last executing test programs: 22.037641928s ago: executing program 1 (id=3015): r0 = socket(0x11, 0x800000003, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@bridge_delneigh={0x28, 0x1c, 0xf07, 0x0, 0x0, {0x7, 0x0, 0x0, r1, 0x80, 0x16}, [@NDA_LLADDR={0xa, 0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1c}}]}, 0x28}}, 0x0) (fail_nth: 3) 21.812728909s ago: executing program 1 (id=3021): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'macsec0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) getpid() r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x401, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}, @NFTA_SET_DESC={0xc, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x5, 0x2, 0x0, 0x1, [{0x4, 0x2}]}]}]}], {0x14, 0x10}}, 0x70}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000a00)=ANY=[@ANYBLOB="54000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000240012800b0001006d616373656300001400028005000c0001000000080005000400000008000500", @ANYRES32=r1], 0x54}}, 0x800) 21.552846307s ago: executing program 1 (id=3026): ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x40d, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, r0, 0x10}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0x5}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0) r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)=@generic={&(0x7f0000000440)='./file0\x00'}, 0x18) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000540)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f00000004c0), &(0x7f0000000500)='%+9llu \x00'}, 0x20) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001cc0)=ANY=[@ANYBLOB="1e000000576202fe74f800f73d135b4806ab15756457ec00002001010000000817782100000025ff443a98c0840d3f63bef2d7621e49f162a4ea0ce0fff3e3e545d4af63688dc6d8d045697251f8934ff90a4bdbcf7a0572", @ANYRES32=0x1, @ANYBLOB="0500"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300000004000000040000000f00"/28], 0x50) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001940)={0x1b, 0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x8000, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x5, 0x5, 0x0, @void, @value, @void, @value}, 0x50) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000018c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xfffffff0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50) r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x17, 0xf, &(0x7f0000001d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="5c00000000000000b702000014000000b703000017b00000008500000065000000bf0900000000000055090100000000009500000000000000be91000000000000b5020000000000008500000000000000b70000000000000095000000000000000034a140d8711fe64877f29987c68e1c47fcdca694c6bc11507ce7ccf0b4bf0b235b06827eb343e52906a583bd5b56f5198d23b39502eeef1bd8e68b9b5a44a2d248"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r8 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r8}, &(0x7f0000000600), &(0x7f0000000640)=r7}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000000c80)=@framed={{0x18, 0x0, 0x0, 0x0, 0xffff7fff}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r8}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r9 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001b00)={0x1b, 0x0, 0x0, 0x80000000, 0x0, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x8, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r10}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000500)={{r10}, &(0x7f0000000300), &(0x7f0000000400)='%pS \x00'}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001e40)={0x18, 0x13, &(0x7f00000000c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@ringbuf_query], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000300)='syzkaller\x00', 0xff, 0x1000, &(0x7f00000008c0)=""/4096, 0x41100, 0x1f, '\x00', r0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000340)={0x8, 0x3}, 0x8, 0x10, &(0x7f0000000400)={0x5, 0x10, 0x2, 0x7}, 0x10, 0x0, 0x0, 0x7, &(0x7f0000000580)=[r1, r2, r3, r4, r5, r6, r8, 0x1, r9, r10], &(0x7f0000001b80)=[{0x1, 0x1, 0x4, 0x1}, {0x4, 0x4, 0x2, 0x4}, {0x3, 0x3, 0x5, 0x4}, {0x0, 0x5, 0x10, 0x2}, {0x5, 0x5, 0x10, 0xb}, {0x5, 0x2, 0x6, 0x9}, {0x3, 0x1, 0x3, 0x3}], 0x10, 0xfe, @void, @value}, 0x94) r11 = socket$nl_generic(0x10, 0x3, 0x10) r12 = socket$nl_generic(0x10, 0x3, 0x10) r13 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r12, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000001c0)=ANY=[@ANYBLOB='-\x00\x00\x00', @ANYRES16=r13, @ANYBLOB="0100fbffffff000000002500000018000180140002007465616d3000"/38], 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000240)={'gretap0\x00', 0x0, 0x1, 0x10, 0xfffffffc, 0x8001, {{0xe, 0x4, 0x0, 0x31, 0x38, 0x64, 0x0, 0x8, 0x4, 0x0, @loopback, @dev={0xac, 0x14, 0x14, 0x11}, {[@cipso={0x86, 0x19, 0x0, [{0x2, 0x10, "8d2ee3f1fa1202e6654bc4aab095"}, {0x0, 0x3, "f2"}]}, @ssrr={0x89, 0x7, 0x8b, [@broadcast]}, @ra={0x94, 0x4}]}}}}}) sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r11, &(0x7f00000003c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000380)={&(0x7f00000006c0)=ANY=[@ANYBLOB="20000400a74f3541fa02b1e58500009c93a66825d50e982a63b9688a61aed595353e73f54511034b5952fbe78c7a0757719e7991cca48051faa0fa0d530d0a2f84278fd17244e63ea566a5c4607a435f1e10b39b6d9ec1481a82ab354a487c46756ab2691dd327c8a4fa8b6707960c79cc2abebdd00703029d0f5c70fed850bc469eceafa0143132058f699752d8ad3c9c69e1e9532d43498ad27339523d62a4a5cdbe5a9e00d93cf97b9f7e8904b810e0e7b2f9296209b8550fd8fff846c907ccc88e95e7e5e3462d742c072f83c3dfc44eb3ee8c7931fc68a34dc6324d190c2b7840253b6285cc387c336f7444379d867962675d79d403ceb472a80f16fe298c3385045083fd5cd1027f432ad88a86b674a78b2e07d61ada1b028d4ad4e5f767ea873aeb084f60d4e0e554df7e479941f908c4ac20b27872c23f54d5d7304eb9d2ddeff8820a00cebbe345e29f5b78451d338e94be692079a33a2ce4c26cd2206e70e1ada152a69aad72218c7844acce8b10e5bc91ca0d54d0c981e5c83e1da7cd0cad1b0cfda5fd9b49d9304d0a6922d61d34461593b7d254236a0aed4099d498029bd13bdb87ad9cb38a59aa623283c5cf890c61083db6699c0287c3f7fa8881c1", @ANYRES16=r13, @ANYBLOB="000229bd7000fedbdf250d0000000c00018008000100", @ANYRES32=r14, @ANYBLOB], 0x20}, 0x1, 0x0, 0x0, 0x800}, 0x800) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x10, 0x0, 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xad39049296dcaeb6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) r15 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r15, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002300)=ANY=[@ANYBLOB="c41900003d0007012bbd700000000000047c0000040000000c00018006000600800a00009f1902"], 0x19c4}}, 0xc050) r16 = socket$pppoe(0x18, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r16, 0x8b18, &(0x7f0000000000)={'wlan1\x00'}) 19.939486419s ago: executing program 2 (id=3052): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="24000000760009eeffffffffffffff0400000000", @ANYRES32, @ANYBLOB="04000d80080005"], 0x24}, 0x1, 0x5502000000000000}, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r3, @ANYBLOB="0800050006000000140017800400050004000400060001"], 0x60}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 19.485383568s ago: executing program 2 (id=3057): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000140)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e78}, [@printk={@lu, {}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffffe}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3252}, {0x85, 0x0, 0x0, 0x10}}]}, &(0x7f0000000000)='GPL\x00', 0xd, 0xfe7, &(0x7f0000001e00)=""/4071, 0x40f00, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) socket$inet_udp(0x2, 0x2, 0x0) 19.129721409s ago: executing program 2 (id=3060): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000000)={'gre0\x00', &(0x7f00000000c0)={'ip_vti0\x00', 0x0, 0x20, 0x20, 0x14, 0x9, {{0x1d, 0x4, 0x2, 0x0, 0x74, 0x64, 0x0, 0xfb, 0x2f, 0x0, @loopback, @broadcast, {[@end, @generic={0x82, 0xd, "ca4c83bbc516adf9f0f624"}, @end, @lsrr={0x83, 0x13, 0x90, [@multicast1, @dev={0xac, 0x14, 0x14, 0x10}, @rand_addr=0x64010100, @loopback]}, @ssrr={0x89, 0xb, 0xc7, [@local, @remote]}, @timestamp={0x44, 0x24, 0xee, 0x0, 0x4, [0x1, 0x5, 0x8, 0x2, 0x8001, 0x100, 0x8, 0x100]}, @ssrr={0x89, 0xf, 0x4, [@rand_addr=0x64010102, @broadcast, @multicast1]}]}}}}}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x68442, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) ioctl$TUNSETNOCSUM(r2, 0x400454c8, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@delneigh={0x1c, 0x1d, 0x100, 0x70bd29, 0x25dfdbfc, {0x1c, 0x0, 0x0, r1, 0x10, 0x25, 0x8}}, 0x3c}, 0x1, 0x0, 0x0, 0x8080}, 0x4040000) 19.124019779s ago: executing program 4 (id=3061): syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 18.889704727s ago: executing program 4 (id=3063): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000010000305000000000000ffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b0001006d616373656300001c000280050007000000000005000a0000000000050009000000000008000500", @ANYRES32=r1], 0x5c}}, 0x0) 18.817903817s ago: executing program 2 (id=3064): socket$inet6(0xa, 0x2, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4040800) r2 = socket$nl_route(0x10, 0x3, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/3562, @ANYRES64=r0, @ANYRES64=r2, @ANYRES32=r4], &(0x7f0000000380)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r5}, 0x10) sendfile(r4, r4, 0x0, 0x200) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r6, @ANYRESDEC, @ANYRES8=r4], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYRES8=r4, @ANYRES32=0x0, @ANYBLOB="00000000422200042c00128008000100677265002000028008000500bb7e00000800040006000000080006007f"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x854) r8 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r8, &(0x7f00000002c0)={0x2, 0x4e21, @remote}, 0x10) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x25, 0x80000, 0x7) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) socket$packet(0x11, 0x2, 0x300) sendmmsg$inet6(r10, 0x0, 0x0, 0x4) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10) ioctl$sock_netdev_private(r11, 0x8914, &(0x7f0000000000)) connect$inet(r10, &(0x7f0000000480)={0x2, 0x4e22, @private=0xa010101}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e20, @loopback}, 0x10) sendmsg$xdp(r10, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x14c}}, 0x0) 18.404149815s ago: executing program 4 (id=3066): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000041c0), 0xffffffffffffffff) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x1, 0x7}, 0x0) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0) connect$bt_l2cap(r2, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$bt_hci(r4, 0x0, 0x2, 0x0, &(0x7f0000000000)) r5 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6) ioctl$sock_bt_hidp_HIDPCONNADD(r5, 0x400448c8, &(0x7f0000000340)={r2, r2, 0x8, 0x1, &(0x7f0000000180)="e2", 0xb, 0x1, 0xc45, 0x1110, 0x3, 0x0, 0x6, 'syz1\x00'}) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b400000000000000dd0a00000000000073013700000000009500000200000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x7}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000000180)={0x0, 0x1c, &(0x7f0000000140)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x14}]}, 0x28}}, 0x0) 18.160294127s ago: executing program 0 (id=3067): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth1_to_bridge\x00', 0x0}) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000240)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x3b}, @private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4400046, r1}) 17.711828826s ago: executing program 2 (id=3070): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x4, [{0x0, 0x1}]}, @ptr={0x0, 0x0, 0x0, 0x4}, @func={0x4, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) (async) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x4, [{0x0, 0x1}]}, @ptr={0x0, 0x0, 0x0, 0x4}, @func={0x4, 0x0, 0x0, 0x8, 0x3}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000ac0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000380)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x30, r1, 0x1, 0x70bd25, 0x25dfdbfc, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_LEVEL={0x14, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x2}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) 17.705436514s ago: executing program 0 (id=3071): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="8c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000400012800b000100697036677265000030000280140007002001000000000000000000000000000014000600fc020000000000000000000000000000040012000800280070cf00000c0019800500060014000000080004"], 0x8c}}, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT(r0, 0x4004f506, &(0x7f0000000080)=0x1) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) ioctl$FS_IOC_GETVERSION(r0, 0x80087601, &(0x7f0000000100)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_GET_ADDR(r3, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000010000000000000300000014000180060001"], 0x28}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {0x4, 0x1, 0xb, 0x9, 0x8}}, {{0x5, 0x0, 0x3}}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x4c}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff0, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0xe, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 17.537729474s ago: executing program 1 (id=3072): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000000d40)={0x0, 0x7000003, &(0x7f00000023c0)=[{&(0x7f0000000b40)='?', 0x1}, {0x0, 0x1}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0, 0x34000}], 0x9}, 0x20001) 17.537463331s ago: executing program 3 (id=3073): syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000200)={'wlan0\x00'}) sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) 17.537254255s ago: executing program 4 (id=3074): r0 = socket$kcm(0x10, 0x2, 0x0) recvmsg(r0, &(0x7f0000000480)={0x0, 0x60, &(0x7f00000000c0)=[{&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000000600)=""/235, 0xeb}, {&(0x7f0000000700)=""/167, 0xa7}], 0x3}, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33) 17.461311836s ago: executing program 1 (id=3075): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYBLOB="b80000001d00e9990000000000000000fc000000000000000000000000000000ac1e000100000b0000000000000002000000000000000000"], 0xb8}, 0x1, 0x0, 0x0, 0x8050}, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) (async) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)=@newae={0x58, 0x1e, 0x10, 0x70bd2a, 0x25dfdbfe, {{@in=@local, 0x4d2, 0xa, 0xff}, @in6=@loopback, 0x8}, [@replay_val={0x10, 0xa, {0x70bd29, 0x70bd2b, 0x8}}, @etimer_thresh={0x8, 0xc, 0xfffffffd}]}, 0x58}}, 0x0) 17.460979475s ago: executing program 2 (id=3076): r0 = socket(0x11, 0x800000003, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@RTM_NEWMDB={0x18, 0x54, 0x1}, 0x18}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000040)={0xa, 0x4e20, 0x3fd0, @rand_addr=' \x01\x00', 0x6}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000380)="a85e4ac9d17f0265f4eaae9c4acf6807726f8624dda1997f90cbde770e8561a93095d596fccf5e56db70fa552c9845bb3ed3f5f4db7c41343692389f686a4cb823625771449025d31df65b720b4ab88d95129b88600915cfbf8e3a1acf54", 0x5e}], 0x1}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000000c0)={0x2}) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c00018006000600800a000004050280ff041980"], 0x528}}, 0xc000) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0x14, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc", 0x0, 0xffffffff, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x40}]}]}]}}]}, 0xa4}}, 0x0) 17.40278258s ago: executing program 3 (id=3077): socket$netlink(0x10, 0x3, 0x10) r0 = socket$inet6(0xa, 0x3, 0x5) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x3, 0x9}, 0x20) setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000180)=0xffffffc1, 0x4) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000540)=ANY=[], 0x8) sendmmsg(r0, &(0x7f0000002b00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @mcast1, 0x0, 0x3f000000}, 0x80, 0x0}, 0x5b4}], 0x1, 0x0) 17.366499694s ago: executing program 4 (id=3078): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x174, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_RATE={0x6, 0x5, {0x4, 0x10}}, @filter_kind_options=@f_route={{0xa}, {0x12c, 0x2, [@TCA_ROUTE4_FROM={0x8, 0x3, 0x69}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x110, 0x6, [@m_sample={0x70, 0x13, 0x0, 0x0, {{0xb}, {0x4}, {0x42, 0x6, "3f81bd469ecd55c3d0c66f931a90cf8a9a6c6e924d22e41113bf61112e1bef5ef9e1150463043691922858f5540850bceed091a291af3e192cb3fc9ab6ec"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x9c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x71, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d11025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf"}, {0xc}, {0xc}}}]}]}}]}, 0x174}, 0x1, 0x0, 0x0, 0x91}, 0x0) (async, rerun: 32) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) (async, rerun: 32) r1 = socket(0x10, 0x803, 0x0) sendto(r1, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x3c}}, 0x0) (async) recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) (async, rerun: 64) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) (rerun: 64) r3 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r3, &(0x7f0000000280)={0x1d, r2, 0x0, {}, 0xfe}, 0x18) (async) sendmsg$can_j1939(r3, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee) (async) r4 = socket$can_j1939(0x1d, 0x2, 0x7) r5 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r5, 0x29, 0x30, &(0x7f0000000500)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff01000000000000000000000000c60c11b454a0980001000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000004000000000000000000000000000000fbffffffffffffff000000000000000000000000fcffffffffffffff0000000000000000000000000001"], 0x90) (async) bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r2}, 0x18) (async, rerun: 64) sendmsg$can_j1939(r4, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f0000000000)="92", 0x1}, 0x1, 0x0, 0x0, 0x41}, 0xaa) (async, rerun: 64) r6 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r6, 0x10d, 0x87, &(0x7f0000000000), &(0x7f0000000080)=0x4) socket$pppl2tp(0x18, 0x1, 0x1) 17.31777196s ago: executing program 0 (id=3079): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$OSF_MSG_ADD(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="bc04000000050104000000000000000000000000540201000000000000000000000000000000000073797a31000000000000000000000000000000000000000000000000000000003405be39dc2a3ba9f2d90eca67823d459716e3f50fc1e8682163f65134d25ad2"], 0x4bc}, 0x1, 0x0, 0x0, 0x4004811}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 17.314705982s ago: executing program 1 (id=3080): socket$inet6(0xa, 0x2, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4040800) r2 = socket$nl_route(0x10, 0x3, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000700)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f13905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2ed0300000000000000af99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14008c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288d9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000006da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3ab60fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba4978ea8e4aa37014191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1bd627e873f8703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf9743af932cd6db49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b24052137e9637f3efbab71720f88cf573fe0e5239c000be2733c49546f6e8a9175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000000000000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae47846892bb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a730e51067d5d675d7122361c37c61a43b5afd865b60d4cae891b73220f17d25985a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db11d5ad5527d149d076e1a87e2df27c0cb8a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7ffa06ca861551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab4898d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c721b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e48701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867857ed13a4fa4ae033a09673866cd77f4bcdaaa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d9a0e06da200481cde8bf475bc3e1fe9c0b4a4a268921738938aa9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a00"/3562, @ANYRES64=r0, @ANYRES64=r2, @ANYRES32=r4], &(0x7f0000000380)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r5}, 0x10) sendfile(r4, r4, 0x0, 0x200) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r6, @ANYRESDEC, @ANYRES8=r4], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYRES8=r4, @ANYRES32=0x0, @ANYBLOB="00000000422200042c00128008000100677265002000028008000500bb7e00000800040006000000080006007f"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x854) r8 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r8, &(0x7f00000002c0)={0x2, 0x4e21, @remote}, 0x10) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x25, 0x80000, 0x7) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) socket$packet(0x11, 0x2, 0x300) sendmmsg$inet6(r10, 0x0, 0x0, 0x4) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10) ioctl$sock_netdev_private(r11, 0x8914, &(0x7f0000000000)) connect$inet(r10, &(0x7f0000000480)={0x2, 0x4e22, @private=0xa010101}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e20, @loopback}, 0x10) sendmsg$xdp(r10, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="4c0100001900010000000000040000001d0100001500040001000080fe02000031131e44b2b50e8f040000001e0106000000fd0000ec058cdecf0fa4f69652b23bf9968d372a0ddfe196faa30f83514813d0527685407bc8366e8338397d6abc25357799ac708b65efffdb10e1376a4f6d4ab9949102000036dbf30bf928c37695658578feb8f3cce47f43a4290ec288f7d5430ffc0226139916866a978312dd970e64629d7cd799c5e08b64de41458eb8951a54a799230000000000005c087d15d9d3bae1c089701f970f8e7ce8cabe52e849ba044253654222f07959e7cdcfcf27332cb82016ccd91be54e588f6ea7b5c35a62c0ceaa4e90b29c3edc16f20db3d7fb4d6236232de07ccd7d7301f46a287dd2d6abe9baba499721311e1597853a2d0c7e1e64f827d31e6917175792398e0fdaa90002c900c08aa8d7b6060000000000000000000000000000a896082f330ad6a41dea5aa75514b8b6b78fbbe8ec4645924869f4096362960ccbdbf6d0af145a61d18fa20cbbd22f4a"], 0x14c}}, 0x0) 17.176235858s ago: executing program 0 (id=3081): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet6_int(r0, 0x29, 0x43, &(0x7f0000000080)=0x9, 0x4) sendto$inet6(r0, &(0x7f0000000040)='H', 0x34000, 0x41, &(0x7f0000000100)={0xa, 0x4e23, 0x9, @loopback, 0x4}, 0x1c) 17.175599099s ago: executing program 3 (id=3082): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000003880)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-ssse3\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendmsg$kcm(r1, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002840)=[{&(0x7f00000007c0)="4afa9b5779d9e9a51830bc5baad392370c58fbe0e8ca5a0449d85e4abfb6f6989056c1bade0c82fd16999f9a22bb3b451dfe3c751f5cbab2abb740fc196599fdd77c0bafe7214a99a5e4aa60e5c0a2cb96bf86efbc3f18af5078c2dc9512a2973da71c27d1dd763ed5cd74c984aa79ee62b41f21da82a59a3841d97acc51eeff73764be4732f6c0033233bad232502d35c9fd7c75fab39892ef82897d97bb1b1c4f9a1d46e2d1f1a481a4d7687adfe20d7e4c8f93a14b4eafc66862e9c27a15d194017c6921e38bca9f1f3161588a3ab0147f7a385fb189254a4b8b2c2698d660a48422db0102f81af2f200a5ca991ca76c02ad09958c3b98e440181f220435a4d09dde42d0bc5ab3f4000c3353ac4572f171a937154d5f6618662a6b5cc119edb36ea137da02fd36f3a41b9ba5f878dbf3b1064dbf5fb906a0a96595ca3b15e2e795047c861f7aad3a8c42a1025f8f6d0603dd1078987f9197e6bbd80db396b39941ee1f22c0d62383a6bd5353f0173c5279f8424401253b60f8b693539ecd3c113f689cb5f91c343f0ebfb5285f3722f90b91571a97c63f7229bdaf236b4ce0888c055acbaa645eac9dca37f41f08eebed02542f1e74d239ee8ae403da41a6eeea24d0fd71baa3e367769fb26ebd73aa91949596e16a04d8be90cf0d5e9a6f55c27b21ffadfe2b13f3b22f5a23d22c984238d1eaab57c61062de6ff78388705ed79ddce4948363a607fe176d591cb3bcefd9fbcb15c8245af822b09f4e8f698d166eae72b0a289b0374ee19b257f459235224fde49589f439aacd8039cecdc44ae9009e1a081bfbe7053416f95db4be0c5a38c08067d5aa5551c0de9f0ac42f16bb7b6aaf02fa029d5da1590131346c3347406ac4c31573b96852b8b2cd891c986e27e91a63e28ec55a9ae24717f09d2fe8815e585113d7b83ed0560ec83caef3b3fa136bb422147a183809a95014a8e8e777d95c469f7beada572b521d82d360815d332a55c499faeb70f8f7dc8a35a0e0cff53a20cf2e4bde242f0a16e30eaf57607c402e19d28146bb3f41031f60e2c89dacd38372c243c8a8baa0cd497253917a7ff0ac6a0e05dd9651cf6a45f5527d0d7f1987f80ca2d359a3e0fb635f4d4b56c1903d171154d0e383943fa90b184baf3aa8b43f72e69e9104a288b898ed563d2600eca07cf64a409819467629c6e7e2961a4591004c0f14562b3f02854bdaad198cdb1bd9aa6195148ae47dc590bff290b80e790278c7c90e2a2b1ee7cae48f2a6db20a1927d4f3f8a13b997ccdaebbe738c37a83383af0651d5cfad8322455176dd30e5e540aefe2b58e2532a2c0c472bbeb55ca0b25f035cd4003adfac6f69a9a326a1322a82dbb1b6949d55d58c391445f913582b17ed497b508ab75097d75ee5654fe2d0b835c8e3139ec0a30ae7b14066d8c0c3ee5eeaa9df397ecf823595747e22f501df09cd9a9ac084288e46c573dc008e6b42dc3f5d9c934a7af8cd49ab3b63e740cce809fb8261c788694c4d8308aa2fa61d1c96d3b34f522da6baa1a8b756eae09844341d5423ccc6a74d7eb8d4db6aadd39c8d0904c5393a4b63bee507001702d75f9f7e66ac172eb975e660f20bb6bd56b9a0d718d5f3c8ba71daae0998c8756d17b561e843249efd273cfe7b633b3e5552dc77effd455de4cc5ef54cf51986c41f9b2d21af7227ae4e57f437d53a024d98efd89bd3bfe2e3b7375a5edf327ac8f016701ac36f53b21cb6dafa6137b7550e078a485e2438531ee0526ee56802d93b5ec88522893f667d5d7022e1d3d0d518214bae03d9004441a3f462ad7a434489f3ebf36dc7f64c18faff6b3dcf9a73952aa6c8d0c999fbc0ec22bc7cae457ad1590801f6a157794b6f559d2020c983bc89772c6d563d902d4f2f2130be9b5a122dc8c9c27cdc0773f2d8d4db93746c435009b47a5de46ea6574558b4384312f09231695aed0a123dfb3d65d12d4d9d166e56b45b80cd9bd379b8d10759c5f590fc9a68ca5aadbc64fd1da53701b286b84040eb761987715d3606064ac7e048d6e643da8c6cc4864670b80551b50acc27d28b56766d1df8461c09b2d17c5453964737b4f5dfbe0cee371feb856bae0aaa92c85f9771b84659f8d67b8cde87f7e021c02115380ff6c7ab17fba16818082b112d750845ce91dd5a8e55072182ce0171049fd92fe6476fff5950025fd947a15df326d21a3760f5bb21a09d675175254cbf431ea655d31005e53515a8c633c34da993b847392ed730d5a580f0d8fe4b9f9d15ed106125416eb507e1f4adf944bb0c024891ff129ce871facadc737e39deebca38a2eb2a34193445e61f7b20524d2fc5b4d4e5d75be837a04d11f935a612f1b77ce3ea19e957826200ae76e28c63afe9baf700675d0db47490189af6bbd69564b73dc0d5f0150ae271f79a7dd5e0eb0913c6b827452b77b81c538d6a6ba639386ea42793dfa70e15698fd20df36d5f0ca7bd9930e69d41b7b3fbd9c6bf0b7b0b83366fe082587339b7cb34d9d35710be67721ddb55bcf70d14272d37a45933dde82ff31de9d29164900a6f1abdd90dd85ebc139d7fca5e38827c28c95e1178b79626cc5416cfb682d855bc607caf941d6857f974b36273cb9e178202918bd2cc1cf8adb78c4753b77950c6f020974ea0eeed55a3c835d06282253936ec30af7aca3edd170c9b53aeca654f08a8dfa7bb93d29eab1756d6b0f42c9a4d795b4f25660b4d3147b18658c11695b5bf1e3e5e0eb97317691878b3219c08890f552d716697ff745a36e190070584dd47c58a0fc19cab662d356dbf1ab5098a0f074945f71ed8f523839148e56af1a3d8c25b94b83b3ffa0d9878166f2e84630a8ed52967557afe2e044379b86582920600f7f1240ba8cc16895fbd0198140ac017319d2b2cf9634b0dc148c31ef4550930afa94b05283a39f28463e0e45d0561f48e03b71dc802d59eb5e4a43187d25c267010284f", 0x841}], 0x37}, 0xffffff7f00000000) 17.080684444s ago: executing program 3 (id=3083): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_macvtap\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c00000010000305000000000000ffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000000002c0012800b0001006d616373656300001c000280050007000000000005000a0000000000050009000000000008000500", @ANYRES32=r1], 0x5c}}, 0x0) (fail_nth: 4) 16.609664564s ago: executing program 0 (id=3084): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) bind$can_j1939(r1, 0x0, 0x0) sendmsg$can_j1939(r1, 0x0, 0xee) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB='P\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="3100330080000000ffffffffffff080211000000505050505050000000000000"], 0x50}}, 0x0) 16.609249867s ago: executing program 3 (id=3085): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r1, 0x220c) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) setsockopt$sock_int(r5, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r6, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) bind$inet6(r6, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r7, 0x0) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r8, 0x0) r9 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r9, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004", 0x56}], 0x1) 16.50251581s ago: executing program 0 (id=3086): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000003940)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x18000000, @void, @value, @void, @value}, 0x48) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58) r4 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000480)="ad56b6c5990fae9d25bebecf00d9054e2001017b9f6dcd3292fe54c79eef0300564c90c200ccc40fd4483a18fa9d3ee2bfeeedd211976b80dfde72a89da759e81a9c26f04f5346272bc33d7195308531a79c55898e74e8655dc312b56a3e993ed83bb77ddacefdbcd691aaac01191601fc21c63744879c6760876657523a4f3a8ec26d515885cf5182e2", 0x8bf14cb758067ad7) r5 = accept4(r3, 0x0, 0x0, 0x0) sendmsg$TIPC_NL_MEDIA_SET(r5, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000003c80)=ANY=[], 0x12f4}}, 0x0) recvmmsg(r5, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000002140)=[{&(0x7f0000002180)=""/4109, 0x100d}], 0x1}, 0xfffffff9}], 0x1, 0x40002020, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000010429bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="9320000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r2, @ANYBLOB="0a75745680ca02f0f26b8ef302fbf74a0988cc5f5c68965ad2632b134030020fae6f0c1257de164ab1389cb6da3da77e4bf650c5eb519671b6aa3313e9c3e093d4735aa629d7299aa6e96ff2111ce6bc5b1b49b72258a7dfdeb24c176521c12cf9f98dcce665de383bc08e4fcd1db47fea5e64c9511d8c93cd6021a1d5b5517e10e44d1abe37dc525b3d1714378eab7c81444b9aeaa3fdb3230a7aa92ec7f18f072c00b2b6b0"], 0x3c}}, 0x20000000) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = accept4$alg(r6, 0x0, 0x0, 0x800) ioctl$FS_IOC_GETFLAGS(r8, 0x80086601, &(0x7f00000000c0)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0xe, 0x4, &(0x7f00000012c0)=ANY=[@ANYBLOB="18001600000000000000000000000000850000008a000000950000005f42a326"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r9 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r9, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @loopback}, 0x10) r11 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000006a00000f0007000000", @ANYRES32=r12, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {}, {0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT_MASK={0x6}]}}]}, 0x44}}, 0x40041) r13 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r13, &(0x7f00000002c0), 0x40000000000009f, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x10114, 0x4) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) 16.420936729s ago: executing program 3 (id=3087): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x1c, r0, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 16.309559376s ago: executing program 4 (id=3088): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) r5 = socket$inet6_dccp(0xa, 0x6, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r7) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)={0x20, 0x18, 0x229, 0x0, 0x0, {0x2}, [@nested={0xc, 0x9, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}]}, 0x20}}, 0x0) getsockname$packet(r7, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xf1d, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xc}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6) sendto$inet6(r5, &(0x7f0000000040), 0x0, 0x8840, &(0x7f00000000c0)={0xa, 0x4e24, 0x3, @private1, 0x9}, 0x1c) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x3a, &(0x7f0000001140)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x503, 0x0, 0x25dfdbfd, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r2}, @IFLA_HSR_SLAVE2={0x8, 0x2, r4}]}}}]}, 0x40}}, 0x0) 2.232704285s ago: executing program 32 (id=3080): socket$inet6(0xa, 0x2, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x4040800) r2 = socket$nl_route(0x10, 0x3, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_netprio_ifpriomap(r3, &(0x7f0000000080), 0x2, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/3562, @ANYRES64=r0, @ANYRES64=r2, @ANYRES32=r4], &(0x7f0000000380)='GPL\x00', 0x20, 0x0, 0x0, 0x0, 0x36, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0xfffffffe}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r5}, 0x10) sendfile(r4, r4, 0x0, 0x200) getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x28a) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r6, @ANYRESDEC, @ANYRES8=r4], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=ANY=[@ANYRES8=r4, @ANYRES32=0x0, @ANYBLOB="00000000422200042c00128008000100677265002000028008000500bb7e00000800040006000000080006007f"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x854) r8 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r8, &(0x7f00000002c0)={0x2, 0x4e21, @remote}, 0x10) r9 = socket$nl_route(0x10, 0x3, 0x0) r10 = socket(0x25, 0x80000, 0x7) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)) r11 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) socket$packet(0x11, 0x2, 0x300) sendmmsg$inet6(r10, 0x0, 0x0, 0x4) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10) ioctl$sock_netdev_private(r11, 0x8914, &(0x7f0000000000)) connect$inet(r10, &(0x7f0000000480)={0x2, 0x4e22, @private=0xa010101}, 0x10) bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x4e20, @loopback}, 0x10) sendmsg$xdp(r10, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="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"], 0x14c}}, 0x0) 1.901279701s ago: executing program 33 (id=3076): r0 = socket(0x11, 0x800000003, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@RTM_NEWMDB={0x18, 0x54, 0x1}, 0x18}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000480)={&(0x7f0000000040)={0xa, 0x4e20, 0x3fd0, @rand_addr=' \x01\x00', 0x6}, 0x1c, &(0x7f0000000400)=[{&(0x7f0000000380)="a85e4ac9d17f0265f4eaae9c4acf6807726f8624dda1997f90cbde770e8561a93095d596fccf5e56db70fa552c9845bb3ed3f5f4db7c41343692389f686a4cb823625771449025d31df65b720b4ab88d95129b88600915cfbf8e3a1acf54", 0x5e}], 0x1}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000000c0)={0x2}) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c00018006000600800a000004050280ff041980"], 0x528}}, 0xc000) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r5, 0x0, 0x14, 0x0, &(0x7f00000006c0)="f6f4e9a1d78ad62ceef1884366a578bb3fb7dbfc", 0x0, 0xffffffff, 0x0, 0x2, 0x0, &(0x7f0000000700)="010a", 0x0}, 0x50) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x40}]}]}]}}]}, 0xa4}}, 0x0) 751.060707ms ago: executing program 34 (id=3086): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000003940)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x18000000, @void, @value, @void, @value}, 0x48) r3 = socket$alg(0x26, 0x5, 0x0) bind$alg(r3, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(camellia)\x00'}, 0x58) r4 = socket$alg(0x26, 0x5, 0x0) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000480)="ad56b6c5990fae9d25bebecf00d9054e2001017b9f6dcd3292fe54c79eef0300564c90c200ccc40fd4483a18fa9d3ee2bfeeedd211976b80dfde72a89da759e81a9c26f04f5346272bc33d7195308531a79c55898e74e8655dc312b56a3e993ed83bb77ddacefdbcd691aaac01191601fc21c63744879c6760876657523a4f3a8ec26d515885cf5182e2", 0x8bf14cb758067ad7) r5 = accept4(r3, 0x0, 0x0, 0x0) sendmsg$TIPC_NL_MEDIA_SET(r5, &(0x7f0000001800)={0x0, 0x0, &(0x7f00000017c0)={&(0x7f0000003c80)=ANY=[], 0x12f4}}, 0x0) recvmmsg(r5, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000002140)=[{&(0x7f0000002180)=""/4109, 0x100d}], 0x1}, 0xfffffff9}], 0x1, 0x40002020, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000010429bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="9320000000000000140012800c0001006d6163766c616e000400028008000500", @ANYRES32=r2, @ANYBLOB="0a75745680ca02f0f26b8ef302fbf74a0988cc5f5c68965ad2632b134030020fae6f0c1257de164ab1389cb6da3da77e4bf650c5eb519671b6aa3313e9c3e093d4735aa629d7299aa6e96ff2111ce6bc5b1b49b72258a7dfdeb24c176521c12cf9f98dcce665de383bc08e4fcd1db47fea5e64c9511d8c93cd6021a1d5b5517e10e44d1abe37dc525b3d1714378eab7c81444b9aeaa3fdb3230a7aa92ec7f18f072c00b2b6b0"], 0x3c}}, 0x20000000) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = accept4$alg(r6, 0x0, 0x0, 0x800) ioctl$FS_IOC_GETFLAGS(r8, 0x80086601, &(0x7f00000000c0)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0xe, 0x4, &(0x7f00000012c0)=ANY=[@ANYBLOB="18001600000000000000000000000000850000008a000000950000005f42a326"], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r9 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@newqdisc={0x24}, 0x24}}, 0x0) getsockname$packet(r9, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) connect$inet(0xffffffffffffffff, &(0x7f00000002c0)={0x2, 0x0, @loopback}, 0x10) r11 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r11, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) sendmsg$nl_route(r11, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000006a00000f0007000000", @ANYRES32=r12, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {}, {0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT_MASK={0x6}]}}]}, 0x44}}, 0x40041) r13 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r13, &(0x7f00000002c0), 0x40000000000009f, 0x0) setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x10114, 0x4) sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0) 417.182652ms ago: executing program 35 (id=3087): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000200)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_STATION(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x1c, r0, 0xb97534d5fe9704cf, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 0s ago: executing program 36 (id=3088): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', 0x0}) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) r5 = socket$inet6_dccp(0xa, 0x6, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x803, 0x0) syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), r7) r8 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)={0x20, 0x18, 0x229, 0x0, 0x0, {0x2}, [@nested={0xc, 0x9, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @uid}]}]}, 0x20}}, 0x0) getsockname$packet(r7, &(0x7f0000000380)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32=r9, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=@newqdisc={0x2c, 0x24, 0xf1d, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0xc}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6) sendto$inet6(r5, &(0x7f0000000040), 0x0, 0x8840, &(0x7f00000000c0)={0xa, 0x4e24, 0x3, @private1, 0x9}, 0x1c) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x3a, &(0x7f0000001140)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x503, 0x0, 0x25dfdbfd, {}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @hsr={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE1={0x8, 0x1, r2}, @IFLA_HSR_SLAVE2={0x8, 0x2, r4}]}}}]}, 0x40}}, 0x0) kernel console output (not intermixed with test programs): 0 [ 231.274867][T10681] CPU: 1 UID: 0 PID: 10681 Comm: syz.3.1803 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 231.285713][T10681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 231.295820][T10681] Call Trace: [ 231.299137][T10681] [ 231.302129][T10681] dump_stack_lvl+0x241/0x360 [ 231.306871][T10681] ? __pfx_dump_stack_lvl+0x10/0x10 [ 231.308242][T10689] netlink: 'syz.4.1804': attribute type 4 has an invalid length. [ 231.312113][T10681] ? __pfx__printk+0x10/0x10 [ 231.312154][T10681] ? __kmalloc_cache_noprof+0x48/0x390 [ 231.329982][T10681] ? __pfx___might_resched+0x10/0x10 [ 231.335338][T10681] should_fail_ex+0x3b0/0x4e0 [ 231.340098][T10681] should_failslab+0xac/0x100 [ 231.344843][T10681] __kmalloc_cache_noprof+0x70/0x390 [ 231.350188][T10681] ? call_usermodehelper_setup+0x8e/0x270 [ 231.355988][T10681] ? trace_kmalloc+0x1f/0xd0 [ 231.360646][T10681] call_usermodehelper_setup+0x8e/0x270 [ 231.366254][T10681] ? __pfx_free_modprobe_argv+0x10/0x10 [ 231.371864][T10681] __request_module+0x3cd/0x640 [ 231.376776][T10681] ? __pfx___request_module+0x10/0x10 [ 231.382272][T10681] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 231.388415][T10681] ? read_word_at_a_time+0xe/0x20 [ 231.393489][T10681] ? sized_strscpy+0x9a/0x2b0 [ 231.398217][T10681] load_settype+0x3a/0xb0 [ 231.402593][T10681] ? ip_set_create+0x424/0x18b0 [ 231.407496][T10681] ip_set_create+0x40b/0x18b0 [ 231.412222][T10681] ? ip_set_create+0x424/0x18b0 [ 231.417138][T10681] ? __pfx_ip_set_create+0x10/0x10 [ 231.422333][T10681] ? nfnetlink_rcv_msg+0x225/0x1180 [ 231.427582][T10681] nfnetlink_rcv_msg+0xbec/0x1180 [ 231.432658][T10681] ? nfnetlink_rcv_msg+0x225/0x1180 [ 231.437925][T10681] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 231.443433][T10681] ? stack_trace_save+0x118/0x1d0 [ 231.448527][T10681] ? dev_hard_start_xmit+0x27a/0x7d0 [ 231.453869][T10681] ? __dev_queue_xmit+0x1b73/0x3f50 [ 231.459120][T10681] ? __netlink_deliver_tap+0x56b/0x7f0 [ 231.464626][T10681] ? netlink_deliver_tap+0x19d/0x1b0 [ 231.469959][T10681] ? netlink_unicast+0x7c4/0x990 [ 231.474963][T10681] ? netlink_sendmsg+0x8e4/0xcb0 [ 231.480034][T10681] ? __sock_sendmsg+0x221/0x270 [ 231.484942][T10681] ? ____sys_sendmsg+0x52a/0x7e0 [ 231.489925][T10681] ? __sys_sendmsg+0x269/0x350 [ 231.494758][T10681] netlink_rcv_skb+0x1e3/0x430 [ 231.499576][T10681] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 231.505122][T10681] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 231.510470][T10681] ? apparmor_capable+0x13b/0x1b0 [ 231.515551][T10681] ? bpf_lsm_capable+0x9/0x10 [ 231.520265][T10681] ? security_capable+0x7e/0x2d0 [ 231.525245][T10681] nfnetlink_rcv+0x297/0x2ab0 [ 231.529983][T10681] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 231.535776][T10681] ? __dev_queue_xmit+0x2f4/0x3f50 [ 231.541025][T10681] ? __dev_queue_xmit+0x1775/0x3f50 [ 231.546283][T10681] ? kasan_save_track+0x51/0x80 [ 231.551194][T10681] ? ____sys_sendmsg+0x52a/0x7e0 [ 231.556190][T10681] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 231.561354][T10681] ? __dev_queue_xmit+0x2f4/0x3f50 [ 231.566519][T10681] ? __pfx___dev_queue_xmit+0x10/0x10 [ 231.571958][T10681] ? ref_tracker_free+0x643/0x7e0 [ 231.577043][T10681] ? __asan_memcpy+0x40/0x70 [ 231.581681][T10681] ? __pfx_ref_tracker_free+0x10/0x10 [ 231.587119][T10681] ? netlink_deliver_tap+0x2e/0x1b0 [ 231.592356][T10681] ? skb_clone+0x240/0x390 [ 231.596817][T10681] ? __pfx_lock_release+0x10/0x10 [ 231.601885][T10681] ? __netlink_deliver_tap+0x7aa/0x7f0 [ 231.607401][T10681] ? netlink_deliver_tap+0x2e/0x1b0 [ 231.612671][T10681] netlink_unicast+0x7f6/0x990 [ 231.617495][T10681] ? __pfx_netlink_unicast+0x10/0x10 [ 231.622831][T10681] ? __virt_addr_valid+0x45f/0x530 [ 231.627994][T10681] ? __phys_addr_symbol+0x2f/0x70 [ 231.633066][T10681] ? __check_object_size+0x47a/0x730 [ 231.638402][T10681] netlink_sendmsg+0x8e4/0xcb0 [ 231.643225][T10681] ? __pfx_netlink_sendmsg+0x10/0x10 [ 231.648562][T10681] ? aa_sock_msg_perm+0x91/0x160 [ 231.653549][T10681] ? __pfx_netlink_sendmsg+0x10/0x10 [ 231.658887][T10681] __sock_sendmsg+0x221/0x270 [ 231.663623][T10681] ____sys_sendmsg+0x52a/0x7e0 [ 231.668443][T10681] ? __pfx_____sys_sendmsg+0x10/0x10 [ 231.673766][T10681] ? __fget_files+0x2a/0x410 [ 231.678408][T10681] ? __fget_files+0x2a/0x410 [ 231.683076][T10681] __sys_sendmsg+0x269/0x350 [ 231.687714][T10681] ? __pfx_lock_release+0x10/0x10 [ 231.692795][T10681] ? __pfx___sys_sendmsg+0x10/0x10 [ 231.697978][T10681] ? __pfx_vfs_write+0x10/0x10 [ 231.702818][T10681] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 231.709277][T10681] ? do_syscall_64+0x100/0x230 [ 231.714093][T10681] ? do_syscall_64+0xb6/0x230 [ 231.718823][T10681] do_syscall_64+0xf3/0x230 [ 231.723378][T10681] ? clear_bhb_loop+0x35/0x90 [ 231.728098][T10681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 231.734054][T10681] RIP: 0033:0x7f203d585d29 [ 231.738517][T10681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.758167][T10681] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 231.766636][T10681] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 231.774655][T10681] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 231.782672][T10681] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 231.790692][T10681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 231.798714][T10681] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 231.806751][T10681] [ 231.839947][T10705] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1806'. [ 231.840621][T10701] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 231.861944][T10681] Can't find ip_set type [ 231.902267][T10701] netlink: 'syz.1.1807': attribute type 11 has an invalid length. [ 232.400438][T10611] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 232.683311][T10745] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1819'. [ 232.911582][T10759] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1823'. [ 232.922311][T10754] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1823'. [ 233.170004][T10772] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1824'. [ 233.447748][T10782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1831'. [ 233.550195][T10610] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 233.972471][T10809] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1841'. [ 234.066898][T10816] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1844'. [ 234.076854][T10816] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1844'. [ 234.104084][T10813] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 234.136380][T10816] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1844'. [ 234.244728][T10825] pimreg: entered allmulticast mode [ 234.408380][T10831] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 234.492948][T10839] netlink: 'syz.4.1853': attribute type 7 has an invalid length. [ 234.500938][T10839] netlink: 'syz.4.1853': attribute type 8 has an invalid length. [ 234.532874][T10831] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 234.705298][T10604] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 234.976806][T10860] netlink: 'syz.2.1862': attribute type 1 has an invalid length. [ 235.037636][T10860] xt_CT: You must specify a L4 protocol and not use inversions on it [ 235.554899][T10879] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 235.843779][T10604] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 236.238672][T10907] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 236.249743][T10907] FAULT_INJECTION: forcing a failure. [ 236.249743][T10907] name failslab, interval 1, probability 0, space 0, times 0 [ 236.263576][T10907] CPU: 1 UID: 0 PID: 10907 Comm: syz.1.1882 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 236.274398][T10907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 236.284499][T10907] Call Trace: [ 236.287821][T10907] [ 236.290792][T10907] dump_stack_lvl+0x241/0x360 [ 236.295532][T10907] ? __pfx_dump_stack_lvl+0x10/0x10 [ 236.300795][T10907] ? __pfx__printk+0x10/0x10 [ 236.305425][T10907] ? __kmalloc_node_noprof+0xb9/0x4d0 [ 236.310831][T10907] ? __pfx___might_resched+0x10/0x10 [ 236.316150][T10907] should_fail_ex+0x3b0/0x4e0 [ 236.320878][T10907] should_failslab+0xac/0x100 [ 236.325588][T10907] __kmalloc_node_noprof+0xe1/0x4d0 [ 236.330901][T10907] ? __kvmalloc_node_noprof+0x72/0x190 [ 236.336376][T10907] __kvmalloc_node_noprof+0x72/0x190 [ 236.341672][T10907] __nf_hook_entries_try_shrink+0x330/0x730 [ 236.347599][T10907] __nf_unregister_net_hook+0x5cf/0x800 [ 236.353169][T10907] nf_unregister_net_hooks+0xd0/0x140 [ 236.358565][T10907] nf_ct_netns_put+0x3bc/0x510 [ 236.363381][T10907] xt_ct_tg_destroy+0x17f/0x2a0 [ 236.368256][T10907] xt_ct_tg_destroy_v0+0x231/0x3b0 [ 236.373387][T10907] ? __pfx_xt_ct_tg_destroy_v0+0x10/0x10 [ 236.379054][T10907] ? vsnprintf+0x184/0x1da0 [ 236.383591][T10907] ? textify_hooks+0x15e/0x1a0 [ 236.388384][T10907] ? __pfx_xt_ct_tg_destroy_v0+0x10/0x10 [ 236.394038][T10907] cleanup_entry+0x3c4/0x4b0 [ 236.398650][T10907] ? __pfx_cleanup_entry+0x10/0x10 [ 236.403781][T10907] ? xt_find_match+0x1d3/0x210 [ 236.408577][T10907] translate_table+0x2072/0x2260 [ 236.413572][T10907] ? __pfx_translate_table+0x10/0x10 [ 236.418872][T10907] ? __might_fault+0xaa/0x120 [ 236.423579][T10907] ? __pfx_lock_release+0x10/0x10 [ 236.428623][T10907] ? __virt_addr_valid+0x183/0x530 [ 236.433752][T10907] ? __might_fault+0xc6/0x120 [ 236.438451][T10907] ? _copy_from_user+0x99/0xc0 [ 236.443233][T10907] ? copy_from_sockptr_offset+0x6b/0xb0 [ 236.448808][T10907] do_ipt_set_ctl+0xe3d/0x1250 [ 236.453594][T10907] ? __pfx___mutex_trylock_common+0x10/0x10 [ 236.459506][T10907] ? __pfx_do_ipt_set_ctl+0x10/0x10 [ 236.464718][T10907] ? __pfx_lock_release+0x10/0x10 [ 236.469759][T10907] ? rcu_is_watching+0x15/0xb0 [ 236.474629][T10907] ? trace_contention_end+0x3c/0x120 [ 236.479946][T10907] ? __mutex_unlock_slowpath+0x21e/0x790 [ 236.485605][T10907] ? __pfx___mutex_lock+0x10/0x10 [ 236.490648][T10907] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 236.496646][T10907] ? aa_sk_perm+0x96d/0xab0 [ 236.501182][T10907] ? __pfx_aa_sk_perm+0x10/0x10 [ 236.506058][T10907] nf_setsockopt+0x295/0x2c0 [ 236.510673][T10907] ? __pfx_sock_common_setsockopt+0x10/0x10 [ 236.516677][T10907] do_sock_setsockopt+0x3af/0x720 [ 236.521744][T10907] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 236.527324][T10907] ? __fget_files+0x395/0x410 [ 236.532032][T10907] ? __fget_files+0x2a/0x410 [ 236.536653][T10907] __x64_sys_setsockopt+0x1ee/0x280 [ 236.541885][T10907] do_syscall_64+0xf3/0x230 [ 236.546409][T10907] ? clear_bhb_loop+0x35/0x90 [ 236.551096][T10907] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 236.557006][T10907] RIP: 0033:0x7f891b985d29 [ 236.561433][T10907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 236.581049][T10907] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 236.589481][T10907] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 236.597463][T10907] RDX: 0000000000000040 RSI: 8001000000000000 RDI: 0000000000000003 [ 236.605444][T10907] RBP: 00007f891c717090 R08: 00000000000002b8 R09: 0000000000000000 [ 236.613510][T10907] R10: 0000000020000540 R11: 0000000000000246 R12: 0000000000000002 [ 236.621489][T10907] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 236.629487][T10907] [ 236.960135][T10924] __nla_validate_parse: 10 callbacks suppressed [ 236.960159][T10924] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1889'. [ 237.059555][T10928] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1890'. [ 237.206520][T10610] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 237.296454][T10940] netlink: 10552 bytes leftover after parsing attributes in process `syz.0.1895'. [ 237.326031][T10940] openvswitch: netlink: Flow key attr not present in new flow. [ 237.902666][T10966] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1906'. [ 238.325571][T10604] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 238.484381][T10986] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1915'. [ 238.648500][T10995] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1919'. [ 238.925561][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805da94800: rx timeout, send abort [ 239.433866][ C1] vcan0: j1939_tp_rxtimer: 0xffff88805da94800: abort rx timeout. Force session deactivation [ 239.496401][T10611] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 240.019165][T11061] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1945'. [ 240.655362][ T3030] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 240.786542][T11103] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1959'. [ 241.049041][T11114] veth0_to_team: left allmulticast mode [ 241.060262][T11114] infiniband syz1: set down [ 241.587532][ T5905] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 241.796389][T10611] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 241.870846][T11142] Bluetooth: MGMT ver 1.23 [ 241.901531][T11147] openvswitch: netlink: Port -1 exceeds max allowable 65535 [ 242.040912][T11141] bridge0: port 2(bridge_slave_1) entered disabled state [ 242.048566][T11141] bridge0: port 1(bridge_slave_0) entered disabled state [ 242.131927][T11148] netlink: 'syz.1.1977': attribute type 18 has an invalid length. [ 242.222948][ T5905] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 242.257063][T11141] veth0_to_team: left promiscuous mode [ 242.262776][T11141] veth0_to_team: left allmulticast mode [ 242.294783][T11141] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 242.327098][T11141] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 242.396439][T11141] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.424582][T11141] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.442045][T11141] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.451438][T11141] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.631902][T11154] netdevsim netdevsim1: Firmware load for './file0/../file0' refused, path contains '..' component [ 242.650603][T11148] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 242.660958][T11148] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 242.669795][T11148] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 242.678612][T11148] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 242.969076][T11192] infiniband syz1: set down [ 243.175838][T11194] netlink: 'syz.4.1988': attribute type 10 has an invalid length. [ 243.180883][T11199] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1990'. [ 243.226884][T11202] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 243.341148][T11214] netlink: 'syz.0.1990': attribute type 1 has an invalid length. [ 243.344981][T11210] netlink: 'syz.1.1992': attribute type 10 has an invalid length. [ 243.365893][T11213] netlink: 'syz.2.1993': attribute type 1 has an invalid length. [ 243.538557][T11210] 8021q: adding VLAN 0 to HW filter on device team0 [ 243.592513][T11210] bond0: (slave team0): Enslaving as an active interface with an up link [ 243.858483][T11235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2001'. [ 243.883654][T11235] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2001'. [ 243.884198][T11239] netlink: 'syz.1.2000': attribute type 1 has an invalid length. [ 243.915690][ T5850] Bluetooth: hci3: command 0x0406 tx timeout [ 243.937516][T11239] netlink: 1 bytes leftover after parsing attributes in process `syz.1.2000'. [ 244.256892][T11259] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2007'. [ 244.307945][T11263] ipt_rpfilter: unknown options [ 244.680588][T11281] wlan1: mtu greater than device maximum [ 244.833748][T11290] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2021'. [ 244.961705][T11294] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2024'. [ 244.982315][T11295] netlink: 'syz.2.2023': attribute type 29 has an invalid length. [ 244.992045][T11294] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2024'. [ 245.003931][T11294] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2024'. [ 245.098282][T11299] Cannot find add_set index 0 as target [ 245.638565][ T973] hid-generic 0005:7FFF:0008.0003: hidraw0: BLUETOOTH HID v0.02 Device [syz1] on aa:aa:aa:aa:aa:aa [ 245.852973][T11342] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2038'. [ 246.517625][T11381] netlink: 'syz.4.2054': attribute type 3 has an invalid length. [ 246.988476][T11402] FAULT_INJECTION: forcing a failure. [ 246.988476][T11402] name failslab, interval 1, probability 0, space 0, times 0 [ 247.040610][T11402] CPU: 0 UID: 0 PID: 11402 Comm: syz.3.2061 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 247.051446][T11402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 247.061557][T11402] Call Trace: [ 247.064870][T11402] [ 247.067921][T11402] dump_stack_lvl+0x241/0x360 [ 247.072651][T11402] ? __pfx_dump_stack_lvl+0x10/0x10 [ 247.077905][T11402] ? __pfx__printk+0x10/0x10 [ 247.082549][T11402] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 247.088584][T11402] ? __pfx___might_resched+0x10/0x10 [ 247.093938][T11402] should_fail_ex+0x3b0/0x4e0 [ 247.098686][T11402] should_failslab+0xac/0x100 [ 247.103414][T11402] kmem_cache_alloc_node_noprof+0x77/0x380 [ 247.109306][T11402] ? __alloc_skb+0x1c3/0x440 [ 247.113956][T11402] __alloc_skb+0x1c3/0x440 [ 247.118413][T11402] ? validate_chain+0x11e/0x5920 [ 247.123378][T11402] ? __pfx___alloc_skb+0x10/0x10 [ 247.128329][T11402] ? reacquire_held_locks+0x5b0/0x690 [ 247.133761][T11402] ? mark_lock+0x9a/0x360 [ 247.138110][T11402] alloc_skb_with_frags+0xc3/0x820 [ 247.143241][T11402] ? aa_label_sk_perm+0x4f3/0x6c0 [ 247.148299][T11402] sock_alloc_send_pskb+0x91a/0xa60 [ 247.153623][T11402] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 247.159423][T11402] hci_sock_sendmsg+0x22b/0x11c0 [ 247.164395][T11402] ? __pfx_aa_sk_perm+0x10/0x10 [ 247.169283][T11402] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 247.174687][T11402] ? __pfx_aa_file_perm+0x10/0x10 [ 247.179725][T11402] ? aa_sock_msg_perm+0x91/0x160 [ 247.184681][T11402] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 247.190078][T11402] __sock_sendmsg+0x221/0x270 [ 247.194783][T11402] sock_write_iter+0x2d7/0x3f0 [ 247.199581][T11402] ? __pfx_sock_write_iter+0x10/0x10 [ 247.204893][T11402] ? bpf_lsm_file_permission+0x9/0x10 [ 247.210284][T11402] ? security_file_permission+0x74/0x280 [ 247.215946][T11402] vfs_write+0xaeb/0xd30 [ 247.220204][T11402] ? __pfx_sock_write_iter+0x10/0x10 [ 247.225507][T11402] ? __pfx_vfs_write+0x10/0x10 [ 247.230281][T11402] ? __fget_files+0x2a/0x410 [ 247.234891][T11402] ? __fget_files+0x2a/0x410 [ 247.239503][T11402] ksys_write+0x18f/0x2b0 [ 247.243844][T11402] ? __pfx_ksys_write+0x10/0x10 [ 247.248709][T11402] ? do_syscall_64+0x100/0x230 [ 247.253494][T11402] ? do_syscall_64+0xb6/0x230 [ 247.258191][T11402] do_syscall_64+0xf3/0x230 [ 247.262713][T11402] ? clear_bhb_loop+0x35/0x90 [ 247.267402][T11402] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 247.273315][T11402] RIP: 0033:0x7f203d585d29 [ 247.277741][T11402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 247.297374][T11402] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 247.305814][T11402] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 247.313803][T11402] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000004 [ 247.321789][T11402] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 247.329777][T11402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 247.337786][T11402] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 247.345806][T11402] [ 248.315941][T11419] __nla_validate_parse: 4 callbacks suppressed [ 248.315962][T11419] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2066'. [ 248.353390][T11409] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2066'. [ 248.602178][T11433] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 249.463417][T11478] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2091'. [ 249.571384][T11482] veth0_to_team: entered promiscuous mode [ 249.583019][T11482] veth0_to_team: entered allmulticast mode [ 249.824489][T11490] sit0: entered promiscuous mode [ 249.835305][T11490] netlink: 'syz.3.2097': attribute type 1 has an invalid length. [ 249.863659][T11490] netlink: 1 bytes leftover after parsing attributes in process `syz.3.2097'. [ 249.907667][T11497] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2099'. [ 250.075747][T11504] FAULT_INJECTION: forcing a failure. [ 250.075747][T11504] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 250.136101][T11504] CPU: 1 UID: 0 PID: 11504 Comm: syz.0.2103 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 250.146944][T11504] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 250.157046][T11504] Call Trace: [ 250.160347][T11504] [ 250.163301][T11504] dump_stack_lvl+0x241/0x360 [ 250.168043][T11504] ? __pfx_dump_stack_lvl+0x10/0x10 [ 250.173295][T11504] ? __pfx__printk+0x10/0x10 [ 250.177941][T11504] ? __pfx_lock_release+0x10/0x10 [ 250.183022][T11504] should_fail_ex+0x3b0/0x4e0 [ 250.187765][T11504] _copy_from_iter+0x1e9/0x1c20 [ 250.192749][T11504] ? __virt_addr_valid+0x183/0x530 [ 250.197927][T11504] ? __pfx__copy_from_iter+0x10/0x10 [ 250.203265][T11504] ? __virt_addr_valid+0x183/0x530 [ 250.208428][T11504] ? __virt_addr_valid+0x183/0x530 [ 250.213566][T11504] ? __virt_addr_valid+0x45f/0x530 [ 250.218696][T11504] ? __phys_addr_symbol+0x2f/0x70 [ 250.223736][T11504] ? __check_object_size+0x47a/0x730 [ 250.229059][T11504] hci_sock_sendmsg+0x4f1/0x11c0 [ 250.234027][T11504] ? __pfx_aa_sk_perm+0x10/0x10 [ 250.238902][T11504] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 250.244291][T11504] ? __pfx_aa_file_perm+0x10/0x10 [ 250.249335][T11504] ? aa_sock_msg_perm+0x91/0x160 [ 250.254313][T11504] ? __pfx_hci_sock_sendmsg+0x10/0x10 [ 250.259700][T11504] __sock_sendmsg+0x221/0x270 [ 250.264405][T11504] sock_write_iter+0x2d7/0x3f0 [ 250.269190][T11504] ? __pfx_sock_write_iter+0x10/0x10 [ 250.274597][T11504] ? bpf_lsm_file_permission+0x9/0x10 [ 250.279991][T11504] ? security_file_permission+0x74/0x280 [ 250.285652][T11504] vfs_write+0xaeb/0xd30 [ 250.289931][T11504] ? __pfx_sock_write_iter+0x10/0x10 [ 250.295252][T11504] ? __pfx_vfs_write+0x10/0x10 [ 250.300045][T11504] ? __fget_files+0x2a/0x410 [ 250.304698][T11504] ? __fget_files+0x2a/0x410 [ 250.309333][T11504] ksys_write+0x18f/0x2b0 [ 250.313696][T11504] ? __pfx_ksys_write+0x10/0x10 [ 250.318564][T11504] ? do_syscall_64+0x100/0x230 [ 250.323359][T11504] ? do_syscall_64+0xb6/0x230 [ 250.328147][T11504] do_syscall_64+0xf3/0x230 [ 250.332679][T11504] ? clear_bhb_loop+0x35/0x90 [ 250.337369][T11504] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.343285][T11504] RIP: 0033:0x7f7339d85d29 [ 250.347711][T11504] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 250.367454][T11504] RSP: 002b:00007f733ab10038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 250.375890][T11504] RAX: ffffffffffffffda RBX: 00007f7339f75fa0 RCX: 00007f7339d85d29 [ 250.383877][T11504] RDX: 0000000000000004 RSI: 0000000020000040 RDI: 0000000000000004 [ 250.391862][T11504] RBP: 00007f733ab10090 R08: 0000000000000000 R09: 0000000000000000 [ 250.399847][T11504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 250.407826][T11504] R13: 0000000000000000 R14: 00007f7339f75fa0 R15: 00007ffcbc469d58 [ 250.415851][T11504] [ 250.710320][T11526] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2111'. [ 250.754553][T11523] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 250.772443][T11532] SET target dimension over the limit! [ 250.791450][T11532] wlan1: mtu greater than device maximum [ 250.860852][T11535] FAULT_INJECTION: forcing a failure. [ 250.860852][T11535] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 250.912375][T11535] CPU: 0 UID: 0 PID: 11535 Comm: syz.3.2115 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 250.923231][T11535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 250.933358][T11535] Call Trace: [ 250.936680][T11535] [ 250.939649][T11535] dump_stack_lvl+0x241/0x360 [ 250.944393][T11535] ? __pfx_dump_stack_lvl+0x10/0x10 [ 250.949652][T11535] ? __pfx__printk+0x10/0x10 [ 250.954305][T11535] ? __pfx_lock_release+0x10/0x10 [ 250.959394][T11535] should_fail_ex+0x3b0/0x4e0 [ 250.964131][T11535] _copy_from_iter+0x1e9/0x1c20 [ 250.969026][T11535] ? __virt_addr_valid+0x183/0x530 [ 250.974175][T11535] ? __alloc_skb+0x28f/0x440 [ 250.978783][T11535] ? __pfx__copy_from_iter+0x10/0x10 [ 250.984088][T11535] ? __virt_addr_valid+0x183/0x530 [ 250.989215][T11535] ? __virt_addr_valid+0x183/0x530 [ 250.994337][T11535] ? __virt_addr_valid+0x45f/0x530 [ 250.999463][T11535] ? __phys_addr_symbol+0x2f/0x70 [ 251.004500][T11535] ? __check_object_size+0x47a/0x730 [ 251.009803][T11535] netlink_sendmsg+0x73d/0xcb0 [ 251.014590][T11535] ? __pfx_netlink_sendmsg+0x10/0x10 [ 251.019892][T11535] ? aa_sock_msg_perm+0x91/0x160 [ 251.024845][T11535] ? __pfx_netlink_sendmsg+0x10/0x10 [ 251.030143][T11535] __sock_sendmsg+0x221/0x270 [ 251.034841][T11535] ____sys_sendmsg+0x52a/0x7e0 [ 251.039627][T11535] ? __pfx_____sys_sendmsg+0x10/0x10 [ 251.044925][T11535] ? __fget_files+0x2a/0x410 [ 251.049532][T11535] ? __fget_files+0x2a/0x410 [ 251.054144][T11535] __sys_sendmsg+0x269/0x350 [ 251.058747][T11535] ? __pfx_lock_release+0x10/0x10 [ 251.063787][T11535] ? __pfx___sys_sendmsg+0x10/0x10 [ 251.068929][T11535] ? __pfx_vfs_write+0x10/0x10 [ 251.073728][T11535] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 251.080067][T11535] ? do_syscall_64+0x100/0x230 [ 251.084854][T11535] ? do_syscall_64+0xb6/0x230 [ 251.089551][T11535] do_syscall_64+0xf3/0x230 [ 251.094069][T11535] ? clear_bhb_loop+0x35/0x90 [ 251.098758][T11535] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.104675][T11535] RIP: 0033:0x7f203d585d29 [ 251.109100][T11535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.129236][T11535] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 251.137677][T11535] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 251.145664][T11535] RDX: 000000002000c094 RSI: 0000000020000b00 RDI: 0000000000000004 [ 251.153645][T11535] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 251.161654][T11535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 251.169747][T11535] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 251.177744][T11535] [ 251.802505][T11573] FAULT_INJECTION: forcing a failure. [ 251.802505][T11573] name failslab, interval 1, probability 0, space 0, times 0 [ 251.848251][T11573] CPU: 0 UID: 0 PID: 11573 Comm: syz.4.2131 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 251.859098][T11573] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 251.869200][T11573] Call Trace: [ 251.872509][T11573] [ 251.875473][T11573] dump_stack_lvl+0x241/0x360 [ 251.880211][T11573] ? __pfx_dump_stack_lvl+0x10/0x10 [ 251.885469][T11573] ? __pfx__printk+0x10/0x10 [ 251.890116][T11573] ? __kmalloc_noprof+0xb5/0x4c0 [ 251.895103][T11573] ? __pfx___might_resched+0x10/0x10 [ 251.900426][T11573] ? aa_get_newest_label+0xff/0x6f0 [ 251.905679][T11573] should_fail_ex+0x3b0/0x4e0 [ 251.910416][T11573] should_failslab+0xac/0x100 [ 251.915136][T11573] __kmalloc_noprof+0xdd/0x4c0 [ 251.919955][T11573] ? genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 251.926333][T11573] ? apparmor_capable+0x13b/0x1b0 [ 251.931417][T11573] genl_family_rcv_msg_attrs_parse+0xa3/0x290 [ 251.937552][T11573] genl_rcv_msg+0x802/0xec0 [ 251.942150][T11573] ? __pfx_genl_rcv_msg+0x10/0x10 [ 251.947253][T11573] ? __pfx_lock_acquire+0x10/0x10 [ 251.952328][T11573] ? __pfx_ieee802154_del_iface+0x10/0x10 [ 251.958143][T11573] ? __pfx___might_resched+0x10/0x10 [ 251.963483][T11573] netlink_rcv_skb+0x1e3/0x430 [ 251.968292][T11573] ? __pfx_genl_rcv_msg+0x10/0x10 [ 251.973366][T11573] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 251.978728][T11573] genl_rcv+0x28/0x40 [ 251.982753][T11573] netlink_unicast+0x7f6/0x990 [ 251.987576][T11573] ? __pfx_netlink_unicast+0x10/0x10 [ 251.992912][T11573] ? __virt_addr_valid+0x45f/0x530 [ 251.998077][T11573] ? __phys_addr_symbol+0x2f/0x70 [ 252.003149][T11573] ? __check_object_size+0x47a/0x730 [ 252.008488][T11573] netlink_sendmsg+0x8e4/0xcb0 [ 252.013307][T11573] ? __pfx_netlink_sendmsg+0x10/0x10 [ 252.018639][T11573] ? aa_sock_msg_perm+0x91/0x160 [ 252.023625][T11573] ? __pfx_netlink_sendmsg+0x10/0x10 [ 252.028949][T11573] __sock_sendmsg+0x221/0x270 [ 252.033679][T11573] ____sys_sendmsg+0x52a/0x7e0 [ 252.038504][T11573] ? __pfx_____sys_sendmsg+0x10/0x10 [ 252.043837][T11573] ? __fget_files+0x2a/0x410 [ 252.048493][T11573] ? __fget_files+0x2a/0x410 [ 252.053154][T11573] __sys_sendmsg+0x269/0x350 [ 252.057794][T11573] ? __pfx_lock_release+0x10/0x10 [ 252.062870][T11573] ? __pfx___sys_sendmsg+0x10/0x10 [ 252.068051][T11573] ? __pfx_vfs_write+0x10/0x10 [ 252.072885][T11573] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 252.079260][T11573] ? do_syscall_64+0x100/0x230 [ 252.084080][T11573] ? do_syscall_64+0xb6/0x230 [ 252.088810][T11573] do_syscall_64+0xf3/0x230 [ 252.093549][T11573] ? clear_bhb_loop+0x35/0x90 [ 252.098277][T11573] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.104228][T11573] RIP: 0033:0x7f0f22785d29 [ 252.108690][T11573] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.128350][T11573] RSP: 002b:00007f0f23648038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 252.136820][T11573] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f22785d29 [ 252.144929][T11573] RDX: 000000002000c094 RSI: 0000000020000b00 RDI: 0000000000000004 [ 252.152954][T11573] RBP: 00007f0f23648090 R08: 0000000000000000 R09: 0000000000000000 [ 252.160982][T11573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 252.169006][T11573] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 252.177084][T11573] [ 252.390362][T11597] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2141'. [ 252.422392][T11599] FAULT_INJECTION: forcing a failure. [ 252.422392][T11599] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 252.474699][T11599] CPU: 1 UID: 0 PID: 11599 Comm: syz.1.2140 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 252.485538][T11599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 252.495635][T11599] Call Trace: [ 252.498942][T11599] [ 252.501904][T11599] dump_stack_lvl+0x241/0x360 [ 252.506644][T11599] ? __pfx_dump_stack_lvl+0x10/0x10 [ 252.511890][T11599] ? __pfx__printk+0x10/0x10 [ 252.516531][T11599] ? __pfx_lock_release+0x10/0x10 [ 252.521603][T11599] should_fail_ex+0x3b0/0x4e0 [ 252.526333][T11599] _copy_from_user+0x2f/0xc0 [ 252.530947][T11599] do_sock_getsockopt+0x1d1/0x7e0 [ 252.535993][T11599] ? __pfx_do_sock_getsockopt+0x10/0x10 [ 252.541554][T11599] ? __fget_files+0x2a/0x410 [ 252.546195][T11599] ? __fget_files+0x395/0x410 [ 252.550891][T11599] ? __fget_files+0x2a/0x410 [ 252.555503][T11599] __x64_sys_getsockopt+0x2a1/0x370 [ 252.560718][T11599] ? __pfx___x64_sys_getsockopt+0x10/0x10 [ 252.566468][T11599] ? do_syscall_64+0x100/0x230 [ 252.571264][T11599] ? do_syscall_64+0xb6/0x230 [ 252.575963][T11599] do_syscall_64+0xf3/0x230 [ 252.580485][T11599] ? clear_bhb_loop+0x35/0x90 [ 252.585172][T11599] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 252.591087][T11599] RIP: 0033:0x7f891b985d29 [ 252.595526][T11599] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 252.615148][T11599] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037 [ 252.623589][T11599] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 252.631576][T11599] RDX: 0000000000000482 RSI: 0000000000000000 RDI: 0000000000000003 [ 252.639559][T11599] RBP: 00007f891c717090 R08: 0000000020000100 R09: 0000000000000000 [ 252.647541][T11599] R10: 0000000020001640 R11: 0000000000000246 R12: 0000000000000001 [ 252.655521][T11599] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 252.663515][T11599] [ 252.822847][T11609] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2146'. [ 252.959433][T11618] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2150'. [ 253.013172][T11619] IPVS: sync thread started: state = BACKUP, mcast_ifn = vcan0, syncid = 0, id = 0 [ 253.114710][T11625] veth0_to_team: entered allmulticast mode [ 253.211703][T11633] openvswitch: netlink: Port -1 exceeds max allowable 65535 [ 253.222694][T11633] netlink: 'syz.1.2156': attribute type 21 has an invalid length. [ 253.230918][T11633] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2156'. [ 253.324523][T11636] bond3: entered promiscuous mode [ 253.338694][T11636] bond3: entered allmulticast mode [ 253.351064][T11636] 8021q: adding VLAN 0 to HW filter on device bond3 [ 253.372858][T11645] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2160'. [ 253.582448][T11656] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2162'. [ 253.599431][T11653] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.2162'. [ 253.715584][T11661] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2166'. [ 253.743125][T11664] FAULT_INJECTION: forcing a failure. [ 253.743125][T11664] name failslab, interval 1, probability 0, space 0, times 0 [ 253.765889][T11664] CPU: 0 UID: 0 PID: 11664 Comm: syz.3.2167 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 253.776719][T11664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 253.786815][T11664] Call Trace: [ 253.790124][T11664] [ 253.793103][T11664] dump_stack_lvl+0x241/0x360 [ 253.797832][T11664] ? __pfx_dump_stack_lvl+0x10/0x10 [ 253.803090][T11664] ? __pfx__printk+0x10/0x10 [ 253.807768][T11664] ? fs_reclaim_acquire+0x93/0x130 [ 253.812933][T11664] ? __pfx___might_resched+0x10/0x10 [ 253.818264][T11664] ? dynamic_dname+0x141/0x1b0 [ 253.823089][T11664] should_fail_ex+0x3b0/0x4e0 [ 253.827841][T11664] should_failslab+0xac/0x100 [ 253.832568][T11664] __kmalloc_noprof+0xdd/0x4c0 [ 253.837373][T11664] ? tomoyo_encode+0x26f/0x540 [ 253.842184][T11664] tomoyo_encode+0x26f/0x540 [ 253.846820][T11664] ? __pfx_sockfs_dname+0x10/0x10 [ 253.851911][T11664] tomoyo_realpath_from_path+0x59e/0x5e0 [ 253.857605][T11664] tomoyo_path_number_perm+0x236/0x860 [ 253.863124][T11664] ? __lock_acquire+0x1397/0x2100 [ 253.868192][T11664] ? tomoyo_path_number_perm+0x206/0x860 [ 253.873874][T11664] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 253.879911][T11664] ? __fget_files+0x2a/0x410 [ 253.884523][T11664] ? __fget_files+0x2a/0x410 [ 253.889135][T11664] security_file_ioctl+0xc6/0x2a0 [ 253.894181][T11664] __se_sys_ioctl+0x46/0x170 [ 253.898784][T11664] do_syscall_64+0xf3/0x230 [ 253.903306][T11664] ? clear_bhb_loop+0x35/0x90 [ 253.907995][T11664] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 253.913911][T11664] RIP: 0033:0x7f203d585d29 [ 253.918347][T11664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 253.937974][T11664] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 253.946408][T11664] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 253.954397][T11664] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000004 [ 253.962383][T11664] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 253.970369][T11664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 253.978353][T11664] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 253.986355][T11664] [ 254.090062][T11664] ERROR: Out of memory at tomoyo_realpath_from_path. [ 254.316459][T11683] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2176'. [ 254.397352][T11688] netlink: 'syz.0.2178': attribute type 28 has an invalid length. [ 254.415303][T11688] netlink: 'syz.0.2178': attribute type 3 has an invalid length. [ 254.444034][T11688] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2178'. [ 254.545552][T11692] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2179'. [ 254.565667][T11692] IPVS: Unknown mcast interface: vcan0 [ 254.846083][T11714] netlink: 'syz.0.2184': attribute type 10 has an invalid length. [ 254.875936][T11715] netlink: 512 bytes leftover after parsing attributes in process `syz.3.2186'. [ 254.924564][T11714] 8021q: adding VLAN 0 to HW filter on device team0 [ 254.966644][T11714] team0: entered promiscuous mode [ 254.985288][T11714] team_slave_0: entered promiscuous mode [ 255.013668][T11714] team_slave_1: entered promiscuous mode [ 255.859305][T11768] netlink: 'syz.1.2200': attribute type 1 has an invalid length. [ 255.867248][T11768] netlink: 'syz.1.2200': attribute type 2 has an invalid length. [ 255.876120][T11768] netlink: 'syz.1.2200': attribute type 1 has an invalid length. [ 255.884012][T11768] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 256.604936][T11817] netlink: 'syz.2.2217': attribute type 4 has an invalid length. [ 256.946906][T11837] netlink: 'syz.0.2222': attribute type 6 has an invalid length. [ 257.567453][T11871] netlink: 'syz.0.2232': attribute type 4 has an invalid length. [ 258.128790][T11903] pimreg3: entered allmulticast mode [ 258.475742][ T5845] Bluetooth: hci4: command 0x0405 tx timeout [ 258.535633][T11923] netlink: 'syz.3.2250': attribute type 4 has an invalid length. [ 258.769553][T11935] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2258'. [ 258.936373][T11945] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2259'. [ 258.954897][T11939] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.2259'. [ 259.483403][T11974] FAULT_INJECTION: forcing a failure. [ 259.483403][T11974] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 259.535197][T11974] CPU: 0 UID: 0 PID: 11974 Comm: syz.1.2273 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 259.546044][T11974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 259.556147][T11974] Call Trace: [ 259.559462][T11974] [ 259.562425][T11974] dump_stack_lvl+0x241/0x360 [ 259.567162][T11974] ? __pfx_dump_stack_lvl+0x10/0x10 [ 259.572419][T11974] ? __pfx__printk+0x10/0x10 [ 259.577069][T11974] ? vfs_write+0x730/0xd30 [ 259.581617][T11974] should_fail_ex+0x3b0/0x4e0 [ 259.586365][T11974] _copy_from_user+0x2f/0xc0 [ 259.591022][T11974] move_addr_to_kernel+0x82/0x150 [ 259.596111][T11974] __sys_connect+0xb6/0x2d0 [ 259.600668][T11974] ? __fget_files+0x2a/0x410 [ 259.605319][T11974] ? __pfx___sys_connect+0x10/0x10 [ 259.610543][T11974] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 259.616925][T11974] ? do_syscall_64+0x100/0x230 [ 259.621741][T11974] __x64_sys_connect+0x7a/0x90 [ 259.626530][T11974] do_syscall_64+0xf3/0x230 [ 259.631152][T11974] ? clear_bhb_loop+0x35/0x90 [ 259.635852][T11974] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.641772][T11974] RIP: 0033:0x7f891b985d29 [ 259.646207][T11974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.665840][T11974] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 259.674298][T11974] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 259.682292][T11974] RDX: 000000000000001c RSI: 0000000020000080 RDI: 0000000000000003 [ 259.690281][T11974] RBP: 00007f891c717090 R08: 0000000000000000 R09: 0000000000000000 [ 259.698271][T11974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 259.706265][T11974] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 259.714264][T11974] [ 259.776262][T11978] netlink: 'syz.3.2274': attribute type 4 has an invalid length. [ 259.863563][T11985] atomic_op ffff888078ddf998 conn xmit_atomic 0000000000000000 [ 259.980169][T11992] pim6reg1: entered promiscuous mode [ 259.986520][T11993] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 259.993592][T11992] pim6reg1: entered allmulticast mode [ 260.117266][T12001] netlink: 'syz.1.2281': attribute type 10 has an invalid length. [ 260.286618][T12006] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2285'. [ 260.322665][T12006] netlink: 'syz.3.2285': attribute type 10 has an invalid length. [ 260.345599][T12010] netlink: 'syz.4.2287': attribute type 4 has an invalid length. [ 260.360698][T12006] team0: Device hsr_slave_0 failed to register rx_handler [ 260.433999][T12014] 8021q: adding VLAN 0 to HW filter on device bond5 [ 260.481698][ T3030] infiniband syz1: set active [ 260.607635][T12028] FAULT_INJECTION: forcing a failure. [ 260.607635][T12028] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 260.665256][T12028] CPU: 0 UID: 0 PID: 12028 Comm: syz.4.2292 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 260.676105][T12028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 260.686216][T12028] Call Trace: [ 260.689529][T12028] [ 260.692485][T12028] dump_stack_lvl+0x241/0x360 [ 260.697217][T12028] ? __pfx_dump_stack_lvl+0x10/0x10 [ 260.702464][T12028] ? __pfx__printk+0x10/0x10 [ 260.707115][T12028] ? snprintf+0xda/0x120 [ 260.711408][T12028] should_fail_ex+0x3b0/0x4e0 [ 260.716153][T12028] _copy_to_user+0x31/0xb0 [ 260.720619][T12028] simple_read_from_buffer+0xca/0x150 [ 260.726040][T12028] proc_fail_nth_read+0x1e9/0x250 [ 260.731114][T12028] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 260.736708][T12028] ? rw_verify_area+0x55e/0x6f0 [ 260.741606][T12028] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 260.747204][T12028] vfs_read+0x1fc/0xb70 [ 260.751411][T12028] ? __pfx___mutex_lock+0x10/0x10 [ 260.756483][T12028] ? __pfx_vfs_read+0x10/0x10 [ 260.761202][T12028] ? __fget_files+0x2a/0x410 [ 260.765836][T12028] ? __fget_files+0x395/0x410 [ 260.770558][T12028] ? __fget_files+0x2a/0x410 [ 260.775249][T12028] ksys_read+0x18f/0x2b0 [ 260.779543][T12028] ? __pfx_ksys_read+0x10/0x10 [ 260.784329][T12028] ? do_syscall_64+0x100/0x230 [ 260.789116][T12028] ? do_syscall_64+0xb6/0x230 [ 260.793813][T12028] do_syscall_64+0xf3/0x230 [ 260.798338][T12028] ? clear_bhb_loop+0x35/0x90 [ 260.803033][T12028] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.808945][T12028] RIP: 0033:0x7f0f2278473c [ 260.813373][T12028] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 260.833001][T12028] RSP: 002b:00007f0f23648030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 260.841436][T12028] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f2278473c [ 260.849421][T12028] RDX: 000000000000000f RSI: 00007f0f236480a0 RDI: 0000000000000004 [ 260.857402][T12028] RBP: 00007f0f23648090 R08: 0000000000000000 R09: 0000000000000000 [ 260.865384][T12028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 260.873363][T12028] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 260.881360][T12028] [ 260.899642][T12034] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2294'. [ 260.984983][T12036] smc: net device bond0 applied user defined pnetid SYZ2 [ 261.007304][T12036] netlink: 260 bytes leftover after parsing attributes in process `syz.3.2297'. [ 261.086294][T12042] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2299'. [ 261.103237][T12042] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2299'. [ 261.132500][T12042] netlink: 'syz.1.2299': attribute type 11 has an invalid length. [ 261.706356][T12066] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2310'. [ 261.891679][T12072] netlink: 'syz.4.2312': attribute type 2 has an invalid length. [ 261.973256][T12074] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2313'. [ 262.248147][T12079] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 262.255555][ T973] IPVS: starting estimator thread 0... [ 262.345631][T12088] IPVS: using max 19 ests per chain, 45600 per kthread [ 262.421437][T12079] netlink: 'syz.4.2315': attribute type 10 has an invalid length. [ 262.506231][T12079] 8021q: adding VLAN 0 to HW filter on device team0 [ 262.527193][T12079] team0: entered promiscuous mode [ 262.532290][T12079] team_slave_0: entered promiscuous mode [ 262.566515][T12079] team_slave_1: entered promiscuous mode [ 263.102581][T12129] netlink: 'syz.2.2333': attribute type 1 has an invalid length. [ 263.463956][T12145] netlink: 'syz.1.2338': attribute type 4 has an invalid length. [ 263.748966][T12155] netlink: 'syz.1.2342': attribute type 11 has an invalid length. [ 263.783705][T12162] __nla_validate_parse: 4 callbacks suppressed [ 263.783727][T12162] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2343'. [ 263.985815][T12168] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2346'. [ 264.448997][T12194] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2356'. [ 264.459638][T12196] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2355'. [ 264.684063][T12207] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2358'. [ 264.821236][T12213] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2361'. [ 264.931808][T12218] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2362'. [ 265.357967][T12236] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2368'. [ 265.415678][T12243] netlink: 168 bytes leftover after parsing attributes in process `syz.1.2370'. [ 265.745391][T12257] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2375'. [ 265.974020][T12273] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 266.097038][T12273] netlink: 'syz.4.2380': attribute type 10 has an invalid length. [ 266.109420][T12273] 8021q: adding VLAN 0 to HW filter on device team0 [ 266.391043][T12298] 8021q: adding VLAN 0 to HW filter on device ipvlan0 [ 266.442012][T12298] team0: Device ipvlan0 is already an upper device of the team interface [ 266.956464][T12325] netlink: 'syz.0.2395': attribute type 1 has an invalid length. [ 267.118964][T12340] IPVS: Unknown mcast interface: vcan0 [ 267.207424][T12346] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 267.213096][T12344] netlink: 'syz.4.2402': attribute type 4 has an invalid length. [ 267.274858][T12346] IPVS: Unknown mcast interface: vcan0 [ 267.306392][T12349] vlan3: entered allmulticast mode [ 267.527183][T12358] vxcan1: entered allmulticast mode [ 267.939697][T12380] netlink: 'syz.2.2415': attribute type 10 has an invalid length. [ 267.988894][T12380] 8021q: adding VLAN 0 to HW filter on device team0 [ 268.007461][T12380] team0: entered promiscuous mode [ 268.007886][T10611] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:2602:48ff:feff:0500 error=-28 [ 268.012533][T12380] team_slave_0: entered promiscuous mode [ 268.012672][T12380] team_slave_1: entered promiscuous mode [ 268.049581][T12380] bond0: (slave team0): Enslaving as an active interface with an up link [ 268.111169][T12389] bridge_slave_0: entered promiscuous mode [ 268.826764][T12429] netlink: 'syz.2.2434': attribute type 10 has an invalid length. [ 268.863819][T12432] x_tables: duplicate underflow at hook 1 [ 268.956146][T12439] __nla_validate_parse: 11 callbacks suppressed [ 268.956167][T12439] netlink: 1280 bytes leftover after parsing attributes in process `syz.0.2438'. [ 268.981833][T12439] openvswitch: netlink: Flow actions attr not present in new flow. [ 269.070575][T12445] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2441'. [ 269.142098][T12449] IPVS: set_ctl: invalid protocol: 46 10.1.1.1:20001 [ 269.299663][T12452] xt_CT: No such helper "snmp" [ 269.324261][T12461] bridge0: port 4(vlan0) entered blocking state [ 269.355314][T12461] bridge0: port 4(vlan0) entered disabled state [ 269.372673][T12461] vlan0: entered allmulticast mode [ 269.392295][T12461] vlan0: left allmulticast mode [ 269.472631][T12469] netlink: 'syz.3.2449': attribute type 10 has an invalid length. [ 269.489111][T12469] 8021q: adding VLAN 0 to HW filter on device team0 [ 269.502443][T12469] bond0: (slave team0): Enslaving as an active interface with an up link [ 269.609557][T12474] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2452'. [ 269.635203][T12474] IPVS: Unknown mcast interface: vcan0 [ 269.686230][T12479] FAULT_INJECTION: forcing a failure. [ 269.686230][T12479] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 269.719977][T12479] CPU: 1 UID: 0 PID: 12479 Comm: syz.3.2453 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 269.730822][T12479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 269.740925][T12479] Call Trace: [ 269.744254][T12479] [ 269.747224][T12479] dump_stack_lvl+0x241/0x360 [ 269.751963][T12479] ? __pfx_dump_stack_lvl+0x10/0x10 [ 269.757220][T12479] ? __pfx__printk+0x10/0x10 [ 269.761870][T12479] ? __pfx_lock_release+0x10/0x10 [ 269.766964][T12479] should_fail_ex+0x3b0/0x4e0 [ 269.771703][T12479] _copy_from_iter+0x1e9/0x1c20 [ 269.776622][T12479] ? __virt_addr_valid+0x183/0x530 [ 269.781798][T12479] ? __alloc_skb+0x28f/0x440 [ 269.786435][T12479] ? __pfx__copy_from_iter+0x10/0x10 [ 269.791775][T12479] ? __virt_addr_valid+0x183/0x530 [ 269.796937][T12479] ? __virt_addr_valid+0x183/0x530 [ 269.802093][T12479] ? __virt_addr_valid+0x45f/0x530 [ 269.807257][T12479] ? __phys_addr_symbol+0x2f/0x70 [ 269.812326][T12479] ? __check_object_size+0x47a/0x730 [ 269.817643][T12479] netlink_sendmsg+0x73d/0xcb0 [ 269.822437][T12479] ? __pfx_netlink_sendmsg+0x10/0x10 [ 269.827743][T12479] ? aa_sock_msg_perm+0x91/0x160 [ 269.832704][T12479] ? __pfx_netlink_sendmsg+0x10/0x10 [ 269.838009][T12479] __sock_sendmsg+0x221/0x270 [ 269.842715][T12479] ____sys_sendmsg+0x52a/0x7e0 [ 269.847506][T12479] ? __pfx_____sys_sendmsg+0x10/0x10 [ 269.852806][T12479] ? __fget_files+0x2a/0x410 [ 269.857422][T12479] ? __fget_files+0x2a/0x410 [ 269.862039][T12479] __sys_sendmsg+0x269/0x350 [ 269.866643][T12479] ? __pfx_lock_release+0x10/0x10 [ 269.871688][T12479] ? __pfx___sys_sendmsg+0x10/0x10 [ 269.876828][T12479] ? __pfx_vfs_write+0x10/0x10 [ 269.881629][T12479] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 269.887972][T12479] ? do_syscall_64+0x100/0x230 [ 269.892757][T12479] ? do_syscall_64+0xb6/0x230 [ 269.897465][T12479] do_syscall_64+0xf3/0x230 [ 269.901991][T12479] ? clear_bhb_loop+0x35/0x90 [ 269.906679][T12479] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 269.912590][T12479] RIP: 0033:0x7f203d585d29 [ 269.917027][T12479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 269.936738][T12479] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 269.945174][T12479] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 269.953161][T12479] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 269.961144][T12479] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 269.969126][T12479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 269.977110][T12479] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 269.985114][T12479] [ 270.136086][T12486] bridge0: port 1(bridge_slave_0) entered blocking state [ 270.143335][T12486] bridge0: port 1(bridge_slave_0) entered forwarding state [ 270.232227][T12492] netlink: 'syz.2.2460': attribute type 4 has an invalid length. [ 270.245904][T12492] FAULT_INJECTION: forcing a failure. [ 270.245904][T12492] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 270.262325][T12492] CPU: 1 UID: 0 PID: 12492 Comm: syz.2.2460 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 270.273192][T12492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 270.283294][T12492] Call Trace: [ 270.286608][T12492] [ 270.289572][T12492] dump_stack_lvl+0x241/0x360 [ 270.294280][T12492] ? __pfx_dump_stack_lvl+0x10/0x10 [ 270.299501][T12492] ? __pfx__printk+0x10/0x10 [ 270.304121][T12492] ? snprintf+0xda/0x120 [ 270.308402][T12492] should_fail_ex+0x3b0/0x4e0 [ 270.313105][T12492] _copy_to_user+0x31/0xb0 [ 270.317546][T12492] simple_read_from_buffer+0xca/0x150 [ 270.322986][T12492] proc_fail_nth_read+0x1e9/0x250 [ 270.328050][T12492] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 270.333633][T12492] ? rw_verify_area+0x55e/0x6f0 [ 270.338513][T12492] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 270.344087][T12492] vfs_read+0x1fc/0xb70 [ 270.348275][T12492] ? __pfx___mutex_lock+0x10/0x10 [ 270.353325][T12492] ? __pfx_vfs_read+0x10/0x10 [ 270.358021][T12492] ? __fget_files+0x2a/0x410 [ 270.362629][T12492] ? __fget_files+0x395/0x410 [ 270.367326][T12492] ? __fget_files+0x2a/0x410 [ 270.371941][T12492] ksys_read+0x18f/0x2b0 [ 270.376199][T12492] ? __pfx_ksys_read+0x10/0x10 [ 270.380985][T12492] ? do_syscall_64+0x100/0x230 [ 270.385864][T12492] ? do_syscall_64+0xb6/0x230 [ 270.390565][T12492] do_syscall_64+0xf3/0x230 [ 270.395093][T12492] ? clear_bhb_loop+0x35/0x90 [ 270.399813][T12492] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 270.405744][T12492] RIP: 0033:0x7f44ad18473c [ 270.410184][T12492] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 270.429811][T12492] RSP: 002b:00007f44adede030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 270.438246][T12492] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad18473c [ 270.446226][T12492] RDX: 000000000000000f RSI: 00007f44adede0a0 RDI: 0000000000000004 [ 270.454206][T12492] RBP: 00007f44adede090 R08: 0000000000000000 R09: 0000000000000000 [ 270.462188][T12492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 270.470164][T12492] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 270.478160][T12492] [ 270.559677][T12500] ip6t_srh: unknown srh match flags 536B [ 270.566113][T12500] netlink: 'syz.4.2459': attribute type 4 has an invalid length. [ 271.144290][T12534] atomic_op ffff888078dde198 conn xmit_atomic 0000000000000000 [ 271.363308][T12542] netlink: 'syz.4.2474': attribute type 4 has an invalid length. [ 271.523960][T12553] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 271.649824][T12560] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 271.671978][T12560] netlink: 'syz.4.2481': attribute type 10 has an invalid length. [ 271.691323][T12560] 8021q: adding VLAN 0 to HW filter on device team0 [ 271.841521][T12569] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2485'. [ 271.905416][T12570] netlink: 92 bytes leftover after parsing attributes in process `syz.0.2483'. [ 272.034178][T12577] FAULT_INJECTION: forcing a failure. [ 272.034178][T12577] name failslab, interval 1, probability 0, space 0, times 0 [ 272.047303][T12577] CPU: 0 UID: 0 PID: 12577 Comm: syz.2.2489 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 272.049576][T12578] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2488'. [ 272.058089][T12577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 272.058115][T12577] Call Trace: [ 272.058126][T12577] [ 272.058136][T12577] dump_stack_lvl+0x241/0x360 [ 272.058179][T12577] ? __pfx_dump_stack_lvl+0x10/0x10 [ 272.058211][T12577] ? __pfx__printk+0x10/0x10 [ 272.058266][T12577] should_fail_ex+0x3b0/0x4e0 [ 272.058308][T12577] should_failslab+0xac/0x100 [ 272.058340][T12577] ? skb_clone+0x20c/0x390 [ 272.058367][T12577] kmem_cache_alloc_noprof+0x70/0x380 [ 272.077377][T12578] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2488'. [ 272.080647][T12577] skb_clone+0x20c/0x390 [ 272.080686][T12577] ? dev_queue_xmit_nit+0x3fe/0xca0 [ 272.114111][T12578] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 60 [ 272.117262][T12577] dev_queue_xmit_nit+0x249/0xca0 [ 272.117300][T12577] ? dev_queue_xmit_nit+0x2b/0xca0 [ 272.117327][T12577] ? validate_xmit_skb+0x9b8/0xff0 [ 272.130846][T12578] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2488'. [ 272.135717][T12577] dev_hard_start_xmit+0x15f/0x7d0 [ 272.135757][T12577] ? __pfx_validate_xmit_skb+0x10/0x10 [ 272.135797][T12577] __dev_queue_xmit+0x1b73/0x3f50 [ 272.183529][T12577] ? kasan_save_track+0x51/0x80 [ 272.188439][T12577] ? ____sys_sendmsg+0x52a/0x7e0 [ 272.193439][T12577] ? __dev_queue_xmit+0x2f4/0x3f50 [ 272.198612][T12577] ? __pfx___dev_queue_xmit+0x10/0x10 [ 272.204055][T12577] ? __copy_skb_header+0x437/0x5b0 [ 272.209212][T12577] ? __asan_memcpy+0x40/0x70 [ 272.213851][T12577] ? __copy_skb_header+0x437/0x5b0 [ 272.219021][T12577] ? __skb_clone+0x454/0x6c0 [ 272.223670][T12577] ? skb_clone+0x240/0x390 [ 272.228146][T12577] __netlink_deliver_tap+0x56b/0x7f0 [ 272.233486][T12577] ? netlink_deliver_tap+0x2e/0x1b0 [ 272.238737][T12577] netlink_deliver_tap+0x19d/0x1b0 [ 272.243871][T12577] netlink_unicast+0x7c4/0x990 [ 272.243922][T12577] ? __pfx_netlink_unicast+0x10/0x10 [ 272.246787][T12580] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2490'. [ 272.248859][T12577] ? __virt_addr_valid+0x45f/0x530 [ 272.268256][T12577] ? __phys_addr_symbol+0x2f/0x70 [ 272.273328][T12577] ? __check_object_size+0x47a/0x730 [ 272.278664][T12577] netlink_sendmsg+0x8e4/0xcb0 [ 272.283485][T12577] ? __pfx_netlink_sendmsg+0x10/0x10 [ 272.288823][T12577] ? aa_sock_msg_perm+0x91/0x160 [ 272.293812][T12577] ? __pfx_netlink_sendmsg+0x10/0x10 [ 272.299145][T12577] __sock_sendmsg+0x221/0x270 [ 272.303992][T12577] ____sys_sendmsg+0x52a/0x7e0 [ 272.308822][T12577] ? __pfx_____sys_sendmsg+0x10/0x10 [ 272.314157][T12577] ? __fget_files+0x2a/0x410 [ 272.318811][T12577] ? __fget_files+0x2a/0x410 [ 272.323501][T12577] __sys_sendmsg+0x269/0x350 [ 272.328181][T12577] ? __pfx_lock_release+0x10/0x10 [ 272.333261][T12577] ? __pfx___sys_sendmsg+0x10/0x10 [ 272.338448][T12577] ? __pfx_vfs_write+0x10/0x10 [ 272.343291][T12577] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 272.349677][T12577] ? do_syscall_64+0x100/0x230 [ 272.354508][T12577] ? do_syscall_64+0xb6/0x230 [ 272.359245][T12577] do_syscall_64+0xf3/0x230 [ 272.363823][T12577] ? clear_bhb_loop+0x35/0x90 [ 272.368546][T12577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 272.374494][T12577] RIP: 0033:0x7f44ad185d29 [ 272.378951][T12577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.398608][T12577] RSP: 002b:00007f44adede038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 272.407082][T12577] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad185d29 [ 272.415106][T12577] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003 [ 272.423088][T12577] RBP: 00007f44adede090 R08: 0000000000000000 R09: 0000000000000000 [ 272.431121][T12577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 272.439147][T12577] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 272.447160][T12577] [ 272.459674][T12577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2489'. [ 272.468909][T12577] IPVS: Unknown mcast interface: vcan0 [ 273.123236][T12623] netlink: 'syz.4.2502': attribute type 4 has an invalid length. [ 273.271207][T12628] IPVS: Unknown mcast interface: vcan0 [ 273.585566][T12647] atomic_op ffff88805c4cc198 conn xmit_atomic 0000000000000000 [ 273.853098][T12659] IPVS: Unknown mcast interface: vcan0 [ 274.183157][T12677] atomic_op ffff888035ace998 conn xmit_atomic 0000000000000000 [ 274.421548][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.452745][T12691] __nla_validate_parse: 5 callbacks suppressed [ 274.452764][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.479370][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.488448][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.498233][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.512976][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.532752][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.552075][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.597034][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.629485][T12699] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 274.655255][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.665944][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.676602][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.695694][T12691] netlink: 'syz.4.2532': attribute type 3 has an invalid length. [ 274.724990][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.749971][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.761119][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 274.795759][T12691] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2532'. [ 275.041140][T12717] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 275.141242][T12717] 8021q: adding VLAN 0 to HW filter on device team0 [ 275.837463][T12761] 8021q: adding VLAN 0 to HW filter on device team0 [ 276.059282][T12769] erspan0: entered promiscuous mode [ 276.068584][T12769] batadv_slave_1: entered promiscuous mode [ 276.329967][T12782] syz.3.2568[12782] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 276.331877][T12782] syz.3.2568[12782] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 276.617197][T12797] validate_nla: 30 callbacks suppressed [ 276.617253][T12797] netlink: 'syz.1.2575': attribute type 20 has an invalid length. [ 276.763819][T12803] netlink: 'syz.2.2578': attribute type 4 has an invalid length. [ 276.955592][ T5845] Bluetooth: hci4: command 0x0405 tx timeout [ 277.243871][T12822] macvlan0: entered allmulticast mode [ 277.252309][T12822] veth1_vlan: entered allmulticast mode [ 277.320193][T12822] veth1_vlan: left allmulticast mode [ 277.399516][T12822] macvlan0 (unregistering): left allmulticast mode [ 278.184052][T12870] atomic_op ffff8880227e0198 conn xmit_atomic 0000000000000000 [ 278.368169][T10611] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 278.407208][T10611] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 278.901450][T12914] atomic_op ffff8880797cd198 conn xmit_atomic 0000000000000000 [ 279.569662][T12953] atomic_op ffff88805ee0c198 conn xmit_atomic 0000000000000000 [ 279.967823][T12978] __nla_validate_parse: 30 callbacks suppressed [ 279.967847][T12978] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2641'. [ 280.047804][T12980] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 280.331999][T12997] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2653'. [ 280.402851][T13001] wlan1: mtu greater than device maximum [ 281.142112][T13041] x_tables: duplicate underflow at hook 1 [ 281.216769][T13046] netlink: 16178 bytes leftover after parsing attributes in process `syz.3.2673'. [ 281.397120][T13058] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2677'. [ 281.877003][T13086] FAULT_INJECTION: forcing a failure. [ 281.877003][T13086] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 281.882189][T13085] netlink: 'syz.0.2684': attribute type 1 has an invalid length. [ 281.918221][T13086] CPU: 1 UID: 0 PID: 13086 Comm: syz.4.2686 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 281.929061][T13086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 281.939156][T13086] Call Trace: [ 281.942466][T13086] [ 281.945427][T13086] dump_stack_lvl+0x241/0x360 [ 281.950185][T13086] ? __pfx_dump_stack_lvl+0x10/0x10 [ 281.955450][T13086] ? __pfx__printk+0x10/0x10 [ 281.960102][T13086] should_fail_ex+0x3b0/0x4e0 [ 281.964839][T13086] _copy_from_user+0x2f/0xc0 [ 281.969480][T13086] move_addr_to_kernel+0x82/0x150 [ 281.974549][T13086] __sys_sendto+0x268/0x4c0 [ 281.979102][T13086] ? __pfx___sys_sendto+0x10/0x10 [ 281.984163][T13086] ? __mutex_unlock_slowpath+0x21e/0x790 [ 281.989869][T13086] ? __fget_files+0x2a/0x410 [ 281.994603][T13086] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 282.000640][T13086] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 282.007023][T13086] __x64_sys_sendto+0xde/0x100 [ 282.011832][T13086] do_syscall_64+0xf3/0x230 [ 282.016390][T13086] ? clear_bhb_loop+0x35/0x90 [ 282.021104][T13086] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.027027][T13086] RIP: 0033:0x7f0f22785d29 [ 282.031453][T13086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 282.051076][T13086] RSP: 002b:00007f0f23648038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 282.059516][T13086] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f22785d29 [ 282.067511][T13086] RDX: 0000000000034000 RSI: 0000000020000040 RDI: 0000000000000003 [ 282.075495][T13086] RBP: 00007f0f23648090 R08: 0000000020000100 R09: 000000000000001c [ 282.083474][T13086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 282.091482][T13086] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 282.099526][T13086] [ 282.498694][T13114] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2693'. [ 282.761894][T13129] infiniband syz1: set active [ 282.807291][T13134] netlink: 'syz.2.2697': attribute type 10 has an invalid length. [ 282.852960][T13135] netlink: 'syz.3.2702': attribute type 4 has an invalid length. [ 282.868210][T13137] atomic_op ffff88805d0d1998 conn xmit_atomic 0000000000000000 [ 282.930498][T13140] FAULT_INJECTION: forcing a failure. [ 282.930498][T13140] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 282.945532][T13140] CPU: 1 UID: 0 PID: 13140 Comm: syz.0.2703 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 282.956354][T13140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 282.966446][T13140] Call Trace: [ 282.969757][T13140] [ 282.972801][T13140] dump_stack_lvl+0x241/0x360 [ 282.977515][T13140] ? __pfx_dump_stack_lvl+0x10/0x10 [ 282.982737][T13140] ? __pfx__printk+0x10/0x10 [ 282.987358][T13140] ? __pfx_lock_release+0x10/0x10 [ 282.992407][T13140] should_fail_ex+0x3b0/0x4e0 [ 282.997207][T13140] _copy_from_iter+0x1e9/0x1c20 [ 283.002106][T13140] ? __virt_addr_valid+0x183/0x530 [ 283.007254][T13140] ? __alloc_skb+0x28f/0x440 [ 283.011859][T13140] ? __pfx__copy_from_iter+0x10/0x10 [ 283.017169][T13140] ? __virt_addr_valid+0x183/0x530 [ 283.022293][T13140] ? __virt_addr_valid+0x183/0x530 [ 283.027423][T13140] ? __virt_addr_valid+0x45f/0x530 [ 283.032553][T13140] ? __phys_addr_symbol+0x2f/0x70 [ 283.037591][T13140] ? __check_object_size+0x47a/0x730 [ 283.042893][T13140] netlink_sendmsg+0x73d/0xcb0 [ 283.047691][T13140] ? __pfx_netlink_sendmsg+0x10/0x10 [ 283.052995][T13140] ? aa_sock_msg_perm+0x91/0x160 [ 283.057951][T13140] ? __pfx_netlink_sendmsg+0x10/0x10 [ 283.063251][T13140] __sock_sendmsg+0x221/0x270 [ 283.067953][T13140] ____sys_sendmsg+0x52a/0x7e0 [ 283.072765][T13140] ? __pfx_____sys_sendmsg+0x10/0x10 [ 283.078068][T13140] ? __fget_files+0x2a/0x410 [ 283.082681][T13140] ? __fget_files+0x2a/0x410 [ 283.087299][T13140] __sys_sendmsg+0x269/0x350 [ 283.091913][T13140] ? __pfx_lock_release+0x10/0x10 [ 283.096956][T13140] ? __pfx___sys_sendmsg+0x10/0x10 [ 283.102089][T13140] ? __pfx_vfs_write+0x10/0x10 [ 283.106883][T13140] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 283.113228][T13140] ? do_syscall_64+0x100/0x230 [ 283.118015][T13140] ? do_syscall_64+0xb6/0x230 [ 283.122792][T13140] do_syscall_64+0xf3/0x230 [ 283.127377][T13140] ? clear_bhb_loop+0x35/0x90 [ 283.132143][T13140] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 283.138073][T13140] RIP: 0033:0x7f7339d85d29 [ 283.142511][T13140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 283.162160][T13140] RSP: 002b:00007f733ab10038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 283.170594][T13140] RAX: ffffffffffffffda RBX: 00007f7339f75fa0 RCX: 00007f7339d85d29 [ 283.178578][T13140] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000000000004 [ 283.186567][T13140] RBP: 00007f733ab10090 R08: 0000000000000000 R09: 0000000000000000 [ 283.194554][T13140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 283.202535][T13140] R13: 0000000000000000 R14: 00007f7339f75fa0 R15: 00007ffcbc469d58 [ 283.210534][T13140] [ 283.418064][T13150] pim6reg: left allmulticast mode [ 283.696428][T13165] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2711'. [ 283.934729][T13177] infiniband syz1: set active [ 284.008412][T13177] netlink: 'syz.2.2716': attribute type 10 has an invalid length. [ 284.129675][T13187] sit0: entered promiscuous mode [ 284.195681][T13187] netlink: 'syz.1.2718': attribute type 1 has an invalid length. [ 284.227233][T13187] netlink: 1 bytes leftover after parsing attributes in process `syz.1.2718'. [ 284.679866][T13220] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2728'. [ 285.132855][T13246] netlink: 'syz.1.2735': attribute type 4 has an invalid length. [ 285.805605][T13276] GUP no longer grows the stack in syz.1.2746 (13276): 20003000-2000a000 (20001000) [ 285.834181][T13281] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2747'. [ 285.850554][T13276] CPU: 1 UID: 0 PID: 13276 Comm: syz.1.2746 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 285.861383][T13276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 285.871487][T13276] Call Trace: [ 285.874804][T13276] [ 285.877774][T13276] dump_stack_lvl+0x241/0x360 [ 285.882510][T13276] ? __pfx_dump_stack_lvl+0x10/0x10 [ 285.887759][T13276] ? __pfx__printk+0x10/0x10 [ 285.892400][T13276] ? find_vma+0xf9/0x170 [ 285.896695][T13276] ? vma_is_secretmem+0xd/0x50 [ 285.901502][T13276] ? check_vma_flags+0x52b/0x5a0 [ 285.906485][T13276] __get_user_pages+0x4385/0x49e0 [ 285.911563][T13276] ? 0xffffffffa000095c [ 285.915801][T13276] ? __pfx___get_user_pages+0x10/0x10 [ 285.921240][T13276] __gup_longterm_locked+0x49a/0x17f0 [ 285.926642][T13276] ? __pfx___might_resched+0x10/0x10 [ 285.931955][T13276] ? __pfx___gup_longterm_locked+0x10/0x10 [ 285.937772][T13276] ? down_read+0x82b/0xa40 [ 285.942218][T13276] ? is_valid_gup_args+0x124/0x200 [ 285.947348][T13276] pin_user_pages+0x137/0x1f0 [ 285.952041][T13276] ? __pfx_pin_user_pages+0x10/0x10 [ 285.957247][T13276] ? trace_kmalloc+0x1f/0xd0 [ 285.961861][T13276] xdp_umem_create+0x978/0xf30 [ 285.966650][T13276] xsk_setsockopt+0x732/0x950 [ 285.971340][T13276] ? __pfx_xsk_setsockopt+0x10/0x10 [ 285.976556][T13276] ? __pfx_lock_acquire+0x10/0x10 [ 285.981590][T13276] ? aa_sock_opt_perm+0x79/0x120 [ 285.986541][T13276] ? __pfx_xsk_setsockopt+0x10/0x10 [ 285.991757][T13276] do_sock_setsockopt+0x3af/0x720 [ 285.996799][T13276] ? __pfx_do_sock_setsockopt+0x10/0x10 [ 286.002361][T13276] ? __fget_files+0x395/0x410 [ 286.007054][T13276] ? __fget_files+0x2a/0x410 [ 286.011668][T13276] __x64_sys_setsockopt+0x1ee/0x280 [ 286.016890][T13276] do_syscall_64+0xf3/0x230 [ 286.021413][T13276] ? clear_bhb_loop+0x35/0x90 [ 286.026102][T13276] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.032018][T13276] RIP: 0033:0x7f891b985d29 [ 286.036444][T13276] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.056155][T13276] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 286.064601][T13276] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 286.072625][T13276] RDX: 0000000000000004 RSI: 000000000000011b RDI: 0000000000000007 [ 286.080634][T13276] RBP: 00007f891ba01aa8 R08: 000000000000001c R09: 0000000000000000 [ 286.088620][T13276] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000 [ 286.096621][T13276] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 286.104638][T13276] [ 286.169794][T13290] FAULT_INJECTION: forcing a failure. [ 286.169794][T13290] name failslab, interval 1, probability 0, space 0, times 0 [ 286.181040][T13292] FAULT_INJECTION: forcing a failure. [ 286.181040][T13292] name failslab, interval 1, probability 0, space 0, times 0 [ 286.206775][T13290] CPU: 0 UID: 0 PID: 13290 Comm: syz.2.2750 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 286.217621][T13290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 286.227720][T13290] Call Trace: [ 286.231038][T13290] [ 286.233995][T13290] dump_stack_lvl+0x241/0x360 [ 286.238725][T13290] ? __pfx_dump_stack_lvl+0x10/0x10 [ 286.244023][T13290] ? __pfx__printk+0x10/0x10 [ 286.248661][T13290] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 286.254694][T13290] ? __pfx___might_resched+0x10/0x10 [ 286.260068][T13290] should_fail_ex+0x3b0/0x4e0 [ 286.264816][T13290] should_failslab+0xac/0x100 [ 286.269541][T13290] kmem_cache_alloc_node_noprof+0x77/0x380 [ 286.275372][T13290] ? __alloc_skb+0x1c3/0x440 [ 286.279979][T13290] __alloc_skb+0x1c3/0x440 [ 286.284410][T13290] ? __pfx___alloc_skb+0x10/0x10 [ 286.289359][T13290] ? netlink_autobind+0xd6/0x2f0 [ 286.294308][T13290] ? netlink_autobind+0x2b0/0x2f0 [ 286.299350][T13290] netlink_sendmsg+0x638/0xcb0 [ 286.304135][T13290] ? __pfx_netlink_sendmsg+0x10/0x10 [ 286.309436][T13290] ? aa_sock_msg_perm+0x91/0x160 [ 286.314387][T13290] ? __pfx_netlink_sendmsg+0x10/0x10 [ 286.319701][T13290] __sock_sendmsg+0x221/0x270 [ 286.324507][T13290] ____sys_sendmsg+0x52a/0x7e0 [ 286.329343][T13290] ? __pfx_____sys_sendmsg+0x10/0x10 [ 286.334653][T13290] ? __fget_files+0x2a/0x410 [ 286.339270][T13290] ? __fget_files+0x2a/0x410 [ 286.343883][T13290] __sys_sendmsg+0x269/0x350 [ 286.348490][T13290] ? __pfx_lock_release+0x10/0x10 [ 286.353528][T13290] ? __pfx___sys_sendmsg+0x10/0x10 [ 286.358932][T13290] ? __pfx_vfs_write+0x10/0x10 [ 286.363729][T13290] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.370076][T13290] ? do_syscall_64+0x100/0x230 [ 286.374861][T13290] ? do_syscall_64+0xb6/0x230 [ 286.379659][T13290] do_syscall_64+0xf3/0x230 [ 286.384184][T13290] ? clear_bhb_loop+0x35/0x90 [ 286.388874][T13290] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.394794][T13290] RIP: 0033:0x7f44ad185d29 [ 286.399236][T13290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.418855][T13290] RSP: 002b:00007f44adede038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 286.427285][T13290] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad185d29 [ 286.435266][T13290] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 286.443244][T13290] RBP: 00007f44adede090 R08: 0000000000000000 R09: 0000000000000000 [ 286.451221][T13290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.459200][T13290] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 286.467197][T13290] [ 286.491411][T13292] CPU: 0 UID: 0 PID: 13292 Comm: syz.3.2751 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 286.502252][T13292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 286.512351][T13292] Call Trace: [ 286.515670][T13292] [ 286.518634][T13292] dump_stack_lvl+0x241/0x360 [ 286.523365][T13292] ? __pfx_dump_stack_lvl+0x10/0x10 [ 286.528613][T13292] ? __pfx__printk+0x10/0x10 [ 286.533261][T13292] ? __kmalloc_cache_noprof+0x48/0x390 [ 286.538777][T13292] ? __pfx___might_resched+0x10/0x10 [ 286.544116][T13292] should_fail_ex+0x3b0/0x4e0 [ 286.548854][T13292] should_failslab+0xac/0x100 [ 286.553582][T13292] __kmalloc_cache_noprof+0x70/0x390 [ 286.558914][T13292] ? sctp_association_new+0x8a/0x2400 [ 286.564325][T13292] ? __asan_memcpy+0x40/0x70 [ 286.568967][T13292] sctp_association_new+0x8a/0x2400 [ 286.571281][T13301] netlink: 'syz.1.2753': attribute type 4 has an invalid length. [ 286.574198][T13292] ? sctp_do_bind+0x679/0x950 [ 286.574238][T13292] ? __ipv6_addr_type+0x23c/0x2f0 [ 286.591697][T13292] sctp_connect_new_asoc+0x2d8/0x6c0 [ 286.597045][T13292] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 286.602889][T13292] ? sctp_sendmsg+0xbb9/0x3520 [ 286.607678][T13292] ? sctp_endpoint_lookup_assoc+0xc9/0x250 [ 286.613494][T13292] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 286.619072][T13292] sctp_sendmsg+0x219a/0x3520 [ 286.623801][T13292] ? __pfx_sctp_sendmsg+0x10/0x10 [ 286.628842][T13292] ? __pfx_aa_sk_perm+0x10/0x10 [ 286.633716][T13292] ? inet_sendmsg+0x330/0x390 [ 286.638411][T13292] __sock_sendmsg+0x1a6/0x270 [ 286.643109][T13292] __sys_sendto+0x363/0x4c0 [ 286.647630][T13292] ? __pfx___sys_sendto+0x10/0x10 [ 286.652667][T13292] ? __mutex_unlock_slowpath+0x21e/0x790 [ 286.658326][T13292] ? __fget_files+0x2a/0x410 [ 286.662944][T13292] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 286.668940][T13292] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 286.675287][T13292] __x64_sys_sendto+0xde/0x100 [ 286.680062][T13292] do_syscall_64+0xf3/0x230 [ 286.684602][T13292] ? clear_bhb_loop+0x35/0x90 [ 286.689292][T13292] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.695203][T13292] RIP: 0033:0x7f203d585d29 [ 286.699636][T13292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.719250][T13292] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 286.727681][T13292] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 286.735659][T13292] RDX: 0000000000034000 RSI: 0000000020000040 RDI: 0000000000000003 [ 286.743640][T13292] RBP: 00007f203b3f6090 R08: 0000000020000100 R09: 000000000000001c [ 286.751647][T13292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.759628][T13292] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 286.767625][T13292] [ 287.224223][T13323] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 287.482851][T13336] netlink: 'syz.0.2768': attribute type 10 has an invalid length. [ 287.492420][T13336] 8021q: adding VLAN 0 to HW filter on device team0 [ 287.643746][T13342] tipc: Enabling of bearer rejected, media not registered [ 288.449379][T13388] atomic_op ffff888035b7a998 conn xmit_atomic 0000000000000000 [ 288.458810][T13389] FAULT_INJECTION: forcing a failure. [ 288.458810][T13389] name failslab, interval 1, probability 0, space 0, times 0 [ 288.516552][T13389] CPU: 0 UID: 0 PID: 13389 Comm: syz.1.2789 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 288.527387][T13389] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 288.537519][T13389] Call Trace: [ 288.540839][T13389] [ 288.543830][T13389] dump_stack_lvl+0x241/0x360 [ 288.548568][T13389] ? __pfx_dump_stack_lvl+0x10/0x10 [ 288.553820][T13389] ? __pfx__printk+0x10/0x10 [ 288.558458][T13389] ? __kmalloc_cache_noprof+0x48/0x390 [ 288.563972][T13389] ? __pfx___might_resched+0x10/0x10 [ 288.569307][T13389] should_fail_ex+0x3b0/0x4e0 [ 288.574045][T13389] should_failslab+0xac/0x100 [ 288.578777][T13389] __kmalloc_cache_noprof+0x70/0x390 [ 288.584124][T13389] ? sctp_transport_new+0x7e/0x5d0 [ 288.589287][T13389] ? sctp_copy_one_addr+0x341/0x680 [ 288.594545][T13389] sctp_transport_new+0x7e/0x5d0 [ 288.599539][T13389] sctp_assoc_add_peer+0x228/0x15c0 [ 288.604799][T13389] ? sctp_bind_addr_copy+0x36c/0x3b0 [ 288.610144][T13389] sctp_connect_new_asoc+0x31d/0x6c0 [ 288.615481][T13389] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 288.621334][T13389] ? sctp_sendmsg+0xbb9/0x3520 [ 288.626139][T13389] ? sctp_endpoint_lookup_assoc+0x7c/0x250 [ 288.631968][T13389] ? sctp_endpoint_lookup_assoc+0x217/0x250 [ 288.637907][T13389] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 288.643480][T13389] sctp_sendmsg+0x219a/0x3520 [ 288.648184][T13389] ? __pfx_sctp_sendmsg+0x10/0x10 [ 288.653240][T13389] ? __pfx_aa_sk_perm+0x10/0x10 [ 288.658112][T13389] ? inet_sendmsg+0x330/0x390 [ 288.662805][T13389] __sock_sendmsg+0x1a6/0x270 [ 288.667504][T13389] __sys_sendto+0x363/0x4c0 [ 288.672051][T13389] ? __pfx___sys_sendto+0x10/0x10 [ 288.677178][T13389] ? __mutex_unlock_slowpath+0x21e/0x790 [ 288.682870][T13389] ? __fget_files+0x2a/0x410 [ 288.687492][T13389] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 288.693492][T13389] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 288.699928][T13389] __x64_sys_sendto+0xde/0x100 [ 288.704709][T13389] do_syscall_64+0xf3/0x230 [ 288.709234][T13389] ? clear_bhb_loop+0x35/0x90 [ 288.713926][T13389] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.719840][T13389] RIP: 0033:0x7f891b985d29 [ 288.724269][T13389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.743894][T13389] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 288.752326][T13389] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 288.760310][T13389] RDX: 0000000000034000 RSI: 0000000020000040 RDI: 0000000000000003 [ 288.768290][T13389] RBP: 00007f891c717090 R08: 0000000020000100 R09: 000000000000001c [ 288.776273][T13389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 288.784255][T13389] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 288.792252][T13389] [ 288.981918][T13407] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2795'. [ 289.012337][T13407] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2795'. [ 289.211599][T13419] netlink: 'syz.1.2802': attribute type 4 has an invalid length. [ 289.289286][T13424] netlink: 'syz.3.2804': attribute type 10 has an invalid length. [ 289.422852][T13431] FAULT_INJECTION: forcing a failure. [ 289.422852][T13431] name failslab, interval 1, probability 0, space 0, times 0 [ 289.436814][T13431] CPU: 0 UID: 0 PID: 13431 Comm: syz.1.2808 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 289.447723][T13431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 289.457819][T13431] Call Trace: [ 289.461147][T13431] [ 289.464099][T13431] dump_stack_lvl+0x241/0x360 [ 289.468804][T13431] ? __pfx_dump_stack_lvl+0x10/0x10 [ 289.474023][T13431] ? __pfx__printk+0x10/0x10 [ 289.478631][T13431] ? __kmalloc_cache_noprof+0x48/0x390 [ 289.484107][T13431] ? __pfx___might_resched+0x10/0x10 [ 289.489408][T13431] should_fail_ex+0x3b0/0x4e0 [ 289.494113][T13431] should_failslab+0xac/0x100 [ 289.498809][T13431] __kmalloc_cache_noprof+0x70/0x390 [ 289.504114][T13431] ? sctp_stream_init_ext+0x56/0x180 [ 289.509419][T13431] sctp_stream_init_ext+0x56/0x180 [ 289.514578][T13431] sctp_sendmsg_to_asoc+0x12fd/0x1800 [ 289.519960][T13431] ? sctp_v6_to_sk_saddr+0x101/0x1c0 [ 289.525261][T13431] ? __asan_memcpy+0x40/0x70 [ 289.529860][T13431] ? sctp_assoc_add_peer+0xe3c/0x15c0 [ 289.535261][T13431] ? __pfx_sctp_sendmsg_to_asoc+0x10/0x10 [ 289.540990][T13431] ? sctp_connect_new_asoc+0x3fe/0x6c0 [ 289.546469][T13431] ? __pfx_sctp_connect_new_asoc+0x10/0x10 [ 289.552285][T13431] ? sctp_sendmsg+0xbb9/0x3520 [ 289.557062][T13431] ? sctp_endpoint_lookup_assoc+0x7c/0x250 [ 289.562877][T13431] ? sctp_endpoint_lookup_assoc+0x217/0x250 [ 289.568780][T13431] ? bpf_lsm_sctp_bind_connect+0x9/0x10 [ 289.574345][T13431] sctp_sendmsg+0x1bc3/0x3520 [ 289.579043][T13431] ? __pfx_sctp_sendmsg+0x10/0x10 [ 289.584101][T13431] ? __pfx_aa_sk_perm+0x10/0x10 [ 289.588979][T13431] ? inet_sendmsg+0x330/0x390 [ 289.593668][T13431] __sock_sendmsg+0x1a6/0x270 [ 289.598369][T13431] __sys_sendto+0x363/0x4c0 [ 289.602885][T13431] ? __pfx___sys_sendto+0x10/0x10 [ 289.607929][T13431] ? __mutex_unlock_slowpath+0x21e/0x790 [ 289.613585][T13431] ? __fget_files+0x2a/0x410 [ 289.618198][T13431] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 289.624193][T13431] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 289.630541][T13431] __x64_sys_sendto+0xde/0x100 [ 289.635319][T13431] do_syscall_64+0xf3/0x230 [ 289.639846][T13431] ? clear_bhb_loop+0x35/0x90 [ 289.644544][T13431] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.650458][T13431] RIP: 0033:0x7f891b985d29 [ 289.654883][T13431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.674503][T13431] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 289.682931][T13431] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 289.690912][T13431] RDX: 0000000000034000 RSI: 0000000020000040 RDI: 0000000000000003 [ 289.698980][T13431] RBP: 00007f891c717090 R08: 0000000020000100 R09: 000000000000001c [ 289.706957][T13431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 289.714932][T13431] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 289.722924][T13431] [ 290.166337][T13455] netlink: 'syz.1.2817': attribute type 4 has an invalid length. [ 290.640087][T13480] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2827'. [ 290.719555][T13483] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2828'. [ 290.729095][T13485] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2829'. [ 290.903150][T13490] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2831'. [ 291.134950][T13500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2835'. [ 291.208034][T13500] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2835'. [ 291.482759][T13517] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2840'. [ 291.568415][T13520] FAULT_INJECTION: forcing a failure. [ 291.568415][T13520] name failslab, interval 1, probability 0, space 0, times 0 [ 291.605323][T13520] CPU: 0 UID: 0 PID: 13520 Comm: syz.2.2842 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 291.616161][T13520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 291.626272][T13520] Call Trace: [ 291.629581][T13520] [ 291.632542][T13520] dump_stack_lvl+0x241/0x360 [ 291.637275][T13520] ? __pfx_dump_stack_lvl+0x10/0x10 [ 291.642525][T13520] ? __pfx__printk+0x10/0x10 [ 291.647168][T13520] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 291.653201][T13520] ? __pfx___might_resched+0x10/0x10 [ 291.658538][T13520] should_fail_ex+0x3b0/0x4e0 [ 291.663278][T13520] should_failslab+0xac/0x100 [ 291.668011][T13520] kmem_cache_alloc_node_noprof+0x77/0x380 [ 291.673844][T13520] ? __alloc_skb+0x1c3/0x440 [ 291.678454][T13520] __alloc_skb+0x1c3/0x440 [ 291.682883][T13520] ? __pfx___alloc_skb+0x10/0x10 [ 291.687830][T13520] ? netlink_autobind+0xd6/0x2f0 [ 291.692777][T13520] ? netlink_autobind+0x2b0/0x2f0 [ 291.697817][T13520] netlink_sendmsg+0x638/0xcb0 [ 291.702608][T13520] ? __pfx_netlink_sendmsg+0x10/0x10 [ 291.707904][T13520] ? aa_sock_msg_perm+0x91/0x160 [ 291.712856][T13520] ? __pfx_netlink_sendmsg+0x10/0x10 [ 291.718159][T13520] __sock_sendmsg+0x221/0x270 [ 291.722860][T13520] ____sys_sendmsg+0x52a/0x7e0 [ 291.727642][T13520] ? __pfx_____sys_sendmsg+0x10/0x10 [ 291.732935][T13520] ? __fget_files+0x2a/0x410 [ 291.737541][T13520] ? __fget_files+0x2a/0x410 [ 291.742169][T13520] __sys_sendmsg+0x269/0x350 [ 291.746791][T13520] ? __pfx_lock_release+0x10/0x10 [ 291.751833][T13520] ? __pfx___sys_sendmsg+0x10/0x10 [ 291.756970][T13520] ? __pfx_vfs_write+0x10/0x10 [ 291.761762][T13520] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 291.768108][T13520] ? do_syscall_64+0x100/0x230 [ 291.772895][T13520] ? do_syscall_64+0xb6/0x230 [ 291.777590][T13520] do_syscall_64+0xf3/0x230 [ 291.782118][T13520] ? clear_bhb_loop+0x35/0x90 [ 291.786805][T13520] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 291.792722][T13520] RIP: 0033:0x7f44ad185d29 [ 291.797158][T13520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 291.816773][T13520] RSP: 002b:00007f44adede038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 291.825202][T13520] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad185d29 [ 291.833188][T13520] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000b [ 291.841167][T13520] RBP: 00007f44adede090 R08: 0000000000000000 R09: 0000000000000000 [ 291.849144][T13520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 291.857123][T13520] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 291.865139][T13520] [ 292.031097][T13537] netlink: 52 bytes leftover after parsing attributes in process `syz.2.2847'. [ 292.574844][T13564] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 292.631789][T13567] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2859'. [ 292.654736][T13567] IPVS: Unknown mcast interface: vcan0 [ 293.077145][T13590] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2874'. [ 293.115408][T13590] IPVS: Unknown mcast interface: vcan0 [ 293.266210][T13602] FAULT_INJECTION: forcing a failure. [ 293.266210][T13602] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 293.286432][T13596] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2875'. [ 293.307434][T13602] CPU: 0 UID: 0 PID: 13602 Comm: syz.0.2877 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 293.318274][T13602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 293.327276][T13596] netlink: 144 bytes leftover after parsing attributes in process `syz.1.2875'. [ 293.328344][T13602] Call Trace: [ 293.328358][T13602] [ 293.343624][T13602] dump_stack_lvl+0x241/0x360 [ 293.348447][T13602] ? __pfx_dump_stack_lvl+0x10/0x10 [ 293.353691][T13602] ? __pfx__printk+0x10/0x10 [ 293.358336][T13602] ? __pfx_lock_release+0x10/0x10 [ 293.363426][T13602] should_fail_ex+0x3b0/0x4e0 [ 293.368171][T13602] _copy_from_iter+0x1e9/0x1c20 [ 293.373075][T13602] ? __virt_addr_valid+0x183/0x530 [ 293.378249][T13602] ? __alloc_skb+0x28f/0x440 [ 293.382876][T13602] ? __pfx__copy_from_iter+0x10/0x10 [ 293.388216][T13602] ? __virt_addr_valid+0x183/0x530 [ 293.393400][T13602] ? __virt_addr_valid+0x183/0x530 [ 293.398561][T13602] ? __virt_addr_valid+0x45f/0x530 [ 293.403740][T13602] ? __phys_addr_symbol+0x2f/0x70 [ 293.408816][T13602] ? __check_object_size+0x47a/0x730 [ 293.414156][T13602] netlink_sendmsg+0x73d/0xcb0 [ 293.418974][T13602] ? __pfx_netlink_sendmsg+0x10/0x10 [ 293.424313][T13602] ? aa_sock_msg_perm+0x91/0x160 [ 293.429299][T13602] ? __pfx_netlink_sendmsg+0x10/0x10 [ 293.434622][T13602] __sock_sendmsg+0x221/0x270 [ 293.439344][T13602] ____sys_sendmsg+0x52a/0x7e0 [ 293.444166][T13602] ? __pfx_____sys_sendmsg+0x10/0x10 [ 293.449497][T13602] ? __fget_files+0x2a/0x410 [ 293.454147][T13602] ? __fget_files+0x2a/0x410 [ 293.458791][T13602] __sys_sendmsg+0x269/0x350 [ 293.463431][T13602] ? __pfx_lock_release+0x10/0x10 [ 293.468505][T13602] ? __pfx___sys_sendmsg+0x10/0x10 [ 293.473680][T13602] ? __pfx_vfs_write+0x10/0x10 [ 293.478518][T13602] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 293.484896][T13602] ? do_syscall_64+0x100/0x230 [ 293.489718][T13602] ? do_syscall_64+0xb6/0x230 [ 293.494451][T13602] do_syscall_64+0xf3/0x230 [ 293.499010][T13602] ? clear_bhb_loop+0x35/0x90 [ 293.503738][T13602] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.509679][T13602] RIP: 0033:0x7f7339d85d29 [ 293.514128][T13602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 293.533775][T13602] RSP: 002b:00007f733ab10038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 293.542245][T13602] RAX: ffffffffffffffda RBX: 00007f7339f75fa0 RCX: 00007f7339d85d29 [ 293.550260][T13602] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 000000000000000b [ 293.558277][T13602] RBP: 00007f733ab10090 R08: 0000000000000000 R09: 0000000000000000 [ 293.566292][T13602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 293.574303][T13602] R13: 0000000000000000 R14: 00007f7339f75fa0 R15: 00007ffcbc469d58 [ 293.582029][T13617] netlink: 'syz.3.2884': attribute type 126 has an invalid length. [ 293.582306][T13602] [ 293.910445][T13635] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2890'. [ 293.950582][T13635] IPVS: Unknown mcast interface: vcan0 [ 294.161447][T13653] FAULT_INJECTION: forcing a failure. [ 294.161447][T13653] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 294.177472][T13653] CPU: 1 UID: 0 PID: 13653 Comm: syz.4.2896 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 294.182480][T13654] IPv6: sit1: Disabled Multicast RS [ 294.188273][T13653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 294.188294][T13653] Call Trace: [ 294.188303][T13653] [ 294.188314][T13653] dump_stack_lvl+0x241/0x360 [ 294.188355][T13653] ? __pfx_dump_stack_lvl+0x10/0x10 [ 294.188388][T13653] ? __pfx__printk+0x10/0x10 [ 294.188426][T13653] ? snprintf+0xda/0x120 [ 294.188456][T13653] should_fail_ex+0x3b0/0x4e0 [ 294.188498][T13653] _copy_to_user+0x31/0xb0 [ 294.188534][T13653] simple_read_from_buffer+0xca/0x150 [ 294.188567][T13653] proc_fail_nth_read+0x1e9/0x250 [ 294.188600][T13653] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 294.188632][T13653] ? rw_verify_area+0x55e/0x6f0 [ 294.188666][T13653] ? __pfx_proc_fail_nth_read+0x10/0x10 [ 294.188696][T13653] vfs_read+0x1fc/0xb70 [ 294.188724][T13653] ? __pfx___mutex_lock+0x10/0x10 [ 294.188759][T13653] ? __pfx_vfs_read+0x10/0x10 [ 294.188787][T13653] ? __fget_files+0x2a/0x410 [ 294.188819][T13653] ? __fget_files+0x395/0x410 [ 294.188849][T13653] ? __fget_files+0x2a/0x410 [ 294.292154][T13653] ksys_read+0x18f/0x2b0 [ 294.296419][T13653] ? __pfx_ksys_read+0x10/0x10 [ 294.301194][T13653] ? do_syscall_64+0x100/0x230 [ 294.305982][T13653] ? do_syscall_64+0xb6/0x230 [ 294.310687][T13653] do_syscall_64+0xf3/0x230 [ 294.315210][T13653] ? clear_bhb_loop+0x35/0x90 [ 294.319925][T13653] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 294.325856][T13653] RIP: 0033:0x7f0f2278473c [ 294.330316][T13653] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 294.349948][T13653] RSP: 002b:00007f0f23648030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 294.358471][T13653] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f2278473c [ 294.366464][T13653] RDX: 000000000000000f RSI: 00007f0f236480a0 RDI: 0000000000000005 [ 294.374448][T13653] RBP: 00007f0f23648090 R08: 0000000000000000 R09: 0000000000000000 [ 294.382448][T13653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 294.390451][T13653] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 294.398457][T13653] [ 294.444942][T13654] sit1: entered allmulticast mode [ 294.596050][T13663] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 294.643862][T13663] netlink: 'syz.4.2901': attribute type 10 has an invalid length. [ 294.684828][T13663] 8021q: adding VLAN 0 to HW filter on device team0 [ 294.911291][T13679] IPVS: Unknown mcast interface: vcan0 [ 295.298619][T13706] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 295.321534][T13706] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 295.620659][T13722] xt_TPROXY: Can be used only with -p tcp or -p udp [ 296.353460][T13753] infiniband syz1: set active [ 296.402332][T13759] netlink: 'syz.2.2937': attribute type 10 has an invalid length. [ 296.560683][T13762] batadv_slave_0: entered promiscuous mode [ 296.568484][T13762] batadv_slave_0: left promiscuous mode [ 296.574683][T13763] __nla_validate_parse: 5 callbacks suppressed [ 296.574702][T13763] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2944'. [ 296.615347][T13762] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2944'. [ 296.636318][T13769] FAULT_INJECTION: forcing a failure. [ 296.636318][T13769] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 296.692416][T13769] CPU: 0 UID: 0 PID: 13769 Comm: syz.1.2943 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 296.703351][T13769] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 296.713538][T13769] Call Trace: [ 296.716850][T13769] [ 296.719814][T13769] dump_stack_lvl+0x241/0x360 [ 296.724552][T13769] ? __pfx_dump_stack_lvl+0x10/0x10 [ 296.729807][T13769] ? __pfx__printk+0x10/0x10 [ 296.734456][T13769] ? __pfx_lock_release+0x10/0x10 [ 296.739543][T13769] should_fail_ex+0x3b0/0x4e0 [ 296.741042][T13773] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.2943'. [ 296.744261][T13769] _copy_from_user+0x2f/0xc0 [ 296.758512][T13769] copy_msghdr_from_user+0xae/0x680 [ 296.763787][T13769] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 296.769653][T13769] ? __fget_files+0x2a/0x410 [ 296.774302][T13769] ? __fget_files+0x2a/0x410 [ 296.778951][T13769] __sys_recvmsg+0x200/0x390 [ 296.783600][T13769] ? __pfx___sys_recvmsg+0x10/0x10 [ 296.788767][T13769] ? __mutex_unlock_slowpath+0x21e/0x790 [ 296.794474][T13769] ? __fget_files+0x2a/0x410 [ 296.799138][T13769] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 296.805518][T13769] ? do_syscall_64+0x100/0x230 [ 296.810345][T13769] ? do_syscall_64+0xb6/0x230 [ 296.815081][T13769] do_syscall_64+0xf3/0x230 [ 296.819641][T13769] ? clear_bhb_loop+0x35/0x90 [ 296.824363][T13769] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 296.830388][T13769] RIP: 0033:0x7f891b985d29 [ 296.834845][T13769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 296.854500][T13769] RSP: 002b:00007f891c717038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 296.862967][T13769] RAX: ffffffffffffffda RBX: 00007f891bb75fa0 RCX: 00007f891b985d29 [ 296.870983][T13769] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003 [ 296.878258][T13781] netlink: 'syz.4.2948': attribute type 4 has an invalid length. [ 296.878975][T13769] RBP: 00007f891c717090 R08: 0000000000000000 R09: 0000000000000000 [ 296.878997][T13769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 296.879013][T13769] R13: 0000000000000000 R14: 00007f891bb75fa0 R15: 00007ffc06c62888 [ 296.879047][T13769] [ 297.176350][T13793] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 297.598553][T13816] netlink: 'syz.1.2961': attribute type 4 has an invalid length. [ 297.612455][T13817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2962'. [ 297.627670][T13817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2962'. [ 297.643143][T13817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2962'. [ 297.652200][T13817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2962'. [ 297.661397][T13817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2962'. [ 297.707380][T13826] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2963'. [ 297.736325][T13819] FAULT_INJECTION: forcing a failure. [ 297.736325][T13819] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 297.754427][T13819] CPU: 0 UID: 0 PID: 13819 Comm: syz.2.2963 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 297.765267][T13819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 297.775367][T13819] Call Trace: [ 297.778677][T13819] [ 297.781639][T13819] dump_stack_lvl+0x241/0x360 [ 297.786366][T13819] ? __pfx_dump_stack_lvl+0x10/0x10 [ 297.791623][T13819] ? __pfx__printk+0x10/0x10 [ 297.796263][T13819] ? __pfx_lock_release+0x10/0x10 [ 297.801341][T13819] should_fail_ex+0x3b0/0x4e0 [ 297.806080][T13819] _copy_to_iter+0x440/0x1c50 [ 297.810810][T13819] ? __pfx__copy_to_iter+0x10/0x10 [ 297.815946][T13819] ? __virt_addr_valid+0x183/0x530 [ 297.821079][T13819] ? __virt_addr_valid+0x183/0x530 [ 297.826231][T13819] ? __virt_addr_valid+0x45f/0x530 [ 297.831360][T13819] ? __check_object_size+0x47a/0x730 [ 297.836682][T13819] __skb_datagram_iter+0x107/0x900 [ 297.841837][T13819] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 297.847510][T13819] skb_copy_datagram_iter+0xd1/0x250 [ 297.852846][T13819] netlink_recvmsg+0x2d0/0x11d0 [ 297.857754][T13819] ? __pfx_netlink_recvmsg+0x10/0x10 [ 297.863074][T13819] ? __pfx_aa_sk_perm+0x10/0x10 [ 297.867955][T13819] ? iovec_from_user+0x1b4/0x240 [ 297.872942][T13819] ? aa_sock_msg_perm+0x91/0x160 [ 297.877901][T13819] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 297.883205][T13819] ? __pfx_netlink_recvmsg+0x10/0x10 [ 297.888597][T13819] sock_recvmsg+0x22f/0x280 [ 297.893123][T13819] ____sys_recvmsg+0x1c6/0x480 [ 297.897904][T13819] ? __pfx_____sys_recvmsg+0x10/0x10 [ 297.903221][T13819] __sys_recvmsg+0x291/0x390 [ 297.907829][T13819] ? __pfx___sys_recvmsg+0x10/0x10 [ 297.912955][T13819] ? __mutex_unlock_slowpath+0x21e/0x790 [ 297.918640][T13819] ? __fget_files+0x2a/0x410 [ 297.923258][T13819] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 297.929601][T13819] ? do_syscall_64+0x100/0x230 [ 297.934388][T13819] ? do_syscall_64+0xb6/0x230 [ 297.939096][T13819] do_syscall_64+0xf3/0x230 [ 297.943618][T13819] ? clear_bhb_loop+0x35/0x90 [ 297.948312][T13819] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 297.954239][T13819] RIP: 0033:0x7f44ad185d29 [ 297.958667][T13819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 297.978292][T13819] RSP: 002b:00007f44adede038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 297.986741][T13819] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad185d29 [ 297.994722][T13819] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003 [ 298.002711][T13819] RBP: 00007f44adede090 R08: 0000000000000000 R09: 0000000000000000 [ 298.010694][T13819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 298.018709][T13819] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 298.026729][T13819] [ 298.075411][T13819] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2963'. [ 298.580613][T13862] netlink: 'syz.4.2978': attribute type 4 has an invalid length. [ 298.934004][T13877] FAULT_INJECTION: forcing a failure. [ 298.934004][T13877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 298.958700][T13877] CPU: 0 UID: 0 PID: 13877 Comm: syz.4.2981 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 298.969534][T13877] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 298.979681][T13877] Call Trace: [ 298.983005][T13877] [ 298.985979][T13877] dump_stack_lvl+0x241/0x360 [ 298.990717][T13877] ? __pfx_dump_stack_lvl+0x10/0x10 [ 298.995971][T13877] ? __pfx__printk+0x10/0x10 [ 299.000612][T13877] ? __pfx_lock_release+0x10/0x10 [ 299.005695][T13877] should_fail_ex+0x3b0/0x4e0 [ 299.010435][T13877] _copy_from_user+0x2f/0xc0 [ 299.015074][T13877] copy_msghdr_from_user+0xae/0x680 [ 299.020324][T13877] ? __pfx_copy_msghdr_from_user+0x10/0x10 [ 299.026175][T13877] ? __fget_files+0x2a/0x410 [ 299.030818][T13877] ? __fget_files+0x2a/0x410 [ 299.035464][T13877] __sys_sendmsg+0x209/0x350 [ 299.040107][T13877] ? __pfx_lock_release+0x10/0x10 [ 299.045186][T13877] ? __pfx___sys_sendmsg+0x10/0x10 [ 299.050362][T13877] ? __pfx_vfs_write+0x10/0x10 [ 299.055203][T13877] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 299.061615][T13877] ? do_syscall_64+0x100/0x230 [ 299.066433][T13877] ? do_syscall_64+0xb6/0x230 [ 299.071164][T13877] do_syscall_64+0xf3/0x230 [ 299.075719][T13877] ? clear_bhb_loop+0x35/0x90 [ 299.080442][T13877] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 299.086390][T13877] RIP: 0033:0x7f0f22785d29 [ 299.090843][T13877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 299.110499][T13877] RSP: 002b:00007f0f23648038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 299.118977][T13877] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f22785d29 [ 299.126999][T13877] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 299.135014][T13877] RBP: 00007f0f23648090 R08: 0000000000000000 R09: 0000000000000000 [ 299.143033][T13877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 299.151049][T13877] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 299.159080][T13877] [ 299.400931][T13901] IPVS: set_ctl: invalid protocol: 47 172.20.20.170:20003 [ 299.555509][T13907] IPVS: fo: UDP 224.0.0.2:0 - no destination available [ 299.657445][T13907] netlink: 'syz.1.2993': attribute type 10 has an invalid length. [ 299.781493][T13919] wlan1: mtu greater than device maximum [ 299.920960][T13925] FAULT_INJECTION: forcing a failure. [ 299.920960][T13925] name failslab, interval 1, probability 0, space 0, times 0 [ 299.951653][T13925] CPU: 1 UID: 0 PID: 13925 Comm: syz.0.3000 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 299.962485][T13925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 299.972583][T13925] Call Trace: [ 299.975889][T13925] [ 299.978836][T13925] dump_stack_lvl+0x241/0x360 [ 299.983539][T13925] ? __pfx_dump_stack_lvl+0x10/0x10 [ 299.988758][T13925] ? __pfx__printk+0x10/0x10 [ 299.993368][T13925] ? kmem_cache_alloc_node_noprof+0x4f/0x380 [ 299.999372][T13925] ? __pfx___might_resched+0x10/0x10 [ 300.004686][T13925] should_fail_ex+0x3b0/0x4e0 [ 300.009411][T13925] should_failslab+0xac/0x100 [ 300.014110][T13925] kmem_cache_alloc_node_noprof+0x77/0x380 [ 300.019936][T13925] ? __alloc_skb+0x1c3/0x440 [ 300.024544][T13925] __alloc_skb+0x1c3/0x440 [ 300.028976][T13925] ? __pfx___alloc_skb+0x10/0x10 [ 300.033924][T13925] ? netlink_autobind+0xd6/0x2f0 [ 300.038874][T13925] ? netlink_autobind+0x2b0/0x2f0 [ 300.043912][T13925] netlink_sendmsg+0x638/0xcb0 [ 300.048699][T13925] ? __pfx_netlink_sendmsg+0x10/0x10 [ 300.054001][T13925] ? aa_sock_msg_perm+0x91/0x160 [ 300.058953][T13925] ? __pfx_netlink_sendmsg+0x10/0x10 [ 300.064250][T13925] __sock_sendmsg+0x221/0x270 [ 300.068949][T13925] ____sys_sendmsg+0x52a/0x7e0 [ 300.073737][T13925] ? __pfx_____sys_sendmsg+0x10/0x10 [ 300.079038][T13925] ? __fget_files+0x2a/0x410 [ 300.083650][T13925] ? __fget_files+0x2a/0x410 [ 300.088267][T13925] __sys_sendmsg+0x269/0x350 [ 300.092874][T13925] ? __pfx_lock_release+0x10/0x10 [ 300.097913][T13925] ? __pfx___sys_sendmsg+0x10/0x10 [ 300.103048][T13925] ? __pfx_vfs_write+0x10/0x10 [ 300.107847][T13925] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 300.114185][T13925] ? do_syscall_64+0x100/0x230 [ 300.118971][T13925] ? do_syscall_64+0xb6/0x230 [ 300.123669][T13925] do_syscall_64+0xf3/0x230 [ 300.128190][T13925] ? clear_bhb_loop+0x35/0x90 [ 300.132877][T13925] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 300.138790][T13925] RIP: 0033:0x7f7339d85d29 [ 300.143317][T13925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 300.162965][T13925] RSP: 002b:00007f733ab10038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 300.171405][T13925] RAX: ffffffffffffffda RBX: 00007f7339f75fa0 RCX: 00007f7339d85d29 [ 300.179394][T13925] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 300.187380][T13925] RBP: 00007f733ab10090 R08: 0000000000000000 R09: 0000000000000000 [ 300.195361][T13925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 300.203341][T13925] R13: 0000000000000000 R14: 00007f7339f75fa0 R15: 00007ffcbc469d58 [ 300.211338][T13925] [ 300.439806][T13940] IPVS: Unknown mcast interface: vcan0 [ 300.975553][T13969] IPVS: Unknown mcast interface: vcan0 [ 301.112521][T13973] macsec0: entered promiscuous mode [ 301.138493][T13977] xt_CT: No such helper "snmp_trap" [ 301.425919][T13996] openvswitch: netlink: Actions may not be safe on all matching packets [ 301.496378][T14000] netlink: 'syz.0.3029': attribute type 1 has an invalid length. [ 301.513840][T14000] netlink: 'syz.0.3029': attribute type 3 has an invalid length. [ 301.746984][T14015] FAULT_INJECTION: forcing a failure. [ 301.746984][T14015] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 301.771458][T14017] __nla_validate_parse: 7 callbacks suppressed [ 301.771478][T14017] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3035'. [ 301.776151][T14015] CPU: 0 UID: 0 PID: 14015 Comm: syz.4.3033 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 301.797494][T14015] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 301.807564][T14015] Call Trace: [ 301.810852][T14015] [ 301.813790][T14015] dump_stack_lvl+0x241/0x360 [ 301.818490][T14015] ? __pfx_dump_stack_lvl+0x10/0x10 [ 301.823705][T14015] ? __pfx__printk+0x10/0x10 [ 301.828316][T14015] ? __pfx_lock_release+0x10/0x10 [ 301.833363][T14015] should_fail_ex+0x3b0/0x4e0 [ 301.838063][T14015] _copy_from_iter+0x1e9/0x1c20 [ 301.842928][T14015] ? __virt_addr_valid+0x183/0x530 [ 301.848058][T14015] ? __alloc_skb+0x28f/0x440 [ 301.852656][T14015] ? __pfx__copy_from_iter+0x10/0x10 [ 301.857957][T14015] ? __virt_addr_valid+0x183/0x530 [ 301.863085][T14015] ? __virt_addr_valid+0x183/0x530 [ 301.868215][T14015] ? __virt_addr_valid+0x45f/0x530 [ 301.873372][T14015] ? __phys_addr_symbol+0x2f/0x70 [ 301.878409][T14015] ? __check_object_size+0x47a/0x730 [ 301.883719][T14015] netlink_sendmsg+0x73d/0xcb0 [ 301.888508][T14015] ? __pfx_netlink_sendmsg+0x10/0x10 [ 301.893807][T14015] ? aa_sock_msg_perm+0x91/0x160 [ 301.898761][T14015] ? __pfx_netlink_sendmsg+0x10/0x10 [ 301.904055][T14015] __sock_sendmsg+0x221/0x270 [ 301.908750][T14015] ____sys_sendmsg+0x52a/0x7e0 [ 301.913533][T14015] ? __pfx_____sys_sendmsg+0x10/0x10 [ 301.918828][T14015] ? __fget_files+0x2a/0x410 [ 301.923437][T14015] ? __fget_files+0x2a/0x410 [ 301.928050][T14015] __sys_sendmsg+0x269/0x350 [ 301.932653][T14015] ? __pfx_lock_release+0x10/0x10 [ 301.937692][T14015] ? __pfx___sys_sendmsg+0x10/0x10 [ 301.942825][T14015] ? __pfx_vfs_write+0x10/0x10 [ 301.947616][T14015] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 301.953955][T14015] ? do_syscall_64+0x100/0x230 [ 301.958737][T14015] ? do_syscall_64+0xb6/0x230 [ 301.963433][T14015] do_syscall_64+0xf3/0x230 [ 301.967956][T14015] ? clear_bhb_loop+0x35/0x90 [ 301.972647][T14015] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 301.978563][T14015] RIP: 0033:0x7f0f22785d29 [ 301.982987][T14015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 302.002692][T14015] RSP: 002b:00007f0f23648038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 302.011127][T14015] RAX: ffffffffffffffda RBX: 00007f0f22975fa0 RCX: 00007f0f22785d29 [ 302.019114][T14015] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000004 [ 302.027092][T14015] RBP: 00007f0f23648090 R08: 0000000000000000 R09: 0000000000000000 [ 302.035073][T14015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 302.043148][T14015] R13: 0000000000000000 R14: 00007f0f22975fa0 R15: 00007ffcb878c178 [ 302.051143][T14015] [ 302.268270][T14024] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3037'. [ 302.309812][T14024] team0: Device is already in use. [ 302.570427][T14039] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 302.816974][T14048] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3050'. [ 302.919074][T14051] bond5: entered promiscuous mode [ 302.924173][T14051] bond5: entered allmulticast mode [ 302.929826][T14051] 8021q: adding VLAN 0 to HW filter on device bond5 [ 302.950192][T14055] netlink: 'syz.4.3051': attribute type 29 has an invalid length. [ 303.157116][T14057] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3052'. [ 304.192786][T14084] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3063'. [ 304.214186][T14085] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3064'. [ 304.684314][T14091] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3066'. [ 304.891319][ T8] hid-generic 0005:0C45:1110.0004: item fetching failed at offset 0/1 [ 304.912801][ T8] hid-generic 0005:0C45:1110.0004: probe with driver hid-generic failed with error -22 [ 305.216670][T14104] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3071'. [ 305.319700][T14104] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3071'. [ 305.321519][T14113] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.3074'. [ 305.458620][T14116] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 305.771331][T14136] FAULT_INJECTION: forcing a failure. [ 305.771331][T14136] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 305.784784][T14136] CPU: 1 UID: 0 PID: 14136 Comm: syz.3.3083 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 305.795576][T14136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 305.805656][T14136] Call Trace: [ 305.808959][T14136] [ 305.811909][T14136] dump_stack_lvl+0x241/0x360 [ 305.816629][T14136] ? __pfx_dump_stack_lvl+0x10/0x10 [ 305.821866][T14136] ? __pfx__printk+0x10/0x10 [ 305.826494][T14136] ? __pfx_lock_release+0x10/0x10 [ 305.831556][T14136] should_fail_ex+0x3b0/0x4e0 [ 305.836278][T14136] _copy_from_iter+0x1e9/0x1c20 [ 305.841160][T14136] ? __virt_addr_valid+0x183/0x530 [ 305.846331][T14136] ? __alloc_skb+0x28f/0x440 [ 305.850952][T14136] ? __pfx__copy_from_iter+0x10/0x10 [ 305.856287][T14136] ? __virt_addr_valid+0x183/0x530 [ 305.861426][T14136] ? __virt_addr_valid+0x183/0x530 [ 305.866655][T14136] ? __virt_addr_valid+0x45f/0x530 [ 305.871901][T14136] ? __phys_addr_symbol+0x2f/0x70 [ 305.876994][T14136] ? __check_object_size+0x47a/0x730 [ 305.882403][T14136] netlink_sendmsg+0x73d/0xcb0 [ 305.887213][T14136] ? __pfx_netlink_sendmsg+0x10/0x10 [ 305.892530][T14136] ? aa_sock_msg_perm+0x91/0x160 [ 305.897503][T14136] ? __pfx_netlink_sendmsg+0x10/0x10 [ 305.902830][T14136] __sock_sendmsg+0x221/0x270 [ 305.907578][T14136] ____sys_sendmsg+0x52a/0x7e0 [ 305.912396][T14136] ? __pfx_____sys_sendmsg+0x10/0x10 [ 305.917716][T14136] ? __fget_files+0x2a/0x410 [ 305.922346][T14136] ? __fget_files+0x2a/0x410 [ 305.926981][T14136] __sys_sendmsg+0x269/0x350 [ 305.931603][T14136] ? __pfx_lock_release+0x10/0x10 [ 305.936659][T14136] ? __pfx___sys_sendmsg+0x10/0x10 [ 305.941816][T14136] ? __pfx_vfs_write+0x10/0x10 [ 305.946634][T14136] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 305.952994][T14136] ? do_syscall_64+0x100/0x230 [ 305.957797][T14136] ? do_syscall_64+0xb6/0x230 [ 305.962513][T14136] do_syscall_64+0xf3/0x230 [ 305.967054][T14136] ? clear_bhb_loop+0x35/0x90 [ 305.971759][T14136] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 305.977685][T14136] RIP: 0033:0x7f203d585d29 [ 305.982130][T14136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 306.001763][T14136] RSP: 002b:00007f203b3f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 306.010211][T14136] RAX: ffffffffffffffda RBX: 00007f203d775fa0 RCX: 00007f203d585d29 [ 306.018204][T14136] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000004 [ 306.026197][T14136] RBP: 00007f203b3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 306.034189][T14136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 306.042185][T14136] R13: 0000000000000000 R14: 00007f203d775fa0 R15: 00007ffeab5ab968 [ 306.050325][T14136] [ 320.929249][ T5845] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 320.938761][ T5845] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 320.947775][ T5845] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 320.955992][ T5845] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 320.963536][ T5845] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 320.979446][ T5845] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 321.307382][ T5845] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1 [ 321.323916][ T5845] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9 [ 321.331989][ T5845] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9 [ 321.340441][ T5845] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4 [ 321.348346][ T5845] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3 [ 321.355963][ T5845] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2 [ 322.404758][ T5850] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1 [ 322.414595][ T5850] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9 [ 322.429374][ T5850] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9 [ 322.438896][ T5850] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4 [ 322.446910][ T5850] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3 [ 322.454186][ T5850] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2 [ 323.071326][ T5845] Bluetooth: hci5: command tx timeout [ 323.141970][ T5851] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1 [ 323.151310][ T5851] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9 [ 323.160187][ T5851] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9 [ 323.174316][ T5851] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4 [ 323.182315][ T5851] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3 [ 323.189939][ T5851] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2 [ 323.226189][ T5851] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1 [ 323.235928][ T5851] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9 [ 323.244339][ T5851] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9 [ 323.252690][ T5851] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4 [ 323.260675][ T5851] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3 [ 323.274998][ T5851] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2 [ 323.472958][ T5851] Bluetooth: hci6: command tx timeout [ 324.515435][ T5851] Bluetooth: hci7: command tx timeout [ 325.115418][ T5851] Bluetooth: hci5: command tx timeout [ 325.215466][ T5851] Bluetooth: hci9: command tx timeout [ 325.315777][ T5851] Bluetooth: hci8: command tx timeout [ 325.515410][ T5851] Bluetooth: hci6: command tx timeout [ 326.565589][ T5851] Bluetooth: hci7: command tx timeout [ 327.215460][ T5851] Bluetooth: hci5: command tx timeout [ 327.321618][ T5851] Bluetooth: hci9: command tx timeout [ 327.365426][ T5851] Bluetooth: hci8: command tx timeout [ 327.615434][ T5851] Bluetooth: hci6: command tx timeout [ 328.665413][ T5851] Bluetooth: hci7: command tx timeout [ 329.315551][ T5851] Bluetooth: hci5: command tx timeout [ 329.365443][ T5851] Bluetooth: hci9: command tx timeout [ 329.465531][ T5851] Bluetooth: hci8: command tx timeout [ 329.721387][ T5851] Bluetooth: hci6: command tx timeout [ 330.715348][ T5851] Bluetooth: hci7: command tx timeout [ 331.465389][ T5851] Bluetooth: hci9: command tx timeout [ 331.515398][ T5851] Bluetooth: hci8: command tx timeout [ 380.987792][ T5850] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1 [ 380.997614][ T5850] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9 [ 381.006419][ T5850] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9 [ 381.023370][ T5850] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4 [ 381.031293][ T5850] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3 [ 381.039196][ T5850] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2 [ 382.036504][ T5851] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1 [ 382.046858][ T5851] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9 [ 382.054870][ T5851] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9 [ 382.063852][ T5851] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4 [ 382.078218][ T5851] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3 [ 382.085725][ T5851] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2 [ 382.482219][ T5850] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1 [ 382.491665][ T5850] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9 [ 382.500526][ T5850] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9 [ 382.508676][ T5850] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4 [ 382.523622][ T5850] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3 [ 382.531235][ T5850] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2 [ 383.065444][ T5850] Bluetooth: hci10: command tx timeout [ 383.822641][ T5845] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1 [ 383.831937][ T5845] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9 [ 383.841065][ T5845] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9 [ 383.850053][ T5845] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4 [ 383.858198][ T5845] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3 [ 383.872253][ T5845] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2 [ 383.906348][ T5850] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1 [ 383.923218][ T5850] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9 [ 383.931706][ T5850] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9 [ 383.940350][ T5850] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4 [ 383.948214][ T5850] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3 [ 383.956061][ T5850] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2 [ 384.115430][ T5850] Bluetooth: hci11: command tx timeout [ 384.565524][ T5850] Bluetooth: hci12: command tx timeout [ 385.115400][ T5850] Bluetooth: hci10: command tx timeout [ 385.915351][ T5850] Bluetooth: hci13: command tx timeout [ 386.015374][ T5850] Bluetooth: hci14: command tx timeout [ 386.165387][ T5850] Bluetooth: hci11: command tx timeout [ 386.665463][ T5850] Bluetooth: hci12: command tx timeout [ 387.215516][ T5850] Bluetooth: hci10: command tx timeout [ 388.015447][ T5850] Bluetooth: hci13: command tx timeout [ 388.115461][ T5850] Bluetooth: hci14: command tx timeout [ 388.265589][ T5850] Bluetooth: hci11: command tx timeout [ 388.715442][ T5850] Bluetooth: hci12: command tx timeout [ 389.317679][ T5850] Bluetooth: hci10: command tx timeout [ 390.115422][ T5850] Bluetooth: hci13: command tx timeout [ 390.165478][ T5850] Bluetooth: hci14: command tx timeout [ 390.315494][ T5850] Bluetooth: hci11: command tx timeout [ 390.815454][ T5850] Bluetooth: hci12: command tx timeout [ 392.165371][ T5850] Bluetooth: hci13: command tx timeout [ 392.265449][ T5850] Bluetooth: hci14: command tx timeout [ 410.515026][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 410.522103][ C1] rcu: 0-...0: (2 ticks this GP) idle=a49c/1/0x4000000000000000 softirq=42483/42483 fqs=2094 [ 410.533555][ C1] rcu: hardirqs softirqs csw/system [ 410.539993][ C1] rcu: number: 0 0 0 [ 410.546426][ C1] rcu: cputime: 0 0 0 ==> 52500(ms) [ 410.554249][ C1] rcu: (detected by 1, t=10503 jiffies, g=46389, q=2792 ncpus=2) [ 410.562104][ C1] Sending NMI from CPU 1 to CPUs 0: [ 410.562139][ C0] NMI backtrace for cpu 0 [ 410.562159][ C0] CPU: 0 UID: 0 PID: 14116 Comm: syz.2.3076 Not tainted 6.13.0-rc3-syzkaller-00154-g30b981796b94 #0 [ 410.562182][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 410.562199][ C0] RIP: 0010:check_preemption_disabled+0x19/0x120 [ 410.562237][ C0] Code: 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 41 57 41 56 41 54 53 48 83 ec 10 65 48 8b 04 25 28 00 00 00 48 89 44 24 08 <65> 8b 1d 1c 3e 3b 74 65 8b 05 11 3e 3b 74 a9 ff ff ff 7f 74 26 65 [ 410.562252][ C0] RSP: 0018:ffffc90000007cc0 EFLAGS: 00000086 [ 410.562269][ C0] RAX: f816e7e4df27c500 RBX: 0000000000000001 RCX: ffff888079f68000 [ 410.562283][ C0] RDX: ffff888079f68000 RSI: ffffffff8c0aa960 RDI: ffffffff8c5faee0 [ 410.562297][ C0] RBP: 0000000000000002 R08: ffffffff818cd70e R09: 0000000000000000 [ 410.562309][ C0] R10: ffff88805e741340 R11: ffffed100bce826b R12: 0000000000000046 [ 410.562323][ C0] R13: ffff888079f68000 R14: 00000000ffffffff R15: ffff8880b862c898 [ 410.562337][ C0] FS: 00007f44adede6c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 410.562353][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 410.562366][ C0] CR2: 000000110c2920a6 CR3: 0000000028864000 CR4: 00000000003526f0 [ 410.562382][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 410.562393][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 410.562405][ C0] Call Trace: [ 410.562413][ C0] [ 410.562422][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 410.562444][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 410.562467][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 410.562495][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 410.562512][ C0] ? nmi_handle+0x14f/0x5a0 [ 410.562534][ C0] ? nmi_handle+0x2a/0x5a0 [ 410.562556][ C0] ? check_preemption_disabled+0x19/0x120 [ 410.562583][ C0] ? default_do_nmi+0x63/0x160 [ 410.562603][ C0] ? exc_nmi+0x123/0x1f0 [ 410.562622][ C0] ? end_repeat_nmi+0xf/0x53 [ 410.562641][ C0] ? __hrtimer_run_queues+0x2be/0xd30 [ 410.562668][ C0] ? check_preemption_disabled+0x19/0x120 [ 410.562696][ C0] ? check_preemption_disabled+0x19/0x120 [ 410.562725][ C0] ? check_preemption_disabled+0x19/0x120 [ 410.562752][ C0] [ 410.562758][ C0] [ 410.562766][ C0] lock_is_held_type+0x101/0x190 [ 410.562793][ C0] __hrtimer_run_queues+0x2d9/0xd30 [ 410.562832][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 410.562858][ C0] ? read_tsc+0x9/0x20 [ 410.562873][ C0] ? ktime_get_update_offsets_now+0x393/0x3b0 [ 410.562898][ C0] hrtimer_interrupt+0x403/0xa40 [ 410.562932][ C0] __sysvec_apic_timer_interrupt+0x110/0x420 [ 410.562956][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 410.562981][ C0] [ 410.562987][ C0] [ 410.562993][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 410.563021][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140 [ 410.563045][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 3e 98 3a f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 d3 46 a2 f5 65 8b 05 74 9a 38 74 85 c0 74 43 48 c7 04 24 0e 36 [ 410.563066][ C0] RSP: 0018:ffffc9000c076de0 EFLAGS: 00000206 [ 410.563082][ C0] RAX: f816e7e4df27c500 RBX: 1ffff9200180edc0 RCX: ffffffff817b275a [ 410.563097][ C0] RDX: dffffc0000000000 RSI: ffffffff8c0a9760 RDI: 0000000000000001 [ 410.563113][ C0] RBP: ffffc9000c076e70 R08: ffffffff942a4a2f R09: 1ffffffff2854945 [ 410.563127][ C0] R10: dffffc0000000000 R11: fffffbfff2854946 R12: dffffc0000000000 [ 410.563141][ C0] R13: 1ffff9200180edbc R14: ffffc9000c076e00 R15: 0000000000000246 [ 410.563158][ C0] ? mark_lock+0x9a/0x360 [ 410.563183][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 410.563211][ C0] taprio_change+0x351b/0x44f0 [ 410.563239][ C0] ? __pfx_taprio_change+0x10/0x10 [ 410.563259][ C0] ? __pfx_lock_release+0x10/0x10 [ 410.563279][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 410.563303][ C0] ? __pfx_do_sync_core+0x10/0x10 [ 410.563339][ C0] ? __pfx_rcu_read_lock_any_held+0x10/0x10 [ 410.563373][ C0] taprio_init+0x9da/0xc80 [ 410.563391][ C0] ? ____sys_sendmsg+0x52a/0x7e0 [ 410.563411][ C0] ? __sys_sendmsg+0x269/0x350 [ 410.563431][ C0] ? do_syscall_64+0xf3/0x230 [ 410.563463][ C0] ? __pfx_taprio_init+0x10/0x10 [ 410.563483][ C0] ? lockdep_rtnl_is_held+0x26/0x40 [ 410.563500][ C0] ? qdisc_lookup+0x350/0x6b0 [ 410.563525][ C0] ? __pfx_taprio_init+0x10/0x10 [ 410.563543][ C0] qdisc_create+0x9d4/0x11a0 [ 410.563573][ C0] ? __pfx_qdisc_create+0x10/0x10 [ 410.563603][ C0] tc_modify_qdisc+0xa26/0x1e40 [ 410.563636][ C0] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 410.563672][ C0] ? __pfx_tc_modify_qdisc+0x10/0x10 [ 410.563699][ C0] rtnetlink_rcv_msg+0x73f/0xcf0 [ 410.563721][ C0] ? rtnetlink_rcv_msg+0x1a7/0xcf0 [ 410.563747][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 410.563774][ C0] ? ref_tracker_free+0x643/0x7e0 [ 410.563797][ C0] netlink_rcv_skb+0x1e3/0x430 [ 410.563815][ C0] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 410.563844][ C0] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 410.563873][ C0] ? netlink_deliver_tap+0x2e/0x1b0 [ 410.563892][ C0] netlink_unicast+0x7f6/0x990 [ 410.563923][ C0] ? __pfx_netlink_unicast+0x10/0x10 [ 410.563949][ C0] ? __virt_addr_valid+0x45f/0x530 [ 410.563972][ C0] ? __phys_addr_symbol+0x2f/0x70 [ 410.563993][ C0] ? __check_object_size+0x47a/0x730 [ 410.564018][ C0] netlink_sendmsg+0x8e4/0xcb0 [ 410.564042][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 410.564064][ C0] ? aa_sock_msg_perm+0x91/0x160 [ 410.564086][ C0] ? __pfx_netlink_sendmsg+0x10/0x10 [ 410.564105][ C0] __sock_sendmsg+0x221/0x270 [ 410.564132][ C0] ____sys_sendmsg+0x52a/0x7e0 [ 410.564157][ C0] ? __pfx_____sys_sendmsg+0x10/0x10 [ 410.564177][ C0] ? __fget_files+0x2a/0x410 [ 410.564202][ C0] ? __fget_files+0x2a/0x410 [ 410.564229][ C0] __sys_sendmsg+0x269/0x350 [ 410.564252][ C0] ? __pfx___sys_sendmsg+0x10/0x10 [ 410.564273][ C0] ? __fget_files+0x2a/0x410 [ 410.564314][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 410.564336][ C0] ? do_syscall_64+0x100/0x230 [ 410.564364][ C0] ? do_syscall_64+0xb6/0x230 [ 410.564390][ C0] do_syscall_64+0xf3/0x230 [ 410.564417][ C0] ? clear_bhb_loop+0x35/0x90 [ 410.564434][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 410.564460][ C0] RIP: 0033:0x7f44ad185d29 [ 410.564476][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 410.564491][ C0] RSP: 002b:00007f44adede038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 410.564509][ C0] RAX: ffffffffffffffda RBX: 00007f44ad375fa0 RCX: 00007f44ad185d29 [ 410.564523][ C0] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000005 [ 410.564534][ C0] RBP: 00007f44ad201aa8 R08: 0000000000000000 R09: 0000000000000000 [ 410.564546][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 410.564557][ C0] R13: 0000000000000000 R14: 00007f44ad375fa0 R15: 00007ffda929ff28 [ 410.564576][ C0] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)