last executing test programs:

4.814803901s ago: executing program 2 (id=422):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0xf5, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x7, @loopback, @local}}}}}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0xc, 0x0, &(0x7f0000000300))
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, 0x0}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8b18, &(0x7f0000000000)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000005000000000000000000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
socket$igmp(0x2, 0x3, 0x2)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$fou(&(0x7f0000000580), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$fou(&(0x7f0000000a00), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r5, &(0x7f0000000b80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000005", @ANYRES16=r6, @ANYBLOB="01000000000000000000010000000500040001000000"], 0x1c}}, 0x0)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r4)
sendmsg$ETHTOOL_MSG_RINGS_SET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="0100000000000000000010000000080007000000000018000180140002006e657464657673696d300000000000000800060000100000080008"], 0x44}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r8 = accept(r4, &(0x7f0000000100)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000001c0)=0x80)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r8, 0x84, 0x78, &(0x7f0000000200), 0x4)

4.784736261s ago: executing program 0 (id=424):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3e, &(0x7f00000000c0)=0x7, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='blkio.bfq.io_queued\x00', 0x275a, 0x0)
write$cgroup_int(r2, &(0x7f0000000000), 0xffffff6a)
sendfile(r1, r2, 0x0, 0xffffffff000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100), 0x20)
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'bond0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)=ANY=[@ANYBLOB="140100002d00010043d2898f00000000030100800c0000000000000000000000140001000100000000000000000000000000000150bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4eccb5c0de6167f6451bef5a5842f4c5061dc358"], 0x114}], 0x1}, 0x0)
close(0xffffffffffffffff)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={0xffffffffffffffff, &(0x7f0000000200), 0x20000000}, 0x20)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000440)=""/251, 0xfb}], 0x1}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000040000000400000004"], 0x48)
syz_genetlink_get_family_id$mptcp(&(0x7f00000001c0), r2)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x2}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x64, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x6}, @NFTA_XFRM_DIR={0x5}, @NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x9}]}}}, {0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd8}, 0x1, 0x0, 0x0, 0x4}, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
bind$tipc(r7, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000000)=0xffffffffffffffff, 0x4)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000300))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_mptcp(0xa, 0x1, 0x106)

4.624170551s ago: executing program 2 (id=425):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="24009006e50d6334a4ddffe7b5cb9f3b00003d000000047cff000801040000000000835fe5d02273725a075dbeff16693a36c17304ab5b3e56bdf16351adf1d64d39b807a3ed03ff3c161b2d815ce42f9d1deb526f6ee00da09fd72eb1ea840cee33334fa224680060df3a"], 0x24}}, 0x4040040)
r2 = socket$xdp(0x2c, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x78}, [@ldst={0x7}]}, &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f0000000100)={0x0, 0xfffffcebfff, 0x1000, 0x0, 0x1}, 0x20)
socket$inet6(0xa, 0x2, 0xf)
r3 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000100"/15], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r4}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
r6 = getpid()
ioctl$sock_SIOCSPGRP(r5, 0x8902, &(0x7f0000000200)=r6)
ioctl$sock_FIOGETOWN(r5, 0x8903, &(0x7f0000002800))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
sendmsg$NL80211_CMD_FLUSH_PMKSA(r3, &(0x7f0000000400)={&(0x7f00000001c0), 0xc, 0x0, 0x1, 0x0, 0x0, 0x8000}, 0x0)
write$cgroup_int(r7, 0x0, 0x0)
socket$inet6(0xa, 0x800000000000002, 0x0)
recvfrom(r0, 0x0, 0x0, 0x2020, 0x0, 0x0)
sendmsg$802154_raw(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000540)="110000d72790d217fa77fec6812faac34026296307b4de2e9dee6d93393ff777ce790a18f5330a3afdc995b75e5d3f6ff998402f9d63c80c465eb52ab61f79207b3e8444f357d0aba35b277b8eeed4c3d6f82a419fa1e329a1803cada9b80a906f94f593009cc88f2a439fd8627eae0731c0382cec59ffa1fc39688473", 0x7d}, 0x1, 0x0, 0x0, 0x4008095}, 0x4c0e4)
r8 = socket(0x200000000000011, 0x4000000000080002, 0x0)
sendmsg$L2TP_CMD_SESSION_DELETE(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

4.623258641s ago: executing program 1 (id=426):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x20, 0x0, 0x14eac3b1f713f235, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x38b69da, 0x6a}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x880)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000040)={0x7, {{0xa, 0x4e24, 0x2, @mcast1, 0x1}}}, 0x88)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x7d)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000180)=0x10040000, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000015c0), r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x8, 0x0, 0x0, 0xc8, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, @LWTUNNEL_IP_OPT_ERSPAN_VER={0x5, 0x1, 0x1}}}}]}, 0x38}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000040000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000001c0)='contention_end\x00', r5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x37, 0x301, 0x70bd2d, 0x25dfdbfc, {0xd}}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r9=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r7, &(0x7f0000000180)={0x2c, 0x2, r9}, 0x10)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f0000000740)={0x0, 0x206000, 0x0, 0x3}, 0x20)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f00000001c0)=0x5, 0x4)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000080)=0x14)

3.678136925s ago: executing program 2 (id=429):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001d008104e00f80ecdb4cb9f207c804a00d000000880802fb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000a0850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r4}, 0xc)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x38, &(0x7f0000000040)=0xfffffffe, 0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002940)={0x1c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4800}, 0x8000)

3.436794381s ago: executing program 2 (id=430):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x9}}}, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=@gettaction={0x5c, 0x32, 0x800, 0x70bd28, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x4}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x7}, @action_gd=@TCA_ACT_TAB={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000)
r6 = socket$netlink(0x10, 0x3, 0x6)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r7, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan1\x00'})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x68, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x30, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfd}}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r10}]}, 0x68}}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c8, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1e8, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x428)

3.408109387s ago: executing program 1 (id=431):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='l\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000030000005800018044000400200001000a00000000000000fef331000000000000000000000000aaf8000000200002000a00000000000000ff020000000000000000000000000001000000000d0001007564703a73"], 0x6c}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400400142603600e122f00160006000600a8000600200002400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9703920723f9a941", 0xd8}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x4800)
connect$inet6(r2, &(0x7f0000000100)={0xa, 0x4e24, 0x1ff, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}, 0x7fff}, 0x1c)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r3, 0x0, 0x60, &(0x7f0000000080)={'filter\x00', 0x1058, [{}, {0x0, 0x100000000000000}]}, 0x68)

3.395754626s ago: executing program 0 (id=432):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRESHEX], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000080)=@id, &(0x7f0000000140)=0x10, 0x800)
setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x34, r2, 0x1, 0x0, 0x0, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0xc}]}, 0x34}}, 0x0)

3.159728808s ago: executing program 4 (id=434):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'lo\x00', &(0x7f0000000080)=@ethtool_ringparam={0x11, 0x9, 0x8, 0x8, 0x9, 0x5, 0x8, 0x2, 0x1ff}})
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8604}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1b0000001a0069ae00000000000000001c"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000200000000000000000000030000000003000000030000000000000000000000000000010500000010000000000000000000000a02"], 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
ioctl$SIOCX25CALLACCPTAPPRV(r1, 0x89e8)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x0, @private=0x4}})
ioctl$sock_inet_SIOCSIFADDR(r3, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0xfffe, @empty}})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000180)={@empty, @empty, @val, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @remote}}}}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000001c0)={'syzkaller0\x00', @multicast})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000ac0)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000a00, 0x20000a30, 0x20000a60], 0x0, 0x0, &(0x7f0000000a00)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0x1}]}, 0x108)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @tracing=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r7}, 0x10)
sendmsg$AUDIT_LIST_RULES(r1, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x3f5, 0x20, 0x70bd29, 0x25dfdbfd, "", [""]}, 0x10}}, 0xf1e52e463b69eeaa)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="10530400002019fd34876c3a38b1030001000000"], 0x2c}}, 0x8080)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c0006000300000000000000"], 0x6c}}, 0x0)

3.109934939s ago: executing program 3 (id=435):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000001c0), 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f00000004c0), &(0x7f0000000240)=0x8)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCRSCLRRT(r1, 0x891e)

3.085704795s ago: executing program 1 (id=436):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x85, &(0x7f00000000c0)={0x0, @in={{0x2, 0x4e20, @broadcast}}, 0x4, 0x8, 0x80000001, 0xfffffffe}, &(0x7f00000003c0)=0x9c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0xd, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x50}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r2}, 0xc)

3.082740988s ago: executing program 2 (id=437):
socket$vsock_stream(0x28, 0x1, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'macsec0\x00', &(0x7f00000000c0)=@ethtool_eee={0x45, 0x8, 0x9, 0x4, 0x4, 0x1ff, 0x0, 0x5, [0x5, 0x3]}})
r1 = socket$igmp(0x2, 0x3, 0x2)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000080)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000180)=0x14)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f0000000280)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x78, 0x78, 0x3, [@type_tag={0x10, 0x0, 0x0, 0x12, 0x5}, @fwd={0xf}, @union={0x7, 0x7, 0x0, 0x5, 0x0, 0x6dc3, [{0xb, 0x0, 0x40000}, {0x9, 0x5, 0xd}, {0xb, 0x5, 0x9}, {0xa, 0x3, 0x5}, {0x5, 0x1, 0x8}, {0x7, 0x2, 0x4}, {0x10, 0x2, 0x9}]}]}, {0x0, [0x0]}}, &(0x7f00000003c0), 0x93, 0x0, 0x0, 0x4, 0x0, @void, @value}, 0x28)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001d40)=@bloom_filter={0x1e, 0x3, 0x2, 0x4, 0x40221, r0, 0x8, '\x00', r2, r3, 0x2, 0x3, 0x3, 0x1, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, r4, 0x0, 0x2}, 0x38)
syz_80211_inject_frame(&(0x7f0000000240)=@device_b, &(0x7f0000000000)=ANY=[], 0xb5)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$unix(0x1, 0x2, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x50, r7, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x8602, 0x0)
close(r9)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000680)={r10}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, @fallback=0x32, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r11}, 0x10)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000002100)={0x1, 'ip6gre0\x00', 0x1}, 0x18)

3.034066017s ago: executing program 0 (id=438):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000400)={@fallback, 0xffffffffffffffff, 0x1, 0x0, 0x0, @void, @value}, 0x20)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={0x1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r3, <r4=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
recvmsg$unix(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000280)=""/152, 0x98}], 0x1}, 0x40010122)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r4}, &(0x7f0000000000), &(0x7f00000000c0)=r0}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, 0x0}, 0x0)

2.862526403s ago: executing program 1 (id=439):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), r0)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000280)={'wg1\x00', <r2=>0x0})
sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f00000002c0)={&(0x7f00000005c0)={0x64, r1, 0x20, 0x70bd28, 0x25dfdbfb, {}, [@ETHTOOL_A_RINGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r2}]}, @ETHTOOL_A_RINGS_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}]}, @ETHTOOL_A_RINGS_TX={0x8, 0x9, 0x1}, @ETHTOOL_A_RINGS_RX={0x8, 0x6, 0x40}]}, 0x64}, 0x1, 0x0, 0x0, 0x4}, 0x20000011)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0)
sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000080)={&(0x7f00000004c0)={0xc4, r3, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}]}, 0xc4}, 0x1, 0x0, 0x0, 0x4000040}, 0x800)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x8101}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000380)=""/188, 0xbc}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f0000000940)=""/4096, 0x1000}, {&(0x7f0000000100)=""/74, 0x4a}, {&(0x7f00000006c0)=""/243, 0xf3}], 0x5}, 0x80000000}], 0x4, 0x20, 0x0)

2.843381003s ago: executing program 0 (id=440):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001d008104e00f80ecdb4cb9f207c804a00d000000880802fb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000a0850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r4}, 0xc)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x38, &(0x7f0000000040)=0xfffffffe, 0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002940)={0x1c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, 0x0, 0x8000)

2.102202054s ago: executing program 3 (id=441):
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x20, 0x0, 0x14eac3b1f713f235, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x38b69da, 0x6a}}}}}, 0x20}, 0x1, 0x0, 0x0, 0x80}, 0x880)
setsockopt$inet6_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x29, 0x2a, &(0x7f0000000040)={0x7, {{0xa, 0x4e24, 0x2, @mcast1, 0x1}}}, 0x88)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x7d)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f0000000180)=0x10040000, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000ed000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000015c0), r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x20, 0x8, 0x0, 0x0, 0xc8, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, @LWTUNNEL_IP_OPT_ERSPAN_VER={0x5, 0x1, 0x1}}}}]}, 0x38}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000040000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000001c0)='contention_end\x00', r5}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r2}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x37, 0x301, 0x70bd2d, 0x25dfdbfc, {0xd}}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r6)
r7 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r7, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r8 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r7, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r9=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r7, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r7, &(0x7f0000000180)={0x2c, 0x2, r9}, 0x10)
setsockopt$XDP_UMEM_REG(r7, 0x11b, 0x4, &(0x7f0000000740)={0x0, 0x206000, 0x0, 0x3}, 0x20)
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f00000001c0)=0x5, 0x4)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000080)=0x14)

1.172050453s ago: executing program 0 (id=442):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000540)=ANY=[@ANYBLOB="0500000000000011af000010dbf5b7aa0000008500000002000000850000000700000095000000000000009500a505000000000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000400)='ata_eh_link_autopsy\x00', r4}, 0x18)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
r5 = socket(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f0000000100)={'ip6gre0\x00', &(0x7f0000000180)={'syztnl0\x00', 0x0, 0x4, 0x6, 0x0, 0x4, 0x1, @remote, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x0, 0x80, 0xcb4, 0x800000}})
r6 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="1fe1bc7f", 0x4)
sendmmsg$unix(r6, &(0x7f0000003dc0)=[{{&(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}], 0x299, 0x0)
r7 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r7, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r7, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000200), 0x4)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="980000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c0002800500010000000000080007"], 0x98}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002800)={0x94, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x94}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000300)={0x14, 0x2, 0x1, 0x101, 0x0, 0x0, {0x0, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8094}, 0x4)

1.170269882s ago: executing program 1 (id=443):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0x1, 0x8, 0x2, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c3a00000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000080000850000007200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000180)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=ANY=[@ANYBLOB="1808000080ff0000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bca90000000000003509020000d44affe5000d0000000000b702000000000000739af0ff00000000c509040004100000c3aaf0ff00000000bf8600000000000007080000f8ffffffbfa400000000000007060000f0ffffffb70200000800000018220000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7050000080000004608f0ff76000000bf9800000000000056080000000000008500000007000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000000680)={'batadv0\x00', <r5=>0x0})
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000740)={<r6=>r3, 0x0, 0x2, 0x34})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000009c0)=@bpf_lsm={0x1d, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa}}, &(0x7f0000000580)='GPL\x00', 0x5, 0xaf, &(0x7f00000005c0)=""/175, 0x40f00, 0x9, '\x00', r5, 0x1b, r6, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000800)={0x1, 0x6, 0x200, 0x9}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000900)=[{0x0, 0x4, 0x2, 0x2}, {0x0, 0x4, 0x7, 0x3}, {0x0, 0x4, 0x3, 0x9}, {0x3, 0x5, 0xe, 0x5}], 0x10, 0x5, @void, @value}, 0x94)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r7}, 0x10)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NFC_CMD_GET_TARGET(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r8)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), r8)
sendmsg$NL802154_CMD_NEW_INTERFACE(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000700)={0x1c, r9, 0x1, 0x0, 0x0, {0xf}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}}, 0x0)
connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e22, @broadcast}, 0x10)
socket$isdn_base(0x22, 0x3, 0x0)

1.114972797s ago: executing program 4 (id=444):
socket$netlink(0x10, 0x3, 0x400000000000004)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
socket$inet6(0xa, 0x80000, 0x4)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r2, &(0x7f0000000880)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x4001)
r3 = syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, 0x0, 0x0)
sendmsg$IEEE802154_LLSEC_LIST_KEY(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r3, 0x300, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4004080}, 0x4800)

1.071532184s ago: executing program 3 (id=445):
getpid()
sendmsg$DEVLINK_CMD_RELOAD(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="7000000010000100"/20, @ANYRES32=r1, @ANYBLOB="000000002f95abbe480012800e0001006970366772657461700000003400028008000100", @ANYRES32=r1, @ANYBLOB="14000600ff80000000000000000000000000000014000700ff05"], 0x70}}, 0x0)
socket$netlink(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000002c0)={'wlan1\x00'})
r2 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r2, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x6e24, @empty}, 0x10)
r4 = socket$inet(0x2, 0x2, 0x1)
bind$inet(r4, &(0x7f0000000000)={0x2, 0x4e24, @local}, 0x10)
close(r4)
socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000500)='syzkaller\x00', 0xfffffffa, 0x0, 0x0, 0x41100, 0x0, '\x00', r1, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xffffffffffffffda)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r6}, 0xf)
r7 = socket(0x1, 0x803, 0x0)
r8 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r7)
accept4$netrom(r8, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

899.99133ms ago: executing program 4 (id=446):
r0 = socket(0x2c, 0x3, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x34, r3, 0x1, 0x0, 0x0, {{}, {}, {0x18, 0x17, {0x21, 0x0, @l2={'eth', 0x3a, 'ip6gre0\x00'}}}}}, 0x34}}, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64\x00'}, 0x58)
r4 = accept4(r1, 0x0, 0x0, 0x0)
sendmmsg$unix(r4, &(0x7f0000009d00)=[{{0x0, 0x0, &(0x7f0000005300)=[{&(0x7f0000004300)="dc53410c028336dd2edc80341a8ed1eddb7a666f426f671c2334281380dd7b98", 0x20}, {&(0x7f0000001e40)="4cdd3b8b18257694ae8b637b5c4147d1a6dd59775e694104a33f3f06f1136766", 0x20}], 0x2}}, {{0x0, 0x0, &(0x7f0000006d40)=[{&(0x7f0000006c40)="324d86ee95cf0d0d5585e3279efe4fd0b6dafb93eee8b0afc609e87ce7a60ead47b8048d24b39011f56d7a3e1e368152a5125e29020a8fa7d4910a423ba628d2adf685f7851c5ac3c9d7997b095928fdec5153e90eaf25", 0x57}, {&(0x7f0000006cc0)="9adaf615e5f5caf2dbb930eb4bcf83a7d5ab7d2880e4d75510dc058f0589b593507d47a2ca9b9e99e17e94105b4e27d6d5d400a38307094ba788d8e215f310fdddb0ca1e2c967def94c13173db119bbdeac74519", 0x54}], 0x2}}, {{0x0, 0x0, &(0x7f0000007500)=[{&(0x7f0000007300)="f572878c7aefc200e078de78443fc4311bb2a13cf61d1e996f971ab8d5877415908a51a4b6bdbdb894e6249076291816fd2802903228a988ffcb56631062bc03b6746ec5c74348c7676ee2286ffc8da5b067d95680006add570c0ff956bfc76ad826ddbfac9d21f02a27f380600eb887e680b3b16351cfa1d0bac3d2ae824799bd33026c015f12fbf26d015ae8f7a3d4e390c3228ffa49dbf546035f34a324ee5f6508f20e799d6fac80b3e283eb1e5e6bde74c36a16a94ecf30e49205a02c96502764a2d1f073f9a8fc52d14344c3660adf23b8b5ced27702066b465619", 0xde}, {&(0x7f0000007400)="2007958f55c3d9b287d30db0fb5ae3315c802a94fd6b45d491c96f01932d498bf38d4f4a939c2dda011380827e0027e5b1550379df10d44eae40bc853e152b6d0b639e15585c6a1a02f872741c1f19c86ca55a3f912a7dadf2922bfbf003af2c5a417734db649c805cd509", 0x6b}], 0x2}}], 0x3, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="110000000400000004000000ff00000000000000", @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000045e509f50172bfcaffa0b587deb162128ad24fbe32674a079e118b958fb4481bdce0912ef7ad2b4747edaa1e28c48e2bbead0cf0132d372e4a4245dbbe11cb5e8d1138a778c86ecf6190dd8c48b1f049540ec073", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r5, &(0x7f0000000140), &(0x7f0000000080)=@udp=r0}, 0x20)

899.194406ms ago: executing program 3 (id=447):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000080)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="41002cbd7000fbdbdf2505080000080002000000000008000300cd"], 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) (fail_nth: 10)

505.010801ms ago: executing program 3 (id=448):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0xe, &(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRESHEX], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = accept4$tipc(0xffffffffffffffff, &(0x7f0000000080)=@id, &(0x7f0000000140)=0x10, 0x800)
setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)={0x34, r2, 0x1, 0x0, 0x0, {0x7}, [@L2TP_ATTR_IFNAME={0x14}, @L2TP_ATTR_RECV_TIMEOUT={0xc, 0x16, 0xc}]}, 0x34}}, 0x0)

504.016576ms ago: executing program 2 (id=449):
r0 = socket$netlink(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000004c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x58, 0x2, 0x6, 0x3, 0x0, 0x0, {0x3, 0x0, 0x8}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_SIZE={0x8, 0x17, 0x1, 0x0, 0x80}, @IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e22}]}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x1}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x8a}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x4}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x240000c1}, 0x40040050)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000280)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
epoll_create1(0x0)
sendmsg$SMC_PNETID_FLUSH(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x8004}, 0x2000c080)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000080)=[{r1}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x2, 0xfffffffffffffffc, 0x0, 0xf}, 0x0, &(0x7f00000002c0)={0x10000401, 0x0, 0x0, 0x9, 0x0, 0x7fffffff, 0x7fffffff, 0xfffffffffffffffc}, 0x0, 0x0)
connect$pppl2tp(r3, &(0x7f0000000180)=@pppol2tpv3={0x18, 0x1, {0x0, r0, {0x2, 0x4e22, @local}, 0x2, 0x3, 0x1, 0x3}}, 0x2e)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x18}, 0x1, 0x0, 0x0, 0x90}, 0x4000000)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r7, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=@newlink={0x40, 0x10, 0xffffff1f, 0x4d0f9, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x5344a, 0x1104c}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_IPTUN_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r7}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000001}, 0x4000814)

494.604527ms ago: executing program 3 (id=450):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=ANY=[@ANYBLOB="640000000206030000000000000000000300000005000100070000000900020073797a310000000014000780080013000000000008001240000000800500050002000000050004000000000016000300686173683a6e65742c706f72742c6e6574000000"], 0x64}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)
sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=ANY=[@ANYBLOB="020200090e000000000000000000000005000600000000000a00841d340846f692900000000000000000000000000000000000000100000002000100000004d20000020200000020050005002f8000000a00000000000000ff0100000000000000000000000000010000000000000000"], 0x70}}, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_int(r2, &(0x7f0000000080)='cgroup.max.depth\x00', 0x2, 0x0)
write$cgroup_int(r3, &(0x7f00000000c0), 0x12)
pipe(&(0x7f0000000100)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$cgroup_devices(r5, &(0x7f0000000080)=ANY=[@ANYBLOB='b *'], 0x9)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000240)='./cgroup/syz0\x00', 0x200002, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a1d010000000000000000020000000900010073797a3000000000080002400000000098000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000006b00030091abc12404d0c4c731b168d80d1f7f1dbb33f5"], 0xfc}, 0x1, 0x0, 0x0, 0x40010}, 0x4000914)
r8 = openat$cgroup_devices(r6, &(0x7f00000001c0)='devices.deny\x00', 0x2, 0x0)
splice(r4, 0x0, r8, 0x0, 0x8, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021100011800c000100636f756e746572004c0000000c0a01010000000000000000070000000900020073797a31000000000900010073797a3000000000200003801c000080080003400000000210"], 0xe0}, 0x1, 0x0, 0x0, 0x4020000}, 0x20008000)
socket$netlink(0x10, 0x3, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000680)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r10}, 0x10)
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r11 = socket(0xa, 0x40000000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r11, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"/611]}, 0x2db)
getsockopt$EBT_SO_GET_INFO(r11, 0x0, 0x80, &(0x7f00000000c0)={'broute\x00', 0x0, 0x0, 0x0, [0x80000000000008, 0x4, 0xfffffffffffffa9f, 0x2, 0x1, 0x4b3]}, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket(0x10, 0x803, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

413.770022ms ago: executing program 4 (id=451):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0xe}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001780)={{0x14}, [@NFT_MSG_DELCHAIN={0x2c, 0x5, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_HANDLE={0xc, 0x2, 0x1, 0x0, 0x1}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x3, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0xa0}, 0x1, 0x0, 0x0, 0x8001}, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000140)=ANY=[@ANYRES64=r0, @ANYRES32=r0, @ANYRESDEC=r0, @ANYRESOCT=r0, @ANYRES16=r0, @ANYRESDEC=r0], 0x0)

271.983713ms ago: executing program 4 (id=452):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001d008104e00f80ecdb4cb9f207c804a00d000000880802fb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000040)={0x0, 0x0}, 0x10)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x20000080)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b7040000000000a0850000004300000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r4}, 0xc)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x38, &(0x7f0000000040)=0xfffffffe, 0x4)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000002940)={0x1c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}}, 0x1c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x6a845ecb4f20be71}, 0x24008080)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, 0x0)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, 0x0, 0x0)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(0xffffffffffffffff, 0x0, 0x8000)

145.336192ms ago: executing program 0 (id=453):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000240)={'wlan1\x00'})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000300)='rcu_utilization\x00', r2}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000740)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x9}}}, 0x24}}, 0x0)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000680)=@gettaction={0x5c, 0x32, 0x800, 0x70bd28, 0x25dfdbff, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x20, 0x1, [{0xc, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}, {0x10, 0x20, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x0, 0x1}}, @action_gd=@TCA_ACT_TAB={0x4}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x7}, @action_gd=@TCA_ACT_TAB={0x4}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000)
r6 = socket$netlink(0x10, 0x3, 0x6)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r7 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r7, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
sendmsg$key(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan1\x00'})
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r10=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x68, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x30, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfd}}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r10}]}, 0x68}}, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x3c8, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x3f0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1e8, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x428)

129.318987ms ago: executing program 1 (id=454):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000000c0)={'lo\x00', &(0x7f0000000080)=@ethtool_ringparam={0x11, 0x9, 0x8, 0x8, 0x9, 0x5, 0x8, 0x2, 0x1ff}})
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x8604}, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1b0000001a0069ae00000000000000001c"], 0x1c}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb0100180000000000000034000000340000000200000000000000000000030000000003000000030000000000000000000000000000010500000010000000000000000000000a02"], 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
ioctl$SIOCX25CALLACCPTAPPRV(r1, 0x89e8)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'batadv_slave_1\x00', {0x2, 0x0, @private=0x4}})
ioctl$sock_inet_SIOCSIFADDR(r3, 0x891c, &(0x7f0000000540)={'batadv_slave_1\x00', {0x2, 0xfffe, @empty}})
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
close(r4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000180)={@empty, @empty, @val, {@arp={0x806, @generic={0x0, 0x0, 0x6, 0x0, 0x0, @link_local, "", @remote}}}}, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000001c0)={'syzkaller0\x00', @multicast})
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000ac0)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000a00, 0x20000a30, 0x20000a60], 0x0, 0x0, &(0x7f0000000a00)=[{0x0, '\x00', 0x0, 0xfffffffffffffffc}, {0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0x1}]}, 0x108)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @tracing=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x7, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$ITER_CREATE(0x21, &(0x7f0000000100), 0x8)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r7}, 0x10)
sendmsg$AUDIT_LIST_RULES(r1, &(0x7f0000000380)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x3f5, 0x20, 0x70bd29, 0x25dfdbfd, "", [""]}, 0x10}}, 0xf1e52e463b69eeaa)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000005c0)=ANY=[@ANYBLOB="2c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="10530400002019fd34876c3a38b1030001000000"], 0x2c}}, 0x8080)
r9 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c0006000300000000000000"], 0x6c}}, 0x0)

0s ago: executing program 4 (id=455):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x68, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x40, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x30, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_DATA={0x1c, 0x5, 0x0, 0x1, [{0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xfd}}, {0xa, 0x4, @local}]}, @IFLA_MACVLAN_MACADDR_MODE={0x8, 0x3, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x68}}, 0x0) (fail_nth: 11)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.67' (ED25519) to the list of known hosts.
[   66.704804][ T5819] cgroup: Unknown subsys name 'net'
[   66.816000][ T5819] cgroup: Unknown subsys name 'cpuset'
[   66.824893][ T5819] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   68.201710][ T5819] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   70.420223][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   70.443534][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   70.455366][ T5837] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   70.465182][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   70.474281][ T5837] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   70.490685][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   70.540128][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   70.548108][ T5839] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   70.549174][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   70.557206][ T5841] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   70.564652][ T5844] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   70.574242][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   70.580266][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   70.585222][ T5841] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   70.593526][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   70.599892][ T5839] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   70.607734][ T5844] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   70.613200][ T5841] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   70.620318][ T5844] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   70.627333][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   70.635663][ T5844] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   70.645719][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   70.648960][ T5147] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   70.665303][ T5844] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   70.672656][ T5841] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   70.679940][ T5845] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   70.705887][ T5844] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   70.710449][ T5841] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   70.721593][ T5841] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   70.729080][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.138403][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   71.228393][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   71.289616][ T5842] chnl_net:caif_netlink_parms(): no params data found
[   71.313837][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   71.411989][ T5838] chnl_net:caif_netlink_parms(): no params data found
[   71.433747][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.441644][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.449429][ T5846] bridge_slave_0: entered allmulticast mode
[   71.459295][ T5846] bridge_slave_0: entered promiscuous mode
[   71.504907][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.512147][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.519346][ T5846] bridge_slave_1: entered allmulticast mode
[   71.527418][ T5846] bridge_slave_1: entered promiscuous mode
[   71.543782][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.550962][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.559150][ T5831] bridge_slave_0: entered allmulticast mode
[   71.566650][ T5831] bridge_slave_0: entered promiscuous mode
[   71.613154][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.620377][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.627989][ T5831] bridge_slave_1: entered allmulticast mode
[   71.635653][ T5831] bridge_slave_1: entered promiscuous mode
[   71.703253][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.710588][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.718239][ T5842] bridge_slave_0: entered allmulticast mode
[   71.725264][ T5842] bridge_slave_0: entered promiscuous mode
[   71.751606][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.768850][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.777444][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.786102][ T5842] bridge_slave_1: entered allmulticast mode
[   71.792974][ T5842] bridge_slave_1: entered promiscuous mode
[   71.805423][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   71.812865][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   71.820098][ T5835] bridge_slave_0: entered allmulticast mode
[   71.827095][ T5835] bridge_slave_0: entered promiscuous mode
[   71.836485][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.859997][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   71.873496][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   71.899102][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   71.907320][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   71.915235][ T5835] bridge_slave_1: entered allmulticast mode
[   71.922774][ T5835] bridge_slave_1: entered promiscuous mode
[   71.987245][ T5846] team0: Port device team_slave_0 added
[   71.997193][ T5846] team0: Port device team_slave_1 added
[   72.013435][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.026062][ T5838] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.033391][ T5838] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.040703][ T5838] bridge_slave_0: entered allmulticast mode
[   72.048203][ T5838] bridge_slave_0: entered promiscuous mode
[   72.056933][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.069244][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.092647][ T5831] team0: Port device team_slave_0 added
[   72.100545][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.110130][ T5838] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.117597][ T5838] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.125386][ T5838] bridge_slave_1: entered allmulticast mode
[   72.132749][ T5838] bridge_slave_1: entered promiscuous mode
[   72.179315][ T5831] team0: Port device team_slave_1 added
[   72.222187][ T5835] team0: Port device team_slave_0 added
[   72.228821][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.237934][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.267536][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.293148][ T5842] team0: Port device team_slave_0 added
[   72.301400][ T5838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.314125][ T5835] team0: Port device team_slave_1 added
[   72.320536][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.327635][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.353739][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.374134][ T5842] team0: Port device team_slave_1 added
[   72.381954][ T5838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.414365][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.422065][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.448227][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.496021][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.503422][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.531220][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.543823][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.550815][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.578049][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.590028][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.597483][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.623538][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.648733][ T5838] team0: Port device team_slave_0 added
[   72.655477][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.662643][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.689054][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.706370][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.713024][ T5844] Bluetooth: hci0: command tx timeout
[   72.713596][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.719063][ T5834] Bluetooth: hci2: command tx timeout
[   72.746216][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.777968][ T5838] team0: Port device team_slave_1 added
[   72.792629][ T5844] Bluetooth: hci4: command tx timeout
[   72.792637][ T5841] Bluetooth: hci3: command tx timeout
[   72.793233][ T5834] Bluetooth: hci1: command tx timeout
[   72.825743][ T5846] hsr_slave_0: entered promiscuous mode
[   72.832247][ T5846] hsr_slave_1: entered promiscuous mode
[   72.851056][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.858216][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.885061][ T5838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.940077][ T5838] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.949683][ T5838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.976707][ T5838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   72.998663][ T5835] hsr_slave_0: entered promiscuous mode
[   73.005473][ T5835] hsr_slave_1: entered promiscuous mode
[   73.011936][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.019861][ T5835] Cannot create hsr debugfs directory
[   73.045311][ T5842] hsr_slave_0: entered promiscuous mode
[   73.052136][ T5842] hsr_slave_1: entered promiscuous mode
[   73.058388][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.066714][ T5842] Cannot create hsr debugfs directory
[   73.083360][ T5831] hsr_slave_0: entered promiscuous mode
[   73.089704][ T5831] hsr_slave_1: entered promiscuous mode
[   73.096186][ T5831] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.104030][ T5831] Cannot create hsr debugfs directory
[   73.255322][ T5838] hsr_slave_0: entered promiscuous mode
[   73.262381][ T5838] hsr_slave_1: entered promiscuous mode
[   73.268449][ T5838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.277215][ T5838] Cannot create hsr debugfs directory
[   73.578323][ T5842] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   73.596023][ T5842] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   73.612922][ T5842] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   73.634015][ T5842] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   73.687613][ T5835] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   73.697099][ T5835] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   73.709083][ T5835] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   73.737706][ T5835] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   73.756456][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[   73.763798][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[   73.823826][ T5831] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   73.860431][ T5831] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   73.877925][ T5831] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   73.890508][ T5846] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   73.902909][ T5846] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   73.920343][ T5846] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   73.935286][ T5831] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   73.957686][ T5846] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   74.040966][ T5838] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   74.074976][ T5838] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   74.088917][ T5838] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   74.100844][ T5838] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   74.150443][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.223819][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[   74.267294][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.284345][ T1014] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.291905][ T1014] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.325236][ T1014] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.332518][ T1014] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.375875][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   74.399266][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.426556][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.438742][ T1161] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.445958][ T1161] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.475364][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.482572][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.547216][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   74.589417][ T5838] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.599006][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   74.618397][ T1161] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.625626][ T1161] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.645358][ T1161] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.652695][ T1161] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.675444][ T5838] 8021q: adding VLAN 0 to HW filter on device team0
[   74.700429][ T1161] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.708483][ T1161] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.746866][ T1161] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.754061][ T1161] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.764470][ T1161] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.771673][ T1161] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.798367][ T1161] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.802622][ T5834] Bluetooth: hci2: command tx timeout
[   74.805629][ T1161] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.810849][ T5834] Bluetooth: hci0: command tx timeout
[   74.872001][ T5834] Bluetooth: hci3: command tx timeout
[   74.882675][ T5834] Bluetooth: hci1: command tx timeout
[   74.886230][ T5841] Bluetooth: hci4: command tx timeout
[   74.915413][ T5831] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   74.926135][ T5831] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   74.977066][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.065318][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.079973][ T5838] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   75.125303][ T5842] veth0_vlan: entered promiscuous mode
[   75.170022][ T5842] veth1_vlan: entered promiscuous mode
[   75.324932][ T5842] veth0_macvtap: entered promiscuous mode
[   75.377471][ T5842] veth1_macvtap: entered promiscuous mode
[   75.448932][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.468242][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.516306][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.539872][ T5838] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.554235][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.582045][ T5842] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.591045][ T5842] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.601741][ T5842] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.610518][ T5842] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.673532][ T5846] veth0_vlan: entered promiscuous mode
[   75.735175][ T5846] veth1_vlan: entered promiscuous mode
[   75.758149][ T5838] veth0_vlan: entered promiscuous mode
[   75.777899][ T5831] veth0_vlan: entered promiscuous mode
[   75.789602][ T5838] veth1_vlan: entered promiscuous mode
[   75.820165][ T5831] veth1_vlan: entered promiscuous mode
[   75.846514][ T1161] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.859990][ T5835] veth0_vlan: entered promiscuous mode
[   75.870304][ T1161] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.910710][ T5835] veth1_vlan: entered promiscuous mode
[   75.970624][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.980414][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.993708][ T5835] veth0_macvtap: entered promiscuous mode
[   76.020585][ T5835] veth1_macvtap: entered promiscuous mode
[   76.029611][ T5846] veth0_macvtap: entered promiscuous mode
[   76.047719][ T5831] veth0_macvtap: entered promiscuous mode
[   76.071191][ T5846] veth1_macvtap: entered promiscuous mode
[   76.078123][ T5842] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.103890][ T5838] veth0_macvtap: entered promiscuous mode
[   76.117061][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.128928][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.141072][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.150108][ T5831] veth1_macvtap: entered promiscuous mode
[   76.177650][ T5838] veth1_macvtap: entered promiscuous mode
[   76.216594][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.244778][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.255558][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.267030][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.280255][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.292769][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.303995][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.315572][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.325405][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.338225][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.348441][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.359430][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.370081][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.380697][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.393184][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.430554][ T5835] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.440070][ T5835] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.449674][ T5835] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.459364][ T5835] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.472869][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.483853][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.494258][ T5838] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.505413][ T5838] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.518698][ T5838] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.531968][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.545991][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.556111][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.566783][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.580676][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.585567][ T5916] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'.
[   76.596651][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.612194][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.639658][ T5918] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1'.
[   76.648537][ T5917] syzkaller0: entered promiscuous mode
[   76.656758][ T5917] syzkaller0: entered allmulticast mode
[   76.667796][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.679709][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.710333][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.727749][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.737867][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.748770][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.758763][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.769251][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.782570][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.800621][ T5846] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.811111][ T5846] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.820211][ T5846] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.840150][ T5846] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.857259][ T5838] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.867190][ T5838] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.871679][ T5841] Bluetooth: hci2: command tx timeout
[   76.876691][ T5834] Bluetooth: hci0: command tx timeout
[   76.887231][ T5838] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.898561][ T5838] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.954442][ T5834] Bluetooth: hci4: command tx timeout
[   76.954541][ T5841] Bluetooth: hci1: command tx timeout
[   76.959903][ T5834] Bluetooth: hci3: command tx timeout
[   78.146629][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.158842][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.171315][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.184888][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.200476][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.212169][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.226012][ T5831] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   78.237884][ T5831] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   78.249581][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.308604][ T5831] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.318337][ T5831] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.327858][ T5831] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.337014][ T5831] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.448149][ T5921] syzkaller0: entered promiscuous mode
[   78.453955][ T5921] syzkaller0: entered allmulticast mode
[   78.507348][ T5921] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6'.
[   78.542098][ T3002] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.550512][ T3002] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.588940][ T2986] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.597594][ T2986] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.639574][ T1161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.649102][ T1161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.662694][ T5921] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6'.
[   78.679072][ T2986] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.696317][ T2986] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.952757][ T5834] Bluetooth: hci2: command tx timeout
[   78.965253][ T5834] Bluetooth: hci0: command tx timeout
[   79.031627][ T5834] Bluetooth: hci1: command tx timeout
[   79.033054][ T5844] Bluetooth: hci4: command tx timeout
[   79.037094][ T5841] Bluetooth: hci3: command tx timeout
[   80.215086][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.258591][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.400038][  T774] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.426282][  T774] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.446380][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.477706][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.589526][ T5930] syzkaller0: entered promiscuous mode
[   80.609422][ T5930] syzkaller0: entered allmulticast mode
[   80.619873][ T5938] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   80.632450][ T1161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.640312][ T1161] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.669110][ T5930] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5'.
[   80.679076][ T5934] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3'.
[   80.774761][ T5941] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3'.
[   80.824588][ T5937] syzkaller0: entered promiscuous mode
[   80.830159][ T5937] syzkaller0: entered allmulticast mode
[   83.712210][ T5966] netlink: 12 bytes leftover after parsing attributes in process `syz.0.11'.
[   83.773470][ T5968] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11'.
[   85.132420][ T5978] netlink: 24 bytes leftover after parsing attributes in process `syz.1.13'.
[   85.218290][ T5981] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   85.398843][ T5986] Zero length message leads to an empty skb
[   85.443481][ T5986] netlink: 4 bytes leftover after parsing attributes in process `syz.2.15'.
[   85.501042][ T5986] netlink: 8 bytes leftover after parsing attributes in process `syz.2.15'.
[   85.559354][ T5993] netlink: 8 bytes leftover after parsing attributes in process `syz.0.18'.
[   85.642527][ T5995] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17'.
[   85.666800][ T5995] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   85.677009][ T5995] batadv_slave_1: entered promiscuous mode
[   86.818970][ T6022] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25'.
[   86.843419][ T6023] x_tables: duplicate underflow at hook 4
[   86.977360][ T6026] FAULT_INJECTION: forcing a failure.
[   86.977360][ T6026] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   87.036727][ T6026] CPU: 1 UID: 0 PID: 6026 Comm: syz.3.28 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   87.036756][ T6026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   87.036770][ T6026] Call Trace:
[   87.036786][ T6026]  <TASK>
[   87.036793][ T6026]  dump_stack_lvl+0x241/0x360
[   87.036842][ T6026]  ? __pfx_dump_stack_lvl+0x10/0x10
[   87.036864][ T6026]  ? __pfx__printk+0x10/0x10
[   87.036887][ T6026]  ? __pfx_lock_release+0x10/0x10
[   87.036918][ T6026]  should_fail_ex+0x3b0/0x4e0
[   87.036944][ T6026]  _copy_to_iter+0x1f8/0x1c50
[   87.036981][ T6026]  ? __pfx__copy_to_iter+0x10/0x10
[   87.037010][ T6026]  ? __folio_put+0x2b3/0x360
[   87.037028][ T6026]  ? page_copy_sane+0x46/0x260
[   87.037049][ T6026]  copy_page_to_iter+0xb1/0x160
[   87.037072][ T6026]  pipe_to_user+0xa9/0x140
[   87.037099][ T6026]  __splice_from_pipe+0x346/0x8b0
[   87.037134][ T6026]  ? __pfx_pipe_to_user+0x10/0x10
[   87.037159][ T6026]  __se_sys_vmsplice+0x408/0x1490
[   87.037202][ T6026]  ? __pfx___se_sys_vmsplice+0x10/0x10
[   87.037231][ T6026]  ? sb_end_write+0xe9/0x1c0
[   87.037255][ T6026]  ? vfs_write+0x730/0xd30
[   87.037274][ T6026]  ? __mutex_unlock_slowpath+0x227/0x800
[   87.037305][ T6026]  ? do_sys_openat2+0x17a/0x1d0
[   87.037340][ T6026]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   87.037360][ T6026]  ? __fget_files+0x2a/0x410
[   87.037398][ T6026]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   87.037435][ T6026]  ? do_syscall_64+0x100/0x230
[   87.037454][ T6026]  ? do_syscall_64+0xb6/0x230
[   87.037472][ T6026]  do_syscall_64+0xf3/0x230
[   87.037487][ T6026]  ? clear_bhb_loop+0x35/0x90
[   87.037509][ T6026]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.037529][ T6026] RIP: 0033:0x7f444898cd29
[   87.037549][ T6026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   87.037561][ T6026] RSP: 002b:00007f44497d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[   87.037581][ T6026] RAX: ffffffffffffffda RBX: 00007f4448ba6080 RCX: 00007f444898cd29
[   87.037598][ T6026] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   87.037607][ T6026] RBP: 00007f44497d9090 R08: 0000000000000000 R09: 0000000000000000
[   87.037617][ T6026] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   87.037626][ T6026] R13: 0000000000000001 R14: 00007f4448ba6080 R15: 00007fff7c7b7a68
[   87.037653][ T6026]  </TASK>
[   87.535246][ T6037] netlink: 830 bytes leftover after parsing attributes in process `syz.1.33'.
[   87.692835][ T6042] netlink: 8 bytes leftover after parsing attributes in process `syz.3.34'.
[   87.746329][ T6046] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   88.046933][ T6050] vlan2: entered allmulticast mode
[   88.052514][ T6050] veth0: entered allmulticast mode
[   88.064409][ T6050] veth0: left allmulticast mode
[   88.232787][ T6056] syzkaller1: tun_chr_ioctl cmd 2147767521
[   88.342501][ T6061] FAULT_INJECTION: forcing a failure.
[   88.342501][ T6061] name failslab, interval 1, probability 0, space 0, times 1
[   88.443346][ T6061] CPU: 1 UID: 0 PID: 6061 Comm: syz.2.39 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   88.443379][ T6061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   88.443389][ T6061] Call Trace:
[   88.443396][ T6061]  <TASK>
[   88.443404][ T6061]  dump_stack_lvl+0x241/0x360
[   88.443439][ T6061]  ? __pfx_dump_stack_lvl+0x10/0x10
[   88.443463][ T6061]  ? __pfx__printk+0x10/0x10
[   88.443484][ T6061]  ? __kmalloc_node_noprof+0xb9/0x4d0
[   88.443510][ T6061]  ? __pfx___might_resched+0x10/0x10
[   88.443527][ T6061]  ? vsnprintf+0x1152/0x1220
[   88.443553][ T6061]  should_fail_ex+0x3b0/0x4e0
[   88.443575][ T6061]  should_failslab+0xac/0x100
[   88.443599][ T6061]  __kmalloc_node_noprof+0xe1/0x4d0
[   88.443619][ T6061]  ? __kvmalloc_node_noprof+0x72/0x190
[   88.443637][ T6061]  ? __pfx_vlan_setup+0x10/0x10
[   88.443655][ T6061]  __kvmalloc_node_noprof+0x72/0x190
[   88.443673][ T6061]  alloc_netdev_mqs+0xa4/0x1110
[   88.443694][ T6061]  ? __pfx_vlan_setup+0x10/0x10
[   88.443708][ T6061]  ? __pfx_snprintf+0x10/0x10
[   88.443725][ T6061]  ? rcu_is_watching+0x15/0xb0
[   88.443753][ T6061]  rtnl_create_link+0x2f9/0xc20
[   88.443777][ T6061]  rtnl_newlink_create+0x210/0xa40
[   88.443804][ T6061]  ? __pfx___mutex_lock+0x10/0x10
[   88.443826][ T6061]  ? __pfx_rtnl_newlink_create+0x10/0x10
[   88.443853][ T6061]  ? ns_capable+0x8a/0xf0
[   88.443874][ T6061]  rtnl_newlink+0x1c7e/0x2210
[   88.443911][ T6061]  ? __pfx_rtnl_newlink+0x10/0x10
[   88.443928][ T6061]  ? __netlink_deliver_tap+0x56b/0x7f0
[   88.443947][ T6061]  ? __pfx_validate_chain+0x10/0x10
[   88.443966][ T6061]  ? __sock_sendmsg+0x221/0x270
[   88.443986][ T6061]  ? ____sys_sendmsg+0x52a/0x7e0
[   88.444001][ T6061]  ? __sys_sendmsg+0x269/0x350
[   88.444016][ T6061]  ? do_syscall_64+0xf3/0x230
[   88.444044][ T6061]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.444082][ T6061]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   88.444104][ T6061]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   88.444132][ T6061]  ? mark_lock+0x9a/0x360
[   88.444156][ T6061]  ? __lock_acquire+0x1397/0x2100
[   88.444207][ T6061]  ? __pfx_lock_release+0x10/0x10
[   88.444244][ T6061]  ? __pfx_rtnl_newlink+0x10/0x10
[   88.444265][ T6061]  rtnetlink_rcv_msg+0x791/0xcf0
[   88.444283][ T6061]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[   88.444306][ T6061]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.444331][ T6061]  ? ref_tracker_free+0x643/0x7e0
[   88.444355][ T6061]  netlink_rcv_skb+0x1e3/0x430
[   88.444373][ T6061]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.444394][ T6061]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   88.444434][ T6061]  ? netlink_deliver_tap+0x2e/0x1b0
[   88.444455][ T6061]  netlink_unicast+0x7f6/0x990
[   88.444480][ T6061]  ? __pfx_netlink_unicast+0x10/0x10
[   88.444492][ T6061]  ? __virt_addr_valid+0x45f/0x530
[   88.444513][ T6061]  ? __phys_addr_symbol+0x2f/0x70
[   88.444531][ T6061]  ? __check_object_size+0x47a/0x730
[   88.444558][ T6061]  netlink_sendmsg+0x8e4/0xcb0
[   88.444596][ T6061]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.444619][ T6061]  ? aa_sock_msg_perm+0x91/0x160
[   88.444645][ T6061]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.444660][ T6061]  __sock_sendmsg+0x221/0x270
[   88.444684][ T6061]  ____sys_sendmsg+0x52a/0x7e0
[   88.444710][ T6061]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.444725][ T6061]  ? __fget_files+0x2a/0x410
[   88.444751][ T6061]  ? __fget_files+0x2a/0x410
[   88.444781][ T6061]  __sys_sendmsg+0x269/0x350
[   88.444804][ T6061]  ? __pfx___sys_sendmsg+0x10/0x10
[   88.444836][ T6061]  ? do_sys_openat2+0x17a/0x1d0
[   88.444887][ T6061]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   88.444908][ T6061]  ? do_syscall_64+0x100/0x230
[   88.444927][ T6061]  ? do_syscall_64+0xb6/0x230
[   88.444946][ T6061]  do_syscall_64+0xf3/0x230
[   88.444961][ T6061]  ? clear_bhb_loop+0x35/0x90
[   88.444982][ T6061]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.444998][ T6061] RIP: 0033:0x7fe26e58cd29
[   88.445015][ T6061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.445027][ T6061] RSP: 002b:00007fe26f33d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.445046][ T6061] RAX: ffffffffffffffda RBX: 00007fe26e7a5fa0 RCX: 00007fe26e58cd29
[   88.445057][ T6061] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   88.445071][ T6061] RBP: 00007fe26f33d090 R08: 0000000000000000 R09: 0000000000000000
[   88.445081][ T6061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   88.445090][ T6061] R13: 0000000000000000 R14: 00007fe26e7a5fa0 R15: 00007fff7ef7a578
[   88.445118][ T6061]  </TASK>
[   88.735751][ T6067] Driver unsupported XDP return value 0 on prog  (id 20) dev N/A, expect packet loss!
[   89.185726][ T6081] ax25_connect(): syz.3.45 uses autobind, please contact jreuter@yaina.de
[   89.202803][ T6084] FAULT_INJECTION: forcing a failure.
[   89.202803][ T6084] name failslab, interval 1, probability 0, space 0, times 0
[   89.215886][ T6084] CPU: 1 UID: 0 PID: 6084 Comm: syz.0.46 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   89.215907][ T6084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   89.215915][ T6084] Call Trace:
[   89.215921][ T6084]  <TASK>
[   89.215927][ T6084]  dump_stack_lvl+0x241/0x360
[   89.215956][ T6084]  ? __pfx_dump_stack_lvl+0x10/0x10
[   89.215975][ T6084]  ? __pfx__printk+0x10/0x10
[   89.216001][ T6084]  should_fail_ex+0x3b0/0x4e0
[   89.216024][ T6084]  should_failslab+0xac/0x100
[   89.216048][ T6084]  ? skb_clone+0x20c/0x390
[   89.216065][ T6084]  kmem_cache_alloc_noprof+0x70/0x380
[   89.216103][ T6084]  skb_clone+0x20c/0x390
[   89.216121][ T6084]  ? dev_queue_xmit_nit+0x3fe/0xca0
[   89.216141][ T6084]  dev_queue_xmit_nit+0x249/0xca0
[   89.216160][ T6084]  ? dev_queue_xmit_nit+0x2b/0xca0
[   89.216177][ T6084]  ? validate_xmit_skb+0x9b8/0xff0
[   89.216202][ T6084]  dev_hard_start_xmit+0x15f/0x7d0
[   89.216222][ T6084]  ? __pfx_validate_xmit_skb+0x10/0x10
[   89.216251][ T6084]  __dev_queue_xmit+0x1b73/0x3f50
[   89.216269][ T6084]  ? kasan_save_track+0x51/0x80
[   89.216293][ T6084]  ? ____sys_sendmsg+0x52a/0x7e0
[   89.216317][ T6084]  ? __dev_queue_xmit+0x2f4/0x3f50
[   89.216337][ T6084]  ? __pfx___dev_queue_xmit+0x10/0x10
[   89.216370][ T6084]  ? __copy_skb_header+0x437/0x5b0
[   89.216390][ T6084]  ? __asan_memcpy+0x40/0x70
[   89.216408][ T6084]  ? __copy_skb_header+0x437/0x5b0
[   89.216430][ T6084]  ? __skb_clone+0x454/0x6c0
[   89.216454][ T6084]  ? skb_clone+0x240/0x390
[   89.216475][ T6084]  __netlink_deliver_tap+0x56b/0x7f0
[   89.216504][ T6084]  ? netlink_deliver_tap+0x2e/0x1b0
[   89.216519][ T6084]  netlink_deliver_tap+0x19d/0x1b0
[   89.216537][ T6084]  netlink_unicast+0x7c4/0x990
[   89.216560][ T6084]  ? __pfx_netlink_unicast+0x10/0x10
[   89.216573][ T6084]  ? __virt_addr_valid+0x45f/0x530
[   89.216593][ T6084]  ? __phys_addr_symbol+0x2f/0x70
[   89.216610][ T6084]  ? __check_object_size+0x47a/0x730
[   89.216634][ T6084]  netlink_sendmsg+0x8e4/0xcb0
[   89.216658][ T6084]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.216674][ T6084]  ? aa_sock_msg_perm+0x91/0x160
[   89.216694][ T6084]  ? __pfx_netlink_sendmsg+0x10/0x10
[   89.216708][ T6084]  __sock_sendmsg+0x221/0x270
[   89.216732][ T6084]  ____sys_sendmsg+0x52a/0x7e0
[   89.216776][ T6084]  ? __pfx_____sys_sendmsg+0x10/0x10
[   89.216792][ T6084]  ? __fget_files+0x2a/0x410
[   89.216817][ T6084]  ? __fget_files+0x2a/0x410
[   89.216847][ T6084]  __sys_sendmsg+0x269/0x350
[   89.216870][ T6084]  ? __pfx___sys_sendmsg+0x10/0x10
[   89.216901][ T6084]  ? do_sys_openat2+0x17a/0x1d0
[   89.216955][ T6084]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   89.216979][ T6084]  ? do_syscall_64+0x100/0x230
[   89.216998][ T6084]  ? do_syscall_64+0xb6/0x230
[   89.217016][ T6084]  do_syscall_64+0xf3/0x230
[   89.217031][ T6084]  ? clear_bhb_loop+0x35/0x90
[   89.217053][ T6084]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   89.217069][ T6084] RIP: 0033:0x7fa79fb8cd29
[   89.217093][ T6084] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   89.217106][ T6084] RSP: 002b:00007fa7a0a99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   89.217124][ T6084] RAX: ffffffffffffffda RBX: 00007fa79fda5fa0 RCX: 00007fa79fb8cd29
[   89.217134][ T6084] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   89.217144][ T6084] RBP: 00007fa7a0a99090 R08: 0000000000000000 R09: 0000000000000000
[   89.217153][ T6084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   89.217161][ T6084] R13: 0000000000000000 R14: 00007fa79fda5fa0 R15: 00007fff1b722238
[   89.217188][ T6084]  </TASK>
[   90.042438][ T6096] FAULT_INJECTION: forcing a failure.
[   90.042438][ T6096] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   90.091349][ T6096] CPU: 1 UID: 0 PID: 6096 Comm: syz.0.51 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   90.091379][ T6096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   90.091388][ T6096] Call Trace:
[   90.091394][ T6096]  <TASK>
[   90.091400][ T6096]  dump_stack_lvl+0x241/0x360
[   90.091434][ T6096]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.091456][ T6096]  ? __pfx__printk+0x10/0x10
[   90.091479][ T6096]  ? __lock_acquire+0x1397/0x2100
[   90.091508][ T6096]  should_fail_ex+0x3b0/0x4e0
[   90.091531][ T6096]  prepare_alloc_pages+0x1da/0x5b0
[   90.091561][ T6096]  __alloc_pages_noprof+0x16f/0x710
[   90.091583][ T6096]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   90.091621][ T6096]  alloc_pages_mpol_noprof+0x3e1/0x780
[   90.091650][ T6096]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   90.091682][ T6096]  vma_alloc_folio_noprof+0x12e/0x230
[   90.091706][ T6096]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   90.091730][ T6096]  ? do_raw_spin_unlock+0x13c/0x8b0
[   90.091752][ T6096]  folio_prealloc+0x2e/0x170
[   90.091772][ T6096]  do_wp_page+0x1253/0x49b0
[   90.091803][ T6096]  ? __pfx_do_wp_page+0x10/0x10
[   90.091819][ T6096]  ? __pfx_lock_acquire+0x10/0x10
[   90.091841][ T6096]  ? __pfx_lock_acquire+0x10/0x10
[   90.091859][ T6096]  ? rcu_is_watching+0x15/0xb0
[   90.091885][ T6096]  ? do_raw_spin_lock+0x14f/0x370
[   90.091901][ T6096]  ? __pfx____pte_offset_map+0x10/0x10
[   90.091947][ T6096]  handle_pte_fault+0xfa5/0x5ed0
[   90.091978][ T6096]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[   90.092007][ T6096]  ? __pfx_handle_pte_fault+0x10/0x10
[   90.092028][ T6096]  ? __lock_acquire+0x1397/0x2100
[   90.092077][ T6096]  ? mt_find+0x2a9/0x920
[   90.092094][ T6096]  ? __pfx_lock_release+0x10/0x10
[   90.092124][ T6096]  handle_mm_fault+0x1106/0x1bb0
[   90.092139][ T6096]  ? mt_find+0x2a9/0x920
[   90.092180][ T6096]  ? __pfx_handle_mm_fault+0x10/0x10
[   90.092212][ T6096]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   90.092238][ T6096]  ? lock_mm_and_find_vma+0x9c/0x2f0
[   90.092257][ T6096]  exc_page_fault+0x2b9/0x8b0
[   90.092294][ T6096]  asm_exc_page_fault+0x26/0x30
[   90.092312][ T6096] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   90.092332][ T6096] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   90.092345][ T6096] RSP: 0018:ffffc9000b7ff7f8 EFLAGS: 00050206
[   90.092362][ T6096] RAX: ffffffff84c50e01 RBX: 0000000020004500 RCX: 0000000000000500
[   90.092373][ T6096] RDX: 0000000000000000 RSI: ffff88807cd3cb00 RDI: 0000000020005000
[   90.092384][ T6096] RBP: ffffc9000b7ff978 R08: ffff88807cd3cfff R09: 1ffff1100f9a79ff
[   90.092395][ T6096] R10: dffffc0000000000 R11: ffffed100f9a7a00 R12: 1ffff920016fffcb
[   90.092407][ T6096] R13: ffffc9000b7ffe58 R14: 0000000000001000 R15: ffff88807cd3c000
[   90.092426][ T6096]  ? _copy_to_iter+0x1e1/0x1c50
[   90.092453][ T6096]  _copy_to_iter+0x267/0x1c50
[   90.092482][ T6096]  ? __pfx__copy_to_iter+0x10/0x10
[   90.092509][ T6096]  ? __folio_put+0x2b3/0x360
[   90.092524][ T6096]  ? page_copy_sane+0x46/0x260
[   90.092544][ T6096]  copy_page_to_iter+0xb1/0x160
[   90.092565][ T6096]  pipe_to_user+0xa9/0x140
[   90.092590][ T6096]  __splice_from_pipe+0x346/0x8b0
[   90.092619][ T6096]  ? __pfx_pipe_to_user+0x10/0x10
[   90.092639][ T6096]  __se_sys_vmsplice+0x408/0x1490
[   90.092679][ T6096]  ? __pfx___se_sys_vmsplice+0x10/0x10
[   90.092701][ T6096]  ? sb_end_write+0xe9/0x1c0
[   90.092720][ T6096]  ? vfs_write+0x730/0xd30
[   90.092735][ T6096]  ? __mutex_unlock_slowpath+0x227/0x800
[   90.092756][ T6096]  ? do_sys_openat2+0x17a/0x1d0
[   90.092775][ T6096]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   90.092791][ T6096]  ? __fget_files+0x2a/0x410
[   90.092820][ T6096]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   90.092840][ T6096]  ? do_syscall_64+0x100/0x230
[   90.092854][ T6096]  ? do_syscall_64+0xb6/0x230
[   90.092867][ T6096]  do_syscall_64+0xf3/0x230
[   90.092879][ T6096]  ? clear_bhb_loop+0x35/0x90
[   90.092894][ T6096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.092906][ T6096] RIP: 0033:0x7fa79fb8cd29
[   90.092918][ T6096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   90.092931][ T6096] RSP: 002b:00007fa7a0a78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[   90.092944][ T6096] RAX: ffffffffffffffda RBX: 00007fa79fda6080 RCX: 00007fa79fb8cd29
[   90.092953][ T6096] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   90.092960][ T6096] RBP: 00007fa7a0a78090 R08: 0000000000000000 R09: 0000000000000000
[   90.092967][ T6096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   90.092975][ T6096] R13: 0000000000000001 R14: 00007fa79fda6080 R15: 00007fff1b722238
[   90.092994][ T6096]  </TASK>
[   91.325506][ T6111] sock: sock_timestamping_bind_phc: sock not bind to device
[   91.462471][ T6113] __nla_validate_parse: 1 callbacks suppressed
[   91.462492][ T6113] netlink: 24 bytes leftover after parsing attributes in process `syz.1.57'.
[   91.777808][ T6123] netlink: 830 bytes leftover after parsing attributes in process `syz.2.60'.
[   91.976589][ T6128] netlink: 312 bytes leftover after parsing attributes in process `syz.3.61'.
[   91.985470][ T6131] netlink: 28 bytes leftover after parsing attributes in process `syz.1.63'.
[   92.031644][ T6131] netlink: 28 bytes leftover after parsing attributes in process `syz.1.63'.
[   92.086706][ T6136] FAULT_INJECTION: forcing a failure.
[   92.086706][ T6136] name failslab, interval 1, probability 0, space 0, times 0
[   92.113333][ T6136] CPU: 1 UID: 0 PID: 6136 Comm: syz.4.64 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   92.113366][ T6136] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   92.113376][ T6136] Call Trace:
[   92.113383][ T6136]  <TASK>
[   92.113391][ T6136]  dump_stack_lvl+0x241/0x360
[   92.113425][ T6136]  ? __pfx_dump_stack_lvl+0x10/0x10
[   92.113447][ T6136]  ? __pfx__printk+0x10/0x10
[   92.113471][ T6136]  ? __kmalloc_node_noprof+0xb9/0x4d0
[   92.113496][ T6136]  ? __pfx___might_resched+0x10/0x10
[   92.113521][ T6136]  should_fail_ex+0x3b0/0x4e0
[   92.113545][ T6136]  should_failslab+0xac/0x100
[   92.113569][ T6136]  __kmalloc_node_noprof+0xe1/0x4d0
[   92.113590][ T6136]  ? __kvmalloc_node_noprof+0x72/0x190
[   92.113628][ T6136]  __kvmalloc_node_noprof+0x72/0x190
[   92.113647][ T6136]  alloc_netdev_mqs+0x8d4/0x1110
[   92.113676][ T6136]  rtnl_create_link+0x2f9/0xc20
[   92.113702][ T6136]  rtnl_newlink_create+0x210/0xa40
[   92.113730][ T6136]  ? __pfx___mutex_lock+0x10/0x10
[   92.113755][ T6136]  ? __pfx_rtnl_newlink_create+0x10/0x10
[   92.113783][ T6136]  ? ns_capable+0x8a/0xf0
[   92.113801][ T6136]  rtnl_newlink+0x1c7e/0x2210
[   92.113831][ T6136]  ? __pfx_rtnl_newlink+0x10/0x10
[   92.113848][ T6136]  ? __netlink_deliver_tap+0x56b/0x7f0
[   92.113866][ T6136]  ? __pfx_validate_chain+0x10/0x10
[   92.113894][ T6136]  ? __sock_sendmsg+0x221/0x270
[   92.113914][ T6136]  ? ____sys_sendmsg+0x52a/0x7e0
[   92.113930][ T6136]  ? __sys_sendmsg+0x269/0x350
[   92.113945][ T6136]  ? do_syscall_64+0xf3/0x230
[   92.113959][ T6136]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.113996][ T6136]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   92.114019][ T6136]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   92.114046][ T6136]  ? mark_lock+0x9a/0x360
[   92.114080][ T6136]  ? __lock_acquire+0x1397/0x2100
[   92.114129][ T6136]  ? __pfx_lock_release+0x10/0x10
[   92.114158][ T6136]  ? __pfx_rtnl_newlink+0x10/0x10
[   92.114179][ T6136]  rtnetlink_rcv_msg+0x791/0xcf0
[   92.114195][ T6136]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[   92.114218][ T6136]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   92.114245][ T6136]  ? ref_tracker_free+0x643/0x7e0
[   92.114269][ T6136]  netlink_rcv_skb+0x1e3/0x430
[   92.114288][ T6136]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   92.114310][ T6136]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   92.114351][ T6136]  ? netlink_deliver_tap+0x2e/0x1b0
[   92.114377][ T6136]  netlink_unicast+0x7f6/0x990
[   92.114403][ T6136]  ? __pfx_netlink_unicast+0x10/0x10
[   92.114416][ T6136]  ? __virt_addr_valid+0x45f/0x530
[   92.114437][ T6136]  ? __phys_addr_symbol+0x2f/0x70
[   92.114456][ T6136]  ? __check_object_size+0x47a/0x730
[   92.114482][ T6136]  netlink_sendmsg+0x8e4/0xcb0
[   92.114512][ T6136]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.114534][ T6136]  ? aa_sock_msg_perm+0x91/0x160
[   92.114558][ T6136]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.114573][ T6136]  __sock_sendmsg+0x221/0x270
[   92.114597][ T6136]  ____sys_sendmsg+0x52a/0x7e0
[   92.114623][ T6136]  ? __pfx_____sys_sendmsg+0x10/0x10
[   92.114639][ T6136]  ? __fget_files+0x2a/0x410
[   92.114664][ T6136]  ? __fget_files+0x2a/0x410
[   92.114693][ T6136]  __sys_sendmsg+0x269/0x350
[   92.114716][ T6136]  ? __pfx___sys_sendmsg+0x10/0x10
[   92.114747][ T6136]  ? do_sys_openat2+0x17a/0x1d0
[   92.114795][ T6136]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   92.114815][ T6136]  ? do_syscall_64+0x100/0x230
[   92.114833][ T6136]  ? do_syscall_64+0xb6/0x230
[   92.114850][ T6136]  do_syscall_64+0xf3/0x230
[   92.114865][ T6136]  ? clear_bhb_loop+0x35/0x90
[   92.114891][ T6136]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.114907][ T6136] RIP: 0033:0x7fcdf958cd29
[   92.114923][ T6136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.114936][ T6136] RSP: 002b:00007fcdfa30f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   92.114955][ T6136] RAX: ffffffffffffffda RBX: 00007fcdf97a5fa0 RCX: 00007fcdf958cd29
[   92.114966][ T6136] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   92.114976][ T6136] RBP: 00007fcdfa30f090 R08: 0000000000000000 R09: 0000000000000000
[   92.114986][ T6136] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.114995][ T6136] R13: 0000000000000000 R14: 00007fcdf97a5fa0 R15: 00007ffd0a73d698
[   92.115022][ T6136]  </TASK>
[   92.845585][ T6155] FAULT_INJECTION: forcing a failure.
[   92.845585][ T6155] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.858857][ T6155] CPU: 1 UID: 0 PID: 6155 Comm: syz.4.69 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   92.858880][ T6155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   92.858900][ T6155] Call Trace:
[   92.858906][ T6155]  <TASK>
[   92.858913][ T6155]  dump_stack_lvl+0x241/0x360
[   92.858946][ T6155]  ? __pfx_dump_stack_lvl+0x10/0x10
[   92.858968][ T6155]  ? __pfx__printk+0x10/0x10
[   92.858990][ T6155]  ? __pfx_lock_release+0x10/0x10
[   92.859019][ T6155]  should_fail_ex+0x3b0/0x4e0
[   92.859040][ T6155]  _copy_to_iter+0x1f8/0x1c50
[   92.859075][ T6155]  ? __pfx__copy_to_iter+0x10/0x10
[   92.859103][ T6155]  ? __folio_put+0x2b3/0x360
[   92.859120][ T6155]  ? page_copy_sane+0x46/0x260
[   92.859149][ T6155]  copy_page_to_iter+0xb1/0x160
[   92.859171][ T6155]  pipe_to_user+0xa9/0x140
[   92.859194][ T6155]  __splice_from_pipe+0x346/0x8b0
[   92.859223][ T6155]  ? __pfx_pipe_to_user+0x10/0x10
[   92.859247][ T6155]  __se_sys_vmsplice+0x408/0x1490
[   92.859289][ T6155]  ? __pfx___se_sys_vmsplice+0x10/0x10
[   92.859318][ T6155]  ? sb_end_write+0xe9/0x1c0
[   92.859341][ T6155]  ? vfs_write+0x730/0xd30
[   92.859361][ T6155]  ? __mutex_unlock_slowpath+0x227/0x800
[   92.859389][ T6155]  ? do_sys_openat2+0x17a/0x1d0
[   92.859413][ T6155]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   92.859434][ T6155]  ? __fget_files+0x2a/0x410
[   92.859471][ T6155]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   92.859497][ T6155]  ? do_syscall_64+0x100/0x230
[   92.859515][ T6155]  ? do_syscall_64+0xb6/0x230
[   92.859533][ T6155]  do_syscall_64+0xf3/0x230
[   92.859548][ T6155]  ? clear_bhb_loop+0x35/0x90
[   92.859569][ T6155]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   92.859585][ T6155] RIP: 0033:0x7fcdf958cd29
[   92.859601][ T6155] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   92.859613][ T6155] RSP: 002b:00007fcdf73f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[   92.859631][ T6155] RAX: ffffffffffffffda RBX: 00007fcdf97a6080 RCX: 00007fcdf958cd29
[   92.859643][ T6155] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   92.859653][ T6155] RBP: 00007fcdf73f6090 R08: 0000000000000000 R09: 0000000000000000
[   92.859663][ T6155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   92.859672][ T6155] R13: 0000000000000001 R14: 00007fcdf97a6080 R15: 00007ffd0a73d698
[   92.859702][ T6155]  </TASK>
[   93.316894][ T6161] IPVS: set_ctl: invalid protocol: 50 255.255.255.255:20004
[   93.396332][ T6165] netlink: 24 bytes leftover after parsing attributes in process `syz.3.74'.
[   93.941033][ T6190] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[   93.994474][ T6190] netlink: 8 bytes leftover after parsing attributes in process `syz.0.80'.
[   94.015649][ T6194] FAULT_INJECTION: forcing a failure.
[   94.015649][ T6194] name failslab, interval 1, probability 0, space 0, times 0
[   94.043008][ T6195] FAULT_INJECTION: forcing a failure.
[   94.043008][ T6195] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[   94.090906][ T6194] CPU: 1 UID: 0 PID: 6194 Comm: syz.1.79 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   94.090933][ T6194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   94.090942][ T6194] Call Trace:
[   94.090960][ T6194]  <TASK>
[   94.090968][ T6194]  dump_stack_lvl+0x241/0x360
[   94.091004][ T6194]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.091025][ T6194]  ? __pfx__printk+0x10/0x10
[   94.091058][ T6194]  should_fail_ex+0x3b0/0x4e0
[   94.091081][ T6194]  should_failslab+0xac/0x100
[   94.091107][ T6194]  __kmalloc_cache_noprof+0x70/0x390
[   94.091132][ T6194]  ? __hw_addr_add_ex+0x1a8/0x610
[   94.091150][ T6194]  __hw_addr_add_ex+0x1a8/0x610
[   94.091170][ T6194]  dev_addr_init+0x143/0x230
[   94.091187][ T6194]  ? __pfx_dev_addr_init+0x10/0x10
[   94.091204][ T6194]  ? read_word_at_a_time+0xe/0x20
[   94.091229][ T6194]  alloc_netdev_mqs+0x2ae/0x1110
[   94.091246][ T6194]  ? __pfx_vlan_setup+0x10/0x10
[   94.091261][ T6194]  ? __pfx_snprintf+0x10/0x10
[   94.091280][ T6194]  rtnl_create_link+0x2f9/0xc20
[   94.091306][ T6194]  rtnl_newlink_create+0x210/0xa40
[   94.091331][ T6194]  ? __pfx___mutex_lock+0x10/0x10
[   94.091354][ T6194]  ? __pfx_rtnl_newlink_create+0x10/0x10
[   94.091380][ T6194]  ? ns_capable+0x8a/0xf0
[   94.091400][ T6194]  rtnl_newlink+0x1c7e/0x2210
[   94.091433][ T6194]  ? __pfx_rtnl_newlink+0x10/0x10
[   94.091451][ T6194]  ? __netlink_deliver_tap+0x56b/0x7f0
[   94.091469][ T6194]  ? __pfx_validate_chain+0x10/0x10
[   94.091488][ T6194]  ? __sock_sendmsg+0x221/0x270
[   94.091508][ T6194]  ? ____sys_sendmsg+0x52a/0x7e0
[   94.091524][ T6194]  ? __sys_sendmsg+0x269/0x350
[   94.091538][ T6194]  ? do_syscall_64+0xf3/0x230
[   94.091552][ T6194]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.091587][ T6194]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   94.091609][ T6194]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   94.091636][ T6194]  ? mark_lock+0x9a/0x360
[   94.091660][ T6194]  ? __lock_acquire+0x1397/0x2100
[   94.091709][ T6194]  ? __pfx_lock_release+0x10/0x10
[   94.091753][ T6194]  ? __pfx_rtnl_newlink+0x10/0x10
[   94.091775][ T6194]  rtnetlink_rcv_msg+0x791/0xcf0
[   94.091793][ T6194]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[   94.091818][ T6194]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   94.091846][ T6194]  ? ref_tracker_free+0x643/0x7e0
[   94.091870][ T6194]  netlink_rcv_skb+0x1e3/0x430
[   94.091888][ T6194]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   94.091910][ T6194]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   94.091945][ T6194]  ? netlink_deliver_tap+0x2e/0x1b0
[   94.091963][ T6194]  netlink_unicast+0x7f6/0x990
[   94.091985][ T6194]  ? __pfx_netlink_unicast+0x10/0x10
[   94.091997][ T6194]  ? __virt_addr_valid+0x45f/0x530
[   94.092023][ T6194]  ? __phys_addr_symbol+0x2f/0x70
[   94.092039][ T6194]  ? __check_object_size+0x47a/0x730
[   94.092063][ T6194]  netlink_sendmsg+0x8e4/0xcb0
[   94.092088][ T6194]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.092110][ T6194]  ? aa_sock_msg_perm+0x91/0x160
[   94.092131][ T6194]  ? __pfx_netlink_sendmsg+0x10/0x10
[   94.092145][ T6194]  __sock_sendmsg+0x221/0x270
[   94.092167][ T6194]  ____sys_sendmsg+0x52a/0x7e0
[   94.092191][ T6194]  ? __pfx_____sys_sendmsg+0x10/0x10
[   94.092204][ T6194]  ? __fget_files+0x2a/0x410
[   94.092243][ T6194]  ? __fget_files+0x2a/0x410
[   94.092270][ T6194]  __sys_sendmsg+0x269/0x350
[   94.092291][ T6194]  ? __pfx___sys_sendmsg+0x10/0x10
[   94.092332][ T6194]  ? do_sys_openat2+0x17a/0x1d0
[   94.092374][ T6194]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   94.092395][ T6194]  ? do_syscall_64+0x100/0x230
[   94.092413][ T6194]  ? do_syscall_64+0xb6/0x230
[   94.092430][ T6194]  do_syscall_64+0xf3/0x230
[   94.092444][ T6194]  ? clear_bhb_loop+0x35/0x90
[   94.092463][ T6194]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.092478][ T6194] RIP: 0033:0x7f2288d8cd29
[   94.092493][ T6194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.092505][ T6194] RSP: 002b:00007f2289b85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   94.092524][ T6194] RAX: ffffffffffffffda RBX: 00007f2288fa5fa0 RCX: 00007f2288d8cd29
[   94.092542][ T6194] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[   94.092551][ T6194] RBP: 00007f2289b85090 R08: 0000000000000000 R09: 0000000000000000
[   94.092560][ T6194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   94.092569][ T6194] R13: 0000000000000000 R14: 00007f2288fa5fa0 R15: 00007ffdd0c89518
[   94.092595][ T6194]  </TASK>
[   94.119827][ T6195] CPU: 0 UID: 0 PID: 6195 Comm: syz.3.81 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   94.119855][ T6195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   94.119865][ T6195] Call Trace:
[   94.119875][ T6195]  <TASK>
[   94.119883][ T6195]  dump_stack_lvl+0x241/0x360
[   94.119918][ T6195]  ? __pfx_dump_stack_lvl+0x10/0x10
[   94.119940][ T6195]  ? __pfx__printk+0x10/0x10
[   94.119962][ T6195]  ? __lock_acquire+0x1397/0x2100
[   94.120004][ T6195]  should_fail_ex+0x3b0/0x4e0
[   94.120028][ T6195]  prepare_alloc_pages+0x1da/0x5b0
[   94.120056][ T6195]  __alloc_pages_noprof+0x16f/0x710
[   94.120078][ T6195]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   94.120115][ T6195]  alloc_pages_mpol_noprof+0x3e1/0x780
[   94.120146][ T6195]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   94.120177][ T6195]  vma_alloc_folio_noprof+0x12e/0x230
[   94.120201][ T6195]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   94.120223][ T6195]  ? do_raw_spin_unlock+0x13c/0x8b0
[   94.120244][ T6195]  folio_prealloc+0x2e/0x170
[   94.120274][ T6195]  do_wp_page+0x1253/0x49b0
[   94.120305][ T6195]  ? __pfx_do_wp_page+0x10/0x10
[   94.120320][ T6195]  ? __pfx_lock_acquire+0x10/0x10
[   94.120342][ T6195]  ? __pfx_lock_acquire+0x10/0x10
[   94.120358][ T6195]  ? rcu_is_watching+0x15/0xb0
[   94.120385][ T6195]  ? do_raw_spin_lock+0x14f/0x370
[   94.120401][ T6195]  ? __pfx____pte_offset_map+0x10/0x10
[   94.120433][ T6195]  handle_pte_fault+0xfa5/0x5ed0
[   94.120464][ T6195]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[   94.120491][ T6195]  ? __pfx_handle_pte_fault+0x10/0x10
[   94.120513][ T6195]  ? __lock_acquire+0x1397/0x2100
[   94.120561][ T6195]  ? mt_find+0x2a9/0x920
[   94.120577][ T6195]  ? __pfx_lock_release+0x10/0x10
[   94.120605][ T6195]  handle_mm_fault+0x1106/0x1bb0
[   94.120621][ T6195]  ? mt_find+0x2a9/0x920
[   94.120663][ T6195]  ? __pfx_handle_mm_fault+0x10/0x10
[   94.120694][ T6195]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   94.120719][ T6195]  ? lock_mm_and_find_vma+0x9c/0x2f0
[   94.120738][ T6195]  exc_page_fault+0x2b9/0x8b0
[   94.120767][ T6195]  asm_exc_page_fault+0x26/0x30
[   94.120785][ T6195] RIP: 0010:rep_movs_alternative+0x4a/0x70
[   94.120806][ T6195] Code: 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 <f3> a4 c3 cc cc cc cc 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1
[   94.120818][ T6195] RSP: 0018:ffffc9000bc977f8 EFLAGS: 00050206
[   94.120834][ T6195] RAX: ffffffff84c50e01 RBX: 0000000020005500 RCX: 0000000000000500
[   94.120846][ T6195] RDX: 0000000000000000 RSI: ffff888032ed3b00 RDI: 0000000020006000
[   94.120856][ T6195] RBP: ffffc9000bc97978 R08: ffff888032ed3fff R09: 1ffff110065da7ff
[   94.120868][ T6195] R10: dffffc0000000000 R11: ffffed10065da800 R12: 1ffff92001792fcb
[   94.120878][ T6195] R13: ffffc9000bc97e58 R14: 0000000000001000 R15: ffff888032ed3000
[   94.120897][ T6195]  ? _copy_to_iter+0x1e1/0x1c50
[   94.120924][ T6195]  _copy_to_iter+0x267/0x1c50
[   94.120959][ T6195]  ? __pfx__copy_to_iter+0x10/0x10
[   94.120993][ T6195]  ? __folio_put+0x2b3/0x360
[   94.121010][ T6195]  ? page_copy_sane+0x46/0x260
[   94.121031][ T6195]  copy_page_to_iter+0xb1/0x160
[   94.121053][ T6195]  pipe_to_user+0xa9/0x140
[   94.121078][ T6195]  __splice_from_pipe+0x346/0x8b0
[   94.121111][ T6195]  ? __pfx_pipe_to_user+0x10/0x10
[   94.121134][ T6195]  __se_sys_vmsplice+0x408/0x1490
[   94.121177][ T6195]  ? __pfx___se_sys_vmsplice+0x10/0x10
[   94.121205][ T6195]  ? sb_end_write+0xe9/0x1c0
[   94.121227][ T6195]  ? vfs_write+0x730/0xd30
[   94.121247][ T6195]  ? __mutex_unlock_slowpath+0x227/0x800
[   94.121273][ T6195]  ? do_sys_openat2+0x17a/0x1d0
[   94.121296][ T6195]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   94.121316][ T6195]  ? __fget_files+0x2a/0x410
[   94.121351][ T6195]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   94.121382][ T6195]  ? do_syscall_64+0x100/0x230
[   94.121399][ T6195]  ? do_syscall_64+0xb6/0x230
[   94.121416][ T6195]  do_syscall_64+0xf3/0x230
[   94.121430][ T6195]  ? clear_bhb_loop+0x35/0x90
[   94.121450][ T6195]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   94.121465][ T6195] RIP: 0033:0x7f444898cd29
[   94.121479][ T6195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   94.121497][ T6195] RSP: 002b:00007f44497d9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000116
[   94.121511][ T6195] RAX: ffffffffffffffda RBX: 00007f4448ba6080 RCX: 00007f444898cd29
[   94.121523][ T6195] RDX: 0000000000000001 RSI: 0000000020000000 RDI: 0000000000000003
[   94.121532][ T6195] RBP: 00007f44497d9090 R08: 0000000000000000 R09: 0000000000000000
[   94.121541][ T6195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   94.121550][ T6195] R13: 0000000000000001 R14: 00007f4448ba6080 R15: 00007fff7c7b7a68
[   94.121575][ T6195]  </TASK>
[   94.997071][    T8] cfg80211: failed to load regulatory.db
[   95.530342][ T6219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.88'.
[   95.553308][ T6218] netlink: 8 bytes leftover after parsing attributes in process `syz.1.88'.
[   95.593242][ T6219] netlink: 4 bytes leftover after parsing attributes in process `syz.1.88'.
[   95.931047][ T6230] sctp: [Deprecated]: syz.1.90 (pid 6230) Use of int in max_burst socket option.
[   95.931047][ T6230] Use struct sctp_assoc_value instead
[   96.578505][ T6257] __nla_validate_parse: 4 callbacks suppressed
[   96.578527][ T6257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.99'.
[   96.632664][ T6257] netlink: 1136 bytes leftover after parsing attributes in process `syz.1.99'.
[   96.649065][ T6257] netlink: 5 bytes leftover after parsing attributes in process `syz.1.99'.
[   96.899121][ T6270] FAULT_INJECTION: forcing a failure.
[   96.899121][ T6270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   96.917649][ T6270] CPU: 0 UID: 0 PID: 6270 Comm: syz.2.102 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   96.917679][ T6270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   96.917689][ T6270] Call Trace:
[   96.917696][ T6270]  <TASK>
[   96.917704][ T6270]  dump_stack_lvl+0x241/0x360
[   96.917738][ T6270]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.917760][ T6270]  ? __pfx__printk+0x10/0x10
[   96.917783][ T6270]  ? __pfx_lock_release+0x10/0x10
[   96.917811][ T6270]  should_fail_ex+0x3b0/0x4e0
[   96.917832][ T6270]  _copy_from_user+0x2d/0xb0
[   96.917855][ T6270]  copy_msghdr_from_user+0xae/0x680
[   96.917884][ T6270]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[   96.917903][ T6270]  ? __fget_files+0x2a/0x410
[   96.917928][ T6270]  ? __fget_files+0x2a/0x410
[   96.917956][ T6270]  __sys_recvmsg+0x200/0x390
[   96.917976][ T6270]  ? __pfx___sys_recvmsg+0x10/0x10
[   96.918005][ T6270]  ? __fget_files+0x2a/0x410
[   96.918034][ T6270]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   96.918054][ T6270]  ? do_syscall_64+0x100/0x230
[   96.918074][ T6270]  ? do_syscall_64+0xb6/0x230
[   96.918092][ T6270]  do_syscall_64+0xf3/0x230
[   96.918114][ T6270]  ? clear_bhb_loop+0x35/0x90
[   96.918135][ T6270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.918166][ T6270] RIP: 0033:0x7fe26e58cd29
[   96.918183][ T6270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.918195][ T6270] RSP: 002b:00007fe26f33d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[   96.918215][ T6270] RAX: ffffffffffffffda RBX: 00007fe26e7a5fa0 RCX: 00007fe26e58cd29
[   96.918226][ T6270] RDX: 0000000040010122 RSI: 00000000200001c0 RDI: 0000000000000004
[   96.918237][ T6270] RBP: 00007fe26f33d090 R08: 0000000000000000 R09: 0000000000000000
[   96.918247][ T6270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   96.918256][ T6270] R13: 0000000000000000 R14: 00007fe26e7a5fa0 R15: 00007fff7ef7a578
[   96.918282][ T6270]  </TASK>
[   97.294622][ T6282] netlink: 24 bytes leftover after parsing attributes in process `syz.3.105'.
[   97.542973][ T6288] xt_l2tp: missing protocol rule (udp|l2tpip)
[   97.855172][ T6301] netlink: 8 bytes leftover after parsing attributes in process `syz.1.109'.
[   97.894573][ T6288] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.903572][ T6288] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.125359][ T6288] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.168602][ T6288] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   98.277919][ T6315] netlink: 8 bytes leftover after parsing attributes in process `syz.2.111'.
[   98.449071][ T6288] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   98.470313][ T6288] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   98.480105][ T6288] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   98.492314][ T6288] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   98.614956][ T6293] netlink: 830 bytes leftover after parsing attributes in process `syz.3.108'.
[   98.921045][ T6323] FAULT_INJECTION: forcing a failure.
[   98.921045][ T6323] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.948922][ T6323] CPU: 0 UID: 0 PID: 6323 Comm: syz.3.113 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[   98.948952][ T6323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   98.948960][ T6323] Call Trace:
[   98.948966][ T6323]  <TASK>
[   98.948974][ T6323]  dump_stack_lvl+0x241/0x360
[   98.949007][ T6323]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.949028][ T6323]  ? __pfx__printk+0x10/0x10
[   98.949053][ T6323]  ? snprintf+0xda/0x120
[   98.949073][ T6323]  should_fail_ex+0x3b0/0x4e0
[   98.949093][ T6323]  _copy_to_user+0x31/0xb0
[   98.949114][ T6323]  simple_read_from_buffer+0xca/0x150
[   98.949136][ T6323]  proc_fail_nth_read+0x1e9/0x250
[   98.949158][ T6323]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.949178][ T6323]  ? rw_verify_area+0x55e/0x6f0
[   98.949194][ T6323]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.949213][ T6323]  vfs_read+0x1fc/0xb70
[   98.949228][ T6323]  ? fdget_pos+0x254/0x320
[   98.949249][ T6323]  ? __pfx___mutex_lock+0x10/0x10
[   98.949270][ T6323]  ? __pfx_vfs_read+0x10/0x10
[   98.949294][ T6323]  ? __fget_files+0x2a/0x410
[   98.949315][ T6323]  ? __fget_files+0x395/0x410
[   98.949333][ T6323]  ? __fget_files+0x2a/0x410
[   98.949364][ T6323]  ksys_read+0x18f/0x2b0
[   98.949382][ T6323]  ? __pfx_ksys_read+0x10/0x10
[   98.949407][ T6323]  ? do_syscall_64+0x100/0x230
[   98.949426][ T6323]  ? do_syscall_64+0xb6/0x230
[   98.949442][ T6323]  do_syscall_64+0xf3/0x230
[   98.949456][ T6323]  ? clear_bhb_loop+0x35/0x90
[   98.949477][ T6323]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.949491][ T6323] RIP: 0033:0x7f444898b73c
[   98.949506][ T6323] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.949517][ T6323] RSP: 002b:00007f44497fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.949534][ T6323] RAX: ffffffffffffffda RBX: 00007f4448ba5fa0 RCX: 00007f444898b73c
[   98.949545][ T6323] RDX: 000000000000000f RSI: 00007f44497fa0a0 RDI: 0000000000000006
[   98.949555][ T6323] RBP: 00007f44497fa090 R08: 0000000000000000 R09: 0000000000000000
[   98.949564][ T6323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.949573][ T6323] R13: 0000000000000000 R14: 00007f4448ba5fa0 R15: 00007fff7c7b7a68
[   98.949594][ T6323]  </TASK>
[   99.708864][ T6359] netlink: 830 bytes leftover after parsing attributes in process `syz.0.123'.
[   99.786151][ T6363] netlink: 8 bytes leftover after parsing attributes in process `syz.0.125'.
[  100.027518][ T6373] netlink: 'syz.3.128': attribute type 16 has an invalid length.
[  100.035558][ T6373] netlink: 'syz.3.128': attribute type 17 has an invalid length.
[  100.584153][ T6390] netlink: 'syz.3.135': attribute type 10 has an invalid length.
[  100.598201][ T6390] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  100.625739][ T6390] batman_adv: batadv0: Removing interface: batadv_slave_0
[  100.647927][ T6392] netlink: 830 bytes leftover after parsing attributes in process `syz.2.136'.
[  101.580780][ T6425] netlink: 'syz.4.147': attribute type 1 has an invalid length.
[  101.587618][ T6426] __nla_validate_parse: 1 callbacks suppressed
[  101.587643][ T6426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.146'.
[  101.620179][ T6426] netlink: 8 bytes leftover after parsing attributes in process `syz.1.146'.
[  101.873078][ T6434] sock: sock_timestamping_bind_phc: sock not bind to device
[  102.210125][ T6450] netlink: 8 bytes leftover after parsing attributes in process `syz.4.155'.
[  102.244273][ T6450] netlink: 24 bytes leftover after parsing attributes in process `syz.4.155'.
[  102.255077][ T6447] x_tables: duplicate underflow at hook 4
[  102.493910][ T6464] netlink: 'syz.0.163': attribute type 4 has an invalid length.
[  102.519999][ T6463] netlink: 'syz.2.161': attribute type 10 has an invalid length.
[  102.534991][ T6464] netlink: 12 bytes leftover after parsing attributes in process `syz.0.163'.
[  102.556489][ T6465] Bluetooth: MGMT ver 1.23
[  102.563408][ T6467] netlink: 830 bytes leftover after parsing attributes in process `syz.4.164'.
[  102.569456][ T6462] netlink: 24 bytes leftover after parsing attributes in process `syz.1.160'.
[  102.636084][ T6463] veth0_vlan: left promiscuous mode
[  102.655687][ T6463] veth0_vlan: entered promiscuous mode
[  102.677096][ T6463] team0: Device veth0_vlan failed to register rx_handler
[  102.780164][ T6465] warning: `syz.3.162' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  103.044006][ T6486] netlink: 'syz.3.168': attribute type 12 has an invalid length.
[  103.067158][ T6486] netlink: 'syz.3.168': attribute type 29 has an invalid length.
[  103.075864][ T6486] netlink: 148 bytes leftover after parsing attributes in process `syz.3.168'.
[  103.086428][ T6486] netlink: 'syz.3.168': attribute type 2 has an invalid length.
[  103.097883][ T6486] netlink: 43 bytes leftover after parsing attributes in process `syz.3.168'.
[  103.617655][ T6486] netlink: 332 bytes leftover after parsing attributes in process `syz.3.168'.
[  104.258914][ T6527] batman_adv: batadv0: Adding interface: ip6gretap1
[  104.297419][ T6527] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.388980][ T6527] batman_adv: batadv0: Interface activated: ip6gretap1
[  104.641631][ T6551] syz.2.188 uses obsolete (PF_INET,SOCK_PACKET)
[  104.649626][ T6550] sock: sock_timestamping_bind_phc: sock not bind to device
[  104.883945][ T6563] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  104.910476][ T6563] netlink: 'syz.0.191': attribute type 10 has an invalid length.
[  104.969719][ T6563] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  105.055397][ T6570] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  105.064641][ T6570] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  105.073794][ T6570] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  105.082903][ T6570] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  105.113409][ T6571] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  105.362856][ T6575] tipc: Started in network mode
[  105.368766][ T6575] tipc: Node identity fe1e2a2dfb5e, cluster identity 4711
[  105.385114][ T6575] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  105.443202][ T6575] syzkaller0: entered promiscuous mode
[  105.449488][ T6575] syzkaller0: entered allmulticast mode
[  105.456454][ T6575] tipc: Resetting bearer <eth:syzkaller0>
[  105.542407][ T6574] tipc: Resetting bearer <eth:syzkaller0>
[  105.651857][ T6585] FAULT_INJECTION: forcing a failure.
[  105.651857][ T6585] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  105.757577][ T6585] CPU: 1 UID: 0 PID: 6585 Comm: syz.4.199 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  105.757603][ T6585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  105.757612][ T6585] Call Trace:
[  105.757619][ T6585]  <TASK>
[  105.757625][ T6585]  dump_stack_lvl+0x241/0x360
[  105.757658][ T6585]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.757678][ T6585]  ? __pfx__printk+0x10/0x10
[  105.757700][ T6585]  ? __pfx_lock_release+0x10/0x10
[  105.757729][ T6585]  should_fail_ex+0x3b0/0x4e0
[  105.757751][ T6585]  _copy_from_user+0x2d/0xb0
[  105.757775][ T6585]  copy_msghdr_from_user+0xae/0x680
[  105.757821][ T6585]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  105.757840][ T6585]  ? __fget_files+0x2a/0x410
[  105.757865][ T6585]  ? __fget_files+0x2a/0x410
[  105.757892][ T6585]  __sys_sendmsg+0x209/0x350
[  105.757914][ T6585]  ? __pfx___sys_sendmsg+0x10/0x10
[  105.757942][ T6585]  ? do_sys_openat2+0x17a/0x1d0
[  105.757985][ T6585]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  105.758007][ T6585]  ? do_syscall_64+0x100/0x230
[  105.758025][ T6585]  ? do_syscall_64+0xb6/0x230
[  105.758042][ T6585]  do_syscall_64+0xf3/0x230
[  105.758056][ T6585]  ? clear_bhb_loop+0x35/0x90
[  105.758077][ T6585]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.758093][ T6585] RIP: 0033:0x7fcdf958cd29
[  105.758124][ T6585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  105.758142][ T6585] RSP: 002b:00007fcdfa30f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  105.758161][ T6585] RAX: ffffffffffffffda RBX: 00007fcdf97a5fa0 RCX: 00007fcdf958cd29
[  105.758173][ T6585] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  105.758182][ T6585] RBP: 00007fcdfa30f090 R08: 0000000000000000 R09: 0000000000000000
[  105.758192][ T6585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  105.758201][ T6585] R13: 0000000000000000 R14: 00007fcdf97a5fa0 R15: 00007ffd0a73d698
[  105.758226][ T6585]  </TASK>
[  106.367648][ T6610] FAULT_INJECTION: forcing a failure.
[  106.367648][ T6610] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  106.383631][   T25] tipc: Node number set to 88091181
[  106.387126][ T6610] CPU: 0 UID: 0 PID: 6610 Comm: syz.4.206 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  106.387151][ T6610] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  106.387160][ T6610] Call Trace:
[  106.387167][ T6610]  <TASK>
[  106.387177][ T6610]  dump_stack_lvl+0x241/0x360
[  106.387210][ T6610]  ? __pfx_dump_stack_lvl+0x10/0x10
[  106.387231][ T6610]  ? __pfx__printk+0x10/0x10
[  106.387253][ T6610]  ? __pfx_lock_release+0x10/0x10
[  106.387286][ T6610]  should_fail_ex+0x3b0/0x4e0
[  106.387308][ T6610]  _copy_from_user+0x2d/0xb0
[  106.387333][ T6610]  copy_msghdr_from_user+0xae/0x680
[  106.387363][ T6610]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  106.387382][ T6610]  ? __fget_files+0x2a/0x410
[  106.387407][ T6610]  ? __fget_files+0x2a/0x410
[  106.387435][ T6610]  __sys_sendmsg+0x209/0x350
[  106.387457][ T6610]  ? __pfx___sys_sendmsg+0x10/0x10
[  106.387486][ T6610]  ? do_sys_openat2+0x17a/0x1d0
[  106.387530][ T6610]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  106.387550][ T6610]  ? do_syscall_64+0x100/0x230
[  106.387569][ T6610]  ? do_syscall_64+0xb6/0x230
[  106.387586][ T6610]  do_syscall_64+0xf3/0x230
[  106.387601][ T6610]  ? clear_bhb_loop+0x35/0x90
[  106.387621][ T6610]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  106.387637][ T6610] RIP: 0033:0x7fcdf958cd29
[  106.387653][ T6610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  106.387666][ T6610] RSP: 002b:00007fcdfa30f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  106.387684][ T6610] RAX: ffffffffffffffda RBX: 00007fcdf97a5fa0 RCX: 00007fcdf958cd29
[  106.387696][ T6610] RDX: 0000000020000000 RSI: 0000000020000480 RDI: 0000000000000003
[  106.387706][ T6610] RBP: 00007fcdfa30f090 R08: 0000000000000000 R09: 0000000000000000
[  106.387716][ T6610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  106.387725][ T6610] R13: 0000000000000000 R14: 00007fcdf97a5fa0 R15: 00007ffd0a73d698
[  106.387749][ T6610]  </TASK>
[  108.035751][ T6574] tipc: Disabling bearer <eth:syzkaller0>
[  108.066658][ T6613] __nla_validate_parse: 8 callbacks suppressed
[  108.066684][ T6613] netlink: 16 bytes leftover after parsing attributes in process `syz.4.207'.
[  108.307821][ T6621] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  108.357729][ T6621] netlink: 'syz.3.211': attribute type 10 has an invalid length.
[  108.433054][ T6627] netlink: 12 bytes leftover after parsing attributes in process `syz.2.213'.
[  108.516483][ T6621] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  108.576683][ T6638] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  108.620267][ T6636] netlink: 4 bytes leftover after parsing attributes in process `syz.2.213'.
[  108.855746][ T6644] netlink: 47 bytes leftover after parsing attributes in process `syz.0.216'.
[  109.350460][ T6654] FAULT_INJECTION: forcing a failure.
[  109.350460][ T6654] name failslab, interval 1, probability 0, space 0, times 0
[  109.396752][ T6654] CPU: 0 UID: 0 PID: 6654 Comm: syz.1.220 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  109.396780][ T6654] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  109.396790][ T6654] Call Trace:
[  109.396797][ T6654]  <TASK>
[  109.396804][ T6654]  dump_stack_lvl+0x241/0x360
[  109.396847][ T6654]  ? __pfx_dump_stack_lvl+0x10/0x10
[  109.396869][ T6654]  ? __pfx__printk+0x10/0x10
[  109.396891][ T6654]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  109.396916][ T6654]  ? __pfx___might_resched+0x10/0x10
[  109.396940][ T6654]  should_fail_ex+0x3b0/0x4e0
[  109.396978][ T6654]  should_failslab+0xac/0x100
[  109.397002][ T6654]  kmem_cache_alloc_node_noprof+0x77/0x380
[  109.397023][ T6654]  ? __alloc_skb+0x1c3/0x440
[  109.397044][ T6654]  __alloc_skb+0x1c3/0x440
[  109.397064][ T6654]  ? __pfx___alloc_skb+0x10/0x10
[  109.397082][ T6654]  ? netlink_autobind+0xd6/0x2f0
[  109.397100][ T6654]  ? netlink_autobind+0x2b0/0x2f0
[  109.397122][ T6654]  netlink_sendmsg+0x638/0xcb0
[  109.397151][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.397172][ T6654]  ? aa_sock_msg_perm+0x91/0x160
[  109.397195][ T6654]  ? __pfx_netlink_sendmsg+0x10/0x10
[  109.397217][ T6654]  __sock_sendmsg+0x221/0x270
[  109.397242][ T6654]  ____sys_sendmsg+0x52a/0x7e0
[  109.397269][ T6654]  ? __pfx_____sys_sendmsg+0x10/0x10
[  109.397284][ T6654]  ? __fget_files+0x2a/0x410
[  109.397309][ T6654]  ? __fget_files+0x2a/0x410
[  109.397337][ T6654]  __sys_sendmsg+0x269/0x350
[  109.397360][ T6654]  ? __pfx___sys_sendmsg+0x10/0x10
[  109.397388][ T6654]  ? do_sys_openat2+0x17a/0x1d0
[  109.397431][ T6654]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  109.397452][ T6654]  ? do_syscall_64+0x100/0x230
[  109.397471][ T6654]  ? do_syscall_64+0xb6/0x230
[  109.397489][ T6654]  do_syscall_64+0xf3/0x230
[  109.397503][ T6654]  ? clear_bhb_loop+0x35/0x90
[  109.397523][ T6654]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  109.397540][ T6654] RIP: 0033:0x7f2288d8cd29
[  109.397556][ T6654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.397568][ T6654] RSP: 002b:00007f2289b85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  109.397586][ T6654] RAX: ffffffffffffffda RBX: 00007f2288fa5fa0 RCX: 00007f2288d8cd29
[  109.397597][ T6654] RDX: 0000000020000000 RSI: 0000000020000480 RDI: 0000000000000003
[  109.397612][ T6654] RBP: 00007f2289b85090 R08: 0000000000000000 R09: 0000000000000000
[  109.397622][ T6654] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.397631][ T6654] R13: 0000000000000000 R14: 00007f2288fa5fa0 R15: 00007ffdd0c89518
[  109.397657][ T6654]  </TASK>
[  109.823325][ T6672] x_tables: duplicate underflow at hook 4
[  110.299787][ T6693] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  110.329612][ T6693] netlink: 'syz.4.235': attribute type 10 has an invalid length.
[  110.364514][ T6693] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  110.436416][ T6693] IPVS: Error connecting to the multicast addr
[  110.573586][ T6702] netlink: 8 bytes leftover after parsing attributes in process `syz.1.239'.
[  111.283166][ T6724] netlink: 'syz.0.246': attribute type 27 has an invalid length.
[  111.430180][ T6727] netlink: 92 bytes leftover after parsing attributes in process `syz.1.247'.
[  112.038927][ T6757] x_tables: duplicate underflow at hook 4
[  112.052338][ T6754] tipc: Started in network mode
[  112.052547][ T6758] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  112.067657][ T6754] tipc: Node identity ae4953232fbe, cluster identity 4711
[  112.088367][ T6754] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  112.122654][ T6758] netlink: 'syz.2.256': attribute type 10 has an invalid length.
[  112.205520][ T6762] Bluetooth: MGMT ver 1.23
[  112.214816][ T6759] syzkaller0: entered promiscuous mode
[  112.233699][ T6759] syzkaller0: entered allmulticast mode
[  112.256822][ T6759] tipc: Resetting bearer <eth:syzkaller0>
[  112.293065][ T6767] netlink: 28 bytes leftover after parsing attributes in process `syz.4.259'.
[  112.341368][ T6767] netlink: 28 bytes leftover after parsing attributes in process `syz.4.259'.
[  112.344222][ T6758] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  112.379808][ T6753] tipc: Resetting bearer <eth:syzkaller0>
[  112.738120][ T6779] FAULT_INJECTION: forcing a failure.
[  112.738120][ T6779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.752197][ T6779] CPU: 1 UID: 0 PID: 6779 Comm: syz.3.263 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  112.752223][ T6779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  112.752233][ T6779] Call Trace:
[  112.752240][ T6779]  <TASK>
[  112.752247][ T6779]  dump_stack_lvl+0x241/0x360
[  112.752281][ T6779]  ? __pfx_dump_stack_lvl+0x10/0x10
[  112.752302][ T6779]  ? __pfx__printk+0x10/0x10
[  112.752325][ T6779]  ? __pfx_lock_release+0x10/0x10
[  112.752353][ T6779]  should_fail_ex+0x3b0/0x4e0
[  112.752374][ T6779]  _copy_from_iter+0x1e9/0x1c20
[  112.752396][ T6779]  ? __virt_addr_valid+0x183/0x530
[  112.752441][ T6779]  ? __alloc_skb+0x28f/0x440
[  112.752459][ T6779]  ? __pfx__copy_from_iter+0x10/0x10
[  112.752480][ T6779]  ? __virt_addr_valid+0x183/0x530
[  112.752498][ T6779]  ? __virt_addr_valid+0x183/0x530
[  112.752516][ T6779]  ? __virt_addr_valid+0x45f/0x530
[  112.752542][ T6779]  ? __phys_addr_symbol+0x2f/0x70
[  112.752561][ T6779]  ? __check_object_size+0x47a/0x730
[  112.752588][ T6779]  netlink_sendmsg+0x73d/0xcb0
[  112.752624][ T6779]  ? __pfx_netlink_sendmsg+0x10/0x10
[  112.752646][ T6779]  ? aa_sock_msg_perm+0x91/0x160
[  112.752670][ T6779]  ? __pfx_netlink_sendmsg+0x10/0x10
[  112.752687][ T6779]  __sock_sendmsg+0x221/0x270
[  112.752712][ T6779]  ____sys_sendmsg+0x52a/0x7e0
[  112.752739][ T6779]  ? __pfx_____sys_sendmsg+0x10/0x10
[  112.752756][ T6779]  ? __fget_files+0x2a/0x410
[  112.752781][ T6779]  ? __fget_files+0x2a/0x410
[  112.752810][ T6779]  __sys_sendmsg+0x269/0x350
[  112.752833][ T6779]  ? __pfx___sys_sendmsg+0x10/0x10
[  112.752863][ T6779]  ? do_sys_openat2+0x17a/0x1d0
[  112.752910][ T6779]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  112.752931][ T6779]  ? do_syscall_64+0x100/0x230
[  112.752951][ T6779]  ? do_syscall_64+0xb6/0x230
[  112.752968][ T6779]  do_syscall_64+0xf3/0x230
[  112.752984][ T6779]  ? clear_bhb_loop+0x35/0x90
[  112.753005][ T6779]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  112.753022][ T6779] RIP: 0033:0x7f444898cd29
[  112.753039][ T6779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  112.753051][ T6779] RSP: 002b:00007f44497fa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  112.753070][ T6779] RAX: ffffffffffffffda RBX: 00007f4448ba5fa0 RCX: 00007f444898cd29
[  112.753082][ T6779] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  112.753092][ T6779] RBP: 00007f44497fa090 R08: 0000000000000000 R09: 0000000000000000
[  112.753101][ T6779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  112.753110][ T6779] R13: 0000000000000000 R14: 00007f4448ba5fa0 R15: 00007fff7c7b7a68
[  112.753136][ T6779]  </TASK>
[  113.161369][ T6296] tipc: Node number set to 2180469539
[  114.539494][ T6753] tipc: Disabling bearer <eth:syzkaller0>
[  114.549635][ T6793] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0
[  114.554613][ T6767] team0: entered promiscuous mode
[  114.564519][ T6767] team_slave_0: entered promiscuous mode
[  114.570775][ T6767] team_slave_1: entered promiscuous mode
[  114.578002][ T6767] team0: left promiscuous mode
[  114.583457][ T6767] team_slave_0: left promiscuous mode
[  114.589042][ T6767] team_slave_1: left promiscuous mode
[  114.874212][ T6802] FAULT_INJECTION: forcing a failure.
[  114.874212][ T6802] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  114.889416][ T6800] netlink: 'syz.0.269': attribute type 3 has an invalid length.
[  114.911254][ T6802] CPU: 1 UID: 0 PID: 6802 Comm: syz.3.270 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  114.911285][ T6802] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  114.911294][ T6802] Call Trace:
[  114.911301][ T6802]  <TASK>
[  114.911309][ T6802]  dump_stack_lvl+0x241/0x360
[  114.911342][ T6802]  ? __pfx_dump_stack_lvl+0x10/0x10
[  114.911364][ T6802]  ? __pfx__printk+0x10/0x10
[  114.911386][ T6802]  ? __pfx_lock_release+0x10/0x10
[  114.911418][ T6802]  should_fail_ex+0x3b0/0x4e0
[  114.911440][ T6802]  _copy_from_iter+0x1e9/0x1c20
[  114.911475][ T6802]  ? __virt_addr_valid+0x183/0x530
[  114.911505][ T6802]  ? __alloc_skb+0x28f/0x440
[  114.911522][ T6802]  ? __pfx__copy_from_iter+0x10/0x10
[  114.911543][ T6802]  ? __virt_addr_valid+0x183/0x530
[  114.911561][ T6802]  ? __virt_addr_valid+0x183/0x530
[  114.911578][ T6802]  ? __virt_addr_valid+0x45f/0x530
[  114.911598][ T6802]  ? __phys_addr_symbol+0x2f/0x70
[  114.911617][ T6802]  ? __check_object_size+0x47a/0x730
[  114.911644][ T6802]  netlink_sendmsg+0x73d/0xcb0
[  114.911675][ T6802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.911696][ T6802]  ? aa_sock_msg_perm+0x91/0x160
[  114.911720][ T6802]  ? __pfx_netlink_sendmsg+0x10/0x10
[  114.911737][ T6802]  __sock_sendmsg+0x221/0x270
[  114.911763][ T6802]  ____sys_sendmsg+0x52a/0x7e0
[  114.911787][ T6802]  ? __pfx_____sys_sendmsg+0x10/0x10
[  114.911803][ T6802]  ? __fget_files+0x2a/0x410
[  114.911827][ T6802]  ? __fget_files+0x2a/0x410
[  114.911856][ T6802]  __sys_sendmsg+0x269/0x350
[  114.911878][ T6802]  ? __pfx___sys_sendmsg+0x10/0x10
[  114.911909][ T6802]  ? do_sys_openat2+0x17a/0x1d0
[  114.911953][ T6802]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  114.911974][ T6802]  ? do_syscall_64+0x100/0x230
[  114.911993][ T6802]  ? do_syscall_64+0xb6/0x230
[  114.912017][ T6802]  do_syscall_64+0xf3/0x230
[  114.912032][ T6802]  ? clear_bhb_loop+0x35/0x90
[  114.912053][ T6802]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  114.912070][ T6802] RIP: 0033:0x7f444898cd29
[  114.912087][ T6802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  114.912100][ T6802] RSP: 002b:00007f44497fa038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  114.912119][ T6802] RAX: ffffffffffffffda RBX: 00007f4448ba5fa0 RCX: 00007f444898cd29
[  114.912131][ T6802] RDX: 0000000020000000 RSI: 0000000020000480 RDI: 0000000000000003
[  114.912141][ T6802] RBP: 00007f44497fa090 R08: 0000000000000000 R09: 0000000000000000
[  114.912157][ T6802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  114.912167][ T6802] R13: 0000000000000000 R14: 00007f4448ba5fa0 R15: 00007fff7c7b7a68
[  114.912192][ T6802]  </TASK>
[  115.188206][ T6771] infiniband syz2: set down
[  115.203544][ T6771] infiniband syz2: added team0
[  115.212272][ T6771] syz2: rxe_create_cq: returned err = -12
[  115.218824][ T6771] infiniband syz2: Couldn't create ib_mad CQ
[  115.225604][ T6771] infiniband syz2: Couldn't open port 1
[  115.318008][ T6771] RDS/IB: syz2: added
[  115.375017][ T6771] smc: adding ib device syz2 with port count 1
[  115.425979][ T6771] smc:    ib device syz2 port 1 has pnetid 
[  115.428362][ T6813] sock: sock_timestamping_bind_phc: sock not bind to device
[  115.588072][ T6819] netlink: 8 bytes leftover after parsing attributes in process `syz.1.277'.
[  115.762360][ T6826] netlink: 830 bytes leftover after parsing attributes in process `syz.3.279'.
[  115.802718][ T6830] FAULT_INJECTION: forcing a failure.
[  115.802718][ T6830] name failslab, interval 1, probability 0, space 0, times 0
[  115.890429][ T6830] CPU: 1 UID: 0 PID: 6830 Comm: syz.1.280 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  115.890455][ T6830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  115.890464][ T6830] Call Trace:
[  115.890471][ T6830]  <TASK>
[  115.890479][ T6830]  dump_stack_lvl+0x241/0x360
[  115.890513][ T6830]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.890535][ T6830]  ? __pfx__printk+0x10/0x10
[  115.890567][ T6830]  should_fail_ex+0x3b0/0x4e0
[  115.890591][ T6830]  should_failslab+0xac/0x100
[  115.890616][ T6830]  ? skb_clone+0x20c/0x390
[  115.890634][ T6830]  kmem_cache_alloc_noprof+0x70/0x380
[  115.890661][ T6830]  skb_clone+0x20c/0x390
[  115.890694][ T6830]  __netlink_deliver_tap+0x3cc/0x7f0
[  115.890722][ T6830]  ? netlink_deliver_tap+0x2e/0x1b0
[  115.890737][ T6830]  netlink_deliver_tap+0x19d/0x1b0
[  115.890755][ T6830]  netlink_unicast+0x7c4/0x990
[  115.890777][ T6830]  ? __pfx_netlink_unicast+0x10/0x10
[  115.890789][ T6830]  ? __virt_addr_valid+0x45f/0x530
[  115.890810][ T6830]  ? __phys_addr_symbol+0x2f/0x70
[  115.890828][ T6830]  ? __check_object_size+0x47a/0x730
[  115.890855][ T6830]  netlink_sendmsg+0x8e4/0xcb0
[  115.890884][ T6830]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.890906][ T6830]  ? aa_sock_msg_perm+0x91/0x160
[  115.890930][ T6830]  ? __pfx_netlink_sendmsg+0x10/0x10
[  115.890946][ T6830]  __sock_sendmsg+0x221/0x270
[  115.890972][ T6830]  ____sys_sendmsg+0x52a/0x7e0
[  115.890998][ T6830]  ? __pfx_____sys_sendmsg+0x10/0x10
[  115.891014][ T6830]  ? __fget_files+0x2a/0x410
[  115.891040][ T6830]  ? __fget_files+0x2a/0x410
[  115.891069][ T6830]  __sys_sendmsg+0x269/0x350
[  115.891093][ T6830]  ? __pfx___sys_sendmsg+0x10/0x10
[  115.891124][ T6830]  ? do_sys_openat2+0x17a/0x1d0
[  115.891163][ T6830]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  115.891184][ T6830]  ? do_syscall_64+0x100/0x230
[  115.891203][ T6830]  ? do_syscall_64+0xb6/0x230
[  115.891221][ T6830]  do_syscall_64+0xf3/0x230
[  115.891236][ T6830]  ? clear_bhb_loop+0x35/0x90
[  115.891265][ T6830]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  115.891282][ T6830] RIP: 0033:0x7f2288d8cd29
[  115.891298][ T6830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.891310][ T6830] RSP: 002b:00007f2289b85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  115.891330][ T6830] RAX: ffffffffffffffda RBX: 00007f2288fa5fa0 RCX: 00007f2288d8cd29
[  115.891341][ T6830] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  115.891351][ T6830] RBP: 00007f2289b85090 R08: 0000000000000000 R09: 0000000000000000
[  115.891361][ T6830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.891370][ T6830] R13: 0000000000000000 R14: 00007f2288fa5fa0 R15: 00007ffdd0c89518
[  115.891408][ T6830]  </TASK>
[  116.244904][ T6841] x_tables: duplicate underflow at hook 4
[  116.927113][ T6863] netlink: 830 bytes leftover after parsing attributes in process `syz.2.292'.
[  117.963084][ T6905] netlink: 56 bytes leftover after parsing attributes in process `syz.3.307'.
[  118.019473][ T6905] netlink: 'syz.3.307': attribute type 2 has an invalid length.
[  118.153983][ T6910] netlink: 12 bytes leftover after parsing attributes in process `syz.1.308'.
[  118.189413][ T6907] syzkaller0: entered promiscuous mode
[  118.211264][ T6907] syzkaller0: entered allmulticast mode
[  118.379782][ T6916] sock: sock_timestamping_bind_phc: sock not bind to device
[  121.039104][ T6958] FAULT_INJECTION: forcing a failure.
[  121.039104][ T6958] name failslab, interval 1, probability 0, space 0, times 0
[  121.051879][ T6958] CPU: 1 UID: 0 PID: 6958 Comm: syz.1.327 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  121.051902][ T6958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  121.051913][ T6958] Call Trace:
[  121.051919][ T6958]  <TASK>
[  121.051934][ T6958]  dump_stack_lvl+0x241/0x360
[  121.051968][ T6958]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.051990][ T6958]  ? __pfx__printk+0x10/0x10
[  121.052023][ T6958]  should_fail_ex+0x3b0/0x4e0
[  121.052046][ T6958]  should_failslab+0xac/0x100
[  121.052071][ T6958]  ? skb_clone+0x20c/0x390
[  121.052089][ T6958]  kmem_cache_alloc_noprof+0x70/0x380
[  121.052117][ T6958]  skb_clone+0x20c/0x390
[  121.052135][ T6958]  ? dev_queue_xmit_nit+0x3fe/0xca0
[  121.052152][ T6958]  dev_queue_xmit_nit+0x249/0xca0
[  121.052170][ T6958]  ? dev_queue_xmit_nit+0x2b/0xca0
[  121.052184][ T6958]  ? validate_xmit_skb+0x9b8/0xff0
[  121.052206][ T6958]  dev_hard_start_xmit+0x15f/0x7d0
[  121.052222][ T6958]  ? __pfx_validate_xmit_skb+0x10/0x10
[  121.052247][ T6958]  __dev_queue_xmit+0x1b73/0x3f50
[  121.052264][ T6958]  ? kasan_save_track+0x51/0x80
[  121.052287][ T6958]  ? ____sys_sendmsg+0x52a/0x7e0
[  121.052311][ T6958]  ? __dev_queue_xmit+0x2f4/0x3f50
[  121.052333][ T6958]  ? __pfx___dev_queue_xmit+0x10/0x10
[  121.052366][ T6958]  ? __copy_skb_header+0x437/0x5b0
[  121.052387][ T6958]  ? __asan_memcpy+0x40/0x70
[  121.052402][ T6958]  ? __copy_skb_header+0x437/0x5b0
[  121.052421][ T6958]  ? __skb_clone+0x454/0x6c0
[  121.052444][ T6958]  ? skb_clone+0x240/0x390
[  121.052463][ T6958]  __netlink_deliver_tap+0x56b/0x7f0
[  121.052492][ T6958]  ? netlink_deliver_tap+0x2e/0x1b0
[  121.052508][ T6958]  netlink_deliver_tap+0x19d/0x1b0
[  121.052526][ T6958]  netlink_unicast+0x7c4/0x990
[  121.052550][ T6958]  ? __pfx_netlink_unicast+0x10/0x10
[  121.052564][ T6958]  ? __virt_addr_valid+0x45f/0x530
[  121.052588][ T6958]  ? __phys_addr_symbol+0x2f/0x70
[  121.052607][ T6958]  ? __check_object_size+0x47a/0x730
[  121.052651][ T6958]  netlink_sendmsg+0x8e4/0xcb0
[  121.052679][ T6958]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.052700][ T6958]  ? aa_sock_msg_perm+0x91/0x160
[  121.052724][ T6958]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.052739][ T6958]  __sock_sendmsg+0x221/0x270
[  121.052765][ T6958]  ____sys_sendmsg+0x52a/0x7e0
[  121.052792][ T6958]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.052806][ T6958]  ? __fget_files+0x2a/0x410
[  121.052831][ T6958]  ? __fget_files+0x2a/0x410
[  121.052861][ T6958]  __sys_sendmsg+0x269/0x350
[  121.052884][ T6958]  ? __pfx___sys_sendmsg+0x10/0x10
[  121.052914][ T6958]  ? do_sys_openat2+0x17a/0x1d0
[  121.052977][ T6958]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  121.052999][ T6958]  ? do_syscall_64+0x100/0x230
[  121.053018][ T6958]  ? do_syscall_64+0xb6/0x230
[  121.053035][ T6958]  do_syscall_64+0xf3/0x230
[  121.053051][ T6958]  ? clear_bhb_loop+0x35/0x90
[  121.053072][ T6958]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.053088][ T6958] RIP: 0033:0x7f2288d8cd29
[  121.053104][ T6958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.053117][ T6958] RSP: 002b:00007f2289b85038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.053135][ T6958] RAX: ffffffffffffffda RBX: 00007f2288fa5fa0 RCX: 00007f2288d8cd29
[  121.053144][ T6958] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  121.053152][ T6958] RBP: 00007f2289b85090 R08: 0000000000000000 R09: 0000000000000000
[  121.053162][ T6958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.053171][ T6958] R13: 0000000000000000 R14: 00007f2288fa5fa0 R15: 00007ffdd0c89518
[  121.053193][ T6958]  </TASK>
[  121.748400][ T6977] netlink: 60 bytes leftover after parsing attributes in process `syz.1.331'.
[  121.781925][ T6973] netlink: 60 bytes leftover after parsing attributes in process `syz.1.331'.
[  121.805806][ T6973] IPv6: Can't replace route, no match found
[  121.927977][ T6986] netlink: 12 bytes leftover after parsing attributes in process `syz.0.334'.
[  121.950991][ T6981] syzkaller0: entered promiscuous mode
[  122.004800][ T6981] syzkaller0: entered allmulticast mode
[  124.683405][ T7031] sock: sock_timestamping_bind_phc: sock not bind to device
[  125.134246][ T7054] netlink: 'syz.4.352': attribute type 1 has an invalid length.
[  125.269620][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.4.354'.
[  125.576222][ T7062] syzkaller0: entered promiscuous mode
[  125.622722][ T7062] syzkaller0: entered allmulticast mode
[  125.703091][ T7062] netlink: 12 bytes leftover after parsing attributes in process `syz.4.356'.
[  126.878382][ T7083] netlink: 24 bytes leftover after parsing attributes in process `syz.1.362'.
[  128.458708][ T7088] x_tables: duplicate underflow at hook 4
[  128.473038][ T7091] FAULT_INJECTION: forcing a failure.
[  128.473038][ T7091] name failslab, interval 1, probability 0, space 0, times 0
[  128.527111][ T7091] CPU: 0 UID: 0 PID: 7091 Comm: syz.2.365 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  128.527140][ T7091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  128.527150][ T7091] Call Trace:
[  128.527157][ T7091]  <TASK>
[  128.527181][ T7091]  dump_stack_lvl+0x241/0x360
[  128.527214][ T7091]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.527236][ T7091]  ? __pfx__printk+0x10/0x10
[  128.527260][ T7091]  ? __kmalloc_node_noprof+0xb9/0x4d0
[  128.527289][ T7091]  ? __pfx___might_resched+0x10/0x10
[  128.527307][ T7091]  ? vsnprintf+0x1152/0x1220
[  128.527338][ T7091]  should_fail_ex+0x3b0/0x4e0
[  128.527360][ T7091]  should_failslab+0xac/0x100
[  128.527383][ T7091]  __kmalloc_node_noprof+0xe1/0x4d0
[  128.527403][ T7091]  ? __kvmalloc_node_noprof+0x72/0x190
[  128.527422][ T7091]  ? __pfx_macvlan_setup+0x10/0x10
[  128.527445][ T7091]  __kvmalloc_node_noprof+0x72/0x190
[  128.527463][ T7091]  alloc_netdev_mqs+0xa4/0x1110
[  128.527483][ T7091]  ? __pfx_macvlan_setup+0x10/0x10
[  128.527500][ T7091]  ? __pfx_snprintf+0x10/0x10
[  128.527516][ T7091]  ? rcu_is_watching+0x15/0xb0
[  128.527542][ T7091]  rtnl_create_link+0x2f9/0xc20
[  128.527568][ T7091]  rtnl_newlink_create+0x210/0xa40
[  128.527596][ T7091]  ? __pfx___mutex_lock+0x10/0x10
[  128.527620][ T7091]  ? __pfx_rtnl_newlink_create+0x10/0x10
[  128.527647][ T7091]  ? ns_capable+0x8a/0xf0
[  128.527668][ T7091]  rtnl_newlink+0x1c7e/0x2210
[  128.527703][ T7091]  ? __pfx_rtnl_newlink+0x10/0x10
[  128.527722][ T7091]  ? __netlink_deliver_tap+0x56b/0x7f0
[  128.527741][ T7091]  ? __pfx_validate_chain+0x10/0x10
[  128.527762][ T7091]  ? __sock_sendmsg+0x221/0x270
[  128.527783][ T7091]  ? ____sys_sendmsg+0x52a/0x7e0
[  128.527799][ T7091]  ? __sys_sendmsg+0x269/0x350
[  128.527814][ T7091]  ? do_syscall_64+0xf3/0x230
[  128.527829][ T7091]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.527867][ T7091]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  128.527890][ T7091]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  128.527918][ T7091]  ? mark_lock+0x9a/0x360
[  128.527942][ T7091]  ? __lock_acquire+0x1397/0x2100
[  128.528015][ T7091]  ? __pfx_lock_release+0x10/0x10
[  128.528048][ T7091]  ? __pfx_rtnl_newlink+0x10/0x10
[  128.528070][ T7091]  rtnetlink_rcv_msg+0x791/0xcf0
[  128.528087][ T7091]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[  128.528112][ T7091]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  128.528139][ T7091]  ? ref_tracker_free+0x643/0x7e0
[  128.528163][ T7091]  netlink_rcv_skb+0x1e3/0x430
[  128.528182][ T7091]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  128.528204][ T7091]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  128.528250][ T7091]  ? netlink_deliver_tap+0x2e/0x1b0
[  128.528271][ T7091]  netlink_unicast+0x7f6/0x990
[  128.528296][ T7091]  ? __pfx_netlink_unicast+0x10/0x10
[  128.528315][ T7091]  ? __virt_addr_valid+0x45f/0x530
[  128.528344][ T7091]  ? __phys_addr_symbol+0x2f/0x70
[  128.528363][ T7091]  ? __check_object_size+0x47a/0x730
[  128.528390][ T7091]  netlink_sendmsg+0x8e4/0xcb0
[  128.528420][ T7091]  ? __pfx_netlink_sendmsg+0x10/0x10
[  128.528442][ T7091]  ? aa_sock_msg_perm+0x91/0x160
[  128.528467][ T7091]  ? __pfx_netlink_sendmsg+0x10/0x10
[  128.528483][ T7091]  __sock_sendmsg+0x221/0x270
[  128.528506][ T7091]  ____sys_sendmsg+0x52a/0x7e0
[  128.528533][ T7091]  ? __pfx_____sys_sendmsg+0x10/0x10
[  128.528548][ T7091]  ? __fget_files+0x2a/0x410
[  128.528569][ T7091]  ? __fget_files+0x2a/0x410
[  128.528594][ T7091]  __sys_sendmsg+0x269/0x350
[  128.528614][ T7091]  ? __pfx___sys_sendmsg+0x10/0x10
[  128.528639][ T7091]  ? do_sys_openat2+0x17a/0x1d0
[  128.528686][ T7091]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  128.528704][ T7091]  ? do_syscall_64+0x100/0x230
[  128.528719][ T7091]  ? do_syscall_64+0xb6/0x230
[  128.528751][ T7091]  do_syscall_64+0xf3/0x230
[  128.528762][ T7091]  ? clear_bhb_loop+0x35/0x90
[  128.528780][ T7091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  128.528795][ T7091] RIP: 0033:0x7fe26e58cd29
[  128.528810][ T7091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  128.528823][ T7091] RSP: 002b:00007fe26f33d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  128.528841][ T7091] RAX: ffffffffffffffda RBX: 00007fe26e7a5fa0 RCX: 00007fe26e58cd29
[  128.528851][ T7091] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000003
[  128.528860][ T7091] RBP: 00007fe26f33d090 R08: 0000000000000000 R09: 0000000000000000
[  128.528870][ T7091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  128.528878][ T7091] R13: 0000000000000000 R14: 00007fe26e7a5fa0 R15: 00007fff7ef7a578
[  128.528904][ T7091]  </TASK>
[  129.213818][ T7097] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.222850][ T7097] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.306419][ T7117] netlink: 24 bytes leftover after parsing attributes in process `syz.2.374'.
[  129.415206][ T7097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.472524][ T7097] batadv_slave_1: left promiscuous mode
[  129.644120][ T7123] netlink: 8 bytes leftover after parsing attributes in process `syz.0.375'.
[  129.661776][ T7097] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  129.670745][ T7097] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  129.713540][ T7097] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  129.731278][ T7097] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  130.148606][ T7132] netlink: 4 bytes leftover after parsing attributes in process `syz.4.380'.
[  130.267148][ T7136] netlink: 12 bytes leftover after parsing attributes in process `syz.2.377'.
[  130.306110][ T7141] netlink: 16 bytes leftover after parsing attributes in process `syz.0.383'.
[  130.345743][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.383'.
[  130.352507][ T7143] netlink: 64 bytes leftover after parsing attributes in process `syz.2.377'.
[  130.373557][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.383'.
[  130.385167][ T7143] nbd: must specify at least one socket
[  130.404600][ T7128] syzkaller0: entered promiscuous mode
[  130.420532][ T7128] syzkaller0: entered allmulticast mode
[  130.444170][ T7150] tipc: Started in network mode
[  130.450496][ T7150] tipc: Node identity 3a29a4267117, cluster identity 4711
[  130.462062][ T7141] netlink: 4 bytes leftover after parsing attributes in process `syz.0.383'.
[  130.471690][ T7150] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  130.479971][ T7142] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  131.585621][   T25] tipc: Node number set to 1262396454
[  132.455697][ T7138] syzkaller0: entered promiscuous mode
[  132.464376][ T7138] syzkaller0: entered allmulticast mode
[  132.470694][ T7138] tipc: Resetting bearer <eth:syzkaller0>
[  132.558951][ T7142] syzkaller0: entered promiscuous mode
[  132.572530][ T7142] syzkaller0: entered allmulticast mode
[  132.585826][ T7142] tipc: Resetting bearer <eth:syzkaller0>
[  132.766635][   T12] tipc: Resetting bearer <eth:syzkaller0>
[  132.863463][   T12] tipc: Resetting bearer <eth:syzkaller0>
[  132.870048][ T7137] tipc: Resetting bearer <eth:syzkaller0>
[  134.775874][ T7137] tipc: Disabling bearer <eth:syzkaller0>
[  134.787043][ T7139] tipc: Resetting bearer <eth:syzkaller0>
[  135.197791][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  135.208666][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  136.307624][ T7139] tipc: Disabling bearer <eth:syzkaller0>
[  136.320171][ T7172] __nla_validate_parse: 4 callbacks suppressed
[  136.320229][ T7172] netlink: 830 bytes leftover after parsing attributes in process `syz.0.389'.
[  136.396022][ T7178] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.609291][ T7178] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.788488][ T7178] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  136.830552][ T7211] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  136.928689][ T7178] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.103735][ T7219] netlink: 24 bytes leftover after parsing attributes in process `syz.3.401'.
[  137.105994][ T7178] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  137.159143][ T7178] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  137.188064][ T7178] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  137.217789][ T7178] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  137.660841][ T7228] netlink: 830 bytes leftover after parsing attributes in process `syz.2.405'.
[  137.730853][ T7230] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  137.857769][ T7230] syzkaller0: entered promiscuous mode
[  137.921355][ T7230] syzkaller0: entered allmulticast mode
[  137.931057][ T7230] tipc: Resetting bearer <eth:syzkaller0>
[  137.967018][ T7227] tipc: Resetting bearer <eth:syzkaller0>
[  140.118291][ T7227] tipc: Disabling bearer <eth:syzkaller0>
[  140.268428][ T7255] hsr0: entered promiscuous mode
[  140.283819][ T7255] hsr_slave_0: left promiscuous mode
[  140.304604][ T7255] hsr_slave_1: left promiscuous mode
[  140.330970][ T7257] x_tables: duplicate underflow at hook 4
[  140.340176][ T7260] openvswitch: netlink: Flow key attr not present in new flow.
[  140.418429][ T7255] hsr0 (unregistering): left promiscuous mode
[  140.473989][ T7262] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.535237][ T7266] netlink: 830 bytes leftover after parsing attributes in process `syz.3.418'.
[  140.581799][ T7262] IPVS: Error connecting to the multicast addr
[  140.865698][ T7273] mac80211_hwsim hwsim3 syzkaller0: entered promiscuous mode
[  140.885377][ T7273] mac80211_hwsim hwsim3 syzkaller0: entered allmulticast mode
[  140.913523][ T7273] netlink: 12 bytes leftover after parsing attributes in process `syz.0.420'.
[  140.929224][ T7273] netlink: 52 bytes leftover after parsing attributes in process `syz.0.420'.
[  140.938873][ T7273] nbd: must specify at least one socket
[  141.305411][ T7289] netlink: 'syz.0.424': attribute type 1 has an invalid length.
[  141.384830][ T7289] netlink: 224 bytes leftover after parsing attributes in process `syz.0.424'.
[  142.279085][ T7312] netlink: 830 bytes leftover after parsing attributes in process `syz.2.429'.
[  142.470802][ T7315] netlink: 24 bytes leftover after parsing attributes in process `syz.2.430'.
[  142.513049][ T7317] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  142.522472][ T7317] netlink: 'syz.1.431': attribute type 21 has an invalid length.
[  142.530255][ T7317] netlink: 128 bytes leftover after parsing attributes in process `syz.1.431'.
[  142.556916][ T7320] netlink: 8 bytes leftover after parsing attributes in process `syz.3.433'.
[  142.570356][ T7317] netlink: 3 bytes leftover after parsing attributes in process `syz.1.431'.
[  142.600343][ T7321] x_tables: duplicate underflow at hook 4
[  142.885163][ T7335] netlink: 12 bytes leftover after parsing attributes in process `syz.4.434'.
[  142.898786][ T7326] syzkaller0: entered promiscuous mode
[  142.918818][ T7326] syzkaller0: entered allmulticast mode
[  142.936495][ T7337] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  142.971266][ T7326] netlink: 52 bytes leftover after parsing attributes in process `syz.4.434'.
[  143.007173][ T7326] nbd: must specify at least one socket
[  143.028997][ T7343] netlink: 830 bytes leftover after parsing attributes in process `syz.0.440'.
[  144.834798][ T7357] netlink: 8 bytes leftover after parsing attributes in process `syz.3.445'.
[  144.891860][ T7358] trusted_key: syz.0.442 sent an empty control message without MSG_MORE.
[  144.978275][ T7364] tipc: Started in network mode
[  144.985059][ T7364] tipc: Node identity , cluster identity 4711
[  144.991400][ T7364] tipc: Failed to obtain node identity
[  144.997154][ T7364] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  145.009271][ T7366] FAULT_INJECTION: forcing a failure.
[  145.009271][ T7366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  145.023408][ T7366] CPU: 0 UID: 0 PID: 7366 Comm: syz.3.447 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  145.023433][ T7366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  145.023442][ T7366] Call Trace:
[  145.023449][ T7366]  <TASK>
[  145.023455][ T7366]  dump_stack_lvl+0x241/0x360
[  145.023492][ T7366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.023514][ T7366]  ? __pfx__printk+0x10/0x10
[  145.023540][ T7366]  ? snprintf+0xda/0x120
[  145.023564][ T7366]  should_fail_ex+0x3b0/0x4e0
[  145.023602][ T7366]  _copy_to_user+0x31/0xb0
[  145.023627][ T7366]  simple_read_from_buffer+0xca/0x150
[  145.023654][ T7366]  proc_fail_nth_read+0x1e9/0x250
[  145.023678][ T7366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  145.023701][ T7366]  ? rw_verify_area+0x55e/0x6f0
[  145.023718][ T7366]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  145.023737][ T7366]  vfs_read+0x1fc/0xb70
[  145.023751][ T7366]  ? fdget_pos+0x254/0x320
[  145.023772][ T7366]  ? __pfx___mutex_lock+0x10/0x10
[  145.023794][ T7366]  ? __pfx_vfs_read+0x10/0x10
[  145.023807][ T7366]  ? do_sys_openat2+0x17a/0x1d0
[  145.023830][ T7366]  ? __fget_files+0x2a/0x410
[  145.023852][ T7366]  ? __fget_files+0x395/0x410
[  145.023871][ T7366]  ? __fget_files+0x2a/0x410
[  145.023899][ T7366]  ksys_read+0x18f/0x2b0
[  145.023918][ T7366]  ? __pfx_ksys_read+0x10/0x10
[  145.023935][ T7366]  ? do_syscall_64+0x100/0x230
[  145.023954][ T7366]  ? do_syscall_64+0xb6/0x230
[  145.023970][ T7366]  do_syscall_64+0xf3/0x230
[  145.023985][ T7366]  ? clear_bhb_loop+0x35/0x90
[  145.024007][ T7366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.024023][ T7366] RIP: 0033:0x7f444898b73c
[  145.024048][ T7366] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  145.024061][ T7366] RSP: 002b:00007f44497fa030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  145.024079][ T7366] RAX: ffffffffffffffda RBX: 00007f4448ba5fa0 RCX: 00007f444898b73c
[  145.024090][ T7366] RDX: 000000000000000f RSI: 00007f44497fa0a0 RDI: 0000000000000004
[  145.024100][ T7366] RBP: 00007f44497fa090 R08: 0000000000000000 R09: 0000000000000000
[  145.024110][ T7366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  145.024126][ T7366] R13: 0000000000000000 R14: 00007f4448ba5fa0 R15: 00007fff7c7b7a68
[  145.024153][ T7366]  </TASK>
[  145.778873][ T7380] mac80211_hwsim hwsim10 syzkaller0: entered promiscuous mode
[  145.799548][ T7380] mac80211_hwsim hwsim10 syzkaller0: entered allmulticast mode
[  145.827188][ T1161] ------------[ cut here ]------------
[  145.833150][ T1161] Invalid VIF (ffff8880310b29d0) magic 0x0, 08:02:11:00:00:01, 3/0
[  145.842137][ T1161] WARNING: CPU: 1 PID: 1161 at drivers/net/wireless/virtual/mac80211_hwsim.c:237 mac80211_hwsim_tx+0x1b6f/0x23c0
[  145.854190][ T1161] Modules linked in:
[  145.858154][ T1161] CPU: 1 UID: 0 PID: 1161 Comm: kworker/u8:7 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  145.868774][ T1161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  145.878945][ T1161] Workqueue: ipv6_addrconf addrconf_dad_work
[  145.885080][ T1161] RIP: 0010:mac80211_hwsim_tx+0x1b6f/0x23c0
[  145.891036][ T1161] Code: 28 84 c0 0f 85 06 08 00 00 45 0f b6 8e 61 04 00 00 48 c7 c7 e0 d4 a9 8c 4c 89 f6 44 89 e2 48 89 e9 41 89 d8 e8 42 d1 49 fa 90 <0f> 0b 90 90 e9 69 f2 ff ff e8 53 1e 89 fa 90 0f 0b 90 e9 d5 f2 ff
[  145.910771][ T1161] RSP: 0018:ffffc90004016ab0 EFLAGS: 00010246
[  145.916966][ T1161] RAX: e4e7354396486f00 RBX: 0000000000000003 RCX: ffff88802748bc00
[  145.925056][ T1161] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  145.933114][ T1161] RBP: ffff8880310b2e2a R08: ffffffff81603132 R09: 1ffff110170e519a
[  145.941212][ T1161] R10: dffffc0000000000 R11: ffffed10170e519b R12: 0000000000000000
[  145.949250][ T1161] R13: dffffc0000000000 R14: ffff8880310b29d0 R15: 0000000000000000
[  145.957332][ T1161] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  145.966354][ T1161] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  145.973044][ T1161] CR2: 00005555903a35c8 CR3: 0000000029a7a000 CR4: 00000000003526f0
[  145.981080][ T1161] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  145.989197][ T1161] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  145.997274][ T1161] Call Trace:
[  146.000603][ T1161]  <TASK>
[  146.003622][ T1161]  ? __warn+0x165/0x4d0
[  146.007830][ T1161]  ? mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.013326][ T1161]  ? report_bug+0x2b3/0x500
[  146.017900][ T1161]  ? mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.023370][ T1161]  ? handle_bug+0x60/0x90
[  146.027746][ T1161]  ? exc_invalid_op+0x1a/0x50
[  146.032584][ T1161]  ? asm_exc_invalid_op+0x1a/0x20
[  146.037678][ T1161]  ? __warn_printk+0x292/0x360
[  146.042625][ T1161]  ? mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.047995][ T1161]  ieee80211_handle_wake_tx_queue+0x1ae/0x2d0
[  146.054253][ T1161]  ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10
[  146.060898][ T1161]  ? ieee80211_queue_skb+0x18b6/0x24b0
[  146.066555][ T1161]  ? do_raw_spin_unlock+0x13c/0x8b0
[  146.071951][ T1161]  ieee80211_queue_skb+0x1ae9/0x24b0
[  146.077335][ T1161]  ieee80211_tx+0x2c4/0x470
[  146.082032][ T1161]  ? __pfx_ieee80211_tx+0x10/0x10
[  146.087136][ T1161]  ? ieee80211_xmit+0x30f/0x3f0
[  146.092194][ T1161]  __ieee80211_subif_start_xmit+0xe93/0x1600
[  146.098234][ T1161]  ? ip6_finish_output2+0x12ad/0x1780
[  146.103791][ T1161]  ? ip6_finish_output+0x41e/0x840
[  146.108977][ T1161]  ? __ieee80211_subif_start_xmit+0x300/0x1600
[  146.115309][ T1161]  ? __pfx___ieee80211_subif_start_xmit+0x10/0x10
[  146.121903][ T1161]  ? __lock_acquire+0x1397/0x2100
[  146.126997][ T1161]  ieee80211_subif_start_xmit+0xde/0x4d0
[  146.132836][ T1161]  ? __pfx_ieee80211_subif_start_xmit+0x10/0x10
[  146.139168][ T1161]  ? __pfx_lock_acquire+0x10/0x10
[  146.144397][ T1161]  dev_hard_start_xmit+0x27a/0x7d0
[  146.149599][ T1161]  __dev_queue_xmit+0x1b73/0x3f50
[  146.154833][ T1161]  ? __dev_queue_xmit+0x2f4/0x3f50
[  146.160021][ T1161]  ? __pfx___dev_queue_xmit+0x10/0x10
[  146.165587][ T1161]  ? neigh_resolve_output+0x450/0x740
[  146.171014][ T1161]  ? read_seqbegin+0x15a/0x2c0
[  146.175976][ T1161]  ? lockdep_hardirqs_on+0x99/0x150
[  146.181316][ T1161]  ? read_seqbegin+0x200/0x2c0
[  146.186138][ T1161]  ? __pfx_read_seqbegin+0x10/0x10
[  146.191356][ T1161]  ? neigh_resolve_output+0x2e5/0x740
[  146.196785][ T1161]  ? eth_header+0x11c/0x1f0
[  146.201401][ T1161]  ? __asan_memcpy+0x40/0x70
[  146.206049][ T1161]  ? eth_header+0x11c/0x1f0
[  146.210588][ T1161]  ? __pfx_eth_header+0x10/0x10
[  146.215551][ T1161]  ? neigh_resolve_output+0x61f/0x740
[  146.220998][ T1161]  ip6_finish_output2+0x12ad/0x1780
[  146.226333][ T1161]  ? ip6_finish_output2+0x61d/0x1780
[  146.231724][ T1161]  ? __pfx_ip6_finish_output2+0x10/0x10
[  146.237385][ T1161]  ? ip6_mtu+0x81/0x3f0
[  146.241666][ T1161]  ip6_finish_output+0x41e/0x840
[  146.246682][ T1161]  ndisc_send_skb+0xb30/0x1450
[  146.251587][ T1161]  ? ndisc_send_skb+0x563/0x1450
[  146.256678][ T1161]  ? __pfx_ndisc_send_skb+0x10/0x10
[  146.261985][ T1161]  ? __pfx_dst_output+0x10/0x10
[  146.266901][ T1161]  ? skb_set_owner_w+0x246/0x380
[  146.271963][ T1161]  ? ndisc_send_rs+0x536/0x6c0
[  146.276803][ T1161]  addrconf_dad_completed+0x76c/0xcd0
[  146.282299][ T1161]  ? __pfx_addrconf_dad_completed+0x10/0x10
[  146.288246][ T1161]  addrconf_dad_work+0xdbc/0x16a0
[  146.293376][ T1161]  ? __pfx_addrconf_dad_work+0x10/0x10
[  146.298887][ T1161]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  146.305370][ T1161]  ? process_scheduled_works+0x976/0x1840
[  146.311216][ T1161]  process_scheduled_works+0xa66/0x1840
[  146.316860][ T1161]  ? __pfx_process_scheduled_works+0x10/0x10
[  146.322959][ T1161]  ? assign_work+0x364/0x3d0
[  146.327607][ T1161]  worker_thread+0x870/0xd30
[  146.332344][ T1161]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  146.338319][ T1161]  ? __kthread_parkme+0x169/0x1d0
[  146.343487][ T1161]  ? __pfx_worker_thread+0x10/0x10
[  146.348653][ T1161]  kthread+0x7a9/0x920
[  146.352844][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.357487][ T1161]  ? __pfx_worker_thread+0x10/0x10
[  146.362711][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.367351][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.372054][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.376687][ T1161]  ? _raw_spin_unlock_irq+0x23/0x50
[  146.381989][ T1161]  ? lockdep_hardirqs_on+0x99/0x150
[  146.387235][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.391940][ T1161]  ret_from_fork+0x4b/0x80
[  146.396400][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.401046][ T1161]  ret_from_fork_asm+0x1a/0x30
[  146.405962][ T1161]  </TASK>
[  146.409023][ T1161] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  146.416336][ T1161] CPU: 1 UID: 0 PID: 1161 Comm: kworker/u8:7 Not tainted 6.13.0-syzkaller-04046-g0ad9617c78ac #0
[  146.426869][ T1161] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  146.436974][ T1161] Workqueue: ipv6_addrconf addrconf_dad_work
[  146.443015][ T1161] Call Trace:
[  146.446334][ T1161]  <TASK>
[  146.449295][ T1161]  dump_stack_lvl+0x241/0x360
[  146.454040][ T1161]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.459305][ T1161]  ? __pfx__printk+0x10/0x10
[  146.463912][ T1161]  ? vscnprintf+0x5d/0x90
[  146.468344][ T1161]  panic+0x349/0x880
[  146.472250][ T1161]  ? __warn+0x174/0x4d0
[  146.476850][ T1161]  ? __pfx_panic+0x10/0x10
[  146.481290][ T1161]  ? ret_from_fork_asm+0x1a/0x30
[  146.486241][ T1161]  __warn+0x344/0x4d0
[  146.490231][ T1161]  ? mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.495535][ T1161]  report_bug+0x2b3/0x500
[  146.499880][ T1161]  ? mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.505179][ T1161]  handle_bug+0x60/0x90
[  146.509347][ T1161]  exc_invalid_op+0x1a/0x50
[  146.513860][ T1161]  asm_exc_invalid_op+0x1a/0x20
[  146.518725][ T1161] RIP: 0010:mac80211_hwsim_tx+0x1b6f/0x23c0
[  146.524637][ T1161] Code: 28 84 c0 0f 85 06 08 00 00 45 0f b6 8e 61 04 00 00 48 c7 c7 e0 d4 a9 8c 4c 89 f6 44 89 e2 48 89 e9 41 89 d8 e8 42 d1 49 fa 90 <0f> 0b 90 90 e9 69 f2 ff ff e8 53 1e 89 fa 90 0f 0b 90 e9 d5 f2 ff
[  146.544260][ T1161] RSP: 0018:ffffc90004016ab0 EFLAGS: 00010246
[  146.550341][ T1161] RAX: e4e7354396486f00 RBX: 0000000000000003 RCX: ffff88802748bc00
[  146.558322][ T1161] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  146.566301][ T1161] RBP: ffff8880310b2e2a R08: ffffffff81603132 R09: 1ffff110170e519a
[  146.574281][ T1161] R10: dffffc0000000000 R11: ffffed10170e519b R12: 0000000000000000
[  146.582258][ T1161] R13: dffffc0000000000 R14: ffff8880310b29d0 R15: 0000000000000000
[  146.590252][ T1161]  ? __warn_printk+0x292/0x360
[  146.595082][ T1161]  ieee80211_handle_wake_tx_queue+0x1ae/0x2d0
[  146.601174][ T1161]  ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10
[  146.607776][ T1161]  ? ieee80211_queue_skb+0x18b6/0x24b0
[  146.613246][ T1161]  ? do_raw_spin_unlock+0x13c/0x8b0
[  146.618465][ T1161]  ieee80211_queue_skb+0x1ae9/0x24b0
[  146.623785][ T1161]  ieee80211_tx+0x2c4/0x470
[  146.628299][ T1161]  ? __pfx_ieee80211_tx+0x10/0x10
[  146.633357][ T1161]  ? ieee80211_xmit+0x30f/0x3f0
[  146.638226][ T1161]  __ieee80211_subif_start_xmit+0xe93/0x1600
[  146.644219][ T1161]  ? ip6_finish_output2+0x12ad/0x1780
[  146.649609][ T1161]  ? ip6_finish_output+0x41e/0x840
[  146.654746][ T1161]  ? __ieee80211_subif_start_xmit+0x300/0x1600
[  146.660916][ T1161]  ? __pfx___ieee80211_subif_start_xmit+0x10/0x10
[  146.667349][ T1161]  ? __lock_acquire+0x1397/0x2100
[  146.672394][ T1161]  ieee80211_subif_start_xmit+0xde/0x4d0
[  146.678050][ T1161]  ? __pfx_ieee80211_subif_start_xmit+0x10/0x10
[  146.684312][ T1161]  ? __pfx_lock_acquire+0x10/0x10
[  146.689364][ T1161]  dev_hard_start_xmit+0x27a/0x7d0
[  146.694507][ T1161]  __dev_queue_xmit+0x1b73/0x3f50
[  146.699555][ T1161]  ? __dev_queue_xmit+0x2f4/0x3f50
[  146.704687][ T1161]  ? __pfx___dev_queue_xmit+0x10/0x10
[  146.710073][ T1161]  ? neigh_resolve_output+0x450/0x740
[  146.715463][ T1161]  ? read_seqbegin+0x15a/0x2c0
[  146.720256][ T1161]  ? lockdep_hardirqs_on+0x99/0x150
[  146.725473][ T1161]  ? read_seqbegin+0x200/0x2c0
[  146.730288][ T1161]  ? __pfx_read_seqbegin+0x10/0x10
[  146.735419][ T1161]  ? neigh_resolve_output+0x2e5/0x740
[  146.740803][ T1161]  ? eth_header+0x11c/0x1f0
[  146.745337][ T1161]  ? __asan_memcpy+0x40/0x70
[  146.749950][ T1161]  ? eth_header+0x11c/0x1f0
[  146.754485][ T1161]  ? __pfx_eth_header+0x10/0x10
[  146.759343][ T1161]  ? neigh_resolve_output+0x61f/0x740
[  146.764752][ T1161]  ip6_finish_output2+0x12ad/0x1780
[  146.769968][ T1161]  ? ip6_finish_output2+0x61d/0x1780
[  146.775265][ T1161]  ? __pfx_ip6_finish_output2+0x10/0x10
[  146.780830][ T1161]  ? ip6_mtu+0x81/0x3f0
[  146.785020][ T1161]  ip6_finish_output+0x41e/0x840
[  146.789974][ T1161]  ndisc_send_skb+0xb30/0x1450
[  146.794757][ T1161]  ? ndisc_send_skb+0x563/0x1450
[  146.799717][ T1161]  ? __pfx_ndisc_send_skb+0x10/0x10
[  146.804933][ T1161]  ? __pfx_dst_output+0x10/0x10
[  146.809793][ T1161]  ? skb_set_owner_w+0x246/0x380
[  146.814754][ T1161]  ? ndisc_send_rs+0x536/0x6c0
[  146.819552][ T1161]  addrconf_dad_completed+0x76c/0xcd0
[  146.824941][ T1161]  ? __pfx_addrconf_dad_completed+0x10/0x10
[  146.830855][ T1161]  addrconf_dad_work+0xdbc/0x16a0
[  146.835898][ T1161]  ? __pfx_addrconf_dad_work+0x10/0x10
[  146.841363][ T1161]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  146.847717][ T1161]  ? process_scheduled_works+0x976/0x1840
[  146.853452][ T1161]  process_scheduled_works+0xa66/0x1840
[  146.859035][ T1161]  ? __pfx_process_scheduled_works+0x10/0x10
[  146.865078][ T1161]  ? assign_work+0x364/0x3d0
[  146.869719][ T1161]  worker_thread+0x870/0xd30
[  146.874337][ T1161]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  146.880262][ T1161]  ? __kthread_parkme+0x169/0x1d0
[  146.885302][ T1161]  ? __pfx_worker_thread+0x10/0x10
[  146.890423][ T1161]  kthread+0x7a9/0x920
[  146.894498][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.899099][ T1161]  ? __pfx_worker_thread+0x10/0x10
[  146.904219][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.908816][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.913417][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.918017][ T1161]  ? _raw_spin_unlock_irq+0x23/0x50
[  146.923229][ T1161]  ? lockdep_hardirqs_on+0x99/0x150
[  146.928440][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.933044][ T1161]  ret_from_fork+0x4b/0x80
[  146.937473][ T1161]  ? __pfx_kthread+0x10/0x10
[  146.942093][ T1161]  ret_from_fork_asm+0x1a/0x30
[  146.946881][ T1161]  </TASK>
[  146.950193][ T1161] Kernel Offset: disabled
[  146.954661][ T1161] Rebooting in 86400 seconds..