clock_read+0x11/0x20
[  235.839508][ T9859]  ? __bpf_trace_tlb_flush+0xe0/0x150
[  235.839524][ T9859]  __bpf_trace_tlb_flush+0xf5/0x150
[  235.839539][ T9859]  ? __pfx___bpf_trace_tlb_flush+0x10/0x10
[  235.839556][ T9859]  ? psi_group_change+0xbc7/0x1210
[  235.839570][ T9859]  ? rcu_read_lock_sched_held+0x89/0x100
[  235.839608][ T9859]  trace_tlb_flush+0x115/0x140
[  235.839624][ T9859]  switch_mm_irqs_off+0x53e/0x7a0
[  235.839641][ T9859]  ? __pfx_switch_mm_irqs_off+0x10/0x10
[  235.839655][ T9859]  ? psi_task_switch+0x314/0x6d0
[  235.839671][ T9859]  __schedule+0x106c/0x4d00
[  235.839689][ T9859]  ? unwind_get_return_address+0x4d/0x90
[  235.839713][ T9859]  ? arch_stack_walk+0xfc/0x150
[  235.839729][ T9859]  ? preempt_schedule_irq+0xb5/0x150
[  235.839746][ T9859]  ? __pfx___schedule+0x10/0x10
[  235.839763][ T9859]  ? __lock_acquire+0xab9/0xd20
[  235.839784][ T9859]  ? preempt_schedule_irq+0xaa/0x150
[  235.839800][ T9859]  preempt_schedule_irq+0xb5/0x150
[  235.839815][ T9859]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  235.839835][ T9859]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  235.839858][ T9859]  irqentry_exit+0x6f/0x90
[  235.839873][ T9859]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  235.839889][ T9859] RIP: 0010:clear_page_erms+0xb/0x20
[  235.839911][ T9859] Code: 48 8d 7f 40 75 d9 90 c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa b9 00 10 00 00 31 c0 <f3> aa e9 8e 11 04 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  235.839923][ T9859] RSP: 0018:ffffc90003f26ff0 EFLAGS: 00010246
[  235.839936][ T9859] RAX: 0000000000000000 RBX: 0000000000000009 RCX: 0000000000000280
[  235.839946][ T9859] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff88806e782d80
[  235.839955][ T9859] RBP: 1ffffffff1b74687 R08: ffffffff8fa137f7 R09: 0000000000000000
[  235.839964][ T9859] R10: ffffed100dcc0000 R11: fffffbfff1f426ff R12: fffa80006e782000
[  235.839975][ T9859] R13: fffa800000000000 R14: 1ffffffff1b74685 R15: 000000000000007e
[  235.839993][ T9859]  post_alloc_hook+0x1bd/0x2a0
[  235.840010][ T9859]  get_page_from_freelist+0x21e4/0x22c0
[  235.840044][ T9859]  ? __pfx_get_page_from_freelist+0x10/0x10
[  235.840063][ T9859]  ? prepare_alloc_pages+0x345/0x610
[  235.840082][ T9859]  __alloc_frozen_pages_noprof+0x181/0x370
[  235.840101][ T9859]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  235.840118][ T9859]  ? do_raw_spin_lock+0x121/0x290
[  235.840135][ T9859]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  235.840155][ T9859]  alloc_buddy_hugetlb_folio+0xdf/0x1c0
[  235.840180][ T9859]  only_alloc_fresh_hugetlb_folio+0x8c/0x280
[  235.840199][ T9859]  alloc_surplus_hugetlb_folio+0x103/0x430
[  235.840220][ T9859]  hugetlb_acct_memory+0x59f/0x1050
[  235.840245][ T9859]  ? __pfx_hugetlb_acct_memory+0x10/0x10
[  235.840263][ T9859]  ? do_raw_spin_unlock+0x122/0x240
[  235.840279][ T9859]  ? __pfx___hugetlb_cgroup_charge_cgroup+0x10/0x10
[  235.840300][ T9859]  ? _raw_spin_unlock+0x28/0x50
[  235.840319][ T9859]  ? region_chg+0x347/0x3c0
[  235.840333][ T9859]  ? __raw_spin_lock_init+0x45/0x100
[  235.840350][ T9859]  hugetlb_reserve_pages+0x892/0xe80
[  235.840369][ T9859]  ? __pfx_hugetlb_reserve_pages+0x10/0x10
[  235.840388][ T9859]  hugetlbfs_file_mmap+0x490/0x670
[  235.840411][ T9859]  mmap_region+0x127a/0x1f30
[  235.840439][ T9859]  ? __pfx_mmap_region+0x10/0x10
[  235.840458][ T9859]  ? is_bpf_text_address+0x26/0x2b0
[  235.840481][ T9859]  ? kernel_text_address+0xa5/0xe0
[  235.840499][ T9859]  ? __kernel_text_address+0xd/0x40
[  235.840516][ T9859]  ? unwind_get_return_address+0x4d/0x90
[  235.840558][ T9859]  ? __pfx_aa_get_newest_label+0x10/0x10
[  235.840582][ T9859]  ? bpf_lsm_capable+0x9/0x20
[  235.840594][ T9859]  ? security_capable+0x7e/0x2e0
[  235.840611][ T9859]  ? shmem_mapping+0xd/0x50
[  235.840627][ T9859]  ? memfd_check_seals_mmap+0x165/0x200
[  235.840647][ T9859]  do_mmap+0xc45/0x10d0
[  235.840672][ T9859]  ? __pfx_do_mmap+0x10/0x10
[  235.840692][ T9859]  ? down_write_killable+0x178/0x230
[  235.840710][ T9859]  ? end_current_label_crit_section+0x152/0x180
[  235.840730][ T9859]  ? __pfx_down_write_killable+0x10/0x10
[  235.840752][ T9859]  vm_mmap_pgoff+0x31b/0x4c0
[  235.840774][ T9859]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  235.840791][ T9859]  ? rcu_is_watching+0x15/0xb0
[  235.840812][ T9859]  ? hugetlbfs_get_inode+0x448/0x660
[  235.840834][ T9859]  ? hugetlb_file_setup+0x429/0x630
[  235.840853][ T9859]  ksys_mmap_pgoff+0x587/0x760
[  235.840878][ T9859]  do_syscall_64+0xfa/0x3b0
[  235.840895][ T9859]  ? lockdep_hardirqs_on+0x9c/0x150
[  235.840910][ T9859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.840923][ T9859]  ? clear_bhb_loop+0x60/0xb0
[  235.840939][ T9859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.840952][ T9859] RIP: 0033:0x7f16edd8e929
[  235.840963][ T9859] Code: Unable to access opcode bytes at 0x7f16edd8e8ff.
[  235.840971][ T9859] RSP: 002b:00007f16eeca3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  235.840984][ T9859] RAX: ffffffffffffffda RBX: 00007f16edfb5fa0 RCX: 00007f16edd8e929
[  235.840994][ T9859] RDX: 0000000000000000 RSI: 0000000000c00000 RDI: 0000200000000000
[  235.841004][ T9859] RBP: 00007f16eeca3090 R08: ffffffffffffffff R09: 0000000000000000
[  235.841013][ T9859] R10: 0000000000042073 R11: 0000000000000246 R12: 0000000000000002
[  235.841022][ T9859] R13: 0000000000000000 R14: 00007f16edfb5fa0 R15: 00007ffc399f7618
[  235.841038][ T9859]  </TASK>
[  236.658045][ T9861] IPVS: Unknown mcast interface: syzkaller0