last executing test programs:

48.879437537s ago: executing program 4 (id=2912):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)=ANY=[@ANYRES32=r2, @ANYRES32=r1, @ANYBLOB="0200000002"], 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2, 0x2, 0x0, @void, @value}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000cc0)=@delchain={0x1f4, 0x65, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x8}, {0x0, 0x9}, {0x6}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}, @TCA_RATE={0x6, 0x5, {0x6, 0x22}}, @filter_kind_options=@f_route={{0xa}, {0x1b0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x104, 0x6, [@m_vlan={0x100, 0x13, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_PROTOCOL={0x6, 0x4, 0x88a8}]}, {0xc9, 0x6, "4536d5ba67cb41f3417191a0b4758169ba997e9dbec50e599419b7f290f4ee70efc0bdcb1d84cd2098b9c95fa81553821d25bbee1244fda18d438c3a5d696ee14197d17ea59071f0fd93760930ba453b3e23095f617d12282ec3f8190afeb1ac2e8d254fdac5b6ea11185f9256c3bab37a15cafe5f112d56723f0fb5c49b6449e58fc91a26d527012f701a9cfebef7787238f0d549914d85db8de6456cd08e0cd88f542f218759aebb2337e303783a52c6e45d646c6ef46ddb4aac282b8605eabf81417498"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3}}}}]}, @TCA_ROUTE4_POLICE={0x90, 0x5, [@TCA_POLICE_TBF={0x3c, 0x1, {0x7ff, 0xffffffffffffffff, 0x3, 0xa, 0x6, {0x7, 0x2, 0x1, 0x9, 0x0, 0x4}, {0x10, 0x2, 0x6, 0xfffe, 0x1, 0xeaa1}, 0x6, 0x200, 0x7}}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x8, 0xf4, 0x7fffffff, 0x7, {0x9, 0x0, 0x4, 0xd0c7, 0xffff, 0x86}, {0x10, 0x0, 0x0, 0x11, 0x1, 0xfffffffd}, 0x9, 0x80000, 0x9}}, @TCA_POLICE_AVRATE={0x8, 0x4, 0xb}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0xa71}]}]}}]}, 0x1f4}, 0x1, 0x0, 0x0, 0x81}, 0x8000)
r3 = socket(0x10, 0x803, 0x0)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
socketpair(0x28, 0x2, 0x28, &(0x7f0000000180))
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nbd(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$NBD_CMD_STATUS(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x1c, r5, 0x1, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_INDEX={0x8, 0x1, 0x0}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x48040)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00ed6a", 0xb, 0x2c, 0x0, @remote, @local, {[], {{0x3300, 0x3, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
sendmmsg$inet(r6, &(0x7f0000001300)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000240)="4f80dfed9cba8a309ce9d40208a3e87bfb056e2acd00767cda6ab9806f2eafd17f370c5744f05b7de2f0705482e85facaa7f0bc9f4c4c467680bd01d88f8b5a7df620bab380abada7f25e703fc261f", 0x4f}, {&(0x7f0000001900)="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", 0x397}, {&(0x7f0000000340)="fb", 0x1}], 0x3}}], 0x1, 0x4000010)
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x3a1}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

48.628695643s ago: executing program 4 (id=2916):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_QUEUE_SEQ(0xffffffffffffffff, 0x6, 0x15, 0x0, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x8001, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000540)={0xffffffffffffffff}, 0x4)
ioctl$F2FS_IOC_FLUSH_DEVICE(r4, 0x4008f50a, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
listen(r1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r7, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r7, &(0x7f0000000500)={0x0, 0x100000, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0)
sendmmsg$inet(r6, 0x0, 0x0, 0x40040)

48.227846204s ago: executing program 4 (id=2918):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x44, r0, 0x801, 0x70bd2c, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac08}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}]}, 0x44}}, 0x0) (fail_nth: 10)

47.258014866s ago: executing program 4 (id=2918):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x44, r0, 0x801, 0x70bd2c, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac08}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}]}, 0x44}}, 0x0) (fail_nth: 10)

30.791712259s ago: executing program 4 (id=2918):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x44, r0, 0x801, 0x70bd2c, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac08}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}]}, 0x44}}, 0x0) (fail_nth: 10)

18.379190798s ago: executing program 2 (id=3101):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-clmulni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$unix(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="ff83", 0x2}], 0x1, 0x0, 0x0, 0x4000}, 0xc841)
sendto$unix(r1, &(0x7f0000000600), 0x0, 0x0, &(0x7f0000000340)=@abs={0x1, 0x0, 0x4e21}, 0x6e)

18.119852836s ago: executing program 2 (id=3104):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_buf(r1, 0x1, 0x37, &(0x7f00000017c0)=""/4096, &(0x7f0000000000)=0x1000)
unshare(0x20400)
r2 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r2, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r3 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x11)
sendmsg$netlink(r3, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000008c0)=ANY=[@ANYBLOB="e00000001000090500000000000000000800000000000000c500008008000000", @ANYRES32=0x0, @ANYBLOB="110000003a5d5db2542b5b5e265c5c4000000000d52791db233d0896402d1267b86ac517a485a23d0c3da32ce8f9b19fe043d3a672b0601c63c4f9c0bf2dc42c770625ac000000000000baa0de269676787c764635889ca6c747973691886e2c92540eed6d8ba6c451bf6e1d4cdc30726ae5a7f3a3d9fc406dbc9c8d216ac9ae9b81cb1baa6d1e6e2f8dd400c916908e496e03feb756cdbc348afc03a961da8975d58b1e97d5e66c11404751fc6a7d0664394eea973826"], 0xe0}], 0x1}, 0x0)

17.767931662s ago: executing program 2 (id=3106):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000000)={'rose0\x00', {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}})
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000003e000701fcfffffffddbdf25047c0000100036800c00020007001500000000000c0001800600060008"], 0x30}, 0x1, 0x0, 0x0, 0x488c0}, 0xc000)

17.700961904s ago: executing program 4 (id=2918):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)={0x44, r0, 0x801, 0x70bd2c, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac08}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "7ee5d52ffd"}, @NL80211_KEY_MODE={0x5, 0x9, 0x1}]}]}, 0x44}}, 0x0) (fail_nth: 10)

2.649868498s ago: executing program 0 (id=3188):
r0 = socket$kcm(0x2, 0x1000000000000002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ced4fbd44e24eb0d34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3a06d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796efea77aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2acb72e7ead0509d380578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece72f2090000f44a3210223fdae7ed04935c3c90941576aebc8619d73415cda2130f5011e4845505000001000000004f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c040035cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bf463261135e24d154114df1381b02a0dcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f884cc4806f40300966fcf1e54f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e1700000000000000000000000000000000000000000000000000000520500002952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9a33c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a62415f78000000005f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c81c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b40824095135861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac00000b0000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e5dd921a5eadd4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293d5c833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e602c28ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f257aac5af18d8c6b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1e29b10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe8e4cd14dc5c1eb98b63198f6f830745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b51c34a5384f2cf51180c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af243b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380ecf1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb79f558982d57c556ca1427b5960b79990565ca2a20996fcba472213744d3a156979651596afde2b0089f023fcfccd072bd6ea8445fc787390d71ec61d5b7b0f05f6931914bf49aa0d66eff294271a93e32f54f281068514a4cd2d0700a43df59e9924e4affdbd22405e675e9d7cdc10546571131831d4dc8c8363077a908d9ae4f27ff095f5b07667f93a3573d3fabfca58ee0a6b6a691102bb3c7be4dc5b816853275e7ae8c13ec341bad15353fad794b46c4fd73e1b4cc78de2156cb158870d5b8446dae9ba5f7f244e6cf8f6791671057347208a313ebbcb72b04706005670f2b0055e440d72c7c3316982c6ebe8675458cf6bb393b007f5cedb7bc411834600000000000000000000000000a20071b07d568a8150ed646b4978d0226d9651647a5999ae7c7c85322a215fcdb1adbad63499518fe0d10145d430422c78367dfa941f74b63f3884565ac89c673da2c2b1172be5f2cd1f3f453ebddd432bd24c73fa773b739e20fcec16a821230654a383ac1868495f67d942c772ca75e09073dbe9307ff5cac7c2c411149a4d989a8a019e068da218d4bc34e4102fd2f97397331e4cd70b4915582b635f07ca87f00dc929f902540f565c20add8675b79e005cf0277d954697317b907b77fa5d6b7feaebaf676a2a37de8aa70748fee4bc198ffd3e2de11eb0eff896fd94de0805ba6b1054a7b3e300d4581e9af62a1ecaee96d2819b3d192e5b9561eb622da25450f586be14017a1cf74f89a1dd18af004decfe266134c3d036ae7996931fe6008a73ed34c35f0da4ffee1fe63bc1af6ef1b4731d50b8ceb582a1e9c6e8d97f8290cc105754f592d16ccdb1df8636d7ca5e372cea97dd0f005cc7092b126dd46758917fb0d94b8483d403bd451429cc1660f0b5a529d8134dc2702f6d8e2f943d98fbe50a3ba653f13f98a00fcbf311f9758ade8e4eb87b4b9fb2d387f5d8c4bdcab2fff9ed8c9de961fd831a070381c8020352fea7c334b2959ddd956701a7ea415e224a81c9fa1ebbabe74f7743e09b6c8b72650b51d5c2000ef3679c039b3604374fc1af7ab354204afbd24f0e701bc08a98452ce2668617e85e0d876f5a8b6d9b777f1c384d8a9883e4262defb6b9aab8d5b76bc91ca50f87966797da2499ca0ac76707c0408a7b6d8708fe7714988babdc11f"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x88, 0x67, &(0x7f00000002c0)=r1, 0x4)
sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10, &(0x7f0000000b40)=[{&(0x7f0000000140)="692d338298", 0x5}], 0x1, &(0x7f0000000a40)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x43}, @empty}}}], 0x20, 0x12000000}, 0x0)

2.447048719s ago: executing program 0 (id=3189):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r0, &(0x7f0000000000)="a3648ddd683901713c591f1644ec49d1546b083c3ae5e99ed24c61a6f66a496fe69808e5220651503521585c718e22972c92efd72ed7b743afed2cd5e17a3eeedab248b48778da06a68c841112d2b95a36ffc0bbb14fb1b0152aad18aa28a05ee6163c52bd31546fdb61e55be1dc90a717b866577ce8191cd7f83b0b29d13431ab38df5c45bc47cd02df", 0x8a)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SAVE(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x68, 0x8, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x40440d0)
r2 = socket$packet(0x11, 0x2, 0x300)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x1d, 0x5, 0x1)
r5 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000200)=0xffffffffffffffff, 0x4)
r6 = bpf$ITER_CREATE(0x21, &(0x7f0000000240)={r5}, 0x8)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000003c0)={&(0x7f00000002c0)={0xfc, 0x0, 0x9, 0x201, 0x0, 0x0, {0x5, 0x0, 0x1}, [@NFCTH_STATUS={0x8}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0x19}, @NFCTH_QUEUE_NUM={0x8}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x9}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_TUPLE={0x94, 0x2, [@CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x88}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x3}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @remote}, {0x14, 0x4, @private1}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x2f}}]}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_PRIV_DATA_LEN={0x8, 0x5, 0x1, 0x0, 0xc}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4000}, 0x10)
r7 = socket$unix(0x1, 0x2, 0x0)
r8 = socket$rxrpc(0x21, 0x2, 0xa)
sendmsg$netlink(r1, &(0x7f0000001840)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000440)={0x10, 0x37, 0x400, 0x70bd25, 0x25dfdbfe}, 0x10}, {&(0x7f0000000480)={0x12e8, 0x34, 0x1, 0xac, 0x25dfdbfc, "", [@generic="f93dfa324d243b", @generic="d569868e10e1625a42466eebe3deba4f8af5dfd7e3248e43c09997b4a87557d5882b405ef14b6249651cc692808a0613b9468349722504bedcbf2c24ebd5cb5da2008e0c319ce571fb91d2b7fe1e075ce3697d", @typed={0xb2, 0x7a, 0x0, 0x0, @binary="71032e0fc5fad75234d1ee00386b81d8a39807c5c4129e850bde40b6ac29657b9948b48a01f2118725cb2ac4c4a617a362d5ed434122d154bbe0ccf6e967b7abdeecc8215e2ddf61388a732c86f0fb02f23c11fc704bc15e64a7aad907ba3517e2f986adc7bfd1489b206ddbc242b9e54779dc43b94d5576ffae6160a774c18cd4e3596da0030591210f3d7e873d3b34a57b7522959cde5f62f4a6a15a23852ab47387f77b71c8e7a3a6d12818fe"}, @generic="fcf94bbbd435c80cbdc8af1b543fa41de17f2b7a346a2d7c49192b2fcf0911e74517f024d3c340a2d981cdd41b468ad173c617f5bc0e8badea3f2ca8f62b86d0b993ca39f00a67026810f3569846504833ee69b77b268ba8ca180bfcdd8b974da93deac8023a1c06393f69509a9de204dd134dba9723fab1dd4f6939d67b34e9e6d3d6cb95fc4ad33b91d243f055d0a5e4184aaf5aff72f372df73635c0597a722b826a526678eac0125b437c3fbb8569816b32d994b3b21ea3f9392cecc2762e21f65f39fbf7fcb", @typed={0x14, 0x25, 0x0, 0x0, @ipv6=@private0={0xfc, 0x0, '\x00', 0x1}}, @typed={0x8, 0x5, 0x0, 0x0, @u32=0x879}, @generic="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", @generic="aa36f9bead2d3d230e8b243bb54c50aba27523a0b270813260958845cbe68aad0c154e1d8f7034a4b6810dffd370cb0da632b01448a8fa7a21fe0e2fd0e2de9ae5f54a071d1319cbb311", @generic="89765bc9df2c97788f991e72591f", @generic="f457e813a61ea4b51e34d89a8f30d36ef76ba7e7cd35c2e34c4110a889cf38c110700bf06a4c2fbe31d6dda4b963400af2a2104a918f7747873420d4865676c3031b0f39c593a72ed11153cc9c3e498c0f41afbc58de77b3d396874051a6cb8106d30543bca547271d30de4a7432e495861b5ad70ea9794c921e6beedcfeeff6e447b1e3aaeea9ee863551"]}, 0x12e8}], 0x2, &(0x7f00000017c0)=[@rights={{0x18, 0x1, 0x1, [r8, r1]}}, @rights={{0x34, 0x1, 0x1, [r7, r3, r6, r2, r7, r5, r1, r0, r0]}}], 0x50, 0x20000004}, 0x404c400)
sendmsg$NFT_BATCH(r1, &(0x7f0000002f00)={&(0x7f0000001880)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000002ec0)={&(0x7f00000018c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x5, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELSETELEM={0x1504, 0xe, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14c4, 0x3, 0x0, 0x1, [{0x164, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0x9e, 0x6, 0x1, 0x0, "4fe9b5e049a7bd0216d70ca024ff80b75b2da8546326a6a47cc911b5234729886156dcd6c172cfb7ae955da6882bc251f07a5eb0f5b75765eab9ccb1532f8de31905fd0a874c4ddd6f3fcfec4e31fb33e8abe4aebaa28750e6ad445f133a605bce67aa8630a1c9117ae2ebac1106d9865bd1064f0c2a146ededc465e60cf6cf1971bc5c40cc51d682cb01dcc0ec06e05dbc01b0e514ba0655406"}, @NFTA_SET_ELEM_EXPRESSIONS={0x20, 0xb, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x2}]}}}]}, @NFTA_SET_ELEM_USERDATA={0x9d, 0x6, 0x1, 0x0, "15b6ec7f0a1aff8e76d62c89e8669084e3754a5cb7650107ed649d5dc8302e574f36d33c04f549ff58ce632d001a9053f7fe3ecb4c2a9d616e05de35611d505340b8663e22ee5b16d9ed24a731c1b3dc7768d3efd4511a9cc7ed10b6467972a0ebccbc7710507aa00273a75d3198d3b2245b41ebdfa7962e7665f2453eae1a3d4473bdeda59e318a0739c5f018765bc4bc1ba05e4b15efe2a1"}]}, {0x135c, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_USERDATA={0xdb, 0x6, 0x1, 0x0, "43ba1dcbb93511184a5302bd7e24a6e28e2de0bb77226eeb5520bb91a705f07d8c5af25946a0b2f59674b2e1891a0616940fc7f910393faab2ee480bf5dab83aba98f92c0aea4f3a96499cb83a845745da44d6284d46f3ac271fd1c962013059ab908120c0e4de368a627d7ee4ba56c0be0e02d918b35131d6454b5f705c6cb3c35bfc515fe0086595bda4e47b19329f52c53aa473d1bb2f77ab427783c9779b79f431cdb3f26b1cebf08b5abe09767005ec05a24f946c0fed0b6e2f6826f2fbcecdb35afe6e69f139fc5385d37561308eaf13bfbf648d"}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_KEY={0x10f8, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x26, 0x1, "8e3aecb1cf9a78117fde88a8090ff879908eddd8ae35cad02c4981eda22fdbb17419"}, @NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x8b, 0x1, "1c1af2bd345a26d5eb23667da8e6ac729f21448efbcb74e4b31441ef5d58ef0f0427090b7ddb68dbb6b57c96d12cebf94c1566a8dbdeb4274758d9d3c7e6ddd1ba5e8763176e31cb718e84770aa3aa816eba9c147e4c1705f041296d4cf2dc1f9377b9fe17854cdd0dc8daf5021837f62722f3d8a010ab88808b057b7b787b1d54757d9052a4b3"}, @NFTA_DATA_VALUE={0x1004, 0x1, "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"}]}, @NFTA_SET_ELEM_KEY={0x16c, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x28, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VALUE={0xf, 0x1, "afc6411f1afcf317a64435"}, @NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}]}, @NFTA_DATA_VALUE={0xe9, 0x1, "ee7ab307f88142c619899640af57d583a4c1aec16bc24b917893ae4564ab82dac56b3b83958245279203a422dea7d482874451900df02ecd8ee3426171f5056d6c9d1344000a2e3f4aab0d69e441aac840c172cbde11cf008924a526630084c34db7cfebbafcbcba86aaa68a4b5c7ed308a788237cc86bd96ed9fd7c7eb1b2ebf728915c4d4daa1d467bb1a1d5a6a0b38e8c0a32cf47275dd11444aa660c4f227854d595c5ae4c6097e6abcb82ad30880f8b0a526b35c5bab1af862201a284cc0cf6eca793d5232a2633c5717faf963f13fa65cb4743e07715250e2da906f914a73e134a98"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}]}, @NFTA_SET_ELEM_DATA={0x10, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}]}]}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x5c, 0x16, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x6}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x4}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_FLOWTABLE_HANDLE={0xc, 0x5, 0x1, 0x0, 0x2}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}, @NFT_MSG_DELCHAIN={0x24, 0x5, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}, @NFTA_CHAIN_ID={0x8, 0xb, 0x1, 0x0, 0x3}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x15ec}, 0x1, 0x0, 0x0, 0x4004810}, 0x4844)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$AUTOFS_IOC_SETTIMEOUT(r2, 0x80049367, &(0x7f0000002f40)=0x180000000000)
getsockname$packet(r3, &(0x7f0000002f80)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000002fc0)=0x14)
bind$can_j1939(r6, &(0x7f0000003000)={0x1d, r9, 0x1, {0x2}, 0xfe}, 0x18)
socket$inet(0x2, 0x0, 0x4)
setsockopt$inet6_udp_encap(r4, 0x11, 0x64, &(0x7f0000003040)=0x1, 0x4)
setsockopt$bt_BT_SECURITY(r4, 0x112, 0x4, &(0x7f0000003080)={0x94}, 0x2)
sendmsg$MPTCP_PM_CMD_REMOVE(r6, &(0x7f0000003180)={&(0x7f00000030c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000003140)={&(0x7f0000003100)={0x20, 0x0, 0x400, 0x70bd2a, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_ADDR_REMOTE={0x4}, @MPTCP_PM_ATTR_LOC_ID={0x5, 0x5, 0x9}]}, 0x20}, 0x1, 0x0, 0x0, 0x44804}, 0x4008804)
r10 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$F2FS_IOC_SET_COMPRESS_OPTION(r10, 0x4002f516, &(0x7f00000031c0)={0x4, 0xd})
r11 = syz_genetlink_get_family_id$team(&(0x7f0000003240), r4)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000003280)={'team0\x00', <r12=>0x0})
ioctl$ifreq_SIOCGIFINDEX_team(r8, 0x8933, &(0x7f00000032c0)={'team0\x00', <r13=>0x0})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r6, 0x89f2, &(0x7f0000003340)={'sit0\x00', &(0x7f0000003300)={'syztnl0\x00', <r14=>r9, 0x7800, 0x8, 0xfaa9, 0x7, {{0x6, 0x4, 0x1, 0x5, 0x18, 0x66, 0x0, 0x10, 0x2f, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@end]}}}}})
sendmsg$TEAM_CMD_PORT_LIST_GET(r6, &(0x7f0000003b80)={&(0x7f0000003200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000003b40)={&(0x7f0000003380)={0x7b0, r11, 0x800, 0x70bd29, 0x25dfdbfc, {}, [{{0x8, 0x1, r9}, {0x25c, 0x2, 0x0, 0x1, [{0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x2}}}, {0x40, 0x1, @queue_id={{{0x24}, {0x5}, {0x8, 0x4, 0xbd}}, {0x8, 0x6, r9}}}, {0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r12}}}, {0x3c, 0x1, @name={{0x24}, {0x5}, {0xb, 0x4, 'random\x00'}}}, {0x40, 0x1, @lb_port_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x3}}, {0x8, 0x6, r9}}}, {0x7c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x4c, 0x4, [{0x200, 0x2, 0x1, 0x6}, {0x10, 0x6, 0x5, 0x1}, {0x7, 0x7, 0x5, 0x80000000}, {0x2, 0x3, 0x5, 0xffffff81}, {0x5, 0x5, 0xe, 0x2}, {0xb, 0x7, 0x0, 0x5}, {0x3, 0x7, 0x3, 0xfff}, {0x1, 0x7, 0xc7, 0x3}, {0x20c, 0x0, 0x8}]}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0xdde}}}]}}, {{0x8, 0x1, r9}, {0x50, 0x2, 0x0, 0x1, [{0x4c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x1c, 0x4, [{0x1, 0x3, 0xd5, 0x5c2}, {0xf6, 0x0, 0x8, 0x20004000}, {0x800, 0x0, 0x1, 0x2}]}}}]}}, {{0x8, 0x1, r13}, {0x8c, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}]}}, {{0x8, 0x1, r9}, {0x20c, 0x2, 0x0, 0x1, [{0x4c, 0x1, @lb_tx_method={{0x24}, {0x5}, {0x19, 0x4, 'hash_to_port_mapping\x00'}}}, {0x38, 0x1, @notify_peers_count={{0x24}, {0x5}, {0x8, 0x4, 0xffffffff}}}, {0x5c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0x2c, 0x4, [{0x2d4, 0x8, 0x3, 0x80}, {0xe, 0xa, 0x7, 0x3}, {0xa, 0x98, 0x7, 0x1}, {0x1, 0xd, 0xa, 0x1856}, {0x4, 0xb, 0x6, 0x1}]}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0x9}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24}, {0x5}, {0x8, 0x4, 0x7fffffff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x200}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0x13c, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0x7}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r14}}, {0x8}}}, {0x3c, 0x1, @bpf_hash_func={{0x24}, {0x5}, {0xc, 0x4, [{0xc233, 0x5, 0x4, 0x6bf9}]}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r9}}}, {0x40, 0x1, @lb_hash_stats={{{0x24}, {0x5}, {0x8, 0x4, 0xa}}, {0x8}}}]}}, {{0x8, 0x1, r9}, {0xec, 0x2, 0x0, 0x1, [{0x38, 0x1, @notify_peers_interval={{0x24}, {0x5}, {0x8, 0x4, 0x80000001}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24}, {0x5}, {0x8, 0x4, r9}}, {0x8}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24}, {0x5}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @activeport={{0x24}, {0x5}, {0x8, 0x4, r9}}}]}}]}, 0x7b0}, 0x1, 0x0, 0x0, 0x4008081}, 0x20000001)
ioctl$sock_SIOCGSKNS(r0, 0x894c, &(0x7f0000003bc0)=0xc7)

2.309773731s ago: executing program 1 (id=3190):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0)
getsockopt$sock_buf(0xffffffffffffffff, 0x1, 0x37, &(0x7f00000017c0)=""/4096, &(0x7f0000000000)=0x1000)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
unshare(0x20400)
r1 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r1, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r2 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x11)
sendmsg$netlink(r2, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f00000008c0)=ANY=[@ANYBLOB="e00000001000090500000000000000000800000000000000c500008008000000", @ANYRES32=0x0, @ANYBLOB="110000003a5d5db2542b5b5e265c5c4000000000d52791db233d0896402d1267b86ac517a485a23d0c3da32ce8f9b19fe043d3a672b0601c63c4f9c0bf2dc42c770625ac000000000000baa0de269676787c764635889ca6c747973691886e2c92540eed6d8ba6c451bf6e1d4cdc30726ae5a7f3a3d9fc406dbc9c8d216ac9ae9b81cb1baa6d1e6e2f8dd400c916908e496e03feb756cdbc348afc03a961da8975d58b1e97d5e66c11404751fc6a7d0664394eea973826"], 0xe0}], 0x1}, 0x0)

2.122148675s ago: executing program 3 (id=3191):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) (async)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41) (async)
sendmsg$inet(r4, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001580)=[{&(0x7f0000000280)="db", 0x1}], 0x1}, 0x41)
recvmsg(r3, &(0x7f0000000840)={0x0, 0x0, 0x0}, 0x10001)
sendmsg$inet(r4, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="04", 0x1}], 0x1}, 0x41)
recvmsg(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x2) (async)
recvmsg(r3, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x2)
sendmmsg(r0, &(0x7f0000003d40)=[{{&(0x7f0000000540)=@vsock={0x28, 0x0, 0xffffffff, @local}, 0x80, &(0x7f00000008c0)=[{&(0x7f0000000880)="8bdd5e8f2112cc0000d5e1058deb201b9036aed9d0b50f38fe87148f104232bf9c", 0x21}], 0x1, &(0x7f0000000d40)=[{0xb8, 0x103, 0xa86, "a1bfebf8355980ac3de777e3e61623cb99dc98db32b16be5fa7c0eff534e67149951139d3ce6ba3f7399b4d6cb06ede8fa651199b7293fe4f0d88b7655d4f2c4e3f93fc3ab8e28b316f21b59c68936a79dc666bb6ae823776a5b5c2330f74463a6d2005ffe8523e19f8b925560d2b137f8d79d011224948082f89de61c1e98cc972a317c73748b29f1f7a81d242784ce2a23c1479cb24725ce6038c5e5a86e9b143c"}, {0x10, 0x104, 0x2}, {0xd8, 0x0, 0x8, "eae06714536f9c39bd8c9f636af1f39ce0fad8d3e19cd2b11d227a96d42c9df94a64eb768bbd16d3ee832c9f23381c60cb5b7c7b363c62ef5c80b114ff09c966f861b9885c0a0f8dcc613c07fbae9224d60fc3405d3ed6ca4395c1b127b10d704001867718220f2b985b91cd263775841b3c0f228e009c60b20f1f0ed70e54d130413335d7bef9fe40db242ec06b201a405524858aff5483a0a1e719fce0d285580df7035117af05a887b4c4216e30b2af3d85835344d6426f623df11a0b7909e62f4fb6"}, {0xf8, 0x10a, 0x6, "2439c2a803b77403ae5b16c9fb4948186931edc54bce3bd8eb50865a53808eb53a6792a902b812dc0fcde3a72b4132759af3c88355b32f2179cca9752b584ef67abe0645a463e6577a60bb53280bd04a270d31c009782401b06cc850f99b5b203f9eb6ac5f1cd3b86f4583ee05940e6d9b9e80c19e0eda3a4249d2a0a6403045c39fa28870a046a6010f171a2be250556454b704948f99a379ba2d6171cda6b69d4ae15300c623274de88abae66e2bb55987501b3de403938e8881cda055bcb0de09e1683fba4967ce3b30ff785fa2ee73345cc8b76f090a121897754389d9e8d808df"}, {0x68, 0x10c, 0x0, "4da0ba4a62631b22800062432991d776d6422da8b5efa06fc35019325c2f9edd1b8d917cdb62018df390007a042f098ede4387dc14bf167961c05732b1d9bc02f146f570a54fb5206d146fff40c4280ad21332"}, {0xf0, 0x117, 0x8, "9e5bac232febf78ce39ac6265b843e967e5320bf3601c69a81bde9fb6fcd1ed5944c1e24bf1c67db50fdd12d7c0c7d55edf2891ad02900a670269b0f9a096e7a6e73120dc44109ad800a9cc40fe2e0bf9cb77e95d343f2444f90d7752b6c5596dda8f746f943afe8aeccca8c843afa3b6bb65909a6481625e3cc9673216683ea0833e19f5f8517d76b9bf19cc458f49b9d6d06730d35124943200815addfd556ad59266b3ae659180a6550d257faf493f1ac987985153e659f723db1809cc2f539b0e54ee496fed9f622d546814917723754cd9d86aeacbc30"}], 0x3f0}}, {{&(0x7f0000000900)=@tipc=@nameseq={0x1e, 0x1, 0x1, {0x43, 0x0, 0x4}}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000980)="3974b1ebb16fa2021924dd8c3bbbc8c8a1ca51d0ea28cebf832c065324ba35e6523a2a0ae05560799d68d89f33b35fcc8b25d35a1da42fe8ccadd9f984f98553b6e40a8cd961fc1933bc906b1dc82ac5daca3013d518f099cb60043eff0ff3246d831c8a439b12c5c34edffa5123055808fc77dcd91de6d743536638e266940ee99d44f37f7d29704a687742e697e681db71ae63af558bae7311e52325ba60dc3b3742c6680cb6c84f57c9718aca4ed8afa2b8269a03b71f26cc21d8313b6c0a2c74f9a4e37e4ed81bc42fde9d8f81dc5741440f24", 0xd5}, {&(0x7f0000000a80)="06a1fec3a0e04136dd1fae4f854872afb46f8cfae30984e8f7902205fd1b8fe8a0fd72961eec0dddec0494740577a58cdc21deaad90b3b05553ad6f514434619d85b5286412b5c378bf2e3842c1ac6acda11be832f87bcc3dae23aa40e105eee58e0f0b4b4f3c9d82e4b7c050bf76132d913a24a9ed3afa5c0ca5309cc9e8907eb47ee650496b48fbb198ca7ec74739dbcfb4cfccbe3aab94bc9075a21c2ef3285f950a694d2e1ee5378c995b16d6905fc0270cd143364663b66a9c2486d70b38b1b9178e956bd8290757b1cde1dc89dbc3752eed0a5c4fca1", 0xd9}, {&(0x7f0000000b80)="8505c3345e239bbbb6d95b264ddb0e0dbc78abaf652010d1c0df083697b0aef3e04e34", 0x23}, {&(0x7f0000002780)="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", 0x1000}], 0x4, &(0x7f0000001140)=[{0x70, 0x0, 0x8000, "a5232b59b44f3f7367ee0f0c313ef69a33f5eb56766b67a0692159394f959989474bbfcf66c5e5a167abf5e1cb63d4792b2a9c83195da46d8561eb21c0e4caf85c263454b9fe4aeede107e254b6ac3fcb63da8d46e1bcb339c436e452c8b9622"}, {0xd8, 0x115, 0x600, "8db28818996c61a48d70889d66ec0e060a013fdf41e1df280adc2002cca23b566b88807a033e165791b0e0a52cbbc0262847f3758fb57916d2a9d6d5b26494a41cb1bda0d0f013df932b77c89abf52d2db76f633a156546f9b66591b35c57fbc9866f39f8ba063b412a1292585a37a6a895bdb0f3302537e51bb4fc7d16880a0cd91980d6d9c25397cb3cc58efedd3996cb48ed23c9164f48bccddf1a74734955496f75b1e1bf4419714d1d3544555ba4d4f66338601567dbb09da4d20b813b844c04a0c08"}, {0x58, 0x3, 0xdd, "9b86d7d09aa9a81989226c41ed05b3f906066611e1e8e23f98ebb5dd5e5d36d118f5f52f490814f3e5d104c71f803ce0919faa4f3405839629ea74a6c8f428827462b20e942b"}, {0x48, 0x110, 0x84, "4a43e250ed736a98049869589e3125ddd41aa139a3f904e5a38c3352f4406eefaef5bfebf6bb0c0b7ccd79bd8ec9eb78ab8afb16"}, {0x98, 0x108, 0x4, "509bb8db21961b74b53db7c83b3611c87aa41d33980d56383369d7d15cc465d0621dace8597d682f2315064cb99e9214246479e16b903611f8aec9cd7f9b3313805288b637bb2c1b0083caa6e00f061510c3da58005c8170ffd6cdb34bfee2c53532dfa034b602ac9430f1e0fba8f79ea1d5dcd723393c823b9308d04f23c51caa8f2305c2e06f"}], 0x280}}, {{&(0x7f00000013c0)=@pppoe={0x18, 0x0, {0x3, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'macsec0\x00'}}, 0x80, &(0x7f0000000c40)=[{&(0x7f0000001440)="b4d4a238b85f17888258aa8c6e195086eee701c53307554416d0e66ba2159e434b0e8627e1e814f9b5ebf516d1fcf8f8873f67b295125bc1079c5737664e42403dc6b9fd59791789e6662e8f271384b3ee2bb5035fc55e8768dcbc48be939566e61f33565b0149f0e725e1cab525db9b10450b912dbcbaa7c3d172df3ebd31cb7a4c695a2b85c26054cd7c617b5d4c61123e7ba20bf4819bbd110d4bd5d2a71da9b272a850db417c2ae209ec6fa5fc6ed5efa3afe7aca3ecfd3be8b3667769328172ba27b2ed00de", 0xc8}, {&(0x7f0000001640)="fa5bb1dde74e526116f081a6729c36a37a26c9ff4e98cd301b54a135c6110cd6efef22db0de188b9a8766d14ad091505c539e022ae893bfb994d4b41aa6642d36e85985231ca0b515e4292ac37419510ee4db92558aebdca6d25588e0f6e267f33880f77437392a90cfeb282bea2cf74188313eafeab80456e19a7f343a4463443ec43ada0770edeaff288c2209dd94c0093ee3205efcfbd54adaffa640aff06a6bd655c898f689396096995740134fe829c7958600479ec40dc709e0b94373b0ae4d626896aac72462e4626fc034dd2620507909f5553ac6a5000b36c91791d19c8a34b64ac739dea53dad7", 0xec}], 0x2}}, {{0x0, 0x0, &(0x7f0000003b80)=[{&(0x7f0000003780)="d463515d403e67c2cd3a0771f1256b2eb2a04449ed5f44e6850d34dc0b56d12c0ea14c1eb47fc2d8da23dbcc5ab88073829ee0adf29495360cc6fd220584b8bca17741f4090c302da4d0d92415898fdfc131b59e4cbe74a54c9e2bd742a93c39e451148f40833de2c6623aed2a41e02db5ce504d5e9f4afc7cc84cf061123c595f9b088f3c392f0474632d13725ddf138031b8adb9bfdd6fc7e15dc47c6662970c62741a47970e091145784766bb19e47521ecf195f05b03f41035f06aa8bc5ba9a8971590757e1e63", 0xc9}, {&(0x7f0000003880)="4acf7f9571df9f6c2c82523832a6a7ec6ea2592617645024a9cbc046cf0c6232dcf97589ba7fcb0a560c30af871c494ec2dcad5d0a3183dfcaf9ec9dcabf7e3ab44c13c464e5a95def6efb226a910b795130e29cfa2cecada318e40746d9dab13d86b31d8d20dfc7c1c07344739835e8172f8a27902c5052554270d6b337a8060f7529b52b7766e4a4f0b8d419a20cc2d87b00f91242a470c6feab7483f07518d29e5b192032a475a63004e3556398dd67500adf7b4e9b8068b34080c28dd522df503518664123c238b3a644b17e7833d8ab3e01c1096cb347070a1e192e23313302ffb5c8d66dc5788929bb4152db8835b3743f3d24de", 0xf7}, {&(0x7f0000003980)="49ea126236b424f2b8349f1c3a41218e2801dd051bd40fcde26a931c60e4db4629467cd6eddc2f5ae606c78f732fd39c5483666ce6af3270e8a88faa4e895f03bc2a13911b4ff57f4209e6999a1775d4628211ccf37cbd50c56c24695e969eccdf992dffc847843507092664d85ff4d25f0b034a27ac13428d44bde2738c3212c027b105115301dfd3d58b3c9fee3da91d472f0b213ff4f83efe197dd4a7230bb3850e2013fee743aab299568b91cf0be43182b8cc806ea3cb69", 0xba}, {&(0x7f0000003a40)="58f46908de06302ff395e7c48d7d5bfb8e14fdea4d46bfb0dba6980dd68fa7352cce68e04a158ba28dbc688bff3376a8b872bcac56bd450666da6f3ce306dc66ad48b56cef1d7b4005ca15e1290d8d713d", 0x51}, {&(0x7f0000003ac0)="c6b35e5397c7614b18cfa8ab767a50939c640b198d32efe1639b4bca1aa3b8b5f127d99b6a4391f2f3683ba9bac6e2a665c8deb34d6a4c545eca7b9be37abb06b13a498286f8b2dbebb27eae2a8df4f3c6ce72c43d4c3de5374bc4d58b18f0041140d5eb36eade5c1e6d7788812ab4182e17667c03a689cc47c388edc99962c14844fa54d330af3cdd070f1c69e72946e807ad46d68c08bca3e3c2dbc3161e2d1e161a9a642ecae0a4df86042faab4122b0b5d6a0a06", 0xb6}], 0x5, &(0x7f0000003c00)=[{0x50, 0x10a, 0x8, "1946221f0f55b9cdae51d185d49e84eec5bf50d04e384df68bda1d863df9ec214d7b09bd619d41d8e76eb71e313046325dd80435895c16aa520cdd4d"}, {0x70, 0x109, 0x7, "77a90ddaf197287853888033e7fc7ab259f26ae32a2095441adc3ef13971f1a26c08ff1121aed7cf1f4b0ace6d4247bacad6002144f09de7b8a367e900de8b9282a833f99dc3a6191370fda778b1e67b07ecc0cfb9b5f5d0cce946d4"}, {0x58, 0x1, 0x3, "3780e72db11b91d0e523aee1a65b1e7f377e9bfe15ae748f325bf211114ccd558cd5da604a495372b92376a127923d4aac58b4fa2a03265274e10c4258798ff5b8"}], 0x118}}], 0x4, 0x20000000)
recvmsg$unix(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x61)
sendmsg$inet(r4, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f0000000380)="fb", 0x1}], 0x1, &(0x7f0000000c80)=ANY=[@ANYBLOB='X'], 0x58}, 0x8080)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
syz_emit_ethernet(0x42, &(0x7f00000000c0)={@multicast, @random="07a24f79ee3f", @void, {@ipv6={0x86dd, @udp={0x0, 0x6, ' \x00', 0xc, 0x2f, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, @mcast2, {[], {0x0, 0x883e, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000ffdbdf254f00000008000300", @ANYRES32=r5, @ANYBLOB="38007a8014000200541098da66df85273bdd500c00030000aded7c805c81076306e87e6c2a693414000100bcb9f10193877a0600fdffc9cc3b2e6b00000000005539b3d889e2dd447662d52390c1760b739bc678b8bf0bc5d5eb38c20b0e"], 0x54}, 0x1, 0x0, 0x0, 0xc5149aae0af4b1cf}, 0x40)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="8004", @ANYRES16=r1, @ANYBLOB="000428bd7000ffdbdf254f00000038007a8014000200103d0283817a7d4ecaf6d0f7b00d6dda0c00030069d6f58567b8412614000200989bccafd86194c867faa36a74f6063010007a800c0003004cffc7d3f7b5fb5648007a8024000100b6b0974246da6849b06eebf1baa365e8aa5d38616b91bf82025623573fec24d014000100ecd192bc609e7ea5a15fe8ffc4e743600c0003005cc90da7b742da80"], 0xa4}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x9, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000059ffffff000000000300000079104000000000009500000000000000"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) (async)
r6 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
socket$inet_icmp(0x2, 0x2, 0x1) (async)
r7 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmsg(r0, &(0x7f00000004c0)={&(0x7f00000002c0)=@pppol2tpv3={0x18, 0x1, {0x0, r7, {0x2, 0x4e22, @multicast2}, 0x4, 0x2, 0x2, 0x2}}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000380)="ab568e98b3fb5b13eb4ad40cd9e3282cd4096e4e1f0ac86577125e1c", 0x1c}], 0x1, &(0x7f0000000640)=[{0xc0, 0x111, 0x800, "073119c7709252acefc8ae6a8d7d4e11b498f59e15c2160647c3426c8db7613fb00873d2e2cd7172cba6315342d8691aea6f14816225a223ff68fe9fabee691b7d3ca572353bfaf220c0711b765225befccae3105a1637fbbdc49c3d5af649e35757fc108d6e9b5302fbfb88b189c4d32edb983479bd9b92d4ab48a74f85e32ef8cf2f323ebe2d41f4f47f30092b844488dfefc68b1415a04caa422a3845a55cd0786be13e1779f720"}, {0x90, 0x6, 0x417c, "975abdd1a949af7b366680eace9490f96ed31b8c28aca9505e82fafdbc1f0a485f731ff6cefb80b8fbf3534a30d1addc850f4d8548cc2cf76be528b3b4757baa5a9e98eb3f0a5db6a8051f51b2bcd0a6c27403be93054c7a974a5f49690f1e41d871ba08a69efb46a50f7cf7294b132738fcd946956269da9d00bde94e"}, {0xb0, 0x110, 0x8, "60dcda7be64c3245acb664a6098731ca9283bc04965b954e7648ea4c9cc196de23f381b6be30addcb17b813f007152d64212e6f3a769352bfbbf8a17a54b0d5071ed0eaf951ec183d397615ed93478840e55b0ee9c763d06b6dc8ff6ae425bc3fbd2030bc481959b6c6ddf351995df0e9f5120139a1632d721c54b1301bd61fa315d2cb12eb00082676f4a638220f542925f0305e6e244258e1c45ba"}], 0x200}, 0x40400c0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r8}, 0x0, &(0x7f0000000040)}, 0x20) (async)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r8, <r9=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r9, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_int(r10, 0x6, 0x29, 0x0, &(0x7f0000000240))
sendmsg$802154_raw(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)="59cd2b9a0b0077f682073015fe02000000000000008e6e49aa07c3", 0x1b}}, 0x24048016) (async)
sendmsg$802154_raw(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)="59cd2b9a0b0077f682073015fe02000000000000008e6e49aa07c3", 0x1b}}, 0x24048016)

1.85648834s ago: executing program 0 (id=3192):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200087f9, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000002f40)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000940)}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde05e23919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b0a175baf38c1eb4572c8b372a404144c", 0x3d}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f", 0x20}, {&(0x7f0000000740)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa8", 0xea}, {&(0x7f0000000200)="0010", 0x2}], 0x5}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000002340)="b1f56ee29c433328d3b2a83bd96e37007087acae7568edff43edfe6d767701226ab5ab467cf8eadd1c01000cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b109000000f2cf46c257d6a195", 0x63}], 0x1}}, {{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000640)="10e69bc7bad1d0948681fdb47bf4cdc9eef7a1d4d4b162d43f0b83a323eec14458f8", 0x22}, {&(0x7f0000000540)="abf5e7be9bef2ef050da71dcbb6d5c0304", 0x11}, {&(0x7f0000000d40)="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", 0x135}], 0x3}}], 0x3, 0xc0)

1.806672121s ago: executing program 1 (id=3193):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'ipvlan0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x1c, r3, 0x209, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x2}]}, 0x1c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000000)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0xa300}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24008000}, 0x0)

1.715706948s ago: executing program 3 (id=3194):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
socket$inet6(0xa, 0x2, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0)
openat$cgroup_type(r2, &(0x7f0000000040), 0x2, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket$kcm(0x2, 0x200000000000001, 0x106)
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
socket(0x10, 0x80002, 0x0)
socket$rds(0x15, 0x5, 0x0)
r4 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r4, 0x10e, 0xc, &(0x7f0000000180)={0x6}, 0x10)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000001a00010000000000000000001c000000000000000000000014", @ANYRES8=0x0, @ANYRES32=r4], 0x30}}, 0x0)

1.673763196s ago: executing program 0 (id=3195):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e)
r2 = socket$netlink(0x10, 0x3, 0x4)
write(r2, &(0x7f00000000c0)="29000000140005b7ff000051915f95eb01010003a606a40e07fff024bb000000000000000040000000", 0x29)
write$cgroup_int(r0, &(0x7f0000000100), 0x1001)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
pread64(r0, 0x0, 0x0, 0x2)
syz_emit_ethernet(0x6f, &(0x7f0000000180)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x34}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x61, 0x0, 0x0, 0x1, 0x88, 0x0, @empty}, {0x0, 0x1, 0x4d, 0x0, @opaque="48dbea7a3b5317093db165629db9eb33eba9b0897cc754888d08f97964d142c7b3d8cdf66cd1296dc213487249a04811bbfa7c89bc31cc89097b3bddb70c5722b40255912f"}}}}}, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@bridge_delneigh={0x30, 0x1c, 0xcafe28741a3524c9, 0x70bd2b, 0x25dfdbfb, {0x7, 0x0, 0x0, r5, 0x80, 0x1e, 0xa}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, @NDA_FLAGS_EXT={0x8, 0xf, 0x1}]}, 0x30}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)

1.551833541s ago: executing program 1 (id=3196):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4800000000010104070000000000000002000000240001801400018008000100e000000108000200e00000010c0002800500010000000000100005800a"], 0x48}}, 0x0)
syz_emit_ethernet(0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbb00000000000190780a010102ac1414aa05009078e00000024100000000000000fd8800007f000001e0000001440c0001000000004e21000044240001e0000001000000000000000000000000ac141400"/110], 0x0)
r4 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@remote, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}}, {{@in6=@mcast2, 0x0, 0x2b}, 0x0, @in=@empty}}, 0xe8)
r5 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
shutdown(0xffffffffffffffff, 0x1)
setsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x3, &(0x7f0000000040)=0x1, 0x4)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r6, 0x8983, &(0x7f00000002c0)={0x0, 'nicvf0\x00', {0x2}})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x5, 0x70bd2b, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21a8, 0x50001}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x801}, 0x0)

1.48981658s ago: executing program 3 (id=3197):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
bind$bt_l2cap(r1, &(0x7f00000007c0)={0x1f, 0x0, @any, 0x4}, 0xe)
listen(r1, 0xffffffff)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0101000000000000deff2b00000008000300", @ANYRES32=r4, @ANYBLOB="04003400"], 0x20}}, 0x800)

1.417879555s ago: executing program 0 (id=3198):
r0 = socket(0x200000000000011, 0x4000000000080002, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan1\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000d00)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$inet(r0, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x0) (fail_nth: 3)

1.365995064s ago: executing program 2 (id=3107):
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040))
socket$inet_udplite(0x2, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4affeeaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80080002802d00ff0008000200", @ANYRES16=r2, @ANYRES32=r2], 0x44}}, 0x0) (fail_nth: 8)

1.240108204s ago: executing program 0 (id=3199):
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000000180)={<r4=>0x0, 0x7a1}, &(0x7f00000001c0)=0x8)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000280)={r4, @in6={{0xa, 0x4e24, 0x5, @mcast1, 0x89f}}, 0x401, 0x0, 0x5ec1c72e, 0x200, 0xfffffff1}, &(0x7f0000000380)=0x98)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4) (async)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000340)=0x8000, 0x4) (async)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r6=>0x0})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000001780)=0x100000, 0x4) (async)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10) (async)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x10)

1.239179611s ago: executing program 1 (id=3200):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x6, &(0x7f0000000140)={0x81, {{0x29, 0x0, 0x4000000, @local, 0x3}}}, 0x88)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r4}, 0x10)
socket(0x10, 0x803, 0x0)
socket$netlink(0x10, 0x3, 0x10)
pipe(&(0x7f0000000140))
epoll_create1(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_rdma(0x10, 0x3, 0x14)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@getchain={0x20, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0xa}, {}, {0x13}}, [{0x8}, {0x8, 0xb, 0xd9}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x5}, {0x8, 0xb, 0x8ae}, {0x8, 0xb, 0xf4}, {0x8, 0xb, 0x8000}, {0x8, 0xb, 0xe}]}, 0x64}}, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r5, @ANYRES64=0x0, @ANYBLOB="ed"], 0x20)
setsockopt$inet6_tcp_int(r1, 0x6, 0x10, &(0x7f0000000200)=0x5, 0x4)
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000080)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01082cbd7000030000000b00000008000300", @ANYRES32=r3, @ANYBLOB="0c0050800500020000080000"], 0x28}}, 0x0)

759.141786ms ago: executing program 2 (id=3201):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x4e, &(0x7f0000000000)=0x1000002, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @loopback={0x12, 0xa8aaaafffeaaaa1e}, 0x8000}, 0x1c)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
sendmsg$IPCTNL_MSG_CT_GET_UNCONFIRMED(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x7, 0x1, 0x302, 0x0, 0x0, {0x7, 0x0, 0x6}, ["", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x24044000}, 0x0)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0xfffffffc, 0xff, 0x80000000}, 0x1c)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r4}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000300)={0x2c, r6, 0x1, 0x0, 0x0, {0x1c}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}]}, 0x2c}}, 0x4000000)
socket$xdp(0x2c, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @mcast2}, 0x1c)

748.880414ms ago: executing program 3 (id=3202):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
socket$alg(0x26, 0x5, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x7)
r3 = socket$inet6(0xa, 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.sectors\x00', 0x26e1, 0x0)
close(r4)
r5 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r5, &(0x7f0000000040)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0xfffffffc, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c)
shutdown(r5, 0x1)
r6 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000001080)=0x8)
getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r4, 0x84, 0x71, &(0x7f0000000000)={r7, 0x2d72b1b3}, &(0x7f0000000300)=0x8)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000280)={@mcast1, 0x800, 0x0, 0x103, 0x1, 0x0, 0x2}, 0x20)
setsockopt$inet6_int(r3, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x1, 0x4)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x2, r2}, 0x2)
sendmsg$inet6(r3, &(0x7f0000000600)={&(0x7f0000000080)={0xa, 0x4e20, 0x1000000080000, @dev={0xfe, 0x80, '\x00', 0x3f}}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000029000000040000002b00000000000007120000000000000029"], 0x30}, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5", 0x4)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="5486803300e46eb3123c831adb26868197496cfa29035b4aae53b185bea44d50ffe16f7f8e82eb7bdbb18028374c94d7ba1d3ead646e15390334fd73fc7cd337161c3848aca987324a12017a072523e7a23801eb73ed2dfd99377efce2b923705de35079ee4603", @ANYRES16=0x0, @ANYBLOB="100029bd7000ffdbdf250e000000340002800800080006000000060002004e200000080007000800000005000d000100000008000600090000000800080009000100"], 0x48}, 0x1, 0x0, 0x0, 0x40081c4}, 0x44000)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xfffffffffffffe20, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES8=r0, @ANYBLOB="00000000000000002800128009000100626f6e640000000018000280140008"], 0x48}}, 0x0)
sendmmsg$inet(r8, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
r9 = accept4(r1, 0x0, 0x0, 0x80800)
sendmmsg$alg(r9, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x177ffb498171ed1, 0x0)
recvmsg(r9, &(0x7f00000005c0)={0x0, 0x10, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2, 0x0, 0x0, 0xf5000000}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r9, 0x8933, &(0x7f0000000140)={'wlan1\x00'})

721.29576ms ago: executing program 1 (id=3203):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000001e7a64e5"], 0x48) (async)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000001e7a64e5"], 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x6, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r0, @ANYBLOB="0000000000000000c300001f0000000095"], &(0x7f0000000180)='syzkaller\x00', 0x5, 0xd2, &(0x7f00000002c0)=""/210, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)

442.013878ms ago: executing program 2 (id=3204):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f0000000000)={'ah\x00'}, &(0x7f0000000140)=0x1e)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r0)
r2 = socket(0x10, 0x80002, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b24, &(0x7f0000000000)={'wlan0\x00'})
connect$unix(r2, &(0x7f0000000180)=@file={0x1, './file1\x00'}, 0x6e)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DEL_KEY(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRES16=r0, @ANYRES64=r3, @ANYBLOB="0100030000a41d00223dec41af6fed004a32", @ANYRES32=r3, @ANYRES16=r0], 0x34}, 0x1, 0x0, 0x0, 0x48881}, 0x40)

411.724856ms ago: executing program 1 (id=3205):
r0 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc)
socket(0x15, 0x5, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x2e, &(0x7f00000002c0)={0x402, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @local}}}, 0x108)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x808}, 0x20000000)
r2 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r2, 0x84, 0x10, &(0x7f00000001c0)=@assoc_value={0x0, 0x24}, &(0x7f0000000200)=0x8)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket(0x10, 0x3, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000240)=""/130, 0x82}], 0x1}}], 0x1, 0x0, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="4400000010001fff2bbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000098120100240012800b00010062726964676500001400028005002c000600010005002b000200000030f0374fc95ca0ba7e1989497f709b4c2e9c827768a00ab66d75a34ba1ade2ebf5bf1610101dc1e512ad029136", @ANYBLOB, @ANYRESOCT], 0x44}}, 0x4000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x16, &(0x7f0000000880)=@raw=[@cb_func={0x18, 0xf, 0x4, 0x0, 0xfffffffffffffffd}, @ringbuf_query, @tail_call, @btf_id={0x18, 0x2, 0x3, 0x0, 0x5}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x3}, @ringbuf_query, @ldst={0x0, 0x3, 0x0, 0x4, 0x0, 0xffffffffffffffe0, 0x4}, @map_idx={0x18, 0x2, 0x5, 0x0, 0x2}], &(0x7f0000000400)='syzkaller\x00', 0x800, 0xfc, &(0x7f0000000780)=""/252, 0x41000, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000080)=[{0x28, 0x0, 0x4, 0xfffff034}, {0x40, 0x40, 0x0, 0xfffffffe}, {0x6, 0x0, 0x40, 0x1}]}, 0x10)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
r7 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNADD(r7, 0x400442c8, &(0x7f0000000540)=ANY=[@ANYRES32=r6])
ioctl$sock_bt_bnep_BNEPGETCONNLIST(r7, 0x800442d2, &(0x7f0000000440)={0x1, &(0x7f0000000340)=[{0x0, 0x0, 0x0, @remote}]})
setsockopt$inet_sctp_SCTP_MAX_BURST(r5, 0x84, 0x14, &(0x7f0000000140), 0x4)
sendto$inet(r5, &(0x7f0000000080)="8f", 0x1, 0x1, &(0x7f0000000040)={0x2, 0x4e22, @remote}, 0x10)
sendmsg$nl_route(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x400, 0x40000, 0x1, {0x0, 0x0, 0x0, 0x0, 0x30}, [@IFLA_LINK_NETNSID={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x40091}, 0x4004014)
close(r0)

196.954683ms ago: executing program 3 (id=3206):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x9, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000800000000000001030000711027000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x1, 0x0, 0x0, 0x41000, 0x29, '\x00', 0x0, @cgroup_sock=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 3 (id=3207):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = accept4(r0, &(0x7f0000000000)=@nfc_llcp, &(0x7f0000000080)=0x80, 0x800)
sendmsg$IPSET_CMD_TEST(r1, &(0x7f00000001c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, 0xb, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x14}, @IPSET_ATTR_DATA={0x44, 0x7, 0x0, 0x1, [@IPSET_ATTR_IFACE={0x14, 0x17, 'macvtap0\x00'}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010102}}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x71}, @IPSET_ATTR_PACKETS={0xc, 0x19, 0x1, 0x0, 0x800}]}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r2 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000640)={0x68, r2, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}, @WGDEVICE_A_PEERS={0x40, 0x8, 0x0, 0x1, [{0x3c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @broadcast}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}]}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x40000}, 0x20000010)

kernel console output (not intermixed with test programs):

T13826]  __kmalloc_noprof+0xcb/0x4f0
[  358.174027][T13826]  ? tomoyo_encode+0x28b/0x550
[  358.174062][T13826]  tomoyo_encode+0x28b/0x550
[  358.174098][T13826]  tomoyo_realpath_from_path+0x58d/0x5d0
[  358.174132][T13826]  ? tomoyo_domain+0xda/0x130
[  358.174170][T13826]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  358.174195][T13826]  tomoyo_path_number_perm+0x1e8/0x5a0
[  358.174224][T13826]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  358.174271][T13826]  ? __lock_acquire+0xaac/0xd20
[  358.174328][T13826]  ? __fget_files+0x2a/0x420
[  358.174366][T13826]  ? __fget_files+0x3a0/0x420
[  358.174395][T13826]  ? __fget_files+0x2a/0x420
[  358.174432][T13826]  security_file_ioctl+0xcb/0x2d0
[  358.174478][T13826]  __se_sys_ioctl+0x47/0x170
[  358.174508][T13826]  do_syscall_64+0xf6/0x210
[  358.174536][T13826]  ? clear_bhb_loop+0x45/0xa0
[  358.174566][T13826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.174623][T13826] RIP: 0033:0x7f0aa158e969
[  358.174647][T13826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.174668][T13826] RSP: 002b:00007f0aa2400038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  358.174695][T13826] RAX: ffffffffffffffda RBX: 00007f0aa17b5fa0 RCX: 00007f0aa158e969
[  358.174714][T13826] RDX: 0000200000000000 RSI: 00000000800442d2 RDI: 0000000000000004
[  358.174730][T13826] RBP: 00007f0aa2400090 R08: 0000000000000000 R09: 0000000000000000
[  358.174746][T13826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.174768][T13826] R13: 0000000000000000 R14: 00007f0aa17b5fa0 R15: 00007ffd3af06d28
[  358.174808][T13826]  </TASK>
[  358.174934][T13826] ERROR: Out of memory at tomoyo_realpath_from_path.
[  358.494463][T13816] 8021q: adding VLAN 0 to HW filter on device bond3
[  358.512193][T13816] team0: Port device bond3 added
[  358.706358][T13843] __nla_validate_parse: 1 callbacks suppressed
[  358.706382][T13843] netlink: 308 bytes leftover after parsing attributes in process `syz.0.2754'.
[  358.826836][T13848] lo speed is unknown, defaulting to 1000
[  358.883046][T13852] FAULT_INJECTION: forcing a failure.
[  358.883046][T13852] name failslab, interval 1, probability 0, space 0, times 0
[  358.924736][T13852] CPU: 1 UID: 0 PID: 13852 Comm: syz.0.2758 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  358.924779][T13852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  358.924792][T13852] Call Trace:
[  358.924801][T13852]  <TASK>
[  358.924812][T13852]  dump_stack_lvl+0x189/0x250
[  358.924852][T13852]  ? __pfx_dump_stack_lvl+0x10/0x10
[  358.924883][T13852]  ? __pfx__printk+0x10/0x10
[  358.924911][T13852]  ? __pfx___might_resched+0x10/0x10
[  358.924936][T13852]  should_fail_ex+0x414/0x560
[  358.924963][T13852]  should_failslab+0xa8/0x100
[  358.924993][T13852]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  358.925022][T13852]  ? __alloc_skb+0x112/0x2d0
[  358.925052][T13852]  __alloc_skb+0x112/0x2d0
[  358.925081][T13852]  nl80211_tx_mgmt+0x968/0xd50
[  358.925116][T13852]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  358.925142][T13852]  ? __pfx_netdev_run_todo+0x10/0x10
[  358.925176][T13852]  ? __pfx___cfg80211_wdev_from_attrs+0x10/0x10
[  358.925210][T13852]  ? nl80211_pre_doit+0x4f1/0x930
[  358.925249][T13852]  genl_family_rcv_msg_doit+0x212/0x300
[  358.925279][T13852]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  358.925314][T13852]  ? bpf_lsm_capable+0x9/0x20
[  358.925343][T13852]  ? security_capable+0x7e/0x2e0
[  358.925372][T13852]  genl_rcv_msg+0x60e/0x790
[  358.925397][T13852]  ? __pfx_genl_rcv_msg+0x10/0x10
[  358.925414][T13852]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  358.925442][T13852]  ? __pfx_nl80211_tx_mgmt+0x10/0x10
[  358.925465][T13852]  ? __pfx_nl80211_post_doit+0x10/0x10
[  358.925497][T13852]  ? ref_tracker_free+0x63a/0x7d0
[  358.925516][T13852]  ? __copy_skb_header+0xa7/0x550
[  358.925555][T13852]  netlink_rcv_skb+0x219/0x490
[  358.925583][T13852]  ? __pfx_genl_rcv_msg+0x10/0x10
[  358.925604][T13852]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  358.925656][T13852]  ? down_read+0x1ad/0x2e0
[  358.925684][T13852]  genl_rcv+0x28/0x40
[  358.925713][T13852]  netlink_unicast+0x758/0x8d0
[  358.925761][T13852]  netlink_sendmsg+0x805/0xb30
[  358.925799][T13852]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.925830][T13852]  ? aa_sock_msg_perm+0x94/0x160
[  358.925856][T13852]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  358.925879][T13852]  ? __pfx_netlink_sendmsg+0x10/0x10
[  358.925907][T13852]  __sock_sendmsg+0x219/0x270
[  358.925933][T13852]  ____sys_sendmsg+0x505/0x830
[  358.925969][T13852]  ? __pfx_____sys_sendmsg+0x10/0x10
[  358.926008][T13852]  ? import_iovec+0x74/0xa0
[  358.926041][T13852]  ___sys_sendmsg+0x21f/0x2a0
[  358.926072][T13852]  ? __pfx____sys_sendmsg+0x10/0x10
[  358.926143][T13852]  ? __fget_files+0x2a/0x420
[  358.926170][T13852]  ? __fget_files+0x3a0/0x420
[  358.926208][T13852]  __x64_sys_sendmsg+0x19b/0x260
[  358.926241][T13852]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  358.926287][T13852]  ? do_syscall_64+0xba/0x210
[  358.926314][T13852]  do_syscall_64+0xf6/0x210
[  358.926336][T13852]  ? clear_bhb_loop+0x45/0xa0
[  358.926364][T13852]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.926384][T13852] RIP: 0033:0x7f634558e969
[  358.926404][T13852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.926422][T13852] RSP: 002b:00007f6346495038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  358.926444][T13852] RAX: ffffffffffffffda RBX: 00007f63457b5fa0 RCX: 00007f634558e969
[  358.926460][T13852] RDX: 0000000000000010 RSI: 0000200000000240 RDI: 0000000000000003
[  358.926473][T13852] RBP: 00007f6346495090 R08: 0000000000000000 R09: 0000000000000000
[  358.926486][T13852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.926498][T13852] R13: 0000000000000000 R14: 00007f63457b5fa0 R15: 00007ffcb5079bd8
[  358.926533][T13852]  </TASK>
[  358.927395][T13857] netlink: 'syz.1.2756': attribute type 58 has an invalid length.
[  359.370694][T13857] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2756'.
[  359.982599][T13887] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2762'.
[  360.378766][T13894] netlink: 'syz.1.2767': attribute type 12 has an invalid length.
[  360.391975][T13894] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2767'.
[  360.617443][T13903] netlink: 72 bytes leftover after parsing attributes in process `syz.4.2769'.
[  360.851559][T13911] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2770'.
[  361.685147][T13927] sctp: [Deprecated]: syz.3.2776 (pid 13927) Use of int in max_burst socket option deprecated.
[  361.685147][T13927] Use struct sctp_assoc_value instead
[  362.276306][T13938] FAULT_INJECTION: forcing a failure.
[  362.276306][T13938] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  362.308496][T13938] CPU: 1 UID: 0 PID: 13938 Comm: syz.1.2780 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  362.308537][T13938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  362.308551][T13938] Call Trace:
[  362.308559][T13938]  <TASK>
[  362.308569][T13938]  dump_stack_lvl+0x189/0x250
[  362.308605][T13938]  ? __lock_acquire+0xaac/0xd20
[  362.308636][T13938]  ? __pfx_dump_stack_lvl+0x10/0x10
[  362.308666][T13938]  ? __pfx__printk+0x10/0x10
[  362.308687][T13938]  ? __might_fault+0xb0/0x130
[  362.308726][T13938]  should_fail_ex+0x414/0x560
[  362.308753][T13938]  _copy_from_user+0x2d/0xb0
[  362.308782][T13938]  __sys_connect+0x123/0x440
[  362.308808][T13938]  ? do_sys_openat2+0x154/0x1c0
[  362.308839][T13938]  ? __pfx___sys_connect+0x10/0x10
[  362.308887][T13938]  __x64_sys_connect+0x7a/0x90
[  362.308913][T13938]  do_syscall_64+0xf6/0x210
[  362.308936][T13938]  ? clear_bhb_loop+0x45/0xa0
[  362.308962][T13938]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.308981][T13938] RIP: 0033:0x7f7c3cd8e969
[  362.308999][T13938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  362.309017][T13938] RSP: 002b:00007f7c3dc39038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  362.309039][T13938] RAX: ffffffffffffffda RBX: 00007f7c3cfb5fa0 RCX: 00007f7c3cd8e969
[  362.309055][T13938] RDX: 000000000000006e RSI: 000020000057eff8 RDI: 0000000000000003
[  362.309067][T13938] RBP: 00007f7c3dc39090 R08: 0000000000000000 R09: 0000000000000000
[  362.309080][T13938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  362.309093][T13938] R13: 0000000000000000 R14: 00007f7c3cfb5fa0 R15: 00007ffde2a49968
[  362.309126][T13938]  </TASK>
[  362.637581][T13949] syzkaller1: entered promiscuous mode
[  362.656041][T13949] syzkaller1: entered allmulticast mode
[  364.625040][T14000] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2797'.
[  364.924605][T14018] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  365.649138][T14030] xt_connbytes: Forcing CT accounting to be enabled
[  365.668199][T14030] --map-set only usable from mangle table
[  366.331891][T14049] netlink: 'syz.3.2806': attribute type 1 has an invalid length.
[  366.356600][T14051] FAULT_INJECTION: forcing a failure.
[  366.356600][T14051] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.387398][T14053] FAULT_INJECTION: forcing a failure.
[  366.387398][T14053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.388669][T14051] CPU: 1 UID: 0 PID: 14051 Comm: syz.1.2807 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  366.388701][T14051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  366.388715][T14051] Call Trace:
[  366.388725][T14051]  <TASK>
[  366.388735][T14051]  dump_stack_lvl+0x189/0x250
[  366.388773][T14051]  ? __lock_acquire+0xaac/0xd20
[  366.388806][T14051]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.388838][T14051]  ? __pfx__printk+0x10/0x10
[  366.388861][T14051]  ? __might_fault+0xb0/0x130
[  366.388902][T14051]  should_fail_ex+0x414/0x560
[  366.388931][T14051]  _copy_from_iter+0x1db/0x15a0
[  366.388972][T14051]  ? policy_nodemask+0x27c/0x720
[  366.388999][T14051]  ? __pfx__copy_from_iter+0x10/0x10
[  366.389036][T14051]  ? set_page_refcounted+0xa0/0x1e0
[  366.389066][T14051]  ? page_copy_sane+0x4e/0x280
[  366.389095][T14051]  copy_page_from_iter+0x7b/0x100
[  366.389126][T14051]  tun_get_user+0x1b13/0x3c20
[  366.389164][T14051]  ? tun_get_user+0x687/0x3c20
[  366.389212][T14051]  ? __pfx_tun_get_user+0x10/0x10
[  366.389242][T14051]  ? aa_file_perm+0x11f/0xed0
[  366.389267][T14051]  ? aa_file_perm+0x3e7/0xed0
[  366.389307][T14051]  ? ref_tracker_alloc+0x318/0x460
[  366.389335][T14051]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  366.389372][T14051]  ? tun_get+0x1c/0x2f0
[  366.389417][T14051]  ? tun_get+0x1c/0x2f0
[  366.389447][T14051]  ? tun_get+0x1c/0x2f0
[  366.389484][T14051]  tun_chr_write_iter+0x113/0x200
[  366.389518][T14051]  vfs_write+0x548/0xa90
[  366.389549][T14051]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  366.389581][T14051]  ? __pfx_vfs_write+0x10/0x10
[  366.389618][T14051]  ? __fget_files+0x2a/0x420
[  366.389657][T14051]  ksys_write+0x145/0x250
[  366.389681][T14051]  ? rcu_is_watching+0x15/0xb0
[  366.389716][T14051]  ? __pfx_ksys_write+0x10/0x10
[  366.389745][T14051]  ? do_syscall_64+0xba/0x210
[  366.389774][T14051]  do_syscall_64+0xf6/0x210
[  366.389799][T14051]  ? clear_bhb_loop+0x45/0xa0
[  366.389826][T14051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.389847][T14051] RIP: 0033:0x7f7c3cd8d41f
[  366.389868][T14051] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  366.389888][T14051] RSP: 002b:00007f7c3dc39000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  366.389911][T14051] RAX: ffffffffffffffda RBX: 00007f7c3cfb5fa0 RCX: 00007f7c3cd8d41f
[  366.389927][T14051] RDX: 000000000000004e RSI: 0000200000000200 RDI: 00000000000000c8
[  366.389942][T14051] RBP: 00007f7c3dc39090 R08: 0000000000000000 R09: 0000000000000000
[  366.389956][T14051] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[  366.389970][T14051] R13: 0000000000000000 R14: 00007f7c3cfb5fa0 R15: 00007ffde2a49968
[  366.390004][T14051]  </TASK>
[  366.708361][T14053] CPU: 0 UID: 0 PID: 14053 Comm: syz.0.2808 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  366.708394][T14053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  366.708407][T14053] Call Trace:
[  366.708415][T14053]  <TASK>
[  366.708425][T14053]  dump_stack_lvl+0x189/0x250
[  366.708458][T14053]  ? __lock_acquire+0xaac/0xd20
[  366.708488][T14053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.708517][T14053]  ? __pfx__printk+0x10/0x10
[  366.708537][T14053]  ? __might_fault+0xb0/0x130
[  366.708574][T14053]  should_fail_ex+0x414/0x560
[  366.708600][T14053]  _copy_from_user+0x2d/0xb0
[  366.708629][T14053]  ____sys_sendmsg+0x2fe/0x830
[  366.708665][T14053]  ? __pfx_____sys_sendmsg+0x10/0x10
[  366.708704][T14053]  ? import_iovec+0x74/0xa0
[  366.708735][T14053]  ___sys_sendmsg+0x21f/0x2a0
[  366.708767][T14053]  ? __pfx____sys_sendmsg+0x10/0x10
[  366.708830][T14053]  ? __fget_files+0x2a/0x420
[  366.708856][T14053]  ? __fget_files+0x3a0/0x420
[  366.708891][T14053]  __x64_sys_sendmsg+0x19b/0x260
[  366.708923][T14053]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  366.708969][T14053]  ? do_syscall_64+0xba/0x210
[  366.708995][T14053]  do_syscall_64+0xf6/0x210
[  366.709017][T14053]  ? clear_bhb_loop+0x45/0xa0
[  366.709042][T14053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.709062][T14053] RIP: 0033:0x7f634558e969
[  366.709080][T14053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  366.709108][T14053] RSP: 002b:00007f6346495038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  366.709128][T14053] RAX: ffffffffffffffda RBX: 00007f63457b5fa0 RCX: 00007f634558e969
[  366.709143][T14053] RDX: 0000000000000006 RSI: 0000200000000400 RDI: 0000000000000003
[  366.709157][T14053] RBP: 00007f6346495090 R08: 0000000000000000 R09: 0000000000000000
[  366.709170][T14053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.709182][T14053] R13: 0000000000000000 R14: 00007f63457b5fa0 R15: 00007ffcb5079bd8
[  366.709214][T14053]  </TASK>
[  366.731564][T14058] FAULT_INJECTION: forcing a failure.
[  366.731564][T14058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  366.945586][T14058] CPU: 1 UID: 0 PID: 14058 Comm: syz.1.2809 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  366.945619][T14058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  366.945632][T14058] Call Trace:
[  366.945641][T14058]  <TASK>
[  366.945651][T14058]  dump_stack_lvl+0x189/0x250
[  366.945690][T14058]  ? __pfx_dump_stack_lvl+0x10/0x10
[  366.945721][T14058]  ? __pfx__printk+0x10/0x10
[  366.945755][T14058]  should_fail_ex+0x414/0x560
[  366.945782][T14058]  _copy_to_user+0x31/0xb0
[  366.945814][T14058]  simple_read_from_buffer+0xe1/0x170
[  366.945845][T14058]  proc_fail_nth_read+0x1df/0x250
[  366.945879][T14058]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.945912][T14058]  ? rw_verify_area+0x258/0x650
[  366.945934][T14058]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  366.945965][T14058]  vfs_read+0x1fd/0x980
[  366.945993][T14058]  ? __pfx___mutex_lock+0x10/0x10
[  366.946028][T14058]  ? __pfx_vfs_read+0x10/0x10
[  366.946053][T14058]  ? __fget_files+0x2a/0x420
[  366.946084][T14058]  ? __fget_files+0x3a0/0x420
[  366.946109][T14058]  ? __fget_files+0x2a/0x420
[  366.946145][T14058]  ksys_read+0x145/0x250
[  366.946170][T14058]  ? __pfx_ksys_read+0x10/0x10
[  366.946206][T14058]  ? do_syscall_64+0xba/0x210
[  366.946233][T14058]  do_syscall_64+0xf6/0x210
[  366.946256][T14058]  ? clear_bhb_loop+0x45/0xa0
[  366.946280][T14058]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  366.946300][T14058] RIP: 0033:0x7f7c3cd8d37c
[  366.946318][T14058] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  366.946336][T14058] RSP: 002b:00007f7c3dc39030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  366.946358][T14058] RAX: ffffffffffffffda RBX: 00007f7c3cfb5fa0 RCX: 00007f7c3cd8d37c
[  366.946373][T14058] RDX: 000000000000000f RSI: 00007f7c3dc390a0 RDI: 0000000000000004
[  366.946386][T14058] RBP: 00007f7c3dc39090 R08: 0000000000000000 R09: 0000000000000000
[  366.946399][T14058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  366.946412][T14058] R13: 0000000000000000 R14: 00007f7c3cfb5fa0 R15: 00007ffde2a49968
[  366.946445][T14058]  </TASK>
[  367.590173][T14071] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2815'.
[  367.680830][T14076] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2817'.
[  367.711124][T14079] FAULT_INJECTION: forcing a failure.
[  367.711124][T14079] name failslab, interval 1, probability 0, space 0, times 0
[  367.724400][T14079] CPU: 1 UID: 0 PID: 14079 Comm: syz.2.2818 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  367.724431][T14079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  367.724445][T14079] Call Trace:
[  367.724454][T14079]  <TASK>
[  367.724463][T14079]  dump_stack_lvl+0x189/0x250
[  367.724503][T14079]  ? __pfx_dump_stack_lvl+0x10/0x10
[  367.724534][T14079]  ? __pfx__printk+0x10/0x10
[  367.724562][T14079]  ? __pfx___might_resched+0x10/0x10
[  367.724581][T14079]  ? fs_reclaim_acquire+0x7d/0x100
[  367.724618][T14079]  should_fail_ex+0x414/0x560
[  367.724646][T14079]  should_failslab+0xa8/0x100
[  367.724676][T14079]  __kmalloc_noprof+0xcb/0x4f0
[  367.724700][T14079]  ? kfree+0x4d/0x440
[  367.724721][T14079]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  367.724754][T14079]  tomoyo_realpath_from_path+0xe3/0x5d0
[  367.724782][T14079]  ? tomoyo_domain+0xda/0x130
[  367.724815][T14079]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  367.724837][T14079]  tomoyo_path_number_perm+0x1e8/0x5a0
[  367.724861][T14079]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  367.724902][T14079]  ? __lock_acquire+0xaac/0xd20
[  367.724953][T14079]  ? __fget_files+0x2a/0x420
[  367.724986][T14079]  ? __fget_files+0x3a0/0x420
[  367.725019][T14079]  ? __fget_files+0x2a/0x420
[  367.725051][T14079]  security_file_ioctl+0xcb/0x2d0
[  367.725085][T14079]  __se_sys_ioctl+0x47/0x170
[  367.725111][T14079]  do_syscall_64+0xf6/0x210
[  367.725135][T14079]  ? clear_bhb_loop+0x45/0xa0
[  367.725162][T14079]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  367.725182][T14079] RIP: 0033:0x7ff07738e969
[  367.725201][T14079] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  367.725225][T14079] RSP: 002b:00007ff0781ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  367.725247][T14079] RAX: ffffffffffffffda RBX: 00007ff0775b5fa0 RCX: 00007ff07738e969
[  367.725263][T14079] RDX: 0000200000000080 RSI: 0000000000008982 RDI: 0000000000000004
[  367.725278][T14079] RBP: 00007ff0781ba090 R08: 0000000000000000 R09: 0000000000000000
[  367.725292][T14079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  367.725304][T14079] R13: 0000000000000000 R14: 00007ff0775b5fa0 R15: 00007fff21bfa998
[  367.725339][T14079]  </TASK>
[  367.725461][T14079] ERROR: Out of memory at tomoyo_realpath_from_path.
[  368.173846][T14087] FAULT_INJECTION: forcing a failure.
[  368.173846][T14087] name failslab, interval 1, probability 0, space 0, times 0
[  368.213774][T14088] openvswitch: netlink: Message has 8 unknown bytes.
[  368.236251][T14094] FAULT_INJECTION: forcing a failure.
[  368.236251][T14094] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  368.255068][T14087] CPU: 0 UID: 0 PID: 14087 Comm: syz.0.2819 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  368.255100][T14087] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  368.255114][T14087] Call Trace:
[  368.255123][T14087]  <TASK>
[  368.255134][T14087]  dump_stack_lvl+0x189/0x250
[  368.255176][T14087]  ? __pfx_dump_stack_lvl+0x10/0x10
[  368.255206][T14087]  ? __pfx__printk+0x10/0x10
[  368.255243][T14087]  ? __pfx___might_resched+0x10/0x10
[  368.255264][T14087]  ? fs_reclaim_acquire+0x7d/0x100
[  368.255300][T14087]  should_fail_ex+0x414/0x560
[  368.255327][T14087]  should_failslab+0xa8/0x100
[  368.255357][T14087]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  368.255384][T14087]  ? __alloc_skb+0x112/0x2d0
[  368.255417][T14087]  __alloc_skb+0x112/0x2d0
[  368.255447][T14087]  netlink_ack+0x146/0xa50
[  368.255471][T14087]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  368.255501][T14087]  ? ref_tracker_free+0x63a/0x7d0
[  368.255522][T14087]  ? __copy_skb_header+0xa7/0x550
[  368.255562][T14087]  netlink_rcv_skb+0x2a0/0x490
[  368.255589][T14087]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  368.255616][T14087]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  368.255663][T14087]  ? netlink_deliver_tap+0x2e/0x1b0
[  368.255689][T14087]  ? netlink_deliver_tap+0x2e/0x1b0
[  368.255721][T14087]  netlink_unicast+0x758/0x8d0
[  368.255756][T14087]  netlink_sendmsg+0x805/0xb30
[  368.255795][T14087]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.255825][T14087]  ? aa_sock_msg_perm+0x94/0x160
[  368.255850][T14087]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  368.255874][T14087]  ? __pfx_netlink_sendmsg+0x10/0x10
[  368.255902][T14087]  __sock_sendmsg+0x219/0x270
[  368.255927][T14087]  ____sys_sendmsg+0x505/0x830
[  368.255962][T14087]  ? __pfx_____sys_sendmsg+0x10/0x10
[  368.256000][T14087]  ? import_iovec+0x74/0xa0
[  368.256032][T14087]  ___sys_sendmsg+0x21f/0x2a0
[  368.256064][T14087]  ? __pfx____sys_sendmsg+0x10/0x10
[  368.256129][T14087]  ? __fget_files+0x2a/0x420
[  368.256155][T14087]  ? __fget_files+0x3a0/0x420
[  368.256195][T14087]  __x64_sys_sendmsg+0x19b/0x260
[  368.256236][T14087]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  368.256284][T14087]  ? do_syscall_64+0xba/0x210
[  368.256312][T14087]  do_syscall_64+0xf6/0x210
[  368.256336][T14087]  ? clear_bhb_loop+0x45/0xa0
[  368.256387][T14087]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.256407][T14087] RIP: 0033:0x7f634558e969
[  368.256426][T14087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.256444][T14087] RSP: 002b:00007f6346495038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  368.256466][T14087] RAX: ffffffffffffffda RBX: 00007f63457b5fa0 RCX: 00007f634558e969
[  368.256482][T14087] RDX: 0000000000000000 RSI: 0000200000000200 RDI: 0000000000000003
[  368.256495][T14087] RBP: 00007f6346495090 R08: 0000000000000000 R09: 0000000000000000
[  368.256509][T14087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.256521][T14087] R13: 0000000000000000 R14: 00007f63457b5fa0 R15: 00007ffcb5079bd8
[  368.256554][T14087]  </TASK>
[  368.280536][T14094] CPU: 1 UID: 0 PID: 14094 Comm: syz.3.2822 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  368.280572][T14094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  368.280588][T14094] Call Trace:
[  368.280598][T14094]  <TASK>
[  368.280610][T14094]  dump_stack_lvl+0x189/0x250
[  368.280648][T14094]  ? __lock_acquire+0xaac/0xd20
[  368.280684][T14094]  ? __pfx_dump_stack_lvl+0x10/0x10
[  368.280717][T14094]  ? __pfx__printk+0x10/0x10
[  368.280741][T14094]  ? __might_fault+0xb0/0x130
[  368.280785][T14094]  should_fail_ex+0x414/0x560
[  368.280815][T14094]  _copy_from_iter+0x1db/0x15a0
[  368.280856][T14094]  ? policy_nodemask+0x27c/0x720
[  368.280885][T14094]  ? __pfx__copy_from_iter+0x10/0x10
[  368.280921][T14094]  ? set_page_refcounted+0xa0/0x1e0
[  368.280953][T14094]  ? page_copy_sane+0x4e/0x280
[  368.280991][T14094]  copy_page_from_iter+0x7b/0x100
[  368.281024][T14094]  tun_get_user+0x1b13/0x3c20
[  368.281064][T14094]  ? tun_get_user+0x687/0x3c20
[  368.281114][T14094]  ? __pfx_tun_get_user+0x10/0x10
[  368.281145][T14094]  ? aa_file_perm+0x11f/0xed0
[  368.281172][T14094]  ? aa_file_perm+0x3e7/0xed0
[  368.281214][T14094]  ? ref_tracker_alloc+0x318/0x460
[  368.281243][T14094]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  368.281274][T14094]  ? tun_get+0x1c/0x2f0
[  368.281313][T14094]  ? tun_get+0x1c/0x2f0
[  368.281344][T14094]  ? tun_get+0x1c/0x2f0
[  368.281381][T14094]  tun_chr_write_iter+0x113/0x200
[  368.281417][T14094]  vfs_write+0x548/0xa90
[  368.281449][T14094]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  368.281482][T14094]  ? __pfx_vfs_write+0x10/0x10
[  368.281521][T14094]  ? __fget_files+0x2a/0x420
[  368.281563][T14094]  ksys_write+0x145/0x250
[  368.281587][T14094]  ? rcu_is_watching+0x15/0xb0
[  368.281623][T14094]  ? __pfx_ksys_write+0x10/0x10
[  368.281653][T14094]  ? do_syscall_64+0xba/0x210
[  368.281682][T14094]  do_syscall_64+0xf6/0x210
[  368.281706][T14094]  ? clear_bhb_loop+0x45/0xa0
[  368.281735][T14094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.281757][T14094] RIP: 0033:0x7f722998d41f
[  368.281778][T14094] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  368.281811][T14094] RSP: 002b:00007f722a841000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  368.281835][T14094] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998d41f
[  368.281851][T14094] RDX: 0000000000000036 RSI: 0000200000000200 RDI: 00000000000000c8
[  368.281865][T14094] RBP: 00007f722a841090 R08: 0000000000000000 R09: 0000000000000000
[  368.281878][T14094] R10: 0000000000000036 R11: 0000000000000293 R12: 0000000000000001
[  368.281892][T14094] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  368.281926][T14094]  </TASK>
[  369.172519][T14108] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2826'.
[  369.183376][T14110] xt_l2tp: v2 sid > 0xffff: 262144
[  369.224443][T14108] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2826'.
[  370.024211][T14126] FAULT_INJECTION: forcing a failure.
[  370.024211][T14126] name failslab, interval 1, probability 0, space 0, times 0
[  370.057462][T14126] CPU: 1 UID: 0 PID: 14126 Comm: syz.2.2830 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  370.057496][T14126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  370.057511][T14126] Call Trace:
[  370.057520][T14126]  <TASK>
[  370.057530][T14126]  dump_stack_lvl+0x189/0x250
[  370.057571][T14126]  ? __pfx_dump_stack_lvl+0x10/0x10
[  370.057601][T14126]  ? __pfx__printk+0x10/0x10
[  370.057629][T14126]  ? __pfx___might_resched+0x10/0x10
[  370.057648][T14126]  ? fs_reclaim_acquire+0x7d/0x100
[  370.057684][T14126]  should_fail_ex+0x414/0x560
[  370.057726][T14126]  should_failslab+0xa8/0x100
[  370.057756][T14126]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  370.057800][T14126]  ? __alloc_skb+0x112/0x2d0
[  370.057833][T14126]  __alloc_skb+0x112/0x2d0
[  370.057865][T14126]  netlink_ack+0x146/0xa50
[  370.057889][T14126]  ? __pfx_genl_rcv_msg+0x10/0x10
[  370.057908][T14126]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  370.057940][T14126]  ? __pfx_nl80211_post_doit+0x10/0x10
[  370.057975][T14126]  ? ref_tracker_free+0x63a/0x7d0
[  370.057996][T14126]  ? __copy_skb_header+0xa7/0x550
[  370.058033][T14126]  netlink_rcv_skb+0x2a0/0x490
[  370.058060][T14126]  ? __pfx_genl_rcv_msg+0x10/0x10
[  370.058081][T14126]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  370.058130][T14126]  ? down_read+0x1ad/0x2e0
[  370.058156][T14126]  genl_rcv+0x28/0x40
[  370.058186][T14126]  netlink_unicast+0x758/0x8d0
[  370.058223][T14126]  netlink_sendmsg+0x805/0xb30
[  370.058265][T14126]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.058296][T14126]  ? aa_sock_msg_perm+0x94/0x160
[  370.058320][T14126]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  370.058343][T14126]  ? __pfx_netlink_sendmsg+0x10/0x10
[  370.058371][T14126]  __sock_sendmsg+0x219/0x270
[  370.058399][T14126]  ____sys_sendmsg+0x505/0x830
[  370.058433][T14126]  ? __pfx_____sys_sendmsg+0x10/0x10
[  370.058473][T14126]  ? import_iovec+0x74/0xa0
[  370.058505][T14126]  ___sys_sendmsg+0x21f/0x2a0
[  370.058535][T14126]  ? __pfx____sys_sendmsg+0x10/0x10
[  370.058605][T14126]  ? __fget_files+0x2a/0x420
[  370.058631][T14126]  ? __fget_files+0x3a0/0x420
[  370.058670][T14126]  __x64_sys_sendmsg+0x19b/0x260
[  370.058703][T14126]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  370.058752][T14126]  ? do_syscall_64+0xba/0x210
[  370.058790][T14126]  do_syscall_64+0xf6/0x210
[  370.058814][T14126]  ? clear_bhb_loop+0x45/0xa0
[  370.058838][T14126]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.058858][T14126] RIP: 0033:0x7ff07738e969
[  370.058878][T14126] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.058896][T14126] RSP: 002b:00007ff0781ba038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  370.058918][T14126] RAX: ffffffffffffffda RBX: 00007ff0775b5fa0 RCX: 00007ff07738e969
[  370.058933][T14126] RDX: 0000000000008004 RSI: 00002000000001c0 RDI: 0000000000000004
[  370.058946][T14126] RBP: 00007ff0781ba090 R08: 0000000000000000 R09: 0000000000000000
[  370.058959][T14126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.058970][T14126] R13: 0000000000000000 R14: 00007ff0775b5fa0 R15: 00007fff21bfa998
[  370.059003][T14126]  </TASK>
[  370.864781][T14137] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2834'.
[  371.633065][T14139] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  372.255779][T14160] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  372.512410][T14162] macvtap1: entered promiscuous mode
[  372.533557][T14162] macvtap1: entered allmulticast mode
[  372.543419][T14162] hsr0: entered allmulticast mode
[  372.562948][T14162] hsr_slave_0: entered allmulticast mode
[  372.588651][T14162] hsr_slave_1: entered allmulticast mode
[  372.597649][T14165] FAULT_INJECTION: forcing a failure.
[  372.597649][T14165] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  372.647692][T14162] hsr0: left allmulticast mode
[  372.678852][T14162] hsr_slave_0: left allmulticast mode
[  372.686651][T14165] CPU: 0 UID: 0 PID: 14165 Comm: syz.3.2844 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  372.686683][T14165] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  372.686697][T14165] Call Trace:
[  372.686706][T14165]  <TASK>
[  372.686714][T14165]  dump_stack_lvl+0x189/0x250
[  372.686756][T14165]  ? __lock_acquire+0xaac/0xd20
[  372.686786][T14165]  ? __pfx_dump_stack_lvl+0x10/0x10
[  372.686815][T14165]  ? __pfx__printk+0x10/0x10
[  372.686836][T14165]  ? __might_fault+0xb0/0x130
[  372.686874][T14165]  should_fail_ex+0x414/0x560
[  372.686900][T14165]  _copy_from_user+0x2d/0xb0
[  372.686929][T14165]  rds_rdma_extra_size+0x120/0x330
[  372.686956][T14165]  rds_rm_size+0x480/0x730
[  372.686998][T14165]  rds_sendmsg+0xaef/0x1f00
[  372.687039][T14165]  ? __pfx_rds_sendmsg+0x10/0x10
[  372.687062][T14165]  ? aa_sk_perm+0x81e/0x950
[  372.687086][T14165]  ? __pfx_aa_sk_perm+0x10/0x10
[  372.687102][T14165]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  372.687134][T14165]  ? aa_sock_msg_perm+0x94/0x160
[  372.687159][T14165]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  372.687183][T14165]  ? __pfx_rds_sendmsg+0x10/0x10
[  372.687210][T14165]  __sock_sendmsg+0x219/0x270
[  372.687236][T14165]  ____sys_sendmsg+0x505/0x830
[  372.687288][T14165]  ? __pfx_____sys_sendmsg+0x10/0x10
[  372.687327][T14165]  ? import_iovec+0x74/0xa0
[  372.687359][T14165]  ___sys_sendmsg+0x21f/0x2a0
[  372.687390][T14165]  ? __pfx____sys_sendmsg+0x10/0x10
[  372.687455][T14165]  ? __fget_files+0x2a/0x420
[  372.687481][T14165]  ? __fget_files+0x3a0/0x420
[  372.687518][T14165]  __x64_sys_sendmsg+0x19b/0x260
[  372.687550][T14165]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  372.687597][T14165]  ? do_syscall_64+0xba/0x210
[  372.687623][T14165]  do_syscall_64+0xf6/0x210
[  372.687646][T14165]  ? clear_bhb_loop+0x45/0xa0
[  372.687676][T14165]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.687696][T14165] RIP: 0033:0x7f722998e969
[  372.687716][T14165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.687740][T14165] RSP: 002b:00007f722a820038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  372.687763][T14165] RAX: ffffffffffffffda RBX: 00007f7229bb6080 RCX: 00007f722998e969
[  372.687778][T14165] RDX: 0000000000000000 RSI: 0000200000001600 RDI: 0000000000000007
[  372.687791][T14165] RBP: 00007f722a820090 R08: 0000000000000000 R09: 0000000000000000
[  372.687804][T14165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  372.687817][T14165] R13: 0000000000000000 R14: 00007f7229bb6080 R15: 00007fffe2004788
[  372.687849][T14165]  </TASK>
[  372.748524][T14162] hsr_slave_1: left allmulticast mode
[  372.993738][T14173] xt_ecn: cannot match TCP bits for non-tcp packets
[  373.109719][T14167] lo speed is unknown, defaulting to 1000
[  373.205449][T14176] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2848'.
[  373.255969][T14176] netlink: 136 bytes leftover after parsing attributes in process `syz.2.2848'.
[  373.376999][T14184] netlink: 120 bytes leftover after parsing attributes in process `syz.2.2848'.
[  373.599280][T14189] netlink: 'syz.1.2853': attribute type 3 has an invalid length.
[  373.633400][T14189] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.2853'.
[  373.687445][T14194] FAULT_INJECTION: forcing a failure.
[  373.687445][T14194] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  373.733567][T14194] CPU: 0 UID: 0 PID: 14194 Comm: syz.3.2855 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  373.733601][T14194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  373.733616][T14194] Call Trace:
[  373.733625][T14194]  <TASK>
[  373.733635][T14194]  dump_stack_lvl+0x189/0x250
[  373.733670][T14194]  ? __lock_acquire+0xaac/0xd20
[  373.733702][T14194]  ? __pfx_dump_stack_lvl+0x10/0x10
[  373.733733][T14194]  ? __pfx__printk+0x10/0x10
[  373.733754][T14194]  ? __might_fault+0xb0/0x130
[  373.733793][T14194]  should_fail_ex+0x414/0x560
[  373.733820][T14194]  _copy_from_user+0x2d/0xb0
[  373.733849][T14194]  get_timespec64+0x8e/0x1a0
[  373.733876][T14194]  ? __pfx_get_timespec64+0x10/0x10
[  373.733914][T14194]  __x64_sys_recvmmsg+0x143/0x240
[  373.733945][T14194]  ? rcu_is_watching+0x15/0xb0
[  373.733976][T14194]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  373.734011][T14194]  ? do_syscall_64+0xba/0x210
[  373.734037][T14194]  do_syscall_64+0xf6/0x210
[  373.734059][T14194]  ? clear_bhb_loop+0x45/0xa0
[  373.734084][T14194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.734104][T14194] RIP: 0033:0x7f722998e969
[  373.734123][T14194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.734141][T14194] RSP: 002b:00007f722a841038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  373.734162][T14194] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998e969
[  373.734177][T14194] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  373.734192][T14194] RBP: 00007f722a841090 R08: 0000200000003700 R09: 0000000000000000
[  373.734205][T14194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.734217][T14194] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  373.734250][T14194]  </TASK>
[  373.754541][T14196] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2856'.
[  374.184287][T14206] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2860'.
[  374.213443][T14206] openvswitch: netlink: nsh attr 12 is out of range max 3
[  374.260445][T14206] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  374.618030][T14216] netlink: 56 bytes leftover after parsing attributes in process `syz.4.2863'.
[  374.811583][T14220] FAULT_INJECTION: forcing a failure.
[  374.811583][T14220] name failslab, interval 1, probability 0, space 0, times 0
[  374.854743][T14220] CPU: 0 UID: 0 PID: 14220 Comm: syz.4.2864 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  374.854777][T14220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  374.854790][T14220] Call Trace:
[  374.854800][T14220]  <TASK>
[  374.854809][T14220]  dump_stack_lvl+0x189/0x250
[  374.854849][T14220]  ? __pfx_dump_stack_lvl+0x10/0x10
[  374.854879][T14220]  ? __pfx__printk+0x10/0x10
[  374.854903][T14220]  ? __pfx___might_resched+0x10/0x10
[  374.854923][T14220]  ? fs_reclaim_acquire+0x7d/0x100
[  374.854964][T14220]  should_fail_ex+0x414/0x560
[  374.854991][T14220]  should_failslab+0xa8/0x100
[  374.855021][T14220]  __kmalloc_noprof+0xcb/0x4f0
[  374.855046][T14220]  ? iovec_from_user+0x87/0x250
[  374.855079][T14220]  iovec_from_user+0x87/0x250
[  374.855111][T14220]  __import_iovec+0x163/0x7f0
[  374.855151][T14220]  import_iovec+0x74/0xa0
[  374.855183][T14220]  ___sys_recvmsg+0x43a/0x510
[  374.855220][T14220]  ? __pfx____sys_recvmsg+0x10/0x10
[  374.855277][T14220]  ? __fget_files+0x3a0/0x420
[  374.855316][T14220]  do_recvmmsg+0x307/0x760
[  374.855356][T14220]  ? __pfx_do_recvmmsg+0x10/0x10
[  374.855400][T14220]  ? _copy_from_user+0x94/0xb0
[  374.855445][T14220]  __x64_sys_recvmmsg+0x1af/0x240
[  374.855474][T14220]  ? rcu_is_watching+0x15/0xb0
[  374.855507][T14220]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  374.855542][T14220]  ? do_syscall_64+0xba/0x210
[  374.855568][T14220]  do_syscall_64+0xf6/0x210
[  374.855591][T14220]  ? clear_bhb_loop+0x45/0xa0
[  374.855622][T14220]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  374.855643][T14220] RIP: 0033:0x7f0aa158e969
[  374.855661][T14220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  374.855680][T14220] RSP: 002b:00007f0aa2400038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  374.855702][T14220] RAX: ffffffffffffffda RBX: 00007f0aa17b5fa0 RCX: 00007f0aa158e969
[  374.855717][T14220] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  374.855731][T14220] RBP: 00007f0aa2400090 R08: 0000200000003700 R09: 0000000000000000
[  374.855745][T14220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  374.855758][T14220] R13: 0000000000000000 R14: 00007f0aa17b5fa0 R15: 00007ffd3af06d28
[  374.855790][T14220]  </TASK>
[  375.467821][T14238] netlink: 'syz.3.2873': attribute type 1 has an invalid length.
[  375.503612][T14238] netlink: 184 bytes leftover after parsing attributes in process `syz.3.2873'.
[  375.540877][T14238] netlink: 'syz.3.2873': attribute type 1 has an invalid length.
[  375.690455][T14246] netlink: 'syz.3.2873': attribute type 322 has an invalid length.
[  375.698668][T14255] sctp: [Deprecated]: syz.1.2876 (pid 14255) Use of int in max_burst socket option deprecated.
[  375.698668][T14255] Use struct sctp_assoc_value instead
[  375.863503][T14260] sctp: [Deprecated]: syz.2.2877 (pid 14260) Use of int in max_burst socket option deprecated.
[  375.863503][T14260] Use struct sctp_assoc_value instead
[  376.423785][ T5841] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  376.435804][ T5841] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  376.448177][ T5138] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  376.458347][ T5138] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  376.467734][ T5138] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  376.708047][T14265] lo speed is unknown, defaulting to 1000
[  376.794541][T14268] lo speed is unknown, defaulting to 1000
[  376.942309][T14280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2884'.
[  376.977020][   T36] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.097322][   T36] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.245403][   T36] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.336783][T14289] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 101
[  377.361656][   T36] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.457288][T14290] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2888'.
[  377.555829][T14287] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR
[  378.291795][T14315] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2892'.
[  378.363194][T14302] team0 (unregistering): left promiscuous mode
[  378.452754][T14265] chnl_net:caif_netlink_parms(): no params data found
[  378.518872][   T36] bridge_slave_1: left allmulticast mode
[  378.527924][   T36] bridge_slave_1: left promiscuous mode
[  378.543490][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.562896][   T36] bridge_slave_0: left allmulticast mode
[  378.568499][ T5138] Bluetooth: hci5: command tx timeout
[  378.578146][   T36] bridge_slave_0: left promiscuous mode
[  378.594559][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  379.229527][   T36] bond2 (unregistering): (slave gretap1): Releasing active interface
[  379.545080][T14336] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2899'.
[  379.556208][T14336] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2899'.
[  379.621427][T14339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2899'.
[  379.767209][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  379.782230][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  379.794083][   T36] bond0 (unregistering): Released all slaves
[  379.947537][   T36] team0: Port device bond1 removed
[  379.954748][   T36] bond1 (unregistering): Released all slaves
[  379.973781][   T36] bond2 (unregistering): Released all slaves
[  380.130081][   T36] team0: Port device bond3 removed
[  380.137302][   T36] bond3 (unregistering): Released all slaves
[  380.458151][   T36] tipc: Disabling bearer <udp:s>
[  380.480520][   T36] tipc: Left network mode
[  380.650792][ T5138] Bluetooth: hci5: command tx timeout
[  380.676805][T14362] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2904'.
[  380.695048][   T36] IPVS: stopping backup sync thread 6518 ...
[  380.854296][T14265] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.866720][T14265] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.874451][T14265] bridge_slave_0: entered allmulticast mode
[  380.895991][T14265] bridge_slave_0: entered promiscuous mode
[  380.913985][T14265] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.921708][T14265] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.929792][T14265] bridge_slave_1: entered allmulticast mode
[  380.938078][T14265] bridge_slave_1: entered promiscuous mode
[  381.077713][T14265] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.191298][T14265] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  381.486438][T14265] team0: Port device team_slave_0 added
[  381.497508][T14265] team0: Port device team_slave_1 added
[  381.553303][   T36] hsr_slave_0: left promiscuous mode
[  381.568150][   T36] hsr_slave_1: left promiscuous mode
[  381.578059][   T36] batman_adv: batadv0: Interface deactivated: dummy0
[  381.592430][   T36] batman_adv: batadv0: Removing interface: dummy0
[  381.604401][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  381.640036][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  381.677583][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  381.685950][T14402] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2919'.
[  381.695544][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  381.739573][   T36] veth0_macvtap: left promiscuous mode
[  382.489903][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  382.500133][ T5843] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  382.508840][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  382.528712][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  382.540463][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  382.551335][T14418] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  382.685447][   T36] team0 (unregistering): Port device team_slave_1 removed
[  382.734115][ T5138] Bluetooth: hci5: command tx timeout
[  382.787070][   T36] team0 (unregistering): Port device team_slave_0 removed
[  383.185214][ T5843] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  383.211318][ T5843] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  383.223118][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  383.270229][ T5843] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  383.285460][ T5843] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  383.497956][T14265] batman_adv: batadv0: Adding interface: batadv_slave_0
[  383.518724][T14265] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.550467][T14433] FAULT_INJECTION: forcing a failure.
[  383.550467][T14433] name failslab, interval 1, probability 0, space 0, times 0
[  383.572608][T14265] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  383.584239][T14433] CPU: 0 UID: 0 PID: 14433 Comm: syz.1.2925 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  383.584269][T14433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  383.584283][T14433] Call Trace:
[  383.584292][T14433]  <TASK>
[  383.584301][T14433]  dump_stack_lvl+0x189/0x250
[  383.584341][T14433]  ? __pfx_dump_stack_lvl+0x10/0x10
[  383.584371][T14433]  ? __pfx__printk+0x10/0x10
[  383.584396][T14433]  ? __pfx___might_resched+0x10/0x10
[  383.584416][T14433]  ? fs_reclaim_acquire+0x7d/0x100
[  383.584451][T14433]  should_fail_ex+0x414/0x560
[  383.584476][T14433]  should_failslab+0xa8/0x100
[  383.584504][T14433]  __kmalloc_noprof+0xcb/0x4f0
[  383.584529][T14433]  ? iovec_from_user+0x87/0x250
[  383.584561][T14433]  iovec_from_user+0x87/0x250
[  383.584592][T14433]  __import_iovec+0x163/0x7f0
[  383.584630][T14433]  import_iovec+0x74/0xa0
[  383.584662][T14433]  ___sys_recvmsg+0x43a/0x510
[  383.584698][T14433]  ? __pfx____sys_recvmsg+0x10/0x10
[  383.584753][T14433]  ? __fget_files+0x3a0/0x420
[  383.584807][T14433]  do_recvmmsg+0x307/0x760
[  383.584847][T14433]  ? __pfx_do_recvmmsg+0x10/0x10
[  383.584891][T14433]  ? _copy_from_user+0x94/0xb0
[  383.584938][T14433]  __x64_sys_recvmmsg+0x1af/0x240
[  383.584972][T14433]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  383.585006][T14433]  ? do_syscall_64+0xba/0x210
[  383.585033][T14433]  do_syscall_64+0xf6/0x210
[  383.585056][T14433]  ? clear_bhb_loop+0x45/0xa0
[  383.585081][T14433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.585101][T14433] RIP: 0033:0x7f7c3cd8e969
[  383.585119][T14433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.585136][T14433] RSP: 002b:00007f7c3dc18038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  383.585158][T14433] RAX: ffffffffffffffda RBX: 00007f7c3cfb6080 RCX: 00007f7c3cd8e969
[  383.585174][T14433] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  383.585189][T14433] RBP: 00007f7c3dc18090 R08: 0000200000003700 R09: 0000000000000000
[  383.585203][T14433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  383.585215][T14433] R13: 0000000000000001 R14: 00007f7c3cfb6080 R15: 00007ffde2a49968
[  383.585248][T14433]  </TASK>
[  383.587946][T14265] batman_adv: batadv0: Adding interface: batadv_slave_1
[  383.670432][T14438] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2926'.
[  383.833124][T14265] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.860764][T14265] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  383.947006][T14435] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[  384.150206][T14453] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2929'.
[  384.193504][T14429] lo speed is unknown, defaulting to 1000
[  384.273160][T14265] hsr_slave_0: entered promiscuous mode
[  384.289669][T14265] hsr_slave_1: entered promiscuous mode
[  384.296172][T14265] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  384.325924][T14265] Cannot create hsr debugfs directory
[  384.817077][ T5843] Bluetooth: hci5: command tx timeout
[  385.072468][T14495] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2943'.
[  385.316576][T14429] chnl_net:caif_netlink_parms(): no params data found
[  385.368862][ T5843] Bluetooth: hci1: command tx timeout
[  386.117164][T14429] bridge0: port 1(bridge_slave_0) entered blocking state
[  386.136543][T14429] bridge0: port 1(bridge_slave_0) entered disabled state
[  386.148508][T14429] bridge_slave_0: entered allmulticast mode
[  386.156399][T14429] bridge_slave_0: entered promiscuous mode
[  386.203744][T14520] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2952'.
[  386.754193][   T36] bond0 (unregistering): Released all slaves
[  386.870385][   T36] bond1 (unregistering): Released all slaves
[  386.901607][ T5843] Bluetooth: hci5: command tx timeout
[  386.931730][T14429] bridge0: port 2(bridge_slave_1) entered blocking state
[  386.948556][T14429] bridge0: port 2(bridge_slave_1) entered disabled state
[  386.955903][T14429] bridge_slave_1: entered allmulticast mode
[  386.975194][T14429] bridge_slave_1: entered promiscuous mode
[  387.063678][   T36] tipc: Disabling bearer <udp:syz2>
[  387.083502][   T36] tipc: Left network mode
[  387.219940][T14429] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  387.294241][T14429] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  387.347854][T14551] netlink: 'syz.3.2958': attribute type 4 has an invalid length.
[  387.359099][T14265] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  387.452786][ T5843] Bluetooth: hci1: command tx timeout
[  387.467825][T14429] team0: Port device team_slave_0 added
[  387.486083][T14265] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  387.532048][T14550] sctp: [Deprecated]: syz.2.2959 (pid 14550) Use of int in max_burst socket option deprecated.
[  387.532048][T14550] Use struct sctp_assoc_value instead
[  387.577285][T14429] team0: Port device team_slave_1 added
[  387.633217][T14265] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  387.746671][T14571] netlink: 1041 bytes leftover after parsing attributes in process `syz.3.2961'.
[  387.831093][T14429] batman_adv: batadv0: Adding interface: batadv_slave_0
[  387.845956][T14429] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.875004][T14573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2963'.
[  387.882713][T14429] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  387.892468][T14573] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  387.904417][T14265] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  387.940353][T14429] batman_adv: batadv0: Adding interface: batadv_slave_1
[  387.947774][T14429] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  387.974107][T14429] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  387.990131][T14573] netlink: 176 bytes leftover after parsing attributes in process `syz.1.2963'.
[  387.999724][T14573] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2963'.
[  388.173328][T14429] hsr_slave_0: entered promiscuous mode
[  388.182749][T14429] hsr_slave_1: entered promiscuous mode
[  388.192186][T14429] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  388.203739][T14429] Cannot create hsr debugfs directory
[  388.343274][   T36] hsr_slave_0: left promiscuous mode
[  388.408482][   T36] hsr_slave_1: left promiscuous mode
[  389.528693][ T5843] Bluetooth: hci1: command tx timeout
[  389.584739][T14591] bridge: RTM_NEWNEIGH with invalid ether address
[  389.997120][   T36] IPVS: stop unused estimator thread 0...
[  390.065759][T14265] 8021q: adding VLAN 0 to HW filter on device bond0
[  390.137305][T14265] 8021q: adding VLAN 0 to HW filter on device team0
[  390.164399][ T1152] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.171789][ T1152] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.247588][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.254895][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  391.618368][ T5843] Bluetooth: hci1: command tx timeout
[  393.334173][T14619] sctp: [Deprecated]: syz.3.2973 (pid 14619) Use of int in max_burst socket option deprecated.
[  393.334173][T14619] Use struct sctp_assoc_value instead
[  393.522450][T14429] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  393.543787][T14429] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  393.583595][T14429] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  393.602945][T14623] netlink: 'syz.1.2974': attribute type 39 has an invalid length.
[  393.612650][T14429] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  393.677664][T14265] 8021q: adding VLAN 0 to HW filter on device batadv0
[  393.801874][T14631] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2977'.
[  393.882159][T14265] veth0_vlan: entered promiscuous mode
[  393.953586][T14265] veth1_vlan: entered promiscuous mode
[  394.007222][T14429] 8021q: adding VLAN 0 to HW filter on device bond0
[  394.038096][T14265] veth0_macvtap: entered promiscuous mode
[  394.063662][T14265] veth1_macvtap: entered promiscuous mode
[  394.099605][T14429] 8021q: adding VLAN 0 to HW filter on device team0
[  394.144647][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.151888][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  394.175570][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  394.182854][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  394.221946][T14265] batman_adv: batadv0: Interface activated: batadv_slave_0
[  394.328151][T14265] batman_adv: batadv0: Interface activated: batadv_slave_1
[  394.413132][T14265] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.425828][T14265] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.435002][T14265] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.444366][T14265] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.481274][T14647] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2981'.
[  394.796561][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.849013][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.926419][ T5901] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.962616][ T5901] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  395.204846][T14656] FAULT_INJECTION: forcing a failure.
[  395.204846][T14656] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  395.261965][T14656] CPU: 0 UID: 0 PID: 14656 Comm: syz.2.2982 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  395.261998][T14656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  395.262012][T14656] Call Trace:
[  395.262021][T14656]  <TASK>
[  395.262034][T14656]  dump_stack_lvl+0x189/0x250
[  395.262068][T14656]  ? __lock_acquire+0xaac/0xd20
[  395.262101][T14656]  ? __pfx_dump_stack_lvl+0x10/0x10
[  395.262131][T14656]  ? __pfx__printk+0x10/0x10
[  395.262152][T14656]  ? __might_fault+0xb0/0x130
[  395.262193][T14656]  should_fail_ex+0x414/0x560
[  395.262221][T14656]  _copy_from_user+0x2d/0xb0
[  395.262251][T14656]  kstrtouint_from_user+0xc4/0x170
[  395.262279][T14656]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  395.262324][T14656]  proc_fail_nth_write+0x88/0x240
[  395.262354][T14656]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  395.262390][T14656]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  395.262421][T14656]  vfs_write+0x27b/0xa90
[  395.262456][T14656]  ? __pfx_vfs_write+0x10/0x10
[  395.262481][T14656]  ? __fget_files+0x2a/0x420
[  395.262513][T14656]  ? __fget_files+0x3a0/0x420
[  395.262538][T14656]  ? __fget_files+0x2a/0x420
[  395.262575][T14656]  ksys_write+0x145/0x250
[  395.262602][T14656]  ? __pfx_ksys_write+0x10/0x10
[  395.262630][T14656]  ? do_syscall_64+0xba/0x210
[  395.262669][T14656]  do_syscall_64+0xf6/0x210
[  395.262693][T14656]  ? clear_bhb_loop+0x45/0xa0
[  395.262719][T14656]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  395.262739][T14656] RIP: 0033:0x7ff07738d41f
[  395.262757][T14656] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  395.262776][T14656] RSP: 002b:00007ff0781ba030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  395.262797][T14656] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff07738d41f
[  395.262812][T14656] RDX: 0000000000000001 RSI: 00007ff0781ba0a0 RDI: 0000000000000005
[  395.262824][T14656] RBP: 00007ff0781ba090 R08: 0000000000000000 R09: 0000000000000000
[  395.262837][T14656] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  395.262848][T14656] R13: 0000000000000000 R14: 00007ff0775b5fa0 R15: 00007fff21bfa998
[  395.262882][T14656]  </TASK>
[  395.820106][T14429] 8021q: adding VLAN 0 to HW filter on device batadv0
[  396.372635][T14678] netlink: 'syz.0.2987': attribute type 4 has an invalid length.
[  396.835428][T14695] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2991'.
[  397.038009][T14429] veth0_vlan: entered promiscuous mode
[  397.091182][T14429] veth1_vlan: entered promiscuous mode
[  397.200569][T14703] netlink: 'syz.2.2996': attribute type 5 has an invalid length.
[  397.217579][T14429] veth0_macvtap: entered promiscuous mode
[  397.238999][T14429] veth1_macvtap: entered promiscuous mode
[  397.254533][T14706] netlink: 'syz.1.2997': attribute type 21 has an invalid length.
[  397.462660][T14709] bond2 (unregistering): Released all slaves
[  397.533114][T14429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.548690][T14429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.565440][T14429] batman_adv: batadv0: Interface activated: batadv_slave_0
[  397.605157][T14429] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.640626][T14429] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.666379][T14429] batman_adv: batadv0: Interface activated: batadv_slave_1
[  397.711006][T14429] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.724805][T14429] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.743185][T14429] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.756607][T14429] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  397.931616][T14721] FAULT_INJECTION: forcing a failure.
[  397.931616][T14721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  397.958901][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.967220][T14721] CPU: 1 UID: 0 PID: 14721 Comm: syz.1.3001 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  397.967250][T14721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  397.967263][T14721] Call Trace:
[  397.967271][T14721]  <TASK>
[  397.967281][T14721]  dump_stack_lvl+0x189/0x250
[  397.967316][T14721]  ? __lock_acquire+0xaac/0xd20
[  397.967350][T14721]  ? __pfx_dump_stack_lvl+0x10/0x10
[  397.967381][T14721]  ? __pfx__printk+0x10/0x10
[  397.967403][T14721]  ? __might_fault+0xb0/0x130
[  397.967443][T14721]  should_fail_ex+0x414/0x560
[  397.967473][T14721]  _copy_from_user+0x2d/0xb0
[  397.967502][T14721]  do_bnep_sock_ioctl+0x2bf/0x640
[  397.967540][T14721]  ? __pfx_do_bnep_sock_ioctl+0x10/0x10
[  397.967580][T14721]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  397.967603][T14721]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  397.967624][T14721]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  397.967662][T14721]  sock_do_ioctl+0xd9/0x300
[  397.967685][T14721]  ? __pfx_sock_do_ioctl+0x10/0x10
[  397.967707][T14721]  ? __lock_acquire+0xaac/0xd20
[  397.967748][T14721]  sock_ioctl+0x576/0x790
[  397.967771][T14721]  ? __pfx_sock_ioctl+0x10/0x10
[  397.967794][T14721]  ? __fget_files+0x3a0/0x420
[  397.967821][T14721]  ? __fget_files+0x2a/0x420
[  397.967852][T14721]  ? bpf_lsm_file_ioctl+0x9/0x20
[  397.967879][T14721]  ? __pfx_sock_ioctl+0x10/0x10
[  397.967898][T14721]  __se_sys_ioctl+0xf9/0x170
[  397.967922][T14721]  do_syscall_64+0xf6/0x210
[  397.967946][T14721]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  397.967966][T14721]  ? clear_bhb_loop+0x45/0xa0
[  397.967991][T14721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  397.968012][T14721] RIP: 0033:0x7f7c3cd8e969
[  397.968032][T14721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  397.968051][T14721] RSP: 002b:00007f7c3dc39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  397.968074][T14721] RAX: ffffffffffffffda RBX: 00007f7c3cfb5fa0 RCX: 00007f7c3cd8e969
[  397.968090][T14721] RDX: 0000200000000000 RSI: 00000000800442d2 RDI: 0000000000000004
[  397.968104][T14721] RBP: 00007f7c3dc39090 R08: 0000000000000000 R09: 0000000000000000
[  397.968117][T14721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  397.968130][T14721] R13: 0000000000000000 R14: 00007f7c3cfb5fa0 R15: 00007ffde2a49968
[  397.968163][T14721]  </TASK>
[  397.972790][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.216644][ T5901] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.239293][ T5901] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.375451][T14734] netlink: 'syz.2.3005': attribute type 5 has an invalid length.
[  398.595046][T14736] bond2 (unregistering): Released all slaves
[  399.101049][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.286278][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.421019][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.590192][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.691656][T14755] FAULT_INJECTION: forcing a failure.
[  399.691656][T14755] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  399.725514][T14755] CPU: 0 UID: 0 PID: 14755 Comm: syz.1.3011 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  399.725550][T14755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  399.725565][T14755] Call Trace:
[  399.725576][T14755]  <TASK>
[  399.725589][T14755]  dump_stack_lvl+0x189/0x250
[  399.725631][T14755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  399.725665][T14755]  ? __pfx__printk+0x10/0x10
[  399.725703][T14755]  should_fail_ex+0x414/0x560
[  399.725733][T14755]  _copy_to_user+0x31/0xb0
[  399.725767][T14755]  simple_read_from_buffer+0xe1/0x170
[  399.725802][T14755]  proc_fail_nth_read+0x1df/0x250
[  399.725838][T14755]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  399.725873][T14755]  ? rw_verify_area+0x258/0x650
[  399.725897][T14755]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  399.725929][T14755]  vfs_read+0x1fd/0x980
[  399.725960][T14755]  ? __pfx___mutex_lock+0x10/0x10
[  399.725985][T14755]  ? __pfx_vfs_read+0x10/0x10
[  399.726012][T14755]  ? __fget_files+0x2a/0x420
[  399.726046][T14755]  ? __fget_files+0x3a0/0x420
[  399.726073][T14755]  ? __fget_files+0x2a/0x420
[  399.726114][T14755]  ksys_read+0x145/0x250
[  399.726142][T14755]  ? __pfx_ksys_read+0x10/0x10
[  399.726172][T14755]  ? do_syscall_64+0xba/0x210
[  399.726201][T14755]  do_syscall_64+0xf6/0x210
[  399.726227][T14755]  ? clear_bhb_loop+0x45/0xa0
[  399.726254][T14755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  399.726277][T14755] RIP: 0033:0x7f7c3cd8d37c
[  399.726297][T14755] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  399.726318][T14755] RSP: 002b:00007f7c3dc39030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  399.726341][T14755] RAX: ffffffffffffffda RBX: 00007f7c3cfb5fa0 RCX: 00007f7c3cd8d37c
[  399.726358][T14755] RDX: 000000000000000f RSI: 00007f7c3dc390a0 RDI: 0000000000000004
[  399.726373][T14755] RBP: 00007f7c3dc39090 R08: 0000000000000000 R09: 0000000000000000
[  399.726387][T14755] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  399.726401][T14755] R13: 0000000000000000 R14: 00007f7c3cfb5fa0 R15: 00007ffde2a49968
[  399.726447][T14755]  </TASK>
[  399.941344][   T36] bridge_slave_1: left allmulticast mode
[  399.958761][   T36] bridge_slave_1: left promiscuous mode
[  399.964628][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.073074][   T36] bridge_slave_0: left allmulticast mode
[  400.080189][   T36] bridge_slave_0: left promiscuous mode
[  400.086160][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.146052][T14759] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3012'.
[  400.434299][ T5138] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  400.512667][ T5138] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  400.537477][ T5138] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  400.558564][ T5138] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  400.571266][ T5138] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  401.507591][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  401.526906][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  401.601798][   T36] bond0 (unregistering): Released all slaves
[  401.680145][T14779] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3019'.
[  401.704997][T14779] nbd: couldn't find a device at index 0
[  402.649020][ T5843] Bluetooth: hci1: command tx timeout
[  402.675639][   T36] hsr_slave_0: left promiscuous mode
[  402.702707][   T36] hsr_slave_1: left promiscuous mode
[  402.716093][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  402.740151][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  402.761837][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  402.778403][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  402.827429][   T36] veth1_macvtap: left promiscuous mode
[  402.833633][   T36] veth0_macvtap: left promiscuous mode
[  402.839613][   T36] veth1_vlan: left promiscuous mode
[  402.845379][   T36] veth0_vlan: left promiscuous mode
[  402.886910][T14811] FAULT_INJECTION: forcing a failure.
[  402.886910][T14811] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  402.900605][T14811] CPU: 1 UID: 0 PID: 14811 Comm: syz.3.3026 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  402.900634][T14811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  402.900647][T14811] Call Trace:
[  402.900655][T14811]  <TASK>
[  402.900665][T14811]  dump_stack_lvl+0x189/0x250
[  402.900698][T14811]  ? __lock_acquire+0xaac/0xd20
[  402.900730][T14811]  ? __pfx_dump_stack_lvl+0x10/0x10
[  402.900759][T14811]  ? __pfx__printk+0x10/0x10
[  402.900780][T14811]  ? __might_fault+0xb0/0x130
[  402.900819][T14811]  should_fail_ex+0x414/0x560
[  402.900846][T14811]  _copy_from_user+0x2d/0xb0
[  402.900875][T14811]  __sys_sendto+0x25c/0x520
[  402.900903][T14811]  ? __pfx___sys_sendto+0x10/0x10
[  402.900926][T14811]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  402.900963][T14811]  ? __fget_files+0x3a0/0x420
[  402.901013][T14811]  ? ksys_write+0x1f0/0x250
[  402.901034][T14811]  ? rcu_is_watching+0x15/0xb0
[  402.901075][T14811]  __x64_sys_sendto+0xde/0x100
[  402.901105][T14811]  do_syscall_64+0xf6/0x210
[  402.901129][T14811]  ? clear_bhb_loop+0x45/0xa0
[  402.901155][T14811]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  402.901175][T14811] RIP: 0033:0x7f722998e969
[  402.901193][T14811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  402.901211][T14811] RSP: 002b:00007f722a841038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  402.901234][T14811] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998e969
[  402.901249][T14811] RDX: 00000000fffffff3 RSI: 0000200000000600 RDI: 0000000000000004
[  402.901261][T14811] RBP: 00007f722a841090 R08: 0000200000000340 R09: 000000000000006e
[  402.901274][T14811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  402.901286][T14811] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  402.901318][T14811]  </TASK>
[  403.339800][T14816] FAULT_INJECTION: forcing a failure.
[  403.339800][T14816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  403.355332][T14816] CPU: 0 UID: 0 PID: 14816 Comm: syz.3.3028 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  403.355363][T14816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  403.355376][T14816] Call Trace:
[  403.355385][T14816]  <TASK>
[  403.355414][T14816]  dump_stack_lvl+0x189/0x250
[  403.355454][T14816]  ? __pfx_dump_stack_lvl+0x10/0x10
[  403.355483][T14816]  ? __pfx__printk+0x10/0x10
[  403.355518][T14816]  should_fail_ex+0x414/0x560
[  403.355546][T14816]  _copy_to_user+0x31/0xb0
[  403.355576][T14816]  simple_read_from_buffer+0xe1/0x170
[  403.355606][T14816]  proc_fail_nth_read+0x1df/0x250
[  403.355640][T14816]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  403.355672][T14816]  ? rw_verify_area+0x258/0x650
[  403.355694][T14816]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  403.355725][T14816]  vfs_read+0x1fd/0x980
[  403.355754][T14816]  ? __pfx___mutex_lock+0x10/0x10
[  403.355777][T14816]  ? __pfx_vfs_read+0x10/0x10
[  403.355801][T14816]  ? __fget_files+0x2a/0x420
[  403.355833][T14816]  ? __fget_files+0x3a0/0x420
[  403.355858][T14816]  ? __fget_files+0x2a/0x420
[  403.355890][T14816]  ksys_read+0x145/0x250
[  403.355911][T14816]  ? __pfx_ksys_read+0x10/0x10
[  403.355934][T14816]  ? do_syscall_64+0xba/0x210
[  403.355960][T14816]  do_syscall_64+0xf6/0x210
[  403.355982][T14816]  ? clear_bhb_loop+0x45/0xa0
[  403.356007][T14816]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.356027][T14816] RIP: 0033:0x7f722998d37c
[  403.356047][T14816] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  403.356064][T14816] RSP: 002b:00007f722a841030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  403.356087][T14816] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998d37c
[  403.356102][T14816] RDX: 000000000000000f RSI: 00007f722a8410a0 RDI: 0000000000000004
[  403.356115][T14816] RBP: 00007f722a841090 R08: 0000000000000000 R09: 0000000000000000
[  403.356127][T14816] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.356140][T14816] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  403.356172][T14816]  </TASK>
[  403.794308][T14825] FAULT_INJECTION: forcing a failure.
[  403.794308][T14825] name failslab, interval 1, probability 0, space 0, times 0
[  403.808679][T14825] CPU: 1 UID: 0 PID: 14825 Comm: syz.3.3031 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  403.808712][T14825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  403.808726][T14825] Call Trace:
[  403.808735][T14825]  <TASK>
[  403.808745][T14825]  dump_stack_lvl+0x189/0x250
[  403.808785][T14825]  ? __pfx_dump_stack_lvl+0x10/0x10
[  403.808816][T14825]  ? __pfx__printk+0x10/0x10
[  403.808840][T14825]  ? __pfx___might_resched+0x10/0x10
[  403.808861][T14825]  ? fs_reclaim_acquire+0x7d/0x100
[  403.808894][T14825]  should_fail_ex+0x414/0x560
[  403.808934][T14825]  should_failslab+0xa8/0x100
[  403.808959][T14825]  __kmalloc_cache_noprof+0x70/0x3d0
[  403.808982][T14825]  ? ip6_setup_cork+0x1d8/0x10e0
[  403.809015][T14825]  ip6_setup_cork+0x1d8/0x10e0
[  403.809045][T14825]  ? lockdep_hardirqs_on+0x9c/0x150
[  403.809072][T14825]  ip6_append_data+0x23d/0x380
[  403.809104][T14825]  ? __pfx_raw6_getfrag+0x10/0x10
[  403.809128][T14825]  rawv6_sendmsg+0x124b/0x17f0
[  403.809165][T14825]  ? __pfx_rawv6_sendmsg+0x10/0x10
[  403.809182][T14825]  ? __lock_acquire+0xaac/0xd20
[  403.809242][T14825]  ? __pfx_aa_sk_perm+0x10/0x10
[  403.809268][T14825]  ? sock_rps_record_flow+0x19/0x410
[  403.809294][T14825]  ? inet_sendmsg+0x2f4/0x370
[  403.809314][T14825]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  403.809342][T14825]  __sock_sendmsg+0x19c/0x270
[  403.809370][T14825]  sock_write_iter+0x258/0x330
[  403.809400][T14825]  ? __pfx_sock_write_iter+0x10/0x10
[  403.809434][T14825]  ? bpf_lsm_file_permission+0x9/0x20
[  403.809460][T14825]  ? security_file_permission+0x75/0x290
[  403.809504][T14825]  vfs_write+0x548/0xa90
[  403.809531][T14825]  ? __pfx_sock_write_iter+0x10/0x10
[  403.809549][T14825]  ? __pfx_vfs_write+0x10/0x10
[  403.809579][T14825]  ? __fget_files+0x2a/0x420
[  403.809611][T14825]  ksys_write+0x145/0x250
[  403.809629][T14825]  ? rcu_is_watching+0x15/0xb0
[  403.809657][T14825]  ? __pfx_ksys_write+0x10/0x10
[  403.809680][T14825]  ? do_syscall_64+0xba/0x210
[  403.809702][T14825]  do_syscall_64+0xf6/0x210
[  403.809721][T14825]  ? clear_bhb_loop+0x45/0xa0
[  403.809743][T14825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  403.809761][T14825] RIP: 0033:0x7f722998e969
[  403.809779][T14825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  403.809795][T14825] RSP: 002b:00007f722a841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  403.809815][T14825] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998e969
[  403.809828][T14825] RDX: 00000000000005ac RSI: 00002000000000c0 RDI: 0000000000000003
[  403.809839][T14825] RBP: 00007f722a841090 R08: 0000000000000000 R09: 0000000000000000
[  403.809850][T14825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  403.809860][T14825] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  403.809889][T14825]  </TASK>
[  404.216189][   T36] team0 (unregistering): Port device team_slave_1 removed
[  404.268049][   T36] team0 (unregistering): Port device team_slave_0 removed
[  404.298207][T14830] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3033'.
[  404.729883][ T5843] Bluetooth: hci1: command tx timeout
[  404.875209][T14761] chnl_net:caif_netlink_parms(): no params data found
[  405.045249][T14833] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3034'.
[  405.202333][T14840] --map-set only usable from mangle table
[  405.308546][T14761] bridge0: port 1(bridge_slave_0) entered blocking state
[  405.319636][T14761] bridge0: port 1(bridge_slave_0) entered disabled state
[  405.337327][T14761] bridge_slave_0: entered allmulticast mode
[  405.349513][T14761] bridge_slave_0: entered promiscuous mode
[  405.359271][T14761] bridge0: port 2(bridge_slave_1) entered blocking state
[  405.366487][T14761] bridge0: port 2(bridge_slave_1) entered disabled state
[  405.376895][T14761] bridge_slave_1: entered allmulticast mode
[  405.385124][T14761] bridge_slave_1: entered promiscuous mode
[  405.550752][T14761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  405.585438][T14761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  405.775424][T14761] team0: Port device team_slave_0 added
[  405.822177][T14761] team0: Port device team_slave_1 added
[  406.006642][T14761] batman_adv: batadv0: Adding interface: batadv_slave_0
[  406.024494][T14761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.058299][T14869] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  406.066458][T14869] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  406.091385][T14869] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  406.110099][T14761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  406.141821][T14761] batman_adv: batadv0: Adding interface: batadv_slave_1
[  406.158341][T14761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.200274][T14761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  406.306553][T14868] syzkaller1: entered promiscuous mode
[  406.314527][T14868] syzkaller1: entered allmulticast mode
[  406.537072][T14890] sctp: [Deprecated]: syz.3.3045 (pid 14890) Use of int in max_burst socket option deprecated.
[  406.537072][T14890] Use struct sctp_assoc_value instead
[  406.683040][T14761] hsr_slave_0: entered promiscuous mode
[  406.693618][T14761] hsr_slave_1: entered promiscuous mode
[  406.714316][T14761] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  406.729089][T14761] Cannot create hsr debugfs directory
[  406.808417][ T5843] Bluetooth: hci1: command tx timeout
[  407.071200][T14907] FAULT_INJECTION: forcing a failure.
[  407.071200][T14907] name failslab, interval 1, probability 0, space 0, times 0
[  407.118932][T14907] CPU: 1 UID: 0 PID: 14907 Comm: syz.2.3052 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  407.118965][T14907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  407.118979][T14907] Call Trace:
[  407.118988][T14907]  <TASK>
[  407.118998][T14907]  dump_stack_lvl+0x189/0x250
[  407.119036][T14907]  ? __pfx_dump_stack_lvl+0x10/0x10
[  407.119065][T14907]  ? __pfx__printk+0x10/0x10
[  407.119092][T14907]  ? __pfx___might_resched+0x10/0x10
[  407.119109][T14907]  ? fs_reclaim_acquire+0x7d/0x100
[  407.119144][T14907]  should_fail_ex+0x414/0x560
[  407.119169][T14907]  should_failslab+0xa8/0x100
[  407.119198][T14907]  __kmalloc_cache_noprof+0x70/0x3d0
[  407.119223][T14907]  ? __xdp_reg_mem_model+0x1d8/0x5a0
[  407.119256][T14907]  __xdp_reg_mem_model+0x1d8/0x5a0
[  407.119289][T14907]  ? __pfx___xdp_reg_mem_model+0x10/0x10
[  407.119318][T14907]  ? page_pool_create_percpu+0x800/0xbe0
[  407.119354][T14907]  xdp_reg_mem_model+0x22/0x40
[  407.119382][T14907]  bpf_test_run_xdp_live+0x218/0x1aa0
[  407.119417][T14907]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  407.119447][T14907]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  407.119467][T14907]  ? synchronize_rcu+0x11a/0x310
[  407.119488][T14907]  ? __pfx_synchronize_rcu+0x10/0x10
[  407.119511][T14907]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  407.119539][T14907]  ? 0xffffffffa00041c0
[  407.119577][T14907]  ? 0xffffffffa0001fd4
[  407.119640][T14907]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  407.119679][T14907]  ? _copy_from_user+0x94/0xb0
[  407.119708][T14907]  ? bpf_test_init+0x133/0x170
[  407.119731][T14907]  ? xdp_convert_md_to_buff+0x5b/0x330
[  407.119760][T14907]  bpf_prog_test_run_xdp+0x713/0xf90
[  407.119804][T14907]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  407.119836][T14907]  ? __fget_files+0x2a/0x420
[  407.119869][T14907]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  407.119896][T14907]  bpf_prog_test_run+0x2a9/0x340
[  407.119928][T14907]  __sys_bpf+0x4a4/0x860
[  407.119956][T14907]  ? __pfx___sys_bpf+0x10/0x10
[  407.119996][T14907]  ? ksys_write+0x1f0/0x250
[  407.120018][T14907]  ? rcu_is_watching+0x15/0xb0
[  407.120065][T14907]  __x64_sys_bpf+0x7c/0x90
[  407.120089][T14907]  do_syscall_64+0xf6/0x210
[  407.120113][T14907]  ? clear_bhb_loop+0x45/0xa0
[  407.120139][T14907]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.120159][T14907] RIP: 0033:0x7ff07738e969
[  407.120176][T14907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  407.120195][T14907] RSP: 002b:00007ff0781ba038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  407.120218][T14907] RAX: ffffffffffffffda RBX: 00007ff0775b5fa0 RCX: 00007ff07738e969
[  407.120233][T14907] RDX: 0000000000000048 RSI: 0000200000000600 RDI: 000000000000000a
[  407.120246][T14907] RBP: 00007ff0781ba090 R08: 0000000000000000 R09: 0000000000000000
[  407.120260][T14907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  407.120272][T14907] R13: 0000000000000000 R14: 00007ff0775b5fa0 R15: 00007fff21bfa998
[  407.120305][T14907]  </TASK>
[  407.532456][  T975] hid-generic 0005:046D:0058.0001: unknown main item tag 0x0
[  407.582926][  T975] hid-generic 0005:046D:0058.0001: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  408.084358][T14930] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3058'.
[  408.173050][T14761] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  408.246255][T14934] sctp: [Deprecated]: syz.0.3060 (pid 14934) Use of int in max_burst socket option deprecated.
[  408.246255][T14934] Use struct sctp_assoc_value instead
[  408.352955][T14761] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  408.440213][T14761] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  408.535800][T14761] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  408.791655][T14960] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3065'.
[  408.805309][T14761] 8021q: adding VLAN 0 to HW filter on device bond0
[  408.888515][ T5843] Bluetooth: hci1: command tx timeout
[  408.905804][T14761] 8021q: adding VLAN 0 to HW filter on device team0
[  408.941917][ T6816] bridge0: port 1(bridge_slave_0) entered blocking state
[  408.949198][ T6816] bridge0: port 1(bridge_slave_0) entered forwarding state
[  408.956762][T14963] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3067'.
[  408.976655][ T1102] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.983857][ T1102] bridge0: port 2(bridge_slave_1) entered forwarding state
[  409.014418][T14963] 8021q: adding VLAN 0 to HW filter on device bond2
[  409.067196][T14963] 8021q: adding VLAN 0 to HW filter on device bond2
[  409.082257][T14963] bond2: (slave vcan0): The slave device specified does not support setting the MAC address
[  409.095319][T14963] bond2: (slave vcan0): Error -95 calling set_mac_address
[  410.224222][T14761] 8021q: adding VLAN 0 to HW filter on device batadv0
[  410.776685][T15029] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  410.891098][T14761] veth0_vlan: entered promiscuous mode
[  410.927440][T14761] veth1_vlan: entered promiscuous mode
[  411.043398][T15037] netlink: 148 bytes leftover after parsing attributes in process `syz.1.3093'.
[  411.074389][T14761] veth0_macvtap: entered promiscuous mode
[  411.103372][T14761] veth1_macvtap: entered promiscuous mode
[  411.137635][T14761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  411.150165][T14761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.166822][T14761] batman_adv: batadv0: Interface activated: batadv_slave_0
[  411.241931][T14761] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  411.262387][T14761] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  411.275831][T14761] batman_adv: batadv0: Interface activated: batadv_slave_1
[  411.297496][T14761] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.316546][T14761] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.340116][T14761] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  411.352915][T14761] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  411.537350][ T6816] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  411.556153][ T6816] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  411.656696][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  411.678411][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  412.116202][T15081] openvswitch: netlink: Missing key (keys=40, expected=80)
[  412.414147][ T1102] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.533465][ T1102] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.722178][ T1102] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.797105][ T5138] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  412.830836][ T5138] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  412.840346][ T5138] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  412.848703][ T5138] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  412.856615][ T5138] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  412.897290][ T1102] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.174512][T15083] chnl_net:caif_netlink_parms(): no params data found
[  413.438971][ T1102] bridge_slave_1: left allmulticast mode
[  413.448884][ T1102] bridge_slave_1: left promiscuous mode
[  413.454840][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state
[  413.485838][ T1102] bridge_slave_0: left allmulticast mode
[  413.498447][ T1102] bridge_slave_0: left promiscuous mode
[  413.505394][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  413.629190][ T5138] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  413.641130][ T5138] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  413.650926][ T5138] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  413.661715][ T5138] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  413.670595][ T5138] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  413.754344][T15111] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input8
[  414.252285][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  414.266366][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  414.278807][ T1102] bond0 (unregistering): Released all slaves
[  414.589904][T15129] FAULT_INJECTION: forcing a failure.
[  414.589904][T15129] name failslab, interval 1, probability 0, space 0, times 0
[  414.604149][T15129] CPU: 0 UID: 0 PID: 15129 Comm: syz.3.3120 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  414.604179][T15129] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  414.604192][T15129] Call Trace:
[  414.604200][T15129]  <TASK>
[  414.604209][T15129]  dump_stack_lvl+0x189/0x250
[  414.604256][T15129]  ? __pfx_dump_stack_lvl+0x10/0x10
[  414.604286][T15129]  ? __pfx__printk+0x10/0x10
[  414.604310][T15129]  ? __pfx___might_resched+0x10/0x10
[  414.604331][T15129]  ? fs_reclaim_acquire+0x7d/0x100
[  414.604368][T15129]  should_fail_ex+0x414/0x560
[  414.604395][T15129]  should_failslab+0xa8/0x100
[  414.604424][T15129]  __kmalloc_noprof+0xcb/0x4f0
[  414.604449][T15129]  ? tomoyo_encode+0x28b/0x550
[  414.604480][T15129]  tomoyo_encode+0x28b/0x550
[  414.604511][T15129]  tomoyo_realpath_from_path+0x58d/0x5d0
[  414.604539][T15129]  ? tomoyo_domain+0xda/0x130
[  414.604572][T15129]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  414.604593][T15129]  tomoyo_path_number_perm+0x1e8/0x5a0
[  414.604617][T15129]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  414.604657][T15129]  ? __lock_acquire+0xaac/0xd20
[  414.604707][T15129]  ? __fget_files+0x2a/0x420
[  414.604739][T15129]  ? __fget_files+0x3a0/0x420
[  414.604764][T15129]  ? __fget_files+0x2a/0x420
[  414.604795][T15129]  security_file_ioctl+0xcb/0x2d0
[  414.604830][T15129]  __se_sys_ioctl+0x47/0x170
[  414.604854][T15129]  do_syscall_64+0xf6/0x210
[  414.604878][T15129]  ? clear_bhb_loop+0x45/0xa0
[  414.604904][T15129]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.604924][T15129] RIP: 0033:0x7f722998e969
[  414.604943][T15129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.604962][T15129] RSP: 002b:00007f722a841038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  414.604984][T15129] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998e969
[  414.605000][T15129] RDX: 0000200000000080 RSI: 0000000000008982 RDI: 0000000000000004
[  414.605014][T15129] RBP: 00007f722a841090 R08: 0000000000000000 R09: 0000000000000000
[  414.605027][T15129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.605039][T15129] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  414.605072][T15129]  </TASK>
[  414.605837][T15129] ERROR: Out of memory at tomoyo_realpath_from_path.
[  414.880974][T15130] FAULT_INJECTION: forcing a failure.
[  414.880974][T15130] name failslab, interval 1, probability 0, space 0, times 0
[  414.894044][T15083] bridge0: port 1(bridge_slave_0) entered blocking state
[  414.905295][ T5843] Bluetooth: hci1: command tx timeout
[  414.915086][T15083] bridge0: port 1(bridge_slave_0) entered disabled state
[  414.923975][T15083] bridge_slave_0: entered allmulticast mode
[  414.936558][T15130] CPU: 1 UID: 0 PID: 15130 Comm: syz.0.3119 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  414.936590][T15130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  414.936603][T15130] Call Trace:
[  414.936612][T15130]  <TASK>
[  414.936621][T15130]  dump_stack_lvl+0x189/0x250
[  414.936661][T15130]  ? __pfx_dump_stack_lvl+0x10/0x10
[  414.936689][T15130]  ? __pfx__printk+0x10/0x10
[  414.936706][T15130]  ? rcu_is_watching+0x15/0xb0
[  414.936749][T15130]  should_fail_ex+0x414/0x560
[  414.936775][T15130]  should_failslab+0xa8/0x100
[  414.936803][T15130]  kmem_cache_alloc_noprof+0x73/0x3c0
[  414.936827][T15130]  ? skb_clone+0x212/0x3a0
[  414.936861][T15130]  skb_clone+0x212/0x3a0
[  414.936893][T15130]  __netlink_deliver_tap+0x404/0x850
[  414.936932][T15130]  ? netlink_deliver_tap+0x2e/0x1b0
[  414.936959][T15130]  netlink_deliver_tap+0x19c/0x1b0
[  414.936986][T15130]  netlink_dump+0x929/0xe70
[  414.937025][T15130]  ? __pfx_netlink_dump+0x10/0x10
[  414.937063][T15130]  ? lockdep_hardirqs_on+0x9c/0x150
[  414.937092][T15130]  ? kmem_cache_free+0x192/0x3f0
[  414.937124][T15130]  netlink_recvmsg+0x67b/0xe00
[  414.937161][T15130]  ? __pfx_netlink_recvmsg+0x10/0x10
[  414.937210][T15130]  ? aa_sock_msg_perm+0x94/0x160
[  414.937236][T15130]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  414.937261][T15130]  ? __pfx_netlink_recvmsg+0x10/0x10
[  414.937287][T15130]  sock_recvmsg_nosec+0x183/0x1c0
[  414.937313][T15130]  ____sys_recvmsg+0x3aa/0x460
[  414.937351][T15130]  ? __pfx_____sys_recvmsg+0x10/0x10
[  414.937396][T15130]  ? import_iovec+0x74/0xa0
[  414.937428][T15130]  ___sys_recvmsg+0x1b5/0x510
[  414.937462][T15130]  ? __pfx____sys_recvmsg+0x10/0x10
[  414.937525][T15130]  ? __might_fault+0xb0/0x130
[  414.937555][T15130]  do_recvmmsg+0x307/0x760
[  414.937600][T15130]  ? __pfx_do_recvmmsg+0x10/0x10
[  414.937644][T15130]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  414.937686][T15130]  __x64_sys_recvmmsg+0x190/0x240
[  414.937718][T15130]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  414.937752][T15130]  ? do_syscall_64+0xba/0x210
[  414.937778][T15130]  do_syscall_64+0xf6/0x210
[  414.937801][T15130]  ? clear_bhb_loop+0x45/0xa0
[  414.937827][T15130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.937846][T15130] RIP: 0033:0x7ff912d8e969
[  414.937865][T15130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.937884][T15130] RSP: 002b:00007ff913c2b038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  414.937906][T15130] RAX: ffffffffffffffda RBX: 00007ff912fb6080 RCX: 00007ff912d8e969
[  414.937922][T15130] RDX: 0000000000000004 RSI: 00002000000086c0 RDI: 0000000000000003
[  414.937934][T15130] RBP: 00007ff913c2b090 R08: 0000000000000000 R09: 0000000000000000
[  414.937947][T15130] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  414.937960][T15130] R13: 0000000000000001 R14: 00007ff912fb6080 R15: 00007ffeacd356f8
[  414.937991][T15130]  </TASK>
[  414.952515][T15083] bridge_slave_0: entered promiscuous mode
[  415.015242][T15132] netlink: 124 bytes leftover after parsing attributes in process `syz.3.3121'.
[  415.288980][T15083] bridge0: port 2(bridge_slave_1) entered blocking state
[  415.312663][T15083] bridge0: port 2(bridge_slave_1) entered disabled state
[  415.320199][T15083] bridge_slave_1: entered allmulticast mode
[  415.334375][T15083] bridge_slave_1: entered promiscuous mode
[  415.483791][T15083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  415.509071][T15107] chnl_net:caif_netlink_parms(): no params data found
[  415.543576][T15083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  415.568348][ T1102] hsr_slave_0: left promiscuous mode
[  415.578811][ T1102] hsr_slave_1: left promiscuous mode
[  415.585152][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  415.610283][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0
[  415.619232][ T1102] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  415.626718][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_1
[  415.686044][ T1102] veth1_macvtap: left promiscuous mode
[  415.702324][ T1102] veth0_macvtap: left promiscuous mode
[  415.708077][ T1102] veth1_vlan: left promiscuous mode
[  415.723708][ T1102] veth0_vlan: left promiscuous mode
[  415.783916][ T5843] Bluetooth: hci3: command tx timeout
[  416.522653][ T1102] team0 (unregistering): Port device team_slave_1 removed
[  416.571819][ T1102] team0 (unregistering): Port device team_slave_0 removed
[  416.978407][ T5843] Bluetooth: hci1: command tx timeout
[  417.140564][T15154] netlink: 'syz.0.3127': attribute type 11 has an invalid length.
[  417.148673][T15154] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3127'.
[  417.226315][T15083] team0: Port device team_slave_0 added
[  417.235768][T15083] team0: Port device team_slave_1 added
[  417.497092][T15083] batman_adv: batadv0: Adding interface: batadv_slave_0
[  417.509797][T15083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  417.536272][T15083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  417.579717][T15083] batman_adv: batadv0: Adding interface: batadv_slave_1
[  417.586920][T15083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  417.630109][T15083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  417.669686][T15107] bridge0: port 1(bridge_slave_0) entered blocking state
[  417.678424][T15107] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.708630][T15107] bridge_slave_0: entered allmulticast mode
[  417.724364][T15107] bridge_slave_0: entered promiscuous mode
[  417.813278][T15107] bridge0: port 2(bridge_slave_1) entered blocking state
[  417.831350][T15107] bridge0: port 2(bridge_slave_1) entered disabled state
[  417.831549][T15175] FAULT_INJECTION: forcing a failure.
[  417.831549][T15175] name failslab, interval 1, probability 0, space 0, times 0
[  417.848779][T15107] bridge_slave_1: entered allmulticast mode
[  417.865200][ T5843] Bluetooth: hci3: command tx timeout
[  417.871097][T15175] CPU: 0 UID: 0 PID: 15175 Comm: syz.3.3133 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  417.871127][T15175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  417.871141][T15175] Call Trace:
[  417.871150][T15175]  <TASK>
[  417.871160][T15175]  dump_stack_lvl+0x189/0x250
[  417.871200][T15175]  ? __pfx_dump_stack_lvl+0x10/0x10
[  417.871232][T15175]  ? __pfx__printk+0x10/0x10
[  417.871256][T15175]  ? __pfx___might_resched+0x10/0x10
[  417.871276][T15175]  ? fs_reclaim_acquire+0x7d/0x100
[  417.871313][T15175]  should_fail_ex+0x414/0x560
[  417.871340][T15175]  should_failslab+0xa8/0x100
[  417.871369][T15175]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  417.871397][T15175]  ? __request_module+0x2d1/0x5e0
[  417.871431][T15175]  kstrdup+0x42/0x100
[  417.871454][T15175]  __request_module+0x2d1/0x5e0
[  417.871489][T15175]  ? __pfx___request_module+0x10/0x10
[  417.871531][T15175]  ? rtnl_link_ops_get+0x23/0x250
[  417.871556][T15175]  ? rtnl_link_ops_get+0x23/0x250
[  417.871583][T15175]  ? rtnl_link_ops_get+0x215/0x250
[  417.871613][T15175]  rtnl_newlink+0x64f/0x1c70
[  417.871645][T15175]  ? __kasan_slab_free+0x62/0x70
[  417.871670][T15175]  ? __dev_queue_xmit+0x1adf/0x3a70
[  417.871699][T15175]  ? __netlink_deliver_tap+0x5ad/0x850
[  417.871724][T15175]  ? netlink_deliver_tap+0x19c/0x1b0
[  417.871749][T15175]  ? netlink_sendmsg+0x805/0xb30
[  417.871776][T15175]  ? __x64_sys_sendmsg+0x19b/0x260
[  417.871803][T15175]  ? do_syscall_64+0xf6/0x210
[  417.871823][T15175]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.871845][T15175]  ? __pfx_rtnl_newlink+0x10/0x10
[  417.871901][T15175]  ? kasan_quarantine_put+0xdd/0x220
[  417.871922][T15175]  ? lockdep_hardirqs_on+0x9c/0x150
[  417.871959][T15175]  ? nlmon_xmit+0xb0/0x100
[  417.871985][T15175]  ? kmem_cache_free+0x192/0x3f0
[  417.872020][T15175]  ? __local_bh_enable_ip+0x12d/0x1c0
[  417.872040][T15175]  ? lockdep_hardirqs_on+0x9c/0x150
[  417.872060][T15175]  ? __local_bh_enable_ip+0x12d/0x1c0
[  417.872080][T15175]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  417.872107][T15175]  ? aa_get_newest_label+0xf7/0x5d0
[  417.872134][T15175]  ? __lock_acquire+0xaac/0xd20
[  417.872189][T15175]  ? __pfx_rtnl_newlink+0x10/0x10
[  417.872212][T15175]  rtnetlink_rcv_msg+0x7cc/0xb70
[  417.872241][T15175]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  417.872265][T15175]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  417.872295][T15175]  ? ref_tracker_free+0x63a/0x7d0
[  417.872316][T15175]  ? __copy_skb_header+0xa7/0x550
[  417.872354][T15175]  netlink_rcv_skb+0x219/0x490
[  417.872381][T15175]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  417.872408][T15175]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  417.872455][T15175]  ? netlink_deliver_tap+0x2e/0x1b0
[  417.872481][T15175]  ? netlink_deliver_tap+0x2e/0x1b0
[  417.872513][T15175]  netlink_unicast+0x758/0x8d0
[  417.872550][T15175]  netlink_sendmsg+0x805/0xb30
[  417.872588][T15175]  ? __pfx_netlink_sendmsg+0x10/0x10
[  417.872619][T15175]  ? aa_sock_msg_perm+0x94/0x160
[  417.872644][T15175]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  417.872668][T15175]  ? __pfx_netlink_sendmsg+0x10/0x10
[  417.872695][T15175]  __sock_sendmsg+0x219/0x270
[  417.872721][T15175]  ____sys_sendmsg+0x505/0x830
[  417.872756][T15175]  ? __pfx_____sys_sendmsg+0x10/0x10
[  417.872795][T15175]  ? import_iovec+0x74/0xa0
[  417.872827][T15175]  ___sys_sendmsg+0x21f/0x2a0
[  417.872859][T15175]  ? __pfx____sys_sendmsg+0x10/0x10
[  417.872928][T15175]  ? __fget_files+0x2a/0x420
[  417.872964][T15175]  ? __fget_files+0x3a0/0x420
[  417.873002][T15175]  __x64_sys_sendmsg+0x19b/0x260
[  417.873034][T15175]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  417.873077][T15175]  ? do_syscall_64+0xba/0x210
[  417.873102][T15175]  do_syscall_64+0xf6/0x210
[  417.873125][T15175]  ? clear_bhb_loop+0x45/0xa0
[  417.873148][T15175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  417.873167][T15175] RIP: 0033:0x7f722998e969
[  417.873184][T15175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  417.873201][T15175] RSP: 002b:00007f722a841038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  417.873222][T15175] RAX: ffffffffffffffda RBX: 00007f7229bb5fa0 RCX: 00007f722998e969
[  417.873238][T15175] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  417.873250][T15175] RBP: 00007f722a841090 R08: 0000000000000000 R09: 0000000000000000
[  417.873264][T15175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  417.873276][T15175] R13: 0000000000000000 R14: 00007f7229bb5fa0 R15: 00007fffe2004788
[  417.873308][T15175]  </TASK>
[  417.875679][T15107] bridge_slave_1: entered promiscuous mode
[  418.375268][T15083] hsr_slave_0: entered promiscuous mode
[  418.392643][T15083] hsr_slave_1: entered promiscuous mode
[  418.406870][T15083] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  418.424356][T15083] Cannot create hsr debugfs directory
[  418.537438][T15107] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  418.573296][T15107] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  418.792192][T15107] team0: Port device team_slave_0 added
[  418.936703][T15107] team0: Port device team_slave_1 added
[  418.974617][T15190] bridge0: port 2(bridge_slave_1) entered disabled state
[  419.025153][ T1102] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  419.053890][ T5843] Bluetooth: hci1: command tx timeout
[  419.117151][T15202] bond1: entered allmulticast mode
[  419.123375][T15203] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3143'.
[  419.227666][ T1102] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  419.255869][T15107] batman_adv: batadv0: Adding interface: batadv_slave_0
[  419.270685][T15107] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.308755][T15107] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  419.330149][T15107] batman_adv: batadv0: Adding interface: batadv_slave_1
[  419.337255][T15107] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  419.364793][T15107] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  419.402174][ T1102] netdevsim netdevsim2 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  419.536565][ T1102] netdevsim netdevsim2 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  419.671900][T15220] xt_ecn: cannot match TCP bits for non-tcp packets
[  419.694766][T15107] hsr_slave_0: entered promiscuous mode
[  419.707719][T15107] hsr_slave_1: entered promiscuous mode
[  419.714574][T15107] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  419.728259][T15107] Cannot create hsr debugfs directory
[  419.943143][ T5843] Bluetooth: hci3: command tx timeout
[  419.965185][ T1102] bridge_slave_1: left allmulticast mode
[  420.027339][ T1102] bridge_slave_1: left promiscuous mode
[  420.034441][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state
[  420.054915][ T1102] bridge_slave_0: left allmulticast mode
[  420.067801][ T1102] bridge_slave_0: left promiscuous mode
[  420.081551][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  420.141475][T15227] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  420.470190][ T1102] bond1 (unregistering): (slave ip6gretap2): Releasing active interface
[  420.832953][ T1102] bond0 (unregistering): Released all slaves
[  420.978087][ T1102] bond1 (unregistering): Released all slaves
[  421.134733][ T1102] bond2 (unregistering): Released all slaves
[  421.139196][ T5843] Bluetooth: hci1: command tx timeout
[  421.421579][T15244] FAULT_INJECTION: forcing a failure.
[  421.421579][T15244] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  421.456315][T15244] CPU: 0 UID: 0 PID: 15244 Comm: syz.1.3155 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  421.456348][T15244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  421.456362][T15244] Call Trace:
[  421.456370][T15244]  <TASK>
[  421.456387][T15244]  dump_stack_lvl+0x189/0x250
[  421.456422][T15244]  ? __lock_acquire+0xaac/0xd20
[  421.456452][T15244]  ? __pfx_dump_stack_lvl+0x10/0x10
[  421.456481][T15244]  ? __pfx__printk+0x10/0x10
[  421.456501][T15244]  ? __might_fault+0xb0/0x130
[  421.456540][T15244]  should_fail_ex+0x414/0x560
[  421.456566][T15244]  _copy_from_user+0x2d/0xb0
[  421.456596][T15244]  ___sys_sendmsg+0x158/0x2a0
[  421.456628][T15244]  ? __pfx____sys_sendmsg+0x10/0x10
[  421.456695][T15244]  ? __fget_files+0x2a/0x420
[  421.456719][T15244]  ? __fget_files+0x3a0/0x420
[  421.456754][T15244]  __x64_sys_sendmsg+0x19b/0x260
[  421.456783][T15244]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  421.456829][T15244]  ? do_syscall_64+0xba/0x210
[  421.456856][T15244]  do_syscall_64+0xf6/0x210
[  421.456878][T15244]  ? clear_bhb_loop+0x45/0xa0
[  421.456904][T15244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  421.456924][T15244] RIP: 0033:0x7f7c3cd8e969
[  421.456943][T15244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  421.456961][T15244] RSP: 002b:00007f7c3dc18038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  421.456983][T15244] RAX: ffffffffffffffda RBX: 00007f7c3cfb6080 RCX: 00007f7c3cd8e969
[  421.456999][T15244] RDX: 0000000000040010 RSI: 0000200000006040 RDI: 0000000000000004
[  421.457012][T15244] RBP: 00007f7c3dc18090 R08: 0000000000000000 R09: 0000000000000000
[  421.457025][T15244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  421.457037][T15244] R13: 0000000000000001 R14: 00007f7c3cfb6080 R15: 00007ffde2a49968
[  421.457071][T15244]  </TASK>
[  422.012782][ T5843] Bluetooth: hci3: command tx timeout
[  422.275138][T15255] team0 (unregistering): Port device team_slave_0 removed
[  422.297098][T15255] team0 (unregistering): Port device team_slave_1 removed
[  422.483125][T15268] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  422.648037][T15276] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3168'.
[  422.675126][T15276] netlink: 256 bytes leftover after parsing attributes in process `syz.1.3168'.
[  422.684939][T15276] unsupported nlmsg_type 40
[  422.904668][ T1102] mac80211_hwsim hwsim7 wlan0 (unregistering): left allmulticast mode
[  422.914352][ T1102] mac80211_hwsim hwsim7 wlan0 (unregistering): left promiscuous mode
[  423.097715][ T1102] hsr_slave_0: left promiscuous mode
[  423.104232][ T1102] hsr_slave_1: left promiscuous mode
[  423.110815][ T1102] batman_adv: batadv0: Removing interface: batadv_slave_0
[  424.304046][T15083] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  424.350692][T15083] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  424.404375][T15295] xt_ecn: cannot match TCP bits for non-tcp packets
[  424.416080][T15083] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  424.476938][T15293] macvtap2: entered promiscuous mode
[  424.486744][T15293] hsr0: entered promiscuous mode
[  424.502896][T15293] macvtap2: entered allmulticast mode
[  424.522707][T15293] hsr0: entered allmulticast mode
[  424.539269][T15293] hsr_slave_0: entered allmulticast mode
[  424.557157][T15293] hsr_slave_1: entered allmulticast mode
[  424.580965][T15293] hsr0: left allmulticast mode
[  424.588306][T15293] hsr_slave_0: left allmulticast mode
[  424.606046][T15293] hsr_slave_1: left allmulticast mode
[  424.612402][T15293] hsr0: left promiscuous mode
[  424.707815][T15083] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  424.923692][T15107] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  424.953787][T15107] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  425.008199][T15107] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  425.288883][T15107] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  425.330862][T15310] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3178'.
[  425.486635][ T1102] IPVS: stop unused estimator thread 0...
[  425.647790][T15083] 8021q: adding VLAN 0 to HW filter on device bond0
[  425.772833][T15083] 8021q: adding VLAN 0 to HW filter on device team0
[  425.796010][ T6816] bridge0: port 1(bridge_slave_0) entered blocking state
[  425.803278][ T6816] bridge0: port 1(bridge_slave_0) entered forwarding state
[  425.878033][T15316] 8021q: adding VLAN 0 to HW filter on device bond4
[  425.888785][T15316] bond0: (slave bond4): Enslaving as an active interface with an up link
[  425.909333][T15107] 8021q: adding VLAN 0 to HW filter on device bond0
[  425.928197][ T6815] bridge0: port 2(bridge_slave_1) entered blocking state
[  425.935476][ T6815] bridge0: port 2(bridge_slave_1) entered forwarding state
[  425.977343][T15107] 8021q: adding VLAN 0 to HW filter on device team0
[  426.021932][ T5901] bridge0: port 1(bridge_slave_0) entered blocking state
[  426.029247][ T5901] bridge0: port 1(bridge_slave_0) entered forwarding state
[  426.073943][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[  426.081254][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[  426.195438][T15324] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3182'.
[  426.612288][T15107] 8021q: adding VLAN 0 to HW filter on device batadv0
[  426.633120][T15336] FAULT_INJECTION: forcing a failure.
[  426.633120][T15336] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  426.672934][T15336] CPU: 1 UID: 0 PID: 15336 Comm: syz.0.3183 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  426.672968][T15336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  426.672982][T15336] Call Trace:
[  426.672991][T15336]  <TASK>
[  426.673001][T15336]  dump_stack_lvl+0x189/0x250
[  426.673036][T15336]  ? __lock_acquire+0xaac/0xd20
[  426.673069][T15336]  ? __pfx_dump_stack_lvl+0x10/0x10
[  426.673107][T15336]  ? __pfx__printk+0x10/0x10
[  426.673129][T15336]  ? __might_fault+0xb0/0x130
[  426.673168][T15336]  should_fail_ex+0x414/0x560
[  426.673195][T15336]  _copy_from_user+0x2d/0xb0
[  426.673225][T15336]  ___sys_recvmsg+0x12e/0x510
[  426.673255][T15336]  ? lockdep_hardirqs_on+0x9c/0x150
[  426.673280][T15336]  ? __pfx____sys_recvmsg+0x10/0x10
[  426.673337][T15336]  ? __fget_files+0x3a0/0x420
[  426.673376][T15336]  do_recvmmsg+0x307/0x760
[  426.673415][T15336]  ? __pfx_do_recvmmsg+0x10/0x10
[  426.673459][T15336]  ? _copy_from_user+0x94/0xb0
[  426.673505][T15336]  __x64_sys_recvmmsg+0x1af/0x240
[  426.673534][T15336]  ? rcu_is_watching+0x15/0xb0
[  426.673567][T15336]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  426.673602][T15336]  ? do_syscall_64+0xba/0x210
[  426.673632][T15336]  do_syscall_64+0xf6/0x210
[  426.673654][T15336]  ? clear_bhb_loop+0x45/0xa0
[  426.673680][T15336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  426.673700][T15336] RIP: 0033:0x7ff912d8e969
[  426.673719][T15336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  426.673738][T15336] RSP: 002b:00007ff913c4c038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  426.673759][T15336] RAX: ffffffffffffffda RBX: 00007ff912fb5fa0 RCX: 00007ff912d8e969
[  426.673775][T15336] RDX: 04000000000003b4 RSI: 00002000000037c0 RDI: 0000000000000003
[  426.673788][T15336] RBP: 00007ff913c4c090 R08: 0000200000003700 R09: 0000000000000000
[  426.673802][T15336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  426.673815][T15336] R13: 0000000000000000 R14: 00007ff912fb5fa0 R15: 00007ffeacd356f8
[  426.673847][T15336]  </TASK>
[  427.056688][T15083] 8021q: adding VLAN 0 to HW filter on device batadv0
[  427.141933][T15083] veth0_vlan: entered promiscuous mode
[  427.184185][T15083] veth1_vlan: entered promiscuous mode
[  427.307850][T15083] veth0_macvtap: entered promiscuous mode
[  427.364171][T15354] netlink: 'syz.1.3187': attribute type 23 has an invalid length.
[  427.367996][T15083] veth1_macvtap: entered promiscuous mode
[  427.464167][T15083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  427.489042][T15083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.520666][T15083] batman_adv: batadv0: Interface activated: batadv_slave_0
[  427.572110][T15083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  427.608531][T15083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  427.648776][T15083] batman_adv: batadv0: Interface activated: batadv_slave_1
[  427.693845][T15083] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  427.713620][T15083] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  427.737190][T15083] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  427.755791][T15083] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  427.952582][T15107] veth0_vlan: entered promiscuous mode
[  428.035737][T15107] veth1_vlan: entered promiscuous mode
[  428.164457][ T5901] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  428.186033][ T5901] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  428.214894][ T6816] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  428.243813][ T6816] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  428.307810][T15107] veth0_macvtap: entered promiscuous mode
[  428.336251][T15385] bridge_slave_0: invalid flags given to default FDB implementation
[  428.361677][T15107] veth1_macvtap: entered promiscuous mode
[  428.393232][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.417428][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.456711][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  428.482610][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.509957][T15107] batman_adv: batadv0: Interface activated: batadv_slave_0
[  428.547863][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.572666][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.600065][T15107] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  428.627176][T15107] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  428.657064][T15107] batman_adv: batadv0: Interface activated: batadv_slave_1
[  428.673447][T15396] FAULT_INJECTION: forcing a failure.
[  428.673447][T15396] name failslab, interval 1, probability 0, space 0, times 0
[  428.698772][T15396] CPU: 0 UID: 0 PID: 15396 Comm: syz.2.3107 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  428.698804][T15396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  428.698817][T15396] Call Trace:
[  428.698825][T15396]  <TASK>
[  428.698835][T15396]  dump_stack_lvl+0x189/0x250
[  428.698875][T15396]  ? __pfx_dump_stack_lvl+0x10/0x10
[  428.698906][T15396]  ? __pfx__printk+0x10/0x10
[  428.698923][T15396]  ? __lock_acquire+0xaac/0xd20
[  428.698967][T15396]  should_fail_ex+0x414/0x560
[  428.698994][T15396]  should_failslab+0xa8/0x100
[  428.699023][T15396]  kmem_cache_alloc_noprof+0x73/0x3c0
[  428.699049][T15396]  ? skb_clone+0x212/0x3a0
[  428.699084][T15396]  skb_clone+0x212/0x3a0
[  428.699118][T15396]  __netlink_deliver_tap+0x404/0x850
[  428.699158][T15396]  ? netlink_deliver_tap+0x2e/0x1b0
[  428.699185][T15396]  netlink_deliver_tap+0x19c/0x1b0
[  428.699213][T15396]  netlink_sendskb+0x68/0x140
[  428.699239][T15396]  netlink_rcv_skb+0x2a0/0x490
[  428.699267][T15396]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  428.699294][T15396]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  428.699343][T15396]  ? netlink_deliver_tap+0x2e/0x1b0
[  428.699368][T15396]  ? netlink_deliver_tap+0x2e/0x1b0
[  428.699400][T15396]  netlink_unicast+0x758/0x8d0
[  428.699436][T15396]  netlink_sendmsg+0x805/0xb30
[  428.699474][T15396]  ? __pfx_netlink_sendmsg+0x10/0x10
[  428.699505][T15396]  ? aa_sock_msg_perm+0x94/0x160
[  428.699530][T15396]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  428.699553][T15396]  ? __pfx_netlink_sendmsg+0x10/0x10
[  428.699580][T15396]  __sock_sendmsg+0x219/0x270
[  428.699605][T15396]  ____sys_sendmsg+0x505/0x830
[  428.699640][T15396]  ? __pfx_____sys_sendmsg+0x10/0x10
[  428.699679][T15396]  ? import_iovec+0x74/0xa0
[  428.699720][T15396]  ___sys_sendmsg+0x21f/0x2a0
[  428.699751][T15396]  ? __pfx____sys_sendmsg+0x10/0x10
[  428.699827][T15396]  ? __fget_files+0x2a/0x420
[  428.699853][T15396]  ? __fget_files+0x3a0/0x420
[  428.699891][T15396]  __x64_sys_sendmsg+0x19b/0x260
[  428.699921][T15396]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  428.699968][T15396]  ? do_syscall_64+0xba/0x210
[  428.699994][T15396]  do_syscall_64+0xf6/0x210
[  428.700015][T15396]  ? clear_bhb_loop+0x45/0xa0
[  428.700036][T15396]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  428.700052][T15396] RIP: 0033:0x7f1d0178e969
[  428.700067][T15396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  428.700082][T15396] RSP: 002b:00007f1d02639038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  428.700100][T15396] RAX: ffffffffffffffda RBX: 00007f1d019b5fa0 RCX: 00007f1d0178e969
[  428.700112][T15396] RDX: 0000000000000000 RSI: 0000200000000540 RDI: 0000000000000014
[  428.700123][T15396] RBP: 00007f1d02639090 R08: 0000000000000000 R09: 0000000000000000
[  428.700133][T15396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  428.700143][T15396] R13: 0000000000000000 R14: 00007f1d019b5fa0 R15: 00007fff79111558
[  428.700169][T15396]  </TASK>
[  429.062069][T15107] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  429.070983][T15107] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  429.080023][T15107] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  429.089307][T15107] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  429.227696][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  429.267134][T15410] netlink: 40 bytes leftover after parsing attributes in process `syz.3.3202'.
[  429.276834][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  429.283064][T15408] syz.0.3199: vmalloc error: size 16781312, failed to allocated page array size 32776, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  429.313037][T15408] CPU: 0 UID: 0 PID: 15408 Comm: syz.0.3199 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  429.313069][T15408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  429.313083][T15408] Call Trace:
[  429.313092][T15408]  <TASK>
[  429.313102][T15408]  dump_stack_lvl+0x189/0x250
[  429.313142][T15408]  ? __pfx_dump_stack_lvl+0x10/0x10
[  429.313173][T15408]  ? __pfx__printk+0x10/0x10
[  429.313195][T15408]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  429.313218][T15408]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  429.313241][T15408]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  429.313267][T15408]  warn_alloc+0x214/0x310
[  429.313305][T15408]  ? __pfx_warn_alloc+0x10/0x10
[  429.313344][T15408]  ? __get_vm_area_node+0x1c5/0x2d0
[  429.313370][T15408]  ? __get_vm_area_node+0x25a/0x2d0
[  429.313405][T15408]  __vmalloc_node_range_noprof+0x5f2/0x12c0
[  429.313470][T15408]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  429.313501][T15408]  ? __kasan_kmalloc+0x93/0xb0
[  429.313531][T15408]  vmalloc_user_noprof+0x74/0x80
[  429.313559][T15408]  ? xskq_create+0xbf/0x170
[  429.313577][T15408]  xskq_create+0xbf/0x170
[  429.313599][T15408]  xsk_init_queue+0xb0/0x110
[  429.313633][T15408]  xsk_setsockopt+0x4de/0x710
[  429.313666][T15408]  ? __pfx_xsk_setsockopt+0x10/0x10
[  429.313702][T15408]  ? aa_sock_opt_perm+0x74/0x110
[  429.313728][T15408]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  429.313751][T15408]  ? __pfx_xsk_setsockopt+0x10/0x10
[  429.313782][T15408]  do_sock_setsockopt+0x257/0x3e0
[  429.313813][T15408]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  429.313837][T15408]  ? __fget_files+0x2a/0x420
[  429.313868][T15408]  ? __fget_files+0x3a0/0x420
[  429.313892][T15408]  ? __fget_files+0x2a/0x420
[  429.313928][T15408]  __x64_sys_setsockopt+0x18b/0x220
[  429.313970][T15408]  do_syscall_64+0xf6/0x210
[  429.313997][T15408]  ? clear_bhb_loop+0x45/0xa0
[  429.314023][T15408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.314043][T15408] RIP: 0033:0x7ff912d8e969
[  429.314062][T15408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.314080][T15408] RSP: 002b:00007ff913c2b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  429.314101][T15408] RAX: ffffffffffffffda RBX: 00007ff912fb6080 RCX: 00007ff912d8e969
[  429.314116][T15408] RDX: 0000000000000003 RSI: 000000000000011b RDI: 0000000000000003
[  429.314129][T15408] RBP: 00007ff912e10ab1 R08: 0000000000000004 R09: 0000000000000000
[  429.314141][T15408] R10: 0000200000001780 R11: 0000000000000246 R12: 0000000000000000
[  429.314154][T15408] R13: 0000000000000000 R14: 00007ff912fb6080 R15: 00007ffeacd356f8
[  429.314188][T15408]  </TASK>
[  429.314239][T15408] Mem-Info:
[  429.316476][T15077] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  429.331219][T15408] active_anon:5071 inactive_anon:0 isolated_anon:0
[  429.331219][T15408]  active_file:1939 inactive_file:39970 isolated_file:0
[  429.331219][T15408]  unevictable:768 dirty:177 writeback:0
[  429.331219][T15408]  slab_reclaimable:11291 slab_unreclaimable:100040
[  429.331219][T15408]  mapped:29567 shmem:1360 pagetables:758
[  429.331219][T15408]  sec_pagetables:0 bounce:0
[  429.331219][T15408]  kernel_misc_reclaimable:0
[  429.331219][T15408]  free:1339876 free_pcp:419 free_cma:0
[  429.400068][T15077] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  429.428346][T15408] Node 0 active_anon:20284kB inactive_anon:0kB active_file:7756kB inactive_file:159676kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:118268kB dirty:704kB writeback:0kB shmem:3904kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10720kB pagetables:3032kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  429.696707][T15408] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  429.796078][T15408] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  429.863871][T15408] lowmem_reserve[]: 0 2503 2504 2504 2504
[  429.871465][T15428] sctp: [Deprecated]: syz.1.3205 (pid 15428) Use of int in max_burst socket option deprecated.
[  429.871465][T15428] Use struct sctp_assoc_value instead
[  429.888053][T15408] Node 0 DMA32 free:1433356kB boost:0kB min:34304kB low:42880kB high:51456kB reserved_highatomic:0KB active_anon:20612kB inactive_anon:0kB active_file:7756kB inactive_file:159580kB unevictable:1536kB writepending:700kB present:3129332kB managed:2564048kB mlocked:0kB bounce:0kB free_pcp:1992kB local_pcp:1416kB free_cma:0kB
[  429.923843][T15408] lowmem_reserve[]: 0 0 0 0 0
[  429.929975][T15408] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB active_anon:8kB inactive_anon:0kB active_file:0kB inactive_file:96kB unevictable:0kB writepending:4kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:4kB free_cma:0kB
[  429.931455][T15423] ==================================================================
[  429.957624][T15408] lowmem_reserve[]:
[  429.965421][T15423] BUG: KASAN: slab-use-after-free in cfusbl_device_notify+0x150/0x6a0
[  429.965466][T15423] Read of size 8 at addr ffff888046420c50 by task syz.1.3205/15423
[  429.965486][T15423] 
[  429.965501][T15423] CPU: 0 UID: 0 PID: 15423 Comm: syz.1.3205 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  429.965531][T15423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  429.965548][T15423] Call Trace:
[  429.965560][T15423]  <TASK>
[  429.965571][T15423]  dump_stack_lvl+0x189/0x250
[  429.965610][T15423]  ? __virt_addr_valid+0x18c/0x540
[  429.965640][T15423]  ? rcu_is_watching+0x15/0xb0
[  429.965683][T15423]  ? __kasan_check_byte+0x12/0x40
[  429.965714][T15423]  ? __pfx_dump_stack_lvl+0x10/0x10
[  429.965747][T15423]  ? rcu_is_watching+0x15/0xb0
[  429.965782][T15423]  ? lock_release+0x4b/0x3e0
[  429.965818][T15423]  ? __virt_addr_valid+0x18c/0x540
[  429.965847][T15423]  ? __virt_addr_valid+0x469/0x540
[  429.965879][T15423]  print_report+0xb4/0x290
[  429.965907][T15423]  ? cfusbl_device_notify+0x150/0x6a0
[  429.965935][T15423]  kasan_report+0x118/0x150
[  429.965966][T15423]  ? cfusbl_device_notify+0x150/0x6a0
[  429.966001][T15423]  cfusbl_device_notify+0x150/0x6a0
[  429.966031][T15423]  ? net_generic+0x1e/0x240
[  429.966058][T15423]  ? __pfx_cfusbl_device_notify+0x10/0x10
[  429.966090][T15423]  ? caif_device_notify+0x250/0xfc0
[  429.966120][T15423]  ? smc_pnet_netdev_event+0x3b5/0x6c0
[  429.966155][T15423]  notifier_call_chain+0x1b3/0x3e0
[  429.966183][T15423]  register_netdevice+0x121c/0x1ae0
[  429.966218][T15423]  ? __mutex_lock+0x51b/0xe80
[  429.966253][T15423]  ? __pfx_register_netdevice+0x10/0x10
[  429.966291][T15423]  ? __asan_memset+0x22/0x50
[  429.966314][T15423]  ? dev_addr_mod+0x2ce/0x3d0
[  429.966348][T15423]  register_netdev+0x40/0x60
[  429.966383][T15423]  bnep_add_connection+0x6bf/0xbf0
[  429.966425][T15423]  ? __pfx_bnep_add_connection+0x10/0x10
[  429.966459][T15423]  ? __fget_files+0x3a0/0x420
[  429.966495][T15423]  do_bnep_sock_ioctl+0x40e/0x640
[  429.966534][T15423]  ? __pfx_do_bnep_sock_ioctl+0x10/0x10
[  429.966574][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  429.966599][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  429.966622][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  429.966660][T15423]  sock_do_ioctl+0xd9/0x300
[  429.966687][T15423]  ? __pfx_sock_do_ioctl+0x10/0x10
[  429.966710][T15423]  ? __lock_acquire+0xaac/0xd20
[  429.966750][T15423]  sock_ioctl+0x576/0x790
[  429.966774][T15423]  ? __pfx_sock_ioctl+0x10/0x10
[  429.966798][T15423]  ? __fget_files+0x3a0/0x420
[  429.966827][T15423]  ? __fget_files+0x2a/0x420
[  429.966859][T15423]  ? bpf_lsm_file_ioctl+0x9/0x20
[  429.966889][T15423]  ? __pfx_sock_ioctl+0x10/0x10
[  429.966910][T15423]  __se_sys_ioctl+0xf9/0x170
[  429.966935][T15423]  do_syscall_64+0xf6/0x210
[  429.966963][T15423]  ? clear_bhb_loop+0x45/0xa0
[  429.966991][T15423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.967016][T15423] RIP: 0033:0x7f7c3cd8e969
[  429.967039][T15423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  429.967060][T15423] RSP: 002b:00007f7c3dbf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  429.967085][T15423] RAX: ffffffffffffffda RBX: 00007f7c3cfb6160 RCX: 00007f7c3cd8e969
[  429.967103][T15423] RDX: 0000200000000540 RSI: 00000000400442c8 RDI: 000000000000000e
[  429.967120][T15423] RBP: 00007f7c3ce10ab1 R08: 0000000000000000 R09: 0000000000000000
[  429.967136][T15423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  429.967151][T15423] R13: 0000000000000000 R14: 00007f7c3cfb6160 R15: 00007ffde2a49968
[  429.967178][T15423]  </TASK>
[  429.967187][T15423] 
[  429.969691][T15408]  0
[  429.977621][T15423] Allocated by task 5843:
[  429.977641][T15423]  kasan_save_track+0x3e/0x80
[  429.977673][T15423]  __kasan_kmalloc+0x93/0xb0
[  429.977694][T15423]  __kmalloc_cache_noprof+0x230/0x3d0
[  429.977718][T15423]  __hci_conn_add+0x1ed/0x1aa0
[  429.977743][T15423]  hci_conn_request_evt+0x528/0xb50
[  429.977761][T15423]  hci_event_packet+0x7fb/0x1270
[  429.977778][T15423]  hci_rx_work+0x46a/0xe80
[  429.977797][T15423]  process_scheduled_works+0xadb/0x17a0
[  429.977825][T15423]  worker_thread+0x8a0/0xda0
[  429.977843][T15423]  kthread+0x70e/0x8a0
[  429.977864][T15423]  ret_from_fork+0x4b/0x80
[  429.977884][T15423]  ret_from_fork_asm+0x1a/0x30
[  429.977902][T15423] 
[  429.977908][T15423] Freed by task 15107:
[  429.977919][T15423]  kasan_save_track+0x3e/0x80
[  429.977940][T15423]  kasan_save_free_info+0x46/0x50
[  429.977969][T15423]  __kasan_slab_free+0x62/0x70
[  429.977990][T15423]  kfree+0x193/0x440
[  429.978011][T15423]  device_release+0x99/0x1c0
[  429.978039][T15423]  kobject_put+0x228/0x480
[  429.978060][T15423]  hci_conn_del+0x8f5/0xca0
[  429.978082][T15423]  hci_conn_hash_flush+0x191/0x230
[  429.978111][T15423]  hci_dev_close_sync+0xaef/0x1330
[  429.978134][T15423]  hci_unregister_dev+0x206/0x500
[  429.978154][T15423]  vhci_release+0x80/0xd0
[  429.978175][T15423]  __fput+0x449/0xa70
[  429.978201][T15423]  task_work_run+0x1d1/0x260
[  429.978224][T15423]  do_exit+0x8d6/0x2550
[  429.978246][T15423]  do_group_exit+0x21c/0x2d0
[  429.978268][T15423]  __x64_sys_exit_group+0x3f/0x40
[  429.978290][T15423]  x64_sys_call+0x21ba/0x21c0
[  429.978308][T15423]  do_syscall_64+0xf6/0x210
[  429.978327][T15423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  429.978347][T15423] 
[  429.978353][T15423] Last potentially related work creation:
[  429.978361][T15423]  kasan_save_stack+0x3e/0x60
[  429.978382][T15423]  kasan_record_aux_stack+0xbc/0xd0
[  429.978411][T15423]  insert_work+0x3d/0x330
[  429.978439][T15423]  __queue_work+0xcfc/0xfe0
[  429.978456][T15423]  queue_delayed_work_on+0x18b/0x280
[  429.978475][T15423]  l2cap_chan_del+0x285/0x5e0
[  429.978492][T15423]  l2cap_conn_del+0x388/0x680
[  429.978518][T15423]  hci_conn_hash_flush+0x10a/0x230
[  429.978544][T15423]  hci_dev_close_sync+0xaef/0x1330
[  429.999452][T15408]  0
[  430.000869][T15423]  hci_unregister_dev+0x206/0x500
[  430.000904][T15423]  vhci_release+0x80/0xd0
[  430.011281][T15408]  0
[  430.014240][T15423]  __fput+0x449/0xa70
[  430.014278][T15423]  task_work_run+0x1d1/0x260
[  430.017265][T15408]  0
[  430.021870][T15423]  do_exit+0x8d6/0x2550
[  430.021899][T15423]  do_group_exit+0x21c/0x2d0
[  430.021922][T15423]  __x64_sys_exit_group+0x3f/0x40
[  430.021947][T15423]  x64_sys_call+0x21ba/0x21c0
[  430.021966][T15423]  do_syscall_64+0xf6/0x210
[  430.027282][T15408]  0
[  430.031819][T15423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.031845][T15423] 
[  430.031853][T15423] The buggy address belongs to the object at ffff888046420000
[  430.031853][T15423]  which belongs to the cache kmalloc-8k of size 8192
[  430.031873][T15423] The buggy address is located 3152 bytes inside of
[  430.031873][T15423]  freed 8192-byte region [ffff888046420000, ffff888046422000)
[  430.037025][T15408] 
[  430.042192][T15423] 
[  430.042205][T15423] The buggy address belongs to the physical page:
[  430.042228][T15423] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x46420
[  430.042252][T15423] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  430.042271][T15423] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  430.042293][T15423] page_type: f5(slab)
[  430.042312][T15423] raw: 00fff00000000040 ffff88801a042280 0000000000000000 dead000000000001
[  430.042332][T15423] raw: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  430.042352][T15423] head: 00fff00000000040 ffff88801a042280 0000000000000000 dead000000000001
[  430.042369][T15423] head: 0000000000000000 0000000000020002 00000000f5000000 0000000000000000
[  430.042389][T15423] head: 00fff00000000003 ffffea0001190801 00000000ffffffff 00000000ffffffff
[  430.042408][T15423] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  430.042421][T15423] page dumped because: kasan: bad access detected
[  430.042441][T15423] page_owner tracks the page as allocated
[  430.042450][T15423] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 14597, tgid 14596 (syz.2.2968), ts 389795607656, free_ts 387744492577
[  430.042490][T15423]  post_alloc_hook+0x1d8/0x230
[  430.042522][T15423]  get_page_from_freelist+0x21e0/0x22c0
[  430.042563][T15423]  __alloc_frozen_pages_noprof+0x181/0x370
[  430.042604][T15423]  alloc_pages_mpol+0x232/0x4a0
[  430.042630][T15423]  allocate_slab+0x8a/0x3b0
[  430.042648][T15423]  ___slab_alloc+0xbfc/0x1480
[  430.042677][T15423]  __kvmalloc_node_noprof+0x411/0x5e0
[  430.042704][T15423]  pfifo_fast_init+0x238/0x6b0
[  430.042728][T15423]  qdisc_create_dflt+0x138/0x4e0
[  430.042752][T15423]  mq_init+0x2dc/0x660
[  430.042779][T15423]  qdisc_create_dflt+0x138/0x4e0
[  430.042804][T15423]  dev_activate+0x1ce/0x1150
[  430.042829][T15423]  __dev_open+0x69c/0x880
[  430.042851][T15423]  __dev_change_flags+0x1ea/0x6d0
[  430.042877][T15423]  netif_change_flags+0x88/0x1a0
[  430.042903][T15423]  dev_change_flags+0x130/0x260
[  430.049755][T15408] Node 1 
[  430.052254][T15423] page last free pid 14562 tgid 14557 stack trace:
[  430.052273][T15423]  __free_frozen_pages+0xb14/0xce0
[  430.057463][T15408] Normal free:3909752kB boost:0kB min:55592kB low:69488kB high:83384kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  430.062594][T15423]  __folio_put+0x21b/0x2c0
[  430.062616][T15423]  sk_msg_free_elem+0x1fa/0x350
[  430.062639][T15423]  __sk_msg_free+0xf0/0x340
[  430.062658][T15423]  tls_sw_release_resources_tx+0x398/0x4f0
[  430.062681][T15423]  tls_sk_proto_close+0x24a/0x8c0
[  430.062699][T15423]  inet_release+0x184/0x210
[  430.062717][T15423]  sock_close+0xc0/0x240
[  430.067391][T15408] lowmem_reserve[]:
[  430.072520][T15423]  __fput+0x449/0xa70
[  430.072561][T15423]  task_work_run+0x1d1/0x260
[  430.072589][T15423]  resume_user_mode_work+0x5e/0x80
[  430.079830][T15408]  0
[  430.082562][T15423]  syscall_exit_to_user_mode+0x9a/0x120
[  430.082595][T15423]  do_syscall_64+0x103/0x210
[  430.087868][T15408]  0
[  430.092290][T15423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.092318][T15423] 
[  430.092325][T15423] Memory state around the buggy address:
[  430.092338][T15423]  ffff888046420b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  430.092353][T15423]  ffff888046420b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  430.092369][T15423] >ffff888046420c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  430.092380][T15423]                                                  ^
[  430.092392][T15423]  ffff888046420c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  430.092407][T15423]  ffff888046420d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  430.092418][T15423] ==================================================================
[  430.124508][T15423] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  430.124537][T15423] CPU: 0 UID: 0 PID: 15423 Comm: syz.1.3205 Not tainted 6.15.0-rc5-syzkaller-01086-gdc75c3ced10c #0 PREEMPT(full) 
[  430.124567][T15423] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  430.124583][T15423] Call Trace:
[  430.124593][T15423]  <TASK>
[  430.124603][T15423]  dump_stack_lvl+0x99/0x250
[  430.124654][T15423]  ? __asan_memcpy+0x40/0x70
[  430.124679][T15423]  ? __pfx_dump_stack_lvl+0x10/0x10
[  430.124712][T15423]  ? __pfx__printk+0x10/0x10
[  430.124743][T15423]  panic+0x2db/0x790
[  430.124779][T15423]  ? __pfx_panic+0x10/0x10
[  430.124815][T15423]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  430.124850][T15423]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  430.124885][T15423]  ? print_memory_metadata+0x314/0x400
[  430.124916][T15423]  ? cfusbl_device_notify+0x150/0x6a0
[  430.124946][T15423]  check_panic_on_warn+0x89/0xb0
[  430.124977][T15423]  ? cfusbl_device_notify+0x150/0x6a0
[  430.125006][T15423]  end_report+0x78/0x160
[  430.125035][T15423]  kasan_report+0x129/0x150
[  430.125071][T15423]  ? cfusbl_device_notify+0x150/0x6a0
[  430.125105][T15423]  cfusbl_device_notify+0x150/0x6a0
[  430.125135][T15423]  ? net_generic+0x1e/0x240
[  430.125164][T15423]  ? __pfx_cfusbl_device_notify+0x10/0x10
[  430.125195][T15423]  ? caif_device_notify+0x250/0xfc0
[  430.125226][T15423]  ? smc_pnet_netdev_event+0x3b5/0x6c0
[  430.125261][T15423]  notifier_call_chain+0x1b3/0x3e0
[  430.125290][T15423]  register_netdevice+0x121c/0x1ae0
[  430.125324][T15423]  ? __mutex_lock+0x51b/0xe80
[  430.125357][T15423]  ? __pfx_register_netdevice+0x10/0x10
[  430.125395][T15423]  ? __asan_memset+0x22/0x50
[  430.125417][T15423]  ? dev_addr_mod+0x2ce/0x3d0
[  430.125451][T15423]  register_netdev+0x40/0x60
[  430.125484][T15423]  bnep_add_connection+0x6bf/0xbf0
[  430.125526][T15423]  ? __pfx_bnep_add_connection+0x10/0x10
[  430.125561][T15423]  ? __fget_files+0x3a0/0x420
[  430.125598][T15423]  do_bnep_sock_ioctl+0x40e/0x640
[  430.125643][T15423]  ? __pfx_do_bnep_sock_ioctl+0x10/0x10
[  431.206940][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  431.212631][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  431.218283][T15423]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  431.223943][T15423]  sock_do_ioctl+0xd9/0x300
[  431.228469][T15423]  ? __pfx_sock_do_ioctl+0x10/0x10
[  431.233625][T15423]  ? __lock_acquire+0xaac/0xd20
[  431.238526][T15423]  sock_ioctl+0x576/0x790
[  431.242882][T15423]  ? __pfx_sock_ioctl+0x10/0x10
[  431.247742][T15423]  ? __fget_files+0x3a0/0x420
[  431.252437][T15423]  ? __fget_files+0x2a/0x420
[  431.257067][T15423]  ? bpf_lsm_file_ioctl+0x9/0x20
[  431.262054][T15423]  ? __pfx_sock_ioctl+0x10/0x10
[  431.266918][T15423]  __se_sys_ioctl+0xf9/0x170
[  431.271523][T15423]  do_syscall_64+0xf6/0x210
[  431.276046][T15423]  ? clear_bhb_loop+0x45/0xa0
[  431.280742][T15423]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.286667][T15423] RIP: 0033:0x7f7c3cd8e969
[  431.291133][T15423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  431.310853][T15423] RSP: 002b:00007f7c3dbf7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  431.319292][T15423] RAX: ffffffffffffffda RBX: 00007f7c3cfb6160 RCX: 00007f7c3cd8e969
[  431.327320][T15423] RDX: 0000200000000540 RSI: 00000000400442c8 RDI: 000000000000000e
[  431.335426][T15423] RBP: 00007f7c3ce10ab1 R08: 0000000000000000 R09: 0000000000000000
[  431.343404][T15423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.351385][T15423] R13: 0000000000000000 R14: 00007f7c3cfb6160 R15: 00007ffde2a49968
[  431.359392][T15423]  </TASK>
[  431.362712][T15423] Kernel Offset: disabled
[  431.367242][T15423] Rebooting in 86400 seconds..