last executing test programs:

1m43.111939057s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m26.253611804s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m4.288528844s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

49.128009342s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

28.935306541s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.934022428s ago: executing program 2 (id=561):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r1, 0x400454c9, 0xba98575a95aeb70d)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
syz_open_procfs$namespace(0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1341, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

6.643012371s ago: executing program 3 (id=41):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e0000000400000008000000"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000cd03000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0xedf0e51957efc755, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000240), &(0x7f0000000380)=r1}, 0x20)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000580)="b9ff013f40c6977e0ae0a4f088a8", 0x0, 0x500, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.754438014s ago: executing program 4 (id=574):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd637f4b22667f2f00db5b686158bbcfe8875a65969ff57b00000000000000000000000000ac1414aa"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200"], 0xcfa4)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

3.67076072s ago: executing program 2 (id=575):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) (async, rerun: 64)
listen(r0, 0x8) (async, rerun: 64)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x3}, 0x8) (async)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f0000000080)={0x0, 0x6, 0xba2}, 0x8)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="102000003c0007010000000000000000017c00000400fc80100001800c0006000100000000000000e81f0280e11f7280d502c3809900ca80d27060e26985a5d6484ec2d39e694e8052156b304e0be8ee225d889c198800ce147803922a658a3f70c55ec83cb458a5812ba1166ce6d59653cbe22f54864f63ab0209bd0aced7056c241603af4b0e7e7892517d117837d343ee37bd9b98fa09432884e90f772c276a64d1016be5e2267fa107c08456feaf56becc9cbb43ab44bef48a1a8c04002f800400868004004c800400a90000000008004400", @ANYRES32=0x0, @ANYBLOB="9c248a87c1ddd7e8dd59440c391d6ecd1cbc7b9b6577434a8380791c2acd4b5d80cdd5d3df2d479c881d23f84230b1b6e6fc075963f49a842fe05822a9befb5be51ef71b97ec7a57aa71b716b707d481729e60e2040e8f74829f67ea9dabc4c358fcdaca62faf7746bf2791299e8ee4b58cd8dd53e58e47a4fd92430fc12431e2ffe721a1ab04f93e31fd415397efd49aaf8233564826ad5d2e5dc665bfd6b117ac3d9635710fa6446f5691252ee72826e435f40bcae9e58e124f56121e7e83ce278992f8fc88d08009300", @ANYRES32=0x0, @ANYBLOB="04006080bee01b0cec21fc43e768b22fe42b0dc66c8567ca7585b138b3b4fad17c7038ea6e9b5be15c166eb1a2c5bd7c7cf63bfc4ca2b9a3252286ed80da8ed1626ba9ccd489dd1c875a9ce900a5c6fbc716b82d0bee5790ffa0c2a38281707fa4b707ea1830b3dafa3d8625a687fc31acbeebe8c363f74578f800171ce0e9f3f3dd266653122060619cd35bd9ddf198505be8aac1e9c11c0e2753c414c85bc113535a9bdf38b7ff412e93b3e2bd48aa1386ffddc5865e50c9b68f248142b8ba73b927e09b6600123d0f0c00618008001400a00000000c005a8008000f00", @ANYRES32=0x0, @ANYBLOB="fdddbd77398a75668eabd5a0ba26dc37c024bfc52f7c22219361f10d3e15b31e0cde65c077b713c96e7d1c8852bb0fe77f3e98abf007ccd8bbee5dbc3669638d9027c0f218875d8c37283de770948225b579687c56210071f9afe439ef0c38f1ded8236f1ebaa5eb337fa7c939f0140f4922142391d15d74ecc63157000000990000803d8b37afbce704dbfb3da0616f246bd4e1edae433d6ee73d07394dfe6f4f8e4440fb3323a87d2c651532e788a27897e29948c30e34250fd67f92c70f6d8e0c5a9709f38d3d7c1debba2abd31570db3128b4143ab3afde3db3131be7db586cc635c154d392cea453cc3528af79d255ade4b4c8b77781c9e1e538b3dd9a567c31b4d044a255a380a2ec557c9468bba3aa21662b118f40000000800bb00ac1e0101f20f3d9490fb67dd2e0b9b059dc0aafe6714570682831d3edc99bb709f42b3c00c5e4b6e41af1a91006cbc7ef7b17a3733086e1165e39c872ac9591cdf48ec27b5e19983a30f5c91e128d802d6c9bbedcba908178d3572bcd1915b982d82af98eaec15269701ff2cafabe67a269ad94bc54684de3d78d06d736d753d299964b68cd1640e6663f9a7361c66c459bf24bb439fe74a53e995d32ea9155280ed005c800400988008006e0024262b0014002400000000000000000000000000000000010400308008007d00000400001400e300fe80000000000000000000000000000f84c4a009594aaf9e25299dc207afc7d694f5a64069b69cdf94fc0c83c0ecb7ec663c1e6def6c97d0a8d1a0040b9a2f6b75b9d0b577ffdeb25d660a657c89367340de74b4f6638f3c63d71a9819ecff6d437a903275386d0c94d1ad3ee759944f9d547c98a49779d9f27dc2e21a78813abab9403c7b529103dc8beb5dcf02a4b73c993242a82be6444e37fe4be8fcca0a8efef94ac4533b3ad992ca441ff2cd8e4e4237b01c4867fa66000000b51027800400568033e48b994c73d0e5eb30c323046ba08089ce9fbfa3b810f30f6f21f02b763cd1ad879098fae763d1e6e0fedb135fd9972d95d994437b65483470fc195a2f179d471e922f70decb226bb61df414365b88918c58cbc3d22627c0a7dcc17b0d716d0a969a690f7d59bdd07de4754f4c917cf33b86171a3377161ef478657376c9a9c67e7cf0e4c4323f50129f3ec0fd814ba16bab9380ca2e78de802df32036d421ebd830c1049871e959c41c04005a8037eef689c40c4b9d50406c89ce8095b5118b95539b26e7bba15b448eab326701cf14804107e4e1aa587992ae9e1faada6532cbe051e67ce1961f87cf89ed44cae6a16028a254833f59dc89f3c8c27ac46b8f56efbfb6f0a7b3d6c98d214c29e85e2ac53ccc6d8609f6a2a5c63e6531ed1eae899ffa24b3185b2b8c09550f2e9bfcf2e3f73107db9b2af0194ada74b4c04cb9e8e38de75dc5f7167e854ce80812fc335054226e56b7f61e98aa7dea2f36e646112193aa70e179985c32ddf53a76e11e5b39a9acee81c352ee75f2c1421b9123fb8055c6a4ef15228b9048f7e05a6ce9ed5e23abe963735b5b575e231f1fe9e490ffcad12e6f991c79f1fead07c7b38873280057d843f79ec1a07f3b772caf36cca9e62a16b019d977dfcaadf44aab741ad1b6734180d48d5ab1d225c3997607818cd5d8912092b10ee14cf29b427efcaca4d3cfa95efb0fa1c189432d8046383264042d40e10e5c81403062f4bc6d97759b3df7b43c90b0a0d31b204574adb166ff165f38ca29e96f3415809de20a67158306b523d1a0fe05cd68a5cf3522d9cff2f692233f54b0456e4f61b6aab285eccd6f2733d096dd02af486fed74b37dbc1ef3e1110fc7ea2e08cc6d15a673b7f398b22ba558444a7f3c30b8099a4f794cf0133df069e70b87ffe664323f35eb52131e9ce4361e850157b2b4adfd4e812049e7b438412f372e817e1fcbfbe064f1016dd567c9d8a899d2aecf2beb3c03d504a4f4925e5a11d139b79e30ef9223ac9653aca892a0fd9eaa1e1bbf94886c729c1d57dfec135557892ab1a5f18d973e56aec1b0c1e296497fcaa6b7b71ed65432dc11bbadf131192368ff7b656e3cc1f6704fca90217ae550c1c518054702ea11c225b25597d43e4c06822115882df36de4f80a9144bb980e53bf5a0214d54867698296baf128cd8fbbac6fb5d6820171477ad17c1cdea30e30c92522390874ac8360cfe6a65f6b24fb72584c9f78b9898c79eb08b26db06c6efe5b3454fc57eebc65440083d054d44c5f54058c32707df8eed91a59015562739a247ef81ecfe0fa7b62dc4d9c0b4d40bbc6a9309fd542b73e6b2f60c8e2ab6bae56b241f28685acddb6e16135da77c8e8450c0a973c7eb0927655b14987c4faf9bac1128da4015df79bbdb52c8ee7a1fe752c7d76ca954706bb53476eadb6ac4ad08fd51d960827dc3049de5b87482cd16d6a4092fe548ab554b24bb3d1995fdf2b2b9c3be6a8208600e46a9959b0fdb60fc47a61d3a08403a586e3f2861172ca1c981d0abac84676189c42529de500ef02d9fec1791b3712e192c992ea56d2e82db5ed08e7069f875be0d89d1fd370258592b9aea4b2a3389c5f974733864441e606fd0578cfe8c54314f122a1c6ed0be0659b6a7f5ea3e037e5fe889ebd7a1c9476de5c24670f1b2e2ecb9f6fa4c32a45d704e5eb3f072e4bf8ba504c53bd2e2f7a27edbec824c84d32198fd0ae198054c969358a38b15135fb2ce1710b30d183948556884fbba0fc5d6139486d292d38f0ad65a0c29e412eba43b683419b4ffcc4ad9ebfb1498048ea8a76f02cd57846b1f4c71f04de8fa509f2782e351758bda96e1596a2491d13aec41dec88378fcebe4e48d23955c919a1e2084378cbbd4a9830ecfef0f863f0b8dc3b7bb1c218bba92f5b61688af638fa338cd1678bb7a721b052f4562cf3bfd3c3e3b652564e4e9cf2afff57556a187d5abeede099892bcd95a3c066d7558e3434d6943a0966576e33f1735dc7f35688d08a30f585470df53be4d2e9e03a9a280dcc185969e9d16af9e0ce6ce1e1974a0c6eada06de94c7edf79916ea0d715f258257447c6167acef3e0764a410fd0009fc9fb3fac75b4a8c6c124479ef551b8cb81b5be6a84d710c7f6d3803e95bb565fb69bbc084eab310e7d459b3d011e7c574e03c3fc62f92c6382e177efb5afa8b26c215bda2b2a88a37a4ccbe19471073ecceff71e5c65c741aa934735bf73c5f84be2e782f151e14bf24a2f30f086cecd71efe47740e9c80ffa8246f6b4b7382789f128fc92a791c7c6648945ba401656bad4fe39f922e8b3aea77e0b81a60b86957c16328279ead8d8571fde564f8216b46eea97a94da52f684444697cdc7126bbe7060426ff7479eeb9b9d3e09099da6d6f30e488210cb6b5ff0afcc2cd64bbf722ea41979fbf73e0e66ef33dc16fe72b421ec5f37c052d832b35a73d36ac3a8cabb989ac1c78d46cb05f108524c2224090e84a8cda50134620c728d5da5041693e2fdafefbb66cec5de39b6dc386f5cf5a5fe64d25b016f9bc4dc989f9d8cca3a2c1f12cdc201a214a053f3de7c838831a3adb2ef594be2db2fd1c178f9de8b0d81fc9a2f1eb1dc9fa4fe8311dd4ff40b90b14bbe1ff47ecb5e9715fabca8551b28b3473049667cfacccc63f9e41ae17b5c7a042449b59e6ca4218eac4328e85f0ec57f6a390fd4a51f09b1f2f6a29731eb3a60040c732ab11ace9f7f7318b592c39a7e2427d922d583ca85a35b9aca26da91ec0cf2ecfda5643b00bdbc325acd5fae88ba9d15faa0b2cfdbc959147724979398f34926e72383cd80bba1b2ed40cdca7f0c011a9edea028b35716b82cec6b51fe01b4f6947c97852660df44c5235153058811635e62f0002c2fee71c59c2a819ab69f5963b583fc433b7d0f5a36fc84933cc0429a8685c24de7b52fd40eb68d76cfacf00906c8b15103e879233c2c6af90d7bb56e27550f36dcf5b1e9e6e42a4a0b2b9e1f14a39e5a4887c8a9afdc259c0ecf07c8d88f3ea8fdb02198814afed2da0681848469c8175e851adcf738ff3cbcbe715a5b1acd78af102ff7e7c0f49bcbee43b919287b00ee427b60b5aa0a5f7e28cba7dda429d6fc6c5a27b3ea37a90aa517815734ff05f925c429eca693cc55196f534639bfef022327efaab0ef40b745d80062916ada3c71b26c3887bfbb27a0d6ac6921692278ed0d09cbea385f496ef79ed32537e67a6982769d4cbdb1e55943d23019d58e200e861bb831a9e526538cb34f12bc2cf26b9df3e44043fb96bddd67da94b7c86a39efc38c134bbc539fa8854dd0f995b8bb5dea9fa7414f3e4cf3cb1ef7d1139d360c8221c0c538ae1ea0176aa9d26cebd11c55cce49419f561fa53fd4e6a6a92a7d4be5fae4107f7003e938da517ce467a7a5bb4a06dbca4eba8a624e86da693e20d4c80a4ebde8608914c8a3cdc36727dab3d79d45b13aa7dbae36e17bb9cde3e3686f176e5c87f62a786f674ca2483a4b16540673177f27112025e1398f8fa14074f7656bac8061aa7dc0767c86c223b0b76ee60305979c71a8d1f7c535dd0ef08e45762e7c3b79adb87c737b0e8a59192afdd66686c872281cd22adbaeb320533a9413f28bab4d256e9467b1a933a6269536b66ca64723c4e3d660eee757616e2c28b77d94744bda500eb9815736a1d173081468257bd7e2e8735668440bc70d83a55e1a5530424e17052942e41f2d1fb3fe384c65d4a016d13177ac6024b6d96b8804e7f5ab95ed5afd7e99195d792020baad4417dc8499ab5195ff30f83664e890242173d6994f4af7ee649618f1d054968ebadf94a4b66c8a19973b93c24678211a42e664f489cdf870c61f41496d7e6632702e487772b7016251db7d4b53d42b04f4a1b7e83f5a67c163af77e04e10e7875837786877502e6d4d0678c5232f347e30bfc37cd8033a59a7d41a05c4fce9e61c265fc8342a93bf10ebd44ffb9469a150f73019ea3e8f221b3a401063f205fe50b8dd424359d23065a2cb6524204145ab771aa5a3cb0ced0e92af738731b5a4b32f0e81b6a0e3244ca9e507726e32ac9a5dbb6a51cf1ac6d5d0eba3ee7758713a39aac4807118a28125e4078fdb3618d69eca0c6c4bc25c397c87de9518af8c44a160896b6a0349fa1fbcfc7658e2ef680951d70cee89602f5bbcae150de305381457a5d5003974ff9d6a78b9f370a3e144c17fa52d16273f65f9a488a3466b5ce13d8399c8a1de166f4abe9553794a42f09f4b60ab9252df354325f00f1e32dfbeef7172a2a9ed9bcded97b4161b36444197017d3ff4fc30b42e5278facc7a2f6b679f2a0ee4b51274b7fe6d34135742a31d8941a391df6159262065509bdcb8d01e423a101fc9b2aadb81855a5771abd11988bf03cf4fb628c67c1d9307444a42138c4d75c2d122eba0a002cca8e321efa9bb3933145e32d602fe326f44983362cfe48724faf57589f13fde838b4afce586cf3314d8ca4cb5cb0a9dc692a2bf1ec28eef42acb14491ddf50abdd02d21b8ed3ad97a2485a031c18e6f7f6d4a15e4e133bf7f44f2a53b22c932ba6cfd5a6957a5bcdb297c581ecb8a2bb82bbd08b6e5d750d7a4c288631bd30f10a72e6008772ade97463af874e96adf5000bd621f7438f7b2419183d76ca70e80333fa5b6583ebb69900d84b4bebdeb4ba5d516d9e54e6d07588b37c47775ca9a150f60945ff06c237fabd553be257cd46784868a1a8f404206e3bbdea479f590548f7d6fb85d9da1d18378298b2a926ce2b0a8233990d8ed701d562eeee9ab521137030ebfeb8f88ce6aa63df0659cebb2c40a80b7dee6cdf2254a0725fe939b10958f637cba2217471530b5995431e482db02da28ca2805443e6c171bef2bde0b3d1ad9c3665afc2fba43f3056526bf62845d2f39a3dbbd9f702e853933fca22c07a8d14f3203da461ac391df11418a2ba736042dd717d57eaba13c265b6562d0015cd2c351231333de3f0f41b0ebbf9ceccfc091e295e2e04159b4715fc3c14069c7b3f68026811371ed3f8681b5f1866c54fd5c2e3ff5de90aaee2c78b05cee8719d7588a7b842f97f13068ff18110571f19e17f8b80e02961b1f125478f61fa97425d67b3bd295e519fe04958914c2344d6ce02bff468f6d5066c14041ada326f13f25b6d0cdeaa1d2848066e378cc41a26baee9fa743de1de5d3b5e9aaf42f5672709f88178ac537e70288b4e2e78c866ada6b7ca42e0f9c00c361eaf89552ead1c62e7cef855fb6632943983322356802e6511dc1cce52a5e4940732cea3837306eb73d6ef1cd24731846ba2413a5f6a77b5d657fdd0bba3b4d0bd95ccd5288dbdd460ecef9fca616c47c421f80590201e61b394cfc478701c044c6ebcecbda5bcfb6b5dba6781721a43e1de300c554ea8e7b5006b74b8ac1009b83c22eee0d5aba31909687136af76785830dc19f63dffafa9612046b7fb0d04780fc03f657a68c8f590ff48fa0a048af2a479b382c8e85dce2e7d6418bd85a61216bc5368eba5ab9b94905313220e23ad8be782b900d68e93be2858216549f94b00f9872dd5015b1a0d791f12349d83b8320133c97f82b64a3b885b683223ea1d1ba3bdf5371e0b43599cc559224b37c88b9139fd51e6ac3bd53e16ab29541b3f8b956a27653f1af599ab86748f954a30f2e592ad032be4d140c81466d96d2f1706b3d7cac3e732d8ed9e1200713d0902a218a8d803b587fd66312d0ce27d5c72a32c352069e385bbafc389086c75822b0bd14049eddf60d728fc2b9607ab4e3f830a38b4269ddbea904785374a8c214b4368c925e50283baee88141373d6d1debb01dd75c90150d2bd95ff86c73cbeef38acac0f260b4b5ed77040a2af7c634db3e4e37a36bf69845041ee515843075c049c28a86547d3ea917320fd024f87d409796e9c9159610a17edc04a52ce48125c066b78cbedfa13290f0f3a3247f1fcae52aba8ee56fef21dd06e756636b87331ded80b6218490b8ae80a15bfe48c78762fb82a3d779d000000ffb857d60d9213291569d78c65d2cbf3e5df35dafad40d246649ed1c93d702f87e467f7b3d78699efc1ace97d30da85cb98bf74655f4659c55f6bb2c943e76b6e0a5c683b54ecff561d87e162eed007cb4f9af54b450d85236c644ce72c78b17f081bd69a32cdc7332e7600329ec1b49b718189156e2ba636faa8d527580bb9af2d6c191fd942ab4e5a1820e6fa3cb892dac246951cb2277a8183ff2b3bdf25d427ec03a31231d756aefc4fa9b6162fc447ef27cfd530960dd53039d005d804103c32a5ea5bb57574658d29c6ce5e194e38a1371091a3ebc39967662d473904c242c6f81e92cfb0d49cf308547c3b10eb4de9bddfc2c24e3911860f8e9b901cb0a5ba561e145312af6bcf93f85ac0fed2e368e88e9c103568326e713fe597d8b585fefa5554eb7c21f13210374b35c83adf799e027ba1f4471e74bc5f5983ca1a172940c6756e95ab642750feee8f568c48e0c5ff3a6c438000000180028800400338008001300", @ANYRES32=0x0, @ANYBLOB="08007600ff0f0000a443d6f95f0b32e04db77561cfff0705b175fb442783ae3fac48186200d6c34f6568161ea6455863b98e9839aeec13c05829e46cf815467e047eab93f12cf2bbfb5314b897a209ed7b59dc0a33f9d0756d5ed3426f02694d6b582dad0a84f94552bbdbfe7bacb79a92cf947a1262d6224965ac34147a3c53c264b85099090157469ec31b08f552317892bcecb07b7e752f5d1bbc85703651f2f90fd7cba6e901a2803210da1eaa3274f49701a55a6e994b1c80fb1f7e2d6599c5c571b81d10a473873166039cf3811c6f83aad775e99d1f970096285bcf2f68cd6e1dc2afa9e31716e5faa8bead86cd6cd8aba9bdd204a2c130cad67bbee2bf5a787b61d9f04453a1be2f8362c0e573b69d8476fcb49eb65aa13d4231ef65b59ee75f713bc6583d9efa1c64466dddb7de96d941382f254a8c2d6462d1b542679987388142f2a36ed077b669d40bfaed07d1abf4e588adb58b0027a863c03967fa35a46c46e840e85681b66b624d48fc8b4f79246368be027c30bb15250180ee21038b5bd20eef2f4999e47c9414c850b902d8418bc808004b00", @ANYRES32, @ANYBLOB="0400388008009a0000e0ff01c1002a00be638b99d66a2645caeb97ec11d2f4834420f4b05623ecb38eaafa6ed8af53869c1a52b9ed23563361eb32e2f28ab7998f65881ed5651eb0acd0727ca0ab80f4da17629c901b959527949f0d26e3e4fff2a302e9c62a05dd7d5d0c8749d2aa63d32ee74577ecd174067f573b06466e474bc67ae0cde27dad2e1641df11c501a2b009794fd0e766dcddd5323f22165aff2fad153635ac21b852acf330584a575879bbc7b55f1a3295d2871cf7573c2a1dcfd67e2a655b1919d2dad68d9b00000014004c00fe80000000000000000000000000003808002200", @ANYRES32=0x0, @ANYBLOB="04007c800000000000001c06f68008004700", @ANYRES32=0x0, @ANYBLOB="1000a5800c00c100420a00009550d702f16f91110000000000000000", @ANYRES32=0x0, @ANYBLOB="0800bf00", @ANYRES32=0x0, @ANYBLOB="71eeec056e6bddd89274e899c4539d311e12cad51d0b93f4190431cf5267bb9ee7987f93f6f373cd01ad678484a18cee8418e5c4ec939a5bc57d455d1278a49be2327e6faeb4458a6addbcad717ee1aaca837c47feff66601b5b9316869d34a72b0ed4714053702bea885869a536e57ad5bd6e4abbd429720b3a530101530dca8449ec657b43a44936baa49d2dc85227292aac72cb5dbed5e1f2184ebdce1e203b91dc69c107f15c8e56c1bb5009da6368526081d3461c5de17da4762be1af2c24731a7cacb7cbb6d3e116b3088fd0e81b676fe932599059a1fd439298aabe2d5071298ea4e7d67186941ad3f1b5696d743ba2d80883f96664bb7784b4d0a0aa4c287e9f59f509aef99bfa4001c4cf9c670d7f089b049371789f9bcc7ec445413408d9f5dafa88f100a04d0479b63bea852d0f6b646afaf2253cb3adf3ccec536965e5c7429ac2b09ca58f0a5fb528ad14310365d68b921bbca9ffd30870ae8fbf00b82869b75212534bb4dd6dde17ef6fe16eefa3d525f848e2df9593c206bbf80022ca64d4a6034999d5163dc72a455bec26f5b62025d350582bfcd773d19c3c76f4076ce490da80a1f6ff1702ade4f82182b6b68989bcb27ccb3c8ba4de17e3920aa9507443668199e5140761512fc9d0ed86de6a26f20e6ac2a53088ca047b041c02d9c9d4ab3733fa2c3133bc3b2de81867503c584c3385f325931e5aafba3be927fd0411c8ece3baea0a8be75d766e0b1a7630c4c623dfa0cd5286549d34e61993ce090ea3a33844c2468b1f0714a0c00d3ca287ae32233d7bd1ccd8bc9f3ae05f03df9cd3771f39ebbe3890f6fba3a02b252020e10a31256000e4ba999c013671d1b364248fa543c426a5a2cca28ad5d533fcac6b16851a0645297dff87ee7464e316a326a5af67643620b18bd4dec40f5dff306c818ef7e78fe1620c77da5cd5aafcaa8fb10c069c7bb91e9c1fb8bdf207d245ac3613b77c9d4baad9f2cd92c20a26b473440be57173711eb4d452ddc57d7ae74fa0d59be667152cd579b63669c983b35cacb308ef6d82b0f42e2777e760979fb69e5081b7fb4f54f8cd0952d96e4198e7a3f440432f6e82c3011bbdbd6d1961f3469159e6ccb9b80cd190eab7d242e797a83992a95c236e7004a4cf4ced5e62b0a1e6cadc6c05b96f793d2e64f513130e434cf62e303a3a4df74112e9e3fd46018eeea4eebb5ee3dc1e7a43f9212ecf1a7d05712724d08122a71c09d2756424ddc32a71c1886ce6d6d57b7fafd0bcedac0c638994bd8014022c975ad9cfdd09c863595d5a3123731bf0baa606a91fb0cd111199569cb78f773d7a3f32613c176639b0df0e0d2948dd9cd8e027aa59e498f8eaf1255bb43a19ba60bd3698301ffc5624a079347a2d17b5f61c419a247e30e975ebd8ad925a87c29fabec8aef5704b5d7afdf633f1eec6a222ee3ccf0711f58945098b9a9334d194fc00863f7fd4b636e31cce70d8566550cc40d31b180e28c2ba561471de981dcbf17c922f834f5016adfc3322728e97521a6a815c20a9ae39b13fb102941e65891a57fa14e60479336728a4d8beaf589e0680fedf5c533e449d9ae79a3bc594b2a95b92ae5f5f3fa1dd2c4ad796db608c1b0d8db8408c81507ecb84da774fa769589bc51586b20d049df5a61953cb33d0cf75eb96cb180e79d441c92c1196fbe90e5cb27ca00bbfe37719a3b57512b7974ec10e6c661a60c7c7406b3aff6eb6871ae142356c5fa1e13f1364ed8b3c1072fc5a04d3b56c5acbd89d799e60501f57a067a41cb90ffbfe05d7ab9109ed2611e7556e9347f0811bb742a9881db3ea4281535b6119da7330f11eee36483261bab12cb2f176b425649e0a53d06c25ab833d24187180121b728120d7773f262371228e14cd655e0a8095a4d45e21b5610ec080740b479a8eb65520f4b65210ef0aa6b13c03a35033bd47aa1f8d04eec10469ed6294fe80cc43e2fa56831af8dea35e267fc117c9d2c8dc62fe71bea725ad70d9d373e35aaafe0e459be0616ed38a5f97ed06567af6dc67810959ce334f44ff5da5b006d406e8b8b007b759e38ea018a06faf7e47dc0705e966abd79f947824762750ba325d17d3efc739986cb66e8217ed1000000000000"], 0x2010}, 0x1, 0x0, 0x0, 0xc000}, 0xc000)

3.604098431s ago: executing program 4 (id=576):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000200)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000000400)={'wg2\x00', <r2=>0x0})
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r2, 0x800000}, 0x10) (fail_nth: 1)

2.790734522s ago: executing program 2 (id=577):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000080)={0x1d, r1, 0x1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg(r0, &(0x7f0000003e40)=[{{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f00000001c0)="b875a1", 0x3}], 0x1, 0x0, 0x0, 0xffffffff}}], 0x1, 0x0)

2.758070259s ago: executing program 0 (id=578):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="b7020000b0ffffffbfa30000000000000703000000feffff7a0af0ff2300000079a4f0ff00000000b7060000ffffffff2d64050000000000650404000100010104040000f1000000b7030000000000006a0a00fe000000008500000032000000b700000020000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb450063dedba767ade51f7f1f66acd19100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb4e4d0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e85cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fc4051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5df11cc2afb53611cc32a790bc0b80e80eae8f5e64be2c9d2d29db3d36dd0cf8f79a015c7bd3f15aa6aadbeab2a01685108e61aa00000000000000000000000000c67c6c6a06e828e5216f601b19db1af1b5d356d0f062137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f10800000000000000826151e3b42bcae95239ef5ca2a730a00c87c493db0300e63fda97a296820000000001000000eecc952a3fd2c46f3c1cde71a19d1a2982492a210e00d2bfea3b8d188df2eff8d56aaae7d32a2e180022537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d85f225992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d3f00000000000000665c8b7e89eddfc3783f6c9129a7c5f8ee5f50579e2f638f7eb12f63be72a3d81ab324d6e417b1c2cbfdcada0a16e31790e26cf19588a7e0496ee2782224cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b42077ca60fdecb2717e21f8f187b1866108b6e8c71e2603217606637ece1fa89917e131f4034a8383e99c3568fd04201b37cd92ca6ebf94a2d8310f7032775cfd75652f87b039d5430b3c6643e9146d2478ce31344b554aca7670000000000000010c65608fda6ed5d08e7a796042aa127d874105787d0347aa37801faff5b9050803a19ff6205aa5c263e407a2f7de56f7a0000e094fa4e3f05528caab5a430c08dd810bc97204b767dd969721a26aa740000000000bc433fe2d0a6ef2a8a91cd3cb305aa80dadef8b0caca780000000000000000863e21db415a222bb1a7ab94bfe4a74157d794f9d0430c2c0eb563350559829865a3dd08fb31bd0801e09aa3ee45e61a56fc83076451cff7632e49a41eadb5044a0d5f73d6932161ae5e9ce218a35cd8e7b747887b1a74798982d0b492c3f0ff53189d80733eb04f8124877b648ff438f7d66c7efcc09a8f3330b6c22d14e80db8e5608bdeab9388b758a15f4ce70390c214bc6838798f5b9b0b500d4e8b5174f329b8501c6feb7a6982bcea74a0f2ced7fa2059234a8d10b7f0597151d5c9067d57d85f4ae933eaf5174ba122f3f702ef8695578d3c08562c9fc185f0f65d11b4c58ae52500cbe99cde3758a5cbe6093dd328ac820e2de309d25a324647aadffcecf0f3bbaeda7af4436d9ffbce1b240a2f5e346eba8812e6329e01b087bde7da4a6448f478102e90c8134f531de08d4cf4f6f35b15a202544c0ced0c1715fd3a90099f785a13a2412bedba2981dd22bd9d736c00000000000000000000000000000000eb6fec8d7d2f77f4d470a9caa5b1bfc00cd1d40830ac35f229f8ffe1c02a63d3c2d9"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x57)

2.707902005s ago: executing program 4 (id=579):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
r1 = socket$kcm(0x10, 0x2, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000080)=ANY=[@ANYBLOB="ffffffffffff0000000000000800450000b000000000fe019078ac1e0001ac1414aa0301907803240000450000000001000000290005ac1414aa640101028677fffeffff000ce256b28c59881681fb520009020007651442eb000e7434954373561de584b703c80009e706d30bd224f80207cfa11cab1a00108475be675de6a70a05a0dc91e5c6000a6580a5e97612fe86001273bc23f9ffffffa30900a301c84600000012c8f46976e79ea788f03d9d3205927e3d8606ff"], 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="380100001a0001000000000000000000fe80000000000000000000000000001eac1414bb00"/62, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe880000000000000000000000000001000000006c0000007f00000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a"], 0x138}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=@newtaction={0x48, 0x30, 0x53b, 0x0, 0x0, {0x9}, [{0x34, 0x1, [@m_sample={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x4, {0x3}}}}]}]}, 0x48}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x1, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {0x0, 0x1, 0x0, 0x3, {@ip4=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x86dd}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003f000b05d25a806c8c6394f90324fc60100002000a000300053582c137153e3704020180fc0b09000c00", 0x33fe0}], 0x1}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000200)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r0, &(0x7f0000000100)={0x1d, r2}, 0x18)
sendmsg$can_j1939(r0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x1d, 0x0, 0xd6, {0x0, 0x1ee}}, 0x18, &(0x7f00000004c0)={0x0}}, 0x0)

2.699480411s ago: executing program 0 (id=580):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg(r0, &(0x7f0000005680)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000001180)="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", 0x3f2}, {&(0x7f0000000540)="57709671d7c6", 0x6}], 0x2}}], 0x1, 0x90)

2.615346475s ago: executing program 0 (id=581):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x5c, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xb}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x30}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x24, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_REDIR_REG_PROTO_MIN={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_REDIR_REG_PROTO_MAX={0x8, 0x2, 0x1, 0x0, 0xe}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xf8}}, 0x0) (fail_nth: 1)

2.499923325s ago: executing program 2 (id=583):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x1, 0x0, 0x0, "", [@nested={0x103, 0x0, 0x0, 0x1, [@typed={0xc, 0x2, 0x0, 0x0, @u64}, @typed={0x14, 0x4, 0x0, 0x0, @ipv6=@loopback={0x100000000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8c"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x3, 0x6, &(0x7f0000000100)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x3, 0x1, 0x0, r1}, @call={0x85, 0x0, 0x0, 0xc0}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0xb, &(0x7f0000002e00)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002120207b1a00fe00000000bfa10000000000000701000078ffffffb702000008000000b70300000000000085000000c700000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet(0x2, 0x80808, 0x4d0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000180)="9e36d448b388dd96bd4c248786dd", 0x0, 0x0, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.175620624s ago: executing program 1 (id=584):
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet_tcp_int(r1, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r1, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
sendto$inet(r1, &(0x7f0000000200)="e1", 0xfea8, 0x0, 0x0, 0x0)
splice(r1, 0x0, r0, 0x0, 0xea8, 0xa)

2.091025915s ago: executing program 0 (id=585):
pipe(&(0x7f0000000040))
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
socket$can_raw(0x1d, 0x3, 0x1)
socket$can_raw(0x1d, 0x3, 0x1)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f0000000080)='cgroup.max.descendants\x00', 0x2, 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x4008085}, 0x20040000)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x20, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r2], 0x90}}, 0x0)

2.070903364s ago: executing program 1 (id=586):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={0x0}, 0x18)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'dummy0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x11, 0x839, 0x70bd27, 0x0, {0x0, 0x0, 0x0, r2}}, 0x24}, 0x1, 0x0, 0x0, 0x4000091}, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000200)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371"}}}}}, 0x0)

1.927835917s ago: executing program 4 (id=587):
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f00000003c0)={0x7, 0x9}, 0x2)
setsockopt$bt_rfcomm_RFCOMM_LM(r0, 0x12, 0x3, 0x0, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000038c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='rcu_utilization\x00', r3, 0x0, 0x2}, 0x18)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000850000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='signal_deliver\x00', r4}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='signal_deliver\x00', r4, 0x0, 0x81}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYRES32=0x0, @ANYRES32], 0x48)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x2800, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r2, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100280000000000000002000000200001800d0001007564703a73797a32"], 0x34}}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000240)={<r5=>0x0, @in6={{0xa, 0x4e24, 0x2, @mcast2, 0x4}}, [0x4e00000000000000, 0x9, 0x7ff, 0xddfa, 0x7594c29c, 0x1, 0xff, 0x0, 0x7, 0xff, 0x5, 0x9, 0x287a, 0x1, 0xe]}, &(0x7f0000000340)=0x100)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(0xffffffffffffffff, 0x84, 0x6, &(0x7f0000000440)={r5, @in={{0x2, 0x4e21, @loopback}}}, 0x84)

1.920877394s ago: executing program 2 (id=588):
unshare(0x68040200)
write(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
bind$netlink(r0, 0x0, 0x0)
getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x23, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a300000060005000100070000000800094000000001140008801000"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)

948.151289ms ago: executing program 1 (id=589):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000240)={0x6, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000008000000000000000000c3a0f8ff4100000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x8c, &(0x7f00000005c0)=""/140, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b00)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x8}}, [@NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xc}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x7c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000e40)={r1, 0xe0, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000b80)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, <r4=>0x0, 0x0, 0x0, 0x0, 0x2, 0x2, &(0x7f0000000bc0)=[0x0, 0x0], &(0x7f0000000c00)=[0x0, 0x0], 0x0, 0xc8, &(0x7f0000000c40)=[{}, {}, {}, {}], 0x20, 0x10, &(0x7f0000000c80), &(0x7f0000000cc0), 0x8, 0xb3, 0x8, 0x8, &(0x7f0000000d00)}}, 0x10)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f0000000f80)={&(0x7f0000000ac0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000f40)={&(0x7f0000000e80)={0x8c, 0x0, 0x200, 0x70bd29, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_ADDR={0x48, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ADDR6={0x14, 0x4, @local}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0xc}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @broadcast}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x8}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8, 0x7, r4}]}, @MPTCP_PM_ATTR_TOKEN={0x8, 0x4, 0x99}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x6}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x7}, @MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x2}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x2}]}, 0x8c}, 0x1, 0x0, 0x0, 0x20000002}, 0x81)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a78000000060a0b040000000000be17000200fffe4c0004802800018007000100637400001c000280080001400000000208000240000000050500030000000000200001800700010063740000140002800800024000000011080004400000000c0900010073797a30000000000900020073797a32"], 0xa0}, 0x1, 0x0, 0x0, 0x840}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r7 = socket(0x10, 0x803, 0x0)
r8 = socket$unix(0x1, 0x2, 0x0)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000880), r7)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r7, &(0x7f0000000a80)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000a40)={&(0x7f00000008c0)={0x148, r9, 0x10, 0x70bd29, 0x25dfdbfb, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x4000400}, {0x6, 0x16, 0xa0}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0xfffffff7}, {0x6, 0x16, 0x8}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0xcf}, {0x6, 0x16, 0x6}, {0x5}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0xfffffffe}, {0x6, 0x16, 0x1000}, {0x5, 0x12, 0x1}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}, {0x8}, {0x6, 0x16, 0x8}, {0x5, 0x12, 0x1}}]}, 0x148}, 0x1, 0x0, 0x0, 0x5}, 0x20001004)
r10 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r10, 0x29, 0x3b, 0x0, 0x52)
r11 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r11)
r13 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r13}, 0x10)
sendmsg$IEEE802154_LLSEC_LIST_SECLEVEL(r11, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000001c0)={0x14, r12, 0x72b}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r14=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0xffffffff, {0x0, 0x0, 0x0, r14, {0x0, 0x7}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000001140)=@newtfilter={0x150, 0x2c, 0xd27, 0x30bd29, 0x40000002, {0x0, 0x0, 0x0, r14, {0x0, 0x6}, {}, {0xa, 0xa}}, [@filter_kind_options=@f_basic={{0xa}, {0x120, 0x2, [@TCA_BASIC_EMATCHES={0x11c, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x110, 0x2, 0x0, 0x1, [@TCF_EM_NBYTE={0x1c, 0x1, 0x0, 0x0, {{0x3, 0x2, 0x4}, {0x8f5, 0xa, 0x2, "815bda60e87d3313d999"}}}, @TCF_EM_IPT={0x14, 0x2, 0x0, 0x0, {{0xc2, 0x9, 0x6}, [@TCA_EM_IPT_MATCH_REVISION={0x5, 0x3, 0x8}]}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x40}, {{0x1, 0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x5, 0x1, 0x6}, {0xdf0, 0xd, 0x0, 0x1, 0x0, 0x2, 0x1}}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x953, 0x7, 0x1000}, {{0x2, 0x0, 0x1, 0x1}, {0x0, 0x1, 0x0, 0x1}}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x6b53, 0x1, 0x8}, {0x1, 0x10, 0x780, 0x4, 0x8, 0x2, 0x1}}}, @TCF_EM_CONTAINER={0x54, 0x2, 0x0, 0x0, {{0xf3, 0x0, 0x4}, "daf782874dfa99f0fadc73d6a7396a98527b4024b977d05c1fe9d21181ad3256ae163c464656ad73a57efe31cde9f4d522b1b3b912a5352881da1ebc4a1b9e3f294267d73761e2"}}, @TCF_EM_IPT={0x14, 0x1, 0x0, 0x0, {{0xfffd, 0x9, 0x200}, [@TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x1}]}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0xfff, 0x3, 0x6}, {0x400, 0x45c, 0x72, 0x3}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x8001}}]}]}}]}, 0x150}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000fc0)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000000000000fcffffff8500000023000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000400)={r0, &(0x7f0000000300)="d391290b7578afc2608b654fa66272cff1dfe1176ac1b499250b5699458728420c53e187f71a3d863d21afe4948d81b38b2d6dfc7bbb9fff7a2cdbfb97a71c55ad0a4ef7e0ff38db385b2782694e41ccd4f550cd57ad1a3282b3c084dba55997896ddcb649bb93b48d2ede4b82c00e35039bb2489c73c7e34e98a58e0759571ede66a21e145ce77a4e6fca0c362dff64281fabf712681e2ae8d065f73531fefbd177aef45d10", &(0x7f00000007c0)=""/177}, 0x20)

750.741622ms ago: executing program 0 (id=590):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x18)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f00000003c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x3}, [@call={0x85, 0x0, 0x0, 0x97}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f0000000000)="e06921e8682d85ff9782762f86dd", 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000740)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000cc0), r1)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000012c0), r1)
sendmsg$NLBL_MGMT_C_VERSION(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000080)={0x14, r3, 0xf03}, 0x14}}, 0x0)

696.020877ms ago: executing program 4 (id=591):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
sendmmsg(r0, &(0x7f0000005680)=[{{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000001180)="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", 0x3f2}, {&(0x7f0000000540)="57709671d7c6", 0x6}], 0x2}}], 0x1, 0x90)

575.613333ms ago: executing program 0 (id=592):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
socket$packet(0x11, 0x3, 0x300)
r1 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x6d}, 0x8)
bpf$ENABLE_STATS(0x20, &(0x7f0000000080), 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="380000001000010429bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="2b030000000000001800128008000100677470000c00028008000200", @ANYRES32=r2, @ANYBLOB="3fc851d55d6ab1fd50abc61efe73253dd2487f61ffa098b6bf028995fab5c0478371bfcb53a4b7aaa2708b924675b3feb0568359074c3f9e48eeddc1d08c16c3fd76bec3c95ca03262da36477b0adc59a300e5d8c91e33f6648b2a1132982cee7b0e7218ae1d64a462d43bac8b3184a4579c543e0795e381187f49a049baec3e57941454645f9f4aa73a7d447fceae3c816c95c177cd99ffd3ce1e62696bee65aabd6805ad07c482d5bb7459c315834552003de39ba292b24fcf211912f73ec02043deba0d32483b5c9cd9baebd8930c00cb15dbe3115f758def8678f8bf43ce617cc5d94151b3a1a4925d15b430835c11e8cb02"], 0x38}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x17, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000066000000a50000002300000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x60, @void, @value}, 0x94)
sendmmsg$inet6(r1, &(0x7f0000001140)=[{{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x4004000)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb00148008000b"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
socket$alg(0x26, 0x5, 0x0)
socket$kcm(0x2, 0x200000000000001, 0x106)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
socket$netlink(0x10, 0x3, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
connect$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e23, 0xee, @local, 0x8}, 0x1c)
socket(0x22, 0x800, 0x6)
unshare(0x22020600)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x4, 0x0, 0x0, 0x800000000000000}, 0x0, &(0x7f0000000000)={0x3ff, 0x20000000, 0x0, 0x9, 0x0, 0x1, 0x7fffffff}, 0x0, 0x0)
r7 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r5, &(0x7f0000000100)={0x20000014})
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, 0xffffffffffffffff, &(0x7f0000000000)={0xa0000001})
ppoll(&(0x7f0000000200)=[{r7, 0x1}], 0x1, 0x0, 0x0, 0x3)

574.647553ms ago: executing program 4 (id=593):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000640), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000080)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000dffbdbdf25210000000500200041e9ff000b001f0070687931000000000c000500"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x20048000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/cgroup\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x14, 0x2, 0x4)
ioctl$sock_TIOCOUTQ(r4, 0x5411, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = socket$packet(0x11, 0x2, 0x300)
r7 = socket$nl_route(0x10, 0x3, 0x0)
listen(r3, 0x6)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f00000000c0))
sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[], 0x6c}}, 0x0)
sendmsg$inet6(r5, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x0, 0x4, @empty, 0x7f}, 0x1c, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="280000000000000029000000390000002902020100000000ff0218e50018e6adb2c04431529d3bcfb400000000000000000000000000011400000000000000290000000b00000000000004005e0000"], 0x40}, 0x24004800)
r8 = socket$kcm(0x29, 0x2, 0x0)
setsockopt$kcm_KCM_RECV_DISABLE(r8, 0x119, 0x1, &(0x7f00000001c0)=0x2, 0x4)
close(r8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$F2FS_IOC_RESIZE_FS(r9, 0x4008f510, &(0x7f0000000000)=0x6)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'bond0\x00', &(0x7f0000000a00)=@ethtool_pauseparam={0x13, 0x4, 0x7, 0x7}})
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000280)=<r11=>0x0)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f00000002c0)={<r12=>0x0, <r13=>0x0}, &(0x7f0000000300)=0xc)
r14 = getpid()
sendmsg$NET_DM_CMD_START(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x14, 0x0, 0x400, 0x70bd26, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x80)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2080}, 0xc, &(0x7f0000000340)={&(0x7f0000000a40)=ANY=[@ANYBLOB="f80500003500000328bd7000fbdbdf250100000008002200", @ANYRES32=r14, @ANYRESOCT=r13, @ANYRES32=r11, @ANYBLOB='\b\x00K\x00', @ANYRES32=r12, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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"], 0x5f8}, 0x1, 0x0, 0x0, 0x40800}, 0x4)
unshare(0x4000000)

426.588469ms ago: executing program 1 (id=594):
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$alg(0x26, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x19}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r0, &(0x7f0000000000), 0x0}, 0x20)

234.984636ms ago: executing program 2 (id=595):
setsockopt$X25_QBITINCL(0xffffffffffffffff, 0x106, 0x1, &(0x7f0000000100)=0x1, 0x4)
setsockopt$MRT_ADD_MFC(0xffffffffffffffff, 0x0, 0xcc, 0x0, 0x0)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000c90000007b8af8ff00000000b7080000000008007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007d00000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0xc, 0xe, &(0x7f0000000b00)=ANY=[@ANYRESHEX=r2], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r4, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
r5 = socket$netlink(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@gettclass={0x24, 0x25, 0x1}, 0x24}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
write(r2, &(0x7f0000000140)="52a508e539d980716abb59e9711b39b3fcbad8568669890640184ca45469f33fc8223c0d598b2e7c19cc719e37dfeba8559ac6b24e570b6ce2c538808c57da97acb99a2d985b450a5ff5bcf8330d81eef781a20bafb71fe6b069970d", 0x5c)

150.834755ms ago: executing program 1 (id=596):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000040)=0x1, 0x12)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000180)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x19}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x8, 0xde, &(0x7f0000003e40)=""/222, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

0s ago: executing program 1 (id=597):
write(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$kcm(0x21, 0x2, 0x2)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000240), 0x4)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000000ffffffffffffbbbbbbbbbbbb88a800008100000008004500004000006000002f9078ac1e0001ac1414aa000086dd"], 0xb9)
bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x19, 0x19, 0x2, [@datasec={0x4, 0x1, 0x0, 0xf, 0x1, [{0x3, 0xe1, 0x1000e0}], "f1"}]}}, 0x0, 0x36, 0x0, 0x1, 0x100, 0x0, @void, @value}, 0x28)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000f40)={0x0, 0x0, &(0x7f0000000f00)={&(0x7f0000000000)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="010000000000000000000c000000280005801400f4800400020000000000080001000000000008"], 0x3c}}, 0x0)
r2 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414003400080004"], 0x2c}}, 0x0)
sendto$inet6(r2, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a001100b4"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)

kernel console output (not intermixed with test programs):

b0
[  136.742893][ T6723]  ? __pfx_wiphy_register+0x10/0x10
[  136.742918][ T6723]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  136.742950][ T6723]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  136.742981][ T6723]  ieee80211_register_hw+0x33e1/0x4120
[  136.743027][ T6723]  ? ieee80211_register_hw+0x13f1/0x4120
[  136.743065][ T6723]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  136.743099][ T6723]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  136.743139][ T6723]  ? __hrtimer_setup+0x187/0x210
[  136.743167][ T6723]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  136.743197][ T6723]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  136.743270][ T6723]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  136.743292][ T6723]  ? trace_kmalloc+0x1f/0xd0
[  136.743308][ T6723]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  136.743329][ T6723]  ? kstrndup+0xbf/0x160
[  136.743363][ T6723]  hwsim_new_radio_nl+0xea4/0x1b10
[  136.743391][ T6723]  ? __pfx___nla_validate_parse+0x10/0x10
[  136.743439][ T6723]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  136.743480][ T6723]  ? __nla_parse+0x40/0x60
[  136.743514][ T6723]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  136.743543][ T6723]  genl_family_rcv_msg_doit+0x212/0x300
[  136.743572][ T6723]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  136.743616][ T6723]  ? bpf_lsm_capable+0x9/0x20
[  136.743634][ T6723]  ? security_capable+0x7e/0x2e0
[  136.743667][ T6723]  genl_rcv_msg+0x60e/0x790
[  136.743705][ T6723]  ? __pfx_genl_rcv_msg+0x10/0x10
[  136.743734][ T6723]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  136.743776][ T6723]  netlink_rcv_skb+0x205/0x470
[  136.743803][ T6723]  ? __pfx_genl_rcv_msg+0x10/0x10
[  136.743836][ T6723]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  136.743883][ T6723]  ? down_read+0x1ad/0x2e0
[  136.743909][ T6723]  genl_rcv+0x28/0x40
[  136.743936][ T6723]  netlink_unicast+0x758/0x8d0
[  136.743973][ T6723]  netlink_sendmsg+0x805/0xb30
[  136.744013][ T6723]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.744057][ T6723]  ? aa_sock_msg_perm+0x94/0x160
[  136.744084][ T6723]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  136.744105][ T6723]  ? __pfx_netlink_sendmsg+0x10/0x10
[  136.744131][ T6723]  __sock_sendmsg+0x21c/0x270
[  136.744158][ T6723]  ____sys_sendmsg+0x505/0x830
[  136.744194][ T6723]  ? __pfx_____sys_sendmsg+0x10/0x10
[  136.744640][ T6723]  ? import_iovec+0x74/0xa0
[  136.744685][ T6723]  ___sys_sendmsg+0x21f/0x2a0
[  136.744720][ T6723]  ? __pfx____sys_sendmsg+0x10/0x10
[  136.744796][ T6723]  ? __fget_files+0x2a/0x420
[  136.744817][ T6723]  ? __fget_files+0x3a0/0x420
[  136.744854][ T6723]  __x64_sys_sendmsg+0x19b/0x260
[  136.744887][ T6723]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  136.744931][ T6723]  ? rcu_is_watching+0x15/0xb0
[  136.744966][ T6723]  ? do_syscall_64+0xbe/0x3b0
[  136.744988][ T6723]  do_syscall_64+0xfa/0x3b0
[  136.745006][ T6723]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.745022][ T6723]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.745039][ T6723]  ? clear_bhb_loop+0x60/0xb0
[  136.745061][ T6723]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.745079][ T6723] RIP: 0033:0x7fdb3af8e929
[  136.745118][ T6723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.745134][ T6723] RSP: 002b:00007fdb3bd89038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  136.745154][ T6723] RAX: ffffffffffffffda RBX: 00007fdb3b1b5fa0 RCX: 00007fdb3af8e929
[  136.745169][ T6723] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  136.745180][ T6723] RBP: 00007fdb3b010b39 R08: 0000000000000000 R09: 0000000000000000
[  136.745190][ T6723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  136.745199][ T6723] R13: 0000000000000000 R14: 00007fdb3b1b5fa0 R15: 00007fff5065ed58
[  136.745233][ T6723]  </TASK>
[  137.382863][ T6723] netlink: 'syz.2.211': attribute type 3 has an invalid length.
[  137.733198][ T6414] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.867023][ T6414] veth0_vlan: entered promiscuous mode
[  137.890945][ T6747] netlink: 'syz.2.218': attribute type 21 has an invalid length.
[  137.907352][ T6747] netlink: 14548 bytes leftover after parsing attributes in process `syz.2.218'.
[  137.951670][ T6748] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[  137.962139][ T6750] nftables ruleset with unbound chain
[  137.964897][ T6748] macsec1: entered promiscuous mode
[  137.973476][ T6748] macsec1: entered allmulticast mode
[  137.980039][ T6748] mac80211_hwsim hwsim5 wlan0: entered allmulticast mode
[  138.007779][ T6414] veth1_vlan: entered promiscuous mode
[  138.132161][ T6414] veth0_macvtap: entered promiscuous mode
[  138.180615][ T6414] veth1_macvtap: entered promiscuous mode
[  138.225005][ T6756] netlink: 'syz.0.222': attribute type 1 has an invalid length.
[  138.322881][ T6756] 8021q: adding VLAN 0 to HW filter on device bond1
[  138.343516][ T6414] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.519334][ T6762] bond1: (slave veth3): Enslaving as an active interface with a down link
[  138.607308][ T6756] bond1: (slave veth0_to_bond): making interface the new active one
[  138.622615][ T6756] veth0_to_bond: entered promiscuous mode
[  138.631420][ T6756] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  138.652694][ T6414] batman_adv: batadv0: Interface activated: batadv_slave_1
[  138.676434][ T6766] vlan2: entered allmulticast mode
[  138.681799][ T6766] veth1: entered allmulticast mode
[  138.690082][ T6766] veth1: entered promiscuous mode
[  138.697093][ T6766] veth1: left promiscuous mode
[  138.709883][ T6766] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  138.755235][ T2930] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.806088][ T2930] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.829076][   T49] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.888609][   T49] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.023449][ T6776] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  139.046779][ T6776] CPU: 0 UID: 0 PID: 6776 Comm: syz.1.229 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  139.046829][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  139.046842][ T6776] Call Trace:
[  139.046852][ T6776]  <TASK>
[  139.046861][ T6776]  dump_stack_lvl+0x189/0x250
[  139.046903][ T6776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.046935][ T6776]  ? __pfx__printk+0x10/0x10
[  139.046958][ T6776]  ? kernfs_path_from_node+0x2c/0x260
[  139.046981][ T6776]  ? kernfs_path_from_node+0x2c/0x260
[  139.047001][ T6776]  ? kernfs_path_from_node+0x2c/0x260
[  139.047027][ T6776]  ? kernfs_path_from_node+0x22c/0x260
[  139.047048][ T6776]  ? kernfs_path_from_node+0x2c/0x260
[  139.047075][ T6776]  sysfs_warn_dup+0x8e/0xa0
[  139.047099][ T6776]  sysfs_do_create_link_sd+0xc0/0x110
[  139.047125][ T6776]  device_add_class_symlinks+0x1cf/0x240
[  139.047154][ T6776]  device_add+0x475/0xb50
[  139.047182][ T6776]  wiphy_register+0x199a/0x26b0
[  139.047241][ T6776]  ? __pfx_wiphy_register+0x10/0x10
[  139.047264][ T6776]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  139.047300][ T6776]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  139.047333][ T6776]  ieee80211_register_hw+0x33e1/0x4120
[  139.047384][ T6776]  ? ieee80211_register_hw+0x13f1/0x4120
[  139.047426][ T6776]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  139.047461][ T6776]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  139.047503][ T6776]  ? __hrtimer_setup+0x187/0x210
[  139.047531][ T6776]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  139.047562][ T6776]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  139.047627][ T6776]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  139.047650][ T6776]  ? trace_kmalloc+0x1f/0xd0
[  139.047666][ T6776]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  139.047687][ T6776]  ? kstrndup+0xbf/0x160
[  139.047731][ T6776]  hwsim_new_radio_nl+0xea4/0x1b10
[  139.047759][ T6776]  ? __pfx___nla_validate_parse+0x10/0x10
[  139.047805][ T6776]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  139.047833][ T6776]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  139.047864][ T6776]  ? __nla_parse+0x40/0x60
[  139.047898][ T6776]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  139.047928][ T6776]  genl_family_rcv_msg_doit+0x212/0x300
[  139.047957][ T6776]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  139.048004][ T6776]  ? bpf_lsm_capable+0x9/0x20
[  139.048021][ T6776]  ? security_capable+0x7e/0x2e0
[  139.048056][ T6776]  genl_rcv_msg+0x60e/0x790
[  139.048096][ T6776]  ? __pfx_genl_rcv_msg+0x10/0x10
[  139.048123][ T6776]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  139.048166][ T6776]  netlink_rcv_skb+0x205/0x470
[  139.048192][ T6776]  ? __pfx_genl_rcv_msg+0x10/0x10
[  139.048234][ T6776]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  139.048281][ T6776]  ? down_read+0x1ad/0x2e0
[  139.048307][ T6776]  genl_rcv+0x28/0x40
[  139.048335][ T6776]  netlink_unicast+0x758/0x8d0
[  139.048375][ T6776]  netlink_sendmsg+0x805/0xb30
[  139.048414][ T6776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  139.048445][ T6776]  ? aa_sock_msg_perm+0x94/0x160
[  139.048474][ T6776]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  139.048499][ T6776]  ? __pfx_netlink_sendmsg+0x10/0x10
[  139.048526][ T6776]  __sock_sendmsg+0x21c/0x270
[  139.048553][ T6776]  ____sys_sendmsg+0x505/0x830
[  139.048590][ T6776]  ? __pfx_____sys_sendmsg+0x10/0x10
[  139.048632][ T6776]  ? import_iovec+0x74/0xa0
[  139.048656][ T6776]  ___sys_sendmsg+0x21f/0x2a0
[  139.048689][ T6776]  ? __pfx____sys_sendmsg+0x10/0x10
[  139.048765][ T6776]  ? __fget_files+0x2a/0x420
[  139.048787][ T6776]  ? __fget_files+0x3a0/0x420
[  139.048823][ T6776]  __x64_sys_sendmsg+0x19b/0x260
[  139.048856][ T6776]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  139.048899][ T6776]  ? rcu_is_watching+0x15/0xb0
[  139.048937][ T6776]  ? do_syscall_64+0xbe/0x3b0
[  139.048963][ T6776]  do_syscall_64+0xfa/0x3b0
[  139.048981][ T6776]  ? lockdep_hardirqs_on+0x9c/0x150
[  139.049000][ T6776]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.049020][ T6776]  ? clear_bhb_loop+0x60/0xb0
[  139.049045][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  139.049064][ T6776] RIP: 0033:0x7f3bc6f8e929
[  139.049084][ T6776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  139.049101][ T6776] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  139.049124][ T6776] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  139.049138][ T6776] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  139.049150][ T6776] RBP: 00007f3bc7010b39 R08: 0000000000000000 R09: 0000000000000000
[  139.049162][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  139.049173][ T6776] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  139.049209][ T6776]  </TASK>
[  139.610820][ T6776] netlink: 'syz.1.229': attribute type 3 has an invalid length.
[  139.853513][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.904331][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.981718][ T6789] netlink: 'syz.0.231': attribute type 21 has an invalid length.
[  139.990013][ T6789] netlink: 14548 bytes leftover after parsing attributes in process `syz.0.231'.
[  140.036389][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.070309][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.522284][ T6803] FAULT_INJECTION: forcing a failure.
[  140.522284][ T6803] name failslab, interval 1, probability 0, space 0, times 0
[  140.539909][ T6803] CPU: 0 UID: 0 PID: 6803 Comm: syz.1.236 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  140.539939][ T6803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  140.539951][ T6803] Call Trace:
[  140.539967][ T6803]  <TASK>
[  140.539976][ T6803]  dump_stack_lvl+0x189/0x250
[  140.540011][ T6803]  ? __pfx____ratelimit+0x10/0x10
[  140.540031][ T6803]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.540060][ T6803]  ? __pfx__printk+0x10/0x10
[  140.540087][ T6803]  ? __pfx___might_resched+0x10/0x10
[  140.540120][ T6803]  should_fail_ex+0x414/0x560
[  140.540151][ T6803]  should_failslab+0xa8/0x100
[  140.540173][ T6803]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  140.540193][ T6803]  ? __alloc_skb+0x112/0x2d0
[  140.540227][ T6803]  __alloc_skb+0x112/0x2d0
[  140.540254][ T6803]  netlink_sendmsg+0x5c6/0xb30
[  140.540289][ T6803]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.540316][ T6803]  ? aa_sock_msg_perm+0x94/0x160
[  140.540341][ T6803]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  140.540365][ T6803]  ? __pfx_netlink_sendmsg+0x10/0x10
[  140.540390][ T6803]  __sock_sendmsg+0x21c/0x270
[  140.540415][ T6803]  ____sys_sendmsg+0x505/0x830
[  140.540449][ T6803]  ? __pfx_____sys_sendmsg+0x10/0x10
[  140.540486][ T6803]  ? import_iovec+0x74/0xa0
[  140.540510][ T6803]  ___sys_sendmsg+0x21f/0x2a0
[  140.540540][ T6803]  ? __pfx____sys_sendmsg+0x10/0x10
[  140.540608][ T6803]  ? __fget_files+0x2a/0x420
[  140.540628][ T6803]  ? __fget_files+0x3a0/0x420
[  140.540661][ T6803]  __x64_sys_sendmsg+0x19b/0x260
[  140.540691][ T6803]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  140.540727][ T6803]  ? __pfx_ksys_write+0x10/0x10
[  140.540743][ T6803]  ? rcu_is_watching+0x15/0xb0
[  140.540777][ T6803]  ? do_syscall_64+0xbe/0x3b0
[  140.540801][ T6803]  do_syscall_64+0xfa/0x3b0
[  140.540819][ T6803]  ? lockdep_hardirqs_on+0x9c/0x150
[  140.540836][ T6803]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.540855][ T6803]  ? clear_bhb_loop+0x60/0xb0
[  140.540877][ T6803]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.540895][ T6803] RIP: 0033:0x7f3bc6f8e929
[  140.540914][ T6803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.540929][ T6803] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  140.540951][ T6803] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  140.540975][ T6803] RDX: 0000000000044000 RSI: 0000200000000540 RDI: 0000000000000003
[  140.540988][ T6803] RBP: 00007f3bc7da6090 R08: 0000000000000000 R09: 0000000000000000
[  140.540999][ T6803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  140.541010][ T6803] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  140.541042][ T6803]  </TASK>
[  140.947124][ T5847] Bluetooth: hci4: link tx timeout
[  140.956960][ T5847] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  141.491520][ T6819] netlink: 28 bytes leftover after parsing attributes in process `syz.1.243'.
[  141.540228][ T6819] netlink: 'syz.1.243': attribute type 7 has an invalid length.
[  141.604139][ T6819] netlink: 'syz.1.243': attribute type 8 has an invalid length.
[  141.611712][   T13] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.612808][ T6819] netlink: 4 bytes leftover after parsing attributes in process `syz.1.243'.
[  141.789880][   T13] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.020161][ T6824] vxcan1: tx address claim with dlc 0
[  142.029009][   T13] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.257756][   T13] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.390815][ T6832] netlink: 'syz.2.248': attribute type 21 has an invalid length.
[  142.407001][ T6828] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  142.418371][ T6828] macsec1: entered promiscuous mode
[  142.438412][ T6828] macsec1: entered allmulticast mode
[  142.448348][ T6832] netlink: 14548 bytes leftover after parsing attributes in process `syz.2.248'.
[  142.474807][ T6828] mac80211_hwsim hwsim4 wlan0: entered allmulticast mode
[  142.718561][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  142.732432][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  142.743574][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  142.752499][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  142.763868][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  142.819866][ T6830] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.829100][ T6830] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.996175][ T5844] Bluetooth: hci4: command 0x0406 tx timeout
[  143.066429][ T6857] FAULT_INJECTION: forcing a failure.
[  143.066429][ T6857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  143.087428][ T6830] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  143.105291][ T6857] CPU: 1 UID: 0 PID: 6857 Comm: syz.1.251 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  143.105319][ T6857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  143.105330][ T6857] Call Trace:
[  143.105338][ T6857]  <TASK>
[  143.105346][ T6857]  dump_stack_lvl+0x189/0x250
[  143.105381][ T6857]  ? __pfx____ratelimit+0x10/0x10
[  143.105400][ T6857]  ? __pfx_dump_stack_lvl+0x10/0x10
[  143.105426][ T6857]  ? __pfx__printk+0x10/0x10
[  143.105442][ T6857]  ? __might_fault+0xb0/0x130
[  143.105473][ T6857]  should_fail_ex+0x414/0x560
[  143.105503][ T6857]  _copy_from_iter+0x1db/0x16f0
[  143.105536][ T6857]  ? rcu_is_watching+0x15/0xb0
[  143.105563][ T6857]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  143.105582][ T6857]  ? __pfx__copy_from_iter+0x10/0x10
[  143.105609][ T6857]  ? __build_skb_around+0x257/0x3e0
[  143.105637][ T6857]  ? netlink_sendmsg+0x642/0xb30
[  143.105658][ T6857]  ? skb_put+0x11b/0x210
[  143.105686][ T6857]  netlink_sendmsg+0x6b2/0xb30
[  143.105717][ T6857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.105742][ T6857]  ? aa_sock_msg_perm+0x94/0x160
[  143.105767][ T6857]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  143.105788][ T6857]  ? __pfx_netlink_sendmsg+0x10/0x10
[  143.105811][ T6857]  __sock_sendmsg+0x21c/0x270
[  143.105835][ T6857]  ____sys_sendmsg+0x505/0x830
[  143.105867][ T6857]  ? __pfx_____sys_sendmsg+0x10/0x10
[  143.105906][ T6857]  ? import_iovec+0x74/0xa0
[  143.105928][ T6857]  ___sys_sendmsg+0x21f/0x2a0
[  143.105957][ T6857]  ? __pfx____sys_sendmsg+0x10/0x10
[  143.106037][ T6857]  ? __fget_files+0x2a/0x420
[  143.106057][ T6857]  ? __fget_files+0x3a0/0x420
[  143.106090][ T6857]  __x64_sys_sendmsg+0x19b/0x260
[  143.106117][ T6857]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  143.106154][ T6857]  ? __pfx_ksys_write+0x10/0x10
[  143.106168][ T6857]  ? rcu_is_watching+0x15/0xb0
[  143.106198][ T6857]  ? do_syscall_64+0xbe/0x3b0
[  143.106221][ T6857]  do_syscall_64+0xfa/0x3b0
[  143.106238][ T6857]  ? lockdep_hardirqs_on+0x9c/0x150
[  143.106255][ T6857]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.106273][ T6857]  ? clear_bhb_loop+0x60/0xb0
[  143.106296][ T6857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.106314][ T6857] RIP: 0033:0x7f3bc6f8e929
[  143.106330][ T6857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.106345][ T6857] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  143.106366][ T6857] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  143.106379][ T6857] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[  143.106391][ T6857] RBP: 00007f3bc7da6090 R08: 0000000000000000 R09: 0000000000000000
[  143.106402][ T6857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.106413][ T6857] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  143.106444][ T6857]  </TASK>
[  143.118624][ T6830] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  143.709369][ T6830] mac80211_hwsim hwsim5 wlan0: left allmulticast mode
[  143.719560][ T6830] macsec1: left promiscuous mode
[  143.735868][ T6830] macsec1: left allmulticast mode
[  143.752524][ T6830] vlan2: left allmulticast mode
[  143.759419][ T6830] veth1: left allmulticast mode
[  143.859788][   T59] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.889376][   T59] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.911115][ T1005] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.977165][ T1005] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  144.193955][ T6868] team_slave_1: entered promiscuous mode
[  144.271980][   T13] bridge_slave_1: left allmulticast mode
[  144.294619][   T13] bridge_slave_1: left promiscuous mode
[  144.300696][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.390556][   T13] bridge_slave_0: left allmulticast mode
[  144.410353][   T13] bridge_slave_0: left promiscuous mode
[  144.428808][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.720630][ T6879] netlink: 4 bytes leftover after parsing attributes in process `syz.2.259'.
[  144.834415][ T5847] Bluetooth: hci2: command tx timeout
[  145.024511][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.037277][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.049797][   T13] bond0 (unregistering): Released all slaves
[  145.071556][ T6874] dummy0: entered promiscuous mode
[  145.079247][ T6874] vlan2: entered promiscuous mode
[  145.561247][ T6894] netlink: 'syz.2.264': attribute type 21 has an invalid length.
[  145.570256][ T6894] netlink: 14548 bytes leftover after parsing attributes in process `syz.2.264'.
[  145.586779][ T6888] xt_CT: No such helper "syz1"
[  145.958481][ T6903] netlink: 12 bytes leftover after parsing attributes in process `syz.1.268'.
[  145.981820][ T6903] netlink: 4 bytes leftover after parsing attributes in process `syz.1.268'.
[  146.176114][ T6839] chnl_net:caif_netlink_parms(): no params data found
[  146.618798][ T6839] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.632574][ T6839] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.642028][ T6839] bridge_slave_0: entered allmulticast mode
[  146.696242][ T6839] bridge_slave_0: entered promiscuous mode
[  146.716662][ T6839] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.743351][ T6839] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.757360][ T6839] bridge_slave_1: entered allmulticast mode
[  146.766837][ T6929] netlink: 'syz.2.274': attribute type 10 has an invalid length.
[  146.798117][ T6929] netlink: 40 bytes leftover after parsing attributes in process `syz.2.274'.
[  146.804372][ T6839] bridge_slave_1: entered promiscuous mode
[  146.810250][ T6932] netlink: 'syz.1.275': attribute type 21 has an invalid length.
[  146.829224][ T6932] netlink: 14548 bytes leftover after parsing attributes in process `syz.1.275'.
[  146.914501][ T5847] Bluetooth: hci2: command tx timeout
[  147.057790][ T6839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.180055][ T6839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.296983][ T6942] netlink: 44 bytes leftover after parsing attributes in process `syz.2.279'.
[  147.630154][ T6839] team0: Port device team_slave_0 added
[  147.768549][ T6955] vxcan1: tx address claim with dest, not broadcast
[  147.784525][   T13] hsr_slave_0: left promiscuous mode
[  147.794144][   T13] hsr_slave_1: left promiscuous mode
[  147.812260][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  147.848711][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  147.870358][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  147.900399][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  147.942494][   T13] veth1_macvtap: left promiscuous mode
[  147.949253][   T13] veth0_macvtap: left promiscuous mode
[  147.960042][   T13] veth1_vlan: left promiscuous mode
[  147.966509][   T13] veth0_vlan: left promiscuous mode
[  148.069185][ T6948] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.163198][ T6948] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  148.558631][   T13] team0 (unregistering): Port device team_slave_1 removed
[  148.621696][   T13] team0 (unregistering): Port device team_slave_0 removed
[  148.925131][ T6948] syz.2.281 (6948) used greatest stack depth: 20080 bytes left
[  148.994355][ T5847] Bluetooth: hci2: command tx timeout
[  149.192626][ T6839] team0: Port device team_slave_1 added
[  149.328606][ T6962] vxcan1: tx address claim with dest, not broadcast
[  149.439823][ T6839] batman_adv: batadv0: Adding interface: batadv_slave_0
[  149.447246][ T6839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.490633][ T6839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  149.583127][ T6839] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.614921][ T6839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  149.690408][ T6839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.815786][ T6971] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  149.835605][ T6971] CPU: 0 UID: 0 PID: 6971 Comm: syz.1.286 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  149.835637][ T6971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  149.835647][ T6971] Call Trace:
[  149.835655][ T6971]  <TASK>
[  149.835663][ T6971]  dump_stack_lvl+0x189/0x250
[  149.835702][ T6971]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.835731][ T6971]  ? __pfx__printk+0x10/0x10
[  149.835753][ T6971]  ? kernfs_path_from_node+0x2c/0x260
[  149.835772][ T6971]  ? kernfs_path_from_node+0x2c/0x260
[  149.835789][ T6971]  ? kernfs_path_from_node+0x2c/0x260
[  149.835812][ T6971]  ? kernfs_path_from_node+0x22c/0x260
[  149.835832][ T6971]  ? kernfs_path_from_node+0x2c/0x260
[  149.835857][ T6971]  sysfs_warn_dup+0x8e/0xa0
[  149.835880][ T6971]  sysfs_do_create_link_sd+0xc0/0x110
[  149.835906][ T6971]  device_add_class_symlinks+0x1cf/0x240
[  149.835933][ T6971]  device_add+0x475/0xb50
[  149.835960][ T6971]  wiphy_register+0x199a/0x26b0
[  149.836006][ T6971]  ? __pfx_wiphy_register+0x10/0x10
[  149.836029][ T6971]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  149.836065][ T6971]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  149.836098][ T6971]  ieee80211_register_hw+0x33e1/0x4120
[  149.836150][ T6971]  ? ieee80211_register_hw+0x13f1/0x4120
[  149.836198][ T6971]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  149.836232][ T6971]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  149.836273][ T6971]  ? __hrtimer_setup+0x187/0x210
[  149.836301][ T6971]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  149.836332][ T6971]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  149.836395][ T6971]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  149.836417][ T6971]  ? trace_kmalloc+0x1f/0xd0
[  149.836432][ T6971]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  149.836452][ T6971]  ? kstrndup+0xbf/0x160
[  149.836490][ T6971]  hwsim_new_radio_nl+0xea4/0x1b10
[  149.836518][ T6971]  ? __pfx___nla_validate_parse+0x10/0x10
[  149.836565][ T6971]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  149.836606][ T6971]  ? __nla_parse+0x40/0x60
[  149.836640][ T6971]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  149.836684][ T6971]  genl_family_rcv_msg_doit+0x212/0x300
[  149.836713][ T6971]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  149.836763][ T6971]  ? bpf_lsm_capable+0x9/0x20
[  149.836780][ T6971]  ? security_capable+0x7e/0x2e0
[  149.836815][ T6971]  genl_rcv_msg+0x60e/0x790
[  149.836854][ T6971]  ? __pfx_genl_rcv_msg+0x10/0x10
[  149.836884][ T6971]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  149.836927][ T6971]  netlink_rcv_skb+0x205/0x470
[  149.836951][ T6971]  ? __pfx_genl_rcv_msg+0x10/0x10
[  149.836984][ T6971]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  149.837031][ T6971]  ? down_read+0x1ad/0x2e0
[  149.837056][ T6971]  genl_rcv+0x28/0x40
[  149.837083][ T6971]  netlink_unicast+0x758/0x8d0
[  149.837120][ T6971]  netlink_sendmsg+0x805/0xb30
[  149.837156][ T6971]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.837194][ T6971]  ? aa_sock_msg_perm+0x94/0x160
[  149.837222][ T6971]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  149.837247][ T6971]  ? __pfx_netlink_sendmsg+0x10/0x10
[  149.837273][ T6971]  __sock_sendmsg+0x21c/0x270
[  149.837301][ T6971]  ____sys_sendmsg+0x505/0x830
[  149.837338][ T6971]  ? __pfx_____sys_sendmsg+0x10/0x10
[  149.837379][ T6971]  ? import_iovec+0x74/0xa0
[  149.837405][ T6971]  ___sys_sendmsg+0x21f/0x2a0
[  149.837437][ T6971]  ? __pfx____sys_sendmsg+0x10/0x10
[  149.837514][ T6971]  ? __fget_files+0x2a/0x420
[  149.837536][ T6971]  ? __fget_files+0x3a0/0x420
[  149.837572][ T6971]  __x64_sys_sendmsg+0x19b/0x260
[  149.837605][ T6971]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  149.837648][ T6971]  ? rcu_is_watching+0x15/0xb0
[  149.837685][ T6971]  ? do_syscall_64+0xbe/0x3b0
[  149.837712][ T6971]  do_syscall_64+0xfa/0x3b0
[  149.837730][ T6971]  ? lockdep_hardirqs_on+0x9c/0x150
[  149.837749][ T6971]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.837769][ T6971]  ? clear_bhb_loop+0x60/0xb0
[  149.837794][ T6971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.837813][ T6971] RIP: 0033:0x7f3bc6f8e929
[  149.837833][ T6971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  149.837849][ T6971] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  149.837871][ T6971] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  149.837884][ T6971] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  149.837897][ T6971] RBP: 00007f3bc7010b39 R08: 0000000000000000 R09: 0000000000000000
[  149.837909][ T6971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  149.837920][ T6971] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  149.837954][ T6971]  </TASK>
[  150.418716][ T6839] hsr_slave_0: entered promiscuous mode
[  150.459239][ T6839] hsr_slave_1: entered promiscuous mode
[  150.491757][ T6839] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  150.520835][ T6839] Cannot create hsr debugfs directory
[  150.822614][ T6980] netlink: 16 bytes leftover after parsing attributes in process `syz.0.287'.
[  151.084160][ T5847] Bluetooth: hci2: command tx timeout
[  152.026683][ T6984] netlink: 16 bytes leftover after parsing attributes in process `syz.1.289'.
[  152.057237][ T6985] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input5
[  152.665923][ T7002] vlan2: entered promiscuous mode
[  152.904445][ T6839] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  152.948428][ T6839] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  152.991475][ T6839] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  153.011048][ T7015] netlink: 12 bytes leftover after parsing attributes in process `syz.0.301'.
[  153.050252][ T7017] netlink: 'syz.4.302': attribute type 29 has an invalid length.
[  153.065664][ T7017] netlink: 'syz.4.302': attribute type 29 has an invalid length.
[  153.096733][ T7017] netlink: 500 bytes leftover after parsing attributes in process `syz.4.302'.
[  153.106280][ T6839] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  153.211863][ T7021] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  153.294812][ T7028] vxcan1: tx address claim with dest, not broadcast
[  153.477837][ T6839] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.530423][ T7030] vlan2: entered promiscuous mode
[  153.592354][ T6839] 8021q: adding VLAN 0 to HW filter on device team0
[  153.616531][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.623797][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.686205][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.693669][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  154.935698][ T7055] netlink: 20 bytes leftover after parsing attributes in process `syz.0.315'.
[  154.953795][ T7056] netlink: 8 bytes leftover after parsing attributes in process `syz.1.316'.
[  154.959869][ T6839] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.156054][ T6839] veth0_vlan: entered promiscuous mode
[  155.190982][ T6839] veth1_vlan: entered promiscuous mode
[  155.315584][ T6839] veth0_macvtap: entered promiscuous mode
[  155.343326][ T6839] veth1_macvtap: entered promiscuous mode
[  155.390175][ T6839] batman_adv: batadv0: Interface activated: batadv_slave_0
[  155.439962][ T6839] batman_adv: batadv0: Interface activated: batadv_slave_1
[  155.469089][ T4524] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  155.501915][ T4524] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  155.530036][ T4524] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  155.551755][ T4524] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  155.752200][ T4524] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.778671][ T4524] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  155.826899][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  155.836452][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.397301][ T7088] netlink: 8 bytes leftover after parsing attributes in process `syz.1.327'.
[  156.421863][ T7088] vlan2: entered allmulticast mode
[  156.444906][ T7088] netlink: 44 bytes leftover after parsing attributes in process `syz.1.327'.
[  156.465200][ T7089] tipc: Started in network mode
[  156.491207][ T7089] tipc: Node identity ac14140f, cluster identity 4711
[  156.512164][ T7089] tipc: New replicast peer: 255.255.255.255
[  156.558496][ T7089] tipc: Enabled bearer <udp:syz2>, priority 10
[  156.708870][ T1149] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.823088][ T7091] netlink: 12 bytes leftover after parsing attributes in process `syz.2.326'.
[  156.897865][ T7091] tipc: Disabling bearer <udp:syz2>
[  157.096777][ T1149] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.262700][ T1149] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.629876][ T1149] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.872816][ T7100] veth1_to_bond: entered allmulticast mode
[  157.936630][ T7100] syz.2.330 uses obsolete (PF_INET,SOCK_PACKET)
[  158.014394][ T7099] veth1_to_bond: left allmulticast mode
[  158.310844][ T7114] FAULT_INJECTION: forcing a failure.
[  158.310844][ T7114] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  158.378676][ T7114] CPU: 1 UID: 0 PID: 7114 Comm: syz.2.333 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  158.378706][ T7114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  158.378716][ T7114] Call Trace:
[  158.378725][ T7114]  <TASK>
[  158.378733][ T7114]  dump_stack_lvl+0x189/0x250
[  158.378767][ T7114]  ? __pfx____ratelimit+0x10/0x10
[  158.378786][ T7114]  ? __pfx_dump_stack_lvl+0x10/0x10
[  158.378815][ T7114]  ? __pfx__printk+0x10/0x10
[  158.378836][ T7114]  ? __might_fault+0xb0/0x130
[  158.378867][ T7114]  should_fail_ex+0x414/0x560
[  158.378896][ T7114]  _copy_from_user+0x2d/0xb0
[  158.378915][ T7114]  dev_ethtool+0x221/0x19b0
[  158.378945][ T7114]  ? __lock_acquire+0xab9/0xd20
[  158.378973][ T7114]  ? __pfx_dev_ethtool+0x10/0x10
[  158.379014][ T7114]  ? dev_load+0x21/0x1f0
[  158.379038][ T7114]  dev_ioctl+0x392/0x1150
[  158.379062][ T7114]  sock_do_ioctl+0x22c/0x300
[  158.379087][ T7114]  ? __pfx_sock_do_ioctl+0x10/0x10
[  158.379104][ T7114]  ? __lock_acquire+0xab9/0xd20
[  158.379148][ T7114]  sock_ioctl+0x576/0x790
[  158.379176][ T7114]  ? __pfx_sock_ioctl+0x10/0x10
[  158.379195][ T7114]  ? __fget_files+0x2a/0x420
[  158.379219][ T7114]  ? __fget_files+0x3a0/0x420
[  158.379235][ T7114]  ? __fget_files+0x2a/0x420
[  158.379257][ T7114]  ? bpf_lsm_file_ioctl+0x9/0x20
[  158.379282][ T7114]  ? __pfx_sock_ioctl+0x10/0x10
[  158.379300][ T7114]  __se_sys_ioctl+0xfc/0x170
[  158.379328][ T7114]  do_syscall_64+0xfa/0x3b0
[  158.379346][ T7114]  ? lockdep_hardirqs_on+0x9c/0x150
[  158.379362][ T7114]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.379379][ T7114]  ? clear_bhb_loop+0x60/0xb0
[  158.379485][ T7114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  158.379503][ T7114] RIP: 0033:0x7fdb3af8e929
[  158.379522][ T7114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.379536][ T7114] RSP: 002b:00007fdb3bd89038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  158.379557][ T7114] RAX: ffffffffffffffda RBX: 00007fdb3b1b5fa0 RCX: 00007fdb3af8e929
[  158.379569][ T7114] RDX: 0000200000000f00 RSI: 0000000000008946 RDI: 0000000000000004
[  158.379580][ T7114] RBP: 00007fdb3bd89090 R08: 0000000000000000 R09: 0000000000000000
[  158.379590][ T7114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.379600][ T7114] R13: 0000000000000000 R14: 00007fdb3b1b5fa0 R15: 00007fff5065ed58
[  158.379631][ T7114]  </TASK>
[  158.385799][ T1149] bridge_slave_1: left allmulticast mode
[  158.925716][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  158.935754][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  158.946235][ T5844] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  158.980087][ T5844] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  158.995584][ T5844] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  159.035933][ T1149] bridge_slave_1: left promiscuous mode
[  159.065680][ T1149] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.182404][ T1149] bridge_slave_0: left allmulticast mode
[  159.218656][ T1149] bridge_slave_0: left promiscuous mode
[  159.244568][ T1149] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.319328][ T7134] netlink: 20 bytes leftover after parsing attributes in process `syz.2.340'.
[  159.879119][ T1149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  159.890069][ T1149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  159.902341][ T1149] bond0 (unregistering): Released all slaves
[  159.926742][ T7143] syz_tun: entered allmulticast mode
[  159.964330][ T7141] syz_tun: left allmulticast mode
[  160.096992][ T7147] netlink: 12 bytes leftover after parsing attributes in process `syz.2.345'.
[  160.169330][ T7147] netlink: 4 bytes leftover after parsing attributes in process `syz.2.345'.
[  161.074716][ T5844] Bluetooth: hci2: command tx timeout
[  161.380558][ T7174] netlink: 12 bytes leftover after parsing attributes in process `syz.2.355'.
[  161.461627][ T1149] hsr_slave_0: left promiscuous mode
[  161.468534][ T7176] xt_bpf: check failed: parse error
[  161.509703][ T1149] hsr_slave_1: left promiscuous mode
[  161.552841][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  161.561000][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.635854][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.643360][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.693809][ T1149] veth1_macvtap: left promiscuous mode
[  161.700407][ T1149] veth0_macvtap: left promiscuous mode
[  161.706551][ T1149] veth1_vlan: left promiscuous mode
[  161.712528][ T1149] veth0_vlan: left promiscuous mode
[  161.924442][ T7190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.361'.
[  162.325674][ T1149] team0 (unregistering): Port device team_slave_1 removed
[  162.392443][ T1149] team0 (unregistering): Port device team_slave_0 removed
[  163.043340][ T7200] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  163.054656][ T7208] netlink: 84 bytes leftover after parsing attributes in process `syz.4.363'.
[  163.056916][ T7200] CPU: 0 UID: 0 PID: 7200 Comm: syz.0.362 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  163.056942][ T7200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.056951][ T7200] Call Trace:
[  163.056959][ T7200]  <TASK>
[  163.056967][ T7200]  dump_stack_lvl+0x189/0x250
[  163.057002][ T7200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.057028][ T7200]  ? __pfx__printk+0x10/0x10
[  163.057048][ T7200]  ? kernfs_path_from_node+0x2c/0x260
[  163.057068][ T7200]  ? kernfs_path_from_node+0x2c/0x260
[  163.057086][ T7200]  ? kernfs_path_from_node+0x2c/0x260
[  163.057107][ T7200]  ? kernfs_path_from_node+0x22c/0x260
[  163.057124][ T7200]  ? kernfs_path_from_node+0x2c/0x260
[  163.057147][ T7200]  sysfs_warn_dup+0x8e/0xa0
[  163.057166][ T7200]  sysfs_do_create_link_sd+0xc0/0x110
[  163.057189][ T7200]  device_add_class_symlinks+0x1cf/0x240
[  163.057213][ T7200]  device_add+0x475/0xb50
[  163.057236][ T7200]  wiphy_register+0x199a/0x26b0
[  163.057276][ T7200]  ? __pfx_wiphy_register+0x10/0x10
[  163.057295][ T7200]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  163.057325][ T7200]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  163.057352][ T7200]  ieee80211_register_hw+0x33e1/0x4120
[  163.057396][ T7200]  ? ieee80211_register_hw+0x13f1/0x4120
[  163.057430][ T7200]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  163.057459][ T7200]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  163.057493][ T7200]  ? __hrtimer_setup+0x187/0x210
[  163.057516][ T7200]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  163.057542][ T7200]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  163.057596][ T7200]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  163.057614][ T7200]  ? trace_kmalloc+0x1f/0xd0
[  163.057628][ T7200]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  163.057644][ T7200]  ? kstrndup+0xbf/0x160
[  163.057675][ T7200]  hwsim_new_radio_nl+0xea4/0x1b10
[  163.057699][ T7200]  ? __pfx___nla_validate_parse+0x10/0x10
[  163.057739][ T7200]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  163.057774][ T7200]  ? __nla_parse+0x40/0x60
[  163.057803][ T7200]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  163.057837][ T7200]  genl_family_rcv_msg_doit+0x212/0x300
[  163.057861][ T7200]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  163.057901][ T7200]  ? bpf_lsm_capable+0x9/0x20
[  163.057923][ T7200]  ? security_capable+0x7e/0x2e0
[  163.057952][ T7200]  genl_rcv_msg+0x60e/0x790
[  163.057985][ T7200]  ? __pfx_genl_rcv_msg+0x10/0x10
[  163.058009][ T7200]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  163.058045][ T7200]  netlink_rcv_skb+0x205/0x470
[  163.058067][ T7200]  ? __pfx_genl_rcv_msg+0x10/0x10
[  163.058093][ T7200]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  163.058133][ T7200]  ? down_read+0x1ad/0x2e0
[  163.058155][ T7200]  genl_rcv+0x28/0x40
[  163.058178][ T7200]  netlink_unicast+0x758/0x8d0
[  163.058211][ T7200]  netlink_sendmsg+0x805/0xb30
[  163.058244][ T7200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.058269][ T7200]  ? aa_sock_msg_perm+0x94/0x160
[  163.058293][ T7200]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  163.058314][ T7200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.058336][ T7200]  __sock_sendmsg+0x21c/0x270
[  163.058359][ T7200]  ____sys_sendmsg+0x505/0x830
[  163.058390][ T7200]  ? __pfx_____sys_sendmsg+0x10/0x10
[  163.058425][ T7200]  ? import_iovec+0x74/0xa0
[  163.058447][ T7200]  ___sys_sendmsg+0x21f/0x2a0
[  163.058474][ T7200]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.058540][ T7200]  ? __fget_files+0x2a/0x420
[  163.058558][ T7200]  ? __fget_files+0x3a0/0x420
[  163.058588][ T7200]  __x64_sys_sendmsg+0x19b/0x260
[  163.058615][ T7200]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  163.058652][ T7200]  ? rcu_is_watching+0x15/0xb0
[  163.058683][ T7200]  ? do_syscall_64+0xbe/0x3b0
[  163.058705][ T7200]  do_syscall_64+0xfa/0x3b0
[  163.058721][ T7200]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.058737][ T7200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.058754][ T7200]  ? clear_bhb_loop+0x60/0xb0
[  163.058775][ T7200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.058791][ T7200] RIP: 0033:0x7f6c3ad8e929
[  163.058807][ T7200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.058828][ T7200] RSP: 002b:00007f6c3bca2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.058848][ T7200] RAX: ffffffffffffffda RBX: 00007f6c3afb5fa0 RCX: 00007f6c3ad8e929
[  163.058860][ T7200] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  163.058871][ T7200] RBP: 00007f6c3ae10b39 R08: 0000000000000000 R09: 0000000000000000
[  163.058881][ T7200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  163.058891][ T7200] R13: 0000000000000000 R14: 00007f6c3afb5fa0 R15: 00007ffc2eb342c8
[  163.058921][ T7200]  </TASK>
[  163.164206][ T5844] Bluetooth: hci2: command tx timeout
[  163.549519][ T7214] FAULT_INJECTION: forcing a failure.
[  163.549519][ T7214] name failslab, interval 1, probability 0, space 0, times 0
[  163.587123][ T7214] CPU: 1 UID: 0 PID: 7214 Comm: syz.4.366 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  163.587150][ T7214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.587161][ T7214] Call Trace:
[  163.587169][ T7214]  <TASK>
[  163.587178][ T7214]  dump_stack_lvl+0x189/0x250
[  163.587217][ T7214]  ? __pfx____ratelimit+0x10/0x10
[  163.587236][ T7214]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.587263][ T7214]  ? __pfx__printk+0x10/0x10
[  163.587289][ T7214]  ? __pfx___might_resched+0x10/0x10
[  163.587320][ T7214]  should_fail_ex+0x414/0x560
[  163.587348][ T7214]  should_failslab+0xa8/0x100
[  163.587378][ T7214]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  163.587397][ T7214]  ? __alloc_skb+0x112/0x2d0
[  163.587425][ T7214]  __alloc_skb+0x112/0x2d0
[  163.587452][ T7214]  netlink_sendmsg+0x5c6/0xb30
[  163.587487][ T7214]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.587512][ T7214]  ? aa_sock_msg_perm+0x94/0x160
[  163.587545][ T7214]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  163.587568][ T7214]  ? __pfx_netlink_sendmsg+0x10/0x10
[  163.587667][ T7214]  __sock_sendmsg+0x21c/0x270
[  163.587710][ T7214]  ____sys_sendmsg+0x505/0x830
[  163.587743][ T7214]  ? __pfx_____sys_sendmsg+0x10/0x10
[  163.587780][ T7214]  ? import_iovec+0x74/0xa0
[  163.587803][ T7214]  ___sys_sendmsg+0x21f/0x2a0
[  163.587829][ T7214]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.587887][ T7214]  ? __fget_files+0x2a/0x420
[  163.587906][ T7214]  ? __fget_files+0x3a0/0x420
[  163.587938][ T7214]  __x64_sys_sendmsg+0x19b/0x260
[  163.587968][ T7214]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  163.588006][ T7214]  ? __pfx_ksys_write+0x10/0x10
[  163.588021][ T7214]  ? rcu_is_watching+0x15/0xb0
[  163.588054][ T7214]  ? do_syscall_64+0xbe/0x3b0
[  163.588121][ T7214]  do_syscall_64+0xfa/0x3b0
[  163.588139][ T7214]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.588156][ T7214]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.588175][ T7214]  ? clear_bhb_loop+0x60/0xb0
[  163.588198][ T7214]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.588215][ T7214] RIP: 0033:0x7fa43a78e929
[  163.588234][ T7214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.588259][ T7214] RSP: 002b:00007fa43b685038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.588280][ T7214] RAX: ffffffffffffffda RBX: 00007fa43a9b5fa0 RCX: 00007fa43a78e929
[  163.588294][ T7214] RDX: 0000000000000810 RSI: 0000200000000280 RDI: 0000000000000003
[  163.588306][ T7214] RBP: 00007fa43b685090 R08: 0000000000000000 R09: 0000000000000000
[  163.588316][ T7214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.588327][ T7214] R13: 0000000000000000 R14: 00007fa43a9b5fa0 R15: 00007ffc14fcd988
[  163.588358][ T7214]  </TASK>
[  163.950167][ T7218] netlink: 92 bytes leftover after parsing attributes in process `syz.2.367'.
[  164.033635][ T7124] chnl_net:caif_netlink_parms(): no params data found
[  164.876335][ T7230] vxcan1: tx address claim with dlc 0
[  164.940555][ T7124] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.963025][ T7124] bridge0: port 1(bridge_slave_0) entered disabled state
[  165.015023][ T7124] bridge_slave_0: entered allmulticast mode
[  165.051131][ T7124] bridge_slave_0: entered promiscuous mode
[  165.102987][ T7124] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.131154][ T7124] bridge0: port 2(bridge_slave_1) entered disabled state
[  165.145734][ T7124] bridge_slave_1: entered allmulticast mode
[  165.155745][ T7124] bridge_slave_1: entered promiscuous mode
[  165.168067][ T7242] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  165.349952][ T7124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  165.369895][ T7124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  165.500426][ T7252] FAULT_INJECTION: forcing a failure.
[  165.500426][ T7252] name failslab, interval 1, probability 0, space 0, times 0
[  165.526874][ T7252] CPU: 1 UID: 0 PID: 7252 Comm: syz.1.381 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  165.526902][ T7252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  165.526913][ T7252] Call Trace:
[  165.526921][ T7252]  <TASK>
[  165.526929][ T7252]  dump_stack_lvl+0x189/0x250
[  165.526964][ T7252]  ? __pfx____ratelimit+0x10/0x10
[  165.526983][ T7252]  ? __pfx_dump_stack_lvl+0x10/0x10
[  165.527012][ T7252]  ? __pfx__printk+0x10/0x10
[  165.527039][ T7252]  ? __pfx___might_resched+0x10/0x10
[  165.527075][ T7252]  ? fs_reclaim_acquire+0x7d/0x100
[  165.527103][ T7252]  should_fail_ex+0x414/0x560
[  165.527133][ T7252]  should_failslab+0xa8/0x100
[  165.527155][ T7252]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  165.527174][ T7252]  ? __alloc_skb+0x112/0x2d0
[  165.527204][ T7252]  __alloc_skb+0x112/0x2d0
[  165.527231][ T7252]  netlink_ack+0x146/0xa50
[  165.527273][ T7252]  netlink_rcv_skb+0x28c/0x470
[  165.527297][ T7252]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  165.527320][ T7252]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  165.527355][ T7252]  ? bpf_lsm_capable+0x9/0x20
[  165.527372][ T7252]  ? security_capable+0x7e/0x2e0
[  165.527403][ T7252]  nfnetlink_rcv+0x26a/0x2520
[  165.527426][ T7252]  ? __dev_queue_xmit+0x1cd7/0x3a70
[  165.527450][ T7252]  ? kmem_cache_alloc_noprof+0x1c1/0x3c0
[  165.527481][ T7252]  ? __dev_queue_xmit+0x27e/0x3a70
[  165.527499][ T7252]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.527529][ T7252]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  165.527548][ T7252]  ? __pfx___dev_queue_xmit+0x10/0x10
[  165.527581][ T7252]  ? ref_tracker_free+0x63a/0x7d0
[  165.527603][ T7252]  ? __copy_skb_header+0xa7/0x550
[  165.527632][ T7252]  ? __pfx_ref_tracker_free+0x10/0x10
[  165.527657][ T7252]  ? __skb_clone+0x63/0x7a0
[  165.527689][ T7252]  ? __skb_clone+0x483/0x7a0
[  165.527723][ T7252]  ? skb_clone+0x246/0x3a0
[  165.527744][ T7252]  ? __netlink_deliver_tap+0x807/0x850
[  165.527767][ T7252]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.527798][ T7252]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.527819][ T7252]  ? netlink_deliver_tap+0x2e/0x1b0
[  165.527848][ T7252]  netlink_unicast+0x758/0x8d0
[  165.527881][ T7252]  netlink_sendmsg+0x805/0xb30
[  165.527915][ T7252]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.527942][ T7252]  ? aa_sock_msg_perm+0x94/0x160
[  165.527968][ T7252]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  165.527991][ T7252]  ? __pfx_netlink_sendmsg+0x10/0x10
[  165.528015][ T7252]  __sock_sendmsg+0x21c/0x270
[  165.528039][ T7252]  ____sys_sendmsg+0x505/0x830
[  165.528080][ T7252]  ? __pfx_____sys_sendmsg+0x10/0x10
[  165.528117][ T7252]  ? import_iovec+0x74/0xa0
[  165.528139][ T7252]  ___sys_sendmsg+0x21f/0x2a0
[  165.528168][ T7252]  ? __pfx____sys_sendmsg+0x10/0x10
[  165.528235][ T7252]  ? __fget_files+0x2a/0x420
[  165.528254][ T7252]  ? __fget_files+0x3a0/0x420
[  165.528286][ T7252]  __x64_sys_sendmsg+0x19b/0x260
[  165.528316][ T7252]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  165.528354][ T7252]  ? __pfx_ksys_write+0x10/0x10
[  165.528369][ T7252]  ? rcu_is_watching+0x15/0xb0
[  165.528403][ T7252]  ? do_syscall_64+0xbe/0x3b0
[  165.528427][ T7252]  do_syscall_64+0xfa/0x3b0
[  165.528445][ T7252]  ? lockdep_hardirqs_on+0x9c/0x150
[  165.528463][ T7252]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.528481][ T7252]  ? clear_bhb_loop+0x60/0xb0
[  165.528504][ T7252]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  165.528522][ T7252] RIP: 0033:0x7f3bc6f8e929
[  165.528540][ T7252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  165.528555][ T7252] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  165.528576][ T7252] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  165.528590][ T7252] RDX: 0000000000044000 RSI: 0000200000000540 RDI: 0000000000000005
[  165.528601][ T7252] RBP: 00007f3bc7da6090 R08: 0000000000000000 R09: 0000000000000000
[  165.528612][ T7252] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  165.528623][ T7252] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  165.528653][ T7252]  </TASK>
[  165.954178][ T5844] Bluetooth: hci2: command tx timeout
[  165.981413][ T7124] team0: Port device team_slave_0 added
[  165.992157][ T7124] team0: Port device team_slave_1 added
[  166.127364][ T7248] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  166.194730][ T7248] CPU: 0 UID: 0 PID: 7248 Comm: syz.4.380 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  166.194762][ T7248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  166.194773][ T7248] Call Trace:
[  166.194782][ T7248]  <TASK>
[  166.194791][ T7248]  dump_stack_lvl+0x189/0x250
[  166.194843][ T7248]  ? __pfx_dump_stack_lvl+0x10/0x10
[  166.194873][ T7248]  ? __pfx__printk+0x10/0x10
[  166.194896][ T7248]  ? kernfs_path_from_node+0x2c/0x260
[  166.194920][ T7248]  ? kernfs_path_from_node+0x2c/0x260
[  166.194940][ T7248]  ? kernfs_path_from_node+0x2c/0x260
[  166.194966][ T7248]  ? kernfs_path_from_node+0x22c/0x260
[  166.194987][ T7248]  ? kernfs_path_from_node+0x2c/0x260
[  166.195014][ T7248]  sysfs_warn_dup+0x8e/0xa0
[  166.195037][ T7248]  sysfs_do_create_link_sd+0xc0/0x110
[  166.195062][ T7248]  device_add_class_symlinks+0x1cf/0x240
[  166.195090][ T7248]  device_add+0x475/0xb50
[  166.195117][ T7248]  wiphy_register+0x199a/0x26b0
[  166.195162][ T7248]  ? __pfx_wiphy_register+0x10/0x10
[  166.195184][ T7248]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  166.195226][ T7248]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  166.195258][ T7248]  ieee80211_register_hw+0x33e1/0x4120
[  166.195307][ T7248]  ? ieee80211_register_hw+0x13f1/0x4120
[  166.195345][ T7248]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  166.195377][ T7248]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  166.195416][ T7248]  ? __hrtimer_setup+0x187/0x210
[  166.195443][ T7248]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  166.195474][ T7248]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  166.195534][ T7248]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  166.195556][ T7248]  ? trace_kmalloc+0x1f/0xd0
[  166.195571][ T7248]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  166.195591][ T7248]  ? kstrndup+0xbf/0x160
[  166.195628][ T7248]  hwsim_new_radio_nl+0xea4/0x1b10
[  166.195655][ T7248]  ? __pfx___nla_validate_parse+0x10/0x10
[  166.195703][ T7248]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  166.195742][ T7248]  ? __nla_parse+0x40/0x60
[  166.195775][ T7248]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  166.195812][ T7248]  genl_family_rcv_msg_doit+0x212/0x300
[  166.195841][ T7248]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  166.195887][ T7248]  ? bpf_lsm_capable+0x9/0x20
[  166.195905][ T7248]  ? security_capable+0x7e/0x2e0
[  166.195938][ T7248]  genl_rcv_msg+0x60e/0x790
[  166.195976][ T7248]  ? __pfx_genl_rcv_msg+0x10/0x10
[  166.196005][ T7248]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  166.196046][ T7248]  netlink_rcv_skb+0x205/0x470
[  166.196071][ T7248]  ? __pfx_genl_rcv_msg+0x10/0x10
[  166.196102][ T7248]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  166.196148][ T7248]  ? down_read+0x1ad/0x2e0
[  166.196174][ T7248]  genl_rcv+0x28/0x40
[  166.196200][ T7248]  netlink_unicast+0x758/0x8d0
[  166.196237][ T7248]  netlink_sendmsg+0x805/0xb30
[  166.196274][ T7248]  ? __pfx_netlink_sendmsg+0x10/0x10
[  166.196304][ T7248]  ? aa_sock_msg_perm+0x94/0x160
[  166.196331][ T7248]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  166.196355][ T7248]  ? __pfx_netlink_sendmsg+0x10/0x10
[  166.196381][ T7248]  __sock_sendmsg+0x21c/0x270
[  166.196408][ T7248]  ____sys_sendmsg+0x505/0x830
[  166.196444][ T7248]  ? __pfx_____sys_sendmsg+0x10/0x10
[  166.196485][ T7248]  ? import_iovec+0x74/0xa0
[  166.196509][ T7248]  ___sys_sendmsg+0x21f/0x2a0
[  166.196541][ T7248]  ? __pfx____sys_sendmsg+0x10/0x10
[  166.196616][ T7248]  ? __fget_files+0x2a/0x420
[  166.196636][ T7248]  ? __fget_files+0x3a0/0x420
[  166.196671][ T7248]  __x64_sys_sendmsg+0x19b/0x260
[  166.196703][ T7248]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  166.196746][ T7248]  ? rcu_is_watching+0x15/0xb0
[  166.196782][ T7248]  ? do_syscall_64+0xbe/0x3b0
[  166.196818][ T7248]  do_syscall_64+0xfa/0x3b0
[  166.196836][ T7248]  ? lockdep_hardirqs_on+0x9c/0x150
[  166.196855][ T7248]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.196874][ T7248]  ? clear_bhb_loop+0x60/0xb0
[  166.196899][ T7248]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  166.196917][ T7248] RIP: 0033:0x7fa43a78e929
[  166.196938][ T7248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  166.196954][ T7248] RSP: 002b:00007fa43b685038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  166.196976][ T7248] RAX: ffffffffffffffda RBX: 00007fa43a9b5fa0 RCX: 00007fa43a78e929
[  166.196989][ T7248] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  166.197002][ T7248] RBP: 00007fa43a810b39 R08: 0000000000000000 R09: 0000000000000000
[  166.197014][ T7248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  166.197025][ T7248] R13: 0000000000000000 R14: 00007fa43a9b5fa0 R15: 00007ffc14fcd988
[  166.197058][ T7248]  </TASK>
[  166.795181][ T7270] netlink: 48 bytes leftover after parsing attributes in process `syz.1.382'.
[  167.021586][ T7124] batman_adv: batadv0: Adding interface: batadv_slave_0
[  167.032667][ T7124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.076714][ T7124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  167.176678][ T7124] batman_adv: batadv0: Adding interface: batadv_slave_1
[  167.189146][ T7124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  167.259403][ T7124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  167.493927][ T7124] hsr_slave_0: entered promiscuous mode
[  167.509604][ T7124] hsr_slave_1: entered promiscuous mode
[  167.525222][ T7124] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  167.533220][ T7124] Cannot create hsr debugfs directory
[  167.557331][ T7281] netlink: 'syz.1.385': attribute type 16 has an invalid length.
[  167.644343][ T7281] netlink: 'syz.1.385': attribute type 17 has an invalid length.
[  167.800877][ T7285] IPv6: NLM_F_REPLACE set, but no existing node found!
[  167.870569][ T7287] netlink: 34 bytes leftover after parsing attributes in process `syz.0.387'.
[  167.887777][ T7287] netlink: 12 bytes leftover after parsing attributes in process `syz.0.387'.
[  167.922004][ T7281] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.930280][ T7281] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.043846][ T5844] Bluetooth: hci2: command tx timeout
[  168.065851][ T7281] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.087465][ T7281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.229967][ T7281] mac80211_hwsim hwsim4 wlan0: left allmulticast mode
[  168.292344][ T7284] netlink: 4 bytes leftover after parsing attributes in process `syz.1.385'.
[  168.360535][   T59] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.497811][   T59] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.546799][   T59] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  168.631525][   T59] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  169.018503][ T7317] netlink: 104 bytes leftover after parsing attributes in process `syz.0.398'.
[  169.354740][ T7318] warning: `syz.2.394' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  170.630628][ T7343] netlink: 28 bytes leftover after parsing attributes in process `syz.0.406'.
[  170.644221][ T7343] netlink: 'syz.0.406': attribute type 7 has an invalid length.
[  170.652632][ T7343] netlink: 'syz.0.406': attribute type 8 has an invalid length.
[  170.662410][ T7343] netlink: 4 bytes leftover after parsing attributes in process `syz.0.406'.
[  170.803864][ T7345] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  170.818322][ T7345] CPU: 1 UID: 0 PID: 7345 Comm: syz.4.407 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  170.818342][ T7345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  170.818348][ T7345] Call Trace:
[  170.818354][ T7345]  <TASK>
[  170.818359][ T7345]  dump_stack_lvl+0x189/0x250
[  170.818385][ T7345]  ? __pfx_dump_stack_lvl+0x10/0x10
[  170.818402][ T7345]  ? __pfx__printk+0x10/0x10
[  170.818415][ T7345]  ? kernfs_path_from_node+0x2c/0x260
[  170.818428][ T7345]  ? kernfs_path_from_node+0x2c/0x260
[  170.818440][ T7345]  ? kernfs_path_from_node+0x2c/0x260
[  170.818453][ T7345]  ? kernfs_path_from_node+0x22c/0x260
[  170.818465][ T7345]  ? kernfs_path_from_node+0x2c/0x260
[  170.818480][ T7345]  sysfs_warn_dup+0x8e/0xa0
[  170.818493][ T7345]  sysfs_do_create_link_sd+0xc0/0x110
[  170.818507][ T7345]  device_add_class_symlinks+0x1cf/0x240
[  170.818522][ T7345]  device_add+0x475/0xb50
[  170.818537][ T7345]  wiphy_register+0x199a/0x26b0
[  170.818563][ T7345]  ? __pfx_wiphy_register+0x10/0x10
[  170.818576][ T7345]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  170.818597][ T7345]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  170.818625][ T7345]  ieee80211_register_hw+0x33e1/0x4120
[  170.818669][ T7345]  ? ieee80211_register_hw+0x13f1/0x4120
[  170.818704][ T7345]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  170.818735][ T7345]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  170.818766][ T7345]  ? __hrtimer_setup+0x187/0x210
[  170.818789][ T7345]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  170.818807][ T7345]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  170.818841][ T7345]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  170.818855][ T7345]  ? trace_kmalloc+0x1f/0xd0
[  170.818864][ T7345]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  170.818875][ T7345]  ? kstrndup+0xbf/0x160
[  170.818897][ T7345]  hwsim_new_radio_nl+0xea4/0x1b10
[  170.818917][ T7345]  ? __pfx___nla_validate_parse+0x10/0x10
[  170.818943][ T7345]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  170.818965][ T7345]  ? __nla_parse+0x40/0x60
[  170.818982][ T7345]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  170.819000][ T7345]  genl_family_rcv_msg_doit+0x212/0x300
[  170.819015][ T7345]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  170.819045][ T7345]  ? bpf_lsm_capable+0x9/0x20
[  170.819055][ T7345]  ? security_capable+0x7e/0x2e0
[  170.819073][ T7345]  genl_rcv_msg+0x60e/0x790
[  170.819095][ T7345]  ? __pfx_genl_rcv_msg+0x10/0x10
[  170.819110][ T7345]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  170.819133][ T7345]  netlink_rcv_skb+0x205/0x470
[  170.819148][ T7345]  ? __pfx_genl_rcv_msg+0x10/0x10
[  170.819165][ T7345]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  170.819190][ T7345]  ? down_read+0x1ad/0x2e0
[  170.819204][ T7345]  genl_rcv+0x28/0x40
[  170.819219][ T7345]  netlink_unicast+0x758/0x8d0
[  170.819239][ T7345]  netlink_sendmsg+0x805/0xb30
[  170.819260][ T7345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.819276][ T7345]  ? aa_sock_msg_perm+0x94/0x160
[  170.819292][ T7345]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  170.819306][ T7345]  ? __pfx_netlink_sendmsg+0x10/0x10
[  170.819321][ T7345]  __sock_sendmsg+0x21c/0x270
[  170.819336][ T7345]  ____sys_sendmsg+0x505/0x830
[  170.819356][ T7345]  ? __pfx_____sys_sendmsg+0x10/0x10
[  170.819378][ T7345]  ? import_iovec+0x74/0xa0
[  170.819393][ T7345]  ___sys_sendmsg+0x21f/0x2a0
[  170.819410][ T7345]  ? __pfx____sys_sendmsg+0x10/0x10
[  170.819451][ T7345]  ? __fget_files+0x2a/0x420
[  170.819462][ T7345]  ? __fget_files+0x3a0/0x420
[  170.819481][ T7345]  __x64_sys_sendmsg+0x19b/0x260
[  170.819499][ T7345]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  170.819528][ T7345]  ? do_syscall_64+0xbe/0x3b0
[  170.819542][ T7345]  do_syscall_64+0xfa/0x3b0
[  170.819553][ T7345]  ? lockdep_hardirqs_on+0x9c/0x150
[  170.819563][ T7345]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.819575][ T7345]  ? clear_bhb_loop+0x60/0xb0
[  170.819588][ T7345]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.819599][ T7345] RIP: 0033:0x7fa43a78e929
[  170.819612][ T7345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.819621][ T7345] RSP: 002b:00007fa43b685038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.819635][ T7345] RAX: ffffffffffffffda RBX: 00007fa43a9b5fa0 RCX: 00007fa43a78e929
[  170.819643][ T7345] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  170.819650][ T7345] RBP: 00007fa43a810b39 R08: 0000000000000000 R09: 0000000000000000
[  170.819657][ T7345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  170.819663][ T7345] R13: 0000000000000000 R14: 00007fa43a9b5fa0 R15: 00007ffc14fcd988
[  170.819682][ T7345]  </TASK>
[  170.836632][ T7346] netlink: 'syz.4.407': attribute type 3 has an invalid length.
[  170.889835][ T7124] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  170.942198][ T7348] netlink: 'syz.0.408': attribute type 2 has an invalid length.
[  171.335239][ T7348] netlink: 16 bytes leftover after parsing attributes in process `syz.0.408'.
[  171.340144][ T7124] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  171.487261][ T7124] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  171.533039][ T7124] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  171.921503][ T7124] 8021q: adding VLAN 0 to HW filter on device bond0
[  172.008043][ T7374] xt_bpf: check failed: parse error
[  172.026109][ T7124] 8021q: adding VLAN 0 to HW filter on device team0
[  172.110015][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.118100][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.225205][ T7379] netlink: 36 bytes leftover after parsing attributes in process `syz.1.415'.
[  172.240110][ T7378] netlink: 28 bytes leftover after parsing attributes in process `syz.4.416'.
[  172.271496][ T2930] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.279216][ T2930] bridge0: port 2(bridge_slave_1) entered forwarding state
[  172.302040][ T7378] netlink: 'syz.4.416': attribute type 7 has an invalid length.
[  172.314317][ T7378] netlink: 'syz.4.416': attribute type 8 has an invalid length.
[  172.322557][ T7378] netlink: 4 bytes leftover after parsing attributes in process `syz.4.416'.
[  172.483447][ T7383] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  173.043316][ T7394] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  173.050262][ T7394] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  173.180799][ T7124] 8021q: adding VLAN 0 to HW filter on device batadv0
[  173.392676][ T7406] netlink: 28 bytes leftover after parsing attributes in process `syz.4.426'.
[  173.438315][ T7407] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  173.544888][ T7406] netlink: 'syz.4.426': attribute type 7 has an invalid length.
[  173.561560][ T7406] netlink: 'syz.4.426': attribute type 8 has an invalid length.
[  173.624330][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.4.426'.
[  173.669125][ T7411] syzkaller1: entered promiscuous mode
[  173.684070][ T7411] syzkaller1: entered allmulticast mode
[  173.909899][ T7124] veth0_vlan: entered promiscuous mode
[  173.962932][ T7124] veth1_vlan: entered promiscuous mode
[  174.029782][ T7416] netlink: 'syz.2.428': attribute type 83 has an invalid length.
[  174.147614][ T7124] veth0_macvtap: entered promiscuous mode
[  174.192283][ T7124] veth1_macvtap: entered promiscuous mode
[  174.262252][ T7422] FAULT_INJECTION: forcing a failure.
[  174.262252][ T7422] name failslab, interval 1, probability 0, space 0, times 0
[  174.291840][ T7422] CPU: 0 UID: 0 PID: 7422 Comm: syz.0.430 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  174.291870][ T7422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.291881][ T7422] Call Trace:
[  174.291890][ T7422]  <TASK>
[  174.291898][ T7422]  dump_stack_lvl+0x189/0x250
[  174.291932][ T7422]  ? __pfx____ratelimit+0x10/0x10
[  174.291952][ T7422]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.291980][ T7422]  ? __pfx__printk+0x10/0x10
[  174.292015][ T7422]  ? __pfx___might_resched+0x10/0x10
[  174.292040][ T7422]  ? fs_reclaim_acquire+0x7d/0x100
[  174.292068][ T7422]  should_fail_ex+0x414/0x560
[  174.292098][ T7422]  should_failslab+0xa8/0x100
[  174.292120][ T7422]  __kmalloc_noprof+0xcb/0x4f0
[  174.292139][ T7422]  ? bpf_test_init+0xc2/0x170
[  174.292166][ T7422]  bpf_test_init+0xc2/0x170
[  174.292193][ T7422]  bpf_prog_test_run_skb+0x1e9/0x1560
[  174.292215][ T7422]  ? __fget_files+0x2a/0x420
[  174.292240][ T7422]  ? __fget_files+0x2a/0x420
[  174.292270][ T7422]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  174.292295][ T7422]  bpf_prog_test_run+0x2c4/0x340
[  174.292325][ T7422]  __sys_bpf+0x4a4/0x860
[  174.292351][ T7422]  ? __pfx___sys_bpf+0x10/0x10
[  174.292389][ T7422]  ? ksys_write+0x22a/0x250
[  174.292408][ T7422]  ? __pfx_ksys_write+0x10/0x10
[  174.292419][ T7422]  ? rcu_is_watching+0x15/0xb0
[  174.292441][ T7422]  __x64_sys_bpf+0x7c/0x90
[  174.292455][ T7422]  do_syscall_64+0xfa/0x3b0
[  174.292466][ T7422]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.292476][ T7422]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.292488][ T7422]  ? clear_bhb_loop+0x60/0xb0
[  174.292501][ T7422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.292512][ T7422] RIP: 0033:0x7f6c3ad8e929
[  174.292524][ T7422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.292534][ T7422] RSP: 002b:00007f6c3bca2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  174.292548][ T7422] RAX: ffffffffffffffda RBX: 00007f6c3afb5fa0 RCX: 00007f6c3ad8e929
[  174.292556][ T7422] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[  174.292564][ T7422] RBP: 00007f6c3bca2090 R08: 0000000000000000 R09: 0000000000000000
[  174.292571][ T7422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  174.292578][ T7422] R13: 0000000000000000 R14: 00007f6c3afb5fa0 R15: 00007ffc2eb342c8
[  174.292596][ T7422]  </TASK>
[  174.304978][ T7124] batman_adv: batadv0: Interface activated: batadv_slave_0
[  174.568352][ T7124] batman_adv: batadv0: Interface activated: batadv_slave_1
[  174.600584][ T7424] netlink: 12 bytes leftover after parsing attributes in process `syz.2.431'.
[  174.621092][ T1326] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.632024][ T1326] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.689166][ T1326] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.699700][ T1326] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.881383][ T7433] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  174.928649][ T7433] CPU: 0 UID: 0 PID: 7433 Comm: syz.0.434 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  174.928687][ T7433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  174.928699][ T7433] Call Trace:
[  174.928709][ T7433]  <TASK>
[  174.928719][ T7433]  dump_stack_lvl+0x189/0x250
[  174.928760][ T7433]  ? __pfx_dump_stack_lvl+0x10/0x10
[  174.928790][ T7433]  ? __pfx__printk+0x10/0x10
[  174.928821][ T7433]  ? kernfs_path_from_node+0x2c/0x260
[  174.928844][ T7433]  ? kernfs_path_from_node+0x2c/0x260
[  174.928864][ T7433]  ? kernfs_path_from_node+0x2c/0x260
[  174.928889][ T7433]  ? kernfs_path_from_node+0x22c/0x260
[  174.928909][ T7433]  ? kernfs_path_from_node+0x2c/0x260
[  174.928934][ T7433]  sysfs_warn_dup+0x8e/0xa0
[  174.928956][ T7433]  sysfs_do_create_link_sd+0xc0/0x110
[  174.928982][ T7433]  device_add_class_symlinks+0x1cf/0x240
[  174.929007][ T7433]  device_add+0x475/0xb50
[  174.929032][ T7433]  wiphy_register+0x199a/0x26b0
[  174.929072][ T7433]  ? __pfx_wiphy_register+0x10/0x10
[  174.929096][ T7433]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  174.929133][ T7433]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  174.929164][ T7433]  ieee80211_register_hw+0x33e1/0x4120
[  174.929209][ T7433]  ? ieee80211_register_hw+0x13f1/0x4120
[  174.929243][ T7433]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  174.929275][ T7433]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  174.929312][ T7433]  ? __hrtimer_setup+0x187/0x210
[  174.929340][ T7433]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  174.929370][ T7433]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  174.929427][ T7433]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  174.929448][ T7433]  ? trace_kmalloc+0x1f/0xd0
[  174.929464][ T7433]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  174.929482][ T7433]  ? kstrndup+0xbf/0x160
[  174.929527][ T7433]  hwsim_new_radio_nl+0xea4/0x1b10
[  174.929560][ T7433]  ? __pfx___nla_validate_parse+0x10/0x10
[  174.929602][ T7433]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  174.929642][ T7433]  ? __nla_parse+0x40/0x60
[  174.929674][ T7433]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  174.929703][ T7433]  genl_family_rcv_msg_doit+0x212/0x300
[  174.929728][ T7433]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  174.929774][ T7433]  ? bpf_lsm_capable+0x9/0x20
[  174.929792][ T7433]  ? security_capable+0x7e/0x2e0
[  174.929837][ T7433]  genl_rcv_msg+0x60e/0x790
[  174.929876][ T7433]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.929906][ T7433]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  174.929949][ T7433]  netlink_rcv_skb+0x205/0x470
[  174.929976][ T7433]  ? __pfx_genl_rcv_msg+0x10/0x10
[  174.930006][ T7433]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  174.930048][ T7433]  ? down_read+0x1ad/0x2e0
[  174.930071][ T7433]  genl_rcv+0x28/0x40
[  174.930096][ T7433]  netlink_unicast+0x758/0x8d0
[  174.930130][ T7433]  netlink_sendmsg+0x805/0xb30
[  174.930168][ T7433]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.930196][ T7433]  ? aa_sock_msg_perm+0x94/0x160
[  174.930225][ T7433]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  174.930249][ T7433]  ? __pfx_netlink_sendmsg+0x10/0x10
[  174.930276][ T7433]  __sock_sendmsg+0x21c/0x270
[  174.930304][ T7433]  ____sys_sendmsg+0x505/0x830
[  174.930339][ T7433]  ? __pfx_____sys_sendmsg+0x10/0x10
[  174.930382][ T7433]  ? import_iovec+0x74/0xa0
[  174.930406][ T7433]  ___sys_sendmsg+0x21f/0x2a0
[  174.930438][ T7433]  ? __pfx____sys_sendmsg+0x10/0x10
[  174.930514][ T7433]  ? __fget_files+0x2a/0x420
[  174.930535][ T7433]  ? __fget_files+0x3a0/0x420
[  174.930569][ T7433]  __x64_sys_sendmsg+0x19b/0x260
[  174.930597][ T7433]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  174.930637][ T7433]  ? rcu_is_watching+0x15/0xb0
[  174.930672][ T7433]  ? do_syscall_64+0xbe/0x3b0
[  174.930696][ T7433]  do_syscall_64+0xfa/0x3b0
[  174.930715][ T7433]  ? lockdep_hardirqs_on+0x9c/0x150
[  174.930732][ T7433]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.930750][ T7433]  ? clear_bhb_loop+0x60/0xb0
[  174.930793][ T7433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.930820][ T7433] RIP: 0033:0x7f6c3ad8e929
[  174.930841][ T7433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.930859][ T7433] RSP: 002b:00007f6c3bca2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  174.930881][ T7433] RAX: ffffffffffffffda RBX: 00007f6c3afb5fa0 RCX: 00007f6c3ad8e929
[  174.930895][ T7433] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  174.930908][ T7433] RBP: 00007f6c3ae10b39 R08: 0000000000000000 R09: 0000000000000000
[  174.930920][ T7433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  174.930932][ T7433] R13: 0000000000000000 R14: 00007f6c3afb5fa0 R15: 00007ffc2eb342c8
[  174.930968][ T7433]  </TASK>
[  175.485544][ T7436] syz_tun: entered allmulticast mode
[  175.532934][ T7435] syz_tun: left allmulticast mode
[  175.627233][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.686424][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.754591][ T7444] syz_tun: entered allmulticast mode
[  175.815898][ T1005] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  175.842797][ T1005] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  175.887754][ T7444] veth0: entered promiscuous mode
[  175.969236][ T7449] netlink: 4 bytes leftover after parsing attributes in process `syz.4.437'.
[  176.071573][ T7456] netlink: 24 bytes leftover after parsing attributes in process `syz.2.439'.
[  176.203087][ T7461] netlink: 12 bytes leftover after parsing attributes in process `syz.1.444'.
[  176.289316][ T7462] netlink: 4 bytes leftover after parsing attributes in process `syz.1.444'.
[  176.441708][ T7443] syz_tun: left allmulticast mode
[  176.750592][ T7474] netlink: 8 bytes leftover after parsing attributes in process `syz.1.447'.
[  176.783650][ T7475] netlink: 'syz.0.446': attribute type 21 has an invalid length.
[  176.867739][   T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.977302][ T7475] netlink: 152 bytes leftover after parsing attributes in process `syz.0.446'.
[  177.090590][   T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.206599][   T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.317509][   T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.672190][   T49] bridge_slave_1: left allmulticast mode
[  177.682166][   T49] bridge_slave_1: left promiscuous mode
[  177.693033][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.711306][   T49] bridge_slave_0: left allmulticast mode
[  177.734270][   T49] bridge_slave_0: left promiscuous mode
[  177.741480][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.481564][ T5847] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  178.503439][ T5847] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  178.518385][ T5847] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  178.544472][ T5847] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  178.556125][ T5847] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  178.941490][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.959585][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.971783][   T49] bond0 (unregistering): Released all slaves
[  179.221357][ T7509] syzkaller1: entered promiscuous mode
[  179.232122][ T7509] syzkaller1: entered allmulticast mode
[  180.423160][ T7537] netlink: 'syz.2.469': attribute type 1 has an invalid length.
[  180.599031][ T7542] netlink: 'syz.2.469': attribute type 1 has an invalid length.
[  180.674491][ T5844] Bluetooth: hci2: command tx timeout
[  180.705221][ T7537] 8021q: adding VLAN 0 to HW filter on device bond1
[  180.793902][ T7540] veth3: entered promiscuous mode
[  180.805293][ T7540] bond1: (slave veth3): Enslaving as an active interface with a down link
[  180.887044][ T7537] erspan0: entered allmulticast mode
[  180.954653][   T49] hsr_slave_0: left promiscuous mode
[  180.963648][   T49] hsr_slave_1: left promiscuous mode
[  180.979081][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.004128][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  181.023187][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  181.049518][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  181.108575][   T49] veth1_macvtap: left promiscuous mode
[  181.125761][   T49] veth0_macvtap: left promiscuous mode
[  181.132283][   T49] veth1_vlan: left promiscuous mode
[  181.144235][   T49] veth0_vlan: left promiscuous mode
[  181.663517][   T49] team0 (unregistering): Port device team_slave_1 removed
[  181.703217][   T49] team0 (unregistering): Port device team_slave_0 removed
[  182.427377][ T7497] chnl_net:caif_netlink_parms(): no params data found
[  182.443059][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.1.472'.
[  182.504536][ T7557] netlink: 312 bytes leftover after parsing attributes in process `syz.1.472'.
[  182.513722][ T7557] netlink: 8 bytes leftover after parsing attributes in process `syz.1.472'.
[  182.755005][ T5844] Bluetooth: hci2: command tx timeout
[  182.991891][ T7565] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  183.034120][ T7565] CPU: 0 UID: 0 PID: 7565 Comm: syz.1.477 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  183.034154][ T7565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.034167][ T7565] Call Trace:
[  183.034177][ T7565]  <TASK>
[  183.034186][ T7565]  dump_stack_lvl+0x189/0x250
[  183.034228][ T7565]  ? __pfx_dump_stack_lvl+0x10/0x10
[  183.034260][ T7565]  ? __pfx__printk+0x10/0x10
[  183.034282][ T7565]  ? kernfs_path_from_node+0x2c/0x260
[  183.034306][ T7565]  ? kernfs_path_from_node+0x2c/0x260
[  183.034326][ T7565]  ? kernfs_path_from_node+0x2c/0x260
[  183.034350][ T7565]  ? kernfs_path_from_node+0x22c/0x260
[  183.034371][ T7565]  ? kernfs_path_from_node+0x2c/0x260
[  183.034397][ T7565]  sysfs_warn_dup+0x8e/0xa0
[  183.034420][ T7565]  sysfs_do_create_link_sd+0xc0/0x110
[  183.034445][ T7565]  device_add_class_symlinks+0x1cf/0x240
[  183.034471][ T7565]  device_add+0x475/0xb50
[  183.034498][ T7565]  wiphy_register+0x199a/0x26b0
[  183.034544][ T7565]  ? __pfx_wiphy_register+0x10/0x10
[  183.034592][ T7565]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  183.034628][ T7565]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  183.034661][ T7565]  ieee80211_register_hw+0x33e1/0x4120
[  183.034712][ T7565]  ? ieee80211_register_hw+0x13f1/0x4120
[  183.034758][ T7565]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  183.034792][ T7565]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  183.034833][ T7565]  ? __hrtimer_setup+0x187/0x210
[  183.034860][ T7565]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  183.034888][ T7565]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  183.034943][ T7565]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  183.034965][ T7565]  ? trace_kmalloc+0x1f/0xd0
[  183.034979][ T7565]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  183.035006][ T7565]  ? kstrndup+0xbf/0x160
[  183.035040][ T7565]  hwsim_new_radio_nl+0xea4/0x1b10
[  183.035067][ T7565]  ? __pfx___nla_validate_parse+0x10/0x10
[  183.035112][ T7565]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.035151][ T7565]  ? __nla_parse+0x40/0x60
[  183.035185][ T7565]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  183.035217][ T7565]  genl_family_rcv_msg_doit+0x212/0x300
[  183.035246][ T7565]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  183.035293][ T7565]  ? bpf_lsm_capable+0x9/0x20
[  183.035310][ T7565]  ? security_capable+0x7e/0x2e0
[  183.035343][ T7565]  genl_rcv_msg+0x60e/0x790
[  183.035380][ T7565]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.035410][ T7565]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  183.035452][ T7565]  netlink_rcv_skb+0x205/0x470
[  183.035567][ T7565]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.035613][ T7565]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  183.035659][ T7565]  ? down_read+0x1ad/0x2e0
[  183.035684][ T7565]  genl_rcv+0x28/0x40
[  183.035725][ T7565]  netlink_unicast+0x758/0x8d0
[  183.035761][ T7565]  netlink_sendmsg+0x805/0xb30
[  183.035799][ T7565]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.035980][ T7565]  ? aa_sock_msg_perm+0x94/0x160
[  183.036009][ T7565]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  183.036033][ T7565]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.036059][ T7565]  __sock_sendmsg+0x21c/0x270
[  183.036087][ T7565]  ____sys_sendmsg+0x505/0x830
[  183.036119][ T7565]  ? __pfx_____sys_sendmsg+0x10/0x10
[  183.036156][ T7565]  ? import_iovec+0x74/0xa0
[  183.036181][ T7565]  ___sys_sendmsg+0x21f/0x2a0
[  183.036216][ T7565]  ? __pfx____sys_sendmsg+0x10/0x10
[  183.036291][ T7565]  ? __fget_files+0x2a/0x420
[  183.036310][ T7565]  ? __fget_files+0x3a0/0x420
[  183.036347][ T7565]  __x64_sys_sendmsg+0x19b/0x260
[  183.036378][ T7565]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  183.036422][ T7565]  ? rcu_is_watching+0x15/0xb0
[  183.036455][ T7565]  ? do_syscall_64+0xbe/0x3b0
[  183.036481][ T7565]  do_syscall_64+0xfa/0x3b0
[  183.036501][ T7565]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.036520][ T7565]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.036538][ T7565]  ? clear_bhb_loop+0x60/0xb0
[  183.036564][ T7565]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.036581][ T7565] RIP: 0033:0x7f3bc6f8e929
[  183.036599][ T7565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.036614][ T7565] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.036650][ T7565] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  183.036664][ T7565] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  183.036677][ T7565] RBP: 00007f3bc7010b39 R08: 0000000000000000 R09: 0000000000000000
[  183.036689][ T7565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  183.036753][ T7565] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  183.036785][ T7565]  </TASK>
[  183.575067][ T7497] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.583851][ T7497] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.592052][ T7497] bridge_slave_0: entered allmulticast mode
[  183.600647][ T7497] bridge_slave_0: entered promiscuous mode
[  183.666772][ T7584] netlink: 'syz.4.483': attribute type 21 has an invalid length.
[  183.681682][ T7497] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.702906][ T7497] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.714193][ T7584] netlink: 14544 bytes leftover after parsing attributes in process `syz.4.483'.
[  183.729386][ T7497] bridge_slave_1: entered allmulticast mode
[  183.755912][ T7586] netlink: 92 bytes leftover after parsing attributes in process `syz.0.481'.
[  183.767640][ T7497] bridge_slave_1: entered promiscuous mode
[  183.772339][ T7589] FAULT_INJECTION: forcing a failure.
[  183.772339][ T7589] name failslab, interval 1, probability 0, space 0, times 0
[  183.802646][ T7589] CPU: 1 UID: 0 PID: 7589 Comm: syz.1.485 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  183.802678][ T7589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  183.802690][ T7589] Call Trace:
[  183.802698][ T7589]  <TASK>
[  183.802707][ T7589]  dump_stack_lvl+0x189/0x250
[  183.802742][ T7589]  ? __pfx____ratelimit+0x10/0x10
[  183.802761][ T7589]  ? __pfx_dump_stack_lvl+0x10/0x10
[  183.802789][ T7589]  ? __pfx__printk+0x10/0x10
[  183.802812][ T7589]  ? __pfx___might_resched+0x10/0x10
[  183.802842][ T7589]  ? fs_reclaim_acquire+0x7d/0x100
[  183.802871][ T7589]  should_fail_ex+0x414/0x560
[  183.802901][ T7589]  should_failslab+0xa8/0x100
[  183.802924][ T7589]  __kmalloc_noprof+0xcb/0x4f0
[  183.802942][ T7589]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  183.802969][ T7589]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  183.802997][ T7589]  genl_family_rcv_msg_doit+0xb8/0x300
[  183.803032][ T7589]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  183.803066][ T7589]  ? __pfx_genl_get_cmd+0x10/0x10
[  183.803113][ T7589]  genl_rcv_msg+0x60e/0x790
[  183.803149][ T7589]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.803177][ T7589]  ? __pfx_ctrl_getfamily+0x10/0x10
[  183.803221][ T7589]  netlink_rcv_skb+0x205/0x470
[  183.803245][ T7589]  ? __pfx_genl_rcv_msg+0x10/0x10
[  183.803275][ T7589]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  183.803320][ T7589]  ? down_read+0x1ad/0x2e0
[  183.803344][ T7589]  genl_rcv+0x28/0x40
[  183.803370][ T7589]  netlink_unicast+0x758/0x8d0
[  183.803405][ T7589]  netlink_sendmsg+0x805/0xb30
[  183.803440][ T7589]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.803468][ T7589]  ? aa_sock_msg_perm+0x94/0x160
[  183.803495][ T7589]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  183.803518][ T7589]  ? __pfx_netlink_sendmsg+0x10/0x10
[  183.803542][ T7589]  __sock_sendmsg+0x21c/0x270
[  183.803573][ T7589]  __sys_sendto+0x3bd/0x520
[  183.803602][ T7589]  ? __pfx___sys_sendto+0x10/0x10
[  183.803640][ T7589]  ? count_memcg_event_mm+0x21/0x260
[  183.803683][ T7589]  ? exc_page_fault+0x76/0xf0
[  183.803706][ T7589]  ? do_user_addr_fault+0xc8a/0x1390
[  183.803736][ T7589]  __x64_sys_sendto+0xde/0x100
[  183.803765][ T7589]  do_syscall_64+0xfa/0x3b0
[  183.803782][ T7589]  ? lockdep_hardirqs_on+0x9c/0x150
[  183.803800][ T7589]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.803819][ T7589]  ? clear_bhb_loop+0x60/0xb0
[  183.803843][ T7589]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  183.803861][ T7589] RIP: 0033:0x7f3bc6f907bc
[  183.803880][ T7589] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  183.803896][ T7589] RSP: 002b:00007f3bc7da4ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  183.803918][ T7589] RAX: ffffffffffffffda RBX: 00007f3bc7da4fc0 RCX: 00007f3bc6f907bc
[  183.803932][ T7589] RDX: 0000000000000020 RSI: 00007f3bc7da5010 RDI: 0000000000000003
[  183.803944][ T7589] RBP: 0000000000000000 R08: 00007f3bc7da4f14 R09: 000000000000000c
[  183.803955][ T7589] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  183.803967][ T7589] R13: 00007f3bc7da4f68 R14: 00007f3bc7da5010 R15: 0000000000000000
[  183.803997][ T7589]  </TASK>
[  184.172916][ T7587] netlink: 132 bytes leftover after parsing attributes in process `syz.2.482'.
[  184.432034][ T7598] netlink: 20 bytes leftover after parsing attributes in process `syz.4.486'.
[  184.448801][ T7497] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  184.495813][ T7597] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.487'.
[  184.535004][ T7596] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.487'.
[  184.570225][ T7497] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  184.626544][ T7596] netlink: 'syz.2.487': attribute type 1 has an invalid length.
[  184.636363][ T7596] netlink: 4 bytes leftover after parsing attributes in process `syz.2.487'.
[  184.764858][ T7497] team0: Port device team_slave_0 added
[  184.790232][ T7497] team0: Port device team_slave_1 added
[  184.834377][ T5844] Bluetooth: hci2: command tx timeout
[  184.982690][ T7497] batman_adv: batadv0: Adding interface: batadv_slave_0
[  185.004822][ T7497] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.093580][ T7497] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  185.151141][ T7497] batman_adv: batadv0: Adding interface: batadv_slave_1
[  185.171020][ T7617] netlink: 'syz.4.496': attribute type 21 has an invalid length.
[  185.185073][ T7497] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  185.219262][ T7497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  185.463776][ T7625] netlink: 'syz.4.499': attribute type 7 has an invalid length.
[  185.464519][ T7626] xt_bpf: check failed: parse error
[  185.478503][ T7497] hsr_slave_0: entered promiscuous mode
[  185.490827][ T7497] hsr_slave_1: entered promiscuous mode
[  185.500078][ T7625] netlink: 'syz.4.499': attribute type 8 has an invalid length.
[  185.512607][ T7497] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  185.521385][ T7497] Cannot create hsr debugfs directory
[  185.877635][ T1326] syzkaller0: tun_net_xmit 76
[  185.893246][ T1326] syzkaller0: tun_net_xmit 48
[  185.898617][ T6836] syzkaller0: tun_net_xmit 76
[  185.915942][ T7629] syzkaller0: tun_net_xmit 76
[  185.925860][ T7629] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  186.054288][    C0] syzkaller0: tun_net_xmit 76
[  186.123596][ T7627] tipc: Resetting bearer <eth:syzkaller0>
[  186.914399][ T5844] Bluetooth: hci2: command tx timeout
[  186.995989][ T6836] tipc: Node number set to 2886997007
[  188.212697][ T7627] tipc: Disabling bearer <eth:syzkaller0>
[  188.251714][ T7642] vlan3: entered promiscuous mode
[  188.349541][ T7649] netlink: 'syz.4.509': attribute type 21 has an invalid length.
[  188.358129][ T7649] __nla_validate_parse: 3 callbacks suppressed
[  188.358147][ T7649] netlink: 14544 bytes leftover after parsing attributes in process `syz.4.509'.
[  188.650795][ T7654] netlink: 12 bytes leftover after parsing attributes in process `syz.1.511'.
[  188.902434][ T7667] netlink: 92 bytes leftover after parsing attributes in process `syz.2.515'.
[  188.965880][ T7669] netlink: 92 bytes leftover after parsing attributes in process `syz.4.517'.
[  189.061500][ T7672] netlink: 44 bytes leftover after parsing attributes in process `syz.1.518'.
[  189.256451][ T7675] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  189.284225][ T7675] CPU: 0 UID: 0 PID: 7675 Comm: syz.4.519 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  189.284259][ T7675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  189.284271][ T7675] Call Trace:
[  189.284280][ T7675]  <TASK>
[  189.284290][ T7675]  dump_stack_lvl+0x189/0x250
[  189.284328][ T7675]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.284360][ T7675]  ? __pfx__printk+0x10/0x10
[  189.284384][ T7675]  ? kernfs_path_from_node+0x2c/0x260
[  189.284409][ T7675]  ? kernfs_path_from_node+0x2c/0x260
[  189.284430][ T7675]  ? kernfs_path_from_node+0x2c/0x260
[  189.284453][ T7675]  ? kernfs_path_from_node+0x22c/0x260
[  189.284472][ T7675]  ? kernfs_path_from_node+0x2c/0x260
[  189.284498][ T7675]  sysfs_warn_dup+0x8e/0xa0
[  189.284527][ T7675]  sysfs_do_create_link_sd+0xc0/0x110
[  189.284553][ T7675]  device_add_class_symlinks+0x1cf/0x240
[  189.284581][ T7675]  device_add+0x475/0xb50
[  189.284609][ T7675]  wiphy_register+0x199a/0x26b0
[  189.284654][ T7675]  ? __pfx_wiphy_register+0x10/0x10
[  189.284678][ T7675]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  189.284711][ T7675]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  189.284745][ T7675]  ieee80211_register_hw+0x33e1/0x4120
[  189.284795][ T7675]  ? ieee80211_register_hw+0x13f1/0x4120
[  189.284833][ T7675]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  189.284867][ T7675]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  189.284907][ T7675]  ? __hrtimer_setup+0x187/0x210
[  189.284934][ T7675]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  189.284974][ T7675]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  189.285036][ T7675]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  189.285059][ T7675]  ? trace_kmalloc+0x1f/0xd0
[  189.285077][ T7675]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  189.285097][ T7675]  ? kstrndup+0xbf/0x160
[  189.285134][ T7675]  hwsim_new_radio_nl+0xea4/0x1b10
[  189.285163][ T7675]  ? __pfx___nla_validate_parse+0x10/0x10
[  189.285211][ T7675]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  189.285251][ T7675]  ? __nla_parse+0x40/0x60
[  189.285285][ T7675]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  189.285315][ T7675]  genl_family_rcv_msg_doit+0x212/0x300
[  189.285354][ T7675]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  189.285397][ T7675]  ? bpf_lsm_capable+0x9/0x20
[  189.285414][ T7675]  ? security_capable+0x7e/0x2e0
[  189.285446][ T7675]  genl_rcv_msg+0x60e/0x790
[  189.285482][ T7675]  ? __pfx_genl_rcv_msg+0x10/0x10
[  189.285511][ T7675]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  189.285551][ T7675]  netlink_rcv_skb+0x205/0x470
[  189.285578][ T7675]  ? __pfx_genl_rcv_msg+0x10/0x10
[  189.285608][ T7675]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  189.285655][ T7675]  ? down_read+0x1ad/0x2e0
[  189.285681][ T7675]  genl_rcv+0x28/0x40
[  189.285706][ T7675]  netlink_unicast+0x758/0x8d0
[  189.285743][ T7675]  netlink_sendmsg+0x805/0xb30
[  189.285780][ T7675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.285809][ T7675]  ? aa_sock_msg_perm+0x94/0x160
[  189.285837][ T7675]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  189.285862][ T7675]  ? __pfx_netlink_sendmsg+0x10/0x10
[  189.285889][ T7675]  __sock_sendmsg+0x21c/0x270
[  189.285917][ T7675]  ____sys_sendmsg+0x505/0x830
[  189.286040][ T7675]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.286105][ T7675]  ? import_iovec+0x74/0xa0
[  189.286138][ T7675]  ___sys_sendmsg+0x21f/0x2a0
[  189.286173][ T7675]  ? __pfx____sys_sendmsg+0x10/0x10
[  189.286252][ T7675]  ? __fget_files+0x2a/0x420
[  189.286275][ T7675]  ? __fget_files+0x3a0/0x420
[  189.286310][ T7675]  __x64_sys_sendmsg+0x19b/0x260
[  189.286346][ T7675]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  189.286392][ T7675]  ? rcu_is_watching+0x15/0xb0
[  189.286431][ T7675]  ? do_syscall_64+0xbe/0x3b0
[  189.286458][ T7675]  do_syscall_64+0xfa/0x3b0
[  189.286478][ T7675]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.286497][ T7675]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.286517][ T7675]  ? clear_bhb_loop+0x60/0xb0
[  189.286543][ T7675]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.286563][ T7675] RIP: 0033:0x7fa43a78e929
[  189.286582][ T7675] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.286599][ T7675] RSP: 002b:00007fa43b685038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.286621][ T7675] RAX: ffffffffffffffda RBX: 00007fa43a9b5fa0 RCX: 00007fa43a78e929
[  189.286636][ T7675] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  189.286649][ T7675] RBP: 00007fa43a810b39 R08: 0000000000000000 R09: 0000000000000000
[  189.286663][ T7675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  189.286675][ T7675] R13: 0000000000000000 R14: 00007fa43a9b5fa0 R15: 00007ffc14fcd988
[  189.286710][ T7675]  </TASK>
[  189.864354][ T7675] netlink: 'syz.4.519': attribute type 3 has an invalid length.
[  190.011273][ T7497] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  190.240252][ T7497] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  190.288400][ T7497] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  190.340734][ T7683] trusted_key: syz.1.520 sent an empty control message without MSG_MORE.
[  190.380635][ T7683] netlink: 'syz.1.520': attribute type 1 has an invalid length.
[  190.390802][ T7497] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  190.421062][ T7683] netlink: 'syz.1.520': attribute type 1 has an invalid length.
[  192.303627][ T7710] netlink: 92 bytes leftover after parsing attributes in process `syz.1.529'.
[  192.620365][ T7713] netlink: 20 bytes leftover after parsing attributes in process `syz.1.530'.
[  193.302129][ T7723] netlink: 28 bytes leftover after parsing attributes in process `syz.2.534'.
[  193.311452][ T7723] netlink: 28 bytes leftover after parsing attributes in process `syz.2.534'.
[  193.424801][ T7712] lo speed is unknown, defaulting to 1000
[  193.431524][ T7723] ip6gretap0: entered promiscuous mode
[  193.440557][ T7723] syz_tun: entered promiscuous mode
[  193.446757][ T7723] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  193.454858][ T7723] Cannot create hsr debugfs directory
[  193.463656][ T7712] lo speed is unknown, defaulting to 1000
[  193.482813][ T7497] 8021q: adding VLAN 0 to HW filter on device bond0
[  193.502526][ T7712] lo speed is unknown, defaulting to 1000
[  193.555431][ T7712] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  193.558764][ T7497] 8021q: adding VLAN 0 to HW filter on device team0
[  193.603736][ T7712] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  193.626704][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.634359][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.636469][ T7725] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  193.694700][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.702002][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.773666][ T7725] Bluetooth: MGMT ver 1.23
[  193.831022][ T7712] lo speed is unknown, defaulting to 1000
[  193.852848][ T7731] netlink: 'syz.0.537': attribute type 15 has an invalid length.
[  193.863676][ T7731] netlink: 'syz.0.537': attribute type 3 has an invalid length.
[  193.888026][ T7712] lo speed is unknown, defaulting to 1000
[  193.900085][ T7731] netlink: 24 bytes leftover after parsing attributes in process `syz.0.537'.
[  193.923847][ T7733] netlink: 8 bytes leftover after parsing attributes in process `syz.0.537'.
[  193.947469][ T7712] lo speed is unknown, defaulting to 1000
[  194.006585][ T7735] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  194.025642][ T7735] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  194.077545][ T7712] lo speed is unknown, defaulting to 1000
[  194.099529][ T7712] lo speed is unknown, defaulting to 1000
[  194.144582][ T7740] rdma_rxe: rxe_newlink: failed to add vxcan1
[  194.171095][ T7740] sctp: [Deprecated]: syz.4.540 (pid 7740) Use of int in max_burst socket option.
[  194.171095][ T7740] Use struct sctp_assoc_value instead
[  194.236090][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.4.540'.
[  194.444856][ T7497] 8021q: adding VLAN 0 to HW filter on device batadv0
[  194.579871][ T7497] veth0_vlan: entered promiscuous mode
[  194.610286][ T7497] veth1_vlan: entered promiscuous mode
[  194.680210][ T1305] ieee802154 phy0 wpan0: encryption failed: -22
[  194.687741][ T1305] ieee802154 phy1 wpan1: encryption failed: -22
[  194.737218][ T7757] netlink: 28 bytes leftover after parsing attributes in process `syz.1.546'.
[  195.405304][ T7767] netlink: 'syz.2.548': attribute type 1 has an invalid length.
[  196.400382][ T7767] workqueue: Failed to create a rescuer kthread for wq "bond2": -EINTR
[  196.430712][ T7768] gretap1: entered promiscuous mode
[  196.558699][ T7497] veth0_macvtap: entered promiscuous mode
[  196.580150][ T7497] veth1_macvtap: entered promiscuous mode
[  196.690150][ T7497] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.732198][ T7497] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.790458][ T2930] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.819464][ T2930] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.864445][ T7779] syz_tun: entered allmulticast mode
[  196.875609][ T2930] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  196.915810][ T2930] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  196.949334][ T7777] syz_tun: left allmulticast mode
[  196.964904][ T7784] FAULT_INJECTION: forcing a failure.
[  196.964904][ T7784] name failslab, interval 1, probability 0, space 0, times 0
[  196.978036][ T7784] CPU: 1 UID: 0 PID: 7784 Comm: syz.1.554 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  196.978065][ T7784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  196.978077][ T7784] Call Trace:
[  196.978086][ T7784]  <TASK>
[  196.978095][ T7784]  dump_stack_lvl+0x189/0x250
[  196.978131][ T7784]  ? __pfx____ratelimit+0x10/0x10
[  196.978151][ T7784]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.978179][ T7784]  ? __pfx__printk+0x10/0x10
[  196.978208][ T7784]  ? __pfx___might_resched+0x10/0x10
[  196.978235][ T7784]  ? fs_reclaim_acquire+0x7d/0x100
[  196.978263][ T7784]  should_fail_ex+0x414/0x560
[  196.978293][ T7784]  should_failslab+0xa8/0x100
[  196.978316][ T7784]  __kmalloc_noprof+0xcb/0x4f0
[  196.978334][ T7784]  ? security_sk_alloc+0x52/0x390
[  196.978357][ T7784]  security_sk_alloc+0x52/0x390
[  196.978378][ T7784]  sk_prot_alloc+0x101/0x220
[  196.978404][ T7784]  ? sk_alloc+0x24/0x370
[  196.978430][ T7784]  sk_alloc+0x3a/0x370
[  196.978454][ T7784]  ? bpf_ctx_init+0x167/0x1d0
[  196.978481][ T7784]  bpf_prog_test_run_skb+0x2ed/0x1560
[  196.978503][ T7784]  ? __fget_files+0x2a/0x420
[  196.978541][ T7784]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  196.978565][ T7784]  bpf_prog_test_run+0x2c4/0x340
[  196.978597][ T7784]  __sys_bpf+0x4a4/0x860
[  196.978624][ T7784]  ? __pfx___sys_bpf+0x10/0x10
[  196.978663][ T7784]  ? ksys_write+0x22a/0x250
[  196.978753][ T7784]  ? __pfx_ksys_write+0x10/0x10
[  196.978769][ T7784]  ? rcu_is_watching+0x15/0xb0
[  196.978806][ T7784]  __x64_sys_bpf+0x7c/0x90
[  196.978830][ T7784]  do_syscall_64+0xfa/0x3b0
[  196.978848][ T7784]  ? lockdep_hardirqs_on+0x9c/0x150
[  196.978867][ T7784]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.978885][ T7784]  ? clear_bhb_loop+0x60/0xb0
[  196.978909][ T7784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.978926][ T7784] RIP: 0033:0x7f3bc6f8e929
[  196.978944][ T7784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.978961][ T7784] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  196.978983][ T7784] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  196.978998][ T7784] RDX: 0000000000000050 RSI: 0000200000000080 RDI: 000000000000000a
[  196.979010][ T7784] RBP: 00007f3bc7da6090 R08: 0000000000000000 R09: 0000000000000000
[  196.979022][ T7784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.979033][ T7784] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  196.979065][ T7784]  </TASK>
[  197.439655][ T2930] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.498651][ T2930] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.555240][ T7763] lo speed is unknown, defaulting to 1000
[  197.711336][ T7781] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  197.718754][ T7781] IPv6: NLM_F_CREATE should be set when creating new route
[  197.726996][ T7781] IPv6: NLM_F_CREATE should be set when creating new route
[  197.764426][ T1326] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.773467][ T1326] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.909830][ T7800] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  197.965107][ T7800] CPU: 0 UID: 0 PID: 7800 Comm: syz.1.557 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  197.965140][ T7800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  197.965153][ T7800] Call Trace:
[  197.965162][ T7800]  <TASK>
[  197.965170][ T7800]  dump_stack_lvl+0x189/0x250
[  197.965212][ T7800]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.965243][ T7800]  ? __pfx__printk+0x10/0x10
[  197.965267][ T7800]  ? kernfs_path_from_node+0x2c/0x260
[  197.965291][ T7800]  ? kernfs_path_from_node+0x2c/0x260
[  197.965313][ T7800]  ? kernfs_path_from_node+0x2c/0x260
[  197.965339][ T7800]  ? kernfs_path_from_node+0x22c/0x260
[  197.965360][ T7800]  ? kernfs_path_from_node+0x2c/0x260
[  197.965388][ T7800]  sysfs_warn_dup+0x8e/0xa0
[  197.965410][ T7800]  sysfs_do_create_link_sd+0xc0/0x110
[  197.965437][ T7800]  device_add_class_symlinks+0x1cf/0x240
[  197.965466][ T7800]  device_add+0x475/0xb50
[  197.965493][ T7800]  wiphy_register+0x199a/0x26b0
[  197.965538][ T7800]  ? __pfx_wiphy_register+0x10/0x10
[  197.965561][ T7800]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  197.965595][ T7800]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  197.965628][ T7800]  ieee80211_register_hw+0x33e1/0x4120
[  197.965687][ T7800]  ? ieee80211_register_hw+0x13f1/0x4120
[  197.965726][ T7800]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  197.965760][ T7800]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  197.965800][ T7800]  ? __hrtimer_setup+0x187/0x210
[  197.965827][ T7800]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  197.965858][ T7800]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  197.965920][ T7800]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  197.965942][ T7800]  ? trace_kmalloc+0x1f/0xd0
[  197.965958][ T7800]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  197.965978][ T7800]  ? kstrndup+0xbf/0x160
[  197.966015][ T7800]  hwsim_new_radio_nl+0xea4/0x1b10
[  197.966043][ T7800]  ? __pfx___nla_validate_parse+0x10/0x10
[  197.966090][ T7800]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  197.966119][ T7800]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  197.966150][ T7800]  ? __nla_parse+0x40/0x60
[  197.966183][ T7800]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  197.966213][ T7800]  genl_family_rcv_msg_doit+0x212/0x300
[  197.966242][ T7800]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  197.966291][ T7800]  ? bpf_lsm_capable+0x9/0x20
[  197.966310][ T7800]  ? security_capable+0x7e/0x2e0
[  197.966344][ T7800]  genl_rcv_msg+0x60e/0x790
[  197.966385][ T7800]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.966415][ T7800]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  197.966458][ T7800]  netlink_rcv_skb+0x205/0x470
[  197.966484][ T7800]  ? __pfx_genl_rcv_msg+0x10/0x10
[  197.966517][ T7800]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  197.966565][ T7800]  ? down_read+0x1ad/0x2e0
[  197.966591][ T7800]  genl_rcv+0x28/0x40
[  197.966620][ T7800]  netlink_unicast+0x758/0x8d0
[  197.966669][ T7800]  netlink_sendmsg+0x805/0xb30
[  197.966708][ T7800]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.966738][ T7800]  ? aa_sock_msg_perm+0x94/0x160
[  197.966767][ T7800]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  197.966791][ T7800]  ? __pfx_netlink_sendmsg+0x10/0x10
[  197.966818][ T7800]  __sock_sendmsg+0x21c/0x270
[  197.966845][ T7800]  ____sys_sendmsg+0x505/0x830
[  197.966883][ T7800]  ? __pfx_____sys_sendmsg+0x10/0x10
[  197.966922][ T7800]  ? import_iovec+0x74/0xa0
[  197.966948][ T7800]  ___sys_sendmsg+0x21f/0x2a0
[  197.966981][ T7800]  ? __pfx____sys_sendmsg+0x10/0x10
[  197.967060][ T7800]  ? __fget_files+0x2a/0x420
[  197.967080][ T7800]  ? __fget_files+0x3a0/0x420
[  197.967117][ T7800]  __x64_sys_sendmsg+0x19b/0x260
[  197.967151][ T7800]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  197.967194][ T7800]  ? rcu_is_watching+0x15/0xb0
[  197.967232][ T7800]  ? do_syscall_64+0xbe/0x3b0
[  197.967259][ T7800]  do_syscall_64+0xfa/0x3b0
[  197.967278][ T7800]  ? lockdep_hardirqs_on+0x9c/0x150
[  197.967297][ T7800]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.967317][ T7800]  ? clear_bhb_loop+0x60/0xb0
[  197.967343][ T7800]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.967362][ T7800] RIP: 0033:0x7f3bc6f8e929
[  197.967382][ T7800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.967400][ T7800] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  197.967424][ T7800] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  197.967439][ T7800] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  197.967452][ T7800] RBP: 00007f3bc7010b39 R08: 0000000000000000 R09: 0000000000000000
[  197.967465][ T7800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  197.967477][ T7800] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  197.967513][ T7800]  </TASK>
[  199.198507][ T1149] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.260602][ T1005] syzkaller0: tun_net_xmit 76
[  199.274629][ T1005] syzkaller0: tun_net_xmit 48
[  199.284717][ T6836] syzkaller0: tun_net_xmit 76
[  199.365245][ T6834] syzkaller0: tun_net_xmit 76
[  199.375786][ T1149] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.374437][ T5847] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  200.393163][ T5847] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  200.410059][ T5847] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  200.428407][ T5847] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  200.439998][ T5847] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  201.009364][ T7841] netlink: 20 bytes leftover after parsing attributes in process `syz.4.571'.
[  201.886687][ T1149] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.991113][ T7845] sysfs: cannot create duplicate filename '/class/ieee80211/žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–_à›xDä±pj8¼•TTí!'
[  202.024872][ T7858] netlink: 'syz.2.575': attribute type 2 has an invalid length.
[  202.035369][ T7845] CPU: 1 UID: 0 PID: 7845 Comm: syz.1.573 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  202.035401][ T7845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.035413][ T7845] Call Trace:
[  202.035422][ T7845]  <TASK>
[  202.035431][ T7845]  dump_stack_lvl+0x189/0x250
[  202.035472][ T7845]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.035503][ T7845]  ? __pfx__printk+0x10/0x10
[  202.035522][ T5844] Bluetooth: hci4: command 0x0406 tx timeout
[  202.035524][ T7845]  ? kernfs_path_from_node+0x2c/0x260
[  202.035548][ T7845]  ? kernfs_path_from_node+0x2c/0x260
[  202.035567][ T7845]  ? kernfs_path_from_node+0x2c/0x260
[  202.035585][ T7845]  ? kernfs_path_from_node+0x22c/0x260
[  202.035602][ T7845]  ? kernfs_path_from_node+0x2c/0x260
[  202.035623][ T7845]  sysfs_warn_dup+0x8e/0xa0
[  202.035644][ T7845]  sysfs_do_create_link_sd+0xc0/0x110
[  202.035666][ T7845]  device_add_class_symlinks+0x1cf/0x240
[  202.035691][ T7845]  device_add+0x475/0xb50
[  202.035714][ T7845]  wiphy_register+0x199a/0x26b0
[  202.035754][ T7845]  ? __pfx_wiphy_register+0x10/0x10
[  202.035774][ T7845]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  202.035805][ T7845]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  202.035844][ T7845]  ieee80211_register_hw+0x33e1/0x4120
[  202.035887][ T7845]  ? ieee80211_register_hw+0x13f1/0x4120
[  202.035920][ T7845]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  202.035949][ T7845]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  202.035985][ T7845]  ? __hrtimer_setup+0x187/0x210
[  202.036007][ T7845]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  202.036034][ T7845]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  202.036089][ T7845]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  202.036108][ T7845]  ? trace_kmalloc+0x1f/0xd0
[  202.036122][ T7845]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  202.036139][ T7845]  ? kstrndup+0xbf/0x160
[  202.036171][ T7845]  hwsim_new_radio_nl+0xea4/0x1b10
[  202.036195][ T7845]  ? __pfx___nla_validate_parse+0x10/0x10
[  202.036235][ T7845]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  202.036271][ T7845]  ? __nla_parse+0x40/0x60
[  202.036300][ T7845]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  202.036327][ T7845]  genl_family_rcv_msg_doit+0x212/0x300
[  202.036352][ T7845]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  202.036393][ T7845]  ? bpf_lsm_capable+0x9/0x20
[  202.036409][ T7845]  ? security_capable+0x7e/0x2e0
[  202.036438][ T7845]  genl_rcv_msg+0x60e/0x790
[  202.036470][ T7845]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.036495][ T7845]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  202.036531][ T7845]  netlink_rcv_skb+0x205/0x470
[  202.036553][ T7845]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.036580][ T7845]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  202.036620][ T7845]  ? down_read+0x1ad/0x2e0
[  202.036642][ T7845]  genl_rcv+0x28/0x40
[  202.036665][ T7845]  netlink_unicast+0x758/0x8d0
[  202.036698][ T7845]  netlink_sendmsg+0x805/0xb30
[  202.036731][ T7845]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.036756][ T7845]  ? aa_sock_msg_perm+0x94/0x160
[  202.036780][ T7845]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  202.036801][ T7845]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.036831][ T7845]  __sock_sendmsg+0x21c/0x270
[  202.036855][ T7845]  ____sys_sendmsg+0x505/0x830
[  202.036886][ T7845]  ? __pfx_____sys_sendmsg+0x10/0x10
[  202.036921][ T7845]  ? import_iovec+0x74/0xa0
[  202.036943][ T7845]  ___sys_sendmsg+0x21f/0x2a0
[  202.036971][ T7845]  ? __pfx____sys_sendmsg+0x10/0x10
[  202.037037][ T7845]  ? __fget_files+0x2a/0x420
[  202.037054][ T7845]  ? __fget_files+0x3a0/0x420
[  202.037086][ T7845]  __x64_sys_sendmsg+0x19b/0x260
[  202.037116][ T7845]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  202.037152][ T7845]  ? rcu_is_watching+0x15/0xb0
[  202.037183][ T7845]  ? do_syscall_64+0xbe/0x3b0
[  202.037206][ T7845]  do_syscall_64+0xfa/0x3b0
[  202.037239][ T7845]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.037256][ T7845]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.037273][ T7845]  ? clear_bhb_loop+0x60/0xb0
[  202.037295][ T7845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.037312][ T7845] RIP: 0033:0x7f3bc6f8e929
[  202.037329][ T7845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.037345][ T7845] RSP: 002b:00007f3bc7da6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.037365][ T7845] RAX: ffffffffffffffda RBX: 00007f3bc71b5fa0 RCX: 00007f3bc6f8e929
[  202.037378][ T7845] RDX: 0000000000000300 RSI: 0000200000000040 RDI: 0000000000000004
[  202.037389][ T7845] RBP: 00007f3bc7010b39 R08: 0000000000000000 R09: 0000000000000000
[  202.037399][ T7845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  202.037409][ T7845] R13: 0000000000000000 R14: 00007f3bc71b5fa0 R15: 00007ffd62f36008
[  202.037440][ T7845]  </TASK>
[  202.120773][ T7859] FAULT_INJECTION: forcing a failure.
[  202.120773][ T7859] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.523717][ T5844] Bluetooth: hci2: command tx timeout
[  202.530038][ T7859] CPU: 0 UID: 0 PID: 7859 Comm: syz.4.576 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  202.530064][ T7859] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  202.530074][ T7859] Call Trace:
[  202.530081][ T7859]  <TASK>
[  202.530088][ T7859]  dump_stack_lvl+0x189/0x250
[  202.530120][ T7859]  ? __pfx____ratelimit+0x10/0x10
[  202.530136][ T7859]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.530160][ T7859]  ? __pfx__printk+0x10/0x10
[  202.530177][ T7859]  ? __might_fault+0xb0/0x130
[  202.530205][ T7859]  should_fail_ex+0x414/0x560
[  202.530230][ T7859]  _copy_from_user+0x2d/0xb0
[  202.530248][ T7859]  __sys_bind+0x199/0x3e0
[  202.530270][ T7859]  ? __pfx___sys_bind+0x10/0x10
[  202.530303][ T7859]  ? __pfx_ksys_write+0x10/0x10
[  202.530316][ T7859]  ? rcu_is_watching+0x15/0xb0
[  202.530348][ T7859]  __x64_sys_bind+0x7a/0x90
[  202.530369][ T7859]  do_syscall_64+0xfa/0x3b0
[  202.530385][ T7859]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.530401][ T7859]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.530418][ T7859]  ? clear_bhb_loop+0x60/0xb0
[  202.530437][ T7859]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.530452][ T7859] RIP: 0033:0x7fa43a78e929
[  202.530467][ T7859] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.530481][ T7859] RSP: 002b:00007fa43b685038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  202.530500][ T7859] RAX: ffffffffffffffda RBX: 00007fa43a9b5fa0 RCX: 00007fa43a78e929
[  202.530513][ T7859] RDX: 0000000000000010 RSI: 0000200000000100 RDI: 0000000000000003
[  202.530523][ T7859] RBP: 00007fa43b685090 R08: 0000000000000000 R09: 0000000000000000
[  202.530534][ T7859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.530544][ T7859] R13: 0000000000000000 R14: 00007fa43a9b5fa0 R15: 00007ffc14fcd988
[  202.530573][ T7859]  </TASK>
[  202.743444][ T1149] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.926651][ T7861] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  203.024155][ T7867] netlink: 212376 bytes leftover after parsing attributes in process `syz.4.579'.
[  203.152493][ T7872] FAULT_INJECTION: forcing a failure.
[  203.152493][ T7872] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.213456][ T7872] CPU: 0 UID: 0 PID: 7872 Comm: syz.0.581 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  203.213485][ T7872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.213496][ T7872] Call Trace:
[  203.213504][ T7872]  <TASK>
[  203.213513][ T7872]  dump_stack_lvl+0x189/0x250
[  203.213548][ T7872]  ? __pfx____ratelimit+0x10/0x10
[  203.213567][ T7872]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.213596][ T7872]  ? __pfx__printk+0x10/0x10
[  203.213616][ T7872]  ? __might_fault+0xb0/0x130
[  203.213648][ T7872]  should_fail_ex+0x414/0x560
[  203.213677][ T7872]  _copy_from_user+0x2d/0xb0
[  203.213697][ T7872]  ___sys_sendmsg+0x158/0x2a0
[  203.213729][ T7872]  ? __pfx____sys_sendmsg+0x10/0x10
[  203.213797][ T7872]  ? __fget_files+0x2a/0x420
[  203.213830][ T7872]  ? __fget_files+0x3a0/0x420
[  203.213863][ T7872]  __x64_sys_sendmsg+0x19b/0x260
[  203.213894][ T7872]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  203.213933][ T7872]  ? __pfx_ksys_write+0x10/0x10
[  203.213948][ T7872]  ? rcu_is_watching+0x15/0xb0
[  203.213987][ T7872]  ? do_syscall_64+0xbe/0x3b0
[  203.214010][ T7872]  do_syscall_64+0xfa/0x3b0
[  203.214026][ T7872]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.214043][ T7872]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.214061][ T7872]  ? clear_bhb_loop+0x60/0xb0
[  203.214084][ T7872]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.214101][ T7872] RIP: 0033:0x7f6c3ad8e929
[  203.214124][ T7872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.214137][ T7872] RSP: 002b:00007f6c3bca2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  203.214156][ T7872] RAX: ffffffffffffffda RBX: 00007f6c3afb5fa0 RCX: 00007f6c3ad8e929
[  203.214169][ T7872] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000003
[  203.214181][ T7872] RBP: 00007f6c3bca2090 R08: 0000000000000000 R09: 0000000000000000
[  203.214192][ T7872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.214201][ T7872] R13: 0000000000000000 R14: 00007f6c3afb5fa0 R15: 00007ffc2eb342c8
[  203.214229][ T7872]  </TASK>
[  203.444666][ T7875] netlink: 'syz.2.583': attribute type 11 has an invalid length.
[  203.452834][ T7875] netlink: 'syz.2.583': attribute type 4 has an invalid length.
[  203.461024][ T7875] netlink: 224 bytes leftover after parsing attributes in process `syz.2.583'.
[  203.472167][ T1149] bridge_slave_1: left allmulticast mode
[  203.503416][ T1149] bridge_slave_1: left promiscuous mode
[  203.578803][ T1149] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.645613][ T1149] bridge_slave_0: left allmulticast mode
[  203.660083][ T1149] bridge_slave_0: left promiscuous mode
[  203.693299][ T7882] netlink: 4 bytes leftover after parsing attributes in process `syz.1.586'.
[  203.703180][ T1149] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.765497][ T7884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.585'.
[  203.774684][ T7884] netlink: 28 bytes leftover after parsing attributes in process `syz.0.585'.
[  204.383273][ T1149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  204.406992][ T1149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  204.423440][ T1149] bond0 (unregistering): Released all slaves
[  204.493900][ T7884] ip6gretap0: entered promiscuous mode
[  204.545510][ T7884] syz_tun: entered promiscuous mode
[  204.551364][ T7884] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[  204.580985][ T7884] Cannot create hsr debugfs directory
[  204.594593][ T5844] Bluetooth: hci2: command tx timeout
[  204.598297][ T7884] hsr1: Slave A (ip6gretap0) is not up; please bring it up to get a fully working HSR network
[  204.661903][ T7884] hsr1: Slave B (syz_tun) is not up; please bring it up to get a fully working HSR network
[  204.684199][ T7832] lo speed is unknown, defaulting to 1000
[  204.696807][ T7891] tipc: Started in network mode
[  204.701916][ T7891] tipc: Node identity ac14140f, cluster identity 4711
[  204.723030][ T7891] tipc: New replicast peer: 255.255.255.255
[  204.736349][ T7891] tipc: Enabled bearer <udp:syz2>, priority 10
[  204.793757][ T7892] netlink: 12 bytes leftover after parsing attributes in process `syz.4.587'.
[  204.804315][ T7892] tipc: Disabling bearer <udp:syz2>
[  205.211532][ T7906] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  205.650058][ T7920] netlink: 16 bytes leftover after parsing attributes in process `syz.2.595'.
[  205.694561][ T7916] syz_tun: entered allmulticast mode
[  205.732290][ T7919] netlink: 27 bytes leftover after parsing attributes in process `syz.1.597'.
[  205.735667][    C0] ------------[ cut here ]------------
[  205.747680][    C0] WARNING: CPU: 0 PID: 7907 at net/ipv4/ipmr.c:2302 ip_mr_output+0xbb1/0xe70
[  205.756757][    C0] Modules linked in:
[  205.761043][    C0] CPU: 0 UID: 0 PID: 7907 Comm: syz.4.593 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  205.773451][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  205.783793][    C0] RIP: 0010:ip_mr_output+0xbb1/0xe70
[  205.789367][    C0] Code: df e9 63 f6 ff ff e8 ce 33 c6 f7 48 8b 74 24 18 45 31 f6 31 ff ba 02 00 00 00 e8 9a 09 4c ff e9 45 f6 ff ff e8 b0 33 c6 f7 90 <0f> 0b 90 e9 94 f5 ff ff e8 a2 33 c6 f7 90 0f 0b 90 42 80 3c 2b 00
[  205.809510][    C0] RSP: 0018:ffffc90000007900 EFLAGS: 00010246
[  205.815779][    C0] RAX: ffffffff89fa28a0 RBX: ffff88807dc3ec80 RCX: ffff88802bf13c00
[  205.824582][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  205.832693][    C0] RBP: ffffc90000007a10 R08: ffff88802bf13c00 R09: 0000000000000004
[  205.840840][    C0] R10: 0000000000000003 R11: ffffffff89fa1cf0 R12: 0000000000000010
[  205.848885][    C0] R13: dffffc0000000000 R14: ffff8880332ff000 R15: 0000000000000000
[  205.857511][    C0] FS:  00007fa43b6646c0(0000) GS:ffff888125c4f000(0000) knlGS:0000000000000000
[  205.867507][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  205.874629][    C0] CR2: 00007fa65731e1e6 CR3: 00000000778b8000 CR4: 00000000003526f0
[  205.882775][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  205.890996][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  205.899301][    C0] Call Trace:
[  205.902701][    C0]  <IRQ>
[  205.905709][    C0]  ? __pfx_dst_output+0x10/0x10
[  205.910602][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  205.916103][    C0]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  205.922212][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  205.927395][    C0]  ? skb_dst+0x4f/0xd0
[  205.931596][    C0]  ? dst_output+0x177/0x1c0
[  205.936221][    C0]  igmp_send_report+0x89e/0xdb0
[  205.941824][    C0]  ? __pfx_igmp_send_report+0x10/0x10
[  205.947377][    C0]  ? igmp_start_timer+0x211/0x2b0
[  205.952714][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  205.958268][    C0]  igmp_timer_expire+0x204/0x510
[  205.963522][    C0]  call_timer_fn+0x17e/0x5f0
[  205.968224][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  205.973938][    C0]  ? call_timer_fn+0xbe/0x5f0
[  205.978849][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  205.984369][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  205.989651][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.995115][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  206.000712][    C0]  __run_timer_base+0x61a/0x860
[  206.006120][    C0]  ? ktime_get+0x3e/0x1f0
[  206.010788][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  206.016847][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  206.023347][    C0]  run_timer_softirq+0xb7/0x180
[  206.028471][    C0]  handle_softirqs+0x286/0x870
[  206.033374][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  206.038692][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  206.044578][    C0]  __irq_exit_rcu+0xca/0x1f0
[  206.049422][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  206.054858][    C0]  irq_exit_rcu+0x9/0x30
[  206.059247][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  206.065592][    C0]  </IRQ>
[  206.068753][    C0]  <TASK>
[  206.072063][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  206.078909][    C0] RIP: 0010:charge_memcg+0x63/0x180
[  206.084387][    C0] Code: 01 0f 85 12 01 00 00 48 89 df be 08 00 00 00 e8 43 ba f7 ff 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 bd b7 f7 ff <ba> 01 00 00 00 48 f7 03 40 00 00 00 74 1b 4c 8d 7b 78 4c 89 f8 48
[  206.107282][    C0] RSP: 0018:ffffc90005107488 EFLAGS: 00000246
[  206.114154][    C0] RAX: 1ffffd40000d0578 RBX: ffffea0000682bc0 RCX: ffffffff822c229d
[  206.122740][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffea0000682bc0
[  206.131611][    C0] RBP: 0000000000000cc0 R08: ffffea0000682bc7 R09: 1ffffd40000d0578
[  206.140112][    C0] R10: dffffc0000000000 R11: fffff940000d0579 R12: dffffc0000000000
[  206.148598][    C0] R13: ffffea0000682bc0 R14: ffff8880286e9a00 R15: ffffea0000682bc8
[  206.156899][    C0]  ? charge_memcg+0x4d/0x180
[  206.161601][    C0]  ? charge_memcg+0x4d/0x180
[  206.166457][    C0]  __mem_cgroup_charge+0x25/0x80
[  206.171485][    C0]  shmem_alloc_and_add_folio+0x7c1/0xf60
[  206.177254][    C0]  ? filemap_get_entry+0xad/0x2f0
[  206.182694][    C0]  ? filemap_get_entry+0xad/0x2f0
[  206.188351][    C0]  ? shmem_huge_global_enabled+0x174/0x3a0
[  206.194367][    C0]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  206.200901][    C0]  ? shmem_allowable_huge_orders+0x414/0x420
[  206.207477][    C0]  shmem_get_folio_gfp+0x59d/0x1660
[  206.213059][    C0]  shmem_fault+0x179/0x390
[  206.217670][    C0]  __do_fault+0x138/0x390
[  206.222832][    C0]  __handle_mm_fault+0x37ed/0x5620
[  206.228058][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  206.233673][    C0]  ? follow_page_pte+0x8d6/0x14b0
[  206.238794][    C0]  handle_mm_fault+0x40a/0x8e0
[  206.243901][    C0]  __get_user_pages+0x1af4/0x30b0
[  206.249262][    C0]  ? mt_find+0x15c/0x5f0
[  206.253761][    C0]  ? __pfx___get_user_pages+0x10/0x10
[  206.259250][    C0]  populate_vma_page_range+0x26b/0x340
[  206.264980][    C0]  ? __pfx_populate_vma_page_range+0x10/0x10
[  206.271048][    C0]  ? userfaultfd_unmap_complete+0x278/0x2d0
[  206.277180][    C0]  ? down_read+0x1ad/0x2e0
[  206.281740][    C0]  __mm_populate+0x24c/0x380
[  206.286454][    C0]  ? __pfx___mm_populate+0x10/0x10
[  206.292082][    C0]  ? up_write+0x1c4/0x420
[  206.296585][    C0]  vm_mmap_pgoff+0x3f0/0x4c0
[  206.301227][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  206.306519][    C0]  ? rcu_is_watching+0x15/0xb0
[  206.311333][    C0]  ? ksys_mmap_pgoff+0xf4/0x760
[  206.316277][    C0]  ? __x64_sys_mmap+0x7f/0x140
[  206.321182][    C0]  do_syscall_64+0xfa/0x3b0
[  206.325958][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.331288][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.337685][    C0]  ? clear_bhb_loop+0x60/0xb0
[  206.342489][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.348665][    C0] RIP: 0033:0x7fa43a78e929
[  206.353206][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  206.373356][    C0] RSP: 002b:00007fa43b664038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  206.381940][    C0] RAX: ffffffffffffffda RBX: 00007fa43a9b6080 RCX: 00007fa43a78e929
[  206.390130][    C0] RDX: b635773f05ebbee1 RSI: 0000000000b36000 RDI: 0000200000000000
[  206.398698][    C0] RBP: 00007fa43a810b39 R08: ffffffffffffffff R09: 0000000000000000
[  206.406770][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  206.414923][    C0] R13: 0000000000000000 R14: 00007fa43a9b6080 R15: 00007ffc14fcd988
[  206.422965][    C0]  </TASK>
[  206.426070][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  206.433476][    C0] CPU: 0 UID: 0 PID: 7907 Comm: syz.4.593 Not tainted 6.16.0-rc2-syzkaller-00591-g4f4040ea5d3e #0 PREEMPT(full) 
[  206.445635][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  206.455716][    C0] Call Trace:
[  206.459034][    C0]  <IRQ>
[  206.461904][    C0]  dump_stack_lvl+0x99/0x250
[  206.466608][    C0]  ? __asan_memcpy+0x40/0x70
[  206.471235][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  206.476557][    C0]  ? __pfx__printk+0x10/0x10
[  206.481168][    C0]  panic+0x2db/0x790
[  206.485080][    C0]  ? __pfx_panic+0x10/0x10
[  206.489509][    C0]  ? show_trace_log_lvl+0x4fb/0x550
[  206.494740][    C0]  __warn+0x31b/0x4b0
[  206.498863][    C0]  ? ip_mr_output+0xbb1/0xe70
[  206.503647][    C0]  ? ip_mr_output+0xbb1/0xe70
[  206.508345][    C0]  report_bug+0x2be/0x4f0
[  206.512802][    C0]  ? ip_mr_output+0xbb1/0xe70
[  206.517522][    C0]  ? ip_mr_output+0xbb1/0xe70
[  206.522237][    C0]  ? ip_mr_output+0xbb3/0xe70
[  206.527236][    C0]  handle_bug+0x84/0x160
[  206.531541][    C0]  exc_invalid_op+0x1a/0x50
[  206.536067][    C0]  asm_exc_invalid_op+0x1a/0x20
[  206.541035][    C0] RIP: 0010:ip_mr_output+0xbb1/0xe70
[  206.546355][    C0] Code: df e9 63 f6 ff ff e8 ce 33 c6 f7 48 8b 74 24 18 45 31 f6 31 ff ba 02 00 00 00 e8 9a 09 4c ff e9 45 f6 ff ff e8 b0 33 c6 f7 90 <0f> 0b 90 e9 94 f5 ff ff e8 a2 33 c6 f7 90 0f 0b 90 42 80 3c 2b 00
[  206.566430][    C0] RSP: 0018:ffffc90000007900 EFLAGS: 00010246
[  206.572551][    C0] RAX: ffffffff89fa28a0 RBX: ffff88807dc3ec80 RCX: ffff88802bf13c00
[  206.580614][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  206.588699][    C0] RBP: ffffc90000007a10 R08: ffff88802bf13c00 R09: 0000000000000004
[  206.596714][    C0] R10: 0000000000000003 R11: ffffffff89fa1cf0 R12: 0000000000000010
[  206.604885][    C0] R13: dffffc0000000000 R14: ffff8880332ff000 R15: 0000000000000000
[  206.613056][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  206.618180][    C0]  ? ip_mr_output+0xbb0/0xe70
[  206.622877][    C0]  ? __pfx_dst_output+0x10/0x10
[  206.627830][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  206.633333][    C0]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  206.639413][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  206.644583][    C0]  ? skb_dst+0x4f/0xd0
[  206.648666][    C0]  ? dst_output+0x177/0x1c0
[  206.653525][    C0]  igmp_send_report+0x89e/0xdb0
[  206.658669][    C0]  ? __pfx_igmp_send_report+0x10/0x10
[  206.664061][    C0]  ? igmp_start_timer+0x211/0x2b0
[  206.669105][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  206.674399][    C0]  igmp_timer_expire+0x204/0x510
[  206.679468][    C0]  call_timer_fn+0x17e/0x5f0
[  206.684069][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  206.689632][    C0]  ? call_timer_fn+0xbe/0x5f0
[  206.694456][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  206.699811][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  206.705230][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  206.710522][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  206.716107][    C0]  __run_timer_base+0x61a/0x860
[  206.721196][    C0]  ? ktime_get+0x3e/0x1f0
[  206.725578][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  206.730996][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  206.737388][    C0]  run_timer_softirq+0xb7/0x180
[  206.742456][    C0]  handle_softirqs+0x286/0x870
[  206.747288][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  206.752629][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  206.758072][    C0]  __irq_exit_rcu+0xca/0x1f0
[  206.762787][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  206.768006][    C0]  irq_exit_rcu+0x9/0x30
[  206.772264][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  206.778002][    C0]  </IRQ>
[  206.780945][    C0]  <TASK>
[  206.783887][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  206.790244][    C0] RIP: 0010:charge_memcg+0x63/0x180
[  206.795734][    C0] Code: 01 0f 85 12 01 00 00 48 89 df be 08 00 00 00 e8 43 ba f7 ff 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 bd b7 f7 ff <ba> 01 00 00 00 48 f7 03 40 00 00 00 74 1b 4c 8d 7b 78 4c 89 f8 48
[  206.816009][    C0] RSP: 0018:ffffc90005107488 EFLAGS: 00000246
[  206.822305][    C0] RAX: 1ffffd40000d0578 RBX: ffffea0000682bc0 RCX: ffffffff822c229d
[  206.830303][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffea0000682bc0
[  206.838402][    C0] RBP: 0000000000000cc0 R08: ffffea0000682bc7 R09: 1ffffd40000d0578
[  206.846407][    C0] R10: dffffc0000000000 R11: fffff940000d0579 R12: dffffc0000000000
[  206.854673][    C0] R13: ffffea0000682bc0 R14: ffff8880286e9a00 R15: ffffea0000682bc8
[  206.862821][    C0]  ? charge_memcg+0x4d/0x180
[  206.867467][    C0]  ? charge_memcg+0x4d/0x180
[  206.872086][    C0]  __mem_cgroup_charge+0x25/0x80
[  206.877035][    C0]  shmem_alloc_and_add_folio+0x7c1/0xf60
[  206.882787][    C0]  ? filemap_get_entry+0xad/0x2f0
[  206.888208][    C0]  ? filemap_get_entry+0xad/0x2f0
[  206.893408][    C0]  ? shmem_huge_global_enabled+0x174/0x3a0
[  206.899355][    C0]  ? __pfx_shmem_alloc_and_add_folio+0x10/0x10
[  206.905740][    C0]  ? shmem_allowable_huge_orders+0x414/0x420
[  206.912026][    C0]  shmem_get_folio_gfp+0x59d/0x1660
[  206.917310][    C0]  shmem_fault+0x179/0x390
[  206.921755][    C0]  __do_fault+0x138/0x390
[  206.926090][    C0]  __handle_mm_fault+0x37ed/0x5620
[  206.931249][    C0]  ? __pfx___handle_mm_fault+0x10/0x10
[  206.936757][    C0]  ? follow_page_pte+0x8d6/0x14b0
[  206.942062][    C0]  handle_mm_fault+0x40a/0x8e0
[  206.946858][    C0]  __get_user_pages+0x1af4/0x30b0
[  206.952013][    C0]  ? mt_find+0x15c/0x5f0
[  206.956448][    C0]  ? __pfx___get_user_pages+0x10/0x10
[  206.961922][    C0]  populate_vma_page_range+0x26b/0x340
[  206.967826][    C0]  ? __pfx_populate_vma_page_range+0x10/0x10
[  206.974164][    C0]  ? userfaultfd_unmap_complete+0x278/0x2d0
[  206.980398][    C0]  ? down_read+0x1ad/0x2e0
[  206.985043][    C0]  __mm_populate+0x24c/0x380
[  206.989693][    C0]  ? __pfx___mm_populate+0x10/0x10
[  206.994818][    C0]  ? up_write+0x1c4/0x420
[  206.999186][    C0]  vm_mmap_pgoff+0x3f0/0x4c0
[  207.003827][    C0]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[  207.009229][    C0]  ? rcu_is_watching+0x15/0xb0
[  207.014024][    C0]  ? ksys_mmap_pgoff+0xf4/0x760
[  207.018904][    C0]  ? __x64_sys_mmap+0x7f/0x140
[  207.023860][    C0]  do_syscall_64+0xfa/0x3b0
[  207.028456][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.033741][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.040088][    C0]  ? clear_bhb_loop+0x60/0xb0
[  207.044778][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.051281][    C0] RIP: 0033:0x7fa43a78e929
[  207.055701][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.075607][    C0] RSP: 002b:00007fa43b664038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[  207.084035][    C0] RAX: ffffffffffffffda RBX: 00007fa43a9b6080 RCX: 00007fa43a78e929
[  207.092279][    C0] RDX: b635773f05ebbee1 RSI: 0000000000b36000 RDI: 0000200000000000
[  207.100260][    C0] RBP: 00007fa43a810b39 R08: ffffffffffffffff R09: 0000000000000000
[  207.108341][    C0] R10: 0000000000008031 R11: 0000000000000246 R12: 0000000000000000
[  207.116495][    C0] R13: 0000000000000000 R14: 00007fa43a9b6080 R15: 00007ffc14fcd988
[  207.124506][    C0]  </TASK>
[  207.128007][    C0] Kernel Offset: disabled
[  207.132429][    C0] Rebooting in 86400 seconds..