last executing test programs:

2m43.305283204s ago: executing program 0 (id=448):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000070000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000140), 0x8)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xd, 0x5, 0x2, 0x0, 0x5, r2, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x1f, 0xb, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000003368aa32030000553f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x57, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x62)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r4, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

2m43.15819547s ago: executing program 0 (id=452):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000001c0)=@nat={'nat\x00', 0x19, 0x1, 0x178, [0x3, 0x3, 0x7, 0x3, 0x200, 0x14], 0x0, 0x0, &(0x7f00000003c0)=ANY=[]}, 0x78)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="d8000000180081064e81f782db44b904021d005c06007c09e8fe55a10a0015400100142603600e120800060000000401a800080008000c4003001100036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xe2e3ac54026b7ba3}, 0xc, &(0x7f0000000040)={&(0x7f0000000140)={0x48, 0x2, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x6}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5, 0x4, 0xbe}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}]}, 0x48}, 0x1, 0x0, 0x0, 0x20008011}, 0x4)

2m42.861105054s ago: executing program 0 (id=458):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="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", 0x2f5}, {&(0x7f0000000bc0)="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", 0x25a}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1970315d7deecda053ccde285e4a73efcecac3dfb6fef5dadeb3a4cd7fa97fa86521b", 0x58}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

2m42.545125533s ago: executing program 0 (id=461):
r0 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x44, r0, 0x1, 0x0, 0x10000000, {}, [@IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_FLAGS={0xc}, @IPVS_SVC_ATTR_NETMASK={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0x6}]}]}, 0x44}}, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x9c, r0, 0x201, 0x70bd28, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x70}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x592f6837}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x52be}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_SERVICE={0x20, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast1}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x81}, @IPVS_CMD_ATTR_DAEMON={0x14, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @empty}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x40}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'dvmrp1\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x9}]}, 0x9c}, 0x1, 0x0, 0x0, 0x2000410}, 0x20000000)

2m42.388122476s ago: executing program 0 (id=465):
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$alg(0x26, 0x5, 0x0)
socket$unix(0x1, 0x5, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffa}, [@call={0x85, 0x0, 0x0, 0x2c}]}, &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xe, 0x4, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x840000000002, 0x3, 0xff)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f0000000100))
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000002c00)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080))
getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(0xffffffffffffffff, 0x84, 0x7, 0x0, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=@newlink={0x44, 0x10, 0x403, 0x700, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1e8f7}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}}, 0x0)

2m38.572388291s ago: executing program 0 (id=526):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r1 = socket$inet(0x2, 0x4, 0x2)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, 0x0, 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x50}, {0x6}]}, 0x10)
r2 = socket$inet6(0xa, 0x5, 0x0)
sendmmsg$inet6(r2, &(0x7f0000007140)=[{{&(0x7f0000004680)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c, &(0x7f0000004800)=[{0x0}], 0x1}}], 0x1, 0x64004045)

2m38.130632373s ago: executing program 32 (id=526):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
r1 = socket$inet(0x2, 0x4, 0x2)
setsockopt$IP_VS_SO_SET_ZERO(r1, 0x0, 0x48f, 0x0, 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x50}, {0x6}]}, 0x10)
r2 = socket$inet6(0xa, 0x5, 0x0)
sendmmsg$inet6(r2, &(0x7f0000007140)=[{{&(0x7f0000004680)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c, &(0x7f0000004800)=[{0x0}], 0x1}}], 0x1, 0x64004045)

13.177244755s ago: executing program 5 (id=2253):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

13.131404658s ago: executing program 5 (id=2254):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
accept4(r1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r2, 0x0, 0xd2, &(0x7f00000000c0)={@rand_addr, @empty, 0x2, "c8fc5e70b1b5ae627a3c9f580df57e22f2b08c58288b6cb58b74354989fa5393"}, 0x3c)
r3 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_MFC_PROXY(r3, 0x0, 0xd2, &(0x7f00000000c0)={@rand_addr, @empty, 0x0, "c8fc5e70b1b5ae627a3c9f580df57e22f2b08c58288b6cb58b74354989fa5393"}, 0x3c)

13.038620189s ago: executing program 5 (id=2256):
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000bc0)="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", 0x25a}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1", 0x36}], 0x2, 0x0, 0x0, 0x900}}], 0x1, 0x0)

12.841228636s ago: executing program 5 (id=2260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000940)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

12.778146949s ago: executing program 5 (id=2262):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)

12.659108164s ago: executing program 5 (id=2266):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000140)={@in6={{0xa, 0x4, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x0, 0x0, 0xb, 0x0, "e541bd3d3aa6a2d875e9671e8abcb31c134f3a9db8f52e1f54fe6e079f35ac63186c7244fc3b3801e79b8e5545b90f2dbec29f15cec2fd7e55d0345bce05c13ed90158fbdeb70322ea3188f81890e3db"}, 0xd8)
socket$l2tp6(0xa, 0x2, 0x73)
unshare(0x20000400)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x0, 0xb187, 0x4, 0x24b00, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r2}, 0x4)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x0}, 0xfffffffffffffe3d)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='sched_switch\x00', r5, 0x0, 0x4}, 0x18)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETQUEUE(r3, 0x400454d9, &(0x7f0000000000)={'geneve1\x00', 0x400})
socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000b9c000/0x3000)=nil, 0x3000, 0x300000a, 0x1010, r4, 0xffffd000)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
r7 = socket$can_j1939(0x1d, 0x2, 0x7)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r8, 0x400448ca, 0x0)
bind$bt_hci(r8, &(0x7f0000000040)={0x1f, 0x0, 0x1}, 0x6)
write$bt_hci(r8, &(0x7f00000004c0)=ANY=[@ANYBLOB="010120"], 0xc)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f0000000000)={'vcan0\x00'})
bind$can_j1939(r7, 0x0, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, 0x0, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000140)=0x1, 0x4)

2.305343674s ago: executing program 3 (id=2409):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

2.269207207s ago: executing program 3 (id=2411):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r2=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=ANY=[@ANYBLOB="484000006339f93ee078fdc500000000000066c95dd14003fd478b97f62f24d6e14a0000", @ANYRES32=r2, @ANYBLOB="0000000000000000280012800e0001006970366772657461700000001400028006000f00000000000600100000000000"], 0x48}}, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000220000000e1ffffff00"], 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYRES16=r0, @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffeb4, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r5}, 0x10)
unshare(0x2040400)
pipe(&(0x7f00000001c0)={<r6=>0xffffffffffffffff})
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
ppoll(&(0x7f0000000480)=[{r4}, {r3}, {r6}], 0x3, &(0x7f0000000100)={0x77359400}, 0x0, 0x2000)
socket$key(0xf, 0x3, 0x2)
r7 = socket$netlink(0x10, 0x3, 0x4)
write(r7, &(0x7f0000000100), 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r8, &(0x7f0000000100)={0x1f, 0x0, @none}, 0xe)
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r9, &(0x7f0000000000)={0x1f, 0x1001, @none}, 0xe)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r10}, 0x10)
close(0xffffffffffffffff)
r11 = socket$nl_route(0x10, 0x3, 0x0)
r12 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$TIPC_NL_BEARER_ADD(r6, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000640)=ANY=[@ANYBLOB="84010000", @ANYRES16=0x0, @ANYBLOB="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"], 0x184}, 0x1, 0x0, 0x0, 0x851}, 0x40440c1)
setsockopt$EBT_SO_SET_ENTRIES(r12, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x1a8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000480], 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"]}, 0x220)
ioctl$sock_SIOCETHTOOL(r11, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x0, '.\x00'}})

1.769860731s ago: executing program 1 (id=2421):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="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", 0x2f5}, {&(0x7f0000000bc0)}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1970315d7deecda053ccde285e4a73efcecac3dfb6f", 0x4b}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

1.507292084s ago: executing program 1 (id=2425):
unshare(0x24020400)
r0 = socket(0x840000000002, 0x3, 0x100)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000004c0), r0)
sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000005c0)={&(0x7f0000000500)={0x88, r1, 0x928, 0x70bd28, 0x25dfdbfd, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}]}, 0x88}, 0x1, 0x0, 0x0, 0x4000}, 0x84)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x48)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x6c, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x40, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'veth0_to_bridge\x00'}, {0x14, 0x1, 'geneve0\x00'}]}]}]}, @NFT_MSG_DELFLOWTABLE={0x48, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x1c, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x1, 'geneve0\x00'}]}]}]}], {0x14, 0x10}}, 0xfc}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r7)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000b00)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r7, &(0x7f0000000c80)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r5, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x44, r6, 0x10, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8, 0x3, r9}, @void}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000041}, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r10, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0x8, &(0x7f0000000180)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='syzkaller\x00', 0xc, 0xff9, &(0x7f0000002300)=""/4089, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bind$alg(r2, &(0x7f0000000140)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_ctr_aes256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
r11 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r11, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r11, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r12 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r12, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)

1.347536241s ago: executing program 3 (id=2428):
bpf$MAP_CREATE(0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="0a00000005000000020000000700000000008001", @ANYRES64, @ANYBLOB="7af00e"], 0x48)

1.314672349s ago: executing program 4 (id=2429):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, 0x0, 0x0)
r1 = socket$igmp6(0xa, 0x3, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x8004}, 0x4)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f0000000240)=ANY=[@ANYRES64=r2], 0xfdef)
r6 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)={0x2c, r6, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7363}, @SEG6_ATTR_ALGID={0x5}]}, 0x2c}, 0x1, 0x6000000}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
syz_emit_ethernet(0x46, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x10, 0x3a, 0x0, @remote, @mcast2, {[], @ni={0x8c}}}}}}, 0x0)

1.177211422s ago: executing program 3 (id=2430):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000010c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="b4050000fdff7f006110580000000000c60000000000000095000000000000009f33ef60916e6e713f1eeb0b725ad99b817fd98cd824498949714ffaac8a6f770600dcca55f21f3ca9e822d182054d54d53cd2b6db714e4beb5447000001000000008f2b9000f22425e4097ed62cbc891061017cfa6fa26fa7088c60897d4a6148a1c1e43f00001bde60beac671e8e8fdecb03588aa623fa71f31bf0f871ab5c2ff88afc60027f4e5b5271ed58e835cf0d0000000098b51fe6b1b8d9dbe87dcff414ed000000000000000000000000000000000000000000000000000000b347abe6352a080f8140e5fd10747b6ecdb3540546bf636e3d6e700e5b0500000000000000eb9e1403e6c8f7a187eaf60f3a17f0f046a307a403c19d9829c90bd2114252581567acae715cbe1b57d5cda432c5b910400623d24195405f2e76ccb7b37b41215c184e731fb1"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sendmsg$unix(r3, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f00000008c0)="b6", 0x1}], 0x1, 0x0, 0x0, 0x20000000}, 0x4005)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
sendmsg$inet(r3, 0x0, 0x0)
recvfrom(r2, &(0x7f0000002480)=""/4096, 0xec1, 0x2000, 0x0, 0x0)

1.167650931s ago: executing program 1 (id=2431):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
connect$can_bcm(0xffffffffffffffff, &(0x7f0000000080), 0x10)
r1 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r1, 0x0, 0xcc, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000f00)=@newtfilter={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r4}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)

1.012446172s ago: executing program 4 (id=2432):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x10, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000008d080000711216000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r1=>0x0})
socket$inet6_udplite(0xa, 0x2, 0x88)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x44}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000000a4f1c0000000000000000020000000900010073797a300000000008000240000000020900010073797a310000000014000000110001"], 0x5c}}, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x20, 0xa, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}}, 0x0)

1.010792513s ago: executing program 1 (id=2433):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
close(r1)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
sendmmsg$sock(r2, &(0x7f0000000740)=[{{&(0x7f0000000080)=@phonet={0x23, 0x0, 0x0, 0x7}, 0x80, 0x0, 0x0, &(0x7f0000000240)=[@mark={{0x14, 0x1, 0x24, 0x40}}], 0x18}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000005580)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000d0000000b70000000000000095000000000000003fba6a7d36d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f010c5077da80fb982c1e9400c603146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef7f9606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763288d01aa27ae8b09e13e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468082089b302d7bff8f06f7f918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108355ee570f8078be5cab389cd65e7133719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad23000000803a90bce6dc3a13871765df961c2ed3b1006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9f081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532be9c4d2ec7c32f2095e63c8cdc28f74d043ed8dba2f23b01a9aeb980aff9fa3a64709270c701db801f44cf945b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142bdda5e6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0ebe097fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700ce0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd279a896249ed85b9806f0b6c4a000000002b43dcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff72943327d830689da6b53ffffffff631c7771429d1200000033ed846197fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe010cd7bb2366fde4a59429738fcc917a57f94f6c453cea623cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcd41df54cdbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce978275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822a0269a660e717a04becff0f7191070000000000002ea37e927123d8ecbbc55bf404571be54c72d978cf2804107f0238abccd32368e57040906df0042e19000000000000002c06f815312e086dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be4877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99e061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb2b5e518a75f9e7d7ae22e16c6c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad055e4af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3fdf242b985bf16b99c9cc0ad1857036f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553a2ebe9061fe86e669642e09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de5eaeadea2a40da8daccf080842a486721737390cbf3a74cb2003efb9a101b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5191e10096e7e60fc3541a2c905a1a95e9571bf38aebd15172f94e3245c582909e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f90100000000000000abf9010000007740890200d627e87306703be8672dc84eeadba6a41891c170d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d10a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69b93e9960ff5f76062adae283d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff85000000000000c1fee30a3f7a85ecb29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bba3d005585bf07d70e2505bc7f41019645466a31c72ad53bc19faa5401120000793ac48c1b539c75ab40743b00020000a1f68df75cf43f8ecc8d3726602111b40e761fd210a1920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee42d2c3eb80159da5c002511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d359add43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc211dd2a3ba71e0f45492ef1f8b65ccb3dcd251a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6ab2a8826c1b948207c498cf4824ab1ea3225c380fac12f8205d182f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e965a0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bffa8e950ff5e49f41ae600d830207bf728cd9807933c3c16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaf9626cb51ce1737c10ab37d4f98a934b0f900e0eb639878a1200629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e604352ba26171d004f1cb2976fab3fa19c7d3ef9678bff79f5155524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085001345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c1172e7ea6619f7db330700d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50a6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e197322226367d998010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb069189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f6af17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f161ca34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd0567a279a9d85a380db25c43bd0529ad783b9d64aaac1b793afb44b7126e17d2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9cf10773db59505ae33708c728844c872dfd2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b000000c089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b03402fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f1ffc5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb36b74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b734727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069000010000087c7572a1e7596f89e5c3d5e70640c90815f77b7b13d0000000085a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdcdde632e6f54a07620e8aa116ce9e84fc3cd5e8288a333dcebb233da9186796995ba69487d8f77d2f8800f02d690fc70a08b231cad1bdcf3740a95d4dd1cfe0f417f275493cf33b19ffff93dfdaf7eb00b8ad87cdf7c21bab5af8e2bac54ee5597e6508c1158124a538c36f9bb11fea7d8b8c7e954b1bc7811654a6636b33f271d0923e9ecd1b724b8feffadfc23c07000000f0785fb722f346d6a5dffe1884d4d0cd8f00000092c85ed44db68ab800000000000000406e6ed9b219ad07125381087298e75965d1cc5932ddf9e66351ba332a34bee3e3d562c914c629933f0b8724cf680889ade72558d191d96ee1b84bb64b14aebc6b5194c55dd6890c69a718f9018586c5131c8dc8e0379bafda1a0fd2997ff115215ce23dca8db7236c1554cdaaadcce2f31834c1bd1908d8e1b361034db56bd86acb7654a195bc3e98df3a5dffd5b07838a3ef7da3433110e37f7c7cb7f3800de7f99abf910d6949e062747a9c87dcfcc716d6a9c0ec53b9cffe3cfd1df69a76f373d7f997edb9b80bdea1a99c2a6fbb25e035deadaadd7917ebfedd6304a19491769476208684e343f86b4d55a7dbbb07283cb1e35a139d24ebc5b4f8e35a82d3a7f84cb1e02a5a92b53567088be0b1ca023ccd518c0e0715b1c8760801a419ebd2e26440ff7493019bdb655cc88d72d6d7b6bca5a2e19b63ec52fcc49a729f11ab377f7132c543d29646a9378eea0761b7ed9d2172e33ed87c6513c843b180cc00000000006bedf2ed716ca43a941119b96d82b26d9061de240d85ec2cfa462bd52104489bb7a7548d7cc53627031e909c69cb824233975a1ea645de63522407c3a240a37e946f30ebf075ea97846a0a8d2286f3f446b1b99ab83a12ddf8a1c06294eadc3eb3e339591afd5c00000000000000000000000000000000000000000000000000579dad8347a3d16976bb7483840b32db0158fb6c809349333325a7866ca5d3133e33ef1a183cefdb65a79fa71800988c8445029e024822dbcfcab49c3a0aec9bd43e6e14078b260700d849a2aa14c9b593f6dcb1de334c065ecfd65031606e55949c185bcda9fde4f9b46a76b8a24bbcd31b22373eb0473248150cd179405ee1af1183b0c0ce3483dc1d9bf732b0751b78fb211d6706b55960c6431afbc02b3c7e08086573939290bb9e590a3875f02a828bf209d0ed9829dec16ab67a4f59a504e09f55ab82bbd405087a17a229a149c53ee9145500db213cb36489a10957739e481a756e65bde579bbbfb404213f661eeaaffacbcfbf"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000340)={@map=r1, r0, 0x2f, 0x2000, 0x4, @value}, 0x20)
socket$phonet(0x23, 0x2, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1}, &(0x7f0000000000), &(0x7f0000000040)=r0}, 0x20)

893.268148ms ago: executing program 1 (id=2434):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x10, &(0x7f0000000280)=0x78, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
socketpair(0x25, 0x1, 0x7, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
accept4$packet(r1, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14, 0x80000) (async)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) (async)
socket$caif_seqpacket(0x25, 0x5, 0xffff4ca2) (async)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_NEW(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x28, 0x0, 0x9, 0x101, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x3}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x28}}, 0x80)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600), 0x4) (async)
getsockname(r0, &(0x7f0000000080)=@sco={0x1f, @none}, &(0x7f0000000100)=0x80)
sendto$inet(r0, &(0x7f0000000700)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7c555d88fecf90b037511bf746bec66ba", 0x994b6e03113064ae, 0x0, 0x0, 0x0) (async)
recvmsg(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f00000035c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0, 0x407006}, 0x104)

874.548ms ago: executing program 4 (id=2435):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="84ae1baf930b4569b9ddef9797ffd935c7d80e6466b3e4e62dc9603583f5d4b61fbc65b6ac744d7319535e75bf552062e4cfde1ba7ce29263322e18ea9740aa82ca692f123993e57cda00d2b1f4e799bd41e3f76258180fa91a42aaa8b1ebc4e0ea8fb12f2c71e6e5bc57a8e91f254005514721d93c13c5606ae1fea7f31f558d562bd5a8dfb0b9fed873efa221fccffa847cd374c92e6cbb03e6a9de890ce323f000000abcc6c01326d588495b7c1a7db31ec4129e6336f26bb9e0b7552af3cd2d5dda1632799bbc98425c433384d8a8e4071ff39a36dfdfdf05af35a4ddd340cfecd7ec935f4ce7d3e851583ba1cf53a90a7f7bce5703de57ce93ddef7849b30a01de0637e6d5e507b801d32e582e0c2d564539ebfc84c098a23e765552767b122885fb1629e9c180be47da7931bd125b80de15aab0c56a2edf2e0483b87f5ab299dc046076203dea10ccbfc631d5bf4a87ce67004519f248f086346ce6a8a9d181789a59f81d9b7f6781daac3e229914b8b8998c15c3b6302a519331cb05995bc60b7cb872dd3b5b43331c77c5d72e21f7bd2b1a915ff3204e3f20d3a20b22d6a58155b5a4ebf6d1d1cd90c656ecada531c07ff91deb3efa91762cdecfbcc43553750f22ac5c18cc5e8b6f790c2f4e6373af9f98d10e6df49ff8e5cbcbd68e11ed0b967add11410dc2e34f08dbfaf8eb95d4d1153b4c6093192a340eb30fcc71619888c6486746a049585d249efb96b9cace83320b8f96b40ebe3a9a788d05a053380d1026b9434df87a3a387549bcabe88684c4dbf0da9a5212f3dbc8d1dff240856691243b203d7edd4d3cc89a38a6c80fdb1229a01044af7aaecb20d5570ebf24b30bbc6dfc3f70d85cd9f0d60ebd8fedd161d199d9997a0e2d18d1c99bc7158564e0ddb4673055de196535d706d142e1dc7d404583923cb1b286cfc5418884ac7e605d93652dc48ff690894405a0b6abc3c4d0f6a16c0a95c0508bd7eeffcd1da0b17f7701448658864b429e9472edfeffbf34d6e7c78f4aa73c0b585d5463a40298459e6ebb94bf2bf363c3a6d0a6c38b5", 0x2f5}, {&(0x7f0000000bc0)="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", 0x12d}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1970315d7deecda053ccde285e4a73efcecac3dfb6f", 0x4b}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

777.240075ms ago: executing program 4 (id=2436):
unshare(0x62040200)
unshare(0x40000000)
mmap(&(0x7f00001d5000/0x1000)=nil, 0x1000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
socket(0x10, 0x3, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
mmap(&(0x7f000083b000/0x13000)=nil, 0x13000, 0x0, 0x13, r1, 0x0)
mmap(&(0x7f00004e7000/0x2000)=nil, 0x2000, 0x0, 0x13, r2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newlink={0x20, 0x10, 0x581, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x4d014}}, 0x20}, 0x1, 0x0, 0x0, 0x20004002}, 0x0)
mmap(&(0x7f00005fe000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
mmap(&(0x7f00004a3000/0x1000)=nil, 0x1000, 0x0, 0x13, r1, 0x0)
mmap(&(0x7f0000867000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1500000000000000, 0x28011, r0, 0x0)

615.572994ms ago: executing program 2 (id=2439):
socket$nl_sock_diag(0x10, 0x3, 0x4)
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
socket$inet_tcp(0x2, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r1, @ANYBLOB], 0x6c}}, 0x840)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_LOOPBACK(r2, 0x65, 0x3, &(0x7f0000000000)=0x1, 0x4)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100000000000000000000000000000000000000000000000000000000000000000000000a0000008700"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbffffffffffffff00"/112], 0xb8}}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000010c0)=ANY=[@ANYBLOB="b8000000150001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESOCT=r0], 0xb8}}, 0x10000)
r5 = socket$kcm(0x11, 0x3, 0x0)
syz_emit_ethernet(0x7a, &(0x7f0000001140)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000008004d00006c0000040000069078ac1414bbac14aa820f5ece6f71a219a0564ed879d728890fd6ac1e0101000000007f000001000000000001002409e6e6bedb886cf1646c2be32f81404798b78cb40095a0773f7403289347dbe12d3e5258b5bfeba805c1cdd0a31ae0a53b7be48562c8d84f38c5822f82c6424a404b460e9e7dfc21577f8e492846b0ca525a4e49e52bb020383e15b1cf5a61e40d6baf3b5bcdeb895e6853805ddda1b5e2dcfa1a6bf31f0568eadeb9775a6b68bcfe81a96578666e3a0a7a94fae15df51f86c9f9ee8faeff49837fe136476a803aa7b348af2cb4579a862f240febecc69b20", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="ec000000907808001312d285b6da3b00dc44c6910c1d66f8841a1312adf059fd789278e2fb03dc15d356998a"], 0x0)
sendmsg$kcm(r5, &(0x7f0000000480)={&(0x7f0000000000)=@phonet={0x23, 0x4, 0x7f, 0x4}, 0x80, 0x0, 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x88}, 0x20000080)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_CONNECT(r6, 0x0, 0x4000)
r7 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000300)={'bond0\x00', <r8=>0x0})
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000000)={&(0x7f0000001d00)=@qipcrtr, 0x80, 0x0}, 0x0)
sendmsg$kcm(r10, &(0x7f0000001540)={&(0x7f0000000300)=@qipcrtr={0x2a, 0x1}, 0x80, 0x0}, 0x0)
r11 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r11, 0x84, 0x80, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007)
connect$rose(r11, &(0x7f0000000280)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, 0x1, [@bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x40)
sendmsg$nl_route(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800c0001006d6163766c616e00140002800800010008000000080003000000000008000500", @ANYRES32=r8], 0x4c}}, 0x0)

444.191307ms ago: executing program 2 (id=2440):
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r0, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="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", 0x238}, {&(0x7f0000000bc0)="ab29d92826349952eb8f7a2a74f535bc9739c1df57144c51a3391625b8b5354134b06ef1355506aeae96e3f097503998f375a054cf3d7de4fe53ea51518955349cdbadca60e1c65cc18dbe99369be03e492fb55fc9067bb6f7f7c3ee1720000000054a63ac58225ed0502f5ac8999e0c74a5dbb320bd54ec813e8bee6bfa5cbfb0726ac1b6ad97d802d5fae186f0769421fb965c7396854e2a3ac844a3769f8449901ba5e2b2da1ff6119aeb26ac204cfc6b54be73b6f195491ae2c0cb26b0cba61dae7a17740e8112ff188919c6e2e31a2a074863edba4a0e58b61faec4a42c29d7f9e48a43b8cb7d3c5a1e5aa67f87538140f8d633a54bceb8b1dda2397ea147d3b26e903f608b6ab1844ea7cf630d828118bba0f0f85e2e6316ae1ed9a2a7d08a05c170cb76bf111930df0cf760f7768571afdefe82a95296cee7c010f748a97046efcc774e7d85edbd5058104fef4942fb4430da89f67d1fea33bf2acfb7630932206960e9076c7d7fc99fce018701c50d39b811a7427a7a9fcb340c2755541f228462010ec40ba945a0febd460dad5d548f1be090f5dbaa8ae8835dc47ed2537681827f6129759272574cf58f2f33e47a0e416573cfdcfb44ed9dd4ce41af4de9c471c49f12f090934c3b32f2f4777c65b1574826727f5f62f842a3bedb18ec4aa931dfa0fc47e4dca15ec180d04cfdfff82fd9c6066fe65322c8c0b733c091c7ab9f8e1b60f6c37ef36acd509dec18fcc274d0334c8fa81809a5ddb27cc891a22c5978b8df086393396bf972ffd3013add7b197e6cbf06237757ae14f2eaabfcdf934749424c8250eb4ae6d5dd57b192825821fce610cb", 0x25a}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1", 0x36}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

349.015874ms ago: executing program 2 (id=2441):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)

300.798283ms ago: executing program 2 (id=2442):
r0 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r0, &(0x7f0000000040), 0xc) (async)
r1 = socket$qrtr(0x2a, 0x2, 0x0)
recvmmsg(r0, &(0x7f0000000ac0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x12002, 0x0) (async, rerun: 64)
connect$qrtr(r1, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc) (async, rerun: 64)
ioctl$EXT4_IOC_MIGRATE(r0, 0x6609) (async)
writev(r1, &(0x7f0000000340)=[{&(0x7f0000000080)='~', 0x1}], 0x1)
r2 = socket$inet_udp(0x2, 0x2, 0x0) (async)
r3 = socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff) (rerun: 64)
sendmsg$DEVLINK_CMD_RATE_SET(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000840)={0x3c, r4, 0x1, 0x0, 0x0, {0x2c}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x58}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x3c}}, 0x0) (async)
ioctl$sock_inet_SIOCADDRT(r2, 0x890b, &(0x7f0000000080)={0x0, {0x2, 0x4e23, @multicast1}, {0x2, 0x4e22, @remote}, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x0, 0x0, 0xfff, &(0x7f0000000000)='bond_slave_0\x00', 0x5, 0x7fff, 0x1})

230.531388ms ago: executing program 3 (id=2443):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_TDLS_OPER(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000004005100000008000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100ff05008a0004"], 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x0)

187.842867ms ago: executing program 2 (id=2444):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r1, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000040)=0x1f, 0x4)
r2 = accept4$ax25(r0, &(0x7f0000000000)={{0x3, @default}, [@rose, @null, @netrom, @default, @remote, @rose, @bcast, @null]}, &(0x7f00000000c0)=0x48, 0x800)
r3 = socket(0xf, 0x2, 0x8)
recvmmsg(r2, &(0x7f0000001900)=[{{&(0x7f0000000180)=@pppol2tpv3in6={0x18, 0x1, {0x0, <r4=>0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @private1}}}, 0x80, &(0x7f00000013c0)=[{&(0x7f0000000280)=""/18, 0x12}, {&(0x7f0000000280)}, {&(0x7f00000002c0)=""/71, 0x47}, {&(0x7f0000001540)=""/110, 0x6e}, {&(0x7f00000003c0)=""/4096, 0x1000}], 0x5, &(0x7f0000001440)=""/31, 0x1f}, 0x6}, {{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000015c0)=""/188, 0xbc}], 0x1, &(0x7f0000000340)=""/64, 0x40}, 0xffffffff}, {{&(0x7f0000001680)=@alg, 0x80, &(0x7f0000001800)=[{&(0x7f0000000380)}, {&(0x7f0000001700)=""/59, 0x3b}, {&(0x7f0000001740)=""/37, 0x25}, {&(0x7f0000001780)=""/128, 0x80}], 0x4, &(0x7f0000001840)=""/137, 0x89}, 0xcf55}], 0x3, 0x40, &(0x7f0000001500)={0x0, 0x989680})
getsockname$packet(r3, &(0x7f0000000200)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r3, 0x84, 0x20, &(0x7f0000000100), &(0x7f0000000140)=0x4)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
bpf$MAP_CREATE(0x0, &(0x7f0000002b80)=@bloom_filter={0x1e, 0x5, 0xe2d, 0x5, 0x2224a, 0x1, 0x10001, '\x00', r5, 0xffffffffffffffff, 0x0, 0x3, 0x2, 0xf, @void, @value, @void, @value}, 0x50)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000002c40)=@o_path={&(0x7f0000002c00)='./file0\x00', 0x0, 0x0, r6}, 0x18)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000002c80)={0x1b, 0x0, 0x0, 0x32e5, 0x0, r4, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x4, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000002d00)={0x1}, 0x4)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002d40)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x2, '\x00', r5, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
accept4(r6, &(0x7f0000000140)=@pppoe={0x18, 0x0, {0x0, @dev}}, 0x0, 0x0)

185.5619ms ago: executing program 4 (id=2445):
unshare(0x20040600)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={0x0, 0x2329000, 0x800}, 0x20)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'bridge_slave_1\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'bridge_slave_1\x00'})
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x1ff000, 0x6, 0x7f, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r3, 0x0, 0x0}, 0x20)
sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_ID={0x8}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_HANDLE={0xc, 0x3, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWOBJ={0x28, 0x12, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xa}, @NFT_OBJECT_CT_EXPECT=@NFTA_OBJ_DATA={0x14, 0x4, 0x0, 0x1, [@NFTA_CT_EXPECT_SIZE={0x5, 0x5, 0x8}, @NFTA_CT_EXPECT_L4PROTO={0x5, 0x2, 0x84}]}}], {0x14}}, 0x9c}, 0x1, 0x0, 0x0, 0x20008800}, 0x40c0005)
connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @any, 0x2}, 0xc)

106.66917ms ago: executing program 2 (id=2446):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
r1 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x1c)
sendmmsg$inet(r1, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000800)="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", 0x2f5}, {&(0x7f0000000bc0)="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", 0x12d}, {&(0x7f0000000fc0)="05437c98b91b1455046f57b5fc913814bde2bbeac2104eaea9c9d01a7838d859007067c10aa7352abbdf98e9bf03114784a11e8463c1970315d7deecda053ccde285e4a73efcecac3dfb6f", 0x4b}], 0x3, 0x0, 0x0, 0x900}}], 0x1, 0x0)

53.086494ms ago: executing program 4 (id=2447):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x22, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x48a, &(0x7f0000000600)={0x8, 0xff800001, 0xffffff27}, 0xc)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$tipc(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000000), 0x10, &(0x7f0000000480)=[{&(0x7f0000000180)="f7", 0x1}], 0x1}, 0x4004000)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000000)={0x40000000, 0x0, 0x0}, 0x0)
bind$inet(r4, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r4, &(0x7f0000000180), 0x400000000000077, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x0, 0x0, 0x0, 0x140, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x205, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x1, 0x40, 0x20, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000140), 0x1003, r6}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x19, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x6, r6}, 0x38)
sendmsg$NFULNL_MSG_CONFIG(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, 0x1, 0x4, 0x101, 0x0, 0x0, {0x5, 0x0, 0x5}, [@NFULA_CFG_QTHRESH={0x8}, @NFULA_CFG_CMD={0x5, 0x1, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x44040}, 0x8040)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x12040, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'gre0\x00'})
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_SET(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)={0x1a4, r7, 0xfeb3d7644d041cda, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_MEDIA={0x7c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x15}]}, @TIPC_NLA_MEDIA_PROP={0x44, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2b7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3ea}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}]}, @TIPC_NLA_SOCK={0x10, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x34}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}, @TIPC_NLA_BEARER={0xd4, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x2}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e23, 0x2cdd, @rand_addr=' \x01\x00', 0x101}}, {0x14, 0x2, @in={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x13}}}}}, @TIPC_NLA_BEARER_NAME={0x16, 0x1, @l2={'eth', 0x3a, 'veth0_macvtap\x00'}}, @TIPC_NLA_BEARER_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xf}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}, @TIPC_NLA_PROP_TOL={0x8}]}, @TIPC_NLA_BEARER_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0xffff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}]}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x27}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x4e20, 0x0, @private1, 0x40}}, {0x14, 0x2, @in={0x2, 0x4e23, @multicast1}}}}]}, @TIPC_NLA_PUBL={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xfffff1c3}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x6}]}, @TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY_MASTER={0x4}, @TIPC_NLA_NODE_KEY_MASTER={0x4}]}]}, 0x1a4}}, 0x4000001)
recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x10002)
ioctl$int_in(r0, 0x5452, &(0x7f0000000240)=0x6)
sendmsg$unix(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000040)="f8", 0x1}], 0x1}, 0xc041)

30.722633ms ago: executing program 3 (id=2448):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000100)={'vxcan0\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x10, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0x0, 0x0, 0x0, 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bind$can_raw(r2, &(0x7f00000001c0), 0x10)
recvmmsg(r2, &(0x7f0000002ec0)=[{{0x0, 0x0, 0x0}, 0x78e}], 0x1, 0x40031022, 0x0)
sendmsg$can_raw(r2, &(0x7f0000000440)={&(0x7f0000000780)={0x1d, r3}, 0x10, &(0x7f0000000200)={&(0x7f0000000140)=@can={{}, 0x0, 0x0, 0x0, 0x0, "400000008b20aaf0"}, 0x10}}, 0x0)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000040)=[{&(0x7f0000000280)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000014001080800418e00000b04fcff", 0x58}], 0x1)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0xe, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup(r7, &(0x7f0000000140)='syz0\x00', 0x200002, 0x0)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000ec0)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000180)="0036d551", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000300)="0f58aa", 0x3}], 0x1}}], 0x2, 0x0)
sendmmsg$sock(r1, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000840)=[{0x0}, {&(0x7f0000000640)="1bd811741a607159fda051b57d4c01e9986c2e65426807ac72604e001af6eba2fedb368d816a109958c47842f8f56a1c6fe296617bede164ba1802cd81f0d41cc77aadb91f6de5a0d05e3edd3b260afc80732ab70609c96107211530a57108325d22154b5a20a367309333edfcb7f835cae30f79c90707141097ef32c02724e039f2d610c0469b693da78e2e43cad8bdfa37546c443ece68", 0x98}, {&(0x7f0000000580)="5de3b88de49e7b7cfec66d713c7a722698e1e8e8c77c37434d96d6f3b2f33ec2a47ba0ce18c4c391142b75b191f13f5fd350b22e27369d79c8dcc5a6b74df2f0fbfe676e05df80acc754928b4e1cd3911220", 0x52}, {&(0x7f0000001e40)="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", 0x680}], 0x4, &(0x7f0000000a40)=[@mark={{0x14, 0x1, 0x24, 0x2}}, @mark={{0x14, 0x1, 0x24, 0x5}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @mark={{0x14, 0x1, 0x24, 0xd}}], 0x60}}], 0x1, 0x20000800)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r8 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r8, 0x10c, 0x9, &(0x7f0000000580), &(0x7f0000000600)=0x4)
setsockopt$inet_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f00000003c0)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}}, 0x0, 0x0, 0x23, 0x0, "093f38050b94725997f7ff898a3f9ab16a8731bf2ce9e46bca4cef5a7c35015b7a97f697e89d86377518bf274943a186cc9a051c531b5ad251ff1e26b7fe42b3eb0000008049ad87c56cd0c3628976cc"}, 0xd8)
sendto$inet(r1, &(0x7f0000000740)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba717cfe0702e3b6fcd6a0b0ec97454ed4539f1048748f81b63cf9ddb694b03d70786e7853a251b3f333cea3a2ef116348785c0f3dd0", 0x82, 0x0, 0x0, 0x0)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000640), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000840)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000002c00000008005800000000040e000100"], 0x3c}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000010000000000000000000000711211000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

0s ago: executing program 1 (id=2449):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYBLOB="38002b042c43e4f96ed73d5b49c1218a4a72b76f45ffb1636a130200007153905c", @ANYRES16=r1, @ANYBLOB="010000000000000000001a00000007002100626200001c002280040000800000040003000000000004000d00000004000080040000800400008024fc008004000080"], 0x38}}, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYRES16], 0x57)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x90)
r4 = socket$unix(0x1, 0x0, 0x0)
bind$unix(0xffffffffffffffff, 0x0, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r5, 0x400448de, &(0x7f00000000c0)={0x0, 0x0, "a4cd91"})
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(r6, &(0x7f0000000040)="05000000010000", 0x7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r7 = epoll_create(0x800)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r3, &(0x7f00000001c0)={0x10})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r3}, 0x10)
close(r4)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r8, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYRESOCT], 0x6c}}, 0x8000)
r10 = socket$netlink(0x10, 0x3, 0x0)
writev(r10, &(0x7f0000000780)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff010000000100000056000000250000001900040004e0144000000007fd17e5ffff0800040000000000", 0x39}], 0x1)
writev(r10, &(0x7f00000001c0)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)

kernel console output (not intermixed with test programs):

ng attributes in process `syz.4.1311'.
[  182.276812][T10615] bridge: RTM_DELNEIGH with unconfigured vlan 1 on bridge_slave_0
[  182.472166][T10632] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  182.694878][T10641] netlink: 'syz.2.1326': attribute type 11 has an invalid length.
[  182.713885][T10641] netlink: 'syz.2.1326': attribute type 11 has an invalid length.
[  183.773541][T10683] dummy0: left allmulticast mode
[  183.785950][T10683] dummy0: left promiscuous mode
[  183.915522][T10683] bridge_slave_0: left promiscuous mode
[  183.921514][T10683] bridge_slave_0: left allmulticast mode
[  183.982277][T10683] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  184.242795][T10723] FAULT_INJECTION: forcing a failure.
[  184.242795][T10723] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  184.323196][T10723] CPU: 0 UID: 0 PID: 10723 Comm: syz.5.1345 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  184.334027][T10723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  184.344120][T10723] Call Trace:
[  184.347431][T10723]  <TASK>
[  184.350480][T10723]  dump_stack_lvl+0x241/0x360
[  184.355200][T10723]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.360442][T10723]  ? __pfx__printk+0x10/0x10
[  184.365058][T10723]  ? __pfx_lock_release+0x10/0x10
[  184.370102][T10723]  ? alloc_pages_mpol_noprof+0x417/0x680
[  184.375759][T10723]  should_fail_ex+0x3b0/0x4e0
[  184.380447][T10723]  _copy_from_user+0x2f/0xe0
[  184.385047][T10723]  bpf_prog_test_run_xdp+0xe07/0x11e0
[  184.390440][T10723]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  184.396249][T10723]  ? __fget_files+0x29/0x470
[  184.400851][T10723]  ? fput+0x1a8/0x230
[  184.404838][T10723]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  184.410668][T10723]  bpf_prog_test_run+0x2e4/0x360
[  184.415615][T10723]  __sys_bpf+0x48d/0x810
[  184.419876][T10723]  ? __pfx___sys_bpf+0x10/0x10
[  184.424657][T10723]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  184.430649][T10723]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  184.436983][T10723]  ? do_syscall_64+0x100/0x230
[  184.441753][T10723]  __x64_sys_bpf+0x7c/0x90
[  184.446169][T10723]  do_syscall_64+0xf3/0x230
[  184.450673][T10723]  ? clear_bhb_loop+0x35/0x90
[  184.455355][T10723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.461250][T10723] RIP: 0033:0x7f3282d7e719
[  184.465668][T10723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.485556][T10723] RSP: 002b:00007f3283ac4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  184.494177][T10723] RAX: ffffffffffffffda RBX: 00007f3282f35f80 RCX: 00007f3282d7e719
[  184.502175][T10723] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[  184.510160][T10723] RBP: 00007f3283ac4090 R08: 0000000000000000 R09: 0000000000000000
[  184.518136][T10723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  184.526126][T10723] R13: 0000000000000000 R14: 00007f3282f35f80 R15: 00007ffd4adf9c38
[  184.534117][T10723]  </TASK>
[  184.944051][T10759] netlink: 'syz.4.1350': attribute type 2 has an invalid length.
[  184.956445][T10759] netlink: 'syz.4.1350': attribute type 9 has an invalid length.
[  184.978569][T10746] netlink: 'syz.4.1350': attribute type 1 has an invalid length.
[  185.004374][T10759] netlink: 'syz.4.1350': attribute type 1 has an invalid length.
[  185.169469][T10766] netlink: 'syz.3.1353': attribute type 11 has an invalid length.
[  185.178536][T10766] netlink: 'syz.3.1353': attribute type 11 has an invalid length.
[  185.195329][T10766] __nla_validate_parse: 13 callbacks suppressed
[  185.195348][T10766] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1353'.
[  185.479490][T10779] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1359'.
[  185.486365][T10781] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1358'.
[  185.750466][T10794] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1366'.
[  186.341751][T10840] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1373'.
[  186.518520][T10846] lo speed is unknown, defaulting to 1000
[  186.524826][T10849] veth0: entered promiscuous mode
[  186.544356][T10849] veth0: entered allmulticast mode
[  186.551040][T10849] A link change request failed with some changes committed already. Interface veth0 may have been left with an inconsistent configuration, please check.
[  186.646308][ T5855] Bluetooth: hci1: command 0x0406 tx timeout
[  186.648145][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[  186.652676][   T54] Bluetooth: hci3: command 0x0406 tx timeout
[  186.706118][T10851] lo speed is unknown, defaulting to 1000
[  186.933788][T10867] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1378'.
[  186.962364][T10870] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  187.148322][T10884] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1383'.
[  187.486059][T10894] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  187.519700][T10900] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1386'.
[  187.708034][T10913] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1391'.
[  187.747559][T10910] vlan2: entered promiscuous mode
[  187.752806][T10910] dummy0: entered promiscuous mode
[  187.758852][T10910] vlan2: entered allmulticast mode
[  187.764322][T10910] dummy0: entered allmulticast mode
[  188.417668][T10942] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1397'.
[  188.991353][T10971] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  189.005031][T10970] netlink: 'syz.1.1405': attribute type 11 has an invalid length.
[  189.048093][T10970] netlink: 'syz.1.1405': attribute type 11 has an invalid length.
[  189.135277][T10975] netlink: 'syz.4.1407': attribute type 4 has an invalid length.
[  190.201597][T11020] __nla_validate_parse: 4 callbacks suppressed
[  190.201620][T11020] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1418'.
[  190.309907][T11026] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1420'.
[  190.411856][T11026] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1420'.
[  190.473985][T11031] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1423'.
[  190.500602][T11020] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  190.587168][T11026] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1420'.
[  190.703321][T11049] IPVS: sync thread started: state = MASTER, mcast_ifn = macvlan0, syncid = 2, id = 0
[  190.852497][T11056] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1431'.
[  190.869050][T11057] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check.
[  190.893102][T11056] netlink: 108 bytes leftover after parsing attributes in process `syz.4.1431'.
[  191.170813][T11071] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1433'.
[  191.925113][T11100] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1442'.
[  191.948916][T11100] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1442'.
[  192.476537][ T3599] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  192.801705][T11149] lo speed is unknown, defaulting to 1000
[  192.971339][T11164] FAULT_INJECTION: forcing a failure.
[  192.971339][T11164] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.993553][T11164] CPU: 1 UID: 0 PID: 11164 Comm: syz.1.1457 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  193.004368][T11164] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  193.014439][T11164] Call Trace:
[  193.017748][T11164]  <TASK>
[  193.020704][T11164]  dump_stack_lvl+0x241/0x360
[  193.025516][T11164]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.030760][T11164]  ? __pfx__printk+0x10/0x10
[  193.035391][T11164]  ? __pfx_lock_release+0x10/0x10
[  193.040484][T11164]  should_fail_ex+0x3b0/0x4e0
[  193.045209][T11164]  _copy_to_user+0x2f/0xb0
[  193.049666][T11164]  bpf_test_finish+0x212/0x890
[  193.054476][T11164]  ? __might_fault+0xaa/0x120
[  193.059181][T11164]  ? __pfx_bpf_test_finish+0x10/0x10
[  193.064505][T11164]  ? _copy_from_user+0xa6/0xe0
[  193.069304][T11164]  ? bpf_test_init+0x15a/0x180
[  193.074111][T11164]  bpf_prog_test_run_xdp+0x8f4/0x11e0
[  193.079516][T11164]  ? __pfx_lock_release+0x10/0x10
[  193.084586][T11164]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  193.090424][T11164]  ? __fget_files+0x29/0x470
[  193.095066][T11164]  ? fput+0x1a8/0x230
[  193.099091][T11164]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  193.104931][T11164]  bpf_prog_test_run+0x2e4/0x360
[  193.109905][T11164]  __sys_bpf+0x48d/0x810
[  193.114181][T11164]  ? __pfx___sys_bpf+0x10/0x10
[  193.118973][T11164]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  193.124985][T11164]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  193.131325][T11164]  ? do_syscall_64+0x100/0x230
[  193.136098][T11164]  __x64_sys_bpf+0x7c/0x90
[  193.140513][T11164]  do_syscall_64+0xf3/0x230
[  193.145023][T11164]  ? clear_bhb_loop+0x35/0x90
[  193.149716][T11164]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.155615][T11164] RIP: 0033:0x7f7d4617e719
[  193.160044][T11164] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.179661][T11164] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  193.188258][T11164] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  193.196237][T11164] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  193.204212][T11164] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  193.212187][T11164] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  193.220156][T11164] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  193.228139][T11164]  </TASK>
[  193.910770][T11198] lo speed is unknown, defaulting to 1000
[  194.480259][T11246] netlink: 'syz.1.1478': attribute type 3 has an invalid length.
[  194.652467][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[  194.659826][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  195.259140][T11279] __nla_validate_parse: 15 callbacks suppressed
[  195.259158][T11279] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1483'.
[  195.684897][T11301] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1489'.
[  195.699665][T11301] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1489'.
[  195.827199][T11299] vlan2: entered promiscuous mode
[  195.835581][T11299] vlan2: entered allmulticast mode
[  195.937705][T11311] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1490'.
[  196.156945][T11321] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1495'.
[  196.171354][T11317] Cannot find set identified by id 632 to match
[  196.193213][T11322] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1491'.
[  196.231984][T11321] netlink: 'syz.1.1495': attribute type 4 has an invalid length.
[  196.348025][T11321] hsr_slave_0: left promiscuous mode
[  196.375030][T11321] hsr_slave_1: left promiscuous mode
[  196.384647][T11331] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1498'.
[  196.530403][T11334] SET target dimension over the limit!
[  196.844098][T11345] netdevsim netdevsim1: Direct firmware load for /tun failed with error -2
[  196.890281][T11345] netdevsim netdevsim1: Falling back to sysfs fallback for: /tun
[  197.034341][T11353] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1507'.
[  197.074940][T11353] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1507'.
[  197.214560][T11367] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1511'.
[  197.623472][T11379] dccp_invalid_packet: P.Data Offset(100) too large
[  199.110753][T11458] bridge_slave_0: entered promiscuous mode
[  199.118081][T11458] bridge_slave_0: entered allmulticast mode
[  199.830581][T11477] Cannot find set identified by id 632 to match
[  200.124050][T11491] pim6reg: entered allmulticast mode
[  200.185434][T11491] pim6reg: left allmulticast mode
[  200.303837][T11497] __nla_validate_parse: 6 callbacks suppressed
[  200.303864][T11497] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1542'.
[  200.361296][T11497] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1542'.
[  200.645260][T11514] FAULT_INJECTION: forcing a failure.
[  200.645260][T11514] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.680182][T11518] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1547'.
[  200.709202][T11514] CPU: 1 UID: 0 PID: 11514 Comm: syz.1.1546 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  200.720032][T11514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  200.730205][T11514] Call Trace:
[  200.733511][T11514]  <TASK>
[  200.736465][T11514]  dump_stack_lvl+0x241/0x360
[  200.741186][T11514]  ? __pfx_dump_stack_lvl+0x10/0x10
[  200.746421][T11514]  ? __pfx__printk+0x10/0x10
[  200.751044][T11514]  ? __pfx_lock_release+0x10/0x10
[  200.756114][T11514]  should_fail_ex+0x3b0/0x4e0
[  200.760834][T11514]  _copy_to_user+0x2f/0xb0
[  200.765293][T11514]  bpf_test_finish+0x2e6/0x890
[  200.770098][T11514]  ? __pfx_bpf_test_finish+0x10/0x10
[  200.775598][T11514]  ? _copy_from_user+0xa6/0xe0
[  200.780430][T11514]  ? bpf_test_init+0x15a/0x180
[  200.785597][T11514]  bpf_prog_test_run_xdp+0x8f4/0x11e0
[  200.791006][T11514]  ? __pfx_lock_release+0x10/0x10
[  200.796051][T11514]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  200.801864][T11514]  ? __fget_files+0x29/0x470
[  200.806458][T11514]  ? fput+0x1a8/0x230
[  200.810439][T11514]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  200.816252][T11514]  bpf_prog_test_run+0x2e4/0x360
[  200.821224][T11514]  __sys_bpf+0x48d/0x810
[  200.825466][T11514]  ? __pfx___sys_bpf+0x10/0x10
[  200.830356][T11514]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  200.836339][T11514]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  200.842670][T11514]  ? do_syscall_64+0x100/0x230
[  200.847439][T11514]  __x64_sys_bpf+0x7c/0x90
[  200.851858][T11514]  do_syscall_64+0xf3/0x230
[  200.856359][T11514]  ? clear_bhb_loop+0x35/0x90
[  200.861038][T11514]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.867018][T11514] RIP: 0033:0x7f7d4617e719
[  200.871459][T11514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.891080][T11514] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  200.899496][T11514] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  200.907463][T11514] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[  200.915514][T11514] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  200.923488][T11514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.931465][T11514] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  200.939448][T11514]  </TASK>
[  201.093335][T11512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1545'.
[  201.157126][T11512] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1545'.
[  201.455484][T11535] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1553'.
[  201.787461][T11574] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1554'.
[  201.849508][ T5855] Bluetooth: hci4: command 0x0405 tx timeout
[  201.947879][T11580] netlink: 'syz.3.1559': attribute type 10 has an invalid length.
[  202.491421][T11612] ªªªªª#: renamed from caif0
[  202.539582][T11615] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1570'.
[  202.571964][T11615] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1570'.
[  202.722378][T11623] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1571'.
[  203.014734][T11650] siw: device registration error -23
[  203.442884][T11671] !1ÿ: renamed from veth0_vlan (while UP)
[  203.772547][T11688] xt_connbytes: Forcing CT accounting to be enabled
[  204.458246][T11724] dccp_invalid_packet: P.Data Offset(100) too large
[  204.716736][T11742] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.917265][T11751] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  205.063095][T11756] lo speed is unknown, defaulting to 1000
[  205.261972][T11769] netlink: 'syz.3.1608': attribute type 33 has an invalid length.
[  205.566617][T11781] __nla_validate_parse: 5 callbacks suppressed
[  205.566638][T11781] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1612'.
[  205.627471][T11786] netlink: 'syz.3.1614': attribute type 10 has an invalid length.
[  205.753783][T11792] dccp_invalid_packet: P.Data Offset(100) too large
[  205.793004][T11794] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1617'.
[  206.130681][T11809] netlink: 11 bytes leftover after parsing attributes in process `syz.4.1620'.
[  206.236452][T11814] netlink: 'syz.1.1622': attribute type 10 has an invalid length.
[  206.246593][T11814] batadv_slave_0: left promiscuous mode
[  206.252387][T11814] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.445191][T11814] 
: (slave batadv_slave_0): Enslaving as an active interface with an up link
[  206.549252][T11820] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1623'.
[  206.586379][T11820] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1623'.
[  206.728565][T11837] lo speed is unknown, defaulting to 1000
[  206.751970][T11838] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1627'.
[  206.799312][T11840] lo speed is unknown, defaulting to 1000
[  206.998366][T11850] FAULT_INJECTION: forcing a failure.
[  206.998366][T11850] name failslab, interval 1, probability 0, space 0, times 0
[  207.011152][T11850] CPU: 1 UID: 0 PID: 11850 Comm: syz.1.1628 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  207.021959][T11850] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  207.032092][T11850] Call Trace:
[  207.035478][T11850]  <TASK>
[  207.038443][T11850]  dump_stack_lvl+0x241/0x360
[  207.043163][T11850]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.048416][T11850]  ? __pfx__printk+0x10/0x10
[  207.053053][T11850]  ? __ip_dev_find+0x497/0x570
[  207.057862][T11850]  should_fail_ex+0x3b0/0x4e0
[  207.062573][T11850]  ? dst_alloc+0x12b/0x190
[  207.067144][T11850]  should_failslab+0xac/0x100
[  207.071865][T11850]  ? dst_alloc+0x12b/0x190
[  207.076330][T11850]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  207.081747][T11850]  dst_alloc+0x12b/0x190
[  207.086046][T11850]  ip_route_output_key_hash_rcu+0x13cc/0x2390
[  207.092164][T11850]  ip_route_output_key_hash+0x193/0x2b0
[  207.097752][T11850]  ? ip_route_output_key_hash+0xdf/0x2b0
[  207.103437][T11850]  ? __pfx_ip_route_output_key_hash+0x10/0x10
[  207.109563][T11850]  ip_route_output_flow+0x29/0x140
[  207.114718][T11850]  ip_tunnel_xmit+0xc16/0x2940
[  207.119548][T11850]  ? __pfx_ip_tunnel_xmit+0x10/0x10
[  207.124774][T11850]  ? gre_build_header+0x341/0xb30
[  207.129842][T11850]  ? __pfx_gre_build_header+0x10/0x10
[  207.135253][T11850]  ? skb_network_protocol+0x5aa/0x7b0
[  207.140661][T11850]  ? iptunnel_handle_offloads+0x31b/0x650
[  207.146443][T11850]  ipgre_xmit+0x8d6/0xc90
[  207.150819][T11850]  ? __pfx_ipgre_xmit+0x10/0x10
[  207.155713][T11850]  ? validate_xmit_skb+0x9f9/0x1120
[  207.160958][T11850]  dev_hard_start_xmit+0x27a/0x7e0
[  207.166123][T11850]  __dev_queue_xmit+0x1b56/0x3f30
[  207.171192][T11850]  ? __dev_queue_xmit+0x2da/0x3f30
[  207.176344][T11850]  ? __pfx___dev_queue_xmit+0x10/0x10
[  207.181769][T11850]  ? kmalloc_reserve+0xa8/0x2a0
[  207.186663][T11850]  ? skb_release_data+0x2b5/0x8a0
[  207.191741][T11850]  ? pskb_expand_head+0xc52/0x1380
[  207.196935][T11850]  ? __bpf_redirect+0x51c/0xe40
[  207.201838][T11850]  __bpf_tx_skb+0x18e/0x260
[  207.206389][T11850]  bpf_clone_redirect+0x26f/0x3d0
[  207.211470][T11850]  bpf_prog_973cd02a7a0e8181+0x5f/0x64
[  207.216963][T11850]  ? lockdep_count_backward_deps+0x250/0x280
[  207.223000][T11850]  ? timekeeping_get_ns+0x5c/0x420
[  207.228147][T11850]  ? seqcount_lockdep_reader_access+0x157/0x220
[  207.234521][T11850]  ? lockdep_hardirqs_on+0x99/0x150
[  207.239766][T11850]  ? bpf_test_run+0x370/0xa90
[  207.244484][T11850]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  207.250242][T11850]  ? ktime_get+0x3c/0xb0
[  207.254529][T11850]  ? lockdep_hardirqs_on+0x99/0x150
[  207.259776][T11850]  ? bpf_test_run+0x370/0xa90
[  207.264487][T11850]  ? __pfx___cant_migrate+0x10/0x10
[  207.269734][T11850]  ? ktime_get+0x9b/0xb0
[  207.274010][T11850]  bpf_test_run+0x4f0/0xa90
[  207.278552][T11850]  ? do_syscall_64+0xf3/0x230
[  207.283358][T11850]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.289473][T11850]  ? bpf_test_run+0x370/0xa90
[  207.294207][T11850]  ? __pfx_bpf_test_run+0x10/0x10
[  207.299280][T11850]  ? eth_type_trans+0x3d1/0x7a0
[  207.304216][T11850]  ? __pfx_eth_type_trans+0x10/0x10
[  207.309473][T11850]  ? convert___skb_to_skb+0x41/0x620
[  207.314806][T11850]  bpf_prog_test_run_skb+0xc97/0x1820
[  207.320245][T11850]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  207.326101][T11850]  ? fput+0x1a8/0x230
[  207.330131][T11850]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  207.335979][T11850]  bpf_prog_test_run+0x2e4/0x360
[  207.340954][T11850]  __sys_bpf+0x48d/0x810
[  207.345201][T11850]  ? __pfx___sys_bpf+0x10/0x10
[  207.349987][T11850]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  207.355970][T11850]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  207.362299][T11850]  ? do_syscall_64+0x100/0x230
[  207.367106][T11850]  __x64_sys_bpf+0x7c/0x90
[  207.371562][T11850]  do_syscall_64+0xf3/0x230
[  207.376112][T11850]  ? clear_bhb_loop+0x35/0x90
[  207.380828][T11850]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.386765][T11850] RIP: 0033:0x7f7d4617e719
[  207.391221][T11850] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.410868][T11850] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  207.419325][T11850] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  207.427338][T11850] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a
[  207.435330][T11850] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  207.443388][T11850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.451453][T11850] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  207.459445][T11850]  </TASK>
[  207.563229][T11864] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1632'.
[  207.587216][T11861] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1631'.
[  207.655207][T11861] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1631'.
[  207.717456][T11858] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1630'.
[  208.216329][T11909] FAULT_INJECTION: forcing a failure.
[  208.216329][T11909] name failslab, interval 1, probability 0, space 0, times 0
[  208.230263][T11909] CPU: 0 UID: 0 PID: 11909 Comm: syz.3.1640 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  208.241248][T11909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  208.251335][T11909] Call Trace:
[  208.254641][T11909]  <TASK>
[  208.257598][T11909]  dump_stack_lvl+0x241/0x360
[  208.262312][T11909]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.267541][T11909]  ? __pfx__printk+0x10/0x10
[  208.272170][T11909]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  208.278203][T11909]  ? __pfx___might_resched+0x10/0x10
[  208.283523][T11909]  should_fail_ex+0x3b0/0x4e0
[  208.288220][T11909]  should_failslab+0xac/0x100
[  208.292901][T11909]  ? __alloc_skb+0x1c3/0x440
[  208.297498][T11909]  kmem_cache_alloc_node_noprof+0x71/0x320
[  208.303313][T11909]  __alloc_skb+0x1c3/0x440
[  208.307914][T11909]  ? validate_chain+0x11e/0x5920
[  208.312943][T11909]  ? __pfx___alloc_skb+0x10/0x10
[  208.317887][T11909]  ? reacquire_held_locks+0x600/0x690
[  208.323265][T11909]  ? mark_lock+0x9a/0x360
[  208.327601][T11909]  alloc_skb_with_frags+0xc3/0x820
[  208.332717][T11909]  ? aa_label_sk_perm+0x4f3/0x6c0
[  208.337782][T11909]  sock_alloc_send_pskb+0x91a/0xa60
[  208.343002][T11909]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  208.348748][T11909]  hci_sock_sendmsg+0x22b/0x11c0
[  208.353701][T11909]  ? __pfx_aa_sk_perm+0x10/0x10
[  208.358556][T11909]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  208.363932][T11909]  ? __pfx_aa_file_perm+0x10/0x10
[  208.368958][T11909]  ? aa_sock_msg_perm+0x91/0x160
[  208.373904][T11909]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  208.379281][T11909]  __sock_sendmsg+0x221/0x270
[  208.384035][T11909]  sock_write_iter+0x2d7/0x3f0
[  208.388815][T11909]  ? __pfx_sock_write_iter+0x10/0x10
[  208.394117][T11909]  ? bpf_lsm_file_permission+0x9/0x10
[  208.399579][T11909]  ? security_file_permission+0x74/0x280
[  208.405253][T11909]  vfs_write+0xa6d/0xc90
[  208.409521][T11909]  ? __pfx_sock_write_iter+0x10/0x10
[  208.414811][T11909]  ? __pfx_vfs_write+0x10/0x10
[  208.419587][T11909]  ? fdget_pos+0x19a/0x320
[  208.424006][T11909]  ksys_write+0x183/0x2b0
[  208.428338][T11909]  ? __pfx_ksys_write+0x10/0x10
[  208.433190][T11909]  ? do_syscall_64+0x100/0x230
[  208.437959][T11909]  ? do_syscall_64+0xb6/0x230
[  208.442639][T11909]  do_syscall_64+0xf3/0x230
[  208.447148][T11909]  ? clear_bhb_loop+0x35/0x90
[  208.451837][T11909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.457740][T11909] RIP: 0033:0x7f8962b7e719
[  208.462158][T11909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.481873][T11909] RSP: 002b:00007f8963978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  208.490309][T11909] RAX: ffffffffffffffda RBX: 00007f8962d35f80 RCX: 00007f8962b7e719
[  208.498298][T11909] RDX: 0000000000000007 RSI: 0000000020000000 RDI: 0000000000000004
[  208.506282][T11909] RBP: 00007f8963978090 R08: 0000000000000000 R09: 0000000000000000
[  208.514259][T11909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.522237][T11909] R13: 0000000000000000 R14: 00007f8962d35f80 R15: 00007ffcf9283478
[  208.530231][T11909]  </TASK>
[  208.588667][T11911] dccp_invalid_packet: P.Data Offset(100) too large
[  209.291405][T11940] lo speed is unknown, defaulting to 1000
[  209.298434][T11940] lo speed is unknown, defaulting to 1000
[  209.304695][T11940] lo speed is unknown, defaulting to 1000
[  209.364487][T11940] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  209.403117][T11940] lo speed is unknown, defaulting to 1000
[  209.410592][T11940] lo speed is unknown, defaulting to 1000
[  209.429271][T11940] lo speed is unknown, defaulting to 1000
[  209.457575][T11940] lo speed is unknown, defaulting to 1000
[  209.464391][T11940] lo speed is unknown, defaulting to 1000
[  209.900363][T11973] dccp_invalid_packet: P.Data Offset(100) too large
[  210.722249][T12009] FAULT_INJECTION: forcing a failure.
[  210.722249][T12009] name failslab, interval 1, probability 0, space 0, times 0
[  210.743059][T12009] CPU: 0 UID: 0 PID: 12009 Comm: syz.1.1675 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  210.753893][T12009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  210.763995][T12009] Call Trace:
[  210.767326][T12009]  <TASK>
[  210.768348][T12010] __nla_validate_parse: 20 callbacks suppressed
[  210.768364][T12010] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1674'.
[  210.770478][T12009]  dump_stack_lvl+0x241/0x360
[  210.790966][T12009]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.796204][T12009]  ? __pfx__printk+0x10/0x10
[  210.800827][T12009]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  210.806408][T12009]  ? __pfx___might_resched+0x10/0x10
[  210.812067][T12009]  should_fail_ex+0x3b0/0x4e0
[  210.816891][T12009]  ? __kernfs_new_node+0xd8/0x870
[  210.821920][T12009]  should_failslab+0xac/0x100
[  210.826606][T12009]  ? __kernfs_new_node+0xd8/0x870
[  210.831639][T12009]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  210.837031][T12009]  __kernfs_new_node+0xd8/0x870
[  210.841895][T12009]  ? __pfx___kernfs_new_node+0x10/0x10
[  210.847375][T12009]  ? __pfx_lock_release+0x10/0x10
[  210.852431][T12009]  ? do_raw_spin_unlock+0x13c/0x8b0
[  210.857658][T12009]  ? up_write+0x1a9/0x590
[  210.862009][T12009]  kernfs_new_node+0x137/0x240
[  210.866780][T12009]  kernfs_create_dir_ns+0x43/0x120
[  210.871899][T12009]  internal_create_group+0x4f5/0x11d0
[  210.877299][T12009]  ? __pfx_internal_create_group+0x10/0x10
[  210.883109][T12009]  ? device_add_attrs+0x48c/0x600
[  210.888139][T12009]  ? __pfx_device_add_attrs+0x10/0x10
[  210.893510][T12009]  ? bus_add_device+0xde/0x460
[  210.898299][T12009]  dpm_sysfs_add+0x69/0x280
[  210.902808][T12009]  device_add+0x5bc/0xbf0
[  210.907163][T12009]  tty_register_device_attr+0x437/0x960
[  210.912726][T12009]  ? __pfx_tty_register_device_attr+0x10/0x10
[  210.921762][T12009]  ? tty_port_register_device+0x5b/0x100
[  210.927425][T12009]  rfcomm_dev_ioctl+0x1a51/0x2220
[  210.932462][T12009]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  210.937845][T12009]  ? kfree+0x1a0/0x440
[  210.941921][T12009]  ? tomoyo_path_number_perm+0x68d/0x880
[  210.947563][T12009]  ? bt_sock_ioctl+0xe9/0x2c0
[  210.952253][T12009]  sock_do_ioctl+0x158/0x460
[  210.956849][T12009]  ? __pfx_sock_do_ioctl+0x10/0x10
[  210.961983][T12009]  sock_ioctl+0x626/0x8e0
[  210.966340][T12009]  ? __pfx_sock_ioctl+0x10/0x10
[  210.971400][T12009]  ? __fget_files+0x29/0x470
[  210.976008][T12009]  ? __fget_files+0x3f3/0x470
[  210.980701][T12009]  ? __pfx_sock_ioctl+0x10/0x10
[  210.985590][T12009]  __se_sys_ioctl+0xf9/0x170
[  210.990200][T12009]  do_syscall_64+0xf3/0x230
[  210.994884][T12009]  ? clear_bhb_loop+0x35/0x90
[  210.999578][T12009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.005484][T12009] RIP: 0033:0x7f7d4617e719
[  211.009918][T12009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.029548][T12009] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  211.037999][T12009] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  211.045994][T12009] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000006
[  211.054054][T12009] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  211.062138][T12009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  211.070126][T12009] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  211.078119][T12009]  </TASK>
[  211.287515][ T5859] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  211.360551][T12027] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1682'.
[  211.385516][T12028] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1678'.
[  211.469787][T12034] FAULT_INJECTION: forcing a failure.
[  211.469787][T12034] name failslab, interval 1, probability 0, space 0, times 0
[  211.485309][T12033] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1683'.
[  211.511380][T12034] CPU: 1 UID: 0 PID: 12034 Comm: syz.1.1684 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  211.522213][T12034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  211.532391][T12034] Call Trace:
[  211.535700][T12034]  <TASK>
[  211.538656][T12034]  dump_stack_lvl+0x241/0x360
[  211.543416][T12034]  ? __pfx_dump_stack_lvl+0x10/0x10
[  211.548658][T12034]  ? __pfx__printk+0x10/0x10
[  211.553296][T12034]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  211.559291][T12034]  ? __pfx___might_resched+0x10/0x10
[  211.564587][T12034]  should_fail_ex+0x3b0/0x4e0
[  211.569292][T12034]  should_failslab+0xac/0x100
[  211.573975][T12034]  ? __alloc_skb+0x1c3/0x440
[  211.578567][T12034]  kmem_cache_alloc_node_noprof+0x71/0x320
[  211.584384][T12034]  __alloc_skb+0x1c3/0x440
[  211.588810][T12034]  ? __pfx___alloc_skb+0x10/0x10
[  211.593751][T12034]  ? netlink_ack_tlv_len+0x6e/0x200
[  211.599035][T12034]  netlink_ack+0x13f/0xa30
[  211.603463][T12034]  ? __kasan_kmalloc+0x98/0xb0
[  211.608235][T12034]  ? nfnetlink_rcv+0x1265/0x2ab0
[  211.613173][T12034]  ? nfnetlink_rcv+0x12c6/0x2ab0
[  211.618119][T12034]  nfnetlink_rcv+0x26b6/0x2ab0
[  211.622924][T12034]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  211.628075][T12034]  ? netlink_deliver_tap+0x2e/0x1b0
[  211.633284][T12034]  ? skb_clone+0x240/0x390
[  211.637704][T12034]  ? __pfx_lock_release+0x10/0x10
[  211.642742][T12034]  ? netlink_deliver_tap+0x2e/0x1b0
[  211.647965][T12034]  netlink_unicast+0x7f6/0x990
[  211.652744][T12034]  ? __pfx_netlink_unicast+0x10/0x10
[  211.658028][T12034]  ? __virt_addr_valid+0x183/0x530
[  211.663144][T12034]  ? __check_object_size+0x48e/0x900
[  211.668437][T12034]  netlink_sendmsg+0x8e4/0xcb0
[  211.673217][T12034]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.678503][T12034]  ? aa_sock_msg_perm+0x91/0x160
[  211.683441][T12034]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.688724][T12034]  __sock_sendmsg+0x221/0x270
[  211.693663][T12034]  ____sys_sendmsg+0x52a/0x7e0
[  211.698433][T12034]  ? __pfx_____sys_sendmsg+0x10/0x10
[  211.703739][T12034]  __sys_sendmsg+0x292/0x380
[  211.708331][T12034]  ? __pfx___sys_sendmsg+0x10/0x10
[  211.713452][T12034]  ? __pfx_vfs_write+0x10/0x10
[  211.718239][T12034]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  211.724574][T12034]  ? do_syscall_64+0x100/0x230
[  211.729349][T12034]  ? do_syscall_64+0xb6/0x230
[  211.734031][T12034]  do_syscall_64+0xf3/0x230
[  211.738541][T12034]  ? clear_bhb_loop+0x35/0x90
[  211.743224][T12034]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.749207][T12034] RIP: 0033:0x7f7d4617e719
[  211.753619][T12034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  211.773232][T12034] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  211.781648][T12034] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  211.789616][T12034] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[  211.797584][T12034] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  211.805553][T12034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  211.813520][T12034] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  211.821514][T12034]  </TASK>
[  211.875672][T12037] dccp_invalid_packet: P.Data Offset(100) too large
[  211.976507][T12038] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  212.071223][T12036] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1685'.
[  212.131174][T12048] netlink: 'syz.2.1688': attribute type 10 has an invalid length.
[  212.191950][T12048] netlink: 'syz.2.1688': attribute type 10 has an invalid length.
[  212.227369][T12052] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1692'.
[  212.305497][T12057] FAULT_INJECTION: forcing a failure.
[  212.305497][T12057] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  212.319489][T12057] CPU: 0 UID: 0 PID: 12057 Comm: syz.2.1693 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  212.330294][T12057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  212.340372][T12057] Call Trace:
[  212.343654][T12057]  <TASK>
[  212.346589][T12057]  dump_stack_lvl+0x241/0x360
[  212.351275][T12057]  ? __pfx_dump_stack_lvl+0x10/0x10
[  212.356483][T12057]  ? __pfx__printk+0x10/0x10
[  212.361113][T12057]  ? __pfx_lock_release+0x10/0x10
[  212.366178][T12057]  should_fail_ex+0x3b0/0x4e0
[  212.370897][T12057]  _copy_to_user+0x2f/0xb0
[  212.375322][T12057]  bpf_test_finish+0x2e6/0x890
[  212.380107][T12057]  ? __might_fault+0xaa/0x120
[  212.384793][T12057]  ? __pfx_bpf_test_finish+0x10/0x10
[  212.390106][T12057]  ? _copy_from_user+0xa6/0xe0
[  212.394889][T12057]  ? bpf_test_init+0x15a/0x180
[  212.399666][T12057]  bpf_prog_test_run_xdp+0x8f4/0x11e0
[  212.405080][T12057]  ? __pfx_lock_release+0x10/0x10
[  212.410213][T12057]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  212.416036][T12057]  ? __fget_files+0x29/0x470
[  212.420653][T12057]  ? fput+0x1a8/0x230
[  212.424637][T12057]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  212.430452][T12057]  bpf_prog_test_run+0x2e4/0x360
[  212.435402][T12057]  __sys_bpf+0x48d/0x810
[  212.439741][T12057]  ? __pfx___sys_bpf+0x10/0x10
[  212.444530][T12057]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  212.450530][T12057]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  212.456872][T12057]  ? do_syscall_64+0x100/0x230
[  212.461643][T12057]  __x64_sys_bpf+0x7c/0x90
[  212.466065][T12057]  do_syscall_64+0xf3/0x230
[  212.470580][T12057]  ? clear_bhb_loop+0x35/0x90
[  212.475262][T12057]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.481164][T12057] RIP: 0033:0x7f013cd7e719
[  212.485580][T12057] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  212.505375][T12057] RSP: 002b:00007f013dbe6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  212.513899][T12057] RAX: ffffffffffffffda RBX: 00007f013cf35f80 RCX: 00007f013cd7e719
[  212.521897][T12057] RDX: 0000000000000050 RSI: 0000000020000640 RDI: 000000000000000a
[  212.529888][T12057] RBP: 00007f013dbe6090 R08: 0000000000000000 R09: 0000000000000000
[  212.537955][T12057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  212.545942][T12057] R13: 0000000000000000 R14: 00007f013cf35f80 R15: 00007fff5a4ef0f8
[  212.553942][T12057]  </TASK>
[  212.781014][T12061] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1694'.
[  212.817599][T12068] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1696'.
[  213.031617][T12086] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1700'.
[  213.047460][T12088] unsupported nlmsg_type 40
[  213.095458][T12094] xt_TCPMSS: Only works on TCP SYN packets
[  213.113262][T12088] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1701'.
[  213.135034][T12088] netlink: 'syz.2.1701': attribute type 30 has an invalid length.
[  213.693100][T12133] FAULT_INJECTION: forcing a failure.
[  213.693100][T12133] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  213.726158][T12133] CPU: 0 UID: 0 PID: 12133 Comm: syz.2.1709 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  213.736983][T12133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  213.747063][T12133] Call Trace:
[  213.750363][T12133]  <TASK>
[  213.753323][T12133]  dump_stack_lvl+0x241/0x360
[  213.758139][T12133]  ? __pfx_dump_stack_lvl+0x10/0x10
[  213.763374][T12133]  ? __pfx__printk+0x10/0x10
[  213.768093][T12133]  ? snprintf+0xda/0x120
[  213.772376][T12133]  should_fail_ex+0x3b0/0x4e0
[  213.777093][T12133]  _copy_to_user+0x2f/0xb0
[  213.781554][T12133]  simple_read_from_buffer+0xca/0x150
[  213.787065][T12133]  proc_fail_nth_read+0x1e9/0x250
[  213.792140][T12133]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.797749][T12133]  ? rw_verify_area+0x55e/0x6f0
[  213.802802][T12133]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  213.808384][T12133]  vfs_read+0x201/0xbc0
[  213.812670][T12133]  ? __pfx_lock_release+0x10/0x10
[  213.817745][T12133]  ? __pfx_vfs_read+0x10/0x10
[  213.822470][T12133]  ? __fget_files+0x3f3/0x470
[  213.827189][T12133]  ? fdget_pos+0x24e/0x320
[  213.831724][T12133]  ksys_read+0x183/0x2b0
[  213.835990][T12133]  ? __pfx_ksys_read+0x10/0x10
[  213.840780][T12133]  ? do_syscall_64+0x100/0x230
[  213.845691][T12133]  ? do_syscall_64+0xb6/0x230
[  213.850404][T12133]  do_syscall_64+0xf3/0x230
[  213.854953][T12133]  ? clear_bhb_loop+0x35/0x90
[  213.859674][T12133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  213.865611][T12133] RIP: 0033:0x7f013cd7d15c
[  213.870058][T12133] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  213.889691][T12133] RSP: 002b:00007f013dbc5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  213.898121][T12133] RAX: ffffffffffffffda RBX: 00007f013cf36058 RCX: 00007f013cd7d15c
[  213.906102][T12133] RDX: 000000000000000f RSI: 00007f013dbc50a0 RDI: 0000000000000006
[  213.914111][T12133] RBP: 00007f013dbc5090 R08: 0000000000000000 R09: 0000000000000000
[  213.922104][T12133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  213.930093][T12133] R13: 0000000000000001 R14: 00007f013cf36058 R15: 00007fff5a4ef0f8
[  213.938096][T12133]  </TASK>
[  214.110732][T12146] No such timeout policy "syz0"
[  214.144638][T12147] No such timeout policy "syz0"
[  214.680109][T12176] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  214.734018][T12188] bridge0: entered promiscuous mode
[  214.766652][T12188] bridge0: entered allmulticast mode
[  214.791218][T12176] mac80211_hwsim hwsim5 syzkaller0: left promiscuous mode
[  214.887324][T12181] netlink: 'syz.3.1722': attribute type 10 has an invalid length.
[  214.988219][T12188] bridge0: port 1(ip6gretap0) entered blocking state
[  214.997803][T12188] bridge0: port 1(ip6gretap0) entered disabled state
[  215.008747][T12188] ip6gretap0: entered allmulticast mode
[  215.019458][T12188] ip6gretap0: entered promiscuous mode
[  215.312711][T12218] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ÿÿÿÿ
[  215.600935][T12235] netlink: 'syz.4.1735': attribute type 1 has an invalid length.
[  215.851251][T12257] IPVS: set_ctl: invalid protocol: 33 127.0.0.1:20003
[  216.040797][T12267] __nla_validate_parse: 8 callbacks suppressed
[  216.040820][T12267] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1745'.
[  216.146765][T12280] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1747'.
[  216.302127][T12289] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1750'.
[  216.335530][T12294] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1746'.
[  216.370666][T12289] netlink: 'syz.3.1750': attribute type 10 has an invalid length.
[  216.384571][T12289] tipc: MTU too low for tipc bearer
[  216.411038][T12289] netlink: 340 bytes leftover after parsing attributes in process `syz.3.1750'.
[  216.505306][T12301] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1749'.
[  217.019725][T12320] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1757'.
[  217.113776][T12327] !1ÿ: renamed from veth0_vlan (while UP)
[  217.388073][T12336] ipvlan2: entered promiscuous mode
[  217.404466][T12331] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1759'.
[  217.447485][T12344] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1762'.
[  217.993124][T12369] lo speed is unknown, defaulting to 1000
[  218.152610][T12383] netlink: 'syz.1.1772': attribute type 1 has an invalid length.
[  218.205470][T12385] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1773'.
[  218.672277][T12369] lo speed is unknown, defaulting to 1000
[  218.888220][T12415] ipt_REJECT: TCP_RESET invalid for non-tcp
[  219.748896][T12454] netlink: 'syz.3.1793': attribute type 11 has an invalid length.
[  219.757981][T12454] netlink: 'syz.3.1793': attribute type 11 has an invalid length.
[  221.583563][T12515] __nla_validate_parse: 3 callbacks suppressed
[  221.583585][T12515] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1808'.
[  221.640827][T12515] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1808'.
[  221.667690][T12515] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1808'.
[  221.777313][T12515] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1808'.
[  221.997487][T12526] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode
[  222.054761][T12528] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1810'.
[  222.102988][T12526] macvlan2: entered allmulticast mode
[  222.155571][T12526] mac80211_hwsim hwsim12 wlan0: entered allmulticast mode
[  222.198172][T12526] mac80211_hwsim hwsim12 wlan0: left promiscuous mode
[  222.288207][T12533] dccp_invalid_packet: P.Data Offset(100) too large
[  222.667940][T12547] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1814'.
[  222.760572][T12556] netlink: 'syz.1.1817': attribute type 1 has an invalid length.
[  222.829730][T12556] 8021q: adding VLAN 0 to HW filter on device bond1
[  222.863129][T12554] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1818'.
[  222.980718][T12561] bond1: (slave bridge0): making interface the new active one
[  222.991061][T12561] bond1: (slave bridge0): Enslaving as an active interface with an up link
[  223.001111][T12564] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1817'.
[  223.015200][T12570] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  223.040915][T12556] vlan3: entered promiscuous mode
[  223.062322][T12556] bond1: entered promiscuous mode
[  223.071715][T12556] bridge0: entered promiscuous mode
[  223.078788][T12556] vlan3: entered allmulticast mode
[  223.084240][T12556] bond1: entered allmulticast mode
[  223.090139][T12556] bridge0: entered allmulticast mode
[  223.181477][T12578] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  223.640829][T12599] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1830'.
[  223.737595][T12615] FAULT_INJECTION: forcing a failure.
[  223.737595][T12615] name failslab, interval 1, probability 0, space 0, times 0
[  223.795064][T12615] CPU: 0 UID: 0 PID: 12615 Comm: syz.1.1833 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  223.805899][T12615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  223.816431][T12615] Call Trace:
[  223.819725][T12615]  <TASK>
[  223.822659][T12615]  dump_stack_lvl+0x241/0x360
[  223.827353][T12615]  ? __pfx_dump_stack_lvl+0x10/0x10
[  223.832565][T12615]  ? __pfx__printk+0x10/0x10
[  223.837190][T12615]  ? fs_reclaim_acquire+0x93/0x130
[  223.842339][T12615]  ? __pfx___might_resched+0x10/0x10
[  223.847655][T12615]  should_fail_ex+0x3b0/0x4e0
[  223.852341][T12615]  ? tomoyo_encode+0x26f/0x540
[  223.857123][T12615]  should_failslab+0xac/0x100
[  223.861809][T12615]  ? tomoyo_encode+0x26f/0x540
[  223.866667][T12615]  __kmalloc_noprof+0xd8/0x400
[  223.871446][T12615]  tomoyo_encode+0x26f/0x540
[  223.876054][T12615]  tomoyo_realpath_from_path+0x59e/0x5e0
[  223.881711][T12615]  tomoyo_path_number_perm+0x23a/0x880
[  223.887176][T12615]  ? rcu_read_lock_any_held+0xb7/0x160
[  223.892642][T12615]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  223.898828][T12615]  ? tomoyo_path_number_perm+0x208/0x880
[  223.904495][T12615]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  223.910499][T12615]  ? sb_end_write+0xe9/0x1c0
[  223.915111][T12615]  ? vfs_write+0x7bf/0xc90
[  223.919564][T12615]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  223.925560][T12615]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  223.931913][T12615]  security_file_ioctl+0xc6/0x2a0
[  223.936964][T12615]  __se_sys_ioctl+0x47/0x170
[  223.941563][T12615]  do_syscall_64+0xf3/0x230
[  223.946101][T12615]  ? clear_bhb_loop+0x35/0x90
[  223.950794][T12615]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  223.956690][T12615] RIP: 0033:0x7f7d4617e719
[  223.961106][T12615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  223.980735][T12615] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  223.989262][T12615] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  223.997252][T12615] RDX: 0000000020000000 RSI: 000000004008744b RDI: 0000000000000003
[  224.005231][T12615] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  224.013220][T12615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  224.021216][T12615] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  224.029254][T12615]  </TASK>
[  224.166728][T12615] ERROR: Out of memory at tomoyo_realpath_from_path.
[  224.323127][T12634] wg2: entered promiscuous mode
[  224.343053][T12630] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1838'.
[  224.463428][T12630] lo speed is unknown, defaulting to 1000
[  224.517214][T12644] dccp_invalid_packet: P.Data Offset(100) too large
[  224.817687][   T51] IPVS: starting estimator thread 0...
[  224.917386][T12660] IPVS: using max 20 ests per chain, 48000 per kthread
[  225.004047][T12666] lo speed is unknown, defaulting to 1000
[  225.168500][T12630] lo speed is unknown, defaulting to 1000
[  225.874076][T12666] lo speed is unknown, defaulting to 1000
[  225.929347][T12699] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  225.948405][T12699] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  226.026324][T12699] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  226.047055][T12699] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  226.079232][T12699] geneve2: entered promiscuous mode
[  226.097327][T12699] geneve2: entered allmulticast mode
[  227.172065][T12754] __nla_validate_parse: 1 callbacks suppressed
[  227.172087][T12754] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1863'.
[  227.494103][T12760] lo speed is unknown, defaulting to 1000
[  227.548110][T12767] bridge5: entered promiscuous mode
[  227.582074][T12767] bridge5: entered allmulticast mode
[  227.630075][T12764] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1865'.
[  227.653278][T12764] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1865'.
[  227.727161][T12770] netlink: 'syz.3.1864': attribute type 10 has an invalid length.
[  227.924745][T12760] lo speed is unknown, defaulting to 1000
[  227.948000][T12783] FAULT_INJECTION: forcing a failure.
[  227.948000][T12783] name failslab, interval 1, probability 0, space 0, times 0
[  227.998862][T12783] CPU: 0 UID: 0 PID: 12783 Comm: syz.5.1871 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  228.009696][T12783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  228.019790][T12783] Call Trace:
[  228.023103][T12783]  <TASK>
[  228.026069][T12783]  dump_stack_lvl+0x241/0x360
[  228.030796][T12783]  ? __pfx_dump_stack_lvl+0x10/0x10
[  228.036035][T12783]  ? __pfx__printk+0x10/0x10
[  228.040674][T12783]  ? ref_tracker_alloc+0x332/0x490
[  228.045834][T12783]  should_fail_ex+0x3b0/0x4e0
[  228.050556][T12783]  ? skb_clone+0x20c/0x390
[  228.054987][T12783]  should_failslab+0xac/0x100
[  228.059695][T12783]  ? skb_clone+0x20c/0x390
[  228.064129][T12783]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  228.069517][T12783]  skb_clone+0x20c/0x390
[  228.073775][T12783]  __netlink_deliver_tap+0x3cc/0x7c0
[  228.079082][T12783]  ? netlink_deliver_tap+0x2e/0x1b0
[  228.084288][T12783]  netlink_deliver_tap+0x19d/0x1b0
[  228.089414][T12783]  netlink_sendskb+0x68/0x140
[  228.094132][T12783]  netlink_unicast+0x39d/0x990
[  228.098989][T12783]  ? __asan_memcpy+0x40/0x70
[  228.103689][T12783]  ? __pfx_netlink_unicast+0x10/0x10
[  228.108995][T12783]  nfnetlink_rcv+0x26b6/0x2ab0
[  228.113833][T12783]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  228.119002][T12783]  ? netlink_deliver_tap+0x2e/0x1b0
[  228.124209][T12783]  ? skb_clone+0x240/0x390
[  228.128641][T12783]  ? __pfx_lock_release+0x10/0x10
[  228.133684][T12783]  ? netlink_deliver_tap+0x2e/0x1b0
[  228.138931][T12783]  netlink_unicast+0x7f6/0x990
[  228.143708][T12783]  ? __pfx_netlink_unicast+0x10/0x10
[  228.149001][T12783]  ? __virt_addr_valid+0x183/0x530
[  228.154123][T12783]  ? __check_object_size+0x48e/0x900
[  228.159423][T12783]  netlink_sendmsg+0x8e4/0xcb0
[  228.164202][T12783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.169609][T12783]  ? aa_sock_msg_perm+0x91/0x160
[  228.174557][T12783]  ? __pfx_netlink_sendmsg+0x10/0x10
[  228.179851][T12783]  __sock_sendmsg+0x221/0x270
[  228.184544][T12783]  ____sys_sendmsg+0x52a/0x7e0
[  228.189331][T12783]  ? __pfx_____sys_sendmsg+0x10/0x10
[  228.194633][T12783]  __sys_sendmsg+0x292/0x380
[  228.199233][T12783]  ? __pfx___sys_sendmsg+0x10/0x10
[  228.204361][T12783]  ? __pfx_vfs_write+0x10/0x10
[  228.209148][T12783]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  228.216028][T12783]  ? do_syscall_64+0x100/0x230
[  228.220817][T12783]  ? do_syscall_64+0xb6/0x230
[  228.225506][T12783]  do_syscall_64+0xf3/0x230
[  228.230020][T12783]  ? clear_bhb_loop+0x35/0x90
[  228.234714][T12783]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  228.240879][T12783] RIP: 0033:0x7f3282d7e719
[  228.245298][T12783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  228.264948][T12783] RSP: 002b:00007f3283ac4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  228.273381][T12783] RAX: ffffffffffffffda RBX: 00007f3282f35f80 RCX: 00007f3282d7e719
[  228.281367][T12783] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[  228.289352][T12783] RBP: 00007f3283ac4090 R08: 0000000000000000 R09: 0000000000000000
[  228.297337][T12783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  228.305326][T12783] R13: 0000000000000000 R14: 00007f3282f35f80 R15: 00007ffd4adf9c38
[  228.313315][T12783]  </TASK>
[  228.451113][T12796] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1874'.
[  228.527602][T12800] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1875'.
[  228.645053][T12796] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1874'.
[  228.871438][T12815] IPVS: set_ctl: invalid protocol: 58 127.0.0.1:0
[  228.919149][T12820] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1878'.
[  229.374583][T12834] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1883'.
[  229.402550][T12834] netlink: 'syz.2.1883': attribute type 10 has an invalid length.
[  229.414909][T12834] tipc: MTU too low for tipc bearer
[  230.109701][T12863] pim6reg: entered allmulticast mode
[  230.155342][T12867] netlink: 788 bytes leftover after parsing attributes in process `syz.1.1892'.
[  230.189814][T12863] pim6reg: left allmulticast mode
[  230.335382][T12867] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1892'.
[  230.706773][T12890] netlink: 'syz.2.1897': attribute type 1 has an invalid length.
[  230.887091][T12898] netlink: 'syz.2.1902': attribute type 11 has an invalid length.
[  230.894976][T12898] netlink: 'syz.2.1902': attribute type 11 has an invalid length.
[  231.011118][T12905] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  231.045302][T12892] netlink: 'syz.3.1900': attribute type 1 has an invalid length.
[  231.146039][T12898] netlink: 'syz.2.1902': attribute type 5 has an invalid length.
[  231.493485][T12912] vlan2: entered promiscuous mode
[  231.519061][T12912] vlan2: entered allmulticast mode
[  231.974429][T12923] tipc: MTU too low for tipc bearer
[  232.405103][T12942] netlink: 'syz.1.1914': attribute type 11 has an invalid length.
[  232.432580][T12942] netlink: 'syz.1.1914': attribute type 11 has an invalid length.
[  232.466483][T12944] __nla_validate_parse: 5 callbacks suppressed
[  232.466505][T12944] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1915'.
[  232.478365][T12942] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1914'.
[  233.002061][T12966] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 54169 - 0
[  233.054258][T12966] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 54169 - 0
[  233.099094][T12966] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 54169 - 0
[  233.137267][T12966] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 54169 - 0
[  233.172639][T12966] netdevsim netdevsim1 netdevsim0: set [1, 3] type 2 family 0 port 51485 - 0
[  233.205673][T12966] netdevsim netdevsim1 netdevsim1: set [1, 3] type 2 family 0 port 51485 - 0
[  233.214522][T12966] netdevsim netdevsim1 netdevsim2: set [1, 3] type 2 family 0 port 51485 - 0
[  233.240847][T12966] netdevsim netdevsim1 netdevsim3: set [1, 3] type 2 family 0 port 51485 - 0
[  233.273581][T12966] geneve3: entered promiscuous mode
[  233.384104][T12966] geneve3: entered allmulticast mode
[  233.426806][T12987] tipc: MTU too low for tipc bearer
[  233.781074][T13016] raw_sendmsg: syz.5.1927 forgot to set AF_INET. Fix it!
[  233.830894][T13019] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1928'.
[  233.929783][T13022] netlink: 'syz.3.1929': attribute type 11 has an invalid length.
[  233.959573][T13022] netlink: 'syz.3.1929': attribute type 11 has an invalid length.
[  233.982435][T13022] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1929'.
[  234.284517][T13041] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1934'.
[  234.292796][T13043] openvswitch: netlink: Tunnel attr 0 has unexpected len 3 expected 8
[  234.346887][T13041] netlink: 'syz.5.1934': attribute type 10 has an invalid length.
[  234.407436][T13041] bridge0: port 3(team0) entered blocking state
[  234.413824][T13041] bridge0: port 3(team0) entered disabled state
[  234.498353][T13041] team0: entered allmulticast mode
[  234.531650][T13041] team_slave_0: entered allmulticast mode
[  234.562515][T13041] team_slave_1: entered allmulticast mode
[  234.601800][T13041] team0: entered promiscuous mode
[  234.621619][T13041] team_slave_0: entered promiscuous mode
[  234.637045][T13041] team_slave_1: entered promiscuous mode
[  234.654839][T13041] bridge0: port 3(team0) entered blocking state
[  234.661368][T13041] bridge0: port 3(team0) entered forwarding state
[  234.877398][T13068] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1941'.
[  235.112800][T13074] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1942'.
[  235.943299][T13116] bridge3: entered promiscuous mode
[  235.976637][T13116] bridge3: entered allmulticast mode
[  236.027759][T13119] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1953'.
[  236.049505][T13116] netlink: 'syz.1.1952': attribute type 10 has an invalid length.
[  236.082806][T13116] 
: (slave netdevsim0): Enslaving as an active interface with an up link
[  236.155238][T13119] netlink: 'syz.3.1953': attribute type 10 has an invalid length.
[  236.203945][T13126] bridge2: entered promiscuous mode
[  236.214595][T13126] bridge2: entered allmulticast mode
[  236.231840][T13126] team0: Port device bridge2 added
[  236.239131][T13116] bridge0: port 1(ip6gretap0) entered blocking state
[  236.247695][T13116] bridge0: port 1(ip6gretap0) entered disabled state
[  236.254541][T13116] ip6gretap0: entered allmulticast mode
[  236.280204][T13116] ip6gretap0: entered promiscuous mode
[  236.308733][T13116] bridge0: port 1(ip6gretap0) entered blocking state
[  236.315990][T13116] bridge0: port 1(ip6gretap0) entered forwarding state
[  236.342157][T13131] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1955'.
[  236.370608][T13131] xt_CT: You must specify a L4 protocol and not use inversions on it
[  236.374718][T13129] netlink: 'syz.5.1956': attribute type 10 has an invalid length.
[  236.411711][T13129] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  236.449799][T13126] bridge0: port 4(ip6gretap0) entered blocking state
[  236.458611][T13126] bridge0: port 4(ip6gretap0) entered disabled state
[  236.467897][T13126] ip6gretap0: entered allmulticast mode
[  236.475065][T13126] ip6gretap0: entered promiscuous mode
[  236.484743][T13126] bridge0: port 4(ip6gretap0) entered blocking state
[  236.492864][T13126] bridge0: port 4(ip6gretap0) entered forwarding state
[  236.627440][T13145] bridge6: entered promiscuous mode
[  236.644112][T13145] bridge6: entered allmulticast mode
[  236.677864][T13147] netlink: 'syz.3.1959': attribute type 10 has an invalid length.
[  236.874357][T13155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1962'.
[  237.169598][T13175] netlink: 'syz.5.1967': attribute type 10 has an invalid length.
[  237.368795][T13183] netlink: 'syz.2.1973': attribute type 1 has an invalid length.
[  237.420767][T13188] bridge3: entered promiscuous mode
[  237.456684][T13188] bridge3: entered allmulticast mode
[  237.507858][T13188] team0: Port device bridge3 added
[  237.545409][T13188] netlink: 'syz.5.1972': attribute type 10 has an invalid length.
[  237.634514][T13203] __nla_validate_parse: 3 callbacks suppressed
[  237.634535][T13203] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1977'.
[  237.691377][T13203] tipc: Invalid UDP bearer configuration
[  237.691421][T13203] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  237.869087][T13213] FAULT_INJECTION: forcing a failure.
[  237.869087][T13213] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  237.926410][T13213] CPU: 1 UID: 0 PID: 13213 Comm: syz.3.1980 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  237.937508][T13213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  237.947605][T13213] Call Trace:
[  237.950927][T13213]  <TASK>
[  237.953891][T13213]  dump_stack_lvl+0x241/0x360
[  237.958614][T13213]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.963939][T13213]  ? __pfx__printk+0x10/0x10
[  237.966364][T13218] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1982'.
[  237.968549][T13213]  ? __pfx_lock_release+0x10/0x10
[  237.982583][T13213]  should_fail_ex+0x3b0/0x4e0
[  237.987353][T13213]  _copy_to_user+0x2f/0xb0
[  237.991808][T13213]  bpf_test_finish+0x212/0x890
[  237.996606][T13213]  ? __pfx_bpf_test_finish+0x10/0x10
[  238.001913][T13213]  ? rcuref_put_slowpath+0x321/0x340
[  238.007222][T13213]  ? rep_movs_alternative+0x4a/0x70
[  238.012439][T13213]  bpf_prog_test_run_xdp+0x8f4/0x11e0
[  238.017826][T13213]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  238.023630][T13213]  ? __fget_files+0x29/0x470
[  238.028244][T13213]  ? fput+0x1a8/0x230
[  238.032319][T13213]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  238.038223][T13213]  bpf_prog_test_run+0x2e4/0x360
[  238.043197][T13213]  __sys_bpf+0x48d/0x810
[  238.047479][T13213]  ? __pfx___sys_bpf+0x10/0x10
[  238.052273][T13213]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  238.058354][T13213]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  238.064742][T13213]  ? do_syscall_64+0x100/0x230
[  238.069535][T13213]  __x64_sys_bpf+0x7c/0x90
[  238.073981][T13213]  do_syscall_64+0xf3/0x230
[  238.078514][T13213]  ? clear_bhb_loop+0x35/0x90
[  238.083264][T13213]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  238.089171][T13213] RIP: 0033:0x7f8962b7e719
[  238.093608][T13213] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  238.113323][T13213] RSP: 002b:00007f8963978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  238.121748][T13213] RAX: ffffffffffffffda RBX: 00007f8962d35f80 RCX: 00007f8962b7e719
[  238.129721][T13213] RDX: 0000000000000050 RSI: 0000000020000600 RDI: 000000000000000a
[  238.137702][T13213] RBP: 00007f8963978090 R08: 0000000000000000 R09: 0000000000000000
[  238.145680][T13213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  238.153675][T13213] R13: 0000000000000000 R14: 00007f8962d35f80 R15: 00007ffcf9283478
[  238.161668][T13213]  </TASK>
[  238.263345][T13225] netlink: 'syz.2.1985': attribute type 1 has an invalid length.
[  238.288495][T13225] 8021q: adding VLAN 0 to HW filter on device bond3
[  238.298642][T13228] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1983'.
[  238.323350][T13228] netlink: 'syz.5.1983': attribute type 10 has an invalid length.
[  238.448269][T13237] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1988'.
[  238.494423][T13237] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1988'.
[  238.719649][T13258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1991'.
[  238.829479][T13261] FAULT_INJECTION: forcing a failure.
[  238.829479][T13261] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  238.901335][T13261] CPU: 0 UID: 0 PID: 13261 Comm: syz.1.1992 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  238.912170][T13261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  238.922285][T13261] Call Trace:
[  238.925594][T13261]  <TASK>
[  238.928547][T13261]  dump_stack_lvl+0x241/0x360
[  238.933265][T13261]  ? __pfx_dump_stack_lvl+0x10/0x10
[  238.938513][T13261]  ? __pfx__printk+0x10/0x10
[  238.943140][T13261]  ? vfs_write+0x7bf/0xc90
[  238.947594][T13261]  should_fail_ex+0x3b0/0x4e0
[  238.952317][T13261]  _copy_from_user+0x2f/0xe0
[  238.956944][T13261]  move_addr_to_kernel+0x82/0x150
[  238.962057][T13261]  __sys_connect+0xc1/0x300
[  238.966599][T13261]  ? __pfx___sys_connect+0x10/0x10
[  238.971756][T13261]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  238.978125][T13261]  ? do_syscall_64+0x100/0x230
[  238.982945][T13261]  __x64_sys_connect+0x7a/0x90
[  238.987759][T13261]  do_syscall_64+0xf3/0x230
[  238.992306][T13261]  ? clear_bhb_loop+0x35/0x90
[  238.997030][T13261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  239.002979][T13261] RIP: 0033:0x7f7d4617e719
[  239.007445][T13261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  239.027092][T13261] RSP: 002b:00007f7d46f86038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  239.035557][T13261] RAX: ffffffffffffffda RBX: 00007f7d46336058 RCX: 00007f7d4617e719
[  239.043569][T13261] RDX: 0000000000000040 RSI: 0000000020000040 RDI: 0000000000000009
[  239.051572][T13261] RBP: 00007f7d46f86090 R08: 0000000000000000 R09: 0000000000000000
[  239.059577][T13261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.067681][T13261] R13: 0000000000000000 R14: 00007f7d46336058 R15: 00007ffd8479b788
[  239.075709][T13261]  </TASK>
[  239.196947][T13275] lo speed is unknown, defaulting to 1000
[  239.329807][T13284] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1996'.
[  239.671841][T13275] lo speed is unknown, defaulting to 1000
[  239.853614][T13309] FAULT_INJECTION: forcing a failure.
[  239.853614][T13309] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.883921][T13308] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2000'.
[  239.906827][T13309] CPU: 0 UID: 0 PID: 13309 Comm: syz.4.2001 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  239.917833][T13309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  239.928102][T13309] Call Trace:
[  239.931396][T13309]  <TASK>
[  239.934347][T13309]  dump_stack_lvl+0x241/0x360
[  239.939089][T13309]  ? __pfx_dump_stack_lvl+0x10/0x10
[  239.944329][T13309]  ? __pfx__printk+0x10/0x10
[  239.948949][T13309]  ? __pfx_lock_release+0x10/0x10
[  239.953990][T13309]  should_fail_ex+0x3b0/0x4e0
[  239.958680][T13309]  _copy_from_user+0x2f/0xe0
[  239.963281][T13309]  copy_msghdr_from_user+0xae/0x680
[  239.968748][T13309]  ? __lock_acquire+0x1384/0x2050
[  239.973958][T13309]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  239.979784][T13309]  do_recvmmsg+0x3f9/0xad0
[  239.984221][T13309]  ? __pfx_do_recvmmsg+0x10/0x10
[  239.989200][T13309]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  239.995197][T13309]  ? ksys_write+0x229/0x2b0
[  239.999714][T13309]  ? __pfx_lock_release+0x10/0x10
[  240.004839][T13309]  ? vfs_write+0x7bf/0xc90
[  240.009345][T13309]  ? kmem_cache_free+0x1a2/0x420
[  240.014299][T13309]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  240.020301][T13309]  __x64_sys_recvmmsg+0x199/0x250
[  240.025361][T13309]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  240.030959][T13309]  ? do_syscall_64+0x100/0x230
[  240.035751][T13309]  ? do_syscall_64+0xb6/0x230
[  240.040472][T13309]  do_syscall_64+0xf3/0x230
[  240.044996][T13309]  ? clear_bhb_loop+0x35/0x90
[  240.049697][T13309]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  240.055605][T13309] RIP: 0033:0x7f703fd7e719
[  240.060039][T13309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  240.079753][T13309] RSP: 002b:00007f7040b3e038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  240.088194][T13309] RAX: ffffffffffffffda RBX: 00007f703ff35f80 RCX: 00007f703fd7e719
[  240.096281][T13309] RDX: 0000000000000001 RSI: 0000000020002100 RDI: 0000000000000003
[  240.104267][T13309] RBP: 00007f7040b3e090 R08: 0000000000000000 R09: 0000000000000000
[  240.112254][T13309] R10: 00000000000000f2 R11: 0000000000000246 R12: 0000000000000001
[  240.120243][T13309] R13: 0000000000000000 R14: 00007f703ff35f80 R15: 00007ffd963c9e28
[  240.128242][T13309]  </TASK>
[  240.241009][T13308] validate_nla: 2 callbacks suppressed
[  240.241030][T13308] netlink: 'syz.2.2000': attribute type 10 has an invalid length.
[  240.616562][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2006'.
[  240.812332][T13346] netlink: 'syz.4.2009': attribute type 1 has an invalid length.
[  240.828678][T13346] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2009'.
[  241.097567][T13359] mac80211_hwsim hwsim5 syzkaller0: entered promiscuous mode
[  241.105030][T13359] mac80211_hwsim hwsim5 syzkaller0: entered allmulticast mode
[  241.258959][T13363] ipvlan2: entered promiscuous mode
[  241.421475][T13351] netlink: 'syz.4.2009': attribute type 10 has an invalid length.
[  241.471898][T13374] lo speed is unknown, defaulting to 1000
[  241.700975][T13386] netlink: 'syz.4.2017': attribute type 1 has an invalid length.
[  241.980890][T13374] lo speed is unknown, defaulting to 1000
[  242.147929][T13409] netlink: 'syz.1.2021': attribute type 11 has an invalid length.
[  242.156816][T13409] netlink: 'syz.1.2021': attribute type 11 has an invalid length.
[  242.742138][T13430] ipvlan2: entered promiscuous mode
[  242.921836][T13433] bridge0: entered promiscuous mode
[  242.931976][T13433] bridge0: entered allmulticast mode
[  242.998163][T13440] netlink: 'syz.2.2025': attribute type 10 has an invalid length.
[  243.009632][T13431] __nla_validate_parse: 5 callbacks suppressed
[  243.009650][T13431] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2027'.
[  243.093955][T13454] dccp_invalid_packet: P.Data Offset(100) too large
[  243.189926][T13426] bridge0: port 1(ip6gretap0) entered blocking state
[  243.202390][T13426] bridge0: port 1(ip6gretap0) entered disabled state
[  243.245891][T13426] ip6gretap0: entered allmulticast mode
[  243.253969][T13426] ip6gretap0: entered promiscuous mode
[  243.343563][T13462] netlink: 'syz.3.2031': attribute type 10 has an invalid length.
[  243.508353][T13467] syzkaller1: entered promiscuous mode
[  243.522846][T13467] syzkaller1: entered allmulticast mode
[  243.550095][T13471] vlan2: entered promiscuous mode
[  243.559988][T13467] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  243.574620][T13471] dummy0: entered promiscuous mode
[  243.581521][T13471] vlan2: entered allmulticast mode
[  243.593950][T13471] dummy0: entered allmulticast mode
[  243.704719][T13481] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2037'.
[  243.733134][T13480] netlink: 188 bytes leftover after parsing attributes in process `syz.4.2039'.
[  243.756614][T13480] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2039'.
[  243.777033][T13480] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2039'.
[  243.793806][T13485] ipvlan2: entered promiscuous mode
[  243.911095][T13493] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2042'.
[  243.929233][T13493] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2042'.
[  243.958308][T13487] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2041'.
[  244.472871][T13522] netlink: 'syz.3.2050': attribute type 1 has an invalid length.
[  244.476744][T13523] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2047'.
[  244.538199][T13526] (unnamed net_device) (uninitialized): down delay (2147483647) is not a multiple of miimon (100), value rounded to 2147483600 ms
[  244.567101][T13526] (unnamed net_device) (uninitialized): peer notification delay (4) is not a multiple of miimon (100), value rounded to 0 ms
[  244.914050][T13548] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2055'.
[  244.924725][T13545] lo speed is unknown, defaulting to 1000
[  244.991778][T13549] lo speed is unknown, defaulting to 1000
[  245.072619][T13556] !1ÿ: renamed from veth0_vlan (while UP)
[  245.352865][T13545] lo speed is unknown, defaulting to 1000
[  245.643486][T13570] vlan4: entered promiscuous mode
[  245.700343][T13578] netlink: 'syz.3.2062': attribute type 1 has an invalid length.
[  245.812574][T13549] lo speed is unknown, defaulting to 1000
[  246.358150][T13607] FAULT_INJECTION: forcing a failure.
[  246.358150][T13607] name failslab, interval 1, probability 0, space 0, times 0
[  246.392589][T13607] CPU: 0 UID: 0 PID: 13607 Comm: syz.4.2069 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  246.403422][T13607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  246.413516][T13607] Call Trace:
[  246.416831][T13607]  <TASK>
[  246.419794][T13607]  dump_stack_lvl+0x241/0x360
[  246.424525][T13607]  ? __pfx_dump_stack_lvl+0x10/0x10
[  246.429772][T13607]  ? __pfx__printk+0x10/0x10
[  246.434406][T13607]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  246.440420][T13607]  ? __pfx___might_resched+0x10/0x10
[  246.445736][T13607]  should_fail_ex+0x3b0/0x4e0
[  246.450438][T13607]  should_failslab+0xac/0x100
[  246.455124][T13607]  ? __alloc_skb+0x1c3/0x440
[  246.459727][T13607]  kmem_cache_alloc_node_noprof+0x71/0x320
[  246.465553][T13607]  __alloc_skb+0x1c3/0x440
[  246.470088][T13607]  ? __pfx___alloc_skb+0x10/0x10
[  246.475036][T13607]  ? netlink_autobind+0xd6/0x2f0
[  246.479991][T13607]  ? netlink_autobind+0x2b0/0x2f0
[  246.485087][T13607]  netlink_sendmsg+0x638/0xcb0
[  246.490315][T13607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.495629][T13607]  ? aa_sock_msg_perm+0x91/0x160
[  246.500747][T13607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  246.506136][T13607]  __sock_sendmsg+0x221/0x270
[  246.510934][T13607]  ____sys_sendmsg+0x52a/0x7e0
[  246.515813][T13607]  ? __pfx_____sys_sendmsg+0x10/0x10
[  246.521159][T13607]  __sys_sendmsg+0x292/0x380
[  246.525959][T13607]  ? __pfx___sys_sendmsg+0x10/0x10
[  246.531098][T13607]  ? __pfx_vfs_write+0x10/0x10
[  246.535899][T13607]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  246.542263][T13607]  ? do_syscall_64+0x100/0x230
[  246.547047][T13607]  ? do_syscall_64+0xb6/0x230
[  246.551733][T13607]  do_syscall_64+0xf3/0x230
[  246.556250][T13607]  ? clear_bhb_loop+0x35/0x90
[  246.560955][T13607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  246.566858][T13607] RIP: 0033:0x7f703fd7e719
[  246.571279][T13607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  246.591002][T13607] RSP: 002b:00007f7040b3e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  246.599435][T13607] RAX: ffffffffffffffda RBX: 00007f703ff35f80 RCX: 00007f703fd7e719
[  246.607417][T13607] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  246.615393][T13607] RBP: 00007f7040b3e090 R08: 0000000000000000 R09: 0000000000000000
[  246.623377][T13607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  246.631354][T13607] R13: 0000000000000000 R14: 00007f703ff35f80 R15: 00007ffd963c9e28
[  246.639355][T13607]  </TASK>
[  247.278453][T13639] FAULT_INJECTION: forcing a failure.
[  247.278453][T13639] name failslab, interval 1, probability 0, space 0, times 0
[  247.296684][T13639] CPU: 0 UID: 0 PID: 13639 Comm: syz.2.2077 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  247.307770][T13639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  247.317841][T13639] Call Trace:
[  247.321137][T13639]  <TASK>
[  247.324069][T13639]  dump_stack_lvl+0x241/0x360
[  247.328768][T13639]  ? __pfx_dump_stack_lvl+0x10/0x10
[  247.333975][T13639]  ? __pfx__printk+0x10/0x10
[  247.338588][T13639]  ? __kmalloc_noprof+0xb0/0x400
[  247.343530][T13639]  ? __pfx___might_resched+0x10/0x10
[  247.348827][T13639]  should_fail_ex+0x3b0/0x4e0
[  247.353507][T13639]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  247.359750][T13639]  should_failslab+0xac/0x100
[  247.364440][T13639]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  247.370718][T13639]  __kmalloc_noprof+0xd8/0x400
[  247.375503][T13639]  ? apparmor_capable+0x13b/0x1b0
[  247.380640][T13639]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  247.386850][T13639]  genl_rcv_msg+0x802/0xec0
[  247.391403][T13639]  ? __pfx_genl_rcv_msg+0x10/0x10
[  247.396486][T13639]  ? __pfx_lock_acquire+0x10/0x10
[  247.401532][T13639]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  247.406933][T13639]  ? __pfx_nl80211_set_station+0x10/0x10
[  247.412626][T13639]  ? __pfx_nl80211_post_doit+0x10/0x10
[  247.418112][T13639]  ? __pfx___might_resched+0x10/0x10
[  247.423456][T13639]  netlink_rcv_skb+0x1e3/0x430
[  247.428253][T13639]  ? __pfx_genl_rcv_msg+0x10/0x10
[  247.433296][T13639]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  247.438615][T13639]  genl_rcv+0x28/0x40
[  247.442619][T13639]  netlink_unicast+0x7f6/0x990
[  247.447406][T13639]  ? __pfx_netlink_unicast+0x10/0x10
[  247.452719][T13639]  ? __virt_addr_valid+0x183/0x530
[  247.457866][T13639]  ? __check_object_size+0x48e/0x900
[  247.463188][T13639]  netlink_sendmsg+0x8e4/0xcb0
[  247.468003][T13639]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.473354][T13639]  ? aa_sock_msg_perm+0x91/0x160
[  247.478327][T13639]  ? __pfx_netlink_sendmsg+0x10/0x10
[  247.483623][T13639]  __sock_sendmsg+0x221/0x270
[  247.488333][T13639]  ____sys_sendmsg+0x52a/0x7e0
[  247.493139][T13639]  ? __pfx_____sys_sendmsg+0x10/0x10
[  247.498542][T13639]  __sys_sendmsg+0x292/0x380
[  247.503143][T13639]  ? __pfx___sys_sendmsg+0x10/0x10
[  247.508286][T13639]  ? __pfx_vfs_write+0x10/0x10
[  247.513110][T13639]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  247.519482][T13639]  ? do_syscall_64+0x100/0x230
[  247.524263][T13639]  ? do_syscall_64+0xb6/0x230
[  247.528958][T13639]  do_syscall_64+0xf3/0x230
[  247.533474][T13639]  ? clear_bhb_loop+0x35/0x90
[  247.538165][T13639]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.544065][T13639] RIP: 0033:0x7f013cd7e719
[  247.548576][T13639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.568205][T13639] RSP: 002b:00007f013dbc5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  247.576682][T13639] RAX: ffffffffffffffda RBX: 00007f013cf36058 RCX: 00007f013cd7e719
[  247.584806][T13639] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: 000000000000000a
[  247.592800][T13639] RBP: 00007f013dbc5090 R08: 0000000000000000 R09: 0000000000000000
[  247.600790][T13639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  247.608781][T13639] R13: 0000000000000000 R14: 00007f013cf36058 R15: 00007fff5a4ef0f8
[  247.616786][T13639]  </TASK>
[  248.497130][T13686] __nla_validate_parse: 3 callbacks suppressed
[  248.497150][T13686] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2089'.
[  248.558440][T10690] IPVS: starting estimator thread 0...
[  248.579902][T13695] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2092'.
[  248.590233][T13695] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2092'.
[  248.666729][T13697] IPVS: using max 21 ests per chain, 50400 per kthread
[  248.683984][T13701] netlink: 4100 bytes leftover after parsing attributes in process `syz.2.2093'.
[  248.795452][T13704] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2093'.
[  248.952436][T13715] FAULT_INJECTION: forcing a failure.
[  248.952436][T13715] name failslab, interval 1, probability 0, space 0, times 0
[  248.968644][T13715] CPU: 1 UID: 0 PID: 13715 Comm: syz.1.2098 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  248.979464][T13715] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  248.980808][T13716] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2099'.
[  248.989615][T13715] Call Trace:
[  248.989634][T13715]  <TASK>
[  248.989643][T13715]  dump_stack_lvl+0x241/0x360
[  248.989679][T13715]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.989703][T13715]  ? __pfx__printk+0x10/0x10
[  248.989726][T13715]  ? __kmalloc_cache_noprof+0x44/0x2c0
[  248.989750][T13715]  ? __pfx___might_resched+0x10/0x10
[  248.989778][T13715]  should_fail_ex+0x3b0/0x4e0
[  249.034942][T13715]  should_failslab+0xac/0x100
[  249.039734][T13715]  ? nf_tables_newchain+0x2470/0x3310
[  249.045114][T13715]  __kmalloc_cache_noprof+0x6c/0x2c0
[  249.050437][T13715]  nf_tables_newchain+0x2470/0x3310
[  249.055660][T13715]  ? __lock_acquire+0x1384/0x2050
[  249.060729][T13715]  ? __pfx_nf_tables_newchain+0x10/0x10
[  249.066310][T13715]  ? __pfx_lock_acquire+0x10/0x10
[  249.071449][T13715]  ? nfnl_pernet+0x23/0x240
[  249.075972][T13715]  ? __nla_parse+0x40/0x60
[  249.080393][T13715]  nfnetlink_rcv+0x14dc/0x2ab0
[  249.085182][T13715]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  249.090331][T13715]  ? netlink_deliver_tap+0x2e/0x1b0
[  249.095528][T13715]  ? skb_clone+0x240/0x390
[  249.099946][T13715]  ? __pfx_lock_release+0x10/0x10
[  249.104989][T13715]  ? netlink_deliver_tap+0x2e/0x1b0
[  249.110217][T13715]  netlink_unicast+0x7f6/0x990
[  249.115019][T13715]  ? __pfx_netlink_unicast+0x10/0x10
[  249.120323][T13715]  ? __virt_addr_valid+0x183/0x530
[  249.125481][T13715]  ? __check_object_size+0x48e/0x900
[  249.130870][T13715]  netlink_sendmsg+0x8e4/0xcb0
[  249.135654][T13715]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.140943][T13715]  ? aa_sock_msg_perm+0x91/0x160
[  249.145891][T13715]  ? __pfx_netlink_sendmsg+0x10/0x10
[  249.151175][T13715]  __sock_sendmsg+0x221/0x270
[  249.155857][T13715]  ____sys_sendmsg+0x52a/0x7e0
[  249.160629][T13715]  ? __pfx_____sys_sendmsg+0x10/0x10
[  249.165940][T13715]  __sys_sendmsg+0x292/0x380
[  249.170551][T13715]  ? __pfx___sys_sendmsg+0x10/0x10
[  249.175682][T13715]  ? __pfx_vfs_write+0x10/0x10
[  249.180492][T13715]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  249.186945][T13715]  ? do_syscall_64+0x100/0x230
[  249.191737][T13715]  ? do_syscall_64+0xb6/0x230
[  249.196424][T13715]  do_syscall_64+0xf3/0x230
[  249.200934][T13715]  ? clear_bhb_loop+0x35/0x90
[  249.205624][T13715]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.211532][T13715] RIP: 0033:0x7f7d4617e719
[  249.215956][T13715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.235591][T13715] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  249.244029][T13715] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  249.252000][T13715] RDX: 0000000000000000 RSI: 000000002000c2c0 RDI: 0000000000000003
[  249.259971][T13715] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  249.267956][T13715] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.275931][T13715] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  249.283923][T13715]  </TASK>
[  249.376753][T13718] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2101'.
[  249.477076][T13724] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2103'.
[  249.565434][T13728] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2104'.
[  249.573791][T13731] FAULT_INJECTION: forcing a failure.
[  249.573791][T13731] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  249.590886][T13731] CPU: 1 UID: 0 PID: 13731 Comm: syz.2.2106 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  249.601705][T13731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  249.611792][T13731] Call Trace:
[  249.615102][T13731]  <TASK>
[  249.618058][T13731]  dump_stack_lvl+0x241/0x360
[  249.622779][T13731]  ? __pfx_dump_stack_lvl+0x10/0x10
[  249.625922][T13726] netlink: 'syz.4.2105': attribute type 4 has an invalid length.
[  249.627989][T13731]  ? __pfx__printk+0x10/0x10
[  249.640425][T13731]  ? snprintf+0xda/0x120
[  249.644708][T13731]  should_fail_ex+0x3b0/0x4e0
[  249.649424][T13731]  _copy_to_user+0x2f/0xb0
[  249.653881][T13731]  simple_read_from_buffer+0xca/0x150
[  249.659308][T13731]  proc_fail_nth_read+0x1e9/0x250
[  249.664381][T13731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  249.669964][T13731]  ? rw_verify_area+0x55e/0x6f0
[  249.674857][T13731]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  249.680457][T13731]  vfs_read+0x201/0xbc0
[  249.684661][T13731]  ? __pfx_lock_release+0x10/0x10
[  249.689816][T13731]  ? __pfx_vfs_read+0x10/0x10
[  249.694630][T13731]  ? __fget_files+0x3f3/0x470
[  249.699345][T13731]  ? fdget_pos+0x24e/0x320
[  249.703778][T13731]  ksys_read+0x183/0x2b0
[  249.708028][T13731]  ? __pfx_ksys_read+0x10/0x10
[  249.712790][T13731]  ? do_syscall_64+0x100/0x230
[  249.717572][T13731]  ? do_syscall_64+0xb6/0x230
[  249.722258][T13731]  do_syscall_64+0xf3/0x230
[  249.726770][T13731]  ? clear_bhb_loop+0x35/0x90
[  249.731453][T13731]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.737347][T13731] RIP: 0033:0x7f013cd7d15c
[  249.741777][T13731] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  249.761396][T13731] RSP: 002b:00007f013dbe6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  249.769856][T13731] RAX: ffffffffffffffda RBX: 00007f013cf35f80 RCX: 00007f013cd7d15c
[  249.777920][T13731] RDX: 000000000000000f RSI: 00007f013dbe60a0 RDI: 0000000000000005
[  249.785889][T13731] RBP: 00007f013dbe6090 R08: 0000000000000000 R09: 0000000000000000
[  249.793857][T13731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.801839][T13731] R13: 0000000000000000 R14: 00007f013cf35f80 R15: 00007fff5a4ef0f8
[  249.809823][T13731]  </TASK>
[  250.146451][T13751] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2112'.
[  250.278940][T13764] bridge4: entered promiscuous mode
[  250.284220][T13764] bridge4: entered allmulticast mode
[  250.292281][T13764] team0: Port device bridge4 added
[  250.309168][T13764] netlink: 'syz.5.2117': attribute type 10 has an invalid length.
[  250.621004][T13782] FAULT_INJECTION: forcing a failure.
[  250.621004][T13782] name failslab, interval 1, probability 0, space 0, times 0
[  250.648085][T13782] CPU: 1 UID: 0 PID: 13782 Comm: syz.5.2122 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  250.658916][T13782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  250.669009][T13782] Call Trace:
[  250.672319][T13782]  <TASK>
[  250.675282][T13782]  dump_stack_lvl+0x241/0x360
[  250.680127][T13782]  ? __pfx_dump_stack_lvl+0x10/0x10
[  250.685457][T13782]  ? __pfx__printk+0x10/0x10
[  250.690091][T13782]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  250.696199][T13782]  ? __pfx___might_resched+0x10/0x10
[  250.701530][T13782]  should_fail_ex+0x3b0/0x4e0
[  250.706250][T13782]  should_failslab+0xac/0x100
[  250.711037][T13782]  ? __alloc_skb+0x1c3/0x440
[  250.715661][T13782]  kmem_cache_alloc_node_noprof+0x71/0x320
[  250.721556][T13782]  ? __inet_diag_dump_start+0x9d/0xa50
[  250.727117][T13782]  __alloc_skb+0x1c3/0x440
[  250.731535][T13782]  ? __sys_sendmsg+0x292/0x380
[  250.736322][T13782]  ? do_syscall_64+0xf3/0x230
[  250.741012][T13782]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.747090][T13782]  ? __pfx___alloc_skb+0x10/0x10
[  250.752038][T13782]  netlink_dump+0x2cd/0xd80
[  250.756564][T13782]  ? __pfx_aa_get_newest_label+0x10/0x10
[  250.762222][T13782]  ? __pfx_netlink_dump+0x10/0x10
[  250.767272][T13782]  ? ns_capable+0x8a/0xf0
[  250.771642][T13782]  ? __inet_diag_dump_start+0x8c9/0xa50
[  250.777232][T13782]  __netlink_dump_start+0x5a2/0x790
[  250.782450][T13782]  inet_diag_rcv_msg_compat+0x209/0x4e0
[  250.788007][T13782]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  250.794080][T13782]  ? sock_diag_rcv_msg+0xca/0x5f0
[  250.799196][T13782]  ? __pfx_lock_release+0x10/0x10
[  250.804309][T13782]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  250.810646][T13782]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  250.816479][T13782]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  250.822123][T13782]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  250.828191][T13782]  sock_diag_rcv_msg+0x3dc/0x5f0
[  250.833136][T13782]  netlink_rcv_skb+0x1e3/0x430
[  250.837902][T13782]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  250.843414][T13782]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  250.848811][T13782]  ? netlink_deliver_tap+0x2e/0x1b0
[  250.854015][T13782]  netlink_unicast+0x7f6/0x990
[  250.858798][T13782]  ? __pfx_netlink_unicast+0x10/0x10
[  250.864089][T13782]  ? __virt_addr_valid+0x183/0x530
[  250.869201][T13782]  ? __check_object_size+0x48e/0x900
[  250.874490][T13782]  netlink_sendmsg+0x8e4/0xcb0
[  250.879357][T13782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.884645][T13782]  ? aa_sock_msg_perm+0x91/0x160
[  250.889593][T13782]  ? __pfx_netlink_sendmsg+0x10/0x10
[  250.894878][T13782]  __sock_sendmsg+0x221/0x270
[  250.899566][T13782]  ____sys_sendmsg+0x52a/0x7e0
[  250.904361][T13782]  ? __pfx_____sys_sendmsg+0x10/0x10
[  250.909707][T13782]  __sys_sendmsg+0x292/0x380
[  250.914329][T13782]  ? __pfx___sys_sendmsg+0x10/0x10
[  250.919454][T13782]  ? __pfx_vfs_write+0x10/0x10
[  250.924329][T13782]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  250.930668][T13782]  ? do_syscall_64+0x100/0x230
[  250.935441][T13782]  ? do_syscall_64+0xb6/0x230
[  250.940119][T13782]  do_syscall_64+0xf3/0x230
[  250.944627][T13782]  ? clear_bhb_loop+0x35/0x90
[  250.949313][T13782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  250.955208][T13782] RIP: 0033:0x7f3282d7e719
[  250.959632][T13782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.979361][T13782] RSP: 002b:00007f3283ac4038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  250.988003][T13782] RAX: ffffffffffffffda RBX: 00007f3282f35f80 RCX: 00007f3282d7e719
[  250.995975][T13782] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[  251.003945][T13782] RBP: 00007f3283ac4090 R08: 0000000000000000 R09: 0000000000000000
[  251.011930][T13782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  251.019914][T13782] R13: 0000000000000000 R14: 00007f3282f35f80 R15: 00007ffd4adf9c38
[  251.027911][T13782]  </TASK>
[  251.050160][T13784] ip6gretap0: left allmulticast mode
[  251.056655][T13784] ip6gretap0: left promiscuous mode
[  251.107434][T13784] bridge0: port 1(ip6gretap0) entered disabled state
[  251.870489][T13825] bridge4: entered promiscuous mode
[  251.891019][T13825] bridge4: entered allmulticast mode
[  251.905356][T13825] netlink: 'syz.1.2138': attribute type 10 has an invalid length.
[  252.135291][T13842] netlink: 'syz.4.2146': attribute type 11 has an invalid length.
[  252.145292][T13842] netlink: 'syz.4.2146': attribute type 11 has an invalid length.
[  252.459051][T13861] xt_limit: Overflow, try lower: 65536/2147483648
[  252.471775][T13863] wg2: left promiscuous mode
[  252.492275][T13863] wg2: left allmulticast mode
[  252.541056][T13867] bridge2: entered promiscuous mode
[  252.553983][T13867] bridge2: entered allmulticast mode
[  252.562174][T13860] tipc: MTU too low for tipc bearer
[  252.569167][T13872] netlink: 'syz.4.2152': attribute type 10 has an invalid length.
[  252.647203][T13856] bridge0: port 1(ip6gretap0) entered blocking state
[  252.668977][T13856] bridge0: port 1(ip6gretap0) entered disabled state
[  252.690140][T13856] ip6gretap0: entered allmulticast mode
[  252.714579][T13856] ip6gretap0: entered promiscuous mode
[  252.767609][T13856] veth0_to_batadv: left promiscuous mode
[  252.773327][T13856] veth0_to_batadv: left allmulticast mode
[  253.114791][T13900] vlan1: entered promiscuous mode
[  253.231445][T13900] vlan1 (unregistering): left promiscuous mode
[  253.623096][T13928] __nla_validate_parse: 19 callbacks suppressed
[  253.623116][T13928] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2173'.
[  253.646768][T13928] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2173'.
[  253.677647][T13929] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2174'.
[  253.885202][T13937] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2178'.
[  254.351761][T13966] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2185'.
[  254.504220][T13972] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2189'.
[  254.667590][T13980] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2193'.
[  254.718922][T13980] bond4: (slave vcan0): The slave device specified does not support setting the MAC address
[  254.723006][T13987] netlink: 'syz.5.2195': attribute type 5 has an invalid length.
[  254.734295][T13980] bond4: (slave vcan0): Error -95 calling set_mac_address
[  254.827088][T13984] netlink: 'syz.1.2192': attribute type 5 has an invalid length.
[  254.964949][T13998] netlink: 'syz.2.2199': attribute type 1 has an invalid length.
[  254.984944][T13998] netlink: 'syz.2.2199': attribute type 3 has an invalid length.
[  255.019005][T13998] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2199'.
[  255.181842][T14008] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2203'.
[  255.232867][T14011] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2202'.
[  255.937783][T14058] FAULT_INJECTION: forcing a failure.
[  255.937783][T14058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  255.954262][T14058] CPU: 0 UID: 0 PID: 14058 Comm: syz.3.2225 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  255.965084][T14058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  255.975339][T14058] Call Trace:
[  255.978644][T14058]  <TASK>
[  255.981596][T14058]  dump_stack_lvl+0x241/0x360
[  255.986408][T14058]  ? __pfx_dump_stack_lvl+0x10/0x10
[  255.991662][T14058]  ? __pfx__printk+0x10/0x10
[  255.996272][T14058]  ? __pfx_lock_release+0x10/0x10
[  256.001336][T14058]  ? __lock_acquire+0x1384/0x2050
[  256.006411][T14058]  should_fail_ex+0x3b0/0x4e0
[  256.011115][T14058]  _copy_from_user+0x2f/0xe0
[  256.015734][T14058]  kstrtouint_from_user+0xc6/0x190
[  256.020880][T14058]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  256.026659][T14058]  ? __pfx_lock_acquire+0x10/0x10
[  256.031746][T14058]  proc_fail_nth_write+0xaa/0x2d0
[  256.036803][T14058]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  256.042815][T14058]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  256.048465][T14058]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  256.054115][T14058]  vfs_write+0x29c/0xc90
[  256.058390][T14058]  ? __pfx_vfs_write+0x10/0x10
[  256.063176][T14058]  ? __fget_files+0x3f3/0x470
[  256.067861][T14058]  ? fdget_pos+0x24e/0x320
[  256.072400][T14058]  ksys_write+0x183/0x2b0
[  256.076743][T14058]  ? __pfx_ksys_write+0x10/0x10
[  256.081628][T14058]  ? do_syscall_64+0x100/0x230
[  256.086449][T14058]  ? do_syscall_64+0xb6/0x230
[  256.091174][T14058]  do_syscall_64+0xf3/0x230
[  256.095725][T14058]  ? clear_bhb_loop+0x35/0x90
[  256.100443][T14058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  256.106380][T14058] RIP: 0033:0x7f8962b7d1ff
[  256.110831][T14058] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8d 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8e 02 00 48
[  256.130476][T14058] RSP: 002b:00007f8963978030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  256.138932][T14058] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8962b7d1ff
[  256.146937][T14058] RDX: 0000000000000001 RSI: 00007f89639780a0 RDI: 0000000000000004
[  256.154947][T14058] RBP: 00007f8963978090 R08: 0000000000000000 R09: 0000000000000000
[  256.162953][T14058] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  256.171051][T14058] R13: 0000000000000000 R14: 00007f8962d35f80 R15: 00007ffcf9283478
[  256.179080][T14058]  </TASK>
[  256.189155][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[  256.321568][T14063] netlink: 'syz.3.2227': attribute type 11 has an invalid length.
[  256.349269][T14063] netlink: 'syz.3.2227': attribute type 11 has an invalid length.
[  257.003943][T14103] netlink: 'syz.2.2244': attribute type 11 has an invalid length.
[  257.021093][T14103] netlink: 'syz.2.2244': attribute type 11 has an invalid length.
[  257.115538][T14109] netlink: 'syz.2.2244': attribute type 5 has an invalid length.
[  257.310117][T14123] bridge5: entered promiscuous mode
[  257.315493][T14123] bridge5: entered allmulticast mode
[  257.353185][T14117] netlink: 'syz.1.2250': attribute type 10 has an invalid length.
[  257.562170][T14139] netlink: 'syz.1.2257': attribute type 10 has an invalid length.
[  257.581856][T14139] tipc: MTU too low for tipc bearer
[  257.699230][T14143] pim6reg1: entered promiscuous mode
[  257.706680][T14143] pim6reg1: entered allmulticast mode
[  257.728426][T14146] netlink: 'syz.4.2258': attribute type 1 has an invalid length.
[  258.074023][T14163] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  258.220664][T14170] FAULT_INJECTION: forcing a failure.
[  258.220664][T14170] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  258.236861][T14170] CPU: 0 UID: 0 PID: 14170 Comm: syz.2.2269 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  258.247683][T14170] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  258.257776][T14170] Call Trace:
[  258.261079][T14170]  <TASK>
[  258.264033][T14170]  dump_stack_lvl+0x241/0x360
[  258.268841][T14170]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.274164][T14170]  ? __pfx__printk+0x10/0x10
[  258.278809][T14170]  ? snprintf+0xda/0x120
[  258.283102][T14170]  should_fail_ex+0x3b0/0x4e0
[  258.287809][T14170]  _copy_to_user+0x2f/0xb0
[  258.292262][T14170]  simple_read_from_buffer+0xca/0x150
[  258.297689][T14170]  proc_fail_nth_read+0x1e9/0x250
[  258.302914][T14170]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.308489][T14170]  ? rw_verify_area+0x55e/0x6f0
[  258.313383][T14170]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  258.318959][T14170]  vfs_read+0x201/0xbc0
[  258.323225][T14170]  ? __pfx_aa_sk_perm+0x10/0x10
[  258.328091][T14170]  ? __pfx_vfs_read+0x10/0x10
[  258.332783][T14170]  ? __pfx_rose_connect+0x10/0x10
[  258.337833][T14170]  ? __sys_connect+0x156/0x300
[  258.342604][T14170]  ? __pfx___sys_connect+0x10/0x10
[  258.347726][T14170]  ? fdget_pos+0x265/0x320
[  258.352145][T14170]  ksys_read+0x183/0x2b0
[  258.356411][T14170]  ? __pfx_ksys_read+0x10/0x10
[  258.361195][T14170]  ? do_syscall_64+0x100/0x230
[  258.365983][T14170]  ? do_syscall_64+0xb6/0x230
[  258.370690][T14170]  do_syscall_64+0xf3/0x230
[  258.375202][T14170]  ? clear_bhb_loop+0x35/0x90
[  258.379896][T14170]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.385802][T14170] RIP: 0033:0x7f013cd7d15c
[  258.390228][T14170] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  258.409845][T14170] RSP: 002b:00007f013dbc5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  258.418278][T14170] RAX: ffffffffffffffda RBX: 00007f013cf36058 RCX: 00007f013cd7d15c
[  258.426269][T14170] RDX: 000000000000000f RSI: 00007f013dbc50a0 RDI: 0000000000000008
[  258.434255][T14170] RBP: 00007f013dbc5090 R08: 0000000000000000 R09: 0000000000000000
[  258.442236][T14170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.450226][T14170] R13: 0000000000000000 R14: 00007f013cf36058 R15: 00007fff5a4ef0f8
[  258.458225][T14170]  </TASK>
[  258.687597][T14176] __nla_validate_parse: 16 callbacks suppressed
[  258.687611][T14176] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2272'.
[  259.140605][T14211] FAULT_INJECTION: forcing a failure.
[  259.140605][T14211] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  259.155567][T14211] CPU: 1 UID: 0 PID: 14211 Comm: syz.4.2284 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  259.166387][T14211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  259.176472][T14211] Call Trace:
[  259.179777][T14211]  <TASK>
[  259.182739][T14211]  dump_stack_lvl+0x241/0x360
[  259.187467][T14211]  ? __pfx_dump_stack_lvl+0x10/0x10
[  259.192716][T14211]  ? __pfx__printk+0x10/0x10
[  259.197358][T14211]  ? snprintf+0xda/0x120
[  259.201638][T14211]  should_fail_ex+0x3b0/0x4e0
[  259.206356][T14211]  _copy_to_user+0x2f/0xb0
[  259.210900][T14211]  simple_read_from_buffer+0xca/0x150
[  259.216313][T14211]  proc_fail_nth_read+0x1e9/0x250
[  259.221381][T14211]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.226969][T14211]  ? rw_verify_area+0x55e/0x6f0
[  259.231845][T14211]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  259.237409][T14211]  vfs_read+0x201/0xbc0
[  259.241572][T14211]  ? __pfx_lock_release+0x10/0x10
[  259.246612][T14211]  ? __pfx_vfs_read+0x10/0x10
[  259.251299][T14211]  ? __fget_files+0x3f3/0x470
[  259.255987][T14211]  ? fdget_pos+0x24e/0x320
[  259.260427][T14211]  ksys_read+0x183/0x2b0
[  259.264680][T14211]  ? __pfx_ksys_read+0x10/0x10
[  259.269444][T14211]  ? do_syscall_64+0x100/0x230
[  259.274212][T14211]  ? do_syscall_64+0xb6/0x230
[  259.278895][T14211]  do_syscall_64+0xf3/0x230
[  259.283419][T14211]  ? clear_bhb_loop+0x35/0x90
[  259.288114][T14211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.294012][T14211] RIP: 0033:0x7f703fd7d15c
[  259.298436][T14211] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  259.318056][T14211] RSP: 002b:00007f7040b3e030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  259.326480][T14211] RAX: ffffffffffffffda RBX: 00007f703ff35f80 RCX: 00007f703fd7d15c
[  259.334449][T14211] RDX: 000000000000000f RSI: 00007f7040b3e0a0 RDI: 0000000000000006
[  259.342418][T14211] RBP: 00007f7040b3e090 R08: 0000000000000000 R09: 0000000000000000
[  259.350398][T14211] R10: 00000000000000f2 R11: 0000000000000246 R12: 0000000000000001
[  259.358382][T14211] R13: 0000000000000000 R14: 00007f703ff35f80 R15: 00007ffd963c9e28
[  259.366371][T14211]  </TASK>
[  259.502777][T14220] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2286'.
[  260.435097][T14245] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2294'.
[  260.543541][T14251] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2299'.
[  260.744467][T14263] SET target dimension over the limit!
[  260.856739][T14266] lo speed is unknown, defaulting to 1000
[  261.034420][T14274] netlink: 'syz.1.2309': attribute type 10 has an invalid length.
[  261.138389][T14266] lo speed is unknown, defaulting to 1000
[  261.302126][T14280] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2312'.
[  261.307137][T14282] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2313'.
[  261.347754][T14282] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2313'.
[  261.493096][T14285] vlan1: entered promiscuous mode
[  261.531345][T14285] dummy0: entered promiscuous mode
[  261.559472][T14285] vlan1: entered allmulticast mode
[  261.572118][T14285] dummy0: entered allmulticast mode
[  261.596405][T14289] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2316'.
[  261.629255][T14288] FAULT_INJECTION: forcing a failure.
[  261.629255][T14288] name failslab, interval 1, probability 0, space 0, times 0
[  261.663031][T14288] CPU: 0 UID: 0 PID: 14288 Comm: syz.1.2315 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  261.673860][T14288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  261.683946][T14288] Call Trace:
[  261.687250][T14288]  <TASK>
[  261.690201][T14288]  dump_stack_lvl+0x241/0x360
[  261.694910][T14288]  ? __pfx_dump_stack_lvl+0x10/0x10
[  261.700145][T14288]  ? __pfx__printk+0x10/0x10
[  261.704767][T14288]  ? __kmalloc_node_noprof+0xb7/0x440
[  261.710350][T14288]  ? __pfx___might_resched+0x10/0x10
[  261.715698][T14288]  ? __asan_memset+0x23/0x50
[  261.720321][T14288]  should_fail_ex+0x3b0/0x4e0
[  261.725027][T14288]  should_failslab+0xac/0x100
[  261.729733][T14288]  __kmalloc_node_noprof+0xdf/0x440
[  261.734957][T14288]  ? __kvmalloc_node_noprof+0x72/0x190
[  261.740535][T14288]  __kvmalloc_node_noprof+0x72/0x190
[  261.745850][T14288]  alloc_netdev_mqs+0x8d4/0x1080
[  261.750837][T14288]  rtnl_create_link+0x2f9/0xc20
[  261.755745][T14288]  rtnl_newlink_create+0x210/0xa30
[  261.760910][T14288]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  261.766583][T14288]  ? bpf_lsm_capable+0x9/0x10
[  261.771287][T14288]  ? security_capable+0x7e/0x2d0
[  261.776266][T14288]  ? ns_capable+0x8a/0xf0
[  261.780633][T14288]  rtnl_newlink+0xfa9/0x1550
[  261.785269][T14288]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.790337][T14288]  ? __mutex_lock+0x9ab/0xd70
[  261.795049][T14288]  ? __mutex_lock+0x52a/0xd70
[  261.799936][T14288]  ? rtnetlink_rcv_msg+0x6e6/0xcf0
[  261.805097][T14288]  ? __pfx_rtnl_newlink+0x10/0x10
[  261.810211][T14288]  rtnetlink_rcv_msg+0x73f/0xcf0
[  261.815179][T14288]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  261.820325][T14288]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  261.825825][T14288]  ? ref_tracker_free+0x643/0x7e0
[  261.830885][T14288]  netlink_rcv_skb+0x1e3/0x430
[  261.835676][T14288]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  261.841172][T14288]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  261.846507][T14288]  ? netlink_deliver_tap+0x2e/0x1b0
[  261.851742][T14288]  netlink_unicast+0x7f6/0x990
[  261.856557][T14288]  ? __pfx_netlink_unicast+0x10/0x10
[  261.861890][T14288]  ? __virt_addr_valid+0x183/0x530
[  261.867036][T14288]  ? __check_object_size+0x48e/0x900
[  261.872352][T14288]  netlink_sendmsg+0x8e4/0xcb0
[  261.877159][T14288]  ? __pfx_netlink_sendmsg+0x10/0x10
[  261.882479][T14288]  ? aa_sock_msg_perm+0x91/0x160
[  261.887464][T14288]  ? __pfx_netlink_sendmsg+0x10/0x10
[  261.892896][T14288]  __sock_sendmsg+0x221/0x270
[  261.897607][T14288]  ____sys_sendmsg+0x52a/0x7e0
[  261.902500][T14288]  ? __pfx_____sys_sendmsg+0x10/0x10
[  261.907841][T14288]  __sys_sendmsg+0x292/0x380
[  261.912475][T14288]  ? __pfx___sys_sendmsg+0x10/0x10
[  261.917636][T14288]  ? __pfx_vfs_write+0x10/0x10
[  261.922454][T14288]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  261.928817][T14288]  ? do_syscall_64+0x100/0x230
[  261.933624][T14288]  ? do_syscall_64+0xb6/0x230
[  261.938343][T14288]  do_syscall_64+0xf3/0x230
[  261.942875][T14288]  ? clear_bhb_loop+0x35/0x90
[  261.947583][T14288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  261.953506][T14288] RIP: 0033:0x7f7d4617e719
[  261.957943][T14288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  261.977582][T14288] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  261.986035][T14288] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  261.994043][T14288] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000012
[  262.002051][T14288] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  262.010054][T14288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.018059][T14288] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  262.026075][T14288]  </TASK>
[  262.063721][T14291] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2316'.
[  262.347580][T14303] mac80211_hwsim hwsim5 syzkaller0: left promiscuous mode
[  262.354846][T14303] mac80211_hwsim hwsim5 syzkaller0: left allmulticast mode
[  262.468390][T14311] FAULT_INJECTION: forcing a failure.
[  262.468390][T14311] name failslab, interval 1, probability 0, space 0, times 0
[  262.517126][T14311] CPU: 0 UID: 0 PID: 14311 Comm: syz.3.2324 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  262.527961][T14311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  262.538053][T14311] Call Trace:
[  262.541365][T14311]  <TASK>
[  262.542223][T14313] netlink: 'syz.1.2325': attribute type 1 has an invalid length.
[  262.544300][T14311]  dump_stack_lvl+0x241/0x360
[  262.544339][T14311]  ? __pfx_dump_stack_lvl+0x10/0x10
[  262.561942][T14311]  ? __pfx__printk+0x10/0x10
[  262.566565][T14311]  ? fs_reclaim_acquire+0x93/0x130
[  262.571744][T14311]  ? __pfx___might_resched+0x10/0x10
[  262.577068][T14311]  ? dynamic_dname+0x141/0x1b0
[  262.581864][T14311]  should_fail_ex+0x3b0/0x4e0
[  262.586566][T14311]  ? tomoyo_encode+0x26f/0x540
[  262.591359][T14311]  should_failslab+0xac/0x100
[  262.596064][T14311]  ? tomoyo_encode+0x26f/0x540
[  262.600855][T14311]  __kmalloc_noprof+0xd8/0x400
[  262.605663][T14311]  tomoyo_encode+0x26f/0x540
[  262.610289][T14311]  ? __pfx_sockfs_dname+0x10/0x10
[  262.615352][T14311]  tomoyo_realpath_from_path+0x59e/0x5e0
[  262.621033][T14311]  tomoyo_path_number_perm+0x23a/0x880
[  262.626539][T14311]  ? tomoyo_path_number_perm+0x208/0x880
[  262.632196][T14311]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  262.638406][T14311]  ? __fget_files+0x29/0x470
[  262.643034][T14311]  ? __fget_files+0x3f3/0x470
[  262.647752][T14311]  security_file_ioctl+0xc6/0x2a0
[  262.652822][T14311]  __se_sys_ioctl+0x47/0x170
[  262.657452][T14311]  do_syscall_64+0xf3/0x230
[  262.661984][T14311]  ? clear_bhb_loop+0x35/0x90
[  262.666703][T14311]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.672631][T14311] RIP: 0033:0x7f8962b7e719
[  262.677070][T14311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.696802][T14311] RSP: 002b:00007f8963978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  262.701529][T14308] IPVS: persistence engine module ip_vs_pe_@ not found
[  262.705231][T14311] RAX: ffffffffffffffda RBX: 00007f8962d35f80 RCX: 00007f8962b7e719
[  262.705253][T14311] RDX: 0000000020003340 RSI: 0000000000008903 RDI: 0000000000000003
[  262.705265][T14311] RBP: 00007f8963978090 R08: 0000000000000000 R09: 0000000000000000
[  262.705278][T14311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  262.705289][T14311] R13: 0000000000000000 R14: 00007f8962d35f80 R15: 00007ffcf9283478
[  262.705317][T14311]  </TASK>
[  262.792604][T14311] ERROR: Out of memory at tomoyo_realpath_from_path.
[  262.914218][T14323] !1ÿ: renamed from veth0_vlan (while UP)
[  262.922171][T14321] IPVS: length: 188 != 24
[  263.161595][T14333] FAULT_INJECTION: forcing a failure.
[  263.161595][T14333] name failslab, interval 1, probability 0, space 0, times 0
[  263.182574][T14333] CPU: 1 UID: 0 PID: 14333 Comm: syz.1.2333 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  263.193401][T14333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  263.203490][T14333] Call Trace:
[  263.206813][T14333]  <TASK>
[  263.209778][T14333]  dump_stack_lvl+0x241/0x360
[  263.214494][T14333]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.219726][T14333]  ? __pfx__printk+0x10/0x10
[  263.224371][T14333]  should_fail_ex+0x3b0/0x4e0
[  263.229086][T14333]  should_failslab+0xac/0x100
[  263.233807][T14333]  ? __alloc_skb+0x1c3/0x440
[  263.238518][T14333]  kmem_cache_alloc_node_noprof+0x71/0x320
[  263.244372][T14333]  __alloc_skb+0x1c3/0x440
[  263.248819][T14333]  ? trace_contention_end+0x3c/0x120
[  263.254220][T14333]  ? __pfx___alloc_skb+0x10/0x10
[  263.259264][T14333]  ? __local_bh_enable_ip+0x168/0x200
[  263.264633][T14333]  ? hci_sock_sendmsg+0x617/0x11c0
[  263.269743][T14333]  ? lockdep_hardirqs_on+0x99/0x150
[  263.274946][T14333]  hci_mgmt_cmd+0x1c1/0x11d0
[  263.279547][T14333]  hci_sock_sendmsg+0x7b8/0x11c0
[  263.284491][T14333]  ? __pfx_aa_sk_perm+0x10/0x10
[  263.289353][T14333]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  263.294730][T14333]  ? __pfx_aa_file_perm+0x10/0x10
[  263.299763][T14333]  ? aa_sock_msg_perm+0x91/0x160
[  263.304703][T14333]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  263.310112][T14333]  __sock_sendmsg+0x221/0x270
[  263.314790][T14333]  sock_write_iter+0x2d7/0x3f0
[  263.319558][T14333]  ? __pfx_sock_write_iter+0x10/0x10
[  263.324853][T14333]  ? bpf_lsm_file_permission+0x9/0x10
[  263.330220][T14333]  ? security_file_permission+0x74/0x280
[  263.335862][T14333]  vfs_write+0xa6d/0xc90
[  263.340135][T14333]  ? __pfx_sock_write_iter+0x10/0x10
[  263.345435][T14333]  ? __pfx_vfs_write+0x10/0x10
[  263.350213][T14333]  ? fdget_pos+0x19a/0x320
[  263.354635][T14333]  ksys_write+0x183/0x2b0
[  263.358961][T14333]  ? __pfx_ksys_write+0x10/0x10
[  263.363810][T14333]  ? do_syscall_64+0x100/0x230
[  263.368577][T14333]  ? do_syscall_64+0xb6/0x230
[  263.373266][T14333]  do_syscall_64+0xf3/0x230
[  263.377789][T14333]  ? clear_bhb_loop+0x35/0x90
[  263.382469][T14333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.388451][T14333] RIP: 0033:0x7f7d4617e719
[  263.392870][T14333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.412498][T14333] RSP: 002b:00007f7d46fa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  263.420913][T14333] RAX: ffffffffffffffda RBX: 00007f7d46335f80 RCX: 00007f7d4617e719
[  263.428880][T14333] RDX: 0000000000000007 RSI: 0000000020000000 RDI: 0000000000000004
[  263.437286][T14333] RBP: 00007f7d46fa7090 R08: 0000000000000000 R09: 0000000000000000
[  263.445256][T14333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  263.453242][T14333] R13: 0000000000000000 R14: 00007f7d46335f80 R15: 00007ffd8479b788
[  263.461231][T14333]  </TASK>
[  263.515528][T14343] netlink: 'syz.4.2337': attribute type 1 has an invalid length.
[  264.043866][T14372] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2348'.
[  264.064875][T14372] tipc: MTU too low for tipc bearer
[  264.182548][T14381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2352'.
[  264.319352][T14393] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2346'.
[  264.470096][T14404] netdevsim netdevsim4 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  264.480449][T14404] netdevsim netdevsim4 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  264.490170][T14404] netdevsim netdevsim4 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  264.499274][T14404] netdevsim netdevsim4 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  264.508784][T14404] geneve2: entered promiscuous mode
[  264.514232][T14404] geneve2: entered allmulticast mode
[  264.630146][T14409] bridge3: entered promiscuous mode
[  264.643961][T14409] bridge3: entered allmulticast mode
[  264.658019][T14406] netlink: 'syz.4.2361': attribute type 10 has an invalid length.
[  264.672630][T14411] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2362'.
[  264.703583][T14411] tipc: MTU too low for tipc bearer
[  264.891897][T14421] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2365'.
[  265.074453][T14432] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2369'.
[  265.347464][T14448] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2374'.
[  265.390867][T14448] tipc: MTU too low for tipc bearer
[  265.449190][T14457] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2376'.
[  265.487615][T14457] FAULT_INJECTION: forcing a failure.
[  265.487615][T14457] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.508347][T14457] CPU: 0 UID: 0 PID: 14457 Comm: syz.2.2376 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  265.519184][T14457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  265.529272][T14457] Call Trace:
[  265.532589][T14457]  <TASK>
[  265.535552][T14457]  dump_stack_lvl+0x241/0x360
[  265.540276][T14457]  ? __pfx_dump_stack_lvl+0x10/0x10
[  265.545515][T14457]  ? __pfx__printk+0x10/0x10
[  265.550158][T14457]  ? snprintf+0xda/0x120
[  265.554433][T14457]  should_fail_ex+0x3b0/0x4e0
[  265.559144][T14457]  _copy_to_user+0x2f/0xb0
[  265.563629][T14457]  simple_read_from_buffer+0xca/0x150
[  265.569042][T14457]  proc_fail_nth_read+0x1e9/0x250
[  265.574108][T14457]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.579698][T14457]  ? rw_verify_area+0x55e/0x6f0
[  265.584582][T14457]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  265.590167][T14457]  vfs_read+0x201/0xbc0
[  265.594333][T14457]  ? __pfx_lock_release+0x10/0x10
[  265.599376][T14457]  ? __pfx_vfs_read+0x10/0x10
[  265.604065][T14457]  ? __fget_files+0x3f3/0x470
[  265.608754][T14457]  ? fdget_pos+0x24e/0x320
[  265.613177][T14457]  ksys_read+0x183/0x2b0
[  265.617424][T14457]  ? __pfx_ksys_read+0x10/0x10
[  265.622187][T14457]  ? do_syscall_64+0x100/0x230
[  265.626954][T14457]  ? do_syscall_64+0xb6/0x230
[  265.631640][T14457]  do_syscall_64+0xf3/0x230
[  265.636243][T14457]  ? clear_bhb_loop+0x35/0x90
[  265.640933][T14457]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  265.646828][T14457] RIP: 0033:0x7f013cd7d15c
[  265.651242][T14457] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[  265.670862][T14457] RSP: 002b:00007f013dbc5030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  265.679284][T14457] RAX: ffffffffffffffda RBX: 00007f013cf36058 RCX: 00007f013cd7d15c
[  265.687353][T14457] RDX: 000000000000000f RSI: 00007f013dbc50a0 RDI: 000000000000000b
[  265.695330][T14457] RBP: 00007f013dbc5090 R08: 0000000000000000 R09: 0000000000000000
[  265.703303][T14457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.711276][T14457] R13: 0000000000000000 R14: 00007f013cf36058 R15: 00007fff5a4ef0f8
[  265.719269][T14457]  </TASK>
[  266.120500][T14485] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2386'.
[  266.181307][T14485] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2386'.
[  266.224756][T14485] netlink: 'syz.1.2386': attribute type 2 has an invalid length.
[  266.251945][T14489] tipc: MTU too low for tipc bearer
[  266.333642][T14493] FAULT_INJECTION: forcing a failure.
[  266.333642][T14493] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.358518][T14493] CPU: 0 UID: 0 PID: 14493 Comm: syz.4.2391 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  266.369433][T14493] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  266.379517][T14493] Call Trace:
[  266.382820][T14493]  <TASK>
[  266.385770][T14493]  dump_stack_lvl+0x241/0x360
[  266.390488][T14493]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.395714][T14493]  ? __pfx__printk+0x10/0x10
[  266.400342][T14493]  ? __pfx_lock_release+0x10/0x10
[  266.405406][T14493]  should_fail_ex+0x3b0/0x4e0
[  266.410116][T14493]  _copy_from_user+0x2f/0xe0
[  266.414735][T14493]  copy_msghdr_from_user+0xae/0x680
[  266.419977][T14493]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  266.425819][T14493]  __sys_sendmmsg+0x36d/0x730
[  266.430533][T14493]  ? __pfx___sys_sendmmsg+0x10/0x10
[  266.435774][T14493]  ? __pfx_lock_release+0x10/0x10
[  266.440830][T14493]  ? kstrtouint_from_user+0x128/0x190
[  266.446686][T14493]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  266.452611][T14493]  ? ksys_write+0x229/0x2b0
[  266.457133][T14493]  ? __pfx_lock_release+0x10/0x10
[  266.462187][T14493]  ? vfs_write+0x7bf/0xc90
[  266.466624][T14493]  ? kmem_cache_free+0x1a2/0x420
[  266.471587][T14493]  ? __mutex_unlock_slowpath+0x21d/0x750
[  266.477257][T14493]  ? __fget_files+0x3f3/0x470
[  266.481971][T14493]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  266.487996][T14493]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  266.494527][T14493]  ? do_syscall_64+0x100/0x230
[  266.499323][T14493]  __x64_sys_sendmmsg+0xa0/0xb0
[  266.504233][T14493]  do_syscall_64+0xf3/0x230
[  266.508765][T14493]  ? clear_bhb_loop+0x35/0x90
[  266.513558][T14493]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.519484][T14493] RIP: 0033:0x7f703fd7e719
[  266.523916][T14493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  266.543892][T14493] RSP: 002b:00007f7040b3e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  266.552342][T14493] RAX: ffffffffffffffda RBX: 00007f703ff35f80 RCX: 00007f703fd7e719
[  266.560339][T14493] RDX: 040000000000009f RSI: 00000000200002c0 RDI: 0000000000000003
[  266.568333][T14493] RBP: 00007f7040b3e090 R08: 0000000000000000 R09: 0000000000000000
[  266.576344][T14493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.584336][T14493] R13: 0000000000000000 R14: 00007f703ff35f80 R15: 00007ffd963c9e28
[  266.592354][T14493]  </TASK>
[  267.374961][T14530] bridge4: entered promiscuous mode
[  267.394561][T14530] bridge4: entered allmulticast mode
[  267.441543][T14533] netlink: 'syz.2.2399': attribute type 1 has an invalid length.
[  267.449046][T14530] netlink: 'syz.4.2398': attribute type 10 has an invalid length.
[  267.621966][T14543] dccp_invalid_packet: P.Data Offset(100) too large
[  267.783665][T14553] FAULT_INJECTION: forcing a failure.
[  267.783665][T14553] name failslab, interval 1, probability 0, space 0, times 0
[  267.801310][T14555] x_tables: unsorted entry at hook 2
[  267.807521][T14553] CPU: 1 UID: 0 PID: 14553 Comm: syz.3.2407 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  267.807555][T14553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  267.807568][T14553] Call Trace:
[  267.807576][T14553]  <TASK>
[  267.807585][T14553]  dump_stack_lvl+0x241/0x360
[  267.807620][T14553]  ? __pfx_dump_stack_lvl+0x10/0x10
[  267.807645][T14553]  ? __pfx__printk+0x10/0x10
[  267.807672][T14553]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  267.807697][T14553]  ? __pfx___might_resched+0x10/0x10
[  267.807730][T14553]  should_fail_ex+0x3b0/0x4e0
[  267.807754][T14553]  ? __kernfs_new_node+0xd8/0x870
[  267.807772][T14553]  should_failslab+0xac/0x100
[  267.807795][T14553]  ? __kernfs_new_node+0xd8/0x870
[  267.807813][T14553]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  267.807842][T14553]  __kernfs_new_node+0xd8/0x870
[  267.807868][T14553]  ? up_write+0x1a9/0x590
[  267.807888][T14553]  ? __pfx___kernfs_new_node+0x10/0x10
[  267.807909][T14553]  ? __pfx_up_write+0x10/0x10
[  267.807940][T14553]  kernfs_new_node+0x137/0x240
[  267.807963][T14553]  __kernfs_create_file+0x49/0x2e0
[  267.807988][T14553]  sysfs_add_file_mode_ns+0x24a/0x310
[  267.808018][T14553]  sysfs_merge_group+0x1fd/0x450
[  267.808055][T14553]  ? __pfx_sysfs_merge_group+0x10/0x10
[  267.808077][T14553]  ? device_add_attrs+0x48c/0x600
[  267.808099][T14553]  ? __pfx_device_add_attrs+0x10/0x10
[  267.940505][T14553]  ? bus_add_device+0xde/0x460
[  267.945289][T14553]  dpm_sysfs_add+0xd3/0x280
[  267.949798][T14553]  device_add+0x5bc/0xbf0
[  267.954136][T14553]  tty_register_device_attr+0x437/0x960
[  267.959704][T14553]  ? __pfx_tty_register_device_attr+0x10/0x10
[  267.965799][T14553]  ? tty_port_register_device+0x5b/0x100
[  267.971455][T14553]  rfcomm_dev_ioctl+0x1a51/0x2220
[  267.976485][T14553]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[  267.981853][T14553]  ? kfree+0x1a0/0x440
[  267.985931][T14553]  ? tomoyo_path_number_perm+0x68d/0x880
[  267.991568][T14553]  ? bt_sock_ioctl+0xe9/0x2c0
[  267.996265][T14553]  sock_do_ioctl+0x158/0x460
[  268.000876][T14553]  ? __pfx_sock_do_ioctl+0x10/0x10
[  268.006095][T14553]  sock_ioctl+0x626/0x8e0
[  268.010445][T14553]  ? __pfx_sock_ioctl+0x10/0x10
[  268.015301][T14553]  ? __fget_files+0x29/0x470
[  268.019979][T14553]  ? __fget_files+0x3f3/0x470
[  268.024754][T14553]  ? __pfx_sock_ioctl+0x10/0x10
[  268.029613][T14553]  __se_sys_ioctl+0xf9/0x170
[  268.034212][T14553]  do_syscall_64+0xf3/0x230
[  268.038717][T14553]  ? clear_bhb_loop+0x35/0x90
[  268.043429][T14553]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.049326][T14553] RIP: 0033:0x7f8962b7e719
[  268.053825][T14553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.073466][T14553] RSP: 002b:00007f8963978038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  268.081891][T14553] RAX: ffffffffffffffda RBX: 00007f8962d35f80 RCX: 00007f8962b7e719
[  268.089861][T14553] RDX: 0000000020000100 RSI: 00000000400452c8 RDI: 0000000000000006
[  268.097829][T14553] RBP: 00007f8963978090 R08: 0000000000000000 R09: 0000000000000000
[  268.105813][T14553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.113806][T14553] R13: 0000000000000000 R14: 00007f8962d35f80 R15: 00007ffcf9283478
[  268.121794][T14553]  </TASK>
[  268.312689][T14568] netlink: 'syz.2.2412': attribute type 1 has an invalid length.
[  268.704267][T14594] bridge1: entered promiscuous mode
[  268.715033][T14594] bridge1: entered allmulticast mode
[  268.733213][T14591] netlink: 'syz.2.2419': attribute type 10 has an invalid length.
[  269.453600][T14628] __nla_validate_parse: 9 callbacks suppressed
[  269.453614][T14628] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2431'.
[  269.541529][T14632] ipvlan2: entered promiscuous mode
[  269.777207][T14644] lo speed is unknown, defaulting to 1000
[  269.830300][T14647] lo speed is unknown, defaulting to 1000
[  269.953173][T14652] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2439'.
[  269.964353][T14644] lo speed is unknown, defaulting to 1000
[  269.979707][T14652] netlink: 104 bytes leftover after parsing attributes in process `syz.2.2439'.
[  270.156621][T14647] lo speed is unknown, defaulting to 1000
[  270.667251][T14681] netlink: 'syz.1.2449': attribute type 4 has an invalid length.
[  270.698788][T14679] Bluetooth: hci0: Opcode 0x0c20 failed: -22
[  270.706716][ T5859] ==================================================================
[  270.714834][ T5859] BUG: KASAN: slab-use-after-free in set_powered_sync+0x3a/0xc0
[  270.722474][ T5859] Read of size 8 at addr ffff888140403b18 by task kworker/u9:6/5859
[  270.730535][ T5859] 
[  270.732855][ T5859] CPU: 1 UID: 0 PID: 5859 Comm: kworker/u9:6 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  270.743701][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  270.753756][ T5859] Workqueue: hci0 hci_cmd_sync_work
[  270.758964][ T5859] Call Trace:
[  270.762234][ T5859]  <TASK>
[  270.765161][ T5859]  dump_stack_lvl+0x241/0x360
[  270.769856][ T5859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  270.775059][ T5859]  ? __pfx__printk+0x10/0x10
[  270.779648][ T5859]  ? _printk+0xd5/0x120
[  270.783798][ T5859]  ? __virt_addr_valid+0x183/0x530
[  270.788937][ T5859]  ? __virt_addr_valid+0x183/0x530
[  270.794069][ T5859]  print_report+0x169/0x550
[  270.798580][ T5859]  ? __virt_addr_valid+0x183/0x530
[  270.803684][ T5859]  ? __virt_addr_valid+0x183/0x530
[  270.808790][ T5859]  ? __virt_addr_valid+0x45f/0x530
[  270.813898][ T5859]  ? __phys_addr+0xba/0x170
[  270.818405][ T5859]  ? set_powered_sync+0x3a/0xc0
[  270.823274][ T5859]  kasan_report+0x143/0x180
[  270.827791][ T5859]  ? set_powered_sync+0x3a/0xc0
[  270.832639][ T5859]  set_powered_sync+0x3a/0xc0
[  270.837312][ T5859]  ? __pfx_set_powered_sync+0x10/0x10
[  270.842695][ T5859]  hci_cmd_sync_work+0x22b/0x400
[  270.847637][ T5859]  ? process_scheduled_works+0x976/0x1850
[  270.853358][ T5859]  process_scheduled_works+0xa63/0x1850
[  270.858910][ T5859]  ? __pfx_process_scheduled_works+0x10/0x10
[  270.864894][ T5859]  ? assign_work+0x364/0x3d0
[  270.869495][ T5859]  worker_thread+0x870/0xd30
[  270.874205][ T5859]  ? __kthread_parkme+0x169/0x1d0
[  270.879244][ T5859]  ? __pfx_worker_thread+0x10/0x10
[  270.884361][ T5859]  kthread+0x2f0/0x390
[  270.888428][ T5859]  ? __pfx_worker_thread+0x10/0x10
[  270.893546][ T5859]  ? __pfx_kthread+0x10/0x10
[  270.898132][ T5859]  ret_from_fork+0x4b/0x80
[  270.902559][ T5859]  ? __pfx_kthread+0x10/0x10
[  270.907154][ T5859]  ret_from_fork_asm+0x1a/0x30
[  270.911920][ T5859]  </TASK>
[  270.914938][ T5859] 
[  270.917363][ T5859] Allocated by task 14681:
[  270.921768][ T5859]  kasan_save_track+0x3f/0x80
[  270.926613][ T5859]  __kasan_kmalloc+0x98/0xb0
[  270.931190][ T5859]  __kmalloc_cache_noprof+0x19c/0x2c0
[  270.936563][ T5859]  mgmt_pending_new+0x65/0x250
[  270.941329][ T5859]  mgmt_pending_add+0x36/0x120
[  270.946119][ T5859]  set_powered+0x3cd/0x5e0
[  270.950606][ T5859]  hci_mgmt_cmd+0xc47/0x11d0
[  270.955206][ T5859]  hci_sock_sendmsg+0x7b8/0x11c0
[  270.960143][ T5859]  __sock_sendmsg+0x221/0x270
[  270.964816][ T5859]  sock_write_iter+0x2d7/0x3f0
[  270.969590][ T5859]  vfs_write+0xa6d/0xc90
[  270.973828][ T5859]  ksys_write+0x183/0x2b0
[  270.978154][ T5859]  do_syscall_64+0xf3/0x230
[  270.982664][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.988553][ T5859] 
[  270.990866][ T5859] Freed by task 14159:
[  270.994922][ T5859]  kasan_save_track+0x3f/0x80
[  270.999600][ T5859]  kasan_save_free_info+0x40/0x50
[  271.004622][ T5859]  __kasan_slab_free+0x59/0x70
[  271.009381][ T5859]  kfree+0x1a0/0x440
[  271.013278][ T5859]  settings_rsp+0x2bc/0x390
[  271.017800][ T5859]  mgmt_pending_foreach+0xd1/0x130
[  271.022908][ T5859]  __mgmt_power_off+0x106/0x430
[  271.027756][ T5859]  hci_dev_close_sync+0x6c4/0x11c0
[  271.033004][ T5859]  hci_dev_close+0x112/0x210
[  271.037596][ T5859]  sock_do_ioctl+0x158/0x460
[  271.042185][ T5859]  sock_ioctl+0x626/0x8e0
[  271.046509][ T5859]  __se_sys_ioctl+0xf9/0x170
[  271.051095][ T5859]  do_syscall_64+0xf3/0x230
[  271.055603][ T5859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.061639][ T5859] 
[  271.063966][ T5859] The buggy address belongs to the object at ffff888140403b00
[  271.063966][ T5859]  which belongs to the cache kmalloc-96 of size 96
[  271.078036][ T5859] The buggy address is located 24 bytes inside of
[  271.078036][ T5859]  freed 96-byte region [ffff888140403b00, ffff888140403b60)
[  271.091681][ T5859] 
[  271.094015][ T5859] The buggy address belongs to the physical page:
[  271.100512][ T5859] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x140403
[  271.109354][ T5859] ksm flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[  271.116929][ T5859] page_type: f5(slab)
[  271.120915][ T5859] raw: 057ff00000000000 ffff88801ac41280 ffffea0000a0c780 dead000000000003
[  271.129499][ T5859] raw: 0000000000000000 0000000000200020 00000001f5000000 0000000000000000
[  271.138075][ T5859] page dumped because: kasan: bad access detected
[  271.144492][ T5859] page_owner tracks the page as allocated
[  271.150194][ T5859] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252000(__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 0, tgid 0 (swapper/0), ts 2044404529, free_ts 0
[  271.168168][ T5859]  post_alloc_hook+0x1f3/0x230
[  271.172934][ T5859]  get_page_from_freelist+0x3045/0x3190
[  271.178480][ T5859]  __alloc_pages_noprof+0x292/0x710
[  271.183776][ T5859]  alloc_slab_page+0x59/0x120
[  271.188554][ T5859]  allocate_slab+0x5a/0x2f0
[  271.193111][ T5859]  ___slab_alloc+0xcd1/0x14b0
[  271.197813][ T5859]  __slab_alloc+0x58/0xa0
[  271.202145][ T5859]  __kmalloc_cache_node_noprof+0x20c/0x300
[  271.207953][ T5859]  __alloc_workqueue+0x709/0x1f20
[  271.212975][ T5859]  alloc_workqueue+0xd6/0x210
[  271.217652][ T5859]  workqueue_init_early+0xae0/0xd60
[  271.222864][ T5859]  start_kernel+0x1f7/0x500
[  271.227376][ T5859]  x86_64_start_reservations+0x2a/0x30
[  271.232867][ T5859]  x86_64_start_kernel+0x9f/0xa0
[  271.237797][ T5859]  common_startup_64+0x13e/0x147
[  271.242734][ T5859] page_owner free stack trace missing
[  271.248090][ T5859] 
[  271.250493][ T5859] Memory state around the buggy address:
[  271.256213][ T5859]  ffff888140403a00: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  271.264355][ T5859]  ffff888140403a80: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  271.272429][ T5859] >ffff888140403b00: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[  271.280485][ T5859]                             ^
[  271.285327][ T5859]  ffff888140403b80: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  271.293390][ T5859]  ffff888140403c00: 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc
[  271.301440][ T5859] ==================================================================
[  271.362125][ T5859] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  271.369380][ T5859] CPU: 0 UID: 0 PID: 5859 Comm: kworker/u9:6 Not tainted 6.12.0-rc4-syzkaller-00819-gb62607870b29 #0
[  271.380516][ T5859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  271.390603][ T5859] Workqueue: hci0 hci_cmd_sync_work
[  271.395840][ T5859] Call Trace:
[  271.399140][ T5859]  <TASK>
[  271.402104][ T5859]  dump_stack_lvl+0x241/0x360
[  271.406811][ T5859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.412102][ T5859]  ? __pfx__printk+0x10/0x10
[  271.416692][ T5859]  ? preempt_schedule+0xe1/0xf0
[  271.421545][ T5859]  ? vscnprintf+0x5d/0x90
[  271.425965][ T5859]  panic+0x349/0x880
[  271.429870][ T5859]  ? check_panic_on_warn+0x21/0xb0
[  271.434983][ T5859]  ? __pfx_panic+0x10/0x10
[  271.439403][ T5859]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[  271.445388][ T5859]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  271.451712][ T5859]  ? print_report+0x502/0x550
[  271.456398][ T5859]  check_panic_on_warn+0x86/0xb0
[  271.461328][ T5859]  ? set_powered_sync+0x3a/0xc0
[  271.466179][ T5859]  end_report+0x77/0x160
[  271.470437][ T5859]  kasan_report+0x154/0x180
[  271.474944][ T5859]  ? set_powered_sync+0x3a/0xc0
[  271.479824][ T5859]  set_powered_sync+0x3a/0xc0
[  271.484506][ T5859]  ? __pfx_set_powered_sync+0x10/0x10
[  271.489879][ T5859]  hci_cmd_sync_work+0x22b/0x400
[  271.494814][ T5859]  ? process_scheduled_works+0x976/0x1850
[  271.500537][ T5859]  process_scheduled_works+0xa63/0x1850
[  271.506225][ T5859]  ? __pfx_process_scheduled_works+0x10/0x10
[  271.512245][ T5859]  ? assign_work+0x364/0x3d0
[  271.516836][ T5859]  worker_thread+0x870/0xd30
[  271.521519][ T5859]  ? __kthread_parkme+0x169/0x1d0
[  271.526546][ T5859]  ? __pfx_worker_thread+0x10/0x10
[  271.531657][ T5859]  kthread+0x2f0/0x390
[  271.535720][ T5859]  ? __pfx_worker_thread+0x10/0x10
[  271.540849][ T5859]  ? __pfx_kthread+0x10/0x10
[  271.545430][ T5859]  ret_from_fork+0x4b/0x80
[  271.549862][ T5859]  ? __pfx_kthread+0x10/0x10
[  271.554455][ T5859]  ret_from_fork_asm+0x1a/0x30
[  271.559229][ T5859]  </TASK>
[  271.562525][ T5859] Kernel Offset: disabled
[  271.566847][ T5859] Rebooting in 86400 seconds..