last executing test programs:

3.476805956s ago: executing program 4 (id=1183):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000007c0)=@newtfilter={0x8c, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x6, 0x9, 0x5, 0x80000001}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x2}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x1}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x24, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

3.138723844s ago: executing program 4 (id=1190):
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x10, 0x6, 0x4e0, 0x0, 0x0, 0x340, 0x0, 0x0, 0x410, 0x410, 0x410, 0x410, 0x410, 0x6, 0x0, {[{{@ipv6={@private2, @remote, [0xffffffff, 0xffffff00, 0x0, 0xff], [0xffffff, 0xffffffff, 0xffffffff, 0xffffffff], 'veth1_macvtap\x00', 'ip6_vti0\x00', {0xff}, {0xff}, 0x5e, 0x6e, 0x3}, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @HL={0x28}}, {{@ipv6={@loopback, @loopback, [0x0, 0x0, 0xff000000], [0x0, 0x0, 0xffffffff], 'lo\x00', 'dvmrp0\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x2}}}, {{@ipv6={@dev={0xfe, 0x80, '\x00', 0x33}, @private2={0xfc, 0x2, '\x00', 0x1}, [0x7f8000ff, 0xffffff00, 0xffffff00, 0xff000000], [0xffffff00, 0xffffff00, 0xff000000, 0xffff00], 'macsec0\x00', 'macvtap0\x00', {}, {0xff}, 0x88, 0xb, 0x7, 0x7c}, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @local}, @local, [0xff, 0xffffff00, 0x0, 0xff], [0xff, 0xff000000, 0xff000000], 'veth1_to_hsr\x00', 'geneve0\x00', {}, {}, 0x73, 0xe, 0x6, 0x58}, 0x0, 0xa8, 0xd0}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x3, 0x9}}}, {{@uncond, 0x0, 0xa8, 0xd0}, @unspec=@CHECKSUM={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x540)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='net_prio.prioidx\x00', 0x0, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r2)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x14, 0xd, 0x6, 0x301, 0x0, 0x0, {0x2, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x2402c090}, 0x4) (async)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x14, 0xd, 0x6, 0x301, 0x0, 0x0, {0x2, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x2402c090}, 0x4)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f00000005c0)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000580)={&(0x7f0000000980)={0x8dc, r3, 0x8, 0x70bd2a, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_TID_CONFIG={0x250, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}]}, {0x3c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xbc}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xcd7f}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x50}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x39}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x48, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x3}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xa07}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xfff}]}, {0x1bc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xfffffffffffffff8}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x190, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xa0, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x0, 0x3, 0x6, 0x5, 0x39, 0x866, 0x6]}}, @NL80211_TXRATE_LEGACY={0x24, 0x1, [0x16, 0x1b, 0x1, 0x3, 0x16, 0x0, 0xc, 0x36, 0x18, 0x16, 0x1b, 0x0, 0x5, 0x1, 0x18, 0x36, 0x24, 0x24, 0x6c, 0x0, 0x6, 0xb, 0x4, 0x60, 0x12, 0x3, 0x5, 0x36, 0x5, 0x6c, 0x18, 0xb]}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x7, 0x3, 0x2, 0xe099, 0x6, 0x3, 0x7, 0x5]}}, @NL80211_TXRATE_HT={0x48, 0x2, [{0x1, 0x5}, {0x0, 0xa}, {0x6, 0x4}, {0x5, 0xa}, {0x1, 0x7}, {0x1, 0x7}, {0x7, 0x7}, {0x0, 0x8}, {0x4, 0x4}, {0x1, 0x1}, {0x3, 0x2}, {0x3, 0x3}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x0, 0x1}, {0x1, 0x6}, {0x1}, {0x0, 0x2}, {0x5, 0x6}, {0x0, 0x1}, {0x3, 0x4}, {0x0, 0x6}, {0x4, 0x6}, {0x3, 0x6}, {0x4, 0x8}, {0x0, 0x6}, {0x5, 0x9}, {0x2, 0x4}, {0x1, 0x4}, {0x3, 0x1}, {0x5, 0x5}, {0x0, 0x9}, {0x0, 0x1}, {0x1}, {0x6, 0x9}, {0x6, 0xa}, {0x4, 0x8}, {0x5, 0x8}, {0x4, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x4, 0x8}, {0x6}, {0x1, 0x8}, {0x6}, {0x5, 0x6}, {0x0, 0x2}, {0x1, 0x2}, {0x0, 0x2}, {0x2, 0xa}, {0x5, 0xa}, {0x6, 0x5}, {0x3, 0x6}, {0x7, 0x6}, {}, {0x6}, {}, {0x2, 0x2}, {0x1, 0x3}, {0x4, 0x9}, {0x6, 0x7}, {0x2, 0x9}, {0x5, 0x6}, {0x2}, {0x7}, {0x0, 0xa}, {0x1, 0x9}]}]}, @NL80211_BAND_6GHZ={0x2c, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x81, 0x8, 0xbf, 0x5, 0x174, 0x2, 0x2, 0x99d]}}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x9, 0x0, 0x4, 0x18, 0x6c, 0x3]}]}, @NL80211_BAND_6GHZ={0x28, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x10, 0x1, [0x2, 0x5, 0xb678cbf898a2d70f, 0x1b, 0x5, 0x30, 0x6, 0x6c, 0x3, 0xc, 0x36, 0x60]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x2, 0x400, 0xffff, 0x4, 0x8001, 0xa, 0xf8]}}]}, @NL80211_BAND_6GHZ={0xc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{0x1, 0x1}]}]}, @NL80211_BAND_2GHZ={0x24, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0xe, 0x5215, 0x1ff, 0xb9, 0xfffe, 0x8, 0xf4d, 0x1]}}, @NL80211_TXRATE_HT={0xb, 0x2, [{0x7, 0x3}, {0x5, 0x9}, {0x2, 0x7}, {0x1, 0x9}, {0x4}, {0x5, 0x2}, {0x5, 0x4}]}]}, @NL80211_BAND_6GHZ={0x68, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x3, 0x7, 0x401, 0x6, 0x81, 0x8, 0x6, 0x5]}}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x6, 0x36, 0x18, 0x1b, 0x30, 0x36, 0xc, 0x18, 0x30, 0xb, 0x67, 0x12, 0x12, 0x6c, 0x1b, 0x1b, 0x36, 0x6, 0x10, 0xb, 0x12, 0x30, 0x3, 0x9, 0x60, 0x18, 0xc, 0x18, 0x4, 0x16, 0x3]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x9, 0x7fff, 0x8, 0x1d9d, 0x5b93, 0x7, 0x8]}}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}]}]}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}]}]}, @NL80211_ATTR_TID_CONFIG={0x1c, 0x11d, 0x0, 0x1, [{0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7ff}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}]}, @NL80211_ATTR_TID_CONFIG={0x14c, 0x11d, 0x0, 0x1, [{0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xbb}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x87}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7e}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xd1}]}, {0xe0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xd2}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xca}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xa4, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xa0, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xa, 0x5, 0x7, 0x401, 0x1, 0x8, 0xf4, 0x2]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x4, 0x1, 0x8, 0x0, 0x8, 0x0, 0x3]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x0, 0x4, 0x401, 0x9, 0xc7d, 0x8, 0x7ff]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0xc2, 0x7, 0xcf, 0xb68b, 0xbb0e, 0x6, 0x7, 0x6]}}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HT={0x2a, 0x2, [{0x3, 0x4}, {0x1, 0x8}, {0x0, 0x5}, {0x4, 0x6}, {0x7, 0x9}, {0x2, 0x1}, {0x1, 0x1}, {0x0, 0xa}, {0x3, 0x8}, {0x3, 0x7}, {0x0, 0x2}, {0x7, 0x4}, {0x3, 0x8}, {0x1, 0x8}, {0x6}, {0x2, 0x1}, {0x0, 0x8}, {0x1, 0x5}, {0x6, 0x9}, {0x5, 0x3}, {0x3, 0x4}, {0x2, 0x8}, {0x7, 0x1}, {0x1, 0x1b}, {0x6, 0x1}, {0x2, 0x1}, {0x1, 0x6}, {0x3, 0x4}, {0x7, 0x2}, {0x0, 0xa}, {0x2, 0x1}, {0x0, 0x6}, {}, {0x5}, {0x2, 0x5}, {0x2, 0x5}, {0x0, 0x1}, {0x2, 0x9}]}, @NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}]}]}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xad}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x9e}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xa7}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}]}, @NL80211_ATTR_TID_CONFIG={0xb0, 0x11d, 0x0, 0x1, [{0x60, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x6}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xac}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xe4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x2}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x70}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x20}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x18}]}]}, @NL80211_ATTR_TID_CONFIG={0x4c, 0x11d, 0x0, 0x1, [{0x48, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xa0}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xd2}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x8000000000000001}]}]}, @NL80211_ATTR_TID_CONFIG={0x340, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x58}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xed}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xd}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0xcc}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x5d}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xb3}]}, {0x2a0, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x190, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x6c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x15, 0x1, [0x24, 0xb, 0x16, 0x1, 0x1, 0xc, 0x5, 0x36, 0x4, 0x3, 0x5, 0x24, 0xb, 0x30, 0x9, 0x0, 0x2]}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x6, 0x1}, {0x6, 0x3}, {0x7, 0x1}, {0x7, 0x8}, {0x5, 0x4}, {0x1}, {0x1, 0x4}, {0x2, 0x3}, {0x2}, {0x7}, {0x7, 0x5}, {0x4, 0x6}, {0x7}, {0x2}, {0x1, 0x7}, {0x0, 0x7}, {0x3, 0x1}, {0x4, 0x2}, {0x2, 0xa}]}, @NL80211_TXRATE_HT={0x7, 0x2, [{0x1, 0x3}, {0x3, 0x1}, {0x3, 0xa}]}, @NL80211_TXRATE_HE_LTF={0x5}, @NL80211_TXRATE_HE_GI={0x5}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HE_LTF={0x5, 0x7, 0x2}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0xb8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x1}, @NL80211_TXRATE_HT={0x3f, 0x2, [{0x5, 0x3}, {0x4, 0x9}, {}, {0x4, 0x8}, {0x7, 0x7}, {0x0, 0x7}, {0x4, 0x9}, {0x4, 0x2}, {0x6, 0x6}, {0x6, 0x9}, {}, {0x1, 0x8}, {0x1, 0x9}, {0x0, 0x3}, {}, {0x0, 0x9}, {0x3, 0x3}, {0x5, 0x9}, {0x3, 0x2}, {0x5, 0x3}, {0x5, 0x8}, {0x6, 0x6}, {0x4}, {0x3, 0xa}, {0x3, 0x8}, {0x1, 0x4}, {0x4, 0x1}, {0x2, 0x1}, {0x7, 0x6}, {0x6, 0x3}, {0x7, 0x8}, {0x2, 0x3}, {0x1, 0x6}, {0x0, 0x3}, {0x1, 0x2}, {0x7, 0x2}, {0x1, 0x6}, {0x5, 0x5}, {0x0, 0x9}, {0x5, 0x6}, {0x1, 0xa}, {0x0, 0x4}, {0x6, 0x8}, {0x1, 0x7}, {0x1, 0x5}, {0x1, 0x4}, {0x1, 0x2}, {0x1, 0x4}, {0x1, 0x3}, {0x7, 0x7}, {0x7, 0x8}, {0x5, 0x5}, {}, {0x1, 0x9}, {0x6, 0x5}, {0x2, 0x9}, {0x1, 0x4}, {0x2, 0x5}, {}]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x2, 0x24, 0x6c, 0x3, 0x36, 0x1, 0x6, 0x9, 0xb, 0xc, 0x19, 0xb, 0x9, 0x48, 0x16, 0x18, 0x1b, 0xb, 0x6, 0x6c, 0x4, 0x24, 0x27]}, @NL80211_TXRATE_HT={0x4d, 0x2, [{0x1, 0x8}, {0x1, 0x1}, {0x0, 0x5}, {0x4, 0x5}, {0x6, 0x8}, {0x7, 0x6}, {0x6, 0x4}, {0x0, 0x5}, {0x4, 0x9}, {0x1, 0x4}, {0x1}, {0x0, 0x2}, {0x4, 0x4}, {0x3, 0x6}, {0x1, 0x5}, {0x4, 0x13}, {0x1, 0x4}, {0x6, 0x7}, {0x1, 0x7}, {0x1, 0x2}, {0x3, 0x8}, {0x1, 0x9}, {0x6, 0xa}, {0x0, 0x7}, {0x7, 0x6}, {0x2, 0x9}, {0x4, 0x3}, {0x6, 0x3}, {0x3, 0x5}, {0x2, 0x7}, {0x2}, {0x0, 0x2}, {}, {0x1, 0x8}, {0x5, 0x3}, {0x0, 0x1}, {0x7, 0x1}, {0x6, 0x4}, {0x4}, {0x5, 0x8}, {0x7, 0x9}, {0x2, 0x4}, {0x3}, {0x0, 0x2}, {0x4, 0x5}, {0x1, 0xa}, {0x6, 0x1}, {0x5, 0x8}, {0x1, 0x1}, {0x7, 0x2}, {0x0, 0x9}, {0x6, 0x6}, {0x6, 0x6}, {0x1, 0x4}, {0x0, 0x5}, {0x0, 0x9}, {0x5, 0xa}, {0x6, 0x8}, {0x2}, {0x0, 0x2}, {0x2, 0x1}, {0x5, 0x6}, {0x6, 0x4}, {0x1, 0x8}, {0x5, 0x3}, {0x2, 0x3}, {0x4, 0x8}, {0x7, 0x4}, {0x1, 0xa}, {0x5, 0x3}, {0x3, 0x5}, {0x3, 0x8}, {0x1, 0x3}]}]}, @NL80211_BAND_2GHZ={0x34, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5, 0x6, 0x2}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x6, 0x9, 0x200, 0x0, 0x9, 0x8001, 0x6, 0x8]}}, @NL80211_TXRATE_HE={0x14, 0x5, {[0x2, 0xff, 0x5, 0xc58, 0x5, 0x4, 0x8ac0]}}]}, @NL80211_BAND_60GHZ={0x34, 0x2, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x83, 0x6, 0x4, 0xd1, 0x1, 0xfffc, 0x6, 0x8]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x507, 0x5, 0x2a, 0x0, 0x2, 0x9, 0x3b8, 0x6]}}]}]}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xec, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x6c, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x21, 0x1, [0x60, 0x6c, 0x1b, 0x2, 0x18, 0x48, 0x1, 0x60, 0x48, 0x4, 0x16, 0x77, 0x2, 0xb, 0x4, 0x6c, 0x6, 0x9, 0x2, 0x6c, 0x2, 0x5, 0x36, 0x12, 0x16, 0x4, 0x4, 0x24, 0x2]}, @NL80211_TXRATE_HT={0x2e, 0x2, [{0x6, 0x2}, {0x1, 0xa}, {0x1, 0x5}, {0x4, 0x4}, {0x6, 0x1}, {0x4, 0x3}, {0x4, 0x3}, {0x0, 0x6}, {0x2, 0x6}, {0x1, 0x3}, {0x6, 0x7}, {0x5, 0x6}, {0x6, 0x1}, {0x1, 0x6}, {0x7, 0x6}, {0x6, 0x3}, {0x3, 0x1c}, {0x4, 0x5}, {0x4, 0xa}, {0x5, 0x3}, {0x5, 0x7}, {0x4, 0xa}, {0x4, 0x3}, {0x3, 0x9}, {0x1, 0x1}, {0x1}, {0x5, 0x9}, {0x3, 0x4}, {0x2, 0x3}, {0x6, 0xa}, {0x5, 0x1}, {0x7, 0x2}, {0x5, 0x6}, {0x6, 0x2}, {0x2, 0x6}, {0x3, 0x6}, {0x3, 0x4}, {0x6, 0x1}, {}, {0x0, 0x6}, {0x4}, {0x2, 0x4}]}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0xc, 0x48, 0x12, 0x1, 0x16, 0x36, 0x31, 0xb, 0x2, 0x48, 0x12, 0x3, 0x5, 0xc, 0x2, 0x4]}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x3, 0xcf, 0x7, 0xe433, 0x4]}}]}, @NL80211_BAND_6GHZ={0x64, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x20, 0x1, [0x6, 0x30, 0x36, 0x4916c259a0c54ff7, 0x4, 0x6c, 0x6c, 0x48, 0x16, 0xb, 0x18, 0x5d, 0x4, 0x36, 0x12, 0x24, 0x6, 0x6, 0xc, 0x24, 0x4, 0xc, 0x16, 0x9, 0x16, 0x16, 0xc, 0x18]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x22, 0x1, [0x18, 0x18, 0x9, 0x5, 0x60, 0x60, 0x3, 0x6, 0x48, 0x36, 0x5, 0x6, 0x12, 0x6c, 0x24, 0x5, 0x18, 0x3, 0x60, 0x48, 0x16, 0x1, 0x1, 0x18, 0x60, 0x36, 0xb, 0xc, 0x48, 0x5]}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x6c, 0x3, 0x2, 0x36, 0x6, 0x0, 0x12, 0x4, 0x2, 0x1, 0x5, 0x5, 0x6, 0xb, 0x6c, 0x24]}]}]}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xffffffffffffffff}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x200}]}]}, @NL80211_ATTR_TID_CONFIG={0xd4, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x46}]}, {0x18, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x48}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xdb}]}, {0x34, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xd}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xb}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x9e}]}, {0x50, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xef}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xfffffffffffffff9}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xf7}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x9}]}]}]}, 0x8dc}, 0x1, 0x0, 0x0, 0x4084}, 0x8000)
socket$nl_rdma(0x10, 0x3, 0x14) (async)
r4 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="18000000131467ef"], 0x18}}, 0x0)

2.920369926s ago: executing program 4 (id=1192):
sendmsg$NFT_MSG_GETRULE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c00dc1230aeb9138346c791b46727fa72030000190a0102000000100000000000000000f500010073797a300000e69197737d1f8c7b3d8792e4870e5546350d2694ed14f2e07940d8ce1ce16750d87f94aee0af8c8eb46de376002a5591a3561ca852995ac094eef35a2472294593614447790b"], 0x2c}}, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
ioctl$TUNSETDEBUG(r0, 0x400454c9, &(0x7f0000000200)=0x3)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d083910000000000000a1180015000600142603600e120900210000000401a80016000400144006000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000040)={@val, @val={0x3, 0x1, 0x100, 0x2, 0x8, 0x8}, @eth={@broadcast, @remote, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x5, @local, @empty, @multicast, @rand_addr=0x64010100}}}}}, 0x38)
r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r3, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r4 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r4, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
socket(0x1e, 0x80000, 0x5)

2.552982621s ago: executing program 4 (id=1195):
socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40a01, 0x0)
socket$kcm(0x2, 0xa, 0x2)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x80001, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6(0xa, 0x3, 0x87)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@call={0x85, 0x0, 0x0, 0xb4}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000040)=""/73, 0x18000000}, 0x70)

2.516232341s ago: executing program 2 (id=1196):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
socketpair(0xb, 0x2, 0xfffffff8, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
bind$x25(r2, &(0x7f0000000040)={0x9, @remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x2}}, 0x12)
sendmsg$DEVLINK_CMD_SB_OCC_SNAPSHOT(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x3c, r1, 0x1, 0x70bd2c, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x1b, 0xda2}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004000}, 0x40)

2.387436065s ago: executing program 2 (id=1198):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r0, 0x849)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x24040081, 0x0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0x0, 0x0, 0x3f}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)

2.24308995s ago: executing program 4 (id=1199):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x5e, &(0x7f0000000040)={@local, @multicast, @val={@val={0x88a8, 0x7, 0x1, 0x1}, {0x8100, 0x0, 0x0, 0x1}}, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x20, 0x2b, 0x0, @private2, @private2={0xfc, 0x2, '\x00', 0x1}, {[@srh={0x0, 0x2, 0x2, 0x1, 0x0, 0x0, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}]}], {0x0, 0x0, 0x8}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='\n\x00'/12, @ANYRES32=0x1], 0x50)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x20, 0x1402, 0x1, 0x70bd28, 0x25dfdbfd, "", [@RDMA_NLDEV_NET_NS_FD={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000801}, 0x800)
socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = getpid()
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RELOAD(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="0100ffff000000000000250000009c4d07d60b6b4ed48b2b131e5340d574239368733800c901800d65456a481a227fe8dac794a4c7413bea91c2fb9af1053add42d0f7253de0b2ee740200000000000000e112ccb8541172ff"], 0x14}}, 0x4000084)
ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, &(0x7f0000000180)=r2)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x0, 0xc8, 0x8, 0x0, 0x5803, 0x290, 0x2e8, 0x2e8, 0x290, 0x2e8, 0x3, 0x0, {[{{@ipv6={@remote, @mcast1, [], [], 'vlan0\x00', 'geneve1\x00', {}, {}, 0x32}, 0x0, 0xa8, 0x108, 0x0, {0x0, 0x2000000000000}}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@remote}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private2, [], [], 'wlan1\x00', 'veth1_vlan\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x348)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r6, &(0x7f0000000200)=0x5, 0xfffffe97)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r5, 0x0)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r7, &(0x7f0000000380)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x2}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r9, 0x40305839, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x4})
setsockopt$ARPT_SO_SET_REPLACE(r8, 0x0, 0x60, &(0x7f0000000240)={'filter\x00', 0xb001, 0x4, 0x3a8, 0x0, 0x1d0, 0x0, 0x2c0, 0x2c0, 0x2c0, 0x7fffffe, 0x0, {[{{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0x1d0}}, {{@uncond, 0xc0, 0xe8, 0x0, {0x0, 0x1e03}}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x46e, 0xfffc}}}, {{@uncond, 0xc0, 0xf0}, @unspec=@CONNMARK={0x30}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x3f8)
r10 = socket$inet6(0xa, 0x6, 0x7)
getsockopt$inet6_int(r10, 0x29, 0x4c, &(0x7f0000000000), &(0x7f0000000080)=0x4)
sendmsg$NFT_BATCH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)={{0x14}, [@NFT_MSG_DELSETELEM={0x6a0, 0xe, 0xa, 0x5, 0x0, 0x0, {0x2, 0x0, 0x5}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x674, 0x3, 0x0, 0x1, [{0x270, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x26c, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0xbf, 0x1, "2036320bd3e6b68e6b6c1efa4a5624d0fe5ffde24e35952973ff179d9192aad0ed3892056ebb8e37bfa7032295472d6b3e5b5ebe4839bba85ef23148c41e036aafacde46a86cf6a58fb8384531dd075e0f12eafa200a28e4ab0b61f76657add6bb5385e81f872fed712d6fc2f6e645374c8fa44688281231f53574b12a1c6f6c49634401cf06c4c985765101ab69945671c766a84c0ccd360be2549b636c3b70996fe0a76d91df63e479dbbb86741551ad9a825084b7c921ff49e5"}, @NFTA_DATA_VALUE={0x65, 0x1, "6b5a7d04dae862b935650fb672e38d24b3bf55334dc4670bc75356505f47d75c4596e9ff612df5a21eefb2a70047bc1584813160c0c5ee826a757a7b2c313cc3442fccaceec5e46f4282b9755c1f03f5d6ea35a8bcd53f49d1af13c507759e7239"}, @NFTA_DATA_VALUE={0x84, 0x1, "8e195805522be064a75a9b8eaec9b317e751d6f87da758e18ea0b79650628cf17606a5a6fae5ded3da83e68f638d6119a22c805fde71cbf3b872ef6ad0db105cba6d77d8d8262d46048b6453dc3989ee954d7c502849aee40cf8dc119d3966d7c6469547eebeafea1504aaf014e4edb92354c51f540547e76122ea0be0bd99d3"}, @NFTA_DATA_VALUE={0x8d, 0x1, "dc078ac263e9d35d10d342e7edcf2c4c2c33d2b15f4d66fe04bbe67bcbd7648b9e89a4ce6d2085d89aacbe1912a0e6a6d95481574eac4252776002ccbc019886a1577c1867f0d699427f25bce8bece38c558275405688c5eadef21f2605df322a2b8c9f08c6290dc8410715960b089d8d38abc5e00a94264b518859ea01997618634d8b3e889ebd095"}, @NFTA_DATA_VERDICT={0x2c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}]}]}, {0xe8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_DATA={0x1c, 0x2, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0xfffffffffffffffa}, @NFTA_SET_ELEM_EXPRESSIONS={0x80, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @dup={{0x8}, @void}}, {0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}, {0x14, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x4}}}, {0x18, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x12}]}}}, {0x10, 0x1, 0x0, 0x1, @target={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @osf={{0x8}, @void}}, {0x1c, 0x1, 0x0, 0x1, @reject={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_REJECT_ICMP_CODE={0x5, 0x2, 0x5}]}}}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x7fffffffffffffff}, @NFTA_SET_ELEM_EXPR={0x10, 0x7, 0x0, 0x1, @payload={{0xc}, @void}}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x3}]}, {0x318, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0xc}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_USERDATA={0x8e, 0x6, 0x1, 0x0, "9791d30e6b7149969870119756b4ec406ab7254b58e1c4c9f78e5965f2285f96f44a535d0b8a7c725b9af7fc5b6457fa4b1c0b1508a245de7c1d360f4b57975b10ab8371024a8201b2aae3b5728479c277f8e775783094bf197f983cf445e310021ae1a6ab705ecad259fa15d6a9e9286874090d66bdb13ad0b4ca5c1209dbee0f64554fae9ba9d10310"}, @NFTA_SET_ELEM_KEY={0x270, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x95, 0x1, "fb2b0a39e933a7f12f7b1a647be5069f7e1035ab0bbdfb2b19405f70391ed3c52532989139071d31f1148d3e0c909c648501e9a1bc862196d5f54238764b59659d36d4ebd22ba1b40384ad0b925de7939eb3d75c344be89e741b25409cc283589b6c91edb9ef37438cf8010788d74a58ca6e9e893f44c502e37d83aee0be252da9f2bb7869c84f1dc9eab6ece626645db2"}, @NFTA_DATA_VALUE={0x96, 0x1, "5c23bf6388bcfbf1e0cf7d02d22c635790729f899521dc4ff6da54606e56ecde5ae8baf32fc6936593b390f2adff5dbe0a0c137354c6a639d8d70a88524b391a949e52f837b36082de90bed33dd909d5820ce9f0a9e3b347e97070cf070090b179ff8d6bbd0b64c6bbe40eceb00a9486f4a588468c5a0cb345aa621ce0d32bb2d5ae173ae99c403d2ef38478c10ab8ad1c1e"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}]}, @NFTA_DATA_VALUE={0xe4, 0x1, "1b59c386ab2b05719fa635760eda99fc80321886c0bfbb671586e5689e641c8fbd0815a3be4d9b4be0a6cd84937e24df7c4176b07a67cf279c1d031e15ccbf7d1aca88f6ce05a7e043cf0f7237f9c9fc8aaceecfbe717baa92a3d21e285553eaaac02fbc60bf79535811f3b49271f42d4487793f8f9a29e14f97fb29c4d4ee03a019ee69aec6607f4b744f330e503a5010d7ef4d88ee0964b4b856281e895d69ec1854f440989da3d075a549d56a3afee283903aa289af5d8297f904d1662213480702ef080bfc4574c17b1a6f11697cc2908e3e08e486b37dae5c1a9153f318"}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x3c, 0x1, "ea0f3203115563b91338bf615fb210d77dd94c38d98b2d28a4935a61b65088516cdc7c313dc851f74a6beb294a7436638e7b5d22bfa9f262"}]}]}]}]}], {0x14}}, 0x6c8}}, 0x0)

1.972483216s ago: executing program 0 (id=1202):
socket$kcm(0x10, 0x2, 0x0)
pipe(0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000200)="ff7f0e3f2617d1f42ab5a1db8511", 0x0, 0x2040000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x6}, 0x50)

1.938196587s ago: executing program 0 (id=1203):
socket$l2tp(0x2, 0x2, 0x73)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000003c0)={'bond0\x00', &(0x7f0000000340)=@ethtool_coalesce={0x1, 0x2, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x401, 0x4, 0x4, 0xffffff7e, 0x0, 0x0, 0x0, 0x5, 0x1, 0x3, 0x0, 0x4, 0xffff}})
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r1, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x4e21, 0x100000, @private2={0xfc, 0x2, '\x00', 0x1}, 0x80a}, {0xa, 0x8, 0xfffffffe, @private1={0xfc, 0x1, '\x00', 0x5}}, 0x2, {[0x9, 0x1, 0xfffffffe, 0x1, 0xffffffff, 0x8, 0x4]}}, 0x5c)
r2 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000002d0301000000000095000000000000006926000000000000bf67000000000000150600000fff070067060000200000006a0200000ee60000bf050000000000002d350000000000006507000002000000070700004a0000007d75000000000000bf54000000000000070400000400f9ffad53010000000000840400000000000005000000000000009500000000000000db13d5d8b741f2cdaabc8383caf56b8c2b84a8d09535a157f9005bd38addaa65b925cd3ded25b8b9e2a095d2c51ef45c5588ec78c7f32946b17cecfe54c53ab530c58b672d42961e1445ce83def332233b081df18961d6822d133bf72a4de1cc0800004537fc211576846ac629d1d93265ba474580047a9dc88de358ce795731891a2031de4e09740c64e5bb6f991ed4785a9773a433e0db9c1a7d4ab9d658ce9cfdb4db3bed62bcb2bc91ddcdfac2e6d4421c49fb6641cbf56914e76702f673b586c767030090a3967093b000e3806f825f1d0da2a304e06543b56d35235d78b7a7fe912971aab876"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c00000b8bd7a5a3b36d6a001e00010000000000ffdbdf25020000000100000400000000"], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x22, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x4, &(0x7f0000000080)=@framed={{}, [@ldst={0x2, 0x0, 0x3, 0x1, 0x0, 0x28}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

1.764782042s ago: executing program 1 (id=1205):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newlink={0x44, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x1840, 0xff7f}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_ROUTER={0x5, 0x16, 0x3}, @IFLA_BR_AGEING_TIME={0x8}]}}}]}, 0x44}}, 0x0)

1.670517526s ago: executing program 0 (id=1206):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="200000006800e97800000000000000000a0000000000000008000500", @ANYRES8=r0, @ANYBLOB], 0x20}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x6c, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x4c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x38, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LINK={0x8, 0x1, r4}]}}}]}, 0x6c}}, 0x0) (fail_nth: 9)

1.039946609s ago: executing program 2 (id=1207):
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c)
listen(r1, 0x0)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000040)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x0)

1.039426551s ago: executing program 0 (id=1208):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000080), r3)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f00000002c0)="140000001d000b63d25a80648c2594", 0xf}, {&(0x7f0000000580)="3f1c2725e7", 0x5}], 0x2}, 0x4000000)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x20, 0x10, 0x401, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b}}, 0x20}}, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@bridge_dellink={0x2c, 0x13, 0x5, 0x70bd29, 0x0, {0x7, 0x0, 0x0, r8, 0x44000}, [@IFLA_AF_SPEC={0xc, 0x1a, 0x0, 0x1, [@AF_INET={0x8, 0x4, 0x0, 0x1, {0x4, 0x2}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4000)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x2000, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000040)={'\x00', 0x2})
ioctl$TUNSETOFFLOAD(r9, 0x400454c9, 0xad356f19b320d40b)
ioctl$TUNSETLINK(r9, 0x400454cd, 0x6)
bind$alg(r1, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0x58)
r11 = accept4(r10, 0x0, 0x0, 0x0)
sendmsg$alg(r11, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000001e008d2af6ffffff000000000a0000", @ANYRES32=0x0, @ANYBLOB='\x00\x00', @ANYRESDEC=r1], 0x24}}, 0x4044)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
socket$nl_generic(0x10, 0x3, 0x10)

998.628996ms ago: executing program 4 (id=1210):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x4e20, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x23}}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000030000000000000026d0000095002b000000000093adff012255f674412d02000000880b5f04596a5e99fce658be2f200c699223886d8be4b50000005ab527ee3697f98125f30e6326996a3cfee33025a30b45bdcf2c69d105e5e55a1d273683623f1a5dc6e3c7e20eb7a98ecf3bd2cf898e924abe26ac296f660e69ba982fd76e00dcff7f0000ca6b78ad833488cfe4109eaf009eddcf21f5c63cde2f00150200000001000000520a0000151d010000000100bf00000000cc587424363da52001a3cdf2000000db74596fd72c002a60c1bc7dc8c38b7d2e13c50424b9dd1145d03ff45f70685c6bd9ff41c69b7de406e89dcbb7677e65a88a8407a9e7f9c0e91028b0856eb1ed9474480737a55ebb0bd701f7fb21135c6172eba7eb8a341f07e5a2d1e88b3cfc22df01e4bac9d97328fa2a82b5e8741e02056d93a433f50479387467824262852c7939db5672d07cdbe8e14abf56497e5d56dbe37551b870b2851c3f0a1a9ebfcba105a6ccdd01b0f04edb256c0200000073f6db43661bd7f0e2536ffbfe5ca31b4083145531458b7d1e341c6b351ebc5223f54d6bec93f4ef088e5d1be2515226988d664709ff03f1aa3dc7f1580ace9bf2afd28d0700000000000000d6eb372713255012e028cb2654d493a0b43bf21375709f348f5eda2967199cc936859a538100070000000000dc10e13ef227f627a40000ad1fa253d33fa74f172d3407ae4e1e347c0c6ef9dd2b6bb700000000000000000c586272c3f4d79bc36315745cb149f3cb385e6add14652003c7cdd3324f07d134d3a6c718bbd1aafe1140cff0be4c6f8df084c5e9734ae30aa9af030025f01ab03a9b1074407136bc506031f0916a39d3057d55183612b39e73ae8e6dc30356886a831836469e2051d937eb85f3f2d5ae2c1dca476b97419a3b76ed62409d004d7fbe362145d19605d760df4c5124ca325d374b371867a79b35c6617fc3327191fbf514573f0e30d1d60be2168fffc2f3dccd599a2cb77f124e22f87673675805494db821f39b50d938d5fd8c6b2a3a324c257bc9110971b749ccd74089ed6b86f81ca3ba47d8f71d290ed1b1a11f7a67125170c88c3b6a50692cc0064fc6bbd312536ac15016c85c6332226401b110da9c786eeca22debc99335587b54c13c3107008fa069af8223b38ced735c2d906551004d8dc10d88738488da01ffa4add56474573c964a270000f2f16625c0c10200000000c7a5ca60fdad159f2e44171f39638410020000004825d081f2d987f05c534187738655d7dc958f2046fa0c1619a6554b82d9c162eb61ca74f1ffdaccf0ea5f06e0fca8b27ff3983ab74fd3d560700a1fab44e77e312b3b129e000302d613916c9bcf9f0000fac73a5b6bfb27f88dba816020be760f7b45e001efada8000000000000fdaf4660402f7b3b79a433e08074ea2462974a00040000eb01352638f56dae0249d15ba8767259658878b7492cfbacde9b57cf4de00788adce638190f3570e0b4c80ef682df22201270955afb6008846557ee3bc09fda6dbb6550d597300eb82a184c96ffde5a30e5433e866665b98ca2002c804c22ff2634b7bfbf5c0d586cda5b45fd00dede1e88a4d41dee7cc76d7a23d06acb1d2d4c58faea84158bb440df2a694f4cdcaa4f65c22efffffffffffdd00000000d503d79986958115ae07b70f991430b7fb475d77b869ee02000000000000000000001ffff0ef89b2a68d2b05c995445d8a7700bcdfbec74fb2dd163e863315e84498dfb52bb93f6c9084659ce777ddac563c8596c2b1d8180289a61faa95a82bf1cfb7f2fd7252e9322abe282c33445d443a67467893b9bf0d1c8130ae6b226900000635376413c29f7c6f7b7e29b9a0c64e68328661f0c06e21f7d7dc22174ea4447a6f60edef3a4168d40200fbc71104512efe8e5d7d934aa289b4bd2b870000000000000000000007000000002000000000009b777883a02f0593dfc4cb4114b9f9cf4ad155110cc6ace2b322ac31bfa27847c799c8009a1ea5b98e525e6383ad7fd9795170e7b11e247603c2ff49a11459c7f606d729d3979676bffb3049166bb84a0f061991bd57c2566c10c282352aba05b6164ef876915a3f2491e4793e590dcc71de10da96366c1e992c0068c940dd4422c9882d3aa0f8a797b8fea6efcfb5276b7679f15559edaa977504cc0b2f777acb907ebf5fc14add71d0bca37405ded69b77ab4a3d7487fd04000000de17e1e13b93669b79556abb722d9c085b189b5fd1f30e8dc813f608830b110001732135e8e7262f290000923bfb6b41ff3792cee2fc37eee739c3e36a4bc80112968ec0d8902eced1fe552018014a463abbbf7ccd6a92a5734e3ebfca9b6e88e031f31de2183652e77c164c646a1cfd3710aa4205d8d4d4f974133ccb1e49feb42664eccd809c0ba8917eda87489e8946d5c8156197bcb66fd5606c63e3389ee9e8552381646365066ef9a36a449c96485c22ad1aa423b7b89efbc6cd54000bb0ea5f4f1e8773144fb6ac9a44d43593d77e66aa7ed7f3d4e7b211590c738888d02b2dbb0b2ba73ec72e1d8d7360a128499dd19e1e7b9b0671f4f58515b45ecb9964f3c4ddb8234391d514f8d996d8d6dd7f8fadfee2d7a0035638ce27c2936cb04b30a0eb0cde0000000000000040000000ec3c12ecee8fc3a40000000000000000e215b00ce2570b930723cbadb4033d1b8aaa2cfb3fb89e4a6e89737fd6232218a9e0c099d1eb59d60b3cca089785642f327139bc4394fb6d547a9b3c22599e780c1da7433fb47615d372e3fffe9703e37d5c87d513165278650738efcc04d27b766cf7f60066edd292f6c8a2174f391ed164bb1816819ceb3e378e776d422bc946cd9501accebeac3a5b31d8abc68ae537cd44a04e6bc21c35a7beab2610c51e593676bf635a20f597f4631b91454d182f826071f5210bd6d93173589929b23801e63c2266fde13b5a04b8d48be057c752bc415a756ea9b4d34156c4f73dd5e5924ef101a5fcdaf37c7ba2c4a9de9b000000000000000000000000000000a73b862e4b63c245616b522345587d0ee65a6902bdd0abd941e8aba37510b222ae544f395edd1b92ad53fc68f08ea00edc5e10d768836169dd296d56b306e8b75778c37571792a6c3d8b02ef378ebd59422cdd008bef6f80a80a68641ea5ed4f1126bb676098c10bf663eb3fb8c839364d28fd046dc64b35f9c3397ce6f4ad357b0000000000090000000088c7a8e2638f650a6f04a6f33a090f59414d6ebcbc687e66d600000000bd0a58ea6d36fc2cf9b9a71c137a2a22adb1006f371d4faf47285fd66fe0389afb96854bb360edcdf11b4ff6dd578bba93e949d240cde9b5836cb46032484dc19c93db7b6e5afa10547c78e76a3111557346e52566df196fd630561bb908fff4d2e19562aabd43742a26a43799f8636fa04ceb40c9e4ca1cfbbc7b949cd245a3ee118fd0d4f639444539af8766028d4ac4d4c548e290199e0dacbb4f6796b39bf32934d941ba2f88e3ebd0cf8e24f99eca86e4ca9b2cd2b54044a7fc4631572a6378a32df288785f146275c1f548e2a0c1016744e05f9de5044373d7650125027547eefe7b2d8c8871bb65395fae99d8456883705bfdfb00001854b2e5efa8aaf25827d659f592b1575281ec125de7fb91cd81d91dcb19f5cdf1e1e2b4a8a1389753a09110538689e38e07fb2dc72bd4fd11d7bc16aac5d85c6101bb722895248e463a5fb45ce0e564e90cb19d5993b471687ae4165e29cf2f58082115f5f8569896eedfd798733223e6d6584997510c374912ab798bd4af4654c01bb2c411bc36468ddd62b4eba5cfc8953526e0e5b1359797956152d0098ce47c62c3fe5a23219389622b7f65bf03527d25c3941b9cf1ffeedf6d99082bb57ea871c12213cc40900f83033bc18c529171fae324c315bc6ce358831d0230412212acfd5fc8d5cb0d028cf568e8bb40e27befe2ff01f7c6674a4d86d900633ea36641e0a781ea0ea7f2d928b8b22e2f97dd13348927375baea6863bef4acf4299096ada5cdd2a0eaafaa760a79d102d1e0c0000000000000000007926653b8d79ce16a432f124786a0bc3c5b7d196822492ae1ccf91aeac16406ad6f9cd3d96d57fceba8360ae49f73351814c9c2972f11064aaf3739d9100f9c0e4d0cb17d50c82e305ba7d62cf1cc6da26e34982a8c74dd8122cf5b5e7c34fd2712a0cef05e4d8ec7dd363219676bd9b19943185b132eb35a695e208dfa5cecdb1d6425c8879063c0f11bd64291a4209ee6dc1d9e9010013f6148c603e6a335e298efd6ab5cccc47a2c568c6afec54f8251bd840752addf200371361c9eedf05ed98585cf6d99e9e56055064bda2d373369761238c278147cd0eb7799f6b9c9fcaa3fd282154994f5b25420c86db9b6401e885de1c615a719a1c83e8fbbb181282dbaf3313a4e4a4877e9f37607e2cd6da0cf6371ec06a75f5a4206b2418ad8897ae149085d63f01f22eca44033234b3930b4d5da756669a1d59d69e7de54abf439988ed7ec33c2d0a901bb0985a24878984d8a4340fa9a356d100926fb5f2ef9976366a61b8cc2bcb1c072b0e9c564852388e1edff10d75b3832792e471cc15b40380f94d834243080158603fbc9134d6983c540525447478984611c0d9666941bfc0a30db47a8828b6e5c51aee2094599b4ce52795750e1764f1657ca8c5633c71287239dddf5c651496f7bbd148c937f083d2e4e0197dbc6ff0649c749707b17399b1d7efad23abb8b40b38704737e15662ae4913a4a001cd3b71c7af75b5ffad9780650c800a40ca80ddc41987919142fd28dbf22db5f4c435415a03455e1d55d1783ccef97d7e4655cf839d06"], &(0x7f00002bf000)='GPL\x00', 0x4, 0xb7, &(0x7f0000000040)=""/183, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000180)={r0, r1})
ioctl$sock_kcm_SIOCKCMCLONE(r2, 0x89e2, &(0x7f0000001380)={<r3=>0xffffffffffffffff})
sendto$rxrpc(r3, &(0x7f00000027c0)="dc9df1", 0x3, 0xc4, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000200), r3)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd0, &(0x7f0000000240), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, &(0x7f0000000440)=0x2, 0x4)
sendmsg$xdp(r6, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2068045}, 0x0)
sendmsg$NET_DM_CMD_STOP(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8004}, 0x2000001)

856.429263ms ago: executing program 1 (id=1211):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r1, &(0x7f00000003c0)={0xa, 0xfffe, 0x3000000, @mcast2, 0x5}, 0x80)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="b000000000010104000000000000000002000000240001801400018008000100ac1e010108000200ac1414bb0c0002800500010000000000240002801400018008000100ac1414bb08000200e00000010c000280050001000000000008000740000000024c000e80140001"], 0xb0}}, 0x0)
write(r1, &(0x7f00000000c0), 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYRES32=0x0, @ANYRES32=r0], 0x78}, 0x1, 0xffffffff00000003}, 0x8804)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r1}, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="0100000001000000040000190000000000000020058932860353bc980c22365cfa00"/43], 0x50)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000f40)={r4, 0x609, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="54010000100033060000000000001c00ffffffff000000000000000000000000e000000200000000000000040000000000000000000000000200000000000000", @ANYRES32=r3, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000032000000ac14141a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000400720000000000000048000200656362286369706865725f6e756c6c29"], 0x154}}, 0x0)

835.469312ms ago: executing program 0 (id=1212):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="60000000020605000000000000000000034000001400078008000640201b2000080013400000000205000100060000000900020073797a32000000000500040000000000050005000a00000011000300686173683a69702c6d61726b"], 0x60}}, 0x0)

768.390787ms ago: executing program 0 (id=1213):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="5c0000000206050800000000000000000000000005000400000000000900020073797a30000000001400078008001340000000000800064000000000050005000000000005000100060000000d000300686173683a6d6163"], 0x5c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000001200)={0x28, 0x0, 0xffffffff, @local}, 0x10)
getsockopt$bt_hci(r1, 0x0, 0x1, &(0x7f00000001c0)=""/4096, &(0x7f0000000140)=0x1000)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x8000000, 0xffffffdd, 0xa}, [@ldst={0x3, 0x0, 0x3, 0x1c10a1, 0x0, 0x34}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7, 0x0, 0xffffffffffffffff, 0x68000000, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = accept4$vsock_stream(0xffffffffffffffff, &(0x7f0000001240)={0x28, 0x0, 0x1, @hyper}, 0x10, 0x0)
connect$vsock_stream(r2, &(0x7f0000001280)={0x28, 0x0, 0x2711, @host}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x8001000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x220, 0x0, 0x11, 0x148, 0x0, 0x0, 0x188, 0x2a8, 0x2a8, 0x188, 0x2a8, 0x3, 0x0, {[{{@ip={@local, @private=0x1a010100, 0xffffff00, 0xffffffff, 'hsr0\x00', 'wlan0\x00', {}, {}, 0x6c, 0x1, 0x40}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x2, 0x5, 0x5, 0x2, 0x24, 0x6], 0x4, 0x5}, {0xffffffffffffffff, [0x56, 0x2], 0x0, 0x4}}}}, {{@ip={@rand_addr=0x64010101, @multicast2, 0xffffff00, 0xffffff00, 'rose0\x00', 'gretap0\x00', {0xff}, {}, 0x6, 0x2, 0xc}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x81, 0x2, 0x7fff, 'snmp\x00', {0x400000}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x280)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'pim6reg0\x00'})
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
openat$ppp(0xffffffffffffff9c, &(0x7f00000011c0), 0x604c0, 0x0)
sendto$inet6(r4, &(0x7f0000000000)="c5", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x6}, 0x1c)
getsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000000), &(0x7f0000000380)=0xe)
r5 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
setsockopt$ax25_int(r5, 0x101, 0x6, &(0x7f0000000040)=0x2, 0x4)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x800, 0x70bd29, 0x25dfdc00, {0x60, 0x0, 0x0, 0x0, {0xfff1, 0xfff2}, {0x1, 0xc}, {0xfff3, 0x8}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_FWMARK={0x8, 0x12, 0xffff7fff}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44045}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000084)

748.84235ms ago: executing program 3 (id=1214):
socket$kcm(0x11, 0x200000000000002, 0x300)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1a, 0x2000000000000032, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000002e00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000000c0)={r0}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x3, 0x5, &(0x7f0000000240)=@framed={{0x18, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffc}, [@map_idx={0x18, 0x0, 0x5, 0x0, 0x6}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000300)=@ieee802154={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0202}}}, 0x80, 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="14004000"], 0x14}, 0x800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32, @ANYBLOB="000000000000000014001a80100005800c000680"], 0x34}}, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r3, @ANYBLOB="000000000000000014001a80100004800c0002"], 0x34}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000000400004803c0001800b00010065787468647200002c0002800800034000000000080001400000080d0500020007000000080006400000000408000440000000170900010073797a30000000000900020073797a32"], 0x94}}, 0x0)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000000)={{r1}, 0xffffffffffffff5a, 0xad3, 0x7f})

636.534742ms ago: executing program 1 (id=1215):
socket$igmp6(0xa, 0x3, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
sendmsg$nl_route(r1, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000030000000008001e0001"], 0x24}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x6c, 0x10, 0x437, 0x0, 0x3000, {}, [@IFLA_LINKINFO={0x4c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x38, 0x2, 0x0, 0x1, [@IFLA_GRE_LOCAL={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IFLA_GRE_REMOTE={0x14, 0x7, @private2}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_LINK={0x8}]}}}]}, 0x6c}}, 0x0)

631.367366ms ago: executing program 3 (id=1216):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_SET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000840)=ANY=[@ANYBLOB="18000000", @ANYRES16=r2, @ANYBLOB="010000000000fbdbdf2519"], 0x18}}, 0x0)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
ioctl$BTRFS_IOC_SCRUB(r3, 0x5411, 0x0)

570.653047ms ago: executing program 1 (id=1217):
r0 = socket$key(0xf, 0x3, 0x2)
connect$ax25(0xffffffffffffffff, &(0x7f00000002c0)={{0x3, @bcast}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default]}, 0x48)
sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="020200090f000000000000ff8000000005000600000000000a0000000000000000000000000000000000000000000000000000000000000002000100000004d20000020300000020050005002f8000000a00000000000000ff010000000000000000000000000001000000000000000001001800"], 0x78}}, 0x0)

468.578872ms ago: executing program 1 (id=1218):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
sendmsg$kcm(r0, &(0x7f0000000280)={&(0x7f0000000300)=@tipc=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x3}}, 0x80, 0x0, 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1400000000000000010000000c00"], 0x14}, 0x800)
listen(r0, 0x7)

448.270497ms ago: executing program 1 (id=1219):
socket(0x10, 0x803, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x11, 0xb, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000069000010000000000100000018010000696c6c2500000000002020207b1af8ff"], 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000006a00831300000000000000000400ffa60000000008000e00000000000800"], 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x40040c0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x7c, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0x40086602, 0x110e22fff2)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000ac0)=@allocspi={0x1e8, 0x16, 0x1, 0x0, 0xfffffffc, {{{@in, @in6=@mcast1, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@broadcast, 0x0, 0x33}, @in=@broadcast, {0x0, 0x1, 0x0, 0x0, 0x0, 0x3}, {0xfffffffffffffffe, 0x2}, {0x0, 0x1ff}, 0x0, 0x0, 0x2}, 0x5, 0x5}, [@offload={0xc, 0x1c, {0x0, 0x1}}, @sa={0xe4, 0x6, {{@in=@remote, @in=@broadcast, 0x4e21, 0x3, 0x4e24, 0x89, 0x2, 0xa0, 0x80, 0x0, 0x0, 0xee00}, {@in=@private=0xa010101, 0x4d4, 0x2b}, @in=@empty, {0xfff, 0x0, 0xffffffff, 0x8, 0xf, 0x0, 0xffffffffffffffff, 0x2}, {0x9, 0x8, 0x2}, {0x9, 0x10, 0x4}, 0x70bd2b, 0x0, 0xa, 0x3, 0x6, 0xc}}]}, 0x1e8}}, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000005400)={'filter\x00', 0x0, 0x0, 0x90, [], 0x2, 0x0, 0x0}, &(0x7f0000005480)=0x108)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0xb3}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x2a}, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c000000020000000000000000000004"], 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6906bb2b0eb2fe32d2f0048678cd35ef833c350900f95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb600"/144, 0x90}, {&(0x7f0000000400)="029993440c7a1d95d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e434ccb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc40206c86df9abc5be93ce0d", 0x70}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1dec077b5099cf9aecd1a9d94e235", 0xcf}, {&(0x7f0000000f00)="397d5f2e855cb2b0b1e61d3fe47dc3e798cf47cfebf169e77257f308b498e5b417227094d569a4456954e58ea1850000000000000000355c5f42d9f2aa5f1ba0a5c7553eff16", 0x46}], 0x4}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6bb3", 0x2b}, {&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7858b2a4edb673503cf002e28e331bc529b433cd74ab6c48a2c", 0xf6}, {&(0x7f0000000180)="5be3b011e12323e4ab88c0472f0700000000000000e71ba62334303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf648c9100000000000000006a8f4f5405596e72f8fe08c33a33b275787892f61fbb621794716f96031931b55af30fa01d72aa5a53ee4c07ab7c96a4a9ed93f4d20269982ab6feb22d8e77afb7b861622ab963b07f0026fd6424082bcd0864a854e542aacc3201fff776fe1c", 0xdb}, {&(0x7f0000001000)="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", 0xfd}], 0x4}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b5d383823677f025217943343e363268a73daecfa0fdc5beb5a7ac332a11533627b41dbe33a6be0055bf716aa2b23b97d43cc40c632f6b9850f364ba0831ed0d6f7157f204275aa850d992d81ba6ab984bd809254e847b644cf6459a813bc3ebba62168141343c9938965233cdaef85778ce05c77e962fd6bf3a4b9eb05654e64f1867398e202b4920e8ebc08f6e6dc652a12e000000000000000000dabf", 0x9e}, {0x0}], 0x2}}], 0x3, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="1713d50800000024ec24681aa099852c4bfae5a0bbdc62896430c2821b43171cca8728132db611681bb875ce88d2f192d5d5e70a6447b32c8bbd6ca61e1888ccee8a9a05c07cdab36ab953eb5d4845932c9852513b105999f074072190722873fbaba18af1c955479a7522eaf7bafd3026acef0a16485c852026", 0x7a, 0x10008095, 0x0, 0x0)

376.913607ms ago: executing program 3 (id=1220):
socket$key(0xf, 0x3, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000000)={@loopback={0xff00000000000000, 0x777fe6a4b23f}, 0x0, 0x0, 0x3, 0x9, 0x8, 0x0, 0x5}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x0, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="b402000000000000791100000000000085000000010000009500000000000000359bb9f43d86b136000000008762000000f3"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0xc5, &(0x7f0000000300)=""/197, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff31, 0x10, &(0x7f00000002c0), 0xffffffffffffff35, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x54)
pipe(&(0x7f0000000340)={<r1=>0xffffffffffffffff})
close(r1)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000140)='cpuset.memory_pressure\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r2}, 0x18)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7, 0x0, 0x4}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x88, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_EXPRESSIONS={0x44, 0x12, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0x1}]}}}, {0x20, 0x1, 0x0, 0x1, @connlimit={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CONNLIMIT_COUNT={0x8, 0x1, 0x1, 0x0, 0xe41f}]}}}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x120}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd0}}, 0x20050800)

320.780375ms ago: executing program 3 (id=1221):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000440), 0x10)
listen(r3, 0x0)
ioctl$int_in(r3, 0x5421, &(0x7f0000000000)=0xfff)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000200)={@local, @random="b2fa49119552", @void, {@ipv4={0x800, @tcp={{0xe, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x5, 0x0, @dev={0xac, 0x14, 0x14, 0x2d}, @private=0xa010100, {[@timestamp_addr={0x44, 0xffffffffffffffe4, 0x6, 0x3, 0x0, [{@empty}, {@dev={0xac, 0x14, 0x14, 0x2e}, 0x3fff}]}, @ssrr={0x89, 0xb, 0xce, [@rand_addr, @empty]}, @ssrr={0x89, 0x3, 0x15}]}}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x6, 0xa, 0x10, 0x0, 0x0, 0x0, {[@md5sig={0x13, 0x12, "4bf2302f339ba72c5e362dce9cd6ff40"}]}}}}}}}, 0x0)
accept4$unix(r3, 0x0, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000001c0)=@ipv6_newroute={0x124, 0x18, 0x111, 0x1, 0x0, {0xa, 0x0, 0x80, 0x0, 0x0, 0x2, 0x0, 0x8}, [@RTA_EXPIRES={0x8, 0x17, 0xfff}, @RTA_METRICS={0x100, 0x8, 0x0, 0x1, "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"}]}, 0x124}, 0x1, 0x0, 0x0, 0x4805}, 0x4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x428a4}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x8000)

195.661426ms ago: executing program 2 (id=1222):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x15, &(0x7f0000000200)=ANY=[@ANYBLOB="85100000000000008510000000000000851000000000000085100000080000008510000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000008000007010000f8ffffffbfa400000000000007040000f3ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a500000085100000feffffff18450000fbffffff0000000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

96.241681ms ago: executing program 2 (id=1223):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xe, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffffffe4}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x1, 0x80}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

94.422879ms ago: executing program 3 (id=1224):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x12, 0x42, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r0, &(0x7f00000004c0), &(0x7f0000000400)=@udp6=r1}, 0x3f)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000640)={r0, &(0x7f00000005c0)="c0c166a5b8c91f7b", 0x0}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x4, &(0x7f0000000400)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x11, 0x42}, [@ldst={0x6, 0x0, 0x2}]}, &(0x7f0000000080)='GPL\x00', 0x4, 0x3e0, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0xe, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x76, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

448.685µs ago: executing program 2 (id=1225):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r0}, 0x10)
bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00', 0x10, 0x8, 0x11}, 0x2c)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x44, r4, 0x801, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_KEY={0x28, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "4abee339084eeef16f162471f4"}, @NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}]}]}, 0x44}}, 0x0)

0s ago: executing program 3 (id=1226):
socket$pppl2tp(0x18, 0x1, 0x1)
socket(0x10, 0x3, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000004c0)=@newqdisc={0xc0, 0x24, 0xf0b, 0x0, 0x1000000, {0x0, 0x0, 0x12, r1, {0x0, 0x300}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x90, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x1}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x0, 0x0, 0x0, 0xd645, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffff]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x24, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x3f0000}]}, {0x14, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x6}, @TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xbff3}]}]}]}}]}, 0xc0}, 0x1, 0x7a00}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x10, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1800"/11], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYBLOB="3c00000010001ffe00989837a182138b00268f1c", @ANYRES32=0x0, @ANYBLOB="ff7f000080000000140012800a00010076786c616e000000040002800800", @ANYRES64=r3], 0x3c}, 0x1, 0x8000a0ffffffff}, 0x0)

kernel console output (not intermixed with test programs):

65][ T7858]  ? __fget_files+0x2a/0x420
[  137.344599][ T7858]  ? __fget_files+0x2a/0x420
[  137.344631][ T7858]  __sys_sendmsg+0x271/0x360
[  137.344657][ T7858]  ? __pfx___sys_sendmsg+0x10/0x10
[  137.344738][ T7858]  ? do_syscall_64+0xb6/0x230
[  137.344759][ T7858]  do_syscall_64+0xf3/0x230
[  137.344777][ T7858]  ? clear_bhb_loop+0x45/0xa0
[  137.344797][ T7858]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  137.344812][ T7858] RIP: 0033:0x7f78c638e169
[  137.344828][ T7858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  137.344840][ T7858] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  137.344859][ T7858] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  137.344871][ T7858] RDX: 0000000000000000 RSI: 0000200000000140 RDI: 0000000000000003
[  137.344880][ T7858] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  137.344890][ T7858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  137.344900][ T7858] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  137.344926][ T7858]  </TASK>
[  137.980084][ T7858] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  138.466583][ T7885] FAULT_INJECTION: forcing a failure.
[  138.466583][ T7885] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  138.500645][ T7885] CPU: 0 UID: 0 PID: 7885 Comm: syz.1.502 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  138.500672][ T7885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  138.500682][ T7885] Call Trace:
[  138.500689][ T7885]  <TASK>
[  138.500696][ T7885]  dump_stack_lvl+0x241/0x360
[  138.500728][ T7885]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.500750][ T7885]  ? __pfx__printk+0x10/0x10
[  138.500784][ T7885]  should_fail_ex+0x424/0x570
[  138.500817][ T7885]  _copy_to_user+0x31/0xb0
[  138.500837][ T7885]  put_timespec64+0xfc/0x160
[  138.500858][ T7885]  ? __pfx_put_timespec64+0x10/0x10
[  138.500886][ T7885]  poll_select_finish+0x5d3/0x7f0
[  138.500916][ T7885]  ? __pfx_poll_select_finish+0x10/0x10
[  138.500946][ T7885]  ? __pfx_set_user_sigmask+0x10/0x10
[  138.500961][ T7885]  ? __fget_files+0x2a/0x420
[  138.500995][ T7885]  __se_sys_ppoll+0x2b9/0x330
[  138.501023][ T7885]  ? __pfx___se_sys_ppoll+0x10/0x10
[  138.501055][ T7885]  ? __x64_sys_ppoll+0x20/0xc0
[  138.501079][ T7885]  do_syscall_64+0xf3/0x230
[  138.501099][ T7885]  ? clear_bhb_loop+0x45/0xa0
[  138.501119][ T7885]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.501135][ T7885] RIP: 0033:0x7f88fc18e169
[  138.501150][ T7885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.501162][ T7885] RSP: 002b:00007f88f9ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  138.501181][ T7885] RAX: ffffffffffffffda RBX: 00007f88fc3b5fa0 RCX: 00007f88fc18e169
[  138.501193][ T7885] RDX: 0000200000000300 RSI: 0000000000000025 RDI: 0000200000000d40
[  138.501204][ T7885] RBP: 00007f88f9ff6090 R08: 0000000000000000 R09: 0000000000000000
[  138.501214][ T7885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.501224][ T7885] R13: 0000000000000000 R14: 00007f88fc3b5fa0 R15: 00007fffc90b7328
[  138.501252][ T7885]  </TASK>
[  138.786203][ T7896] netlink: 'syz.2.507': attribute type 1 has an invalid length.
[  138.893098][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.3.505'.
[  139.014505][ T7900] bond0: entered promiscuous mode
[  139.034170][ T7900] bond_slave_0: entered promiscuous mode
[  139.041293][ T7900] bond_slave_1: entered promiscuous mode
[  139.053821][ T7900] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  139.075899][ T7900] bond2: (slave macvlan2): Enslaving as a backup interface with an up link
[  139.109801][ T7909] pim6reg: entered allmulticast mode
[  139.452809][ T7929] netlink: 24 bytes leftover after parsing attributes in process `syz.2.517'.
[  139.480380][ T7931] netlink: 'syz.0.516': attribute type 29 has an invalid length.
[  139.514009][ T7931] netlink: 'syz.0.516': attribute type 29 has an invalid length.
[  139.550264][ T7931] netlink: 508 bytes leftover after parsing attributes in process `syz.0.516'.
[  139.560397][ T7933] netlink: 52 bytes leftover after parsing attributes in process `syz.2.518'.
[  139.575054][ T7933] netlink: 16 bytes leftover after parsing attributes in process `syz.2.518'.
[  139.585891][ T7933] netlink: 28 bytes leftover after parsing attributes in process `syz.2.518'.
[  139.952542][ T7948] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  140.195867][ T7955] netlink: 'syz.1.527': attribute type 19 has an invalid length.
[  140.331001][ T7961] netlink: 12 bytes leftover after parsing attributes in process `syz.1.527'.
[  140.488005][ T7970] netlink: 4 bytes leftover after parsing attributes in process `syz.4.528'.
[  141.221761][ T7998] netlink: 20 bytes leftover after parsing attributes in process `syz.0.536'.
[  141.249869][ T7998] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  141.287451][ T7998] netlink: 56 bytes leftover after parsing attributes in process `syz.0.536'.
[  141.366830][ T5902] IPVS: starting estimator thread 0...
[  141.476509][ T8005] IPVS: using max 31 ests per chain, 74400 per kthread
[  141.477418][ T8009] FAULT_INJECTION: forcing a failure.
[  141.477418][ T8009] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.546761][ T8009] CPU: 1 UID: 0 PID: 8009 Comm: syz.3.539 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  141.546787][ T8009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  141.546796][ T8009] Call Trace:
[  141.546803][ T8009]  <TASK>
[  141.546811][ T8009]  dump_stack_lvl+0x241/0x360
[  141.546842][ T8009]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.546865][ T8009]  ? __pfx__printk+0x10/0x10
[  141.546897][ T8009]  should_fail_ex+0x424/0x570
[  141.546922][ T8009]  _copy_to_user+0x31/0xb0
[  141.546942][ T8009]  simple_read_from_buffer+0xc4/0x170
[  141.546970][ T8009]  proc_fail_nth_read+0x1ef/0x260
[  141.546990][ T8009]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.547010][ T8009]  ? rw_verify_area+0x246/0x630
[  141.547028][ T8009]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.547046][ T8009]  vfs_read+0x21f/0xb90
[  141.547070][ T8009]  ? __pfx___mutex_lock+0x10/0x10
[  141.547089][ T8009]  ? __pfx_vfs_read+0x10/0x10
[  141.547111][ T8009]  ? __fget_files+0x2a/0x420
[  141.547137][ T8009]  ? __fget_files+0x39d/0x420
[  141.547158][ T8009]  ? __fget_files+0x2a/0x420
[  141.547192][ T8009]  ksys_read+0x19d/0x2d0
[  141.547212][ T8009]  ? __pfx_ksys_read+0x10/0x10
[  141.547237][ T8009]  ? do_syscall_64+0xb6/0x230
[  141.547258][ T8009]  do_syscall_64+0xf3/0x230
[  141.547275][ T8009]  ? clear_bhb_loop+0x45/0xa0
[  141.547293][ T8009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.547309][ T8009] RIP: 0033:0x7f66c938cb7c
[  141.547324][ T8009] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  141.547336][ T8009] RSP: 002b:00007f66ca13d030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  141.547355][ T8009] RAX: ffffffffffffffda RBX: 00007f66c95b5fa0 RCX: 00007f66c938cb7c
[  141.547367][ T8009] RDX: 000000000000000f RSI: 00007f66ca13d0a0 RDI: 0000000000000004
[  141.547376][ T8009] RBP: 00007f66ca13d090 R08: 0000000000000000 R09: 0000000000000000
[  141.547386][ T8009] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.547395][ T8009] R13: 0000000000000000 R14: 00007f66c95b5fa0 R15: 00007ffd03db04f8
[  141.547422][ T8009]  </TASK>
[  141.982333][ T8013] bridge0: port 3(vlan2) entered blocking state
[  141.988848][ T8013] bridge0: port 3(vlan2) entered disabled state
[  141.995301][ T8013] vlan2: entered allmulticast mode
[  142.003832][ T8013] bridge0: entered allmulticast mode
[  142.047106][ T8013] vlan2: left allmulticast mode
[  142.061869][ T8013] bridge0: left allmulticast mode
[  142.168739][ T8037] FAULT_INJECTION: forcing a failure.
[  142.168739][ T8037] name failslab, interval 1, probability 0, space 0, times 0
[  142.205885][ T8037] CPU: 0 UID: 0 PID: 8037 Comm: syz.2.544 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  142.205911][ T8037] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  142.205921][ T8037] Call Trace:
[  142.205927][ T8037]  <TASK>
[  142.205934][ T8037]  dump_stack_lvl+0x241/0x360
[  142.205964][ T8037]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.205987][ T8037]  ? __pfx__printk+0x10/0x10
[  142.206012][ T8037]  ? __pfx___might_resched+0x10/0x10
[  142.206036][ T8037]  should_fail_ex+0x424/0x570
[  142.206063][ T8037]  should_failslab+0xac/0x100
[  142.206086][ T8037]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  142.206108][ T8037]  ? __alloc_skb+0x1c2/0x480
[  142.206131][ T8037]  __alloc_skb+0x1c2/0x480
[  142.206154][ T8037]  ? __pfx___alloc_skb+0x10/0x10
[  142.206174][ T8037]  ? netlink_autobind+0xd6/0x2f0
[  142.206188][ T8037]  ? netlink_autobind+0x2b0/0x2f0
[  142.206208][ T8037]  netlink_sendmsg+0x638/0xcd0
[  142.206233][ T8037]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.206253][ T8037]  ? aa_sock_msg_perm+0x91/0x160
[  142.206284][ T8037]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.206447][ T8037]  __sock_sendmsg+0x221/0x270
[  142.206482][ T8037]  ____sys_sendmsg+0x523/0x860
[  142.206529][ T8037]  ? __pfx_____sys_sendmsg+0x10/0x10
[  142.206545][ T8037]  ? __fget_files+0x2a/0x420
[  142.206571][ T8037]  ? __fget_files+0x2a/0x420
[  142.206600][ T8037]  __sys_sendmsg+0x271/0x360
[  142.206623][ T8037]  ? __pfx___sys_sendmsg+0x10/0x10
[  142.206695][ T8037]  ? do_syscall_64+0xb6/0x230
[  142.206715][ T8037]  do_syscall_64+0xf3/0x230
[  142.206732][ T8037]  ? clear_bhb_loop+0x45/0xa0
[  142.206751][ T8037]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.206766][ T8037] RIP: 0033:0x7f623438e169
[  142.206781][ T8037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.206794][ T8037] RSP: 002b:00007f62351b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.206811][ T8037] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438e169
[  142.206824][ T8037] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  142.206834][ T8037] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  142.206843][ T8037] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.206853][ T8037] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  142.206881][ T8037]  </TASK>
[  143.170104][ T8058] unknown channel width for channel at 909000KHz?
[  143.240851][ T8064] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  143.315619][ T8067] vlan2: entered promiscuous mode
[  143.341505][ T8067] batadv0: entered promiscuous mode
[  143.516012][ T8058] dummy0: entered promiscuous mode
[  143.538945][ T8058] macsec1: entered promiscuous mode
[  143.555331][ T8058] macsec1: entered allmulticast mode
[  143.593829][ T8058] dummy0: entered allmulticast mode
[  143.627165][ T8058] dummy0: left allmulticast mode
[  143.635942][ T8058] dummy0: left promiscuous mode
[  144.185779][ T8098] __nla_validate_parse: 4 callbacks suppressed
[  144.185799][ T8098] netlink: 12 bytes leftover after parsing attributes in process `syz.2.559'.
[  144.219683][ T8100] netlink: 4 bytes leftover after parsing attributes in process `syz.3.558'.
[  144.430996][ T8098] vlan2: entered promiscuous mode
[  144.436470][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  144.449266][ T8098] team0: entered promiscuous mode
[  144.454341][ T8098] team_slave_0: entered promiscuous mode
[  144.461174][ T8098] team_slave_1: entered promiscuous mode
[  144.471791][ T8098] vxlan0: entered promiscuous mode
[  144.996237][ T8124] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  145.065670][ T8126] netlink: 'syz.3.567': attribute type 11 has an invalid length.
[  145.106386][ T8126] netlink: 228 bytes leftover after parsing attributes in process `syz.3.567'.
[  145.144764][ T8128] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  145.148311][ T8131] netlink: 32 bytes leftover after parsing attributes in process `syz.1.568'.
[  145.170800][ T8126] netlink: 12 bytes leftover after parsing attributes in process `syz.3.567'.
[  145.231515][ T8133] netlink: 'syz.3.567': attribute type 1 has an invalid length.
[  145.251514][ T8133] netlink: 232 bytes leftover after parsing attributes in process `syz.3.567'.
[  145.313549][ T8134] netlink: 36 bytes leftover after parsing attributes in process `syz.1.568'.
[  145.639986][ T8138] delete_channel: no stack
[  145.770905][ T8152] xt_hashlimit: max too large, truncated to 1048576
[  145.970939][ T8157] netlink: 256 bytes leftover after parsing attributes in process `syz.3.574'.
[  146.311061][ T8172] netlink: 8 bytes leftover after parsing attributes in process `syz.1.577'.
[  146.594846][ T8187] netlink: 'syz.3.579': attribute type 1 has an invalid length.
[  146.723510][ T8187] bond0: entered promiscuous mode
[  146.733494][ T8187] bond_slave_0: entered promiscuous mode
[  146.742509][ T8187] bond_slave_1: entered promiscuous mode
[  146.749435][ T8187] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  146.759238][ T8187] bond1: (slave macvlan2): Enslaving as a backup interface with an up link
[  146.833041][ T8198] FAULT_INJECTION: forcing a failure.
[  146.833041][ T8198] name failslab, interval 1, probability 0, space 0, times 0
[  146.899727][ T8198] CPU: 0 UID: 0 PID: 8198 Comm: syz.2.582 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  146.899762][ T8198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  146.899773][ T8198] Call Trace:
[  146.899780][ T8198]  <TASK>
[  146.899786][ T8198]  dump_stack_lvl+0x241/0x360
[  146.899816][ T8198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.899838][ T8198]  ? __pfx__printk+0x10/0x10
[  146.899864][ T8198]  ? __pfx___might_resched+0x10/0x10
[  146.899888][ T8198]  should_fail_ex+0x424/0x570
[  146.899912][ T8198]  should_failslab+0xac/0x100
[  146.899935][ T8198]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  146.899959][ T8198]  ? __alloc_skb+0x1c2/0x480
[  146.899984][ T8198]  __alloc_skb+0x1c2/0x480
[  146.899999][ T8198]  ? __lock_acquire+0xad5/0xd80
[  146.900018][ T8198]  ? __pfx___alloc_skb+0x10/0x10
[  146.900046][ T8198]  alloc_skb_with_frags+0xc3/0x830
[  146.900068][ T8198]  ? is_bpf_text_address+0x26/0x2a0
[  146.900089][ T8198]  ? 0xffffffffa000206c
[  146.900105][ T8198]  ? is_bpf_text_address+0x288/0x2a0
[  146.900126][ T8198]  sock_alloc_send_pskb+0x91c/0xa70
[  146.900168][ T8198]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  146.900192][ T8198]  ? _raw_spin_unlock_irqrestore+0x90/0x140
[  146.900215][ T8198]  ? lockdep_hardirqs_on+0x9d/0x150
[  146.900235][ T8198]  ? _raw_spin_unlock_irqrestore+0xde/0x140
[  146.900260][ T8198]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  146.900290][ T8198]  __ip_append_data+0x3097/0x4750
[  146.900336][ T8198]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  146.900378][ T8198]  ? __pfx___ip_append_data+0x10/0x10
[  146.900397][ T8198]  ? __pfx_ipv4_mtu+0x10/0x10
[  146.900418][ T8198]  ? ip_setup_cork+0x580/0x9a0
[  146.900443][ T8198]  ip_make_skb+0x19a/0x420
[  146.900469][ T8198]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  146.900490][ T8198]  ? __pfx_ip_make_skb+0x10/0x10
[  146.900530][ T8198]  udp_sendmsg+0x1c7e/0x2ca0
[  146.900577][ T8198]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  146.900596][ T8198]  ? __pfx_udp_sendmsg+0x10/0x10
[  146.900624][ T8198]  ? __up_read+0x2c4/0x6b0
[  146.900675][ T8198]  ? inet_sendmsg+0x2ba/0x390
[  146.900700][ T8198]  __sock_sendmsg+0x1a6/0x270
[  146.900733][ T8198]  ____sys_sendmsg+0x523/0x860
[  146.900790][ T8198]  ? __pfx_____sys_sendmsg+0x10/0x10
[  146.900808][ T8198]  ? __fget_files+0x2a/0x420
[  146.900836][ T8198]  ? __fget_files+0x2a/0x420
[  146.900868][ T8198]  __sys_sendmmsg+0x3a0/0x7b0
[  146.900902][ T8198]  ? __pfx___sys_sendmmsg+0x10/0x10
[  146.900959][ T8198]  ? rcu_read_lock_any_held+0xbb/0x160
[  146.900980][ T8198]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  146.901004][ T8198]  ? vfs_write+0xb29/0xd10
[  146.901031][ T8198]  ? ksys_write+0x24e/0x2d0
[  146.901053][ T8198]  ? __mutex_unlock_slowpath+0x229/0x800
[  146.901101][ T8198]  ? ksys_write+0x275/0x2d0
[  146.901131][ T8198]  __x64_sys_sendmmsg+0xa0/0xb0
[  146.901155][ T8198]  do_syscall_64+0xf3/0x230
[  146.901173][ T8198]  ? clear_bhb_loop+0x45/0xa0
[  146.901193][ T8198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.901209][ T8198] RIP: 0033:0x7f623438e169
[  146.901224][ T8198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.901237][ T8198] RSP: 002b:00007f62351b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  146.901257][ T8198] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438e169
[  146.901269][ T8198] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000004
[  146.901280][ T8198] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  146.901290][ T8198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.901300][ T8198] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  146.901328][ T8198]  </TASK>
[  147.543367][ T8192] netlink: 44 bytes leftover after parsing attributes in process `syz.4.580'.
[  147.898726][ T8228] Cannot find add_set index 0 as target
[  150.558460][ T8305] SET target dimension over the limit!
[  151.272623][ T8322] ip6tnl2: entered promiscuous mode
[  151.323337][ T8322] ip6tnl2: entered allmulticast mode
[  151.516736][ T8319] delete_channel: no stack
[  151.743295][ T8342] IPVS: set_ctl: invalid protocol: 58 224.0.0.1:20002
[  151.846724][ T5902] IPVS: starting estimator thread 0...
[  151.956474][ T8347] IPVS: using max 32 ests per chain, 76800 per kthread
[  152.079087][ T8363] __nla_validate_parse: 1 callbacks suppressed
[  152.079105][ T8363] netlink: 4 bytes leftover after parsing attributes in process `syz.2.609'.
[  152.151483][ T8352] netlink: 92 bytes leftover after parsing attributes in process `syz.4.606'.
[  152.239827][ T8370] netlink: 4 bytes leftover after parsing attributes in process `syz.1.611'.
[  152.476178][ T8377] FAULT_INJECTION: forcing a failure.
[  152.476178][ T8377] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  152.516528][ T8377] CPU: 0 UID: 0 PID: 8377 Comm: syz.2.614 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  152.516554][ T8377] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  152.516564][ T8377] Call Trace:
[  152.516571][ T8377]  <TASK>
[  152.516579][ T8377]  dump_stack_lvl+0x241/0x360
[  152.516607][ T8377]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.516630][ T8377]  ? __pfx__printk+0x10/0x10
[  152.516662][ T8377]  should_fail_ex+0x424/0x570
[  152.516686][ T8377]  _copy_to_user+0x31/0xb0
[  152.516705][ T8377]  simple_read_from_buffer+0xc4/0x170
[  152.516731][ T8377]  proc_fail_nth_read+0x1ef/0x260
[  152.516751][ T8377]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.516769][ T8377]  ? rw_verify_area+0x246/0x630
[  152.516784][ T8377]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  152.516802][ T8377]  vfs_read+0x21f/0xb90
[  152.516821][ T8377]  ? __pfx___mutex_lock+0x10/0x10
[  152.516838][ T8377]  ? __pfx_vfs_read+0x10/0x10
[  152.516858][ T8377]  ? __fget_files+0x2a/0x420
[  152.516881][ T8377]  ? __fget_files+0x39d/0x420
[  152.516899][ T8377]  ? __fget_files+0x2a/0x420
[  152.516930][ T8377]  ksys_read+0x19d/0x2d0
[  152.516950][ T8377]  ? __pfx_ksys_read+0x10/0x10
[  152.516971][ T8377]  ? do_syscall_64+0xb6/0x230
[  152.516990][ T8377]  do_syscall_64+0xf3/0x230
[  152.517006][ T8377]  ? clear_bhb_loop+0x45/0xa0
[  152.517025][ T8377]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.517041][ T8377] RIP: 0033:0x7f623438cb7c
[  152.517055][ T8377] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  152.517068][ T8377] RSP: 002b:00007f62351b9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  152.517086][ T8377] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438cb7c
[  152.517097][ T8377] RDX: 000000000000000f RSI: 00007f62351b90a0 RDI: 0000000000000005
[  152.517108][ T8377] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  152.517118][ T8377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  152.517127][ T8377] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  152.517151][ T8377]  </TASK>
[  152.737123][ T8382] netlink: 'syz.3.615': attribute type 1 has an invalid length.
[  152.865296][ T8384] x_tables: duplicate underflow at hook 2
[  152.911666][ T8385] netlink: 596 bytes leftover after parsing attributes in process `syz.1.616'.
[  153.067395][ T8382] 8021q: adding VLAN 0 to HW filter on device bond2
[  153.109540][ T8386] 8021q: adding VLAN 0 to HW filter on device bond2
[  153.141700][ T8386] bond2: (slave vcan0): The slave device specified does not support setting the MAC address
[  153.178315][ T8386] bond2: (slave vcan0): Error -95 calling set_mac_address
[  153.216570][ T8388] netlink: 'syz.1.616': attribute type 29 has an invalid length.
[  153.242176][ T8396] bridge1: entered allmulticast mode
[  153.807603][ T8424] netlink: 48 bytes leftover after parsing attributes in process `syz.0.627'.
[  153.832477][ T8428] netlink: 4 bytes leftover after parsing attributes in process `syz.4.625'.
[  154.051819][ T8434] 8021q: adding VLAN 0 to HW filter on device bond3
[  154.244411][ T8451] netlink: 52 bytes leftover after parsing attributes in process `syz.1.632'.
[  154.254904][ T8451] netlink: 16 bytes leftover after parsing attributes in process `syz.1.632'.
[  154.275181][ T8451] netlink: 28 bytes leftover after parsing attributes in process `syz.1.632'.
[  154.382162][ T8458] netlink: 'syz.1.634': attribute type 46 has an invalid length.
[  154.390986][ T8458] netlink: 212868 bytes leftover after parsing attributes in process `syz.1.634'.
[  154.407113][ T8437] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  154.429610][ T8437] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  154.459277][ T8437] bond0 (unregistering): Released all slaves
[  154.508425][ T8464] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[  154.535515][ T8421] IPv6: NLM_F_CREATE should be specified when creating new route
[  154.543733][ T8421] IPv6: NLM_F_REPLACE set, but no existing node found!
[  154.990384][ T8487] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  155.908536][ T8527] netlink: 'syz.1.653': attribute type 16 has an invalid length.
[  155.916407][ T8527] netlink: 'syz.1.653': attribute type 3 has an invalid length.
[  156.081275][ T8534] netlink: 'syz.0.656': attribute type 1 has an invalid length.
[  156.179252][ T8526] ip6erspan0: mtu less than device minimum
[  156.606822][ T8539] vlan2: entered promiscuous mode
[  156.612100][ T8539] team0: entered promiscuous mode
[  156.637821][ T8539] team_slave_0: entered promiscuous mode
[  156.716759][ T8539] team_slave_1: entered promiscuous mode
[  156.722654][ T8539] vxlan0: entered promiscuous mode
[  157.406971][ T8589] __nla_validate_parse: 6 callbacks suppressed
[  157.406988][ T8589] netlink: 64 bytes leftover after parsing attributes in process `syz.3.663'.
[  158.347235][ T8609] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode broadcast(3)
[  158.902589][ T8630] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.010727][ T8617] IPv6: NLM_F_CREATE should be specified when creating new route
[  159.020334][ T8617] IPv6: NLM_F_REPLACE set, but no existing node found!
[  159.137666][ T8650] netlink: 56 bytes leftover after parsing attributes in process `syz.3.682'.
[  159.162238][ T8650] netlink: 8 bytes leftover after parsing attributes in process `syz.3.682'.
[  159.198018][ T8650] netlink: 56 bytes leftover after parsing attributes in process `syz.3.682'.
[  159.211569][ T8650] netlink: 8 bytes leftover after parsing attributes in process `syz.3.682'.
[  159.621001][ T8686] netlink: 3 bytes leftover after parsing attributes in process `syz.3.694'.
[  159.662006][ T8686] batadv2: entered promiscuous mode
[  159.668594][ T8686] batadv2: entered allmulticast mode
[  159.681031][ T8688] netlink: 'syz.2.695': attribute type 29 has an invalid length.
[  159.690362][ T8688] netlink: 'syz.2.695': attribute type 29 has an invalid length.
[  159.702255][ T8688] netlink: 508 bytes leftover after parsing attributes in process `syz.2.695'.
[  159.884935][ T8697] netlink: 52 bytes leftover after parsing attributes in process `syz.2.697'.
[  159.922489][ T8697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.697'.
[  159.990023][ T8694] netlink: 8 bytes leftover after parsing attributes in process `syz.2.697'.
[  160.633575][ T8730] FAULT_INJECTION: forcing a failure.
[  160.633575][ T8730] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.675638][ T8730] CPU: 1 UID: 0 PID: 8730 Comm: syz.0.707 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  160.675667][ T8730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  160.675678][ T8730] Call Trace:
[  160.675685][ T8730]  <TASK>
[  160.675693][ T8730]  dump_stack_lvl+0x241/0x360
[  160.675724][ T8730]  ? __pfx_dump_stack_lvl+0x10/0x10
[  160.675747][ T8730]  ? __pfx__printk+0x10/0x10
[  160.675782][ T8730]  should_fail_ex+0x424/0x570
[  160.675808][ T8730]  _copy_from_user+0x2d/0xb0
[  160.675827][ T8730]  copy_from_sockptr+0x57/0xb0
[  160.675850][ T8730]  packet_setsockopt+0x7f8/0x1870
[  160.675873][ T8730]  ? __pfx_packet_setsockopt+0x10/0x10
[  160.675894][ T8730]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  160.675924][ T8730]  ? aa_sk_perm+0x96f/0xac0
[  160.675950][ T8730]  ? ksys_write+0x24e/0x2d0
[  160.675969][ T8730]  ? __pfx_aa_sk_perm+0x10/0x10
[  160.675994][ T8730]  ? aa_sock_opt_perm+0x79/0x120
[  160.676021][ T8730]  ? __pfx_packet_setsockopt+0x10/0x10
[  160.676036][ T8730]  do_sock_setsockopt+0x3b1/0x710
[  160.676063][ T8730]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  160.676080][ T8730]  ? __fget_files+0x2a/0x420
[  160.676109][ T8730]  ? __fget_files+0x39d/0x420
[  160.676131][ T8730]  ? __fget_files+0x2a/0x420
[  160.676163][ T8730]  __x64_sys_setsockopt+0x1ee/0x280
[  160.676191][ T8730]  do_syscall_64+0xf3/0x230
[  160.676210][ T8730]  ? clear_bhb_loop+0x45/0xa0
[  160.676230][ T8730]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  160.676251][ T8730] RIP: 0033:0x7f78c638e169
[  160.676265][ T8730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  160.676277][ T8730] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  160.676296][ T8730] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  160.676308][ T8730] RDX: 0000000000000001 RSI: 0000000000000107 RDI: 0000000000000003
[  160.676319][ T8730] RBP: 00007f78c72c6090 R08: 0000000000000010 R09: 0000000000000000
[  160.676329][ T8730] R10: 0000200000000080 R11: 0000000000000246 R12: 0000000000000001
[  160.676340][ T8730] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  160.676368][ T8730]  </TASK>
[  161.538014][ T8760] ipt_rpfilter: unknown options
[  161.556719][ T8760] netlink: 'syz.3.716': attribute type 3 has an invalid length.
[  161.688945][ T8764] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  161.799169][ T8764] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  162.044431][ T8780] FAULT_INJECTION: forcing a failure.
[  162.044431][ T8780] name failslab, interval 1, probability 0, space 0, times 0
[  162.114978][ T8780] CPU: 1 UID: 0 PID: 8780 Comm: syz.2.722 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  162.115005][ T8780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  162.115016][ T8780] Call Trace:
[  162.115023][ T8780]  <TASK>
[  162.115030][ T8780]  dump_stack_lvl+0x241/0x360
[  162.115061][ T8780]  ? __pfx_dump_stack_lvl+0x10/0x10
[  162.115084][ T8780]  ? __pfx__printk+0x10/0x10
[  162.115105][ T8780]  ? __lock_acquire+0xad5/0xd80
[  162.115133][ T8780]  should_fail_ex+0x424/0x570
[  162.115159][ T8780]  should_failslab+0xac/0x100
[  162.115184][ T8780]  kmem_cache_alloc_noprof+0x78/0x390
[  162.115205][ T8780]  ? skb_clone+0x20c/0x390
[  162.115232][ T8780]  skb_clone+0x20c/0x390
[  162.115257][ T8780]  __netlink_deliver_tap+0x3c4/0x7f0
[  162.115294][ T8780]  ? netlink_deliver_tap+0x2e/0x1b0
[  162.115310][ T8780]  netlink_deliver_tap+0x19d/0x1b0
[  162.115328][ T8780]  netlink_unicast+0x7c6/0x9a0
[  162.115362][ T8780]  ? __pfx_netlink_unicast+0x10/0x10
[  162.115387][ T8780]  ? skb_put+0x114/0x1f0
[  162.115411][ T8780]  netlink_sendmsg+0x8c3/0xcd0
[  162.115441][ T8780]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.115464][ T8780]  ? aa_sock_msg_perm+0x91/0x160
[  162.115492][ T8780]  ? __pfx_netlink_sendmsg+0x10/0x10
[  162.115508][ T8780]  __sock_sendmsg+0x221/0x270
[  162.115537][ T8780]  ____sys_sendmsg+0x523/0x860
[  162.115570][ T8780]  ? __pfx_____sys_sendmsg+0x10/0x10
[  162.115588][ T8780]  ? __fget_files+0x2a/0x420
[  162.115615][ T8780]  ? __fget_files+0x2a/0x420
[  162.115648][ T8780]  __sys_sendmsg+0x271/0x360
[  162.115675][ T8780]  ? __pfx___sys_sendmsg+0x10/0x10
[  162.115750][ T8780]  ? do_syscall_64+0xb6/0x230
[  162.115773][ T8780]  do_syscall_64+0xf3/0x230
[  162.115791][ T8780]  ? clear_bhb_loop+0x45/0xa0
[  162.115811][ T8780]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.115827][ T8780] RIP: 0033:0x7f623438e169
[  162.115841][ T8780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.115854][ T8780] RSP: 002b:00007f62351b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.115872][ T8780] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438e169
[  162.115884][ T8780] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  162.115895][ T8780] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  162.115905][ T8780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  162.115914][ T8780] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  162.115943][ T8780]  </TASK>
[  162.645285][ T8789] netlink: 'syz.2.727': attribute type 1 has an invalid length.
[  162.836482][ T8801] netlink: 'syz.2.730': attribute type 5 has an invalid length.
[  162.886685][ T8804] __nla_validate_parse: 3 callbacks suppressed
[  162.886706][ T8804] netlink: 24 bytes leftover after parsing attributes in process `syz.0.731'.
[  163.038549][ T8810] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.100826][ T8812] netlink: 16 bytes leftover after parsing attributes in process `syz.1.734'.
[  163.102535][ T8810] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  163.186967][ T8814] FAULT_INJECTION: forcing a failure.
[  163.186967][ T8814] name failslab, interval 1, probability 0, space 0, times 0
[  163.221845][ T8814] CPU: 0 UID: 0 PID: 8814 Comm: syz.1.736 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  163.221872][ T8814] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  163.221882][ T8814] Call Trace:
[  163.221890][ T8814]  <TASK>
[  163.221897][ T8814]  dump_stack_lvl+0x241/0x360
[  163.221927][ T8814]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.221950][ T8814]  ? __pfx__printk+0x10/0x10
[  163.221972][ T8814]  ? page_pool_list+0x1b1/0x1e0
[  163.221995][ T8814]  ? __pfx___might_resched+0x10/0x10
[  163.222022][ T8814]  should_fail_ex+0x424/0x570
[  163.222046][ T8814]  should_failslab+0xac/0x100
[  163.222070][ T8814]  __kmalloc_cache_noprof+0x73/0x370
[  163.222091][ T8814]  ? __xdp_reg_mem_model+0x1e4/0x660
[  163.222113][ T8814]  __xdp_reg_mem_model+0x1e4/0x660
[  163.222147][ T8814]  ? __pfx___xdp_reg_mem_model+0x10/0x10
[  163.222176][ T8814]  xdp_reg_mem_model+0x22/0x40
[  163.222194][ T8814]  bpf_test_run_xdp_live+0x331/0x2220
[  163.222225][ T8814]  ? bpf_dispatcher_change_prog+0xd7b/0xf00
[  163.222248][ T8814]  ? __mutex_unlock_slowpath+0x229/0x800
[  163.222277][ T8814]  ? __pfx_bpf_test_run_xdp_live+0x10/0x10
[  163.222292][ T8814]  ? synchronize_rcu+0x11e/0x370
[  163.222312][ T8814]  ? __pfx_synchronize_rcu+0x10/0x10
[  163.222352][ T8814]  ? 0xffffffffa0003b40
[  163.222368][ T8814]  ? __pfx_bpf_dispatcher_change_prog+0x10/0x10
[  163.222386][ T8814]  ? 0xffffffffa0002064
[  163.222419][ T8814]  ? __pfx_xdp_test_run_init_page+0x10/0x10
[  163.222454][ T8814]  ? _copy_from_user+0x95/0xb0
[  163.222471][ T8814]  ? bpf_test_init+0x130/0x170
[  163.222485][ T8814]  ? xdp_convert_md_to_buff+0x5b/0x330
[  163.222504][ T8814]  bpf_prog_test_run_xdp+0x809/0x1200
[  163.222541][ T8814]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  163.222559][ T8814]  ? __fget_files+0x2a/0x420
[  163.222585][ T8814]  ? __fget_files+0x2a/0x420
[  163.222612][ T8814]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[  163.222631][ T8814]  bpf_prog_test_run+0x2e4/0x360
[  163.222654][ T8814]  __sys_bpf+0x4ee/0x8b0
[  163.222673][ T8814]  ? __pfx___sys_bpf+0x10/0x10
[  163.222702][ T8814]  ? ksys_write+0x275/0x2d0
[  163.222733][ T8814]  __x64_sys_bpf+0x7c/0x90
[  163.222757][ T8814]  do_syscall_64+0xf3/0x230
[  163.222776][ T8814]  ? clear_bhb_loop+0x45/0xa0
[  163.222796][ T8814]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.222812][ T8814] RIP: 0033:0x7f88fc18e169
[  163.222825][ T8814] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.222839][ T8814] RSP: 002b:00007f88f9ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  163.222859][ T8814] RAX: ffffffffffffffda RBX: 00007f88fc3b5fa0 RCX: 00007f88fc18e169
[  163.222871][ T8814] RDX: 0000000000000050 RSI: 0000200000000600 RDI: 000000000000000a
[  163.222881][ T8814] RBP: 00007f88f9ff6090 R08: 0000000000000000 R09: 0000000000000000
[  163.222892][ T8814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.222901][ T8814] R13: 0000000000000000 R14: 00007f88fc3b5fa0 R15: 00007fffc90b7328
[  163.222928][ T8814]  </TASK>
[  163.605932][ T8823] netlink: 'syz.4.739': attribute type 21 has an invalid length.
[  163.620017][ T8823] netlink: 128 bytes leftover after parsing attributes in process `syz.4.739'.
[  163.632312][ T8823] netlink: 'syz.4.739': attribute type 4 has an invalid length.
[  163.642416][ T8823] netlink: 3 bytes leftover after parsing attributes in process `syz.4.739'.
[  163.891971][ T8841] netlink: 'syz.3.743': attribute type 1 has an invalid length.
[  163.903155][ T8841] netlink: 'syz.3.743': attribute type 3 has an invalid length.
[  163.912784][ T8841] netlink: 224 bytes leftover after parsing attributes in process `syz.3.743'.
[  164.011321][ T8846] FAULT_INJECTION: forcing a failure.
[  164.011321][ T8846] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  164.033297][ T8846] CPU: 0 UID: 0 PID: 8846 Comm: syz.0.748 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  164.033326][ T8846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  164.033336][ T8846] Call Trace:
[  164.033343][ T8846]  <TASK>
[  164.033351][ T8846]  dump_stack_lvl+0x241/0x360
[  164.033382][ T8846]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.033404][ T8846]  ? __pfx__printk+0x10/0x10
[  164.033440][ T8846]  should_fail_ex+0x424/0x570
[  164.033465][ T8846]  _copy_from_iter+0x211/0x1c70
[  164.033497][ T8846]  ? __build_skb_around+0x247/0x3d0
[  164.033520][ T8846]  ? __alloc_skb+0x298/0x480
[  164.033538][ T8846]  ? __pfx__copy_from_iter+0x10/0x10
[  164.033565][ T8846]  ? __pfx___alloc_skb+0x10/0x10
[  164.033586][ T8846]  ? skb_put+0x114/0x1f0
[  164.033609][ T8846]  netlink_sendmsg+0x73c/0xcd0
[  164.033639][ T8846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.033659][ T8846]  ? aa_sock_msg_perm+0x91/0x160
[  164.033687][ T8846]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.033702][ T8846]  __sock_sendmsg+0x221/0x270
[  164.033730][ T8846]  ____sys_sendmsg+0x523/0x860
[  164.033760][ T8846]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.033778][ T8846]  ? __fget_files+0x2a/0x420
[  164.033805][ T8846]  ? __fget_files+0x2a/0x420
[  164.033836][ T8846]  __sys_sendmsg+0x271/0x360
[  164.033861][ T8846]  ? __pfx___sys_sendmsg+0x10/0x10
[  164.033937][ T8846]  ? do_syscall_64+0xb6/0x230
[  164.033959][ T8846]  do_syscall_64+0xf3/0x230
[  164.033977][ T8846]  ? clear_bhb_loop+0x45/0xa0
[  164.033998][ T8846]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.034014][ T8846] RIP: 0033:0x7f78c638e169
[  164.034029][ T8846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.034043][ T8846] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.034062][ T8846] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  164.034074][ T8846] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  164.034092][ T8846] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  164.034102][ T8846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.034112][ T8846] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  164.034140][ T8846]  </TASK>
[  164.480343][ T8864] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  164.555306][ T8867] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.624526][ T8867] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  164.796706][ T8880] netlink: 'syz.4.762': attribute type 8 has an invalid length.
[  164.952237][ T8888] netlink: 96 bytes leftover after parsing attributes in process `syz.2.765'.
[  165.003082][ T8890] netlink: 12 bytes leftover after parsing attributes in process `syz.2.766'.
[  165.017927][ T8890] vlan2: entered promiscuous mode
[  165.109714][ T8892] FAULT_INJECTION: forcing a failure.
[  165.109714][ T8892] name failslab, interval 1, probability 0, space 0, times 0
[  165.122834][ T8892] CPU: 0 UID: 0 PID: 8892 Comm: syz.2.767 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  165.122859][ T8892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  165.122869][ T8892] Call Trace:
[  165.122877][ T8892]  <TASK>
[  165.122884][ T8892]  dump_stack_lvl+0x241/0x360
[  165.122915][ T8892]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.122973][ T8892]  ? __pfx__printk+0x10/0x10
[  165.123000][ T8892]  ? __pfx___might_resched+0x10/0x10
[  165.123026][ T8892]  should_fail_ex+0x424/0x570
[  165.123052][ T8892]  should_failslab+0xac/0x100
[  165.123076][ T8892]  __kmalloc_noprof+0xdf/0x4d0
[  165.123098][ T8892]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  165.123120][ T8892]  ? apparmor_capable+0x13b/0x1b0
[  165.123141][ T8892]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  165.123171][ T8892]  genl_rcv_msg+0x819/0xf00
[  165.123198][ T8892]  ? __pfx_genl_rcv_msg+0x10/0x10
[  165.123217][ T8892]  ? stack_trace_save+0x11a/0x1d0
[  165.123243][ T8892]  ? __pfx_stack_trace_save+0x10/0x10
[  165.123268][ T8892]  ? stack_depot_save_flags+0x44/0x940
[  165.123287][ T8892]  ? stack_trace_snprint+0x71/0xf0
[  165.123324][ T8892]  ? __lock_acquire+0xad5/0xd80
[  165.123343][ T8892]  ? __pfx_net_dm_nl_pre_doit+0x10/0x10
[  165.123358][ T8892]  ? __pfx_net_dm_cmd_trace+0x10/0x10
[  165.123373][ T8892]  ? __pfx_net_dm_nl_post_doit+0x10/0x10
[  165.123406][ T8892]  netlink_rcv_skb+0x208/0x480
[  165.123424][ T8892]  ? __pfx_genl_rcv_msg+0x10/0x10
[  165.123447][ T8892]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  165.123485][ T8892]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.123509][ T8892]  genl_rcv+0x28/0x40
[  165.123528][ T8892]  netlink_unicast+0x7f8/0x9a0
[  165.123562][ T8892]  ? __pfx_netlink_unicast+0x10/0x10
[  165.123589][ T8892]  ? skb_put+0x114/0x1f0
[  165.123613][ T8892]  netlink_sendmsg+0x8c3/0xcd0
[  165.123644][ T8892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.123666][ T8892]  ? aa_sock_msg_perm+0x91/0x160
[  165.123694][ T8892]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.123709][ T8892]  __sock_sendmsg+0x221/0x270
[  165.123738][ T8892]  ____sys_sendmsg+0x523/0x860
[  165.123768][ T8892]  ? __pfx_____sys_sendmsg+0x10/0x10
[  165.123789][ T8892]  ? __fget_files+0x2a/0x420
[  165.123817][ T8892]  ? __fget_files+0x2a/0x420
[  165.123851][ T8892]  __sys_sendmsg+0x271/0x360
[  165.123877][ T8892]  ? __pfx___sys_sendmsg+0x10/0x10
[  165.123964][ T8892]  ? do_syscall_64+0xb6/0x230
[  165.123987][ T8892]  do_syscall_64+0xf3/0x230
[  165.124005][ T8892]  ? clear_bhb_loop+0x45/0xa0
[  165.124026][ T8892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.124042][ T8892] RIP: 0033:0x7f623438e169
[  165.124057][ T8892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.124071][ T8892] RSP: 002b:00007f62351b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  165.124091][ T8892] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438e169
[  165.124103][ T8892] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000006
[  165.124114][ T8892] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  165.124124][ T8892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.124133][ T8892] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  165.124163][ T8892]  </TASK>
[  165.628070][ T8900] netlink: 8 bytes leftover after parsing attributes in process `syz.3.772'.
[  165.637332][ T8900] netlink: 4 bytes leftover after parsing attributes in process `syz.3.772'.
[  165.646230][ T8900] netlink: 'syz.3.772': attribute type 14 has an invalid length.
[  165.654320][ T8900] netlink: 'syz.3.772': attribute type 11 has an invalid length.
[  165.841542][ T8911] netlink: 4 bytes leftover after parsing attributes in process `syz.4.775'.
[  165.909435][ T8915] bridge_slave_1: left allmulticast mode
[  165.920039][ T8915] bridge_slave_1: left promiscuous mode
[  165.939171][ T8915] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.963891][ T8915] bridge_slave_0: left allmulticast mode
[  165.970081][ T8915] bridge_slave_0: left promiscuous mode
[  165.976001][ T8915] bridge0: port 1(bridge_slave_0) entered disabled state
[  166.020786][ T8927] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.087657][ T8927] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.289126][ T8932] veth1_to_bond: entered allmulticast mode
[  166.301681][ T8935] veth1_to_bond: entered promiscuous mode
[  166.345688][ T8931] veth1_to_bond: left promiscuous mode
[  166.364345][ T8931] veth1_to_bond: left allmulticast mode
[  166.675936][ T8948] vlan2: entered promiscuous mode
[  167.424369][ T8982] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  167.493126][ T8982] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  168.186540][ T9001] __nla_validate_parse: 6 callbacks suppressed
[  168.186561][ T9001] netlink: 4 bytes leftover after parsing attributes in process `syz.4.801'.
[  168.638416][ T9015] netlink: 4 bytes leftover after parsing attributes in process `syz.2.805'.
[  168.925023][ T9028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  169.020152][ T9041] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  169.284560][ T9048] 8021q: adding VLAN 0 to HW filter on device bond4
[  169.342864][ T9030] IPv6: NLM_F_CREATE should be specified when creating new route
[  169.376702][ T9030] IPv6: NLM_F_REPLACE set, but no existing node found!
[  169.437101][ T9053] netlink: 4 bytes leftover after parsing attributes in process `syz.0.817'.
[  169.716807][ T5853] Bluetooth: hci4: command 0x0405 tx timeout
[  169.737912][ T9071] netlink: 4 bytes leftover after parsing attributes in process `syz.2.823'.
[  169.830520][ T9075] FAULT_INJECTION: forcing a failure.
[  169.830520][ T9075] name failslab, interval 1, probability 0, space 0, times 0
[  169.843966][ T9075] CPU: 1 UID: 0 PID: 9075 Comm: syz.1.825 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  169.843991][ T9075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  169.844001][ T9075] Call Trace:
[  169.844007][ T9075]  <TASK>
[  169.844014][ T9075]  dump_stack_lvl+0x241/0x360
[  169.844044][ T9075]  ? __pfx_dump_stack_lvl+0x10/0x10
[  169.844067][ T9075]  ? __pfx__printk+0x10/0x10
[  169.844095][ T9075]  ? __pfx___might_resched+0x10/0x10
[  169.844119][ T9075]  should_fail_ex+0x424/0x570
[  169.844144][ T9075]  should_failslab+0xac/0x100
[  169.844168][ T9075]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  169.844191][ T9075]  ? __alloc_skb+0x1c2/0x480
[  169.844208][ T9075]  ? tcp_current_mss+0x29d/0x4d0
[  169.844230][ T9075]  __alloc_skb+0x1c2/0x480
[  169.844255][ T9075]  ? __pfx___alloc_skb+0x10/0x10
[  169.844274][ T9075]  ? __up_read+0x650/0x6b0
[  169.844291][ T9075]  ? ima_get_action+0x75/0xb0
[  169.844314][ T9075]  tcp_stream_alloc_skb+0x3d/0x310
[  169.844339][ T9075]  tcp_sendmsg_locked+0x1da6/0x51f0
[  169.844415][ T9075]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  169.844442][ T9075]  ? tcp_sendmsg+0x22/0x50
[  169.844463][ T9075]  ? do_raw_spin_unlock+0x13c/0x8b0
[  169.844495][ T9075]  tcp_sendmsg+0x30/0x50
[  169.844517][ T9075]  __sock_sendmsg+0x1a6/0x270
[  169.844546][ T9075]  ____sys_sendmsg+0x523/0x860
[  169.844575][ T9075]  ? __pfx_____sys_sendmsg+0x10/0x10
[  169.844594][ T9075]  ? __fget_files+0x2a/0x420
[  169.844621][ T9075]  ? __fget_files+0x2a/0x420
[  169.844653][ T9075]  __sys_sendmmsg+0x3a0/0x7b0
[  169.844687][ T9075]  ? __pfx___sys_sendmmsg+0x10/0x10
[  169.844744][ T9075]  ? rcu_read_lock_any_held+0xbb/0x160
[  169.844772][ T9075]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  169.844797][ T9075]  ? vfs_write+0xb29/0xd10
[  169.844824][ T9075]  ? ksys_write+0x24e/0x2d0
[  169.844846][ T9075]  ? __mutex_unlock_slowpath+0x229/0x800
[  169.844897][ T9075]  ? ksys_write+0x275/0x2d0
[  169.844929][ T9075]  __x64_sys_sendmmsg+0xa0/0xb0
[  169.844952][ T9075]  do_syscall_64+0xf3/0x230
[  169.844972][ T9075]  ? clear_bhb_loop+0x45/0xa0
[  169.844991][ T9075]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.845005][ T9075] RIP: 0033:0x7f88fc18e169
[  169.845020][ T9075] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.845033][ T9075] RSP: 002b:00007f88f9ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  169.845048][ T9075] RAX: ffffffffffffffda RBX: 00007f88fc3b5fa0 RCX: 00007f88fc18e169
[  169.845058][ T9075] RDX: 0000000000000002 RSI: 0000200000001300 RDI: 0000000000000003
[  169.845068][ T9075] RBP: 00007f88f9ff6090 R08: 0000000000000000 R09: 0000000000000000
[  169.845077][ T9075] R10: 00000000040088c0 R11: 0000000000000246 R12: 0000000000000001
[  169.845088][ T9075] R13: 0000000000000000 R14: 00007f88fc3b5fa0 R15: 00007fffc90b7328
[  169.845115][ T9075]  </TASK>
[  170.195438][ T9079] netlink: 'syz.0.826': attribute type 29 has an invalid length.
[  170.301394][ T9091] netlink: 508 bytes leftover after parsing attributes in process `syz.0.826'.
[  170.415829][ T9079] netlink: 'syz.0.826': attribute type 29 has an invalid length.
[  170.457426][ T9101] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  170.482516][ T9099] netlink: 8 bytes leftover after parsing attributes in process `syz.4.833'.
[  170.518090][ T9103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.831'.
[  170.578224][ T9096] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  170.622791][ T9107] netlink: 4 bytes leftover after parsing attributes in process `syz.3.834'.
[  170.643306][ T9109] netlink: 'syz.0.835': attribute type 29 has an invalid length.
[  170.651917][ T9109] netlink: 'syz.0.835': attribute type 29 has an invalid length.
[  170.663303][ T9109] netlink: 508 bytes leftover after parsing attributes in process `syz.0.835'.
[  170.675050][ T9109] FAULT_INJECTION: forcing a failure.
[  170.675050][ T9109] name failslab, interval 1, probability 0, space 0, times 0
[  170.691734][ T9109] CPU: 0 UID: 0 PID: 9109 Comm: syz.0.835 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  170.691762][ T9109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  170.691772][ T9109] Call Trace:
[  170.691780][ T9109]  <TASK>
[  170.691787][ T9109]  dump_stack_lvl+0x241/0x360
[  170.691819][ T9109]  ? __pfx_dump_stack_lvl+0x10/0x10
[  170.691842][ T9109]  ? __pfx__printk+0x10/0x10
[  170.691872][ T9109]  ? ref_tracker_alloc+0x316/0x4c0
[  170.691898][ T9109]  should_fail_ex+0x424/0x570
[  170.691924][ T9109]  should_failslab+0xac/0x100
[  170.691949][ T9109]  kmem_cache_alloc_noprof+0x78/0x390
[  170.691970][ T9109]  ? skb_clone+0x20c/0x390
[  170.691998][ T9109]  skb_clone+0x20c/0x390
[  170.692023][ T9109]  __netlink_deliver_tap+0x3c4/0x7f0
[  170.692053][ T9109]  ? netlink_deliver_tap+0x2e/0x1b0
[  170.692069][ T9109]  netlink_deliver_tap+0x19d/0x1b0
[  170.692088][ T9109]  netlink_sendskb+0x68/0x140
[  170.692114][ T9109]  netlink_unicast+0x39f/0x9a0
[  170.692136][ T9109]  ? __asan_memcpy+0x40/0x70
[  170.692162][ T9109]  ? __pfx_netlink_unicast+0x10/0x10
[  170.692197][ T9109]  netlink_rcv_skb+0x296/0x480
[  170.692216][ T9109]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  170.692245][ T9109]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  170.692286][ T9109]  ? netlink_deliver_tap+0x2e/0x1b0
[  170.692309][ T9109]  xfrm_netlink_rcv+0x79/0x90
[  170.692333][ T9109]  netlink_unicast+0x7f8/0x9a0
[  170.692367][ T9109]  ? __pfx_netlink_unicast+0x10/0x10
[  170.692401][ T9109]  ? skb_put+0x114/0x1f0
[  170.692425][ T9109]  netlink_sendmsg+0x8c3/0xcd0
[  170.692455][ T9109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.692478][ T9109]  ? aa_sock_msg_perm+0x91/0x160
[  170.692507][ T9109]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.692523][ T9109]  __sock_sendmsg+0x221/0x270
[  170.692551][ T9109]  ____sys_sendmsg+0x523/0x860
[  170.692582][ T9109]  ? __pfx_____sys_sendmsg+0x10/0x10
[  170.692604][ T9109]  ? __fget_files+0x2a/0x420
[  170.692629][ T9109]  ? __fget_files+0x2a/0x420
[  170.692660][ T9109]  __sys_sendmsg+0x271/0x360
[  170.692686][ T9109]  ? __pfx___sys_sendmsg+0x10/0x10
[  170.692760][ T9109]  ? do_syscall_64+0xb6/0x230
[  170.692783][ T9109]  do_syscall_64+0xf3/0x230
[  170.692801][ T9109]  ? clear_bhb_loop+0x45/0xa0
[  170.692822][ T9109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.692838][ T9109] RIP: 0033:0x7f78c638e169
[  170.692854][ T9109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.692866][ T9109] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.692885][ T9109] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  170.692897][ T9109] RDX: 0000000000000000 RSI: 0000200000000840 RDI: 0000000000000004
[  170.692908][ T9109] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  170.692918][ T9109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.692928][ T9109] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  170.692958][ T9109]  </TASK>
[  171.053591][ T9113] netdevsim netdevsim1 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  171.063001][ T9113] netdevsim netdevsim1 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  171.072094][ T9113] netdevsim netdevsim1 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  171.081106][ T9113] netdevsim netdevsim1 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  171.127300][ T9113] erspan1: left promiscuous mode
[  171.132429][ T9113] erspan1: left allmulticast mode
[  171.138327][ T9119] netlink: 4 bytes leftover after parsing attributes in process `syz.0.838'.
[  171.168687][ T9115] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  171.929145][ T9155] pim6reg: entered allmulticast mode
[  172.182067][ T9165] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.281144][ T9165] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  172.596562][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  172.915271][ T9209] Cannot find add_set index 0 as target
[  172.967730][ T9211] FAULT_INJECTION: forcing a failure.
[  172.967730][ T9211] name failslab, interval 1, probability 0, space 0, times 0
[  173.021911][ T9214] FAULT_INJECTION: forcing a failure.
[  173.021911][ T9214] name failslab, interval 1, probability 0, space 0, times 0
[  173.046381][ T9211] CPU: 1 UID: 0 PID: 9211 Comm: syz.2.874 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  173.046408][ T9211] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.046430][ T9211] Call Trace:
[  173.046440][ T9211]  <TASK>
[  173.046451][ T9211]  dump_stack_lvl+0x241/0x360
[  173.046482][ T9211]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.046505][ T9211]  ? __pfx__printk+0x10/0x10
[  173.046526][ T9211]  ? __lock_acquire+0xad5/0xd80
[  173.046554][ T9211]  should_fail_ex+0x424/0x570
[  173.046579][ T9211]  should_failslab+0xac/0x100
[  173.046603][ T9211]  kmem_cache_alloc_noprof+0x78/0x390
[  173.046624][ T9211]  ? skb_clone+0x20c/0x390
[  173.046651][ T9211]  skb_clone+0x20c/0x390
[  173.046676][ T9211]  __netlink_deliver_tap+0x3c4/0x7f0
[  173.046705][ T9211]  ? netlink_deliver_tap+0x2e/0x1b0
[  173.046721][ T9211]  netlink_deliver_tap+0x19d/0x1b0
[  173.046739][ T9211]  netlink_unicast+0x7c6/0x9a0
[  173.046772][ T9211]  ? __pfx_netlink_unicast+0x10/0x10
[  173.046797][ T9211]  ? skb_put+0x114/0x1f0
[  173.046821][ T9211]  netlink_sendmsg+0x8c3/0xcd0
[  173.046850][ T9211]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.046872][ T9211]  ? aa_sock_msg_perm+0x91/0x160
[  173.046900][ T9211]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.046915][ T9211]  __sock_sendmsg+0x221/0x270
[  173.046943][ T9211]  ____sys_sendmsg+0x523/0x860
[  173.046973][ T9211]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.046991][ T9211]  ? __fget_files+0x2a/0x420
[  173.047017][ T9211]  ? __fget_files+0x2a/0x420
[  173.047050][ T9211]  __sys_sendmsg+0x271/0x360
[  173.047076][ T9211]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.047150][ T9211]  ? do_syscall_64+0xb6/0x230
[  173.047171][ T9211]  do_syscall_64+0xf3/0x230
[  173.047189][ T9211]  ? clear_bhb_loop+0x45/0xa0
[  173.047209][ T9211]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.047225][ T9211] RIP: 0033:0x7f623438e169
[  173.047240][ T9211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.047253][ T9211] RSP: 002b:00007f62351b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.047271][ T9211] RAX: ffffffffffffffda RBX: 00007f62345b5fa0 RCX: 00007f623438e169
[  173.047283][ T9211] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  173.047294][ T9211] RBP: 00007f62351b9090 R08: 0000000000000000 R09: 0000000000000000
[  173.047304][ T9211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.047314][ T9211] R13: 0000000000000000 R14: 00007f62345b5fa0 R15: 00007ffd642df5d8
[  173.047342][ T9211]  </TASK>
[  173.052876][ T9214] CPU: 0 UID: 0 PID: 9214 Comm: syz.0.875 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  173.052903][ T9214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.052914][ T9214] Call Trace:
[  173.052921][ T9214]  <TASK>
[  173.052929][ T9214]  dump_stack_lvl+0x241/0x360
[  173.052959][ T9214]  ? __pfx_dump_stack_lvl+0x10/0x10
[  173.052982][ T9214]  ? __pfx__printk+0x10/0x10
[  173.053011][ T9214]  ? ref_tracker_alloc+0x316/0x4c0
[  173.053036][ T9214]  should_fail_ex+0x424/0x570
[  173.053063][ T9214]  should_failslab+0xac/0x100
[  173.053088][ T9214]  kmem_cache_alloc_noprof+0x78/0x390
[  173.053108][ T9214]  ? skb_clone+0x20c/0x390
[  173.053135][ T9214]  skb_clone+0x20c/0x390
[  173.053167][ T9214]  __netlink_deliver_tap+0x3c4/0x7f0
[  173.053197][ T9214]  ? netlink_deliver_tap+0x2e/0x1b0
[  173.053212][ T9214]  netlink_deliver_tap+0x19d/0x1b0
[  173.053231][ T9214]  netlink_sendskb+0x68/0x140
[  173.053257][ T9214]  netlink_unicast+0x39f/0x9a0
[  173.053279][ T9214]  ? __asan_memcpy+0x40/0x70
[  173.053304][ T9214]  ? __pfx_netlink_unicast+0x10/0x10
[  173.053335][ T9214]  netlink_rcv_skb+0x296/0x480
[  173.053351][ T9214]  ? __pfx_genl_rcv_msg+0x10/0x10
[  173.053371][ T9214]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  173.053406][ T9214]  ? netlink_deliver_tap+0x2e/0x1b0
[  173.053427][ T9214]  genl_rcv+0x28/0x40
[  173.053446][ T9214]  netlink_unicast+0x7f8/0x9a0
[  173.053479][ T9214]  ? __pfx_netlink_unicast+0x10/0x10
[  173.053503][ T9214]  ? skb_put+0x114/0x1f0
[  173.053524][ T9214]  netlink_sendmsg+0x8c3/0xcd0
[  173.053555][ T9214]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.053577][ T9214]  ? aa_sock_msg_perm+0x91/0x160
[  173.053606][ T9214]  ? __pfx_netlink_sendmsg+0x10/0x10
[  173.053621][ T9214]  __sock_sendmsg+0x221/0x270
[  173.053650][ T9214]  ____sys_sendmsg+0x523/0x860
[  173.053681][ T9214]  ? __pfx_____sys_sendmsg+0x10/0x10
[  173.053699][ T9214]  ? __fget_files+0x2a/0x420
[  173.053726][ T9214]  ? __fget_files+0x2a/0x420
[  173.053759][ T9214]  __sys_sendmsg+0x271/0x360
[  173.053785][ T9214]  ? __pfx___sys_sendmsg+0x10/0x10
[  173.053860][ T9214]  ? do_syscall_64+0xb6/0x230
[  173.053886][ T9214]  do_syscall_64+0xf3/0x230
[  173.053904][ T9214]  ? clear_bhb_loop+0x45/0xa0
[  173.053924][ T9214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.053941][ T9214] RIP: 0033:0x7f78c638e169
[  173.053956][ T9214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.053970][ T9214] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  173.053989][ T9214] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  173.054001][ T9214] RDX: 0000000000000000 RSI: 00002000000006c0 RDI: 0000000000000003
[  173.054011][ T9214] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  173.054022][ T9214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  173.054032][ T9214] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  173.054060][ T9214]  </TASK>
[  173.923112][ T5902] hid-multitouch 0005:0457:0009.0001: unknown main item tag 0x0
[  173.942409][ T5902] hid-multitouch 0005:0457:0009.0001: hidraw0: BLUETOOTH HID v0.09 Device [syz1] on aa:aa:aa:aa:aa:aa
[  174.024689][ T9227] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  174.153600][ T9233] __nla_validate_parse: 6 callbacks suppressed
[  174.153618][ T9233] netlink: 48 bytes leftover after parsing attributes in process `syz.1.880'.
[  174.203385][ T9217] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  174.231409][ T9217] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  174.328788][ T9240] netlink: 12 bytes leftover after parsing attributes in process `syz.4.885'.
[  174.353366][ T9217] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  174.365762][ T9241] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.367972][ T9217] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  174.385397][ T9217] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  174.394760][ T9217] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  174.429318][ T9241] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  174.456745][ T9217] macvtap1: left promiscuous mode
[  174.461975][ T9217] macvtap1: left allmulticast mode
[  174.472462][ T9217] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  174.481762][ T9217] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  174.490938][ T9217] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  174.500037][ T9217] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  174.512330][ T9217] batadv0: left allmulticast mode
[  174.520003][ T9217] macvtap2: left promiscuous mode
[  174.525084][ T9217] macvtap2: left allmulticast mode
[  174.546417][ T9212] netlink: 32 bytes leftover after parsing attributes in process `syz.3.873'.
[  174.720987][ T9245] netlink: 24 bytes leftover after parsing attributes in process `syz.4.887'.
[  174.898557][ T9247] netlink: 4 bytes leftover after parsing attributes in process `syz.3.888'.
[  175.413994][ T9257] tipc: Can't bind to reserved service type 1
[  175.429804][ T9275] netlink: 8 bytes leftover after parsing attributes in process `syz.1.895'.
[  175.508583][ T9278] netlink: 'syz.3.896': attribute type 10 has an invalid length.
[  175.645878][ T9278] macvlan0: entered promiscuous mode
[  175.697235][ T9278] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[  175.815562][ T9288] IPv6: syztnl0: Disabled Multicast RS
[  175.869160][ T9292] netlink: 'syz.1.901': attribute type 4 has an invalid length.
[  175.926372][ T9292] netlink: 12 bytes leftover after parsing attributes in process `syz.1.901'.
[  175.933702][ T9295] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  176.005722][ T9295] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  176.374030][ T9313] netlink: 9 bytes leftover after parsing attributes in process `syz.4.910'.
[  176.440657][ T9313] gretap0: entered promiscuous mode
[  176.531594][ T9317] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  176.546820][ T9313] netlink: 24 bytes leftover after parsing attributes in process `syz.4.910'.
[  176.662682][ T9319] netlink: 28 bytes leftover after parsing attributes in process `syz.0.912'.
[  177.038565][ T9334] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙv'
[  177.091051][ T9334] CPU: 1 UID: 0 PID: 9334 Comm: syz.1.917 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  177.091082][ T9334] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.091093][ T9334] Call Trace:
[  177.091101][ T9334]  <TASK>
[  177.091109][ T9334]  dump_stack_lvl+0x241/0x360
[  177.091144][ T9334]  ? __pfx_dump_stack_lvl+0x10/0x10
[  177.091168][ T9334]  ? __pfx__printk+0x10/0x10
[  177.091191][ T9334]  ? kernfs_path_from_node+0x2b/0x250
[  177.091214][ T9334]  ? kernfs_path_from_node+0x217/0x250
[  177.091234][ T9334]  sysfs_warn_dup+0x8e/0xa0
[  177.091261][ T9334]  sysfs_do_create_link_sd+0xbe/0x110
[  177.091290][ T9334]  device_add_class_symlinks+0x1c5/0x250
[  177.091318][ T9334]  device_add+0x553/0xbf0
[  177.091347][ T9334]  wiphy_register+0x193c/0x2660
[  177.091385][ T9334]  ? __pfx_wiphy_register+0x10/0x10
[  177.091405][ T9334]  ? minstrel_ht_alloc+0x85a/0x950
[  177.091438][ T9334]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  177.091469][ T9334]  ieee80211_register_hw+0x35e9/0x42d0
[  177.091510][ T9334]  ? ieee80211_register_hw+0x15c1/0x42d0
[  177.091545][ T9334]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  177.091587][ T9334]  ? __hrtimer_setup+0x17f/0x200
[  177.091605][ T9334]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  177.091634][ T9334]  mac80211_hwsim_new_radio+0x2adc/0x4a60
[  177.091686][ T9334]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  177.091707][ T9334]  ? trace_kmalloc+0x1f/0xd0
[  177.091726][ T9334]  ? __kmalloc_node_track_caller_noprof+0x2b2/0x4d0
[  177.091747][ T9334]  ? kstrndup+0xbb/0x150
[  177.091777][ T9334]  hwsim_new_radio_nl+0xed0/0x2290
[  177.091813][ T9334]  ? __pfx___nla_validate_parse+0x10/0x10
[  177.091842][ T9334]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.091896][ T9334]  ? genl_family_rcv_msg_attrs_parse+0x1d4/0x290
[  177.091930][ T9334]  genl_rcv_msg+0xb38/0xf00
[  177.091963][ T9334]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.091983][ T9334]  ? stack_trace_save+0x11a/0x1d0
[  177.092024][ T9334]  ? __pfx_stack_trace_save+0x10/0x10
[  177.092050][ T9334]  ? stack_depot_save_flags+0x44/0x940
[  177.092075][ T9334]  ? stack_trace_snprint+0x71/0xf0
[  177.092114][ T9334]  ? __lock_acquire+0xad5/0xd80
[  177.092134][ T9334]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  177.092174][ T9334]  netlink_rcv_skb+0x208/0x480
[  177.092194][ T9334]  ? __pfx_genl_rcv_msg+0x10/0x10
[  177.092219][ T9334]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  177.092261][ T9334]  ? netlink_deliver_tap+0x2e/0x1b0
[  177.092286][ T9334]  genl_rcv+0x28/0x40
[  177.092307][ T9334]  netlink_unicast+0x7f8/0x9a0
[  177.092343][ T9334]  ? __pfx_netlink_unicast+0x10/0x10
[  177.092371][ T9334]  ? skb_put+0x114/0x1f0
[  177.092397][ T9334]  netlink_sendmsg+0x8c3/0xcd0
[  177.092428][ T9334]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.092450][ T9334]  ? aa_sock_msg_perm+0x91/0x160
[  177.092479][ T9334]  ? __pfx_netlink_sendmsg+0x10/0x10
[  177.092495][ T9334]  __sock_sendmsg+0x221/0x270
[  177.092525][ T9334]  ____sys_sendmsg+0x523/0x860
[  177.092557][ T9334]  ? __pfx_____sys_sendmsg+0x10/0x10
[  177.092576][ T9334]  ? __fget_files+0x2a/0x420
[  177.092605][ T9334]  ? __fget_files+0x2a/0x420
[  177.092641][ T9334]  __sys_sendmsg+0x271/0x360
[  177.092661][ T9334]  ? __pfx_futex_wake+0x10/0x10
[  177.092683][ T9334]  ? __pfx___sys_sendmsg+0x10/0x10
[  177.092717][ T9334]  ? kfree+0x54/0x430
[  177.092782][ T9334]  ? do_syscall_64+0xb6/0x230
[  177.092805][ T9334]  do_syscall_64+0xf3/0x230
[  177.092825][ T9334]  ? clear_bhb_loop+0x45/0xa0
[  177.092847][ T9334]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.092864][ T9334] RIP: 0033:0x7f88fc18e169
[  177.092882][ T9334] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.092897][ T9334] RSP: 002b:00007f88f9fd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  177.092917][ T9334] RAX: ffffffffffffffda RBX: 00007f88fc3b6080 RCX: 00007f88fc18e169
[  177.092929][ T9334] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000005
[  177.092940][ T9334] RBP: 00007f88fc210a68 R08: 0000000000000000 R09: 0000000000000000
[  177.092951][ T9334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  177.092962][ T9334] R13: 0000000000000000 R14: 00007f88fc3b6080 R15: 00007fffc90b7328
[  177.092993][ T9334]  </TASK>
[  177.548752][ T9335] ip6tnl2: entered promiscuous mode
[  177.554650][ T9335] ip6tnl2: entered allmulticast mode
[  177.667904][ T1163] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  177.738240][ T5890] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  177.746137][ T1163] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  177.978365][  T976] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  178.000968][ T9350] 8021q: adding VLAN 0 to HW filter on device bond3
[  178.080413][ T9363] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  178.137098][  T976] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  178.212862][ T9370] netlink: 'syz.0.932': attribute type 29 has an invalid length.
[  178.250231][ T9370] netlink: 'syz.0.932': attribute type 29 has an invalid length.
[  178.302341][ T9374] bridge_slave_1: left allmulticast mode
[  178.318814][ T9374] bridge_slave_1: left promiscuous mode
[  178.335165][ T9374] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.438129][ T9384] Bluetooth: MGMT ver 1.23
[  178.490442][ T9374] bridge_slave_0: left allmulticast mode
[  178.496180][ T9374] bridge_slave_0: left promiscuous mode
[  178.503531][ T9374] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.013915][ T9408] netlink: 'syz.4.945': attribute type 18 has an invalid length.
[  179.121263][ T9415] bridge0: entered promiscuous mode
[  179.136116][ T9414] bridge0: left promiscuous mode
[  179.229999][ T9421] netlink: 'syz.3.948': attribute type 13 has an invalid length.
[  179.256398][ T9421] __nla_validate_parse: 16 callbacks suppressed
[  179.256420][ T9421] netlink: 16 bytes leftover after parsing attributes in process `syz.3.948'.
[  179.307050][ T9421] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (6)
[  179.344870][ T9424] SET target dimension over the limit!
[  179.892866][ T9435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.952'.
[  179.929992][ T9441] netlink: 20 bytes leftover after parsing attributes in process `syz.1.954'.
[  180.238825][ T9454] FAULT_INJECTION: forcing a failure.
[  180.238825][ T9454] name failslab, interval 1, probability 0, space 0, times 0
[  180.270834][ T9454] CPU: 0 UID: 0 PID: 9454 Comm: syz.1.958 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  180.270887][ T9454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.270909][ T9454] Call Trace:
[  180.270925][ T9454]  <TASK>
[  180.270940][ T9454]  dump_stack_lvl+0x241/0x360
[  180.270983][ T9454]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.271006][ T9454]  ? __pfx__printk+0x10/0x10
[  180.271033][ T9454]  ? __pfx___might_resched+0x10/0x10
[  180.271057][ T9454]  should_fail_ex+0x424/0x570
[  180.271083][ T9454]  should_failslab+0xac/0x100
[  180.271106][ T9454]  __kmalloc_noprof+0xdf/0x4d0
[  180.271126][ T9454]  ? tomoyo_encode+0x26f/0x540
[  180.271153][ T9454]  tomoyo_encode+0x26f/0x540
[  180.271177][ T9454]  ? __pfx_sockfs_dname+0x10/0x10
[  180.271205][ T9454]  tomoyo_realpath_from_path+0x59e/0x5e0
[  180.271243][ T9454]  tomoyo_path_number_perm+0x245/0x790
[  180.271268][ T9454]  ? tomoyo_path_number_perm+0x215/0x790
[  180.271294][ T9454]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  180.271323][ T9454]  ? ksys_write+0x24e/0x2d0
[  180.271349][ T9454]  ? __lock_acquire+0xad5/0xd80
[  180.271386][ T9454]  ? __fget_files+0x2a/0x420
[  180.271409][ T9454]  ? __fget_files+0x2a/0x420
[  180.271436][ T9454]  ? __fget_files+0x2a/0x420
[  180.271473][ T9454]  security_file_ioctl+0xc6/0x2a0
[  180.271495][ T9454]  __se_sys_ioctl+0x46/0x160
[  180.271517][ T9454]  do_syscall_64+0xf3/0x230
[  180.271537][ T9454]  ? clear_bhb_loop+0x45/0xa0
[  180.271558][ T9454]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.271574][ T9454] RIP: 0033:0x7f88fc18e169
[  180.271594][ T9454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.271607][ T9454] RSP: 002b:00007f88f9ff6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  180.271633][ T9454] RAX: ffffffffffffffda RBX: 00007f88fc3b5fa0 RCX: 00007f88fc18e169
[  180.271645][ T9454] RDX: 0000200000000080 RSI: 0000000000008932 RDI: 0000000000000003
[  180.271656][ T9454] RBP: 00007f88f9ff6090 R08: 0000000000000000 R09: 0000000000000000
[  180.271666][ T9454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.271677][ T9454] R13: 0000000000000000 R14: 00007f88fc3b5fa0 R15: 00007fffc90b7328
[  180.271705][ T9454]  </TASK>
[  180.271750][ T9454] ERROR: Out of memory at tomoyo_realpath_from_path.
[  180.596389][ T5151] Bluetooth: hci4: command 0x0405 tx timeout
[  180.747947][ T9476] FAULT_INJECTION: forcing a failure.
[  180.747947][ T9476] name failslab, interval 1, probability 0, space 0, times 0
[  180.761106][ T9476] CPU: 0 UID: 0 PID: 9476 Comm: syz.2.963 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  180.761131][ T9476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.761141][ T9476] Call Trace:
[  180.761148][ T9476]  <TASK>
[  180.761155][ T9476]  dump_stack_lvl+0x241/0x360
[  180.761186][ T9476]  ? __pfx_dump_stack_lvl+0x10/0x10
[  180.761210][ T9476]  ? __pfx__printk+0x10/0x10
[  180.761238][ T9476]  ? __pfx___might_resched+0x10/0x10
[  180.761265][ T9476]  should_fail_ex+0x424/0x570
[  180.761291][ T9476]  should_failslab+0xac/0x100
[  180.761316][ T9476]  __kmalloc_noprof+0xdf/0x4d0
[  180.761337][ T9476]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  180.761359][ T9476]  ? apparmor_capable+0x13b/0x1b0
[  180.761381][ T9476]  genl_family_rcv_msg_attrs_parse+0xa3/0x290
[  180.761411][ T9476]  genl_rcv_msg+0x819/0xf00
[  180.761442][ T9476]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.761460][ T9476]  ? __dev_queue_xmit+0x1780/0x3f60
[  180.761480][ T9476]  ? kasan_save_track+0x3f/0x80
[  180.761496][ T9476]  ? __kasan_slab_alloc+0x66/0x80
[  180.761521][ T9476]  ? do_syscall_64+0xf3/0x230
[  180.761557][ T9476]  ? __lock_acquire+0xad5/0xd80
[  180.761577][ T9476]  ? __pfx_mptcp_pm_nl_add_addr_doit+0x10/0x10
[  180.761610][ T9476]  netlink_rcv_skb+0x208/0x480
[  180.761630][ T9476]  ? __pfx_genl_rcv_msg+0x10/0x10
[  180.761653][ T9476]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  180.761694][ T9476]  ? netlink_deliver_tap+0x2e/0x1b0
[  180.761725][ T9476]  genl_rcv+0x28/0x40
[  180.761743][ T9476]  netlink_unicast+0x7f8/0x9a0
[  180.761778][ T9476]  ? __pfx_netlink_unicast+0x10/0x10
[  180.761804][ T9476]  ? skb_put+0x114/0x1f0
[  180.761829][ T9476]  netlink_sendmsg+0x8c3/0xcd0
[  180.761861][ T9476]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.761884][ T9476]  ? aa_sock_msg_perm+0x91/0x160
[  180.761912][ T9476]  ? __pfx_netlink_sendmsg+0x10/0x10
[  180.761928][ T9476]  __sock_sendmsg+0x221/0x270
[  180.761956][ T9476]  ____sys_sendmsg+0x523/0x860
[  180.761987][ T9476]  ? __pfx_____sys_sendmsg+0x10/0x10
[  180.762005][ T9476]  ? __fget_files+0x2a/0x420
[  180.762032][ T9476]  ? __fget_files+0x2a/0x420
[  180.762066][ T9476]  __sys_sendmsg+0x271/0x360
[  180.762093][ T9476]  ? __pfx___sys_sendmsg+0x10/0x10
[  180.762173][ T9476]  ? do_syscall_64+0xb6/0x230
[  180.762195][ T9476]  do_syscall_64+0xf3/0x230
[  180.762213][ T9476]  ? clear_bhb_loop+0x45/0xa0
[  180.762234][ T9476]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.762250][ T9476] RIP: 0033:0x7f623438e169
[  180.762266][ T9476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.762279][ T9476] RSP: 002b:00007f6235198038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  180.762295][ T9476] RAX: ffffffffffffffda RBX: 00007f62345b6080 RCX: 00007f623438e169
[  180.762308][ T9476] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000006
[  180.762318][ T9476] RBP: 00007f6235198090 R08: 0000000000000000 R09: 0000000000000000
[  180.762328][ T9476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.762338][ T9476] R13: 0000000000000000 R14: 00007f62345b6080 R15: 00007ffd642df5d8
[  180.762368][ T9476]  </TASK>
[  181.102099][ T9478] netlink: 16 bytes leftover after parsing attributes in process `syz.0.966'.
[  181.277389][ T9489] IPVS: set_ctl: invalid protocol: 58 255.255.255.255:20004
[  181.723966][ T9501] FAULT_INJECTION: forcing a failure.
[  181.723966][ T9501] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  181.745116][ T9501] CPU: 0 UID: 0 PID: 9501 Comm: syz.3.973 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  181.745144][ T9501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  181.745154][ T9501] Call Trace:
[  181.745161][ T9501]  <TASK>
[  181.745169][ T9501]  dump_stack_lvl+0x241/0x360
[  181.745200][ T9501]  ? __pfx_dump_stack_lvl+0x10/0x10
[  181.745223][ T9501]  ? __pfx__printk+0x10/0x10
[  181.745260][ T9501]  should_fail_ex+0x424/0x570
[  181.745287][ T9501]  _copy_from_user+0x2d/0xb0
[  181.745306][ T9501]  kstrtouint_from_user+0xce/0x1a0
[  181.745332][ T9501]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  181.745358][ T9501]  ? __lock_acquire+0xad5/0xd80
[  181.745387][ T9501]  proc_fail_nth_write+0xac/0x2d0
[  181.745405][ T9501]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  181.745428][ T9501]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  181.745450][ T9501]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  181.745468][ T9501]  vfs_write+0x2bc/0xd10
[  181.745492][ T9501]  ? fdget_pos+0x247/0x310
[  181.745520][ T9501]  ? __pfx_vfs_write+0x10/0x10
[  181.745549][ T9501]  ? __fget_files+0x2a/0x420
[  181.745574][ T9501]  ? __fget_files+0x39d/0x420
[  181.745596][ T9501]  ? __fget_files+0x2a/0x420
[  181.745630][ T9501]  ksys_write+0x19d/0x2d0
[  181.745651][ T9501]  ? __pfx_ksys_write+0x10/0x10
[  181.745676][ T9501]  ? do_syscall_64+0xb6/0x230
[  181.745697][ T9501]  do_syscall_64+0xf3/0x230
[  181.745711][ T9501]  ? clear_bhb_loop+0x45/0xa0
[  181.745731][ T9501]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.745747][ T9501] RIP: 0033:0x7f66c938cc1f
[  181.745763][ T9501] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  181.745777][ T9501] RSP: 002b:00007f66ca13d030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  181.745796][ T9501] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f66c938cc1f
[  181.745808][ T9501] RDX: 0000000000000001 RSI: 00007f66ca13d0a0 RDI: 0000000000000004
[  181.745818][ T9501] RBP: 00007f66ca13d090 R08: 0000000000000000 R09: 0000000000000000
[  181.745829][ T9501] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  181.745839][ T9501] R13: 0000000000000000 R14: 00007f66c95b5fa0 R15: 00007ffd03db04f8
[  181.745868][ T9501]  </TASK>
[  182.196463][    C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  182.205192][ T9520] netlink: 4 bytes leftover after parsing attributes in process `syz.3.977'.
[  182.225108][ T9503] gretap0: left promiscuous mode
[  182.350067][ T9503] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.358068][ T9503] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.598014][ T9503] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  182.632116][ T9503] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  182.798995][ T9503] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.808243][ T9503] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.826621][ T9503] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.835576][ T9503] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.926369][ T9503] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  182.935336][ T9503] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  182.944539][ T9503] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  182.953466][ T9503] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  182.975423][ T9503] ip6tnl2: left promiscuous mode
[  182.982791][ T9503] ip6tnl2: left allmulticast mode
[  183.131392][ T9543] netlink: 4 bytes leftover after parsing attributes in process `syz.4.987'.
[  183.171468][ T9542] netlink: 4 bytes leftover after parsing attributes in process `syz.4.987'.
[  183.518285][ T9571] raw_sendmsg: syz.2.994 forgot to set AF_INET. Fix it!
[  183.671841][ T9577] netlink: 8 bytes leftover after parsing attributes in process `syz.1.995'.
[  183.694550][ T9577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.995'.
[  184.116170][ T9602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1003'.
[  184.301398][ T9607] __nla_validate_parse: 1 callbacks suppressed
[  184.301417][ T9607] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1005'.
[  184.375938][ T9607] sysfs: cannot create duplicate filename '/class/ieee80211/!寿$ûÌÌULÙv'
[  184.399799][ T9607] CPU: 1 UID: 0 PID: 9607 Comm: syz.1.1005 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  184.399828][ T9607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  184.399839][ T9607] Call Trace:
[  184.399846][ T9607]  <TASK>
[  184.399855][ T9607]  dump_stack_lvl+0x241/0x360
[  184.399889][ T9607]  ? __pfx_dump_stack_lvl+0x10/0x10
[  184.399913][ T9607]  ? __pfx__printk+0x10/0x10
[  184.399936][ T9607]  ? kernfs_path_from_node+0x2b/0x250
[  184.399960][ T9607]  ? kernfs_path_from_node+0x217/0x250
[  184.399986][ T9607]  sysfs_warn_dup+0x8e/0xa0
[  184.400013][ T9607]  sysfs_do_create_link_sd+0xbe/0x110
[  184.400043][ T9607]  device_add_class_symlinks+0x1c5/0x250
[  184.400077][ T9607]  device_add+0x553/0xbf0
[  184.400109][ T9607]  wiphy_register+0x193c/0x2660
[  184.400146][ T9607]  ? __pfx_wiphy_register+0x10/0x10
[  184.400167][ T9607]  ? minstrel_ht_alloc+0x85a/0x950
[  184.400200][ T9607]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  184.400236][ T9607]  ieee80211_register_hw+0x35e9/0x42d0
[  184.400271][ T9607]  ? ieee80211_register_hw+0x15c1/0x42d0
[  184.400300][ T9607]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  184.400337][ T9607]  ? __hrtimer_setup+0x17f/0x200
[  184.400353][ T9607]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  184.400376][ T9607]  mac80211_hwsim_new_radio+0x2adc/0x4a60
[  184.400418][ T9607]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  184.400434][ T9607]  ? trace_kmalloc+0x1f/0xd0
[  184.400450][ T9607]  ? __kmalloc_node_track_caller_noprof+0x2b2/0x4d0
[  184.400469][ T9607]  ? kstrndup+0xbb/0x150
[  184.400493][ T9607]  hwsim_new_radio_nl+0xed0/0x2290
[  184.400521][ T9607]  ? __pfx___nla_validate_parse+0x10/0x10
[  184.400550][ T9607]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.400595][ T9607]  ? genl_family_rcv_msg_attrs_parse+0x1d4/0x290
[  184.400620][ T9607]  genl_rcv_msg+0xb38/0xf00
[  184.400645][ T9607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.400660][ T9607]  ? stack_trace_save+0x11a/0x1d0
[  184.400680][ T9607]  ? __pfx_stack_trace_save+0x10/0x10
[  184.400700][ T9607]  ? stack_depot_save_flags+0x44/0x940
[  184.400715][ T9607]  ? stack_trace_snprint+0x71/0xf0
[  184.400744][ T9607]  ? __lock_acquire+0xad5/0xd80
[  184.400759][ T9607]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  184.400787][ T9607]  netlink_rcv_skb+0x208/0x480
[  184.400802][ T9607]  ? __pfx_genl_rcv_msg+0x10/0x10
[  184.400820][ T9607]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  184.400854][ T9607]  ? netlink_deliver_tap+0x2e/0x1b0
[  184.400873][ T9607]  genl_rcv+0x28/0x40
[  184.400888][ T9607]  netlink_unicast+0x7f8/0x9a0
[  184.400915][ T9607]  ? __pfx_netlink_unicast+0x10/0x10
[  184.400936][ T9607]  ? skb_put+0x114/0x1f0
[  184.400956][ T9607]  netlink_sendmsg+0x8c3/0xcd0
[  184.400981][ T9607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.400998][ T9607]  ? aa_sock_msg_perm+0x91/0x160
[  184.401021][ T9607]  ? __pfx_netlink_sendmsg+0x10/0x10
[  184.401033][ T9607]  __sock_sendmsg+0x221/0x270
[  184.401056][ T9607]  ____sys_sendmsg+0x523/0x860
[  184.401081][ T9607]  ? __pfx_____sys_sendmsg+0x10/0x10
[  184.401095][ T9607]  ? __fget_files+0x2a/0x420
[  184.401117][ T9607]  ? __fget_files+0x2a/0x420
[  184.401144][ T9607]  __sys_sendmsg+0x271/0x360
[  184.401165][ T9607]  ? __pfx___sys_sendmsg+0x10/0x10
[  184.401191][ T9607]  ? kfree+0x54/0x430
[  184.401240][ T9607]  ? do_syscall_64+0xb6/0x230
[  184.401257][ T9607]  do_syscall_64+0xf3/0x230
[  184.401272][ T9607]  ? clear_bhb_loop+0x45/0xa0
[  184.401288][ T9607]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  184.401301][ T9607] RIP: 0033:0x7f88fc18e169
[  184.401325][ T9607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  184.401336][ T9607] RSP: 002b:00007f88f9fd5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  184.401352][ T9607] RAX: ffffffffffffffda RBX: 00007f88fc3b6080 RCX: 00007f88fc18e169
[  184.401362][ T9607] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000005
[  184.401371][ T9607] RBP: 00007f88fc210a68 R08: 0000000000000000 R09: 0000000000000000
[  184.401380][ T9607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  184.401388][ T9607] R13: 0000000000000000 R14: 00007f88fc3b6080 R15: 00007fffc90b7328
[  184.401411][ T9607]  </TASK>
[  184.892478][ T9619] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1008'.
[  185.088311][ T9630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1014'.
[  185.633791][ T9640] 8021q: adding VLAN 0 to HW filter on device bond3
[  185.700411][ T9651] netlink: 'syz.3.1019': attribute type 10 has an invalid length.
[  185.719093][ T9651] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1019'.
[  185.775173][ T9651] geneve0: entered promiscuous mode
[  185.790831][ T9651] team0: Port device geneve0 added
[  185.951390][ T9664] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1026'.
[  185.969827][ T9664] FAULT_INJECTION: forcing a failure.
[  185.969827][ T9664] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  185.984833][ T9666] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1025'.
[  185.985284][ T9664] CPU: 1 UID: 0 PID: 9664 Comm: syz.0.1026 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  185.985306][ T9664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  185.985317][ T9664] Call Trace:
[  185.985324][ T9664]  <TASK>
[  185.985331][ T9664]  dump_stack_lvl+0x241/0x360
[  185.985361][ T9664]  ? __pfx_dump_stack_lvl+0x10/0x10
[  185.985384][ T9664]  ? __pfx__printk+0x10/0x10
[  185.985419][ T9664]  should_fail_ex+0x424/0x570
[  185.985444][ T9664]  _copy_from_user+0x2d/0xb0
[  185.985463][ T9664]  kstrtouint_from_user+0xce/0x1a0
[  185.985488][ T9664]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  185.985513][ T9664]  ? __lock_acquire+0xad5/0xd80
[  185.985541][ T9664]  proc_fail_nth_write+0xac/0x2d0
[  185.985558][ T9664]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  185.985580][ T9664]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  185.985603][ T9664]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  185.985624][ T9664]  vfs_write+0x2bc/0xd10
[  185.985649][ T9664]  ? fdget_pos+0x247/0x310
[  185.985677][ T9664]  ? __pfx_vfs_write+0x10/0x10
[  185.985698][ T9664]  ? __fget_files+0x2a/0x420
[  185.985722][ T9664]  ? __fget_files+0x39d/0x420
[  185.985744][ T9664]  ? __fget_files+0x2a/0x420
[  185.985776][ T9664]  ksys_write+0x19d/0x2d0
[  185.985796][ T9664]  ? __pfx_ksys_write+0x10/0x10
[  185.985820][ T9664]  ? do_syscall_64+0xb6/0x230
[  185.985842][ T9664]  do_syscall_64+0xf3/0x230
[  185.985860][ T9664]  ? clear_bhb_loop+0x45/0xa0
[  185.985879][ T9664]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  185.985894][ T9664] RIP: 0033:0x7f78c638cc1f
[  185.985909][ T9664] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  185.985923][ T9664] RSP: 002b:00007f78c72c6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  185.985941][ T9664] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f78c638cc1f
[  185.985952][ T9664] RDX: 0000000000000001 RSI: 00007f78c72c60a0 RDI: 0000000000000005
[  185.985962][ T9664] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  185.985971][ T9664] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  185.985981][ T9664] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  185.986008][ T9664]  </TASK>
[  186.585174][ T9689] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1033'.
[  186.616004][ T9687] netlink: 'syz.1.1034': attribute type 29 has an invalid length.
[  186.629030][ T9691] netlink: 'syz.1.1034': attribute type 29 has an invalid length.
[  186.647901][ T9687] netlink: 508 bytes leftover after parsing attributes in process `syz.1.1034'.
[  186.857408][ T9696] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  187.070716][ T9703] lo: entered allmulticast mode
[  187.102242][ T9702] lo: left allmulticast mode
[  187.293702][ T9709] 8021q: adding VLAN 0 to HW filter on device bond0
[  187.324382][ T9709] 8021q: adding VLAN 0 to HW filter on device team0
[  187.358178][ T9709] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  187.492661][ T9727] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1050'.
[  187.525799][ T9727] batadv2: entered promiscuous mode
[  187.541054][ T9727] batadv2: entered allmulticast mode
[  187.555523][ T9734] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  187.613791][ T9736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  188.046038][ T9758] FAULT_INJECTION: forcing a failure.
[  188.046038][ T9758] name failslab, interval 1, probability 0, space 0, times 0
[  188.077830][ T9758] CPU: 0 UID: 0 PID: 9758 Comm: syz.3.1060 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  188.077857][ T9758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  188.077868][ T9758] Call Trace:
[  188.077875][ T9758]  <TASK>
[  188.077882][ T9758]  dump_stack_lvl+0x241/0x360
[  188.077912][ T9758]  ? __pfx_dump_stack_lvl+0x10/0x10
[  188.077935][ T9758]  ? __pfx__printk+0x10/0x10
[  188.077963][ T9758]  ? __pfx___might_resched+0x10/0x10
[  188.077998][ T9758]  should_fail_ex+0x424/0x570
[  188.078024][ T9758]  should_failslab+0xac/0x100
[  188.078049][ T9758]  __kmalloc_cache_noprof+0x73/0x370
[  188.078071][ T9758]  ? rtnl_newlink+0x144/0x1fe0
[  188.078092][ T9758]  rtnl_newlink+0x144/0x1fe0
[  188.078109][ T9758]  ? stack_depot_save_flags+0x44/0x940
[  188.078138][ T9758]  ? kasan_save_track+0x51/0x80
[  188.078154][ T9758]  ? kasan_save_track+0x3f/0x80
[  188.078172][ T9758]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.078186][ T9758]  ? dev_hard_start_xmit+0x2d9/0x830
[  188.078205][ T9758]  ? __dev_queue_xmit+0x1b80/0x3f60
[  188.078224][ T9758]  ? __netlink_deliver_tap+0x561/0x7f0
[  188.078241][ T9758]  ? netlink_deliver_tap+0x19d/0x1b0
[  188.078255][ T9758]  ? netlink_unicast+0x7c6/0x9a0
[  188.078277][ T9758]  ? netlink_sendmsg+0x8c3/0xcd0
[  188.078292][ T9758]  ? __sock_sendmsg+0x221/0x270
[  188.078313][ T9758]  ? ____sys_sendmsg+0x523/0x860
[  188.078331][ T9758]  ? __sys_sendmsg+0x271/0x360
[  188.078349][ T9758]  ? do_syscall_64+0xf3/0x230
[  188.078366][ T9758]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.078418][ T9758]  ? kasan_quarantine_put+0xdc/0x230
[  188.078434][ T9758]  ? lockdep_hardirqs_on+0x9d/0x150
[  188.078456][ T9758]  ? nlmon_xmit+0xaf/0x100
[  188.078481][ T9758]  ? __local_bh_enable_ip+0x168/0x200
[  188.078495][ T9758]  ? lockdep_hardirqs_on+0x9d/0x150
[  188.078521][ T9758]  ? aa_get_newest_label+0x101/0x6f0
[  188.078551][ T9758]  ? __lock_acquire+0xad5/0xd80
[  188.078589][ T9758]  ? __pfx_rtnl_newlink+0x10/0x10
[  188.078607][ T9758]  rtnetlink_rcv_msg+0x80f/0xd70
[  188.078622][ T9758]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  188.078644][ T9758]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  188.078668][ T9758]  ? ref_tracker_free+0x63e/0x7e0
[  188.078697][ T9758]  netlink_rcv_skb+0x208/0x480
[  188.078714][ T9758]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  188.078731][ T9758]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  188.078764][ T9758]  ? netlink_deliver_tap+0x2e/0x1b0
[  188.078782][ T9758]  ? netlink_deliver_tap+0x2e/0x1b0
[  188.078799][ T9758]  netlink_unicast+0x7f8/0x9a0
[  188.078830][ T9758]  ? __pfx_netlink_unicast+0x10/0x10
[  188.078858][ T9758]  ? skb_put+0x114/0x1f0
[  188.078882][ T9758]  netlink_sendmsg+0x8c3/0xcd0
[  188.078912][ T9758]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.078933][ T9758]  ? aa_sock_msg_perm+0x91/0x160
[  188.078959][ T9758]  ? __pfx_netlink_sendmsg+0x10/0x10
[  188.078980][ T9758]  __sock_sendmsg+0x221/0x270
[  188.079008][ T9758]  ____sys_sendmsg+0x523/0x860
[  188.079038][ T9758]  ? __pfx_____sys_sendmsg+0x10/0x10
[  188.079056][ T9758]  ? __fget_files+0x2a/0x420
[  188.079083][ T9758]  ? __fget_files+0x2a/0x420
[  188.079115][ T9758]  __sys_sendmsg+0x271/0x360
[  188.079142][ T9758]  ? __pfx___sys_sendmsg+0x10/0x10
[  188.079216][ T9758]  ? do_syscall_64+0xb6/0x230
[  188.079238][ T9758]  do_syscall_64+0xf3/0x230
[  188.079256][ T9758]  ? clear_bhb_loop+0x45/0xa0
[  188.079274][ T9758]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  188.079289][ T9758] RIP: 0033:0x7f66c938e169
[  188.079304][ T9758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  188.079317][ T9758] RSP: 002b:00007f66ca13d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  188.079336][ T9758] RAX: ffffffffffffffda RBX: 00007f66c95b5fa0 RCX: 00007f66c938e169
[  188.079349][ T9758] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  188.079360][ T9758] RBP: 00007f66ca13d090 R08: 0000000000000000 R09: 0000000000000000
[  188.079370][ T9758] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  188.079379][ T9758] R13: 0000000000000000 R14: 00007f66c95b5fa0 R15: 00007ffd03db04f8
[  188.079407][ T9758]  </TASK>
[  189.063696][ T9785] netlink: 'syz.4.1069': attribute type 3 has an invalid length.
[  189.214313][ T9795] FAULT_INJECTION: forcing a failure.
[  189.214313][ T9795] name failslab, interval 1, probability 0, space 0, times 0
[  189.242658][ T9795] CPU: 1 UID: 0 PID: 9795 Comm: syz.1.1075 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  189.242687][ T9795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  189.242697][ T9795] Call Trace:
[  189.242705][ T9795]  <TASK>
[  189.242712][ T9795]  dump_stack_lvl+0x241/0x360
[  189.242743][ T9795]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.242766][ T9795]  ? __pfx__printk+0x10/0x10
[  189.242793][ T9795]  ? __pfx___might_resched+0x10/0x10
[  189.242818][ T9795]  should_fail_ex+0x424/0x570
[  189.242845][ T9795]  should_failslab+0xac/0x100
[  189.242876][ T9795]  __kvmalloc_node_noprof+0x170/0x5a0
[  189.242900][ T9795]  ? alloc_netdev_mqs+0xac6/0x1210
[  189.242929][ T9795]  alloc_netdev_mqs+0xac6/0x1210
[  189.242960][ T9795]  rtnl_create_link+0x2f2/0xea0
[  189.242993][ T9795]  rtnl_newlink_create+0x2f2/0xc30
[  189.243013][ T9795]  ? __mutex_lock+0x380/0x10c0
[  189.243035][ T9795]  ? __pfx_aa_get_newest_label+0x10/0x10
[  189.243062][ T9795]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  189.243085][ T9795]  ? __pfx___mutex_lock+0x10/0x10
[  189.243114][ T9795]  ? ns_capable+0x8a/0xf0
[  189.243134][ T9795]  rtnl_newlink+0x18b0/0x1fe0
[  189.243172][ T9795]  ? __pfx_rtnl_newlink+0x10/0x10
[  189.243186][ T9795]  ? unwind_get_return_address+0x4d/0x90
[  189.243208][ T9795]  ? arch_stack_walk+0xff/0x150
[  189.243232][ T9795]  ? __lock_acquire+0xad5/0xd80
[  189.243257][ T9795]  ? __lock_acquire+0xad5/0xd80
[  189.243277][ T9795]  ? __lock_acquire+0xad5/0xd80
[  189.243313][ T9795]  ? is_bpf_text_address+0x26/0x2a0
[  189.243334][ T9795]  ? 0xffffffffa0003b40
[  189.243351][ T9795]  ? is_bpf_text_address+0x288/0x2a0
[  189.243367][ T9795]  ? is_bpf_text_address+0x26/0x2a0
[  189.243386][ T9795]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  189.243412][ T9795]  ? kernel_text_address+0xa7/0xe0
[  189.243437][ T9795]  ? __kernel_text_address+0xd/0x40
[  189.243467][ T9795]  ? aa_get_newest_label+0x101/0x6f0
[  189.243496][ T9795]  ? __lock_acquire+0xad5/0xd80
[  189.243553][ T9795]  ? __pfx_rtnl_newlink+0x10/0x10
[  189.243572][ T9795]  rtnetlink_rcv_msg+0x80f/0xd70
[  189.243587][ T9795]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  189.243609][ T9795]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  189.243623][ T9795]  ? __lock_acquire+0xad5/0xd80
[  189.243657][ T9795]  netlink_rcv_skb+0x208/0x480
[  189.243677][ T9795]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  189.243695][ T9795]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  189.243732][ T9795]  ? netlink_deliver_tap+0x2e/0x1b0
[  189.243753][ T9795]  ? netlink_deliver_tap+0x2e/0x1b0
[  189.243773][ T9795]  netlink_unicast+0x7f8/0x9a0
[  189.243807][ T9795]  ? __pfx_netlink_unicast+0x10/0x10
[  189.243833][ T9795]  ? skb_put+0x114/0x1f0
[  189.243863][ T9795]  netlink_sendmsg+0x8c3/0xcd0
[  189.243894][ T9795]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.243917][ T9795]  ? aa_sock_msg_perm+0x91/0x160
[  189.243945][ T9795]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.243960][ T9795]  __sock_sendmsg+0x221/0x270
[  189.243989][ T9795]  ____sys_sendmsg+0x523/0x860
[  189.244020][ T9795]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.244038][ T9795]  ? __fget_files+0x2a/0x420
[  189.244066][ T9795]  ? __fget_files+0x2a/0x420
[  189.244099][ T9795]  __sys_sendmsg+0x271/0x360
[  189.244126][ T9795]  ? __pfx___sys_sendmsg+0x10/0x10
[  189.244206][ T9795]  ? do_syscall_64+0xb6/0x230
[  189.244227][ T9795]  do_syscall_64+0xf3/0x230
[  189.244245][ T9795]  ? clear_bhb_loop+0x45/0xa0
[  189.244266][ T9795]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.244282][ T9795] RIP: 0033:0x7f88fc18e169
[  189.244297][ T9795] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.244311][ T9795] RSP: 002b:00007f88f9ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.244329][ T9795] RAX: ffffffffffffffda RBX: 00007f88fc3b5fa0 RCX: 00007f88fc18e169
[  189.244342][ T9795] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000004
[  189.244352][ T9795] RBP: 00007f88f9ff6090 R08: 0000000000000000 R09: 0000000000000000
[  189.244363][ T9795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  189.244373][ T9795] R13: 0000000000000000 R14: 00007f88fc3b5fa0 R15: 00007fffc90b7328
[  189.244402][ T9795]  </TASK>
[  189.658715][ T9794] __nla_validate_parse: 5 callbacks suppressed
[  189.658734][ T9794] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1074'.
[  189.685675][ T9805] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  189.726158][ T9805] 8021q: adding VLAN 0 to HW filter on device team0
[  189.738966][ T9805] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  189.759627][ T9806] netlink: 'syz.3.1077': attribute type 1 has an invalid length.
[  189.780813][ T9806] netlink: 208 bytes leftover after parsing attributes in process `syz.3.1077'.
[  189.867748][ T9815] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1078'.
[  189.878730][ T9815] openvswitch: netlink: Actions may not be safe on all matching packets
[  189.888121][ T9815] netlink: 'syz.2.1078': attribute type 10 has an invalid length.
[  190.206169][ T9833] FAULT_INJECTION: forcing a failure.
[  190.206169][ T9833] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  190.286484][ T9833] CPU: 1 UID: 0 PID: 9833 Comm: syz.4.1088 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  190.286510][ T9833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  190.286519][ T9833] Call Trace:
[  190.286526][ T9833]  <TASK>
[  190.286532][ T9833]  dump_stack_lvl+0x241/0x360
[  190.286558][ T9833]  ? __pfx_dump_stack_lvl+0x10/0x10
[  190.286578][ T9833]  ? __pfx__printk+0x10/0x10
[  190.286610][ T9833]  should_fail_ex+0x424/0x570
[  190.286634][ T9833]  _copy_from_iter+0x211/0x1c70
[  190.286664][ T9833]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  190.286683][ T9833]  ? __alloc_skb+0x2e8/0x480
[  190.286707][ T9833]  ? __pfx__copy_from_iter+0x10/0x10
[  190.286729][ T9833]  ? alloc_pages_noprof+0x136/0x190
[  190.286759][ T9833]  ? skb_page_frag_refill+0x177/0x2f0
[  190.286788][ T9833]  tcp_sendmsg_locked+0x1ff9/0x51f0
[  190.286858][ T9833]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  190.286884][ T9833]  ? tcp_sendmsg+0x22/0x50
[  190.286903][ T9833]  ? do_raw_spin_unlock+0x13c/0x8b0
[  190.286932][ T9833]  tcp_sendmsg+0x30/0x50
[  190.286952][ T9833]  __sock_sendmsg+0x1a6/0x270
[  190.286979][ T9833]  ____sys_sendmsg+0x523/0x860
[  190.287008][ T9833]  ? __pfx_____sys_sendmsg+0x10/0x10
[  190.287026][ T9833]  ? __fget_files+0x2a/0x420
[  190.287052][ T9833]  ? __fget_files+0x2a/0x420
[  190.287085][ T9833]  __sys_sendmmsg+0x3a0/0x7b0
[  190.287119][ T9833]  ? __pfx___sys_sendmmsg+0x10/0x10
[  190.287174][ T9833]  ? rcu_read_lock_any_held+0xbb/0x160
[  190.287196][ T9833]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  190.287221][ T9833]  ? vfs_write+0xb29/0xd10
[  190.287249][ T9833]  ? ksys_write+0x24e/0x2d0
[  190.287271][ T9833]  ? __mutex_unlock_slowpath+0x229/0x800
[  190.287320][ T9833]  ? ksys_write+0x275/0x2d0
[  190.287351][ T9833]  __x64_sys_sendmmsg+0xa0/0xb0
[  190.287375][ T9833]  do_syscall_64+0xf3/0x230
[  190.287393][ T9833]  ? clear_bhb_loop+0x45/0xa0
[  190.287414][ T9833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  190.287429][ T9833] RIP: 0033:0x7fd1a7f8e169
[  190.287445][ T9833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  190.287459][ T9833] RSP: 002b:00007fd1a5df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  190.287478][ T9833] RAX: ffffffffffffffda RBX: 00007fd1a81b5fa0 RCX: 00007fd1a7f8e169
[  190.287490][ T9833] RDX: 0000000000000002 RSI: 0000200000001300 RDI: 0000000000000003
[  190.287500][ T9833] RBP: 00007fd1a5df6090 R08: 0000000000000000 R09: 0000000000000000
[  190.287510][ T9833] R10: 00000000040088c0 R11: 0000000000000246 R12: 0000000000000001
[  190.287520][ T9833] R13: 0000000000000000 R14: 00007fd1a81b5fa0 R15: 00007ffccfad8978
[  190.287549][ T9833]  </TASK>
[  190.306962][ T9845] pim6reg: entered allmulticast mode
[  190.799116][ T9866] netlink: 'syz.1.1096': attribute type 29 has an invalid length.
[  190.831215][ T9866] netlink: 'syz.1.1096': attribute type 29 has an invalid length.
[  190.862808][ T9875] netlink: 'syz.0.1098': attribute type 26 has an invalid length.
[  190.934704][ T9879] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1101'.
[  190.960591][ T9879] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1101'.
[  191.037122][ T9879] dummy0: entered promiscuous mode
[  191.052992][ T9879] macsec1: entered promiscuous mode
[  191.070830][ T9879] macsec1: entered allmulticast mode
[  191.091277][ T9879] dummy0: entered allmulticast mode
[  191.110252][ T9879] dummy0: left allmulticast mode
[  191.119822][ T9879] dummy0: left promiscuous mode
[  191.235385][ T9883] sch_tbf: burst 2 is lower than device ip6tnl0 mtu (1452) !
[  191.329702][ T9891] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1102'.
[  191.614310][ T9907] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1110'.
[  191.959485][ T9921] netlink: 'syz.1.1115': attribute type 3 has an invalid length.
[  191.969047][ T9921] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1115'.
[  192.117452][ T9931] SET target dimension over the limit!
[  192.588865][ T9939] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1120'.
[  192.764364][ T9949] Cannot find add_set index 0 as target
[  192.927166][ T9951] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1123'.
[  192.936674][ T9951] 8021q: VLANs not supported on caif0
[  193.784806][ T9974] 8021q: adding VLAN 0 to HW filter on device bond5
[  193.797880][ T9974] bond0: (slave bond5): Enslaving as an active interface with a down link
[  193.868284][ T9979] netlink: 'syz.0.1134': attribute type 4 has an invalid length.
[  193.951691][ T9984] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  193.965847][ T9984] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  194.363989][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  194.483885][ T9997] FAULT_INJECTION: forcing a failure.
[  194.483885][ T9997] name failslab, interval 1, probability 0, space 0, times 0
[  194.526492][ T9997] CPU: 0 UID: 0 PID: 9997 Comm: syz.4.1139 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  194.526519][ T9997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  194.526529][ T9997] Call Trace:
[  194.526537][ T9997]  <TASK>
[  194.526543][ T9997]  dump_stack_lvl+0x241/0x360
[  194.526575][ T9997]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.526595][ T9997]  ? __pfx__printk+0x10/0x10
[  194.526622][ T9997]  ? __pfx___might_resched+0x10/0x10
[  194.526647][ T9997]  should_fail_ex+0x424/0x570
[  194.526674][ T9997]  should_failslab+0xac/0x100
[  194.526698][ T9997]  __kvmalloc_node_noprof+0x170/0x5a0
[  194.526722][ T9997]  ? alloc_netdev_mqs+0x92c/0x1210
[  194.526744][ T9997]  ? __asan_memset+0x23/0x50
[  194.526766][ T9997]  alloc_netdev_mqs+0x92c/0x1210
[  194.526793][ T9997]  rtnl_create_link+0x2f2/0xea0
[  194.526825][ T9997]  rtnl_newlink_create+0x2f2/0xc30
[  194.526845][ T9997]  ? __mutex_lock+0x380/0x10c0
[  194.526868][ T9997]  ? __pfx_aa_get_newest_label+0x10/0x10
[  194.526895][ T9997]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  194.526918][ T9997]  ? __pfx___mutex_lock+0x10/0x10
[  194.526947][ T9997]  ? ns_capable+0x8a/0xf0
[  194.526969][ T9997]  rtnl_newlink+0x18b0/0x1fe0
[  194.527006][ T9997]  ? __pfx_rtnl_newlink+0x10/0x10
[  194.527019][ T9997]  ? unwind_get_return_address+0x4d/0x90
[  194.527040][ T9997]  ? arch_stack_walk+0xff/0x150
[  194.527066][ T9997]  ? __lock_acquire+0xad5/0xd80
[  194.527091][ T9997]  ? __lock_acquire+0xad5/0xd80
[  194.527112][ T9997]  ? __lock_acquire+0xad5/0xd80
[  194.527149][ T9997]  ? is_bpf_text_address+0x26/0x2a0
[  194.527169][ T9997]  ? 0xffffffffa0001f94
[  194.527185][ T9997]  ? is_bpf_text_address+0x288/0x2a0
[  194.527202][ T9997]  ? is_bpf_text_address+0x26/0x2a0
[  194.527221][ T9997]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  194.527245][ T9997]  ? kernel_text_address+0xa7/0xe0
[  194.527277][ T9997]  ? __kernel_text_address+0xd/0x40
[  194.527306][ T9997]  ? aa_get_newest_label+0x101/0x6f0
[  194.527335][ T9997]  ? __lock_acquire+0xad5/0xd80
[  194.527374][ T9997]  ? __pfx_rtnl_newlink+0x10/0x10
[  194.527392][ T9997]  rtnetlink_rcv_msg+0x80f/0xd70
[  194.527407][ T9997]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  194.527429][ T9997]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  194.527444][ T9997]  ? __lock_acquire+0xad5/0xd80
[  194.527474][ T9997]  netlink_rcv_skb+0x208/0x480
[  194.527495][ T9997]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  194.527514][ T9997]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  194.527551][ T9997]  ? netlink_deliver_tap+0x2e/0x1b0
[  194.527569][ T9997]  ? netlink_deliver_tap+0x2e/0x1b0
[  194.527585][ T9997]  netlink_unicast+0x7f8/0x9a0
[  194.527618][ T9997]  ? __pfx_netlink_unicast+0x10/0x10
[  194.527644][ T9997]  ? skb_put+0x114/0x1f0
[  194.527668][ T9997]  netlink_sendmsg+0x8c3/0xcd0
[  194.527700][ T9997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  194.527723][ T9997]  ? aa_sock_msg_perm+0x91/0x160
[  194.527751][ T9997]  ? __pfx_netlink_sendmsg+0x10/0x10
[  194.527766][ T9997]  __sock_sendmsg+0x221/0x270
[  194.527795][ T9997]  ____sys_sendmsg+0x523/0x860
[  194.527826][ T9997]  ? __pfx_____sys_sendmsg+0x10/0x10
[  194.527844][ T9997]  ? __fget_files+0x2a/0x420
[  194.527871][ T9997]  ? __fget_files+0x2a/0x420
[  194.527905][ T9997]  __sys_sendmsg+0x271/0x360
[  194.527932][ T9997]  ? __pfx___sys_sendmsg+0x10/0x10
[  194.528012][ T9997]  ? do_syscall_64+0xb6/0x230
[  194.528034][ T9997]  do_syscall_64+0xf3/0x230
[  194.528052][ T9997]  ? clear_bhb_loop+0x45/0xa0
[  194.528072][ T9997]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  194.528088][ T9997] RIP: 0033:0x7fd1a7f8e169
[  194.528103][ T9997] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  194.528117][ T9997] RSP: 002b:00007fd1a5df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  194.528137][ T9997] RAX: ffffffffffffffda RBX: 00007fd1a81b5fa0 RCX: 00007fd1a7f8e169
[  194.528149][ T9997] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  194.528160][ T9997] RBP: 00007fd1a5df6090 R08: 0000000000000000 R09: 0000000000000000
[  194.528170][ T9997] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  194.528180][ T9997] R13: 0000000000000000 R14: 00007fd1a81b5fa0 R15: 00007ffccfad8978
[  194.528210][ T9997]  </TASK>
[  195.748753][T10012] __nla_validate_parse: 18 callbacks suppressed
[  195.748774][T10012] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1144'.
[  195.998863][T10022] FAULT_INJECTION: forcing a failure.
[  195.998863][T10022] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  196.047140][T10028] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1148'.
[  196.072680][T10022] CPU: 1 UID: 0 PID: 10022 Comm: syz.3.1146 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  196.072708][T10022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  196.072719][T10022] Call Trace:
[  196.072726][T10022]  <TASK>
[  196.072733][T10022]  dump_stack_lvl+0x241/0x360
[  196.072773][T10022]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.072795][T10022]  ? __pfx__printk+0x10/0x10
[  196.072828][T10022]  should_fail_ex+0x424/0x570
[  196.072854][T10022]  prepare_alloc_pages+0x220/0x610
[  196.072881][T10022]  __alloc_frozen_pages_noprof+0x162/0x5b0
[  196.072901][T10022]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  196.072930][T10022]  ? stack_trace_save+0x11a/0x1d0
[  196.072958][T10022]  __alloc_pages_noprof+0xa/0x30
[  196.072973][T10022]  ___kmalloc_large_node+0x92/0x210
[  196.073000][T10022]  __kmalloc_large_node_noprof+0x1a/0x80
[  196.073024][T10022]  __kmalloc_noprof+0x33d/0x4d0
[  196.073044][T10022]  ? wiphy_new_nm+0x625/0x19a0
[  196.073068][T10022]  wiphy_new_nm+0x625/0x19a0
[  196.073086][T10022]  ? ieee80211_alloc_hw_nm+0x8f9/0x1ea0
[  196.073109][T10022]  ? __pfx_ieee80211_emulate_add_chanctx+0x10/0x10
[  196.073135][T10022]  ieee80211_alloc_hw_nm+0x3d4/0x1ea0
[  196.073176][T10022]  mac80211_hwsim_new_radio+0x209/0x4a60
[  196.073226][T10022]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  196.073245][T10022]  ? trace_kmalloc+0x1f/0xd0
[  196.073263][T10022]  ? __kmalloc_node_track_caller_noprof+0x2b2/0x4d0
[  196.073285][T10022]  ? kstrndup+0xbb/0x150
[  196.073314][T10022]  hwsim_new_radio_nl+0xed0/0x2290
[  196.073347][T10022]  ? __pfx___nla_validate_parse+0x10/0x10
[  196.073372][T10022]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  196.073419][T10022]  ? genl_family_rcv_msg_attrs_parse+0x1d4/0x290
[  196.073446][T10022]  genl_rcv_msg+0xb38/0xf00
[  196.073474][T10022]  ? __pfx_genl_rcv_msg+0x10/0x10
[  196.073491][T10022]  ? stack_trace_save+0x11a/0x1d0
[  196.073514][T10022]  ? __pfx_stack_trace_save+0x10/0x10
[  196.073538][T10022]  ? stack_depot_save_flags+0x44/0x940
[  196.073556][T10022]  ? stack_trace_snprint+0x71/0xf0
[  196.073591][T10022]  ? __lock_acquire+0xad5/0xd80
[  196.073611][T10022]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  196.073645][T10022]  netlink_rcv_skb+0x208/0x480
[  196.073663][T10022]  ? __pfx_genl_rcv_msg+0x10/0x10
[  196.073686][T10022]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  196.073724][T10022]  ? netlink_deliver_tap+0x2e/0x1b0
[  196.073747][T10022]  genl_rcv+0x28/0x40
[  196.073766][T10022]  netlink_unicast+0x7f8/0x9a0
[  196.073799][T10022]  ? __pfx_netlink_unicast+0x10/0x10
[  196.073823][T10022]  ? skb_put+0x114/0x1f0
[  196.073848][T10022]  netlink_sendmsg+0x8c3/0xcd0
[  196.073878][T10022]  ? __pfx_netlink_sendmsg+0x10/0x10
[  196.073899][T10022]  ? aa_sock_msg_perm+0x91/0x160
[  196.073929][T10022]  ? __pfx_netlink_sendmsg+0x10/0x10
[  196.073945][T10022]  __sock_sendmsg+0x221/0x270
[  196.073973][T10022]  ____sys_sendmsg+0x523/0x860
[  196.074004][T10022]  ? __pfx_____sys_sendmsg+0x10/0x10
[  196.074022][T10022]  ? __fget_files+0x2a/0x420
[  196.074049][T10022]  ? __fget_files+0x2a/0x420
[  196.074079][T10022]  __sys_sendmsg+0x271/0x360
[  196.074101][T10022]  ? __pfx___sys_sendmsg+0x10/0x10
[  196.074183][T10022]  ? do_syscall_64+0xb6/0x230
[  196.074204][T10022]  do_syscall_64+0xf3/0x230
[  196.074223][T10022]  ? clear_bhb_loop+0x45/0xa0
[  196.074243][T10022]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.074258][T10022] RIP: 0033:0x7f66c938e169
[  196.074274][T10022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.074287][T10022] RSP: 002b:00007f66ca13d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.074306][T10022] RAX: ffffffffffffffda RBX: 00007f66c95b5fa0 RCX: 00007f66c938e169
[  196.074319][T10022] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  196.074329][T10022] RBP: 00007f66ca13d090 R08: 0000000000000000 R09: 0000000000000000
[  196.074338][T10022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.074348][T10022] R13: 0000000000000000 R14: 00007f66c95b5fa0 R15: 00007ffd03db04f8
[  196.074376][T10022]  </TASK>
[  196.479713][T10031] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1151'.
[  196.490714][ T5848] Bluetooth: hci2: command 0x0406 tx timeout
[  196.491617][T10030] 8021q: adding VLAN 0 to HW filter on device bond0
[  196.497005][ T5852] Bluetooth: hci1: command 0x0406 tx timeout
[  196.497056][ T5852] Bluetooth: hci3: command 0x0406 tx timeout
[  196.497088][ T5852] Bluetooth: hci0: command 0x0406 tx timeout
[  196.601903][T10030] 8021q: adding VLAN 0 to HW filter on device team0
[  196.650549][T10030] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  197.208394][T10053] FAULT_INJECTION: forcing a failure.
[  197.208394][T10053] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  197.222148][T10053] CPU: 1 UID: 0 PID: 10053 Comm: syz.0.1161 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  197.222174][T10053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  197.222184][T10053] Call Trace:
[  197.222191][T10053]  <TASK>
[  197.222199][T10053]  dump_stack_lvl+0x241/0x360
[  197.222229][T10053]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.222252][T10053]  ? __pfx__printk+0x10/0x10
[  197.222287][T10053]  should_fail_ex+0x424/0x570
[  197.222313][T10053]  _copy_from_user+0x2d/0xb0
[  197.222331][T10053]  copy_msghdr_from_user+0xb3/0x580
[  197.222362][T10053]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  197.222398][T10053]  __sys_sendmmsg+0x361/0x7b0
[  197.222429][T10053]  ? __pfx___sys_sendmmsg+0x10/0x10
[  197.222477][T10053]  ? rcu_read_lock_any_held+0xbb/0x160
[  197.222500][T10053]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  197.222523][T10053]  ? vfs_write+0xb29/0xd10
[  197.222551][T10053]  ? ksys_write+0x24e/0x2d0
[  197.222573][T10053]  ? __mutex_unlock_slowpath+0x229/0x800
[  197.222617][T10053]  ? ksys_write+0x275/0x2d0
[  197.222647][T10053]  __x64_sys_sendmmsg+0xa0/0xb0
[  197.222670][T10053]  do_syscall_64+0xf3/0x230
[  197.222689][T10053]  ? clear_bhb_loop+0x45/0xa0
[  197.222709][T10053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.222722][T10053] RIP: 0033:0x7f78c638e169
[  197.222736][T10053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.222746][T10053] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  197.222778][T10053] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  197.222787][T10053] RDX: 000000000800001d RSI: 0000200000007fc0 RDI: 0000000000000004
[  197.222795][T10053] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  197.222804][T10053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  197.222811][T10053] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  197.222832][T10053]  </TASK>
[  197.243061][T10055] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1158'.
[  197.678551][T10069] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1167'.
[  197.702817][T10069] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1167'.
[  197.804096][T10064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1165'.
[  198.016055][T10091] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1175'.
[  198.132028][T10102] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1179'.
[  198.148876][T10103] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  198.158495][T10103] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.228662][T10103] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  198.300774][T10109] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1180'.
[  199.008578][T10114] FAULT_INJECTION: forcing a failure.
[  199.008578][T10114] name failslab, interval 1, probability 0, space 0, times 0
[  199.021664][T10114] CPU: 1 UID: 0 PID: 10114 Comm: syz.0.1182 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  199.021688][T10114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  199.021699][T10114] Call Trace:
[  199.021706][T10114]  <TASK>
[  199.021713][T10114]  dump_stack_lvl+0x241/0x360
[  199.021743][T10114]  ? __pfx_dump_stack_lvl+0x10/0x10
[  199.021766][T10114]  ? __pfx__printk+0x10/0x10
[  199.021793][T10114]  ? __pfx___might_resched+0x10/0x10
[  199.021818][T10114]  should_fail_ex+0x424/0x570
[  199.021844][T10114]  should_failslab+0xac/0x100
[  199.021867][T10114]  kmem_cache_alloc_node_noprof+0x7d/0x3b0
[  199.021891][T10114]  ? __alloc_skb+0x1c2/0x480
[  199.021921][T10114]  __alloc_skb+0x1c2/0x480
[  199.021946][T10114]  ? __pfx___alloc_skb+0x10/0x10
[  199.021967][T10114]  ? netlink_autobind+0xd6/0x2f0
[  199.021984][T10114]  ? netlink_autobind+0x2b0/0x2f0
[  199.022005][T10114]  netlink_sendmsg+0x638/0xcd0
[  199.022029][T10114]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.022045][T10114]  ? __pfx_aa_file_perm+0x10/0x10
[  199.022061][T10114]  ? aa_sock_msg_perm+0x91/0x160
[  199.022083][T10114]  ? __pfx_netlink_sendmsg+0x10/0x10
[  199.022094][T10114]  __sock_sendmsg+0x221/0x270
[  199.022116][T10114]  sock_write_iter+0x2d9/0x3f0
[  199.022136][T10114]  ? __pfx_sock_write_iter+0x10/0x10
[  199.022162][T10114]  ? bpf_lsm_file_permission+0x9/0x10
[  199.022182][T10114]  vfs_write+0x70f/0xd10
[  199.022201][T10114]  ? __pfx_sock_write_iter+0x10/0x10
[  199.022219][T10114]  ? __pfx_vfs_write+0x10/0x10
[  199.022235][T10114]  ? __fget_files+0x2a/0x420
[  199.022256][T10114]  ? __fget_files+0x2a/0x420
[  199.022281][T10114]  ksys_write+0x19d/0x2d0
[  199.022296][T10114]  ? __pfx_ksys_write+0x10/0x10
[  199.022314][T10114]  ? do_syscall_64+0xb6/0x230
[  199.022331][T10114]  do_syscall_64+0xf3/0x230
[  199.022345][T10114]  ? clear_bhb_loop+0x45/0xa0
[  199.022361][T10114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.022373][T10114] RIP: 0033:0x7f78c638e169
[  199.022386][T10114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  199.022397][T10114] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  199.022412][T10114] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  199.022422][T10114] RDX: 0000000000000024 RSI: 0000200000000000 RDI: 0000000000000003
[  199.022430][T10114] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  199.022439][T10114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  199.022446][T10114] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  199.022467][T10114]  </TASK>
[  199.856437][T10152] netlink: 'syz.4.1192': attribute type 33 has an invalid length.
[  200.114878][T10159] 8021q: adding VLAN 0 to HW filter on device team0
[  200.145213][T10159] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  201.125474][T10208] FAULT_INJECTION: forcing a failure.
[  201.125474][T10208] name failslab, interval 1, probability 0, space 0, times 0
[  201.139069][T10208] CPU: 1 UID: 0 PID: 10208 Comm: syz.0.1206 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  201.139094][T10208] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  201.139103][T10208] Call Trace:
[  201.139111][T10208]  <TASK>
[  201.139118][T10208]  dump_stack_lvl+0x241/0x360
[  201.139148][T10208]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.139169][T10208]  ? __pfx__printk+0x10/0x10
[  201.139189][T10208]  ? __mutex_trylock_common+0x184/0x2e0
[  201.139221][T10208]  should_fail_ex+0x424/0x570
[  201.139244][T10208]  should_failslab+0xac/0x100
[  201.139268][T10208]  __kmalloc_cache_noprof+0x73/0x370
[  201.139289][T10208]  ? __hw_addr_add_ex+0x1fb/0x760
[  201.139314][T10208]  __hw_addr_add_ex+0x1fb/0x760
[  201.139339][T10208]  dev_addr_init+0x159/0x240
[  201.139362][T10208]  ? __pfx_dev_addr_init+0x10/0x10
[  201.139385][T10208]  ? sized_strscpy+0x9a/0x2b0
[  201.139408][T10208]  alloc_netdev_mqs+0x307/0x1210
[  201.139429][T10208]  ? __pfx_ip6erspan_tap_setup+0x10/0x10
[  201.139452][T10208]  rtnl_create_link+0x2f2/0xea0
[  201.139480][T10208]  rtnl_newlink_create+0x2f2/0xc30
[  201.139500][T10208]  ? __mutex_lock+0x380/0x10c0
[  201.139521][T10208]  ? __pfx_aa_get_newest_label+0x10/0x10
[  201.139548][T10208]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  201.139571][T10208]  ? __pfx___mutex_lock+0x10/0x10
[  201.139598][T10208]  ? ns_capable+0x8a/0xf0
[  201.139620][T10208]  rtnl_newlink+0x18b0/0x1fe0
[  201.139666][T10208]  ? __pfx_rtnl_newlink+0x10/0x10
[  201.139679][T10208]  ? dev_hard_start_xmit+0x2d9/0x830
[  201.139699][T10208]  ? __dev_queue_xmit+0x1b80/0x3f60
[  201.139718][T10208]  ? __netlink_deliver_tap+0x561/0x7f0
[  201.139733][T10208]  ? netlink_deliver_tap+0x19d/0x1b0
[  201.139748][T10208]  ? netlink_unicast+0x7c6/0x9a0
[  201.139768][T10208]  ? netlink_sendmsg+0x8c3/0xcd0
[  201.139781][T10208]  ? __sock_sendmsg+0x221/0x270
[  201.139802][T10208]  ? ____sys_sendmsg+0x523/0x860
[  201.139818][T10208]  ? __sys_sendmsg+0x271/0x360
[  201.139835][T10208]  ? do_syscall_64+0xf3/0x230
[  201.139849][T10208]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.139901][T10208]  ? kasan_quarantine_put+0xdc/0x230
[  201.139917][T10208]  ? lockdep_hardirqs_on+0x9d/0x150
[  201.139936][T10208]  ? nlmon_xmit+0xaf/0x100
[  201.139960][T10208]  ? __local_bh_enable_ip+0x168/0x200
[  201.139973][T10208]  ? lockdep_hardirqs_on+0x9d/0x150
[  201.139999][T10208]  ? aa_get_newest_label+0x101/0x6f0
[  201.140027][T10208]  ? __lock_acquire+0xad5/0xd80
[  201.140063][T10208]  ? __pfx_rtnl_newlink+0x10/0x10
[  201.140081][T10208]  rtnetlink_rcv_msg+0x80f/0xd70
[  201.140096][T10208]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  201.140117][T10208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  201.140141][T10208]  ? ref_tracker_free+0x63e/0x7e0
[  201.140170][T10208]  netlink_rcv_skb+0x208/0x480
[  201.140188][T10208]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  201.140206][T10208]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  201.140243][T10208]  ? netlink_deliver_tap+0x2e/0x1b0
[  201.140263][T10208]  ? netlink_deliver_tap+0x2e/0x1b0
[  201.140282][T10208]  netlink_unicast+0x7f8/0x9a0
[  201.140315][T10208]  ? __pfx_netlink_unicast+0x10/0x10
[  201.140341][T10208]  ? skb_put+0x114/0x1f0
[  201.140365][T10208]  netlink_sendmsg+0x8c3/0xcd0
[  201.140395][T10208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.140416][T10208]  ? aa_sock_msg_perm+0x91/0x160
[  201.140444][T10208]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.140460][T10208]  __sock_sendmsg+0x221/0x270
[  201.140486][T10208]  ____sys_sendmsg+0x523/0x860
[  201.140515][T10208]  ? __pfx_____sys_sendmsg+0x10/0x10
[  201.140534][T10208]  ? __fget_files+0x2a/0x420
[  201.140561][T10208]  ? __fget_files+0x2a/0x420
[  201.140594][T10208]  __sys_sendmsg+0x271/0x360
[  201.140620][T10208]  ? __pfx___sys_sendmsg+0x10/0x10
[  201.140705][T10208]  ? do_syscall_64+0xb6/0x230
[  201.140727][T10208]  do_syscall_64+0xf3/0x230
[  201.140743][T10208]  ? clear_bhb_loop+0x45/0xa0
[  201.140761][T10208]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.140776][T10208] RIP: 0033:0x7f78c638e169
[  201.140791][T10208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.140804][T10208] RSP: 002b:00007f78c72c6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.140822][T10208] RAX: ffffffffffffffda RBX: 00007f78c65b5fa0 RCX: 00007f78c638e169
[  201.140834][T10208] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000003
[  201.140845][T10208] RBP: 00007f78c72c6090 R08: 0000000000000000 R09: 0000000000000000
[  201.140855][T10208] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.140863][T10208] R13: 0000000000000000 R14: 00007f78c65b5fa0 R15: 00007ffee19f4c98
[  201.140891][T10208]  </TASK>
[  201.783950][T10212] tap0: tun_chr_ioctl cmd 1074025677
[  201.789604][T10212] tap0: linktype set to 6
[  201.915148][T10219] __nla_validate_parse: 3 callbacks suppressed
[  201.915238][T10219] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1211'.
[  201.960478][T10219] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1211'.
[  202.015529][T10219] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1211'.
[  202.036822][T10226] SET target dimension over the limit!
[  202.152047][T10226] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1213'.
[  202.161527][T10226] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1213'.
[  202.205718][T10238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1216'.
[  202.470462][T10249] netlink: 'syz.3.1221': attribute type 1 has an invalid length.
[  202.498741][T10249] 8021q: adding VLAN 0 to HW filter on device bond4
[  202.530778][T10249] bond4: (slave veth3): Enslaving as an active interface with a down link
[  202.552951][T10249] IPv6: Can't replace route, no match found
[  202.581621][T10249] bond4: (slave dummy0): making interface the new active one
[  202.600432][T10249] dummy0: entered promiscuous mode
[  202.607756][T10249] bond4: (slave dummy0): Enslaving as an active interface with an up link
[  202.800197][T10261] netlink: 'syz.3.1226': attribute type 16 has an invalid length.
[  202.808453][T10261] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000055: 0000 [#1] SMP KASAN PTI
[  202.820350][T10261] KASAN: null-ptr-deref in range [0x00000000000002a8-0x00000000000002af]
[  202.828772][T10261] CPU: 1 UID: 0 PID: 10261 Comm: syz.3.1226 Not tainted 6.15.0-rc1-syzkaller-00374-gac1df712442c #0 PREEMPT(full) 
[  202.840840][T10261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  202.850890][T10261] RIP: 0010:rtnl_create_link+0x6b8/0xea0
[  202.856534][T10261] Code: 24 10 42 80 3c 28 00 74 08 48 89 df e8 f1 3c 3a f8 4c 89 64 24 28 bd a8 02 00 00 48 89 5c 24 18 48 03 2b 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 ef e8 c9 3c 3a f8 45 31 e4 48 83 7d 00
[  202.876158][T10261] RSP: 0018:ffffc90004436e70 EFLAGS: 00010206
[  202.882226][T10261] RAX: 0000000000000055 RBX: ffff888052d78008 RCX: 0000000000080000
[  202.890183][T10261] RDX: ffffc9000c062000 RSI: 0000000000003905 RDI: 0000000000003906
[  202.898141][T10261] RBP: 00000000000002a8 R08: ffffffff89f340a2 R09: 1ffff92000886dfa
[  202.906101][T10261] R10: dffffc0000000000 R11: fffff52000886dfb R12: ffff88806228d080
[  202.914057][T10261] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888052d78000
[  202.922021][T10261] FS:  00007f66ca13d6c0(0000) GS:ffff8881250a5000(0000) knlGS:0000000000000000
[  202.930935][T10261] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  202.937520][T10261] CR2: 000000110c3a5b6c CR3: 000000003117c000 CR4: 00000000003526f0
[  202.945503][T10261] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  202.953490][T10261] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  202.961477][T10261] Call Trace:
[  202.964757][T10261]  <TASK>
[  202.967775][T10261]  rtnl_newlink_create+0x2f2/0xc30
[  202.972892][T10261]  ? __mutex_lock+0x380/0x10c0
[  202.977650][T10261]  ? __pfx_aa_get_newest_label+0x10/0x10
[  202.983281][T10261]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  202.988907][T10261]  ? __pfx___mutex_lock+0x10/0x10
[  202.993925][T10261]  ? ns_capable+0x8a/0xf0
[  202.998245][T10261]  rtnl_newlink+0x18b0/0x1fe0
[  203.002942][T10261]  ? __pfx_rtnl_newlink+0x10/0x10
[  203.007972][T10261]  ? dev_hard_start_xmit+0x2d9/0x830
[  203.013262][T10261]  ? __dev_queue_xmit+0x1b80/0x3f60
[  203.018455][T10261]  ? __netlink_deliver_tap+0x561/0x7f0
[  203.023905][T10261]  ? netlink_deliver_tap+0x19d/0x1b0
[  203.029182][T10261]  ? netlink_unicast+0x7c6/0x9a0
[  203.034147][T10261]  ? netlink_sendmsg+0x8c3/0xcd0
[  203.039073][T10261]  ? __sock_sendmsg+0x221/0x270
[  203.043916][T10261]  ? ____sys_sendmsg+0x523/0x860
[  203.048859][T10261]  ? __sys_sendmsg+0x271/0x360
[  203.053633][T10261]  ? do_syscall_64+0xf3/0x230
[  203.058311][T10261]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.064386][T10261]  ? kasan_quarantine_put+0xdc/0x230
[  203.069661][T10261]  ? lockdep_hardirqs_on+0x9d/0x150
[  203.074849][T10261]  ? nlmon_xmit+0xaf/0x100
[  203.079257][T10261]  ? __local_bh_enable_ip+0x168/0x200
[  203.084617][T10261]  ? lockdep_hardirqs_on+0x9d/0x150
[  203.089814][T10261]  ? aa_get_newest_label+0x101/0x6f0
[  203.095095][T10261]  ? __lock_acquire+0xad5/0xd80
[  203.099944][T10261]  ? __pfx_rtnl_newlink+0x10/0x10
[  203.104956][T10261]  rtnetlink_rcv_msg+0x80f/0xd70
[  203.109879][T10261]  ? rtnetlink_rcv_msg+0x1ba/0xd70
[  203.114977][T10261]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  203.120424][T10261]  ? ref_tracker_free+0x63e/0x7e0
[  203.125444][T10261]  netlink_rcv_skb+0x208/0x480
[  203.130202][T10261]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  203.135649][T10261]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  203.140929][T10261]  ? netlink_deliver_tap+0x2e/0x1b0
[  203.146119][T10261]  ? netlink_deliver_tap+0x2e/0x1b0
[  203.151305][T10261]  netlink_unicast+0x7f8/0x9a0
[  203.156069][T10261]  ? __pfx_netlink_unicast+0x10/0x10
[  203.161450][T10261]  ? skb_put+0x114/0x1f0
[  203.165690][T10261]  netlink_sendmsg+0x8c3/0xcd0
[  203.170447][T10261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.175722][T10261]  ? aa_sock_msg_perm+0x91/0x160
[  203.180652][T10261]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.185921][T10261]  __sock_sendmsg+0x221/0x270
[  203.190593][T10261]  ____sys_sendmsg+0x523/0x860
[  203.195368][T10261]  ? __pfx_____sys_sendmsg+0x10/0x10
[  203.200666][T10261]  ? __fget_files+0x2a/0x420
[  203.205275][T10261]  ? __fget_files+0x2a/0x420
[  203.209869][T10261]  __sys_sendmsg+0x271/0x360
[  203.214454][T10261]  ? __pfx_futex_wake+0x10/0x10
[  203.219298][T10261]  ? __pfx___sys_sendmsg+0x10/0x10
[  203.224398][T10261]  ? anon_inode_getfd+0x1c1/0x1e0
[  203.229423][T10261]  ? bpf_lsm_bpf+0x9/0x10
[  203.233758][T10261]  ? do_syscall_64+0xb6/0x230
[  203.238425][T10261]  do_syscall_64+0xf3/0x230
[  203.242916][T10261]  ? clear_bhb_loop+0x45/0xa0
[  203.247580][T10261]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.253459][T10261] RIP: 0033:0x7f66c938e169
[  203.257876][T10261] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.277480][T10261] RSP: 002b:00007f66ca13d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.285914][T10261] RAX: ffffffffffffffda RBX: 00007f66c95b5fa0 RCX: 00007f66c938e169
[  203.293875][T10261] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000010
[  203.301833][T10261] RBP: 00007f66c9410a68 R08: 0000000000000000 R09: 0000000000000000
[  203.309791][T10261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.317757][T10261] R13: 0000000000000000 R14: 00007f66c95b5fa0 R15: 00007ffd03db04f8
[  203.325732][T10261]  </TASK>
[  203.328741][T10261] Modules linked in:
[  203.333530][T10261] ---[ end trace 0000000000000000 ]---
[  203.354658][T10258] IPVS: Scheduler module ip_vs_ not found
[  203.375918][T10261] RIP: 0010:rtnl_create_link+0x6b8/0xea0
[  203.390022][T10261] Code: 24 10 42 80 3c 28 00 74 08 48 89 df e8 f1 3c 3a f8 4c 89 64 24 28 bd a8 02 00 00 48 89 5c 24 18 48 03 2b 48 89 e8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 ef e8 c9 3c 3a f8 45 31 e4 48 83 7d 00
[  203.412600][T10261] RSP: 0018:ffffc90004436e70 EFLAGS: 00010206
[  203.418787][T10261] RAX: 0000000000000055 RBX: ffff888052d78008 RCX: 0000000000080000
[  203.428570][T10261] RDX: ffffc9000c062000 RSI: 0000000000003905 RDI: 0000000000003906
[  203.436670][T10261] RBP: 00000000000002a8 R08: ffffffff89f340a2 R09: 1ffff92000886dfa
[  203.444799][T10261] R10: dffffc0000000000 R11: fffff52000886dfb R12: ffff88806228d080
[  203.452943][T10261] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff888052d78000
[  203.461351][T10261] FS:  00007f66ca13d6c0(0000) GS:ffff8881250a5000(0000) knlGS:0000000000000000
[  203.470358][T10261] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  203.477104][T10261] CR2: 000000110c2ee79c CR3: 000000003117c000 CR4: 00000000003526f0
[  203.485105][T10261] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  203.493332][T10261] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  203.503866][T10261] Kernel panic - not syncing: Fatal exception
[  203.510239][T10261] Kernel Offset: disabled
[  203.514557][T10261] Rebooting in 86400 seconds..