last executing test programs:

17.884091174s ago: executing program 2 (id=8145):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1, 0xb}, 0x1c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_freezer_state(r2, &(0x7f0000000140), 0x2, 0x0)
r4 = openat$cgroup_procs(r2, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f00000000c0), 0x12)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000003200)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f7fc70d0f13905ea23c22624c9f87f9793f50bb546000677b0c5077da80fb982c1e9400e693146cb64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f440af2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719a674e802a0d42bc6099ad238af770b5ed8925161729298700000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea00020000cf4591c926abfb076719237c8d0e60b0eea24490a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb72fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809b5b9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28d5271c896249ed3957f813567f7a95435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac559eaf39027ceb379a902d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1fcff7a1ef3282830689da6b53b263339863297771429d120000003341bf4abacac94500fca0493cf29b33dcc9ffffffffffffffd39f6ce0c6ff01589646efd1cf870cd7bb2366fdf870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969cc1595229df17bcad70fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1293b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd000c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301fb997316dbf17866fb84d4173731efe895ff2e1c55ef08235a0126e01254c44060926e90109b598502d3e959efc71f665c4d75cf2458e3542c9062ece84c99a861887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6d372ee2c9fdc74aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7ad333545794f37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea139376f24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee99de7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8e3070000001e48418046c216c1f895778cb25122a2a998de0842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec84ac3571f02f647b3385b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2eaa6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba2f58ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df986741517abf11389b751f4e109b60000100000000000d6d5210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750890ae71555b3228b1bd627e87306703be8672d70d1ab57075228a9f46ed90868afc4294859323e7a45319f18101288d139bd3da230ed05a8fe64680b0a3f9f2dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30235b9100000000a55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c776f4b4ce07e1c6fa66fcfc7a228805f76785efc0ceb1c8e5729c66418d169fc03aa18854693ad2a182068e0700000005bc7f41019645466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7e478950aa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab848753203b458b97ec1afb079b4b4ba68df304a8bd66fcdf240430a537a395dc73bda1b7bf12cb2d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7db3c4be290159f6bcd75f0d482ac3750e0170da9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fdf9743af932cd6db49a47613808bad959719c0000000000378ac2e24c7e800003c9e8095e02985f28e678f66422636f949e2ab8f162d7e3f855e378f4a1f40bc96fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e73970413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e3030108000000000000c4f93c0984b5c28fd4523497e4d64f95f08493564a1df87111c9bffef97dcecc467ace456597685c5870d25f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5001000000006065d6735eb7a00e127c0000000000000000000000bfb0bba79344643b1d8daa9f38e4b62c1e2af68c6f5054b078acd74b4a9c944e4505da485a3a4154387a0a88370d9ed9467b09c5888a06431df3f68abf0b366c4d5f8bea7b29c257ed756dff7a21c6b661cbdd43de65afd7e661d5c84f915c90e3d6ea012b68b787eb01d8320000000000000060176dacba0ec503a37fae6b472ec369c79ee6a420c0fd8d8d82fe136d5af6c30bfeb0a7275babfdb96a127aa9386e0671c6454245a18c1c8c49552cff5d27b547cdc34c0858c77a47a9ff86ee9fbd9ceda428713b4218821176d8067997527230fa67d26950d3e4f2750fa7c8720000000001000000b08e6d7b6fa257b04d8ce36360f524e3dfd2211641f3d2637d86b80681eca50ce0eecafdd22d41fa515c15591e70ded4b70efac3cb42fb352d82e8f7573e8ed8248da356fa91a252976d3a4d8c1843a8d5bb7f5f1028453a0562a3ea93117076dd4940b7df50d78289fe66197525f6095f8662d232970bef61b03fa83027963a1a2e07cfee30c0d0b4c5877f93b3637ca21eab5afcf5d4638dfe8f9202aaad51c979049dd76d65368cbd4187d9f74257c7c4a23ac4a34eec5aa17e78c5167216f5e72138d20f8325dd5f8f96c32189c904eaef580987f1ce601a7cdc35461db9981ac42f9e24b0699bbe4e3d986e38952b0b7938eefd9e7a292bbb66367ad77045fdc18855c81c031dedd185c723238373eaea36546791d04f1f0da240455a0980b1882f31ed190233d58ecee949e310bf2b1a51b8a33ae65a06d2b6ad386bf8dc49dd328bcd75d1843a13d68560175a18af7efc3c0f20e32f84f6aaaf000000000000000000000013a6c66bce74a8fb9092023df695da2714a7933d699d42de2bc4a85e0a0e22228290a7a7553ab93a16e42453ed86869a02df2f47d4088fac1772d3cd955c81cbf91c2ca7942942f61723b558079b82547844f92df2499c4b2c2ef2539e5daa8d8727baaa6b5755e6f83bbfca005d0000000000000000001a462fe02852f49e1fb5f1fec6893f9ae8af00"/3232], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
write$cgroup_freezer_state(r3, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r3, &(0x7f0000000080)='THAWED\x00', 0x7)
socket$nl_generic(0x10, 0x3, 0x10)
listen(r1, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaabbb4c811ca33722e910000f500180600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=r4, @ANYRES32=0x41424344, @ANYBLOB="60020000907800001e040040"], 0x0)

17.702972041s ago: executing program 2 (id=8148):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000880)=@ipv6_delrule={0x1c, 0x1e, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}}, 0x1c}}, 0x0)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={0xffffffffffffffff, 0x0, 0x4, 0x8, &(0x7f00000006c0)='\x00\x00\x00\x00', &(0x7f0000000700)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
setsockopt$inet6_int(r2, 0x29, 0x8, &(0x7f00000000c0)=0x4d, 0x4)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000001500)=""/19, &(0x7f0000000240)=0x13)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000002c0)={0x30, 0x1411, 0x1, 0x0, 0x1, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x4}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8, 0x4a, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

17.6002345s ago: executing program 2 (id=8150):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4050000d62b00006110600000000000c6000000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x9, 0x4, 0x4}, 0x48)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
pipe(&(0x7f0000000380))
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$unix(0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={0x0, 0x28}}, 0x0)
r1 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r1, &(0x7f00000005c0)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000200)=[{&(0x7f0000001040)="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", 0xa44}], 0x1}, 0x0)

17.387988607s ago: executing program 2 (id=8152):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x6c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_VFINFO_LIST={0x34, 0x16, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x2c, 0xc, 0x0, 0x1, [{0x14}, {0xfffffffffffffe28}]}]}]}, @IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_IFALIASn={0x4}]}, 0x6c}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d080009000300e8fe55a1180015000600142603600e120900210000000401a8001600a40001", 0x37}], 0x1}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e00010069703665727370616e000000100002800400120005000b0000000000080003"], 0x4c}}, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="364000004800913a745c7388641f9c0e0a"], 0xfe33)
r3 = socket$kcm(0x10, 0x3, 0x10)
close(r3)
r4 = socket$kcm(0x10, 0x3, 0x10)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000001dc0)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-clmulni\x00'}, 0x58)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x3, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000200)='syzkaller\x00', 0x8, 0xff9, &(0x7f0000001300)=""/4089}, 0x90)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000400)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x100, 0x100, 0x9, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000002c0), 0x8, r6}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x2, r6}, 0x38)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000b00)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000040)='D', 0xc}, {&(0x7f00000000c0)="d711eccf81", 0x7fffefff}], 0x2}}], 0x1, 0x0)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000100)=""/22, &(0x7f0000000280)=0x16)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b06d25a806c8c6f94f90424fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90524fc600400037a0a000900050282c137153e370e0c1180fc0b10000300", 0x33fe0}], 0x1}, 0x0)

17.187731322s ago: executing program 2 (id=8156):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{}, &(0x7f0000000340), &(0x7f0000000400)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0xf, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

17.004157519s ago: executing program 2 (id=8158):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1, 0xb}, 0x1c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f0000000140), 0x2, 0x0)
r3 = openat$cgroup_procs(r1, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000000c0), 0x12)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000003200)=ANY=[@ANYBLOB="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"/3232], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
write$cgroup_freezer_state(r2, &(0x7f0000000400)='FROZEN\x00', 0x7)

6.941971651s ago: executing program 0 (id=8320):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

6.824109703s ago: executing program 0 (id=8321):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062617461647600000400028008003a00", @ANYRES32=0x0, @ANYBLOB="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"], 0x3c}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000001040)=r2, 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="200000002000ff07090f9becdb4cb96b0a000000ff000001000000007bffd290", 0x20}], 0x1, 0x0, 0x0, 0x81000000}, 0x0)

6.710415595s ago: executing program 0 (id=8322):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000002c0), 0x4)
r1 = socket(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(r1, 0x10d, 0xdd, 0x0, &(0x7f0000000000))

6.651485906s ago: executing program 0 (id=8323):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x0, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r0}, &(0x7f0000000340), &(0x7f0000000400)}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0xf, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

6.538739997s ago: executing program 0 (id=8325):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000800)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x50, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x18, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x1b}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8}]}, 0x50}}, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000500)={0x8, 'vxcan1\x00', {'xfrm0\x00'}, 0x11b})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000016000200071b48013c030000000000009500000000000000bc26000000000000bf67000000000000150200000fff07006702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050800000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r7, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0x0, 0x0, 0x0, 0x2}, 0x50)

6.243709031s ago: executing program 0 (id=8328):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1, 0xb}, 0x1c)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f0000000140), 0x2, 0x0)
r3 = openat$cgroup_procs(r1, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r3, &(0x7f00000000c0), 0x12)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000003200)=ANY=[@ANYBLOB="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"/3232], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
write$cgroup_freezer_state(r2, &(0x7f0000000400)='FROZEN\x00', 0x7)

4.815588238s ago: executing program 3 (id=8345):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x8001000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x290, 0x0, 0x18c, 0x148, 0xfa03, 0x0, 0x1f8, 0x2a8, 0x2a8, 0x1f8, 0x2a8, 0x3, 0x0, {[{{@ip={@dev, @remote, 0x0, 0x0, 'gretap0\x00', 'veth0_to_bond\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{}, {0xffffffffffffffff}}}}, {{@ip={@remote, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'bridge0\x00'}, 0x0, 0x100, 0x128, 0x0, {}, [@common=@unspec=@rateest={{0x68}, {'rose0\x00', 'geneve1\x00'}}, @common=@inet=@tos={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2f0)

4.704061951s ago: executing program 3 (id=8347):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200088477600090b000000000000000003000200000000000800050000000eb5"], 0x20}}, 0x0)

4.696678751s ago: executing program 3 (id=8348):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000001c0)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x97}, @printk={@llu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x73}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffecd}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x900, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.632041039s ago: executing program 3 (id=8349):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000800)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x50, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY_DEFAULT_TYPES={0x18, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x1b}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8}]}, 0x50}}, 0x0)
ioctl$sock_SIOCGIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8982, &(0x7f0000000500)={0x8, 'vxcan1\x00', {'xfrm0\x00'}, 0x11b})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000016000200071b48013c030000000000009500000000000000bc26000000000000bf67000000000000150200000fff07006702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050800000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r7, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, 0x0, 0x0, 0x0, 0x2}, 0x50)

4.427994976s ago: executing program 3 (id=8351):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

4.330887981s ago: executing program 3 (id=8352):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
r0 = socket$inet6(0xa, 0x80000, 0x0)
unshare(0x400)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700)
write$binfmt_script(r1, &(0x7f0000000140)={'#! ', './file0'}, 0xb)
write$cgroup_int(r2, &(0x7f0000000200), 0x48400)
bpf$ITER_CREATE(0x22, &(0x7f00000000c0), 0x8)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x743e45, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0x32, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000280)=@broute={'broute\x00', 0x20, 0x2, 0x238, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200005c0], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="00000000d966000000000000000000000000000000000006000000000000000018e0000000000000feffffff01000000110000000000000081006263736630000002000800000000000073697430000002000000ffff00000000626f6e643000000000000000000000007600000000010000005c121d00000000ffffffffffff0000000000000000000000000000000000000000d0000000d000000000010000766c616e000000ff030000002000000000000000000000000000000000000000080000000000007f00000000000001e9766c616e0000000000000000000000000000000000000000000000000000000008000000000000000000000000000000415544495400"/284]}, 0x194)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'veth0_to_team\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f00000003c0)=ANY=[@ANYRES32=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@can_delroute={0x38, 0x19, 0x1, 0x2, 0x0, {}, [@CGW_MOD_SET={0x15, 0x4, {{{0x3, 0x0, 0x0, 0x1}, 0x3, 0x1, 0x0, 0x0, "4f28cb80454ddf1d"}, 0x2}}, @CGW_FILTER={0xc, 0xb, {{0x3, 0x0, 0x0, 0x1}, {0x0, 0x1}}}]}, 0x38}}, 0x200000c0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d0"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r6}, 0xe)
close(r5)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r8 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r8, 0x65, 0x8, 0xfffffffffffffffe, &(0x7f0000001280)=0x5a)
setsockopt$bt_BT_POWER(r7, 0x112, 0x9, 0x0, 0x36)
socket$nl_route(0x10, 0x3, 0x0)

1.872149673s ago: executing program 4 (id=8357):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x2, 0x4, &(0x7f0000000180)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6000000}, [@call={0x85, 0x0, 0x0, 0xb4}]}, &(0x7f0000000000)='syzkaller\x00'}, 0x90)

1.819356909s ago: executing program 4 (id=8358):
r0 = socket(0x10, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x8, &(0x7f0000000040)=@framed={{}, [@jmp={0x6, 0x0, 0xc, 0x0, 0x0, 0x1, 0x25}, @func={0x85, 0x0, 0x1, 0x0, 0x1}, @exit, @call, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffe}]}, &(0x7f0000000100)='GPL\x00', 0x5}, 0x90)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x6}, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_WOL_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000480)={0x20, r1, 0xe7d02281b1d40445, 0x0, 0x0, {}, [@ETHTOOL_A_WOL_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0xb}]}]}, 0x20}}, 0x0)

1.671703699s ago: executing program 4 (id=8359):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-384-generic\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000740)={0x0, 0x8100000, &(0x7f0000000180)=[{&(0x7f0000000240)="15", 0xfffffdef}], 0x1}, 0xffff889b0080ffff)

1.200035718s ago: executing program 4 (id=8361):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8040}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

1.038444532s ago: executing program 4 (id=8362):
socket(0x2, 0x3, 0x6) (async)
r0 = socket(0x2, 0x3, 0x6)
socket$kcm(0x10, 0x2, 0x0) (async)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = bpf$ITER_CREATE(0x21, &(0x7f0000000280), 0x8)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f0000000440)=[@in={0x2, 0x4e21, @multicast2}, @in6={0xa, 0x4e22, 0x2, @mcast2, 0x9}, @in6={0xa, 0x4e24, 0x3, @private0, 0xffff}, @in6={0xa, 0x4e24, 0x7fffffff, @dev={0xfe, 0x80, '\x00', 0x11}, 0x4}], 0x64)
socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0) (async)
ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001440), &(0x7f0000001480)=0xc) (async)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000001440), &(0x7f0000001480)=0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_procs(r3, &(0x7f0000000240)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000880), 0x12) (async)
write$cgroup_pid(r4, &(0x7f0000000880), 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
unshare(0x600)
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x15, 0x800, 0x3e)
openat$cgroup_procs(r5, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0) (async)
r6 = openat$cgroup_procs(r5, &(0x7f0000000140)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000380), 0x12) (async)
write$cgroup_pid(r6, &(0x7f0000000380), 0x12)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061107000000020009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000061107000000020009500000000000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_inet6_SIOCSIFADDR(r8, 0x8916, &(0x7f0000000040)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x5d})
sendmsg$DEVLINK_CMD_RELOAD(r7, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="840000", @ANYRES16=r1, @ANYRESOCT=r3, @ANYRES32, @ANYBLOB="800000007063490011000200300000300000000008008c00040000000800010070636900180446e444302e300000000000000000b5db7eda6fb0c1efebd82f71371f6daaef431e6754a4e6c42b45bf3e9a48cd79811047c41b863c33a12d8699f14697dcf25df01b2dd4c2d415941798ca1273395278073b916d25ee54a46cdba29c84ee056e326f101f36bb3aac43e283bd020e03a53d53e805cfde55327658f62b52b4542e7041c21ab08f804a3a9df1ac015085f9c0d2b16baab6f577d42e6643"], 0x84}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r9 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r9, &(0x7f0000000040)={0x1f, 0x0, @any, 0x4}, 0xe)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001840)=[{&(0x7f0000000580)="6700000010008188040f56ecdb4cb9cca7480ef434000000e3bd6efb440009000e000a0010000000ba80010000005a8c3774da0a040059a933c1e7a6d3361d83b20000319cdf5656826edaaa11032701c61ec666d482078ccebcb9a4f187f7a4e98f09cdc2649f", 0x67}], 0x1}, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f00000000c0)=0x6, 0x4) (async)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f00000000c0)=0x6, 0x4)

595.932318ms ago: executing program 4 (id=8363):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffd}, [@call={0x85, 0x0, 0x0, 0x20}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0xfffffffffffffdd0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendto$inet6(r2, &(0x7f0000000080)="c7", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
write$binfmt_script(r2, &(0x7f0000000400), 0xb)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendmsg$inet6(r2, &(0x7f0000006680)={&(0x7f0000005200)={0xa, 0x4e23, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x9d7}, 0x1c, &(0x7f0000006600)=[{&(0x7f0000005240)="23635a9c0e98e729f2cddbac39fc7108e5a1c958205a72930d3018acfbcb30949cc62239", 0x24}, {&(0x7f0000005280)="a78e94979fed69470cff57c3faa8fed966bdac92fd7227eaf09d7a4a5ca09d32d4230071465d1b27b6b0b95dfe161e7b5d7b6bab4e4f65ccd270a9af4e176cee9cf9f728a5f3be8280dbbcedfff23df1651357c94621ca7511a8f9151e844a067c7f2cd5565b0d6ed299b00568c0964d772858af5c141b7615d89e3941d1bfcb3ad832e2237dc8f04b95fccd1bb18d0eaf6908736bfe8d8673", 0x99}, {&(0x7f0000005340)="caccb4ed0d60c9c422b8ae020da58cf573543ac830375903eee243bbc4fbb523324211f1ca2d88b5d2792fee0f2ddc9c65fc73b86882d36a4a8bb0771a3728563d09cffe14a5bae65b9e7e9d0919b39420e409713f8e2951a21ee1157df59600079f8a30fca41c6f26e6c969f244f72a30c7f293cff19c9ebbe9ca6550026c0a9797a31d1f963cf41c9243721ae5b2999dc678d5c370e13fa4d0125852cae764d401545408bffe52b1bc1592208be7c86331ae84066969bdb5b4c1b21810b1d72ab9d2dfa281101f301a611bb083207afb9837447c5d62db748e151625cc55123b12fd20757f", 0xe6}, {&(0x7f00000004c0)="07f152ff9565d5eb80fa49518180c7a544c21fa7fb3476b30a191fd7a6b92a1d2c49b8386c436568ee4ef91109fefab317ddc5c8d5d6e203c9925635f237cb39960a6a11d3452e2f35bf3f8821d0a9f6001b26e88341b47cbf2852dd80895b9e8202a7fd5cb79201250284001ab3b0431c3d2e63ad909ffc893de0bd3c1ba56466c3aab2dd569f99e9b64039bc46e571da6806c63d690272cf63fad0aca5335e3440bec911a9e3e1be04fd0c09199e7c35609a8a77a65e33faffe57a996dafd1c509905b0e68e67d6e25e0569bf4ac89d2b70cee34183a5c080bd72d5f08ce1eb90e3033f2bd9aa687b1bc624c641c0cea77026d5c", 0xf5}, {&(0x7f00000054c0)="40f71f99a30bbe6100b0c16a09ae12bece179cf2c15b8146d0f4940d82d4dedbc0ae845fde9efb9bb46cf131e0197b3c0c4822ab0946e63e738c9417e4eab7834b87722d106f0a67957e3f4ea836aea1c7904b8d79a1411a3ef3933f852e74e86138d7aa4d7cedaa2ee6ad21f293cb55139a0009aa1ffbceb170d4ac7f2993399d4e130d92570452b82ace7c1b99cb0c677ccea93990b5cbc7de2954295a8e5b9be02a5403cdd4c3c2a845b3ed586f974348a925bb64c742fa63e93469f1fc7e332e70004ce8a15a61318162e9b2f4cb783dde5556c185af5e78db3e", 0xdc}, {&(0x7f00000055c0)="097f8ea194df540c1f42b00c8700ef01f9188da1e2ed", 0x16}, {&(0x7f0000005600)="894d7292cf1d2b378ad81c61fea9ac5bd8309a478cdcb9f93d09bc4252520ecc078ca534be437643f6271b8bd4041745418618c75094c5a809496357d90e8c0bc99109562d54d2e3bee0b36d37babe01759ce2d221b4e9cc29066ecdcb8e0c138149126033b1a7ee30f1e1edab5bb7bf0fd4f49bdf0f5f708d7da7fd9117e6dfef2511dee8e4269a47af39bcf375844cd01e7b6b442347b2cfd94330a0d5c91f376ac46c43936e8e7d49bc73794be80895ae43fd567eae961a9933db11185ff44faa70a8e59bdd7500ac065fd97d16e053ac3a13ee3bd09e00434ea01aae0352de82ac7dfa21f77128da1953e36bd7aa7bb48b1651a0ba8b8985420a9bd1a70cb5a885f808fb38527a98554726af038535bec3259de93d03de44033a8d4761e5c81c960235dbd5cb023c036f592f17d6a2de6fa9fd5199ac362df35421df6f281887b447fd10d42067c7b97e45c702ddb040b09973b675a28cb5e0ce93203dffb5f15c0b9e0d9129c348a011d98af00dc343b31c0e456f7505cce3a2492ca187b3a4e2776fbdeb1f1e11dd869c8db29b4be057f2f8642033e26a5b4202dab3f8d864365f56fba6923a410753a0aa3d5e9d77b96ca2f234361ec8d73514bb6526fc29eec82bca660fcff1448158fec28edbfdcb633cb0f1f01001b6b07ed44bc8512759ba3c81746eed1350e0f71e00bc7dacfec716c52e5fedf68452e398379e89a508b471dffb556cb4d945d86f956ab5fa5b725178937b9b24be11abeef1fde91ef32d179a6870314e4450232fa2c3164a7e80b52aa64e09e1915a30dedf764f7d1c1243145b193bd8c2d3a92efeb2d8250fb537fe09ecae08a9a66223008c2a22d37fb69fee007ba917de77407b162f5038e8e75806ce337f8af264e756f79a6977725f8589669d2158b8a76072e30dcc6c320b3565f4688268b69428987c2d54378546ca47df1396d792fcc0db2895ba3757143fc7d099a80fd2e1adbebea8b0d7ec1d49e0652700b68290cc7a75faf1c4cdd88a3bf38d76efd6983fddb2b3eddbb447624a399f4abda92503211be6cc939ddd833444473044f1b6c03e38264118425a8553aba8a969fd9dcca1cc4ccca35e321f7616efa08feb5e3864e41426a3400e2eee9428a184978ec1ce45aa2431e168e73868b380ee5efe26818045c2c779a1ac9bce29223474c508895b2adb946eb3fea0e49e7de25da4503ab45a5d1e17b06f518485044fd05566a8354aee487169f4a2cc447fe3a426d9254433c5526ec4bd23090b37efe4227bbef8d5091275c3f931bf949075799717888a6bc2146942e055ccbc2200ad7e970549bcddeeab3bbc6dd495f3646bb23abf911af1c6d565a5698b1839b9e95cd1ba81025bcce6328dbfe6310ba300af32532e1adc68338ac3aa59056bfd8b634bdb29930bdfd41868952da3fa8cc083d9fcf9801c2ce99984166e864f83e49cf31fdbafe0aebb348fbc72747fdf7eb803f29df63a95ce29992f45073421e8e921c63fe2df89dff0001efe95df52036cda891f6d03de6e62dd55257c0461e67dfee3ff2d438ade3ed00b88c5ad75170dfca613003390054daf540c9978c3bbcd39baefaeb5d06f9044ebeda84315fabe476492543d1b5f0bd164d41b89cf07d4c89c3c8eb14508986b0c2cea9c9120c201f10e75f21c568a1f126c9756631fa796c961b07a784b684ccc03d465c863d07f23306b8f5da54a29bce97dacd2dcab2e50eee152daad2d6c749c0ba32b1ed0b3c954eb79cd2b6bbbf45c078ac34a60211661fa860f7469efb813db6d2192b4fcc7087eca90259e6047a9c47b8d89805f0191b4b77440296154af16962264915ab2c78c87cdcc0515f4e4722b02704a3379ed8eba076d59648dbdbcf70aba28c7d37a2cbe94d1413b39be49538878068df570ec00a1bcf297219d55c0f517a6bb360a404586e463927bb4322eaa13e3afc9f3dfa391c325c4c543ac296322f3311ecf1652f6df9e7ed8138e2ddba3bc8d8d0eb6851f84474339185409e7ce2d5648e1fe562be7b5333a354f1e1157284c5c1ce90a60cf542a04b0ea79b40870e24a23bece9228bbbad0520724361eca79b46e1fb401c699edf601686151f8b6d17284b434c09e6b51757fd4fa874d998eab9e5efdef91249d7b88ed7d035b61e9ac81240fef5154bebc7435dc1ba029ba4584e66c76cce10b34dc9d28e63fc33ff11b827a8cdae692ec6de9d07f7e364bdcb423586d0059c4fb26ef152bb2a39e6293caf7ee913104bd9228b9826e0503f066850b92ac39d769ddb9d5130c510387768d18e93a400905a8ecd8a5910bc597e6eaee01ba742005f03312ac6317d64cbf2e7472ba5c5409cd78ce114c43b97100ae9f31e7e0bd7d6df2e030487d45adfa1295f482619d69b61cb5f065cc1055752589346ab8c1bcffe2c5361f54ce605d4f790fae7ea9379d29ae3481412bd2f9d98f3e226da6a779961d1ef5652e0b08ab3a130c98fdc1118a386825c1520d0136fa3c5909777e5f1c661a4a4f8b9c21917a547ab1360a12de509cabf22b4a5cfc9c5a589d21c290dafe40ec1f4ceab1134412c1f69ef4b2887005926d142ed26e5d28ba465a2ff71114ee4f32ffa0c72ef184d9bb4e2103b0b3608cd3b9005d1ad96c5781e91799004a4b366acd0c6f311631300d81812d58465e936c52953c2d0158129b95b91c3e0e3d37ecbd8d236db7ba06cf6904781b3682f79790c3db7a36e2cb1eea11c6c483883a1317339dbe43707323197bc6c17b5837d573b599fab351e719833abf7612cd9620031b96bbab6e98fc3475ef2e8cd819ce1ec23f00e13c347244ede4c68cd028b35ffae84bd06fdca045b935a671c1da82f23cc28ecbbf5b50d216161b7106967b09340c5761e2f18c44accd7d2ebd4297aba8862bf14aa9a4b5e7f48c93580d8e3d4e092b8ec515126e73cab4101c0a66d4ba0965150aabafec9f5d13d968bb63e098e3072ffb940bbbda04f2986288dedd9efec51e83a87637d60e80b40fc275803b256c092bc0163d5e4d761cea75f0b051f2dca8e2133c415d1e563e8521d35d6e18b6badb3fa58802a2ecbd8d7383c872b07bdbb714cbcb8ff48e47e82595f9238ed368c714d0dc7d3a8047f18e3d047eb9a950efaa4b8df7359bd488aa3a5de943b1e4ed92f01f2b27981ca4d85cb7e90585bc65e2b80224a901daf0eff01bddf0b4739b99897c1165b3d8d914e12460a9877db84f991eb3ac16d6b93e2030ec4e57834d21f8ba8833cc0bd6d2a7d17f59958bcb9ab249438f92b44e1211f708f8ff3b9fc952dc5310a3c1159a386036289969b132bbb9e809e7d305813972dd66447921a3a970fd29957cff290e70e1cedd4388050c891bf76a0ce3b2147bff2f79199834df8049b55e1d6001edbfdd37c1c762c9e2d9ce384bb70909c1db616536ee69d8b231f4e68e5cd0f3350230dc75df742199d58014b7db0dc0732390a1a2ffb47363ecce40a7eed3bcdf96563d673fc049fee7767d84cc7d5c5b4974b0cfdb81fd2bccbb4f7bfa68f4fccf9917440af78927a93b6936d5539096eadb57bd3fc3354bbc7a3fdf84d28780b3f75826973eba839b42d5e83b12ed2c15c21eecf8f1db6915e474276f0d8fb2d6c9e702a86a67a43379ff4599a1f7d6c2673b040324c8ce2838711b6bcd1c30d33709d93c6f110d3fc1199d74e9c8fa324982f90845527875ef8e7ba8ad887475346b3104d47275bf87199b9b127b33427c392fc0351549b8579925274f7a5ebc012b20c3c23deac775d549b72aee3e3cc808c687dc743755a3834967c26fdd7be5c67a419918c5518e08c0f71834d4cde6370b717380dd74d972ac1a63ec9e112155bf25a82baa39fa4ff4b7b1483c1abbc2479200d7875c35ec9a6f416e0cad3c5058b2efbd3e88eb128e011c3c526ae850d120499c112a4c2827c449d659089b563374548e00dbb10886c8a96880a442cac0eeab0f9700d5c21cdaca4ff2abcf6b6fdca23c68604a8049af1948ed9c197bccef3b5a86d05b111bea72feafc0c7ecf86ae5dccaf2d13a4c0c5bbd380dc4ec7c75d5f98e1ea574f27689cbed5adbd100b157de702b21056535e7ceb861c48bef7f25cc2cfef25324726eba4cb39c11c4fa5ae85e8d47ea4d7339607266b40166c08d15193dd819975e52624f7565617178ba982d205f8b564ee9fbe1bae22a3f9ce54389c37b2384c02126a4b69cc47b94767f0af86b437f8fcc78679d409a6e575a88abf4ef596c55b99e0819527d89a95ce2b0559480a4a378024a6d13733ec28ba1ef336f796e5ff5523f82475d304642e372923e03033484bcf9e9a93d56e7e8b77acf1b58f7598488fed6e1a9098138a9f60d7e5a8e9a362699665b9e46f0d9cd0924afc67bb2a4161886b35e86c3786304c23a91e66f7b08e88a17852cbba031994432b1be1e93db712f65eb84bb2f5994d1f48eb00464b5e0af79c7c9f18cc1f4559f497473c59aa48248c63459e6caffa5fd38edc66a447cb4eea115e8c2291197fe63561a906934a9708e3dd5d29b54da57758d80274c9598f85e6ab6ca320e1caedb3404d75d711526132e130e5a0211dc17bf973b556921efcb84b1a9c0386291916ace0a2a3469c8615e3194445021ca38119744f7dbd0221805661e933853d8dde76612567e2f338db5d8db50f37d3b2f708793c92025ba52cea3c720584b04eb1e672022cd1b3e6862ff1293f1751e1010a8a2c1a3ba99293c0a58bf062bfa19c9d00942d3d6b6b35135ae1856f4363ec797eef68100d7847ed0608a8d51ea61563046d41083e14bf9814aa00d4a4db9796887147fb3fa26d92fcac75a6a9311687a545661b01ae9a36c2ef5213ed5e9f98ebcb236bdfe15b66fb46d9b5ab619235fc4190444a0e60bfbc58d1ce2d24a70b1d8c977f996ed0313ce60bafa4f49ec164c14a7706af80fc2953a5e302214101cd28fbe36a1159354e03a58f565008a2d5188080532b3c5df9a084d804cde05a42f7c91e96b2e21ec46ae82283a619663fa936d40329390c0ff4bb498df2e2cd061f4116059732a9a1b64136ea1bff092ae377fbce936e74523d118c48e847beadf88c00eb6adc0bd87be87e1cf8b65c947aadbf53722d398ec09149aac9ebc42d253afe74af576dcd79d4bc56ea49dbce92e78c85e07cbc1b3d21ccc55ee96dbec3fbdbac13732e239c46f28a34513fef186ea615d03a811d9c1d4d9c422ac9ea0eebcbc4f61da7c3a3819d104509b9da4d539e91b84d82fd3b930d5ec9d889e67ada41cc9cda2ac2c5ed14e949069038c4af8dde41aa8336c6331ae88ff4e51cc2dc3213833ea9c83898ffe799688d5b6761207fdd66f7a1fdfdf562e52c7f472ce3cf6a7489c8808aba04be4a2f9960e64260177a904f4879b88da9ec7e2bdaf8f2c659e9c495bf30d6863731333032ed30a3874888638f51e76ef8661572be717586f876ee790055c33aa55f952861514f1897015de5402d7df5219e022a9c1227bfd0e3c89f12c255cec789404cf995183e374ffcd512cca1b86f5df2c30860a53331b2dab92e10c1d21b87355b7feba5bfc23243645752a3a8e38b3edb6bf9440838b9a0e01d0dfedcef28ef2b5e074c47370a0978895912d4f0fcce8899326d6106e9a5438ba610a1a3743cdce7278318567c34eec4c39a91f080ef9f1170cfef304be4a73fac7cdc5c0f07aa2a72dddde0adca01991a4c865e773254488ed34101cb34623e7ba3a966f51b28c0e7613dcddb2436115248e72965454d25f865dbdee7b", 0x1000}], 0x7}, 0x20000000)
socket$caif_stream(0x25, 0x1, 0x1)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000880)=@ipv6_newroute={0x44, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP={0x18, 0x16, 0x0, 0x0, @SEG6_IPTUNNEL_SRH={0x14, 0x1, {{0x9, {0x0, 0x0, 0x10}}}}}, @RTA_OIF={0x8}, @RTA_ENCAP_TYPE={0x6, 0x15, 0x7}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
getsockname$packet(r2, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000640)=0x14)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)=@delneigh={0x28, 0x1d, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r5, 0x80, 0x2}, [@NDA_LLADDR={0xa, 0x2, @link_local}]}, 0x28}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0)
write$cgroup_freezer_state(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000d6c300850000008200000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb706000008000000b70300000000e4ff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r7, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x16, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000000000000000000000000000061109700fa000000950000000000000093dcaa7f5e6fc0e77323030058e11d586442d797ae293686f11ed872dbab5b967838ca484ae269254fb8210059e57ba6f40681bd82fb4652a4422eb7050077f0e6c4d3bfd6552d399ec22382f1ace629a97505bc8689c18b5f9ee2966ef3ac6994024adafaef96a643314f4ea9933acee32665ddd78f082c30bf1d9d1158f2c1754eab5192772c97a426a6f8b97431314839268838e396e44f26e93c483d57db9799b330505f2067d2f32d727e6a168c74d00e3637aa38"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9}, 0x90)

484.122348ms ago: executing program 1 (id=8364):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r2 = socket$l2tp(0x2, 0x2, 0x73)
bind$l2tp(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
unshare(0x40080)
bind$l2tp(r2, &(0x7f0000000400)={0x2, 0x0, @dev}, 0x10)
setsockopt$netrom_NETROM_T2(r1, 0x103, 0x2, &(0x7f0000000040), 0x4)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000040)=@raw={'raw\x00', 0x4001, 0x3, 0x2b8, 0x180, 0x0, 0x148, 0x180, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@empty, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x88, 0x0, 0x54}, 0x0, 0x118, 0x180, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'veth0_to_hsr\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}, @common=@inet=@multiport={{0x50}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x318)

379.024067ms ago: executing program 1 (id=8365):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes-aesni)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000400)=[{0x0, 0x0, 0x0}], 0x1, 0x0)
recvmmsg(r1, &(0x7f0000005d80)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000340)=""/4096, 0x34000}], 0x1, 0x0, 0x0, 0xa00}}], 0x1, 0x0, 0x0)

288.002873ms ago: executing program 1 (id=8366):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x36}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_emit_ethernet(0x3b6, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x380, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x26, 0x0, 0x0, [{0x0, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "000000050000000026000400"}, {0x18, 0x18, "fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978"}, {0x0, 0x1d, "06aa85616177c41bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0dea07c9a1f643c822a18b79f7c5eba31fb68b2d734a6671e27182aee96f24a4a5cf390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5ac010000000000000090aa235a670670ffc5dc49dfb58d00000000000000"}, {0x18, 0xb, "17dcea46805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb2e9ac946a3f0e2bc4619f91394c02bcfbbb7d71138537d68e2d2c6393a9f3becd1a9f51a948b5b303f4f003"}, {0x21, 0x7, "b8a3e100908f61640000000200000000000000000000000000008879e66485201a0015ca83747357a02745000400"/55}, {0x0, 0x14, "5e14f0e74d2d42cfb3f27fafb60845f90b6dfc2e37bc87c6905bbc94d33e1ea71a28105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb5fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c"}, {0x0, 0x5, "d5170000dce9ff16e70b8b14c4b7a94fe18e881a02a326a6bce65f81ed00"/39}]}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

273.592356ms ago: executing program 1 (id=8367):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
unshare(0x6020400)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r1}, &(0x7f0000000040)=0x18, &(0x7f0000000140)}, 0x20)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x7, r1}, 0x38)
unshare(0x22020400)
socket$inet6_udplite(0xa, 0x2, 0x88)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl802154(&(0x7f00000008c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000d80)={'wpan1\x00', <r6=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r4, &(0x7f0000000ec0)={0x0, 0x0, &(0x7f0000000e80)={&(0x7f0000000380)=ANY=[@ANYBLOB="ed5fa58c", @ANYRES16=r5, @ANYBLOB="010000000000000000001500000008000300", @ANYRES32=r6, @ANYBLOB="0c002b800800010002000000"], 0x28}}, 0x0)
socket$inet_dccp(0x2, 0x6, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r3, r2, 0x2, 0x6, 0x4000}, 0x10)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/syz1\x00', 0x200002, 0x0)

95.577327ms ago: executing program 1 (id=8368):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000900)={&(0x7f0000000080)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000640)=[{&(0x7f00000000c0)="c2", 0x1}], 0x1, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000084000000050000000000000000000000200000000000000084"], 0x38}, 0x0)

0s ago: executing program 1 (id=8369):
socket$nl_generic(0x10, 0x3, 0x10)
socket(0x0, 0x1, 0x0)
socket(0x28, 0x0, 0x0)
clock_gettime(0x0, 0xfffffffffffffffe)
write(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pipe(&(0x7f00000003c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, r1, 0x0, 0x8000f28, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(0x0, r2)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xfffffffffffffed2, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600053582c137153e37080c188008ac0f000300", 0x33fe0}], 0x1}, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r7 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCGARP(r7, 0x8954, &(0x7f00000000c0)={{0x2, 0x0, @loopback}, {0x0, @local}, 0x0, {0x2, 0x0, @dev}, 'dvmrp0\x00'})
r8 = socket$inet_icmp(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f0000000380)={'wlan1\x00', <r9=>0x0})
getsockopt$nfc_llcp(0xffffffffffffffff, 0x6a, 0x0, 0x0, 0x20000071)
socket$qrtr(0x2a, 0x2, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r11=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="d4000000", @ANYRES16, @ANYBLOB="010025bd7000ffdbdf252100000008000300", @ANYRES32=r11, @ANYBLOB="700084801000010072213a37314985f82566aa242400010034558714857ddf7d3c4dd20d8f31e83750813ddd36af1a3a79a093be591b5fba080002000000000008000200ff7f00000a00010002020202020200001c0006800800050000000000080003000000008008000100feffffff100084800b0001008c040c668f28620006009800010000000400ff000a00f500"], 0xd4}}, 0x0)
sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="1f02ffff0000000000003b000000", @ANYRES32=r9, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8=r5], 0x40}}, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000200)=ANY=[@ANYBLOB="00de220d49567a20eb702fb30c20b949949bc483c68b4a80e614e2cc0f342b05c19b99f787288d90ce22f1e06c55f741b86df99026140f8854215599c84c38a13eb388b8c4bc730856f068e25b554927d41836857c65474a360b3b63cc16ac28a0776c9251", @ANYRES16=r3, @ANYBLOB="01000000000000000000010000002c00048005000300000000000500030002000000050003000700000005000300000000000500030002000000080002000100000008000200020000000400088000000780000005006025b04200000500f50d874200000600cb00000000000600b800000030000c802c000b8008000a00f9ce000008000a0009110000080009006579cd3408000a008967000008000a000f4d0000"], 0x84}}, 0x8001)
r12 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r12, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'ansi_cprng\x00'}, 0x58)
socket$nl_xfrm(0x10, 0x3, 0x6)

kernel console output (not intermixed with test programs):

26094] FAULT_INJECTION: forcing a failure.
[  631.978466][T26094] name failslab, interval 1, probability 0, space 0, times 0
[  632.002604][T26094] CPU: 1 PID: 26094 Comm: syz.2.7025 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  632.012826][T26094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  632.022923][T26094] Call Trace:
[  632.026235][T26094]  <TASK>
[  632.029203][T26094]  dump_stack_lvl+0x241/0x360
[  632.033941][T26094]  ? __pfx_dump_stack_lvl+0x10/0x10
[  632.039185][T26094]  ? __pfx__printk+0x10/0x10
[  632.043791][T26094]  ? ref_tracker_alloc+0x332/0x490
[  632.048929][T26094]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  632.054445][T26094]  should_fail_ex+0x3b0/0x4e0
[  632.059182][T26094]  ? skb_clone+0x20c/0x390
[  632.063642][T26094]  should_failslab+0x9/0x20
[  632.068715][T26094]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  632.074143][T26094]  skb_clone+0x20c/0x390
[  632.078461][T26094]  __netlink_deliver_tap+0x3cc/0x7c0
[  632.083814][T26094]  ? netlink_deliver_tap+0x2e/0x1b0
[  632.089062][T26094]  netlink_deliver_tap+0x19d/0x1b0
[  632.094237][T26094]  netlink_sendskb+0x68/0x140
[  632.098962][T26094]  netlink_unicast+0x39d/0x980
[  632.103768][T26094]  ? __asan_memcpy+0x40/0x70
[  632.108407][T26094]  ? __pfx_netlink_unicast+0x10/0x10
[  632.113747][T26094]  netlink_rcv_skb+0x262/0x430
[  632.118560][T26094]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  632.124075][T26094]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  632.129435][T26094]  ? netlink_deliver_tap+0x2e/0x1b0
[  632.134762][T26094]  netlink_unicast+0x7ea/0x980
[  632.139578][T26094]  ? __pfx_netlink_unicast+0x10/0x10
[  632.144901][T26094]  ? __virt_addr_valid+0x183/0x520
[  632.150056][T26094]  ? __check_object_size+0x49c/0x900
[  632.155390][T26094]  ? bpf_lsm_netlink_send+0x9/0x10
[  632.160554][T26094]  netlink_sendmsg+0x8db/0xcb0
[  632.165381][T26094]  ? __pfx_netlink_sendmsg+0x10/0x10
[  632.170713][T26094]  ? __import_iovec+0x536/0x820
[  632.175686][T26094]  ? aa_sock_msg_perm+0x91/0x160
[  632.180718][T26094]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  632.186135][T26094]  ? security_socket_sendmsg+0x87/0xb0
[  632.191735][T26094]  ? __pfx_netlink_sendmsg+0x10/0x10
[  632.197065][T26094]  __sock_sendmsg+0x221/0x270
[  632.201801][T26094]  ____sys_sendmsg+0x525/0x7d0
[  632.206614][T26094]  ? __pfx_____sys_sendmsg+0x10/0x10
[  632.211962][T26094]  __sys_sendmsg+0x2b0/0x3a0
[  632.216642][T26094]  ? __pfx___sys_sendmsg+0x10/0x10
[  632.221970][T26094]  ? vfs_write+0x7c4/0xc90
[  632.226485][T26094]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  632.232857][T26094]  ? do_syscall_64+0x100/0x230
[  632.237765][T26094]  ? do_syscall_64+0xb6/0x230
[  632.242492][T26094]  do_syscall_64+0xf3/0x230
[  632.247054][T26094]  ? clear_bhb_loop+0x35/0x90
[  632.251772][T26094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  632.257710][T26094] RIP: 0033:0x7f2a81775bd9
[  632.262162][T26094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  632.281895][T26094] RSP: 002b:00007f2a82611048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  632.290362][T26094] RAX: ffffffffffffffda RBX: 00007f2a81903f60 RCX: 00007f2a81775bd9
[  632.298375][T26094] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  632.306383][T26094] RBP: 00007f2a826110a0 R08: 0000000000000000 R09: 0000000000000000
[  632.314397][T26094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  632.322591][T26094] R13: 000000000000000b R14: 00007f2a81903f60 R15: 00007fff674e0698
[  632.330618][T26094]  </TASK>
[  632.455159][T26105] xt_CT: No such helper "snmp"
[  632.554436][T26116] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd
[  632.567133][    C1] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd
[  632.941376][T26137] FAULT_INJECTION: forcing a failure.
[  632.941376][T26137] name failslab, interval 1, probability 0, space 0, times 0
[  632.970371][T26137] CPU: 1 PID: 26137 Comm: syz.4.7038 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  632.980687][T26137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  632.990795][T26137] Call Trace:
[  632.994125][T26137]  <TASK>
[  632.997177][T26137]  dump_stack_lvl+0x241/0x360
[  633.001911][T26137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  633.007161][T26137]  ? __pfx__printk+0x10/0x10
[  633.011996][T26137]  should_fail_ex+0x3b0/0x4e0
[  633.016777][T26137]  ? sctp_add_bind_addr+0x89/0x3a0
[  633.022115][T26137]  should_failslab+0x9/0x20
[  633.026759][T26137]  kmalloc_trace_noprof+0x6c/0x2c0
[  633.032066][T26137]  sctp_add_bind_addr+0x89/0x3a0
[  633.037052][T26137]  sctp_copy_local_addr_list+0x311/0x500
[  633.042719][T26137]  ? sctp_copy_local_addr_list+0xab/0x500
[  633.048471][T26137]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  633.054651][T26137]  ? sctp_v6_is_any+0x60/0x70
[  633.059377][T26137]  sctp_bind_addr_copy+0xad/0x3b0
[  633.064444][T26137]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  633.070815][T26137]  sctp_connect_new_asoc+0x2f3/0x6c0
[  633.076122][T26137]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  633.081941][T26137]  ? sctp_sendmsg+0xbb9/0x3520
[  633.086720][T26137]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  633.092278][T26137]  ? security_sctp_bind_connect+0x90/0xb0
[  633.098045][T26137]  sctp_sendmsg+0x219a/0x3520
[  633.102837][T26137]  ? __pfx_sctp_sendmsg+0x10/0x10
[  633.107876][T26137]  ? __pfx_aa_sk_perm+0x10/0x10
[  633.112756][T26137]  ? inet_sendmsg+0x330/0x390
[  633.117450][T26137]  __sock_sendmsg+0x1a6/0x270
[  633.122154][T26137]  ____sys_sendmsg+0x525/0x7d0
[  633.126938][T26137]  ? __pfx_____sys_sendmsg+0x10/0x10
[  633.132272][T26137]  __sys_sendmmsg+0x3b2/0x740
[  633.136970][T26137]  ? __pfx___sys_sendmmsg+0x10/0x10
[  633.142325][T26137]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  633.148264][T26137]  ? ksys_write+0x23e/0x2c0
[  633.152778][T26137]  ? __pfx_lock_release+0x10/0x10
[  633.157848][T26137]  ? vfs_write+0x7c4/0xc90
[  633.162367][T26137]  ? __mutex_unlock_slowpath+0x21d/0x750
[  633.168099][T26137]  ? __pfx_vfs_write+0x10/0x10
[  633.172896][T26137]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  633.178907][T26137]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  633.185244][T26137]  ? do_syscall_64+0x100/0x230
[  633.190046][T26137]  __x64_sys_sendmmsg+0xa0/0xb0
[  633.195003][T26137]  do_syscall_64+0xf3/0x230
[  633.199546][T26137]  ? clear_bhb_loop+0x35/0x90
[  633.204233][T26137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  633.210152][T26137] RIP: 0033:0x7f8956f75bd9
[  633.214577][T26137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  633.234293][T26137] RSP: 002b:00007f8957da5048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  633.242728][T26137] RAX: ffffffffffffffda RBX: 00007f8957103f60 RCX: 00007f8956f75bd9
[  633.250717][T26137] RDX: 0000000000000004 RSI: 0000000020002d80 RDI: 0000000000000008
[  633.258707][T26137] RBP: 00007f8957da50a0 R08: 0000000000000000 R09: 0000000000000000
[  633.266798][T26137] R10: 0000000020044880 R11: 0000000000000246 R12: 0000000000000002
[  633.274777][T26137] R13: 000000000000000b R14: 00007f8957103f60 R15: 00007fffc2bcb148
[  633.282957][T26137]  </TASK>
[  633.614458][T26147] netlink: 388 bytes leftover after parsing attributes in process `syz.3.7040'.
[  633.746870][T26159] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7047'.
[  633.867231][T26165] bridge3: port 1(bridge_slave_1) entered blocking state
[  633.889016][T26165] bridge3: port 1(bridge_slave_1) entered disabled state
[  633.917453][T26165] bridge_slave_1: entered allmulticast mode
[  633.933522][T26165] bridge_slave_1: entered promiscuous mode
[  634.133768][T26174] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.7052'.
[  634.169939][T26185] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7056'.
[  634.604702][T26207] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7059'.
[  634.797481][T26210] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7064'.
[  634.828530][T26213] bridge_slave_1: left allmulticast mode
[  634.857519][T26213] bridge_slave_1: left promiscuous mode
[  634.863407][T26213] bridge3: port 1(bridge_slave_1) entered disabled state
[  634.911789][T26213] bridge4: port 1(bridge_slave_1) entered blocking state
[  634.936251][T26213] bridge4: port 1(bridge_slave_1) entered disabled state
[  634.960948][T26213] bridge_slave_1: entered allmulticast mode
[  634.991454][T26213] bridge_slave_1: entered promiscuous mode
[  635.196162][T26217] netlink: 348 bytes leftover after parsing attributes in process `syz.0.7065'.
[  635.663716][T26225] xt_CT: No such helper "snmp"
[  636.068455][T26244] netlink: 388 bytes leftover after parsing attributes in process `syz.3.7068'.
[  636.136798][T26250] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7076'.
[  636.190262][T26250] vlan5: entered promiscuous mode
[  636.212866][T26250] vlan0: entered promiscuous mode
[  636.251547][T26250] vlan0: left promiscuous mode
[  636.775937][T26261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7081'.
[  636.978761][T26266] xt_CT: No such helper "snmp"
[  637.798668][T26301] vlan4: entered promiscuous mode
[  638.098514][T26313] xt_CT: No such helper "snmp"
[  638.194696][T26319] netlink: 'syz.1.7099': attribute type 9 has an invalid length.
[  638.299692][T26322] netlink: 'syz.4.7101': attribute type 4 has an invalid length.
[  638.328984][T26322] netlink: 'syz.4.7101': attribute type 4 has an invalid length.
[  638.403200][T26330] netlink: 'syz.1.7103': attribute type 1 has an invalid length.
[  638.449464][T26332] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  638.705119][T26343] netlink: 'syz.2.7108': attribute type 1 has an invalid length.
[  638.733103][T26344] __nla_validate_parse: 4 callbacks suppressed
[  638.733125][T26344] netlink: 348 bytes leftover after parsing attributes in process `syz.4.7105'.
[  638.857227][T26348] xt_CT: No such helper "snmp"
[  638.977456][T26360] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7114'.
[  639.334979][T26377] netlink: 25 bytes leftover after parsing attributes in process `syz.2.7119'.
[  639.413369][T26377] netlink: 25 bytes leftover after parsing attributes in process `syz.2.7119'.
[  639.556230][T26390] IPVS: Unknown mcast interface: netdevsim0
[  639.727181][T26395] syz_tun: entered promiscuous mode
[  639.805414][T26395] netlink: 186 bytes leftover after parsing attributes in process `syz.4.7120'.
[  640.188187][T26402] xt_CT: No such helper "snmp"
[  640.451773][T26415] netlink: 'syz.1.7129': attribute type 3 has an invalid length.
[  640.468638][T26415] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.7129'.
[  640.658128][T26420] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7130'.
[  640.693528][T26424] netlink: 'syz.1.7132': attribute type 1 has an invalid length.
[  640.713447][T26424] netlink: 224 bytes leftover after parsing attributes in process `syz.1.7132'.
[  640.734448][T26424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7132'.
[  641.303616][T26440] xt_CT: No such helper "snmp"
[  641.531362][T26450] netlink: 48 bytes leftover after parsing attributes in process `syz.3.7140'.
[  643.087788][T26507] lo speed is unknown, defaulting to 1000
[  643.106918][T26507] lo speed is unknown, defaulting to 1000
[  643.113486][T26507] lo speed is unknown, defaulting to 1000
[  643.490919][T26520] xt_CT: No such helper "snmp"
[  643.560950][T26507] infiniband syz0: set active
[  643.565819][T17015] lo speed is unknown, defaulting to 1000
[  643.576851][T26507] infiniband syz0: added lo
[  643.673289][T26507] RDS/IB: syz0: added
[  643.696585][T26507] smc: adding ib device syz0 with port count 1
[  643.702866][T26507] smc:    ib device syz0 port 1 has pnetid 
[  643.725881][T17015] lo speed is unknown, defaulting to 1000
[  643.738943][T26507] lo speed is unknown, defaulting to 1000
[  643.818120][T26530] netlink: 'syz.4.7165': attribute type 13 has an invalid length.
[  643.837162][T26530] __nla_validate_parse: 3 callbacks suppressed
[  643.837189][T26530] netlink: 152 bytes leftover after parsing attributes in process `syz.4.7165'.
[  643.890111][T26530] syz_tun: refused to change device tx_queue_len
[  643.908764][T26530] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  643.967079][T26533] xt_l2tp: unknown flags: 42
[  644.192317][T26507] lo speed is unknown, defaulting to 1000
[  644.468453][T26544] netlink: 348 bytes leftover after parsing attributes in process `syz.3.7168'.
[  644.497269][T26549] netlink: 'syz.1.7172': attribute type 10 has an invalid length.
[  644.530388][T26549] netlink: 2 bytes leftover after parsing attributes in process `syz.1.7172'.
[  644.653365][T26507] lo speed is unknown, defaulting to 1000
[  644.999591][T26549] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  645.114909][T26553] xt_CT: No such helper "snmp"
[  645.120729][T26507] lo speed is unknown, defaulting to 1000
[  645.313653][T26565] FAULT_INJECTION: forcing a failure.
[  645.313653][T26565] name failslab, interval 1, probability 0, space 0, times 0
[  645.356532][T26565] CPU: 0 PID: 26565 Comm: syz.4.7178 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  645.366769][T26565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  645.376867][T26565] Call Trace:
[  645.380173][T26565]  <TASK>
[  645.383127][T26565]  dump_stack_lvl+0x241/0x360
[  645.387861][T26565]  ? __pfx_dump_stack_lvl+0x10/0x10
[  645.393115][T26565]  ? __pfx__printk+0x10/0x10
[  645.397775][T26565]  should_fail_ex+0x3b0/0x4e0
[  645.402503][T26565]  ? sctp_add_bind_addr+0x89/0x3a0
[  645.407668][T26565]  should_failslab+0x9/0x20
[  645.412211][T26565]  kmalloc_trace_noprof+0x6c/0x2c0
[  645.417377][T26565]  sctp_add_bind_addr+0x89/0x3a0
[  645.422365][T26565]  sctp_copy_local_addr_list+0x311/0x500
[  645.428047][T26565]  ? sctp_copy_local_addr_list+0xab/0x500
[  645.433906][T26565]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  645.440114][T26565]  ? sctp_v6_is_any+0x60/0x70
[  645.444939][T26565]  sctp_bind_addr_copy+0xad/0x3b0
[  645.450011][T26565]  ? sctp_assoc_set_bind_addr_from_ep+0x75/0x190
[  645.456401][T26565]  sctp_connect_new_asoc+0x2f3/0x6c0
[  645.461727][T26565]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  645.467752][T26565]  ? sctp_sendmsg+0xbb9/0x3520
[  645.472572][T26565]  ? bpf_lsm_sctp_bind_connect+0x9/0x10
[  645.478194][T26565]  ? security_sctp_bind_connect+0x90/0xb0
[  645.483961][T26565]  sctp_sendmsg+0x219a/0x3520
[  645.488706][T26565]  ? __pfx_sctp_sendmsg+0x10/0x10
[  645.493935][T26565]  ? __pfx_aa_sk_perm+0x10/0x10
[  645.498937][T26565]  ? inet_sendmsg+0x330/0x390
[  645.503659][T26565]  __sock_sendmsg+0x1a6/0x270
[  645.508393][T26565]  __sys_sendto+0x3a4/0x4f0
[  645.513090][T26565]  ? __pfx___sys_sendto+0x10/0x10
[  645.518371][T26565]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  645.524395][T26565]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  645.530882][T26565]  __x64_sys_sendto+0xde/0x100
[  645.535687][T26565]  do_syscall_64+0xf3/0x230
[  645.540580][T26565]  ? clear_bhb_loop+0x35/0x90
[  645.545293][T26565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  645.551232][T26565] RIP: 0033:0x7f8956f75bd9
[  645.554482][T26507] lo speed is unknown, defaulting to 1000
[  645.555664][T26565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  645.581125][T26565] RSP: 002b:00007f8957da5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  645.589851][T26565] RAX: ffffffffffffffda RBX: 00007f8957103f60 RCX: 00007f8956f75bd9
[  645.597867][T26565] RDX: 000000000000fee4 RSI: 0000000020847fff RDI: 0000000000000004
[  645.605875][T26565] RBP: 00007f8957da50a0 R08: 000000002005ffe4 R09: 000000000000001c
[  645.613882][T26565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  645.621905][T26565] R13: 000000000000000b R14: 00007f8957103f60 R15: 00007fffc2bcb148
[  645.629939][T26565]  </TASK>
[  645.657939][T26571] netlink: 92 bytes leftover after parsing attributes in process `syz.3.7181'.
[  645.753033][T26576] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7182'.
[  645.792515][T26581] x_tables: duplicate underflow at hook 2
[  646.059720][T26589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7186'.
[  646.134796][T26507] lo speed is unknown, defaulting to 1000
[  646.142189][T26595] workqueue: name exceeds WQ_NAME_LEN. Truncating to: C|+i!‡3§rU&6 bΞOoΈ ' 1Β©
[  646.378696][T26609] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7193'.
[  646.459093][T26603] xt_CT: No such helper "snmp"
[  646.649152][T26623] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7198'.
[  646.673785][T26507] lo speed is unknown, defaulting to 1000
[  646.807043][T26625] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7195'.
[  647.249766][T24519] Bluetooth: hci2: command 0x0406 tx timeout
[  647.285992][T26507] lo speed is unknown, defaulting to 1000
[  647.415249][T24542] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  647.428486][T24542] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  647.448184][T24542] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  647.458365][T24542] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  647.466683][T24542] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  647.475952][T24542] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  647.691598][T26644] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7204'.
[  648.656820][T26655] xt_CT: No such helper "snmp"
[  648.839850][T26635] lo speed is unknown, defaulting to 1000
[  649.581525][T24519] Bluetooth: hci3: command tx timeout
[  649.737981][T26686] xt_CT: No such helper "snmp"
[  649.879896][T26702] netlink: 'syz.3.7223': attribute type 4 has an invalid length.
[  649.909460][T26635] chnl_net:caif_netlink_parms(): no params data found
[  649.972883][T26707] __nla_validate_parse: 1 callbacks suppressed
[  649.972917][T26707] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7223'.
[  650.201050][T26635] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.227202][T26635] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.247050][T26635] bridge_slave_0: entered allmulticast mode
[  650.259585][T26635] bridge_slave_0: entered promiscuous mode
[  650.270434][T26635] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.279820][T26635] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.294687][T26635] bridge_slave_1: entered allmulticast mode
[  650.310428][T26635] bridge_slave_1: entered promiscuous mode
[  650.395072][T26723] xt_CT: No such helper "snmp"
[  650.398530][T26725] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7229'.
[  650.428437][T26635] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  650.447259][T26635] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  650.559429][T26635] team0: Port device team_slave_0 added
[  650.600961][T26635] team0: Port device team_slave_1 added
[  650.714967][T26635] batman_adv: batadv0: Adding interface: batadv_slave_0
[  650.731308][T26635] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  650.782083][T26731] xt_CT: No such helper "snmp"
[  650.787761][T26635] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  650.815311][T26635] batman_adv: batadv0: Adding interface: batadv_slave_1
[  650.836274][T26635] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  650.882657][T26635] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  651.028305][T26635] hsr_slave_0: entered promiscuous mode
[  651.046955][T26635] hsr_slave_1: entered promiscuous mode
[  651.058035][T26635] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  651.076110][T26635] Cannot create hsr debugfs directory
[  651.097387][T26737] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7234'.
[  651.270225][T26743] netlink: 'syz.3.7238': attribute type 5 has an invalid length.
[  651.364966][T26747] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7239'.
[  651.586228][T26756] xt_CT: You must specify a L4 protocol and not use inversions on it
[  651.646694][T24519] Bluetooth: hci3: command tx timeout
[  651.721258][T26762] netlink: 168 bytes leftover after parsing attributes in process `syz.3.7242'.
[  651.743393][T26760] xt_CT: No such helper "snmp"
[  651.906809][T26772] netlink: 'syz.4.7247': attribute type 13 has an invalid length.
[  651.922092][T26772] veth0_macvtap: left promiscuous mode
[  651.928335][T26772] macvtap0: entered allmulticast mode
[  651.955376][T26772] macvtap0: refused to change device tx_queue_len
[  652.196621][T26781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7249'.
[  652.229434][T26635] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  652.250205][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  652.297780][T26635] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  652.340725][T26635] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  652.367962][T16999] IPVS: starting estimator thread 0...
[  652.391194][T26635] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  652.468007][T26796] FAULT_INJECTION: forcing a failure.
[  652.468007][T26796] name failslab, interval 1, probability 0, space 0, times 0
[  652.486587][T26793] IPVS: using max 16 ests per chain, 38400 per kthread
[  652.492624][T26796] CPU: 1 PID: 26796 Comm: syz.2.7255 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  652.503700][T26796] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  652.513796][T26796] Call Trace:
[  652.517124][T26796]  <TASK>
[  652.520085][T26796]  dump_stack_lvl+0x241/0x360
[  652.524841][T26796]  ? __pfx_dump_stack_lvl+0x10/0x10
[  652.530130][T26796]  ? __pfx__printk+0x10/0x10
[  652.534978][T26796]  should_fail_ex+0x3b0/0x4e0
[  652.539719][T26796]  ? kernfs_fop_write_iter+0x15b/0x500
[  652.545407][T26796]  should_failslab+0x9/0x20
[  652.549966][T26796]  __kmalloc_noprof+0xd8/0x400
[  652.554781][T26796]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  652.560732][T26796]  kernfs_fop_write_iter+0x15b/0x500
[  652.566118][T26796]  vfs_write+0xa72/0xc90
[  652.570415][T26796]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  652.576280][T26796]  ? __pfx_vfs_write+0x10/0x10
[  652.581113][T26796]  ksys_write+0x1a0/0x2c0
[  652.585494][T26796]  ? __pfx_ksys_write+0x10/0x10
[  652.590400][T26796]  ? do_syscall_64+0x100/0x230
[  652.595227][T26796]  ? do_syscall_64+0xb6/0x230
[  652.599963][T26796]  do_syscall_64+0xf3/0x230
[  652.604516][T26796]  ? clear_bhb_loop+0x35/0x90
[  652.609235][T26796]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  652.615177][T26796] RIP: 0033:0x7f2a81775bd9
[  652.619624][T26796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  652.623446][T26797] xt_CT: No such helper "snmp"
[  652.639258][T26796] RSP: 002b:00007f2a82611048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  652.639295][T26796] RAX: ffffffffffffffda RBX: 00007f2a81903f60 RCX: 00007f2a81775bd9
[  652.639312][T26796] RDX: 000000000000000a RSI: 0000000020000140 RDI: 0000000000000004
[  652.639327][T26796] RBP: 00007f2a826110a0 R08: 0000000000000000 R09: 0000000000000000
[  652.639342][T26796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  652.639357][T26796] R13: 000000000000000b R14: 00007f2a81903f60 R15: 00007fff674e0698
[  652.639394][T26796]  </TASK>
[  653.023725][T26816] netlink: 'syz.3.7259': attribute type 13 has an invalid length.
[  653.433904][T26816] veth0_macvtap: left promiscuous mode
[  653.455861][T26816] macvtap0: entered allmulticast mode
[  653.511065][T26816] macvtap0: refused to change device tx_queue_len
[  653.551742][T26833] netlink: 'syz.2.7262': attribute type 26 has an invalid length.
[  653.726885][T24519] Bluetooth: hci3: command tx timeout
[  653.751266][T26635] 8021q: adding VLAN 0 to HW filter on device bond0
[  653.841930][T26635] 8021q: adding VLAN 0 to HW filter on device team0
[  653.875669][T17015] bridge0: port 1(bridge_slave_0) entered blocking state
[  653.882987][T17015] bridge0: port 1(bridge_slave_0) entered forwarding state
[  653.930989][T17015] bridge0: port 2(bridge_slave_1) entered blocking state
[  653.938245][T17015] bridge0: port 2(bridge_slave_1) entered forwarding state
[  653.949383][T26851] xt_CT: No such helper "snmp"
[  654.095837][T26859] xt_CT: No such helper "snmp"
[  654.338141][T26635] 8021q: adding VLAN 0 to HW filter on device batadv0
[  654.369491][T26870] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7271'.
[  654.479899][T26635] veth0_vlan: entered promiscuous mode
[  654.547622][T26635] veth1_vlan: entered promiscuous mode
[  654.675119][T26635] veth0_macvtap: entered promiscuous mode
[  654.696339][T26635] veth1_macvtap: entered promiscuous mode
[  654.745075][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.766168][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.825968][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.838064][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.849798][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  654.866780][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  654.899501][T26635] batman_adv: batadv0: Interface activated: batadv_slave_0
[  654.943629][T26886] xt_CT: No such helper "snmp"
[  654.968427][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  655.007663][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.030813][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  655.057355][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.081551][T26635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  655.098132][T26635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  655.122560][T26635] batman_adv: batadv0: Interface activated: batadv_slave_1
[  655.192664][T26635] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  655.222465][T26635] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  655.250313][T26635] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  655.278420][T26635] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  655.660348][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  655.694649][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  655.714533][ T5095] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  655.726008][ T5095] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  655.730088][T26909] FAULT_INJECTION: forcing a failure.
[  655.730088][T26909] name failslab, interval 1, probability 0, space 0, times 0
[  655.750737][ T5095] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  655.778697][ T5095] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  655.787610][ T5095] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  655.795090][ T5095] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  655.796824][T26909] CPU: 1 PID: 26909 Comm: syz.2.7288 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  655.807944][ T5095] Bluetooth: hci3: command tx timeout
[  655.812281][T26909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  655.827856][T26909] Call Trace:
[  655.831168][T26909]  <TASK>
[  655.834214][T26909]  dump_stack_lvl+0x241/0x360
[  655.839032][T26909]  ? __pfx_dump_stack_lvl+0x10/0x10
[  655.844285][T26909]  ? __pfx__printk+0x10/0x10
[  655.849022][T26909]  ? ref_tracker_alloc+0x332/0x490
[  655.854198][T26909]  should_fail_ex+0x3b0/0x4e0
[  655.858940][T26909]  ? skb_clone+0x20c/0x390
[  655.863406][T26909]  should_failslab+0x9/0x20
[  655.867958][T26909]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  655.873386][T26909]  skb_clone+0x20c/0x390
[  655.877682][T26909]  __netlink_deliver_tap+0x3cc/0x7c0
[  655.883121][T26909]  ? netlink_deliver_tap+0x2e/0x1b0
[  655.888369][T26909]  netlink_deliver_tap+0x19d/0x1b0
[  655.893528][T26909]  netlink_dump+0x8d0/0xe50
[  655.898186][T26909]  ? __pfx_netlink_dump+0x10/0x10
[  655.903274][T26909]  ? __inet_diag_dump_start+0x8c9/0xa50
[  655.908883][T26909]  __netlink_dump_start+0x59d/0x780
[  655.914227][T26909]  inet_diag_rcv_msg_compat+0x209/0x4c0
[  655.919831][T26909]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  655.925959][T26909]  ? sock_diag_rcv_msg+0xca/0x5f0
[  655.931032][T26909]  ? __pfx_lock_release+0x10/0x10
[  655.936100][T26909]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  655.942486][T26909]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  655.948625][T26909]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  655.949410][T26913] xt_CT: No such helper "snmp"
[  655.954295][T26909]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  655.954343][T26909]  sock_diag_rcv_msg+0x3dc/0x5f0
[  655.970170][T26909]  netlink_rcv_skb+0x1e3/0x430
[  655.975072][T26909]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  655.980652][T26909]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  655.986164][T26909]  ? netlink_deliver_tap+0x2e/0x1b0
[  655.991395][T26909]  netlink_unicast+0x7ea/0x980
[  655.996193][T26909]  ? __pfx_netlink_unicast+0x10/0x10
[  656.001492][T26909]  ? __virt_addr_valid+0x183/0x520
[  656.006725][T26909]  ? __check_object_size+0x49c/0x900
[  656.012028][T26909]  ? bpf_lsm_netlink_send+0x9/0x10
[  656.017161][T26909]  netlink_sendmsg+0x8db/0xcb0
[  656.021956][T26909]  ? __pfx_netlink_sendmsg+0x10/0x10
[  656.027345][T26909]  ? __import_iovec+0x536/0x820
[  656.032296][T26909]  ? aa_sock_msg_perm+0x91/0x160
[  656.037257][T26909]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  656.042562][T26909]  ? security_socket_sendmsg+0x87/0xb0
[  656.048051][T26909]  ? __pfx_netlink_sendmsg+0x10/0x10
[  656.053376][T26909]  __sock_sendmsg+0x221/0x270
[  656.058089][T26909]  ____sys_sendmsg+0x525/0x7d0
[  656.062883][T26909]  ? __pfx_____sys_sendmsg+0x10/0x10
[  656.068286][T26909]  __sys_sendmsg+0x2b0/0x3a0
[  656.072895][T26909]  ? __pfx___sys_sendmsg+0x10/0x10
[  656.078019][T26909]  ? vfs_write+0x7c4/0xc90
[  656.082497][T26909]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  656.088925][T26909]  ? do_syscall_64+0x100/0x230
[  656.093712][T26909]  ? do_syscall_64+0xb6/0x230
[  656.098423][T26909]  do_syscall_64+0xf3/0x230
[  656.102955][T26909]  ? clear_bhb_loop+0x35/0x90
[  656.107645][T26909]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  656.113644][T26909] RIP: 0033:0x7f2a81775bd9
[  656.118068][T26909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  656.137896][T26909] RSP: 002b:00007f2a82611048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  656.146437][T26909] RAX: ffffffffffffffda RBX: 00007f2a81903f60 RCX: 00007f2a81775bd9
[  656.154432][T26909] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  656.162414][T26909] RBP: 00007f2a826110a0 R08: 0000000000000000 R09: 0000000000000000
[  656.170394][T26909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  656.178374][T26909] R13: 000000000000000b R14: 00007f2a81903f60 R15: 00007fff674e0698
[  656.186385][T26909]  </TASK>
[  656.233015][T26920] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7292'.
[  656.358706][ T1053] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  656.402406][ T1053] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  656.672558][ T1108] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  656.697159][ T1108] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  656.723879][T26941] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.7295'.
[  656.734595][T26941] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  656.864531][ T1108] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  656.886820][ T1108] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  657.018676][ T1108] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  657.042077][ T1108] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  657.074520][T26949] netlink: 'syz.3.7301': attribute type 4 has an invalid length.
[  657.280941][ T1108] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  657.297104][ T1108] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  657.322906][T26904] lo speed is unknown, defaulting to 1000
[  657.345070][T26960] syzkaller1: entered promiscuous mode
[  657.359012][T26960] syzkaller1: entered allmulticast mode
[  657.376584][T26959] xt_CT: No such helper "snmp"
[  657.658448][T26972] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7305'.
[  657.709648][T26968] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7305'.
[  657.786892][ T1108] team0: left allmulticast mode
[  657.816827][ T1108] team_slave_0: left allmulticast mode
[  657.822522][ T1108] team_slave_1: left allmulticast mode
[  657.842301][ T1108] team0: left promiscuous mode
[  657.866981][ T1108] team_slave_0: left promiscuous mode
[  657.883160][ T1108] team_slave_1: left promiscuous mode
[  657.889317][ T5095] Bluetooth: hci5: command tx timeout
[  657.897154][T24542] Bluetooth: hci3: command 0x0405 tx timeout
[  657.927290][ T1108] bridge0: port 3(team0) entered disabled state
[  657.951648][ T1108] bridge_slave_1: left allmulticast mode
[  657.959368][ T1108] bridge_slave_1: left promiscuous mode
[  657.965849][ T1108] bridge0: port 2(bridge_slave_1) entered disabled state
[  657.982380][ T1108] bridge_slave_0: left allmulticast mode
[  657.988873][ T1108] bridge_slave_0: left promiscuous mode
[  657.994600][ T1108] bridge0: port 1(bridge_slave_0) entered disabled state
[  658.677439][ T1108] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  658.698618][ T1108] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  658.712117][ T1108] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  658.729606][ T1108] bond0 (unregistering): Released all slaves
[  658.887419][T26993] Bluetooth: MGMT ver 1.22
[  659.100520][T27000] xt_CT: No such helper "snmp"
[  659.967679][T24519] Bluetooth: hci5: command tx timeout
[  662.046928][T24519] Bluetooth: hci5: command tx timeout
[  662.205825][T27031] xt_CT: No such helper "snmp"
[  662.270440][T26904] chnl_net:caif_netlink_parms(): no params data found
[  662.676669][ T1108] hsr_slave_0: left promiscuous mode
[  662.700988][ T1108] hsr_slave_1: left promiscuous mode
[  662.757756][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  662.765283][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_0
[  662.827540][ T1108] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  662.835205][ T1108] batman_adv: batadv0: Removing interface: batadv_slave_1
[  662.967196][ T1108] veth1_macvtap: left promiscuous mode
[  662.986693][ T1108] veth1_vlan: left promiscuous mode
[  662.992228][ T1108] veth0_vlan: left promiscuous mode
[  663.009486][T27073] xt_CT: No such helper "snmp"
[  663.428756][ T1108] infiniband syz0: set down
[  663.467591][T27094] netlink: 'syz.1.7341': attribute type 3 has an invalid length.
[  663.499440][T27094] netlink: 127504 bytes leftover after parsing attributes in process `syz.1.7341'.
[  664.011486][ T1108] team0 (unregistering): Port device team_slave_1 removed
[  664.074362][ T1108] team0 (unregistering): Port device team_slave_0 removed
[  664.126758][T24519] Bluetooth: hci5: command tx timeout
[  664.664283][ T1106] smc: removing ib device syz0
[  664.796861][T27086] netlink: 'syz.2.7338': attribute type 4 has an invalid length.
[  664.958806][T27086] syz.2.7338 (27086) used greatest stack depth: 17840 bytes left
[  664.960225][T17015] lo speed is unknown, defaulting to 1000
[  664.978498][T27102] netlink: 'syz.3.7344': attribute type 11 has an invalid length.
[  665.359959][T26904] bridge0: port 1(bridge_slave_0) entered blocking state
[  665.392552][T26904] bridge0: port 1(bridge_slave_0) entered disabled state
[  665.433295][T26904] bridge_slave_0: entered allmulticast mode
[  665.495667][T26904] bridge_slave_0: entered promiscuous mode
[  665.523016][T27122] netlink: 25 bytes leftover after parsing attributes in process `syz.3.7349'.
[  665.564506][T26904] bridge0: port 2(bridge_slave_1) entered blocking state
[  665.596746][T26904] bridge0: port 2(bridge_slave_1) entered disabled state
[  665.637016][T26904] bridge_slave_1: entered allmulticast mode
[  665.673158][T26904] bridge_slave_1: entered promiscuous mode
[  666.000939][T26904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  666.021198][T27136] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7356'.
[  666.102680][T26904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  666.765620][T26904] team0: Port device team_slave_0 added
[  666.810375][T26904] team0: Port device team_slave_1 added
[  667.874850][T27176] FAULT_INJECTION: forcing a failure.
[  667.874850][T27176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  667.951281][T27176] CPU: 1 PID: 27176 Comm: syz.3.7371 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  667.961516][T27176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  667.971702][T27176] Call Trace:
[  667.975008][T27176]  <TASK>
[  667.977965][T27176]  dump_stack_lvl+0x241/0x360
[  667.982695][T27176]  ? __pfx_dump_stack_lvl+0x10/0x10
[  667.988028][T27176]  ? __pfx__printk+0x10/0x10
[  667.992664][T27176]  ? __pfx_lock_release+0x10/0x10
[  667.997735][T27176]  should_fail_ex+0x3b0/0x4e0
[  668.002458][T27176]  _copy_from_user+0x2f/0xe0
[  668.007087][T27176]  copy_msghdr_from_user+0xae/0x680
[  668.012355][T27176]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  668.018338][T27176]  __sys_sendmsg+0x23d/0x3a0
[  668.022997][T27176]  ? __pfx___sys_sendmsg+0x10/0x10
[  668.028288][T27176]  ? vfs_write+0x7c4/0xc90
[  668.032827][T27176]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  668.039250][T27176]  ? do_syscall_64+0x100/0x230
[  668.044075][T27176]  ? do_syscall_64+0xb6/0x230
[  668.048829][T27176]  do_syscall_64+0xf3/0x230
[  668.053397][T27176]  ? clear_bhb_loop+0x35/0x90
[  668.058133][T27176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  668.065421][T27176] RIP: 0033:0x7fd733975bd9
[  668.069876][T27176] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  668.089526][T27176] RSP: 002b:00007fd734728048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  668.097997][T27176] RAX: ffffffffffffffda RBX: 00007fd733b03f60 RCX: 00007fd733975bd9
[  668.106001][T27176] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  668.113985][T27176] RBP: 00007fd7347280a0 R08: 0000000000000000 R09: 0000000000000000
[  668.121968][T27176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.129951][T27176] R13: 000000000000000b R14: 00007fd733b03f60 R15: 00007ffd3bd55a98
[  668.137952][T27176]  </TASK>
[  668.233951][T26904] batman_adv: batadv0: Adding interface: batadv_slave_0
[  668.241457][T26904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  668.279087][T26904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  668.342382][T26904] batman_adv: batadv0: Adding interface: batadv_slave_1
[  668.356749][T26904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  668.426220][T26904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  668.603440][T26904] hsr_slave_0: entered promiscuous mode
[  668.612836][T27193] netlink: 'syz.2.7379': attribute type 1 has an invalid length.
[  668.644224][T26904] hsr_slave_1: entered promiscuous mode
[  668.651115][T26904] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  668.666533][T26904] Cannot create hsr debugfs directory
[  669.060884][T27207] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7382'.
[  669.110719][T27207] netlink: 'syz.2.7382': attribute type 4 has an invalid length.
[  669.149403][T27210] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7383'.
[  669.182285][T27207] netlink: 'syz.2.7382': attribute type 4 has an invalid length.
[  669.789043][T27222] x_tables: duplicate underflow at hook 2
[  670.251667][T26904] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  670.366719][T27225] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7389'.
[  670.391200][T26904] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  670.411583][T26904] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  670.412712][T27235] xt_CT: No such helper "snmp"
[  670.512203][T26904] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  670.527346][T27241] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7394'.
[  670.537199][T27237] netlink: 'syz.3.7391': attribute type 10 has an invalid length.
[  670.594329][T27237] team0: Device veth1_vlan failed to register rx_handler
[  670.649658][T27241] netlink: 'syz.2.7394': attribute type 9 has an invalid length.
[  670.669334][T27241] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.7394'.
[  670.966551][T27254] xt_CT: No such helper "snmp"
[  671.031834][T26904] 8021q: adding VLAN 0 to HW filter on device bond0
[  671.093912][T26904] 8021q: adding VLAN 0 to HW filter on device team0
[  671.130871][T17006] bridge0: port 1(bridge_slave_0) entered blocking state
[  671.138308][T17006] bridge0: port 1(bridge_slave_0) entered forwarding state
[  671.173119][T17006] bridge0: port 2(bridge_slave_1) entered blocking state
[  671.180410][T17006] bridge0: port 2(bridge_slave_1) entered forwarding state
[  671.342088][T27259] netlink: 'syz.4.7400': attribute type 2 has an invalid length.
[  671.352363][T27268] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7402'.
[  671.387481][T27270] netlink: 36 bytes leftover after parsing attributes in process `syz.2.7402'.
[  671.511212][T27277] xt_CT: No such helper "snmp"
[  671.811601][T26904] 8021q: adding VLAN 0 to HW filter on device batadv0
[  671.919932][T27302] xt_l2tp: missing protocol rule (udp|l2tpip)
[  671.928753][T27298] xt_CT: No such helper "snmp"
[  672.201481][T26904] veth0_vlan: entered promiscuous mode
[  672.222354][T27313] FAULT_INJECTION: forcing a failure.
[  672.222354][T27313] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  672.254640][T26904] veth1_vlan: entered promiscuous mode
[  672.273605][T27313] CPU: 0 PID: 27313 Comm: syz.3.7414 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  672.283820][T27313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  672.286569][T27314] xt_CT: No such helper "snmp"
[  672.293893][T27313] Call Trace:
[  672.293909][T27313]  <TASK>
[  672.293921][T27313]  dump_stack_lvl+0x241/0x360
[  672.309736][T27313]  ? __pfx_dump_stack_lvl+0x10/0x10
[  672.315010][T27313]  ? __pfx__printk+0x10/0x10
[  672.319709][T27313]  ? snprintf+0xda/0x120
[  672.324025][T27313]  should_fail_ex+0x3b0/0x4e0
[  672.328762][T27313]  _copy_to_user+0x2f/0xb0
[  672.333221][T27313]  simple_read_from_buffer+0xca/0x150
[  672.338730][T27313]  proc_fail_nth_read+0x1e9/0x250
[  672.343799][T27313]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  672.349386][T27313]  ? rw_verify_area+0x514/0x6b0
[  672.354370][T27313]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  672.359958][T27313]  vfs_read+0x204/0xbd0
[  672.364164][T27313]  ? __pfx_lock_release+0x10/0x10
[  672.369247][T27313]  ? __pfx_vfs_read+0x10/0x10
[  672.374017][T27313]  ? __fget_files+0x29/0x470
[  672.378738][T27313]  ? __fget_files+0x3f6/0x470
[  672.383467][T27313]  ksys_read+0x1a0/0x2c0
[  672.387752][T27313]  ? __pfx_ksys_read+0x10/0x10
[  672.392570][T27313]  ? do_syscall_64+0x100/0x230
[  672.397364][T27313]  ? do_syscall_64+0xb6/0x230
[  672.402070][T27313]  do_syscall_64+0xf3/0x230
[  672.406608][T27313]  ? clear_bhb_loop+0x35/0x90
[  672.411305][T27313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  672.417226][T27313] RIP: 0033:0x7fd7339746bc
[  672.421658][T27313] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  672.441466][T27313] RSP: 002b:00007fd734728040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  672.450048][T27313] RAX: ffffffffffffffda RBX: 00007fd733b03f60 RCX: 00007fd7339746bc
[  672.458255][T27313] RDX: 000000000000000f RSI: 00007fd7347280b0 RDI: 0000000000000005
[  672.466248][T27313] RBP: 00007fd7347280a0 R08: 0000000000000000 R09: 0000000000000000
[  672.474236][T27313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  672.482250][T27313] R13: 000000000000000b R14: 00007fd733b03f60 R15: 00007ffd3bd55a98
[  672.490273][T27313]  </TASK>
[  672.520034][T26904] veth0_macvtap: entered promiscuous mode
[  672.561420][T26904] veth1_macvtap: entered promiscuous mode
[  672.613976][T27318] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7413'.
[  672.723461][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  672.786959][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  672.810441][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  672.847486][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  672.876781][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  672.896443][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  672.920749][T26904] batman_adv: batadv0: Interface activated: batadv_slave_0
[  672.950401][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  672.985556][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  672.995748][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  673.015371][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  673.041295][T26904] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  673.054577][T26904] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  673.067708][T26904] batman_adv: batadv0: Interface activated: batadv_slave_1
[  673.090184][T26904] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  673.154906][T26904] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  673.164007][T26904] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  673.173588][T26904] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  673.405207][T27346] xt_CT: No such helper "snmp"
[  673.964791][ T1106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  673.974378][ T1106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  674.073816][T27364] wireguard0: entered allmulticast mode
[  674.162282][T27366] syz_tun: entered promiscuous mode
[  674.237139][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  674.245106][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  674.362424][T27373] macvlan3: entered allmulticast mode
[  674.399457][T27373] geneve1: entered promiscuous mode
[  674.406902][T27373] geneve1: entered allmulticast mode
[  674.433581][T27373] bond0: (slave macvlan3): Enslaving as an active interface with an up link
[  675.307227][T27402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7444'.
[  675.434518][T27406] macvlan2: entered allmulticast mode
[  675.446333][T27406] geneve1: entered promiscuous mode
[  675.452812][T27406] geneve1: entered allmulticast mode
[  675.461138][T27406] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[  675.636591][T27408] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7445'.
[  675.890031][T27419] bridge0: port 3(team0) entered blocking state
[  675.906720][T27419] bridge0: port 3(team0) entered disabled state
[  675.924880][T27419] team0: entered allmulticast mode
[  675.938085][T27419] team_slave_0: entered allmulticast mode
[  675.943944][T27419] team_slave_1: entered allmulticast mode
[  676.003964][T27419] team0: entered promiscuous mode
[  676.016533][T27419] team_slave_0: entered promiscuous mode
[  676.042413][T27419] team_slave_1: entered promiscuous mode
[  676.063475][T27419] bridge0: port 3(team0) entered blocking state
[  676.071017][T27419] bridge0: port 3(team0) entered forwarding state
[  676.146262][T27419] netlink: 40 bytes leftover after parsing attributes in process `syz.0.7450'.
[  676.237284][T27431] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7452'.
[  676.540746][T27441] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7454'.
[  676.582772][T27441] netlink: 'syz.0.7454': attribute type 11 has an invalid length.
[  676.603794][T27441] netlink: 'syz.0.7454': attribute type 13 has an invalid length.
[  676.628318][T27444] FAULT_INJECTION: forcing a failure.
[  676.628318][T27444] name failslab, interval 1, probability 0, space 0, times 0
[  676.665273][T27444] CPU: 0 PID: 27444 Comm: syz.1.7456 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  676.675514][T27444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  676.685609][T27444] Call Trace:
[  676.688918][T27444]  <TASK>
[  676.691889][T27444]  dump_stack_lvl+0x241/0x360
[  676.696632][T27444]  ? __pfx_dump_stack_lvl+0x10/0x10
[  676.701590][T27441] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  676.701857][T27444]  ? __pfx__printk+0x10/0x10
[  676.712232][T27441] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  676.715106][T27444]  ? __pfx___might_resched+0x10/0x10
[  676.725061][T27441] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  676.729228][T27444]  should_fail_ex+0x3b0/0x4e0
[  676.729280][T27444]  ? skb_clone+0x20c/0x390
[  676.729311][T27444]  should_failslab+0x9/0x20
[  676.729344][T27444]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  676.729385][T27444]  skb_clone+0x20c/0x390
[  676.729420][T27444]  nfnetlink_rcv+0x575/0x2a80
[  676.729451][T27444]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  676.729483][T27444]  ? __local_bh_enable_ip+0x168/0x200
[  676.729509][T27444]  ? __local_bh_enable_ip+0x168/0x200
[  676.729534][T27444]  ? __dev_queue_xmit+0x2d2/0x3d30
[  676.729565][T27444]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  676.729596][T27444]  ? __dev_queue_xmit+0x2d2/0x3d30
[  676.729629][T27444]  ? __dev_queue_xmit+0x16c9/0x3d30
[  676.729658][T27444]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  676.729703][T27444]  ? __dev_queue_xmit+0x2d2/0x3d30
[  676.729747][T27444]  ? ref_tracker_free+0x643/0x7e0
[  676.729802][T27444]  ? __asan_memcpy+0x40/0x70
[  676.729827][T27444]  ? __pfx_ref_tracker_free+0x10/0x10
[  676.729878][T27444]  ? netlink_deliver_tap+0x2e/0x1b0
[  676.729910][T27444]  ? skb_clone+0x240/0x390
[  676.738635][T27441] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  676.743242][T27444]  ? __pfx_lock_release+0x10/0x10
[  676.753981][T27441] vxlan0: entered promiscuous mode
[  676.757613][T27444]  ? __netlink_deliver_tap+0x77e/0x7c0
[  676.757666][T27444]  ? netlink_deliver_tap+0x2e/0x1b0
[  676.757701][T27444]  netlink_unicast+0x7ea/0x980
[  676.757741][T27444]  ? __pfx_netlink_unicast+0x10/0x10
[  676.757774][T27444]  ? __virt_addr_valid+0x183/0x520
[  676.757810][T27444]  ? __check_object_size+0x49c/0x900
[  676.757845][T27444]  ? bpf_lsm_netlink_send+0x9/0x10
[  676.757883][T27444]  netlink_sendmsg+0x8db/0xcb0
[  676.757930][T27444]  ? __pfx_netlink_sendmsg+0x10/0x10
[  676.757965][T27444]  ? __import_iovec+0x536/0x820
[  676.757989][T27444]  ? aa_sock_msg_perm+0x91/0x160
[  676.758025][T27444]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  676.758047][T27444]  ? security_socket_sendmsg+0x87/0xb0
[  676.758079][T27444]  ? __pfx_netlink_sendmsg+0x10/0x10
[  676.758109][T27444]  __sock_sendmsg+0x221/0x270
[  676.758149][T27444]  ____sys_sendmsg+0x525/0x7d0
[  676.758191][T27444]  ? __pfx_____sys_sendmsg+0x10/0x10
[  676.758239][T27444]  __sys_sendmsg+0x2b0/0x3a0
[  676.758271][T27444]  ? __pfx___sys_sendmsg+0x10/0x10
[  676.758297][T27444]  ? vfs_write+0x7c4/0xc90
[  676.758371][T27444]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  676.967373][T27444]  ? do_syscall_64+0x100/0x230
[  676.972164][T27444]  ? do_syscall_64+0xb6/0x230
[  676.977034][T27444]  do_syscall_64+0xf3/0x230
[  676.981555][T27444]  ? clear_bhb_loop+0x35/0x90
[  676.986240][T27444]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  676.992163][T27444] RIP: 0033:0x7f60f3b75bd9
[  676.996685][T27444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  677.016505][T27444] RSP: 002b:00007f60f49e1048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  677.024936][T27444] RAX: ffffffffffffffda RBX: 00007f60f3d03f60 RCX: 00007f60f3b75bd9
[  677.033116][T27444] RDX: 0000000000000000 RSI: 00000000200001c0 RDI: 0000000000000003
[  677.041100][T27444] RBP: 00007f60f49e10a0 R08: 0000000000000000 R09: 0000000000000000
[  677.049080][T27444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  677.057068][T27444] R13: 000000000000000b R14: 00007f60f3d03f60 R15: 00007ffc15eac478
[  677.065067][T27444]  </TASK>
[  677.365062][T27452] bridge_slave_0: left allmulticast mode
[  677.371571][T27452] bridge_slave_0: left promiscuous mode
[  677.378791][T27452] bridge0: port 1(bridge_slave_0) entered disabled state
[  677.425130][T27452] bridge_slave_1: left allmulticast mode
[  677.438608][T27452] bridge_slave_1: left promiscuous mode
[  677.449564][T27452] bridge0: port 2(bridge_slave_1) entered disabled state
[  677.464535][T27452] bond0: (slave bond_slave_0): Releasing backup interface
[  677.502672][T27452] bond0: (slave bond_slave_1): Releasing backup interface
[  677.582920][T27452] team0: Port device team_slave_0 removed
[  677.632449][T27452] team0: Port device team_slave_1 removed
[  677.678076][T27452] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  677.685674][T27452] batman_adv: batadv0: Removing interface: batadv_slave_0
[  677.710896][T27452] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  677.728283][T27452] batman_adv: batadv0: Removing interface: batadv_slave_1
[  678.028550][T27474] macvlan1: entered allmulticast mode
[  678.049788][T27474] geneve1: entered promiscuous mode
[  678.060031][T27474] geneve1: entered allmulticast mode
[  678.081164][T27474] bond0: (slave macvlan1): Enslaving as an active interface with an up link
[  678.322915][T27484] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7470'.
[  678.334581][T27484] netlink: 'syz.2.7470': attribute type 11 has an invalid length.
[  678.348332][T27484] netlink: 'syz.2.7470': attribute type 13 has an invalid length.
[  678.385929][T27484] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  678.395233][T27484] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  678.404525][T27484] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  678.413562][T27484] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  678.442637][T27484] vxlan0: entered promiscuous mode
[  678.913879][T27503] FAULT_INJECTION: forcing a failure.
[  678.913879][T27503] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  678.958284][T27503] CPU: 1 PID: 27503 Comm: syz.0.7478 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  678.968519][T27503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  678.978713][T27503] Call Trace:
[  678.982038][T27503]  <TASK>
[  678.985100][T27503]  dump_stack_lvl+0x241/0x360
[  678.989933][T27503]  ? __pfx_dump_stack_lvl+0x10/0x10
[  678.995191][T27503]  ? __pfx__printk+0x10/0x10
[  679.000022][T27503]  ? __pfx_lock_release+0x10/0x10
[  679.005111][T27503]  should_fail_ex+0x3b0/0x4e0
[  679.009942][T27503]  _copy_from_user+0x2f/0xe0
[  679.014759][T27503]  copy_msghdr_from_user+0xae/0x680
[  679.020024][T27503]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  679.025926][T27503]  do_recvmmsg+0x40f/0xae0
[  679.030397][T27503]  ? __pfx_lock_release+0x10/0x10
[  679.035444][T27503]  ? __pfx_do_recvmmsg+0x10/0x10
[  679.040421][T27503]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  679.046341][T27503]  ? ksys_write+0x23e/0x2c0
[  679.050878][T27503]  ? __pfx_lock_release+0x10/0x10
[  679.055937][T27503]  ? vfs_write+0x7c4/0xc90
[  679.060372][T27503]  ? __mutex_unlock_slowpath+0x21d/0x750
[  679.066032][T27503]  ? __fget_files+0x3f6/0x470
[  679.070763][T27503]  __x64_sys_recvmmsg+0x199/0x250
[  679.075820][T27503]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  679.081412][T27503]  ? do_syscall_64+0x100/0x230
[  679.086201][T27503]  ? do_syscall_64+0xb6/0x230
[  679.090900][T27503]  do_syscall_64+0xf3/0x230
[  679.095423][T27503]  ? clear_bhb_loop+0x35/0x90
[  679.100110][T27503]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  679.106020][T27503] RIP: 0033:0x7f54ded75bd9
[  679.110446][T27503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  679.130151][T27503] RSP: 002b:00007f54dfa9e048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  679.138670][T27503] RAX: ffffffffffffffda RBX: 00007f54def03f60 RCX: 00007f54ded75bd9
[  679.146745][T27503] RDX: 0000000000000002 RSI: 00000000200044c0 RDI: 0000000000000004
[  679.154722][T27503] RBP: 00007f54dfa9e0a0 R08: 0000000000000000 R09: 0000000000000000
[  679.162702][T27503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  679.170697][T27503] R13: 000000000000000b R14: 00007f54def03f60 R15: 00007ffe421a2948
[  679.178716][T27503]  </TASK>
[  680.158959][T27552] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7496'.
[  680.480263][T27562] syzkaller0: entered promiscuous mode
[  680.499513][T27562] syzkaller0: entered allmulticast mode
[  680.517994][T27575] FAULT_INJECTION: forcing a failure.
[  680.517994][T27575] name failslab, interval 1, probability 0, space 0, times 0
[  680.569176][T27575] CPU: 1 PID: 27575 Comm: syz.0.7504 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  680.579600][T27575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  680.589701][T27575] Call Trace:
[  680.593024][T27575]  <TASK>
[  680.595989][T27575]  dump_stack_lvl+0x241/0x360
[  680.600724][T27575]  ? __pfx_dump_stack_lvl+0x10/0x10
[  680.606017][T27575]  ? __pfx__printk+0x10/0x10
[  680.610660][T27575]  ? __pfx___might_resched+0x10/0x10
[  680.616007][T27575]  should_fail_ex+0x3b0/0x4e0
[  680.620742][T27575]  should_failslab+0x9/0x20
[  680.625457][T27575]  __kmalloc_node_noprof+0xdf/0x440
[  680.630716][T27575]  ? kvmalloc_node_noprof+0x72/0x190
[  680.636129][T27575]  ? __asan_memset+0x23/0x50
[  680.640857][T27575]  kvmalloc_node_noprof+0x72/0x190
[  680.646013][T27575]  alloc_netdev_mqs+0x87e/0xf80
[  680.650910][T27575]  rtnl_create_link+0x2f9/0xc20
[  680.655898][T27575]  rtnl_newlink+0x1421/0x20a0
[  680.660599][T27575]  ? rtnl_newlink+0xaf1/0x20a0
[  680.665410][T27575]  ? __pfx_rtnl_newlink+0x10/0x10
[  680.670473][T27575]  ? do_raw_spin_unlock+0x13c/0x8b0
[  680.675804][T27575]  ? __mutex_lock+0x9a5/0xd70
[  680.680504][T27575]  ? __mutex_lock+0x527/0xd70
[  680.685265][T27575]  ? __pfx_rtnl_newlink+0x10/0x10
[  680.690309][T27575]  rtnetlink_rcv_msg+0x89b/0x1180
[  680.695358][T27575]  ? rtnetlink_rcv_msg+0x208/0x1180
[  680.700583][T27575]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  680.706070][T27575]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  680.712096][T27575]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  680.718451][T27575]  ? __local_bh_enable_ip+0x168/0x200
[  680.723833][T27575]  ? lockdep_hardirqs_on+0x99/0x150
[  680.729055][T27575]  ? __local_bh_enable_ip+0x168/0x200
[  680.734436][T27575]  ? dev_hard_start_xmit+0x773/0x7e0
[  680.739731][T27575]  ? __dev_queue_xmit+0x2d2/0x3d30
[  680.744858][T27575]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  680.750592][T27575]  ? __dev_queue_xmit+0x2d2/0x3d30
[  680.755717][T27575]  ? __dev_queue_xmit+0x16c9/0x3d30
[  680.761049][T27575]  ? __dev_queue_xmit+0x2d2/0x3d30
[  680.766193][T27575]  ? ref_tracker_free+0x643/0x7e0
[  680.771261][T27575]  netlink_rcv_skb+0x1e3/0x430
[  680.776042][T27575]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  680.781537][T27575]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  680.786858][T27575]  ? netlink_deliver_tap+0x2e/0x1b0
[  680.792071][T27575]  netlink_unicast+0x7ea/0x980
[  680.796859][T27575]  ? __pfx_netlink_unicast+0x10/0x10
[  680.802158][T27575]  ? __virt_addr_valid+0x183/0x520
[  680.807310][T27575]  ? __check_object_size+0x49c/0x900
[  680.812650][T27575]  ? bpf_lsm_netlink_send+0x9/0x10
[  680.817913][T27575]  netlink_sendmsg+0x8db/0xcb0
[  680.822716][T27575]  ? __pfx_netlink_sendmsg+0x10/0x10
[  680.828039][T27575]  ? __import_iovec+0x536/0x820
[  680.832905][T27575]  ? aa_sock_msg_perm+0x91/0x160
[  680.837964][T27575]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  680.843260][T27575]  ? security_socket_sendmsg+0x87/0xb0
[  680.848742][T27575]  ? __pfx_netlink_sendmsg+0x10/0x10
[  680.854163][T27575]  __sock_sendmsg+0x221/0x270
[  680.859005][T27575]  ____sys_sendmsg+0x525/0x7d0
[  680.863828][T27575]  ? __pfx_____sys_sendmsg+0x10/0x10
[  680.869165][T27575]  __sys_sendmsg+0x2b0/0x3a0
[  680.873792][T27575]  ? __pfx___sys_sendmsg+0x10/0x10
[  680.878923][T27575]  ? vfs_write+0x7c4/0xc90
[  680.883402][T27575]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  680.889751][T27575]  ? do_syscall_64+0x100/0x230
[  680.894544][T27575]  ? do_syscall_64+0xb6/0x230
[  680.899273][T27575]  do_syscall_64+0xf3/0x230
[  680.903803][T27575]  ? clear_bhb_loop+0x35/0x90
[  680.908492][T27575]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  680.914404][T27575] RIP: 0033:0x7f54ded75bd9
[  680.918842][T27575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  680.938554][T27575] RSP: 002b:00007f54de7ff048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  680.947074][T27575] RAX: ffffffffffffffda RBX: 00007f54def04110 RCX: 00007f54ded75bd9
[  680.955055][T27575] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000005
[  680.963122][T27575] RBP: 00007f54de7ff0a0 R08: 0000000000000000 R09: 0000000000000000
[  680.971108][T27575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  680.979189][T27575] R13: 000000000000006e R14: 00007f54def04110 R15: 00007ffe421a2948
[  680.987272][T27575]  </TASK>
[  681.024497][T27582] xt_CT: You must specify a L4 protocol and not use inversions on it
[  681.140979][T27587] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7512'.
[  681.165829][T27587] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7512'.
[  682.034946][T27607] dccp_invalid_packet: P.Data Offset(1) too small
[  682.075775][T27607] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7518'.
[  684.098254][T27613] veth0_vlan: entered allmulticast mode
[  684.292160][T27610] veth0_vlan: left promiscuous mode
[  684.310666][T27610] veth0_vlan: entered promiscuous mode
[  684.804986][T20253] syz_tun: left allmulticast mode
[  684.924448][T24542] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  684.937008][T24542] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  684.945942][T24542] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  684.955541][T24542] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  684.979268][T24542] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  684.988227][T24542] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  686.130173][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  686.661353][  T954] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  686.685016][  T954] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  686.718558][T27667] netlink: 'syz.3.7539': attribute type 1 has an invalid length.
[  686.817029][T27669] bond2: (slave gre1): The slave device specified does not support setting the MAC address
[  686.827470][T27669] bond2: (slave gre1): Setting fail_over_mac to active for active-backup mode
[  686.842534][T27669] bond2: (slave gre1): making interface the new active one
[  686.851532][T27669] bond2: (slave gre1): Enslaving as an active interface with an up link
[  686.997498][  T954] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  687.027121][  T954] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  687.087059][T24519] Bluetooth: hci0: command tx timeout
[  687.221582][  T954] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  687.264197][  T954] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  687.448165][T27702] xt_CT: No such helper "snmp"
[  687.797833][  T954] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  687.816996][  T954] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  687.890033][T27704] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7550'.
[  688.095404][T27713] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.7553'.
[  688.308197][T27722] netlink: 'syz.3.7555': attribute type 21 has an invalid length.
[  688.318234][T27722] netlink: 100 bytes leftover after parsing attributes in process `syz.3.7555'.
[  688.474862][T27638] chnl_net:caif_netlink_parms(): no params data found
[  688.519835][T27737] FAULT_INJECTION: forcing a failure.
[  688.519835][T27737] name failslab, interval 1, probability 0, space 0, times 0
[  688.573290][T27737] CPU: 0 PID: 27737 Comm: syz.0.7560 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  688.579127][  T954] geneve1: left allmulticast mode
[  688.583496][T27737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  688.583515][T27737] Call Trace:
[  688.583526][T27737]  <TASK>
[  688.583538][T27737]  dump_stack_lvl+0x241/0x360
[  688.609668][T27737]  ? __pfx_dump_stack_lvl+0x10/0x10
[  688.614513][  T954] geneve1: left promiscuous mode
[  688.614899][T27737]  ? __pfx__printk+0x10/0x10
[  688.620252][  T954] bridge0: port 2(geneve1) entered disabled state
[  688.624524][T27737]  should_fail_ex+0x3b0/0x4e0
[  688.624574][T27737]  ? kernfs_fop_write_iter+0x15b/0x500
[  688.641245][T27737]  should_failslab+0x9/0x20
[  688.645804][T27737]  __kmalloc_noprof+0xd8/0x400
[  688.650633][T27737]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  688.656589][T27737]  kernfs_fop_write_iter+0x15b/0x500
[  688.661928][T27737]  vfs_write+0xa72/0xc90
[  688.666236][T27737]  ? __pfx_kernfs_fop_write_iter+0x10/0x10
[  688.672093][T27737]  ? __pfx_vfs_write+0x10/0x10
[  688.676941][T27737]  ksys_write+0x1a0/0x2c0
[  688.681336][T27737]  ? __pfx_ksys_write+0x10/0x10
[  688.686540][T27737]  ? do_syscall_64+0x100/0x230
[  688.691367][T27737]  ? do_syscall_64+0xb6/0x230
[  688.696080][T27737]  do_syscall_64+0xf3/0x230
[  688.700619][T27737]  ? clear_bhb_loop+0x35/0x90
[  688.705407][T27737]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  688.711332][T27737] RIP: 0033:0x7f54ded75bd9
[  688.715763][T27737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  688.735482][T27737] RSP: 002b:00007f54dfa9e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  688.743925][T27737] RAX: ffffffffffffffda RBX: 00007f54def03f60 RCX: 00007f54ded75bd9
[  688.751908][T27737] RDX: 000000000000000a RSI: 0000000020000140 RDI: 0000000000000004
[  688.759897][T27737] RBP: 00007f54dfa9e0a0 R08: 0000000000000000 R09: 0000000000000000
[  688.767899][T27737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  688.775879][T27737] R13: 000000000000000b R14: 00007f54def03f60 R15: 00007ffe421a2948
[  688.783976][T27737]  </TASK>
[  688.792134][  T954] veth0: left allmulticast mode
[  688.810221][  T954] veth0: left promiscuous mode
[  688.815482][  T954] bridge0: port 1(veth0) entered disabled state
[  688.854230][  T954] bridge_slave_1: left allmulticast mode
[  688.880884][  T954] bridge_slave_1: left promiscuous mode
[  688.934257][  T954] bridge4: port 1(bridge_slave_1) entered disabled state
[  689.102534][T27758] xt_CT: You must specify a L4 protocol and not use inversions on it
[  689.121096][T27753] xt_CT: No such helper "snmp"
[  689.175231][T24519] Bluetooth: hci0: command tx timeout
[  690.490067][  T954] bond0 (unregistering): Released all slaves
[  690.507682][  T954] bond1 (unregistering): Released all slaves
[  690.551118][T27772] netlink: 'syz.4.7568': attribute type 2 has an invalid length.
[  690.881735][T27638] bridge0: port 1(bridge_slave_0) entered blocking state
[  690.900613][T27638] bridge0: port 1(bridge_slave_0) entered disabled state
[  690.932980][T27638] bridge_slave_0: entered allmulticast mode
[  690.943798][T27638] bridge_slave_0: entered promiscuous mode
[  690.971780][T27638] bridge0: port 2(bridge_slave_1) entered blocking state
[  690.999000][T27638] bridge0: port 2(bridge_slave_1) entered disabled state
[  691.011145][T27638] bridge_slave_1: entered allmulticast mode
[  691.019809][T27638] bridge_slave_1: entered promiscuous mode
[  691.152707][T27801] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.7575'.
[  691.256655][T24519] Bluetooth: hci0: command tx timeout
[  691.582420][T27638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  691.633231][T27638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  691.840377][T27638] team0: Port device team_slave_0 added
[  691.880850][T27638] team0: Port device team_slave_1 added
[  692.149582][T27823] sctp: [Deprecated]: syz.3.7583 (pid 27823) Use of int in maxseg socket option.
[  692.149582][T27823] Use struct sctp_assoc_value instead
[  692.517446][T27638] batman_adv: batadv0: Adding interface: batadv_slave_0
[  692.524562][T27638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  692.563571][T27638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  692.654188][T27638] batman_adv: batadv0: Adding interface: batadv_slave_1
[  692.687246][T27638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  692.737472][T27638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  692.751612][T27839] netlink: 'syz.4.7589': attribute type 1 has an invalid length.
[  693.154555][T27638] hsr_slave_0: entered promiscuous mode
[  693.192728][T27638] hsr_slave_1: entered promiscuous mode
[  693.210655][T27638] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  693.231023][T27638] Cannot create hsr debugfs directory
[  693.252449][T27848] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7592'.
[  693.326486][T24519] Bluetooth: hci0: command tx timeout
[  693.475068][  T954] hsr_slave_0: left promiscuous mode
[  693.495420][  T954] hsr_slave_1: left promiscuous mode
[  693.544399][  T954] veth1_macvtap: left promiscuous mode
[  693.558258][  T954] veth1_vlan: left promiscuous mode
[  693.577913][  T954] veth0_vlan: left promiscuous mode
[  696.159515][T27912] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7613'.
[  696.885823][T27927] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7620'.
[  696.900887][T27928] Cannot find del_set index 0 as target
[  697.016877][T27928] netlink: 36 bytes leftover after parsing attributes in process `syz.0.7621'.
[  697.282640][T27638] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  697.335815][T27638] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  697.380130][T27638] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  697.431133][T27638] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  697.718923][T27957] netlink: 'syz.4.7633': attribute type 1 has an invalid length.
[  697.751286][T27957] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.7633'.
[  697.787492][T27962] netlink: 'syz.3.7636': attribute type 1 has an invalid length.
[  697.860346][T27638] 8021q: adding VLAN 0 to HW filter on device bond0
[  697.932149][T27638] 8021q: adding VLAN 0 to HW filter on device team0
[  697.966353][T17008] bridge0: port 1(bridge_slave_0) entered blocking state
[  697.973710][T17008] bridge0: port 1(bridge_slave_0) entered forwarding state
[  698.027762][T17008] bridge0: port 2(bridge_slave_1) entered blocking state
[  698.034988][T17008] bridge0: port 2(bridge_slave_1) entered forwarding state
[  698.073290][T27971] netlink: 104 bytes leftover after parsing attributes in process `syz.3.7640'.
[  698.457715][T27991] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7646'.
[  698.895638][T27638] 8021q: adding VLAN 0 to HW filter on device batadv0
[  699.070590][T27638] veth0_vlan: entered promiscuous mode
[  699.111074][T27638] veth1_vlan: entered promiscuous mode
[  699.172289][T28016] netlink: 68 bytes leftover after parsing attributes in process `syz.0.7653'.
[  699.219630][T27638] veth0_macvtap: entered promiscuous mode
[  699.253515][T27638] veth1_macvtap: entered promiscuous mode
[  699.284111][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  699.299238][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.314390][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  699.336649][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.349306][T28021] IPv6: addrconf: prefix option has invalid lifetime
[  699.356084][T28021] IPv6: addrconf: prefix option has invalid lifetime
[  699.365246][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  699.376454][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.391420][T27638] batman_adv: batadv0: Interface activated: batadv_slave_0
[  699.459857][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  699.486130][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.508686][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  699.527758][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.557039][T27638] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  699.596547][T27638] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  699.635846][T27638] batman_adv: batadv0: Interface activated: batadv_slave_1
[  699.722480][T27638] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  699.777082][T27638] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  699.806907][T27638] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  699.826248][T27638] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  699.858340][T28041] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7661'.
[  699.893381][T28041] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7661'.
[  699.919321][T28041] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7661'.
[  700.325829][ T1108] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.356572][ T1108] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  700.443022][ T1108] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  700.464188][ T1108] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  701.160055][T28072] FAULT_INJECTION: forcing a failure.
[  701.160055][T28072] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  701.194339][T28072] CPU: 0 PID: 28072 Comm: syz.4.7669 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  701.204576][T28072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  701.214763][T28072] Call Trace:
[  701.218072][T28072]  <TASK>
[  701.221028][T28072]  dump_stack_lvl+0x241/0x360
[  701.225755][T28072]  ? __pfx_dump_stack_lvl+0x10/0x10
[  701.230995][T28072]  ? __pfx__printk+0x10/0x10
[  701.235623][T28072]  ? __pfx_lock_release+0x10/0x10
[  701.240691][T28072]  should_fail_ex+0x3b0/0x4e0
[  701.245425][T28072]  _copy_from_iter+0x1f6/0x1960
[  701.250316][T28072]  ? __virt_addr_valid+0x183/0x520
[  701.255469][T28072]  ? __pfx_lock_release+0x10/0x10
[  701.260516][T28072]  ? __alloc_skb+0x28f/0x440
[  701.265119][T28072]  ? __pfx__copy_from_iter+0x10/0x10
[  701.270427][T28072]  ? __virt_addr_valid+0x183/0x520
[  701.275561][T28072]  ? __virt_addr_valid+0x183/0x520
[  701.280770][T28072]  ? __virt_addr_valid+0x44e/0x520
[  701.286076][T28072]  ? __check_object_size+0x49c/0x900
[  701.291383][T28072]  netlink_sendmsg+0x743/0xcb0
[  701.296202][T28072]  ? __pfx_netlink_sendmsg+0x10/0x10
[  701.301517][T28072]  ? __import_iovec+0x536/0x820
[  701.306398][T28072]  ? aa_sock_msg_perm+0x91/0x160
[  701.311359][T28072]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  701.316650][T28072]  ? security_socket_sendmsg+0x87/0xb0
[  701.322123][T28072]  ? __pfx_netlink_sendmsg+0x10/0x10
[  701.327443][T28072]  __sock_sendmsg+0x221/0x270
[  701.332252][T28072]  ____sys_sendmsg+0x525/0x7d0
[  701.337049][T28072]  ? __pfx_____sys_sendmsg+0x10/0x10
[  701.342375][T28072]  __sys_sendmsg+0x2b0/0x3a0
[  701.346993][T28072]  ? __pfx___sys_sendmsg+0x10/0x10
[  701.352116][T28072]  ? vfs_write+0x7c4/0xc90
[  701.356583][T28072]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  701.362918][T28072]  ? do_syscall_64+0x100/0x230
[  701.367705][T28072]  ? do_syscall_64+0xb6/0x230
[  701.372401][T28072]  do_syscall_64+0xf3/0x230
[  701.376923][T28072]  ? clear_bhb_loop+0x35/0x90
[  701.381612][T28072]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  701.387522][T28072] RIP: 0033:0x7f8956f75bd9
[  701.391944][T28072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  701.411572][T28072] RSP: 002b:00007f8957da5048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  701.420007][T28072] RAX: ffffffffffffffda RBX: 00007f8957103f60 RCX: 00007f8956f75bd9
[  701.427990][T28072] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[  701.435964][T28072] RBP: 00007f8957da50a0 R08: 0000000000000000 R09: 0000000000000000
[  701.443938][T28072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  701.451913][T28072] R13: 000000000000000b R14: 00007f8957103f60 R15: 00007fffc2bcb148
[  701.459914][T28072]  </TASK>
[  701.552290][T28074] xt_CT: You must specify a L4 protocol and not use inversions on it
[  702.272433][T28092] netlink: 'syz.2.7676': attribute type 1 has an invalid length.
[  702.312149][T28092] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7676'.
[  702.350725][T28092] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7676'.
[  702.662403][T28104] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7680'.
[  702.909043][T28111] xt_CT: You must specify a L4 protocol and not use inversions on it
[  703.051116][T28113] netlink: 209844 bytes leftover after parsing attributes in process `syz.2.7683'.
[  703.124408][T28107] netlink: 'syz.4.7680': attribute type 1 has an invalid length.
[  703.186987][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  704.247365][T28141] xt_CT: You must specify a L4 protocol and not use inversions on it
[  704.458824][T28154] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7698'.
[  704.700033][T28163] IPv6: sit1: Disabled Multicast RS
[  705.060025][T28179] netlink: 3076 bytes leftover after parsing attributes in process `syz.3.7707'.
[  705.080665][T28179] netlink: 'syz.3.7707': attribute type 1 has an invalid length.
[  705.117076][T28179] netlink: 193500 bytes leftover after parsing attributes in process `syz.3.7707'.
[  705.171642][T28180] xt_CT: No such helper "snmp"
[  705.443068][T28204] netlink: 72 bytes leftover after parsing attributes in process `syz.3.7715'.
[  705.761884][T28209] netlink: 'syz.3.7717': attribute type 4 has an invalid length.
[  706.038210][T28227] xt_CT: No such helper "snmp"
[  706.537863][T28251] netlink: 203452 bytes leftover after parsing attributes in process `syz.3.7731'.
[  706.580210][T28251] netlink: 'syz.3.7731': attribute type 2 has an invalid length.
[  706.742362][T28259] netlink: 24 bytes leftover after parsing attributes in process `syz.2.7733'.
[  706.816963][T28259] nbd: must specify at least one socket
[  707.003009][T28268] xt_CT: No such helper "snmp"
[  707.137163][T28277] netlink: 24 bytes leftover after parsing attributes in process `syz.0.7739'.
[  707.838666][T24542] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  707.865303][T24542] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  707.878016][T24542] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  707.909965][T24542] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  707.926183][T24542] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  707.949985][T24542] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  708.055861][T28299] netlink: 'syz.3.7746': attribute type 10 has an invalid length.
[  708.148481][T28299] batman_adv: batadv0: Adding interface: team0
[  708.154721][T28299] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  708.220619][T28299] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  708.243509][T28302] netlink: 'syz.3.7746': attribute type 11 has an invalid length.
[  708.415965][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.432868][T28310] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7749'.
[  708.464936][T28310] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7749'.
[  708.476181][T28316] xt_hashlimit: overflow, try lower: 1125899906842624/8
[  708.570424][T28313] xt_CT: No such helper "snmp"
[  708.722937][T28326] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7754'.
[  708.750566][T28328] FAULT_INJECTION: forcing a failure.
[  708.750566][T28328] name failslab, interval 1, probability 0, space 0, times 0
[  708.766123][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  708.798291][T28328] CPU: 1 PID: 28328 Comm: syz.3.7755 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  708.808520][T28328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  708.818617][T28328] Call Trace:
[  708.821925][T28328]  <TASK>
[  708.824884][T28328]  dump_stack_lvl+0x241/0x360
[  708.829615][T28328]  ? __pfx_dump_stack_lvl+0x10/0x10
[  708.834862][T28328]  ? __pfx__printk+0x10/0x10
[  708.839505][T28328]  ? ref_tracker_alloc+0x332/0x490
[  708.844670][T28328]  should_fail_ex+0x3b0/0x4e0
[  708.849391][T28328]  ? skb_clone+0x20c/0x390
[  708.853829][T28328]  should_failslab+0x9/0x20
[  708.858350][T28328]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  708.863745][T28328]  skb_clone+0x20c/0x390
[  708.868027][T28328]  __netlink_deliver_tap+0x3cc/0x7c0
[  708.873444][T28328]  ? netlink_deliver_tap+0x2e/0x1b0
[  708.878680][T28328]  netlink_deliver_tap+0x19d/0x1b0
[  708.883820][T28328]  netlink_unicast+0x7b8/0x980
[  708.888621][T28328]  ? __pfx_netlink_unicast+0x10/0x10
[  708.893924][T28328]  ? __virt_addr_valid+0x183/0x520
[  708.899333][T28328]  ? __check_object_size+0x49c/0x900
[  708.904638][T28328]  ? bpf_lsm_netlink_send+0x9/0x10
[  708.909823][T28328]  netlink_sendmsg+0x8db/0xcb0
[  708.914701][T28328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  708.920024][T28328]  ? __import_iovec+0x536/0x820
[  708.924882][T28328]  ? aa_sock_msg_perm+0x91/0x160
[  708.929838][T28328]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  708.935129][T28328]  ? security_socket_sendmsg+0x87/0xb0
[  708.940603][T28328]  ? __pfx_netlink_sendmsg+0x10/0x10
[  708.945908][T28328]  __sock_sendmsg+0x221/0x270
[  708.950612][T28328]  ____sys_sendmsg+0x525/0x7d0
[  708.955402][T28328]  ? __pfx_____sys_sendmsg+0x10/0x10
[  708.960720][T28328]  __sys_sendmsg+0x2b0/0x3a0
[  708.965326][T28328]  ? __pfx___sys_sendmsg+0x10/0x10
[  708.970468][T28328]  ? vfs_write+0x7c4/0xc90
[  708.974935][T28328]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  708.981279][T28328]  ? do_syscall_64+0x100/0x230
[  708.986078][T28328]  ? do_syscall_64+0xb6/0x230
[  708.990778][T28328]  do_syscall_64+0xf3/0x230
[  708.995301][T28328]  ? clear_bhb_loop+0x35/0x90
[  708.999996][T28328]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  709.005908][T28328] RIP: 0033:0x7fd733975bd9
[  709.010333][T28328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  709.029952][T28328] RSP: 002b:00007fd734728048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  709.038376][T28328] RAX: ffffffffffffffda RBX: 00007fd733b03f60 RCX: 00007fd733975bd9
[  709.046364][T28328] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000004
[  709.054338][T28328] RBP: 00007fd7347280a0 R08: 0000000000000000 R09: 0000000000000000
[  709.062318][T28328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  709.070379][T28328] R13: 000000000000000b R14: 00007fd733b03f60 R15: 00007ffd3bd55a98
[  709.078402][T28328]  </TASK>
[  709.115374][T28332] Bluetooth: MGMT ver 1.22
[  709.312985][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.527304][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  710.029303][T28363] xt_CT: No such helper "snmp"
[  710.046899][T24519] Bluetooth: hci2: command tx timeout
[  710.608268][   T11] bond0 (unregistering): Released all slaves
[  711.263395][T28408] xt_CT: No such helper "snmp"
[  711.875929][T28300] chnl_net:caif_netlink_parms(): no params data found
[  712.126935][T24519] Bluetooth: hci2: command tx timeout
[  712.351709][T28448] xt_CT: No such helper "snmp"
[  712.366017][T28453] __nla_validate_parse: 2 callbacks suppressed
[  712.366040][T28453] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7792'.
[  712.510565][   T11] hsr_slave_0: left promiscuous mode
[  712.525774][   T11] hsr_slave_1: left promiscuous mode
[  712.593627][   T11] veth1_macvtap: left promiscuous mode
[  712.604197][   T11] veth0_macvtap: left promiscuous mode
[  712.616632][   T11] veth1_vlan: left promiscuous mode
[  712.632508][   T11] veth0_vlan: left promiscuous mode
[  714.145724][T28453] Κό0G: entered promiscuous mode
[  714.207266][T24519] Bluetooth: hci2: command tx timeout
[  714.548560][T28300] bridge0: port 1(bridge_slave_0) entered blocking state
[  714.566188][T28300] bridge0: port 1(bridge_slave_0) entered disabled state
[  714.597683][T28300] bridge_slave_0: entered allmulticast mode
[  714.621169][T28300] bridge_slave_0: entered promiscuous mode
[  714.658464][T28300] bridge0: port 2(bridge_slave_1) entered blocking state
[  714.665839][T28300] bridge0: port 2(bridge_slave_1) entered disabled state
[  714.687945][T28300] bridge_slave_1: entered allmulticast mode
[  714.695672][T28300] bridge_slave_1: entered promiscuous mode
[  714.757538][T28300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  714.791321][T28300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  714.917067][T28300] team0: Port device team_slave_0 added
[  714.937840][T28300] team0: Port device team_slave_1 added
[  715.005041][T28300] batman_adv: batadv0: Adding interface: batadv_slave_0
[  715.014131][T28300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  715.042153][T28300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  715.060272][T28300] batman_adv: batadv0: Adding interface: batadv_slave_1
[  715.069354][T28300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  715.095735][T28300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  715.200276][T28300] hsr_slave_0: entered promiscuous mode
[  715.223009][T28300] hsr_slave_1: entered promiscuous mode
[  715.238415][T28300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  715.257804][T28300] Cannot create hsr debugfs directory
[  715.270433][T28524] netlink: 76 bytes leftover after parsing attributes in process `syz.3.7815'.
[  715.358455][T28524] Κό1G: entered promiscuous mode
[  716.286455][T24519] Bluetooth: hci2: command tx timeout
[  716.364367][T28300] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  716.376207][T28300] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  716.396216][T28300] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  716.408739][T28300] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  716.605425][T28300] 8021q: adding VLAN 0 to HW filter on device bond0
[  716.645828][T28300] 8021q: adding VLAN 0 to HW filter on device team0
[  716.677438][T17015] bridge0: port 1(bridge_slave_0) entered blocking state
[  716.684645][T17015] bridge0: port 1(bridge_slave_0) entered forwarding state
[  716.734584][T17015] bridge0: port 2(bridge_slave_1) entered blocking state
[  716.742012][T17015] bridge0: port 2(bridge_slave_1) entered forwarding state
[  717.482076][T28300] 8021q: adding VLAN 0 to HW filter on device batadv0
[  717.625350][T28611] netlink: 248 bytes leftover after parsing attributes in process `syz.4.7842'.
[  717.656987][T28611] netlink: 52 bytes leftover after parsing attributes in process `syz.4.7842'.
[  717.695066][T28300] veth0_vlan: entered promiscuous mode
[  717.751043][T28300] veth1_vlan: entered promiscuous mode
[  717.842735][T28300] veth0_macvtap: entered promiscuous mode
[  717.893667][T28300] veth1_macvtap: entered promiscuous mode
[  717.976011][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  718.012266][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.041540][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  718.057332][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.069579][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  718.086937][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.098041][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  718.109553][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.124871][T28300] batman_adv: batadv0: Interface activated: batadv_slave_0
[  718.199150][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  718.214874][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.239605][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  718.262192][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.277984][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  718.291918][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.312553][T28300] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  718.323981][T28300] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  718.338064][T28300] batman_adv: batadv0: Interface activated: batadv_slave_1
[  718.363836][T28300] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.385096][T28300] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  718.410026][T28300] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  718.434506][T28300] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  718.621081][ T1106] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  718.631245][T28639] netlink: 60 bytes leftover after parsing attributes in process `syz.2.7854'.
[  718.640919][ T1106] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  718.708714][ T2902] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  718.722227][ T2902] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  718.914890][T28645] FAULT_INJECTION: forcing a failure.
[  718.914890][T28645] name failslab, interval 1, probability 0, space 0, times 0
[  718.942540][T28645] CPU: 1 PID: 28645 Comm: syz.2.7856 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  718.952774][T28645] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  718.962868][T28645] Call Trace:
[  718.966190][T28645]  <TASK>
[  718.969153][T28645]  dump_stack_lvl+0x241/0x360
[  718.973886][T28645]  ? __pfx_dump_stack_lvl+0x10/0x10
[  718.979141][T28645]  ? __pfx__printk+0x10/0x10
[  718.983790][T28645]  ? __pfx___might_resched+0x10/0x10
[  718.989118][T28645]  ? __lock_acquire+0x1346/0x1fd0
[  718.994202][T28645]  should_fail_ex+0x3b0/0x4e0
[  718.998934][T28645]  ? bpf_test_init+0xe1/0x180
[  719.003764][T28645]  should_failslab+0x9/0x20
[  719.008316][T28645]  __kmalloc_noprof+0xd8/0x400
[  719.013137][T28645]  bpf_test_init+0xe1/0x180
[  719.017739][T28645]  bpf_prog_test_run_xdp+0x48e/0x11b0
[  719.023163][T28645]  ? __pfx_lock_acquire+0x10/0x10
[  719.028234][T28645]  ? __pfx_lock_release+0x10/0x10
[  719.033315][T28645]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  719.039605][T28645]  ? __fget_files+0x29/0x470
[  719.044272][T28645]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  719.050136][T28645]  bpf_prog_test_run+0x33a/0x3b0
[  719.055132][T28645]  __sys_bpf+0x48d/0x810
[  719.059431][T28645]  ? __pfx___sys_bpf+0x10/0x10
[  719.064266][T28645]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  719.070293][T28645]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  719.076769][T28645]  ? do_syscall_64+0x100/0x230
[  719.081603][T28645]  __x64_sys_bpf+0x7c/0x90
[  719.086241][T28645]  do_syscall_64+0xf3/0x230
[  719.091081][T28645]  ? clear_bhb_loop+0x35/0x90
[  719.095787][T28645]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  719.101716][T28645] RIP: 0033:0x7f51bab75bd9
[  719.106146][T28645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  719.125774][T28645] RSP: 002b:00007f51bba26048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  719.134205][T28645] RAX: ffffffffffffffda RBX: 00007f51bad03f60 RCX: 00007f51bab75bd9
[  719.142185][T28645] RDX: 0000000000000050 RSI: 0000000020000340 RDI: 000000000000000a
[  719.150164][T28645] RBP: 00007f51bba260a0 R08: 0000000000000000 R09: 0000000000000000
[  719.158148][T28645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  719.166214][T28645] R13: 000000000000000b R14: 00007f51bad03f60 R15: 00007ffed6fba8e8
[  719.174222][T28645]  </TASK>
[  719.324482][T28654] vxcan0: tx drop: invalid da for name 0x0000000000000002
[  719.626508][T28670] xt_CT: No such helper "snmp"
[  719.764626][T28673] syzkaller0: entered promiscuous mode
[  719.778623][T28673] syzkaller0: entered allmulticast mode
[  719.796229][T28685] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7871'.
[  719.865840][T28685] bond3: entered promiscuous mode
[  720.158615][T28688] bond_slave_0: entered promiscuous mode
[  720.165270][T28688] bond3: (slave bond_slave_0): Enslaving as an active interface with an up link
[  720.191774][T28706] netlink: 'syz.0.7878': attribute type 4 has an invalid length.
[  720.941458][T28741] netlink: 2 bytes leftover after parsing attributes in process `syz.4.7888'.
[  722.762098][T28707] netlink: 'syz.0.7878': attribute type 4 has an invalid length.
[  722.774794][T28714] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7882'.
[  722.958517][T28752] netlink: 'syz.4.7892': attribute type 1 has an invalid length.
[  722.980503][T28752] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7892'.
[  723.178645][T28763] netlink: 'syz.1.7896': attribute type 13 has an invalid length.
[  723.257883][T28770] netlink: 'syz.0.7899': attribute type 4 has an invalid length.
[  723.272561][T28763] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7896'.
[  723.346977][T28770] netlink: 'syz.0.7899': attribute type 4 has an invalid length.
[  723.413054][T28780] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7901'.
[  723.553650][T28786] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.7902'.
[  723.599617][T28786] openvswitch: netlink: Tunnel attr 8192 out of range max 16
[  723.635996][T28786] netlink: 24 bytes leftover after parsing attributes in process `syz.3.7902'.
[  723.792354][T28803] Bluetooth: MGMT ver 1.22
[  724.097665][T28813] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7913'.
[  724.127817][T28813] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7913'.
[  724.191789][T28813] netlink: 60 bytes leftover after parsing attributes in process `syz.3.7913'.
[  724.426462][T28837] xt_CT: No such helper "snmp"
[  724.479645][T28844] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.7923'.
[  724.510439][T28844] openvswitch: netlink: Tunnel attr 8192 out of range max 16
[  724.743254][T28856] netlink: 'syz.3.7928': attribute type 2 has an invalid length.
[  724.764981][T28861] FAULT_INJECTION: forcing a failure.
[  724.764981][T28861] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  724.803042][T28861] CPU: 1 PID: 28861 Comm: syz.4.7930 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  724.813271][T28861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  724.823356][T28861] Call Trace:
[  724.826647][T28861]  <TASK>
[  724.829584][T28861]  dump_stack_lvl+0x241/0x360
[  724.834282][T28861]  ? __pfx_dump_stack_lvl+0x10/0x10
[  724.839497][T28861]  ? __pfx__printk+0x10/0x10
[  724.844107][T28861]  ? __pfx_lock_release+0x10/0x10
[  724.849158][T28861]  ? __lock_acquire+0x1346/0x1fd0
[  724.854215][T28861]  should_fail_ex+0x3b0/0x4e0
[  724.858913][T28861]  _copy_from_user+0x2f/0xe0
[  724.863517][T28861]  kstrtouint_from_user+0xc6/0x190
[  724.868648][T28861]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  724.874388][T28861]  ? __pfx_lock_acquire+0x10/0x10
[  724.879433][T28861]  proc_fail_nth_write+0xaa/0x2d0
[  724.884462][T28861]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  724.890366][T28861]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  724.896010][T28861]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  724.901671][T28861]  vfs_write+0x2a2/0xc90
[  724.905938][T28861]  ? __pfx_vfs_write+0x10/0x10
[  724.910808][T28861]  ? __fget_files+0x29/0x470
[  724.915500][T28861]  ? __fget_files+0x3f6/0x470
[  724.920204][T28861]  ksys_write+0x1a0/0x2c0
[  724.924551][T28861]  ? __pfx_ksys_write+0x10/0x10
[  724.929419][T28861]  ? do_syscall_64+0x100/0x230
[  724.934211][T28861]  ? do_syscall_64+0xb6/0x230
[  724.938907][T28861]  do_syscall_64+0xf3/0x230
[  724.943430][T28861]  ? clear_bhb_loop+0x35/0x90
[  724.948123][T28861]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  724.954051][T28861] RIP: 0033:0x7f8956f7475f
[  724.958491][T28861] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48
[  724.978133][T28861] RSP: 002b:00007f8957da5040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  724.986598][T28861] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8956f7475f
[  724.994608][T28861] RDX: 0000000000000001 RSI: 00007f8957da50b0 RDI: 0000000000000006
[  725.002608][T28861] RBP: 00007f8957da50a0 R08: 0000000000000000 R09: 0000000000000000
[  725.010609][T28861] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  725.018770][T28861] R13: 000000000000000b R14: 00007f8957103f60 R15: 00007fffc2bcb148
[  725.026868][T28861]  </TASK>
[  725.456097][T28885] xt_CT: No such helper "snmp"
[  725.568880][T28897] openvswitch: netlink: Tunnel attr 8192 out of range max 16
[  725.923782][T28905] vlan2: entered promiscuous mode
[  725.944285][T28905] bridge0: entered promiscuous mode
[  725.969762][T28905] team0: Port device vlan2 added
[  726.338325][T28931] xt_CT: No such helper "snmp"
[  726.364729][T28939] openvswitch: netlink: Tunnel attr 8192 out of range max 16
[  727.209909][T28983] veth1_macvtap: left promiscuous mode
[  727.216935][T28983] macsec0: entered promiscuous mode
[  727.229082][T28983] macsec0: entered allmulticast mode
[  728.282864][T29034] __nla_validate_parse: 15 callbacks suppressed
[  728.282889][T29034] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7983'.
[  728.541894][T29044] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7986'.
[  728.859819][T29058] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7990'.
[  729.028920][ T6903] IPVS: starting estimator thread 0...
[  729.126691][T29066] IPVS: using max 16 ests per chain, 38400 per kthread
[  729.156015][T29072] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7994'.
[  730.410572][T29111] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8011'.
[  730.496138][T29110] vlan4: entered promiscuous mode
[  730.532624][T29110] vlan4: entered allmulticast mode
[  731.107258][T29137] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8022'.
[  731.130409][T29137] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8022'.
[  731.200524][T29141] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8023'.
[  732.672498][T29179] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8037'.
[  732.704719][T29194] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[  732.824909][T29193] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8040'.
[  733.343261][T29227] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8049'.
[  733.440804][T29235] netlink: 'syz.4.8052': attribute type 30 has an invalid length.
[  733.583757][T29237] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8054'.
[  733.824780][T29249] FAULT_INJECTION: forcing a failure.
[  733.824780][T29249] name failslab, interval 1, probability 0, space 0, times 0
[  733.847970][T29249] CPU: 1 PID: 29249 Comm: syz.3.8058 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  733.858194][T29249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  733.868297][T29249] Call Trace:
[  733.871613][T29249]  <TASK>
[  733.874572][T29249]  dump_stack_lvl+0x241/0x360
[  733.879315][T29249]  ? __pfx_dump_stack_lvl+0x10/0x10
[  733.884565][T29249]  ? __pfx__printk+0x10/0x10
[  733.889203][T29249]  ? ref_tracker_alloc+0x332/0x490
[  733.894356][T29249]  should_fail_ex+0x3b0/0x4e0
[  733.899066][T29249]  ? skb_clone+0x20c/0x390
[  733.903507][T29249]  should_failslab+0x9/0x20
[  733.908123][T29249]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  733.913527][T29249]  skb_clone+0x20c/0x390
[  733.917967][T29249]  __netlink_deliver_tap+0x3cc/0x7c0
[  733.923287][T29249]  ? netlink_deliver_tap+0x2e/0x1b0
[  733.928501][T29249]  netlink_deliver_tap+0x19d/0x1b0
[  733.933627][T29249]  netlink_unicast+0x7b8/0x980
[  733.938437][T29249]  ? __pfx_netlink_unicast+0x10/0x10
[  733.944214][T29249]  ? __virt_addr_valid+0x183/0x520
[  733.949363][T29249]  ? __check_object_size+0x49c/0x900
[  733.954670][T29249]  ? bpf_lsm_netlink_send+0x9/0x10
[  733.959809][T29249]  netlink_sendmsg+0x8db/0xcb0
[  733.964611][T29249]  ? __pfx_netlink_sendmsg+0x10/0x10
[  733.970010][T29249]  ? __import_iovec+0x536/0x820
[  733.974877][T29249]  ? aa_sock_msg_perm+0x91/0x160
[  733.979846][T29249]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  733.985224][T29249]  ? security_socket_sendmsg+0x87/0xb0
[  733.990700][T29249]  ? __pfx_netlink_sendmsg+0x10/0x10
[  733.995998][T29249]  __sock_sendmsg+0x221/0x270
[  734.000701][T29249]  ____sys_sendmsg+0x525/0x7d0
[  734.005579][T29249]  ? __pfx_____sys_sendmsg+0x10/0x10
[  734.010892][T29249]  __sys_sendmsg+0x2b0/0x3a0
[  734.015500][T29249]  ? __pfx___sys_sendmsg+0x10/0x10
[  734.020625][T29249]  ? vfs_write+0x7c4/0xc90
[  734.025096][T29249]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  734.031435][T29249]  ? do_syscall_64+0x100/0x230
[  734.036236][T29249]  ? do_syscall_64+0xb6/0x230
[  734.040951][T29249]  do_syscall_64+0xf3/0x230
[  734.045470][T29249]  ? clear_bhb_loop+0x35/0x90
[  734.050158][T29249]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  734.056071][T29249] RIP: 0033:0x7fd733975bd9
[  734.060518][T29249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  734.080139][T29249] RSP: 002b:00007fd734728048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  734.088655][T29249] RAX: ffffffffffffffda RBX: 00007fd733b03f60 RCX: 00007fd733975bd9
[  734.096809][T29249] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000003
[  734.104791][T29249] RBP: 00007fd7347280a0 R08: 0000000000000000 R09: 0000000000000000
[  734.112943][T29249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  734.120921][T29249] R13: 000000000000000b R14: 00007fd733b03f60 R15: 00007ffd3bd55a98
[  734.128923][T29249]  </TASK>
[  735.091251][T29295] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8070'.
[  735.143974][T29304] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8077'.
[  735.383213][T29320] netlink: 292 bytes leftover after parsing attributes in process `syz.4.8082'.
[  735.411089][T29320] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8082'.
[  735.436523][T29320] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8082'.
[  735.456545][T29320] netlink: 68 bytes leftover after parsing attributes in process `syz.4.8082'.
[  735.554794][T29323] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8083'.
[  735.875665][T29340] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  735.904880][T29340] netdevsim netdevsim3 netdevsim0: left promiscuous mode
[  735.974791][T29345] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8092'.
[  736.314148][T29365] netlink: 'syz.4.8098': attribute type 2 has an invalid length.
[  736.411784][T29367] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  736.616730][T29383] netlink: 'syz.0.8104': attribute type 1 has an invalid length.
[  736.710412][T29383] bond3: entered promiscuous mode
[  736.719919][T29386] bridge_slave_1: left allmulticast mode
[  736.741227][T29386] bridge_slave_1: left promiscuous mode
[  736.750332][T29386] bridge0: port 2(bridge_slave_1) entered disabled state
[  736.788457][T29386] bridge_slave_0: left allmulticast mode
[  736.794342][T29386] bridge_slave_0: left promiscuous mode
[  736.811398][T29386] bridge0: port 1(bridge_slave_0) entered disabled state
[  736.877481][T29386] bridge0: left promiscuous mode
[  736.900609][T29396] xt_CT: You must specify a L4 protocol and not use inversions on it
[  737.018373][T29386] team0: Port device vlan2 removed
[  737.107910][T29388] bond0: (slave bond_slave_0): Releasing backup interface
[  737.175892][T29388] bond3: (slave bond_slave_0): making interface the new active one
[  737.200847][T29388] bond_slave_0: entered promiscuous mode
[  737.209417][T29388] bond3: (slave bond_slave_0): Enslaving as an active interface with an up link
[  737.549459][T29416] tap0: tun_chr_ioctl cmd 1074025677
[  737.555237][T29416] tap0: linktype set to 1
[  738.030157][T29433] netlink: 'syz.1.8123': attribute type 13 has an invalid length.
[  738.075828][T29433] veth0_macvtap: left promiscuous mode
[  738.144705][T29433] macvtap0: entered allmulticast mode
[  738.196522][T29433] macvtap0: refused to change device tx_queue_len
[  738.340237][T29441] IPVS: Unknown mcast interface: netdevsim0
[  738.649893][T29459] __nla_validate_parse: 5 callbacks suppressed
[  738.649918][T29459] netlink: 56 bytes leftover after parsing attributes in process `syz.0.8127'.
[  739.295864][T29493] netlink: 'syz.2.8142': attribute type 5 has an invalid length.
[  739.406961][T24542] Bluetooth: hci1: command 0x0419 tx timeout
[  739.534079][T29506] netlink: 201400 bytes leftover after parsing attributes in process `syz.1.8144'.
[  739.706820][T29516] netlink: 'syz.0.8149': attribute type 8 has an invalid length.
[  739.968885][T29524] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  740.023145][T29524] netlink: 16410 bytes leftover after parsing attributes in process `syz.2.8152'.
[  740.286146][T29535] IPv6: NLM_F_REPLACE set, but no existing node found!
[  740.541144][T29543] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  740.750198][T29549] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  741.000754][T29560] bond0: option mode: unable to set because the bond device has slaves
[  741.134034][T29566] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8170'.
[  741.357564][T29581] netlink: 64 bytes leftover after parsing attributes in process `syz.1.8176'.
[  741.380746][T29579] netlink: 3084 bytes leftover after parsing attributes in process `syz.0.8175'.
[  741.389362][T29583] netlink: 64 bytes leftover after parsing attributes in process `syz.1.8176'.
[  741.398755][T29579] netlink: 'syz.0.8175': attribute type 1 has an invalid length.
[  741.410348][T29579] netlink: 193500 bytes leftover after parsing attributes in process `syz.0.8175'.
[  741.583109][T29596] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  741.597339][T29597] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  741.957002][T29612] 
: renamed from bond0 (while UP)
[  742.818388][T29656] FAULT_INJECTION: forcing a failure.
[  742.818388][T29656] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  742.858842][T29656] CPU: 0 PID: 29656 Comm: syz.0.8199 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  742.867619][T29657] netlink: 'syz.4.8200': attribute type 6 has an invalid length.
[  742.869065][T29656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  742.869085][T29656] Call Trace:
[  742.869096][T29656]  <TASK>
[  742.869107][T29656]  dump_stack_lvl+0x241/0x360
[  742.897909][T29656]  ? __pfx_dump_stack_lvl+0x10/0x10
[  742.903243][T29656]  ? __pfx__printk+0x10/0x10
[  742.907885][T29656]  ? snprintf+0xda/0x120
[  742.912261][T29656]  should_fail_ex+0x3b0/0x4e0
[  742.916987][T29656]  _copy_to_user+0x2f/0xb0
[  742.921451][T29656]  simple_read_from_buffer+0xca/0x150
[  742.926868][T29656]  proc_fail_nth_read+0x1e9/0x250
[  742.931924][T29656]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  742.937486][T29656]  ? rw_verify_area+0x514/0x6b0
[  742.942346][T29656]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  742.947905][T29656]  vfs_read+0x204/0xbd0
[  742.952072][T29656]  ? __pfx_lock_release+0x10/0x10
[  742.957199][T29656]  ? __pfx_vfs_read+0x10/0x10
[  742.961923][T29656]  ? __fget_files+0x29/0x470
[  742.966537][T29656]  ? __fget_files+0x3f6/0x470
[  742.971340][T29656]  ksys_read+0x1a0/0x2c0
[  742.975606][T29656]  ? __pfx_ksys_read+0x10/0x10
[  742.980458][T29656]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  742.986803][T29656]  ? do_syscall_64+0xb6/0x230
[  742.991607][T29656]  do_syscall_64+0xf3/0x230
[  742.996215][T29656]  ? clear_bhb_loop+0x35/0x90
[  743.001021][T29656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.006962][T29656] RIP: 0033:0x7f54ded746bc
[  743.011747][T29656] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  743.031790][T29656] RSP: 002b:00007f54dfa9e040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  743.040478][T29656] RAX: ffffffffffffffda RBX: 00007f54def03f60 RCX: 00007f54ded746bc
[  743.048649][T29656] RDX: 000000000000000f RSI: 00007f54dfa9e0b0 RDI: 0000000000000004
[  743.057261][T29656] RBP: 00007f54dfa9e0a0 R08: 0000000000000000 R09: 0000000000000000
[  743.065292][T29656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  743.073382][T29656] R13: 000000000000000b R14: 00007f54def03f60 R15: 00007ffe421a2948
[  743.081417][T29656]  </TASK>
[  743.142824][T29657] netlink: 52 bytes leftover after parsing attributes in process `syz.4.8200'.
[  743.163923][T29657] netlink: 'syz.4.8200': attribute type 6 has an invalid length.
[  743.205175][T29660] netlink: 52 bytes leftover after parsing attributes in process `syz.4.8200'.
[  743.654882][T29683] netdevsim netdevsim4 €: set [1, 1] type 2 family 0 port 53158 - 0
[  743.681461][T29683] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 53158 - 0
[  743.693489][T29683] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 53158 - 0
[  743.711951][T29683] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 53158 - 0
[  743.721877][T29683] netdevsim netdevsim4 €: set [1, 2] type 2 family 0 port 39586 - 0
[  743.730805][T29683] netdevsim netdevsim4 netdevsim1: set [1, 2] type 2 family 0 port 39586 - 0
[  743.740037][T29683] netdevsim netdevsim4 netdevsim2: set [1, 2] type 2 family 0 port 39586 - 0
[  743.757555][T29683] netdevsim netdevsim4 netdevsim3: set [1, 2] type 2 family 0 port 39586 - 0
[  743.774209][T29695] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0xd
[  744.401452][T29721] macvtap1: entered promiscuous mode
[  744.407757][T29721] team0: entered promiscuous mode
[  744.413567][T29721] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  744.830867][T29746] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  744.919114][T29752] netlink: 'syz.0.8234': attribute type 8 has an invalid length.
[  745.115034][T29759] IPVS: Unknown mcast interface: vcan0
[  745.150875][T29759] netlink: 'syz.1.8236': attribute type 1 has an invalid length.
[  745.198323][T29759] 8021q: adding VLAN 0 to HW filter on device bond0
[  745.241057][T29759] 8021q: adding VLAN 0 to HW filter on device bond0
[  745.267922][T29759] bond0: (slave ip6tnl1): The slave device specified does not support setting the MAC address
[  745.292966][T29759] bond0: (slave ip6tnl1): Error -95 calling set_mac_address
[  745.725614][T29783] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8242'.
[  746.027002][T29799] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  746.378514][T29816] netlink: 'syz.1.8256': attribute type 3 has an invalid length.
[  746.403999][T29816] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8256'.
[  746.413298][T29816] netlink: 76 bytes leftover after parsing attributes in process `syz.1.8256'.
[  746.425415][T29816] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8256'.
[  746.435050][T29816] netlink: 76 bytes leftover after parsing attributes in process `syz.1.8256'.
[  746.446733][T29816] netlink: 24 bytes leftover after parsing attributes in process `syz.1.8256'.
[  746.580650][T29830] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8258'.
[  746.849798][T29840] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  747.174289][T29848] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  747.183277][T29848] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  747.192631][T29848] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  747.202360][T29848] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  747.264281][T29850] netlink: 'syz.3.8269': attribute type 3 has an invalid length.
[  747.343019][T29853] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8269'.
[  747.352685][T29853] netlink: 76 bytes leftover after parsing attributes in process `syz.3.8269'.
[  747.369971][T29853] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8269'.
[  747.396114][T29855] openvswitch: netlink: IP tunnel attribute has 3048 unknown bytes.
[  747.571826][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[  747.642211][T29865] netlink: 'syz.1.8275': attribute type 1 has an invalid length.
[  748.379863][T29888] veth1_macvtap: left promiscuous mode
[  748.385520][T29888] macsec0: entered allmulticast mode
[  748.421849][T29892] veth1_macvtap: entered promiscuous mode
[  748.436496][T29892] veth1_macvtap: entered allmulticast mode
[  748.455569][T29892] macsec0: left allmulticast mode
[  748.460949][T29892] veth1_macvtap: left allmulticast mode
[  748.479538][T29884] tun0: tun_chr_ioctl cmd 2147767506
[  748.986798][T29916] netlink: 'syz.4.8291': attribute type 3 has an invalid length.
[  749.257356][T29931] netlink: 'syz.0.8294': attribute type 9 has an invalid length.
[  749.504296][T29942] 8021q: adding VLAN 0 to HW filter on device team1
[  749.951777][T29973] 8021q: adding VLAN 0 to HW filter on device macvlan4
[  750.030013][T29977] netlink: 'syz.1.8313': attribute type 4 has an invalid length.
[  750.047845][T24542] Bluetooth: hci2: command tx timeout
[  750.067556][T29977] netlink: 'syz.1.8313': attribute type 4 has an invalid length.
[  750.378847][T29988] bridge2: entered promiscuous mode
[  750.395880][T29988] team0: Port device bridge2 added
[  750.784071][T24519] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  750.794463][T24519] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  750.810421][T24519] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  750.820858][T24519] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  750.831581][T24519] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  750.839226][T24519] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  750.923793][T30015] __nla_validate_parse: 15 callbacks suppressed
[  750.923815][T30015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8326'.
[  750.942102][T30012] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8325'.
[  751.117127][T30021] netlink: 44 bytes leftover after parsing attributes in process `syz.4.8329'.
[  751.858345][T30042] netlink: 'syz.4.8336': attribute type 23 has an invalid length.
[  751.904249][T30042] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8336'.
[  752.113286][T30047] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8338'.
[  752.202053][T30009] chnl_net:caif_netlink_parms(): no params data found
[  752.336002][T30061] netlink: 48 bytes leftover after parsing attributes in process `syz.4.8342'.
[  752.433829][T30009] bridge0: port 1(bridge_slave_0) entered blocking state
[  752.442635][T30009] bridge0: port 1(bridge_slave_0) entered disabled state
[  752.457222][T30009] bridge_slave_0: entered allmulticast mode
[  752.481313][T30009] bridge_slave_0: entered promiscuous mode
[  752.499442][T30009] bridge0: port 2(bridge_slave_1) entered blocking state
[  752.529059][T30009] bridge0: port 2(bridge_slave_1) entered disabled state
[  752.546662][T30009] bridge_slave_1: entered allmulticast mode
[  752.573506][T30009] bridge_slave_1: entered promiscuous mode
[  752.641769][T30076] Cannot find add_set index 0 as target
[  752.673010][T30009] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  752.702890][T30009] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  752.800858][T30081] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8349'.
[  752.834029][T30009] team0: Port device team_slave_0 added
[  752.852782][  T954] team0: left allmulticast mode
[  752.861282][  T954] team_slave_1: left allmulticast mode
[  752.875854][  T954] bridge0: port 3(team0) entered disabled state
[  752.915171][  T954] bridge_slave_1: left allmulticast mode
[  752.927165][T24542] Bluetooth: hci3: command tx timeout
[  752.929694][  T954] bridge_slave_1: left promiscuous mode
[  752.939545][  T954] bridge9: port 1(bridge_slave_1) entered disabled state
[  753.465751][  T954] batman_adv: batadv0: Removing interface: gretap2
[  753.625040][  T954] dvmrp1 (unregistering): left allmulticast mode
[  754.477589][  T954] tipc: Disabling bearer <ib:bond0>
[  754.484493][  T954] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  754.498678][  T954] bond0 (unregistering): (slave batadv0): Releasing backup interface
[  754.511646][  T954] bond0 (unregistering): Released all slaves
[  754.529400][  T954] bond1 (unregistering): (slave bond_slave_0): Releasing backup interface
[  754.539906][  T954] bond1 (unregistering): Released all slaves
[  754.561774][  T954] bond2 (unregistering): Released all slaves
[  754.580755][T30009] team0: Port device team_slave_1 added
[  754.796469][  T954] tipc: Left network mode
[  754.822927][T30009] batman_adv: batadv0: Adding interface: batadv_slave_0
[  754.837550][T30009] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  754.883884][T30009] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  754.949058][T30009] batman_adv: batadv0: Adding interface: batadv_slave_1
[  754.973860][T30009] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  755.008349][T24542] Bluetooth: hci3: command tx timeout
[  755.021029][T30009] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  755.097604][T30110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8356'.
[  755.126705][T30110] bridge_slave_0: left allmulticast mode
[  755.138462][T30110] bridge_slave_0: left promiscuous mode
[  755.150167][T30110] bridge0: port 1(bridge_slave_0) entered disabled state
[  755.438235][T30009] hsr_slave_0: entered promiscuous mode
[  755.457041][T30009] hsr_slave_1: entered promiscuous mode
[  755.464351][T30009] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  755.487641][T30009] Cannot create hsr debugfs directory
[  755.561097][T30118] netlink: 'syz.4.8358': attribute type 11 has an invalid length.
[  755.983397][T30122] netlink: 44 bytes leftover after parsing attributes in process `syz.1.8360'.
[  756.412925][T30009] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  756.490756][T30127] netlink: 'syz.4.8362': attribute type 10 has an invalid length.
[  756.508704][T30127] netlink: 55 bytes leftover after parsing attributes in process `syz.4.8362'.
[  756.557812][T30127] net veth1_virt_wifi virt_wifi0: entered promiscuous mode
[  756.578489][T30127] team0: Port device virt_wifi0 added
[  756.703613][  T954] hsr_slave_0: left promiscuous mode
[  756.722345][  T954] hsr_slave_1: left promiscuous mode
[  756.786703][  T954] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  756.830309][  T954] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.875397][  T954] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.099431][T24542] Bluetooth: hci3: command tx timeout
[  757.395133][T30149] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.8369'.
[  757.435656][T29715] smc: removing ib device syz1
[  758.650446][T29713] ------------[ cut here ]------------
[  758.657145][T29713] WARNING: CPU: 0 PID: 29713 at net/wireless/sme.c:846 __cfg80211_connect_result+0x19ea/0x21d0
[  758.667730][T29713] Modules linked in:
[  758.671689][T29713] CPU: 0 PID: 29713 Comm: kworker/u8:6 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  758.682148][T29713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  758.692529][T29713] Workqueue: cfg80211 cfg80211_event_work
[  758.698485][T29713] RIP: 0010:__cfg80211_connect_result+0x19ea/0x21d0
[  758.705131][T29713] Code: a3 00 89 c3 31 ff 89 c6 e8 d3 06 b4 f6 85 db 74 29 e8 4a 32 9a f6 84 c0 74 27 e8 81 02 b4 f6 e9 84 00 00 00 e8 77 02 b4 f6 90 <0f> 0b 90 4c 89 ff 4c 89 f6 e8 68 23 00 00 eb 91 e8 61 02 b4 f6 eb
[  758.725176][T29713] RSP: 0018:ffffc9000adaf9e0 EFLAGS: 00010293
[  758.731432][T29713] RAX: ffffffff8ae224f9 RBX: 0000000000000000 RCX: ffff88804a7c8000
[  758.739537][T29713] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  758.748226][T29713] RBP: ffffc9000adafb00 R08: ffffffff8ae220c9 R09: 1ffffffff25f50bd
[  758.756619][T29713] R10: dffffc0000000000 R11: fffffbfff25f50be R12: ffff888060c9c898
[  758.764644][T29713] R13: dffffc0000000000 R14: ffff888060c9c818 R15: ffff88806d5f1000
[  758.772798][T29713] FS:  0000000000000000(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  758.782475][T29713] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  758.789188][T29713] CR2: 000000110c3c4b2f CR3: 000000000e132000 CR4: 00000000003506f0
[  758.797353][T29713] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  758.805365][T29713] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  758.813557][T29713] Call Trace:
[  758.816935][T29713]  <TASK>
[  758.819993][T29713]  ? __warn+0x163/0x4e0
[  758.824285][T29713]  ? __cfg80211_connect_result+0x19ea/0x21d0
[  758.830733][T29713]  ? report_bug+0x2b3/0x500
[  758.835370][T29713]  ? __cfg80211_connect_result+0x19ea/0x21d0
[  758.841493][T29713]  ? handle_bug+0x3e/0x70
[  758.846605][T29713]  ? exc_invalid_op+0x1a/0x50
[  758.851599][T29713]  ? asm_exc_invalid_op+0x1a/0x20
[  758.856821][T29713]  ? __cfg80211_connect_result+0x15b9/0x21d0
[  758.862856][T29713]  ? __cfg80211_connect_result+0x19e9/0x21d0
[  758.869055][T29713]  ? __cfg80211_connect_result+0x19ea/0x21d0
[  758.875187][T29713]  ? __pfx___cfg80211_connect_result+0x10/0x10
[  758.881709][T29713]  ? lockdep_hardirqs_on+0x99/0x150
[  758.887129][T29713]  cfg80211_process_wdev_events+0x356/0x510
[  758.893077][T29713]  cfg80211_process_rdev_events+0xac/0x110
[  758.899012][T29713]  ? process_scheduled_works+0x945/0x1830
[  758.904784][T29713]  cfg80211_event_work+0x2f/0x40
[  758.910809][T29713]  process_scheduled_works+0xa2c/0x1830
[  758.916912][T29713]  ? __pfx_process_scheduled_works+0x10/0x10
[  758.923208][T29713]  ? assign_work+0x364/0x3d0
[  758.928066][T29713]  worker_thread+0x86d/0xd50
[  758.932716][T29713]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  758.938773][T29713]  ? __kthread_parkme+0x169/0x1d0
[  758.943845][T29713]  ? __pfx_worker_thread+0x10/0x10
[  758.949805][T29713]  kthread+0x2f0/0x390
[  758.953923][T29713]  ? __pfx_worker_thread+0x10/0x10
[  758.959815][T29713]  ? __pfx_kthread+0x10/0x10
[  758.964457][T29713]  ret_from_fork+0x4b/0x80
[  758.968991][T29713]  ? __pfx_kthread+0x10/0x10
[  758.973645][T29713]  ret_from_fork_asm+0x1a/0x30
[  758.978585][T29713]  </TASK>
[  758.981632][T29713] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  758.988938][T29713] CPU: 0 PID: 29713 Comm: kworker/u8:6 Not tainted 6.10.0-rc5-syzkaller-00197-g8eb301bd7b0f #0
[  758.999319][T29713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  759.009582][T29713] Workqueue: cfg80211 cfg80211_event_work
[  759.015369][T29713] Call Trace:
[  759.018678][T29713]  <TASK>
[  759.021636][T29713]  dump_stack_lvl+0x241/0x360
[  759.026373][T29713]  ? __pfx_dump_stack_lvl+0x10/0x10
[  759.031613][T29713]  ? __pfx__printk+0x10/0x10
[  759.036256][T29713]  ? vscnprintf+0x5d/0x90
[  759.040788][T29713]  panic+0x349/0x860
[  759.044712][T29713]  ? __warn+0x172/0x4e0
[  759.048891][T29713]  ? __pfx_panic+0x10/0x10
[  759.053350][T29713]  ? ret_from_fork_asm+0x1a/0x30
[  759.058315][T29713]  __warn+0x346/0x4e0
[  759.062487][T29713]  ? __cfg80211_connect_result+0x19ea/0x21d0
[  759.068488][T29713]  report_bug+0x2b3/0x500
[  759.072830][T29713]  ? __cfg80211_connect_result+0x19ea/0x21d0
[  759.078999][T29713]  handle_bug+0x3e/0x70
[  759.083162][T29713]  exc_invalid_op+0x1a/0x50
[  759.087942][T29713]  asm_exc_invalid_op+0x1a/0x20
[  759.092817][T29713] RIP: 0010:__cfg80211_connect_result+0x19ea/0x21d0
[  759.099431][T29713] Code: a3 00 89 c3 31 ff 89 c6 e8 d3 06 b4 f6 85 db 74 29 e8 4a 32 9a f6 84 c0 74 27 e8 81 02 b4 f6 e9 84 00 00 00 e8 77 02 b4 f6 90 <0f> 0b 90 4c 89 ff 4c 89 f6 e8 68 23 00 00 eb 91 e8 61 02 b4 f6 eb
[  759.119043][T29713] RSP: 0018:ffffc9000adaf9e0 EFLAGS: 00010293
[  759.125121][T29713] RAX: ffffffff8ae224f9 RBX: 0000000000000000 RCX: ffff88804a7c8000
[  759.133100][T29713] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  759.141160][T29713] RBP: ffffc9000adafb00 R08: ffffffff8ae220c9 R09: 1ffffffff25f50bd
[  759.149142][T29713] R10: dffffc0000000000 R11: fffffbfff25f50be R12: ffff888060c9c898
[  759.157235][T29713] R13: dffffc0000000000 R14: ffff888060c9c818 R15: ffff88806d5f1000
[  759.165221][T29713]  ? __cfg80211_connect_result+0x15b9/0x21d0
[  759.171213][T29713]  ? __cfg80211_connect_result+0x19e9/0x21d0
[  759.177331][T29713]  ? __pfx___cfg80211_connect_result+0x10/0x10
[  759.183502][T29713]  ? lockdep_hardirqs_on+0x99/0x150
[  759.188724][T29713]  cfg80211_process_wdev_events+0x356/0x510
[  759.194647][T29713]  cfg80211_process_rdev_events+0xac/0x110
[  759.200534][T29713]  ? process_scheduled_works+0x945/0x1830
[  759.206263][T29713]  cfg80211_event_work+0x2f/0x40
[  759.211228][T29713]  process_scheduled_works+0xa2c/0x1830
[  759.216869][T29713]  ? __pfx_process_scheduled_works+0x10/0x10
[  759.223038][T29713]  ? assign_work+0x364/0x3d0
[  759.227734][T29713]  worker_thread+0x86d/0xd50
[  759.232353][T29713]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  759.238277][T29713]  ? __kthread_parkme+0x169/0x1d0
[  759.243316][T29713]  ? __pfx_worker_thread+0x10/0x10
[  759.248434][T29713]  kthread+0x2f0/0x390
[  759.252512][T29713]  ? __pfx_worker_thread+0x10/0x10
[  759.257639][T29713]  ? __pfx_kthread+0x10/0x10
[  759.262419][T29713]  ret_from_fork+0x4b/0x80
[  759.266857][T29713]  ? __pfx_kthread+0x10/0x10
[  759.271461][T29713]  ret_from_fork_asm+0x1a/0x30
[  759.276260][T29713]  </TASK>
[  759.279534][T29713] Kernel Offset: disabled
[  759.283973][T29713] Rebooting in 86400 seconds..