last executing test programs:

1.351266519s ago: executing program 3 (id=1293):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
socket$netlink(0x10, 0x3, 0x8)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0) (async)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6(0xa, 0x2, 0x0) (async)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
connect$inet6(r3, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @private0, 0x4}, 0x1c) (async)
connect$inet6(r3, &(0x7f0000000600)={0x2, 0x4e23, 0x0, @private0, 0x4}, 0x1c)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0100000007000000612200000200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=r5, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r6, &(0x7f0000000400), &(0x7f00000004c0), 0x2}, 0x20)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x4e21, 0x4000000, @dev={0xfe, 0x80, '\x00', 0xa}, 0x2}, 0x1c) (async)
connect$inet6(r3, &(0x7f0000000100)={0xa, 0x4e21, 0x4000000, @dev={0xfe, 0x80, '\x00', 0xa}, 0x2}, 0x1c)
r7 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r7, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1) (async)
writev(r7, &(0x7f0000001200)=[{&(0x7f0000000080)}], 0x1)
socket$key(0xf, 0x3, 0x2)
sendmsg$NFNL_MSG_CTHELPER_NEW(r2, 0x0, 0x20000000)
unshare(0x22020400)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r8, 0x0, 0x2a, 0x0, 0x0)
setsockopt$inet_MCAST_MSFILTER(r8, 0x0, 0x30, &(0x7f00000000c0)=ANY=[], 0x510)
setsockopt$inet_group_source_req(r8, 0x0, 0x2b, &(0x7f00000004c0)={0x2, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @empty}}}, 0x108)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="14000000000000000000000001000000000000000000000010003ed1f3edd336be1900000b000000"], 0x28}, 0x0)
unshare(0x24020400) (async)
unshare(0x24020400)
r9 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_udp_int(r9, 0x11, 0x0, &(0x7f0000000300)=0x6, 0x4) (async)
setsockopt$inet_udp_int(r9, 0x11, 0x0, &(0x7f0000000300)=0x6, 0x4)
sendmsg$NFT_BATCH(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000024000000030a010200000000000000000100000004000c000900060a010400000000000000000100000008000b40000000000900010073797a300000000008000a4000000002140000001100010000000000000000000700000a"], 0x9c}, 0x1, 0x0, 0x0, 0x44840}, 0x0)
accept$packet(0xffffffffffffffff, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000003c0)=0x14)

1.192016564s ago: executing program 3 (id=1297):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000040)={0x24, r4, 0x200, 0x70bd24, 0x25dfdbfb, {}, [@NL80211_ATTR_WIPHY_RETRY_SHORT={0x5, 0x3d, 0x6}, @NL80211_ATTR_TXQ_MEMORY_LIMIT={0x8, 0x10b, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008091}, 0x20040000)
sendmsg$NL80211_CMD_SET_COALESCE(r3, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB], 0x28}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000002d80)={0x0, 0x0, &(0x7f0000002d40)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000000203010200000000000000000000000009000200000000470200000008000340000000000800010001"], 0x30}}, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000100)='blkio.reset_stats\x00', 0x2, 0x0)
write$cgroup_int(r7, &(0x7f0000000140)=0x3, 0x12)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000080)={0x0, 0x20, &(0x7f0000000040)={&(0x7f00000000c0)={0x20, 0x2, 0x3, 0x5, 0x0, 0x0, {0x5}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0x80010, 0x2}}]}, 0x20}, 0x1, 0x0, 0x0, 0x40049d1}, 0x4000000)
r8 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r8, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r8, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_int(r8, 0x0, 0x27, 0x0, 0x0)
r9 = syz_init_net_socket$llc(0x1a, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r10=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="100229bd7000fcdbdf254400000008000300", @ANYRES32=r10, @ANYBLOB="13520f0018b68001f798018ce08400249216ec004501e055a32abe7a277d1ff9fce74fefa066700c791c7c80e514f65bd103f009777f70dd1c7ae1d1e450b171efe4024872fe2a12b5e3bed2f688aa"], 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x40)
splice(r9, &(0x7f0000000040)=0x10001, r1, &(0x7f0000000080)=0x4, 0x2, 0x0)
setsockopt$netlink_NETLINK_CAP_ACK(r1, 0x10e, 0xa, &(0x7f0000000000)=0x7, 0x4)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=ANY=[@ANYBLOB="200800000500800000000800030001000000"], 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
r11 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r11, 0x1, 0x23, &(0x7f0000000000)=0x2, 0x4)
bind$inet(r11, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)
recvmmsg(r11, &(0x7f00000040c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000015c0)=""/127, 0x7f}}], 0x1, 0x0, 0x0)
sendto$inet(r11, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x2, 0x0, @loopback}, 0x10)

1.126226323s ago: executing program 1 (id=1299):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x104}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x8001}], 0x3, 0x4022, 0x0)

1.050655847s ago: executing program 1 (id=1301):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000fffb00ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmsg$key(r0, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000000000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x4000000)

994.144395ms ago: executing program 0 (id=1302):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000d000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="08002600ad16000040003300"], 0x68}}, 0x0)

952.752164ms ago: executing program 4 (id=1303):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0x1b000000}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}, @NFTA_SET_USERDATA={0x8, 0xd, 0x1, 0x0, "e771295c"}]}, @NFT_MSG_NEWSETELEM={0x30, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xbc}}, 0x0)

936.234365ms ago: executing program 2 (id=1304):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtaction={0x74, 0x30, 0xb, 0x0, 0x0, {}, [{0x60, 0x1, [@m_skbmod={0x5c, 0x1, 0x0, 0x0, {{0xb}, {0x32, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_ETYPE={0x6, 0x5, 0xffe4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)

882.213469ms ago: executing program 0 (id=1305):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0xfffffffffffffffe, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0xff80, 0x0, 0x0, 0x1, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@dev={0xac, 0x14, 0x14, 0x15}, 0x0, 0x3c}, 0x2, @in=@loopback, 0x6, 0x4, 0x3}]}]}, 0xfc}}, 0x0)

864.932296ms ago: executing program 1 (id=1306):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x10, &(0x7f00000003c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x1800, r0}}, {}, [@ldst={0x1, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffc0}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='syzkaller\x00', 0x6, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800}, 0x94)

821.803412ms ago: executing program 4 (id=1307):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x4, &(0x7f0000000500)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x50}], {0x95, 0x0, 0x0, 0x90ffffff}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

757.933103ms ago: executing program 3 (id=1308):
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) (async)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) (async)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r1, 0x6, 0x18, &(0x7f0000000280)=0x7, 0x4) (async, rerun: 64)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x20, 0x140d, 0x100, 0x70bd2c, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}]}, 0x20}, 0x1, 0x0, 0x0, 0x200048c4}, 0x42800) (async, rerun: 64)
sendmsg$IPCTNL_MSG_CT_GET_STATS(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x5, 0x1, 0x3, 0x0, 0x0, {0x3, 0x0, 0x3}}, 0x14}, 0x1, 0x0, 0x0, 0x48805}, 0x40) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x17, 0x0, 0x8400, 0x1, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r3, <r4=>0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r4, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000500)={<r6=>0x0, 0x8}, &(0x7f0000000540)=0x8)
setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r5, 0x84, 0x71, &(0x7f0000000580)={r6, 0x6}, 0x8) (async)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), r0) (async)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000340)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="34000000bb3f7804c98cb2b058222422e2f10d421850bfb33f85588e19fca075cffbea3f9c3108993735ea8bc306260dec4c96a6ebc8ddf0a3b530d8effabaf27d7c3f99b2da57bfa235b9111df39e43d24d82efdfc037d7e0f471673d0a2da5d2ff25a5dc982878b7a4ee17393707973833034ff8345f546d60348bc0b950c42241", @ANYRES16=r7, @ANYBLOB="040027bd7000fedbdf254400000008000300", @ANYRES32=r8, @ANYBLOB="0c009900000080040a0000000400cc0008006b0009000000"], 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x40000) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r2, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

745.574945ms ago: executing program 0 (id=1309):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000004180)={&(0x7f0000003100)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000800000000000000000000030000000005000000020000000600004ff6fc37000000000c03000000002e615f9b2e2e00"], 0x0, 0x44, 0x0, 0x1, 0x80000000}, 0x28)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000740)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000000000000000000001fe8000000000000000000000000000bb00000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000009a5ab6e10c00000000000000040000000000000000000000000000000000000000000000ffffffffffffffff000000000020000000000000000000000000000000000000000a000000000000feffffffff7f40000200000000000008000000000000000001000000000000004400050000000000000000000000000000000000000000003c00000002000000ffffffff00020000000000000000000006000000040100000000afe274d9da000000000000000000004c8a"], 0xfc}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r2 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000540)={'ip6gre0\x00', 0x0})
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f00000004c0)={'ip6tnl0\x00', 0x0})
sendmsg$DEVLINK_CMD_RATE_GET(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="000126bd7000fddbdf254a2500000800030000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x8090}, 0x41000)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbff, 0x1}, 0xc)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r5, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=ANY=[@ANYBLOB="5800000010001fff000000000100000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000300012800b00010067656e6576650000200002801400070000000000ffffffffffff00000000000105000c000100000008000a00", @ANYRES32=r5], 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x3a)
sendmmsg$inet6(r6, &(0x7f0000000800)=[{{&(0x7f0000000280)={0xa, 0x0, 0x0, @loopback={0x8d}, 0x4000000}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000140)="8000102e75", 0x5}, {&(0x7f0000000000)="b33461", 0x3}], 0x2, &(0x7f00000002c0)=ANY=[], 0x2}}], 0x1, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
r8 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r8)
getsockname$packet(r8, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
r9 = accept4$llc(r7, &(0x7f0000000200)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000300)=0x10, 0x80800)
bind$llc(r9, &(0x7f0000000340)={0x1a, 0x336, 0x6, 0x9, 0x4, 0x2, @broadcast}, 0x10)
ioctl$int_out(r7, 0x5460, &(0x7f0000000080))
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000040), &(0x7f0000000080)}, 0x20)

732.68892ms ago: executing program 2 (id=1310):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x2000000000000035, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x80000000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b00)={r1, 0x2000002, 0xf, 0x0, &(0x7f00000004c0)="0000019b0000006b944f947dd5da34", 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

662.195696ms ago: executing program 3 (id=1311):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x104}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x8001}, {{0x0, 0x0, 0x0}, 0x7ffffffd}], 0x4, 0x4022, 0x0)

661.865341ms ago: executing program 4 (id=1312):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x78, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}, @IPSET_ATTR_TYPENAME={0x30, 0x3, 'hash:ip,port\x00'}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x78}, 0x1, 0x0, 0x0, 0x4011}, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f00000006c0)=0x1, 0x4)
r2 = socket(0x2d, 0x2, 0x0)
ioctl$SIOCRSSL2CALL(r2, 0x89e2, &(0x7f0000000140)=@default)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000140)={0x0, <r3=>0x0}, &(0x7f0000000180)=0xc)
sendmsg$nl_generic(r2, &(0x7f0000000600)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200c1000}, 0xc, &(0x7f00000005c0)={&(0x7f00000001c0)={0x3fc, 0x12, 0x10, 0x70bd2c, 0x25dfdbfe, {0x18}, [@nested={0x21c, 0x2b, 0x0, 0x1, [@generic="fbc7a879557d4744177d715d16c2aac098f9f610ede8833593000255f66ed95e2386f5bb0ad98a453f5bc7a02ca89fc92a70dceaa5e1376abb30997f50d62a6fab8bd85a8a4d6a5fe1732f2435da2cbab37f50a15fae94d5c4d6fa4be84f1c8bcdc4fd1df19256070f0864b5690d7ae55644a9d0cd94cf8828786786df0343bfdbb93a44e745faeaaa365c46a99e96b8c7cec54455f2782623c5ce5e954c98dffc5a82c5fb3e9d034cc6d7a3c14195b15499efd864842a1f7dcf82a714bf48bd599668c3214b", @generic="33eca19eb244633ad7d57fd5b6fa42fa2e4f91de8d1b87a7a0bf728563690b45515fc3484542fdde99f89bc86e2b7e536a9f67b0d684bcc6d7af5777a33503475b1b857c7ab7e3a41433275c6e8a6579e50f95141d4b27519eb547ff8114c5504c9160a3fdc71d07dfd12eb33f2df6a5adcafa5470dc97ca2908cf7426edbed6356c4bea33d0928b45c557f063118b081c332545f8f148d360e3796ef9f0cb4f071a2faec9830d0a2ecdd4aeb5", @generic="c639e7d57ffe617a794029b2581f723467f908b5311fd7dddfc35e30f575c32ab02145f937da3ad2ef59534dd2fef1a812e3cc2a6d893f046367cc3b7481e173fa6a5ef6494f56e1f98ef99c08103a6add4636490298d58cfd25d706e18c0715b2544ae51e74f570f5628c4fed40aec94acca2bb94d39b4544ef02ee59d341ed7085d90bcf8e132766506757f5040d0da26e3ba2676b96920941e5c6a6e48d0ff6032847db"]}, @nested={0xb7, 0x141, 0x0, 0x1, [@typed={0x8, 0xc1, 0x0, 0x0, @u32=0x40}, @generic="0cd0c485af486cb5725e1e3a5dbc8871c1af539744283c2476a31eaec0993c9276f9cb5a34bf1ad537a82809797949e8f0b88942ca71d162f22e83cc525d109e8727a693ffead8ad39fafba36c67658f754828d15763e60beac2daa2cee649dee0a0ca63b63a4dab9a55573759d4561f25f18dba2390b802e1a7c2c8a35e", @typed={0x4, 0x111}, @typed={0x4, 0x1f}, @generic="3a8dc2748ec6420d1c01cc373d72f9fee87cd63bc33639b77ec714647397a862ee5374cff5"]}, @generic="2007c514461ba181e3ad173eb4eb821481dd904982fbea24c42dfbcc6330f1df92c0fc97a2db8b3fc0d485e465ef3b669c9ed00d540fef552f691d818c6f01bb240a132739dbc10aae5e7e4b11dae0f1b288dac56d5ef57d752b479c", @typed={0x8, 0x27, 0x0, 0x0, @uid=r3}, @nested={0x8, 0x54, 0x0, 0x1, [@typed={0x4, 0xc6}]}, @generic="6d67bbd56b0d1351d926d80cf8a998100f19d17daf732b10280e2ab1bd255d736b7f1a4f116ec5ee9d9dffb1f2acf6cae2d20c969e540386d0d52e0e19da215723be85526ad1a920dbb57db5adddc4a0acd9195659659f535124720292c4f6e75fb7f335c3b6a92a1c8986897cb9bc775763d3d0789378335d94455fc26ed01a71240a906af763dc3c10dbbdfbbc7e5f23c7938494c0b1c252d2d344bdf9f44515467cc14f80b0b5"]}, 0x3fc}}, 0x20000010)
getsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f0000000640)=0xc6, &(0x7f0000000680)=0x1)

640.169728ms ago: executing program 1 (id=1313):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000000)={'team0\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x2840, 0x2021}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001000010028bd07000000000000c3ff00", @ANYRES32=0x0, @ANYBLOB="211000000226000008001b00000000000500100005"], 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x4000000)

563.362271ms ago: executing program 2 (id=1314):
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r0, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='sched_process_wait\x00', r1}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r3, 0x0, 0x0, 0x0)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r2}, 0x8)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="85000000070000006a0a00ff000000000c00000000000000950000000000000018100000", @ANYRES32, @ANYBLOB="0000000000009500"/24], &(0x7f0000000140)='GPL\x00', 0x2, 0xffa0, &(0x7f0000000180)=""/149, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x1e, 0x10, 0x0, 0x1e}, 0x2d)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000002c0)={@ifindex, r5, 0x11, 0x0, 0x0, @void, @value=r4}, 0x20)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000000)=ANY=[], 0x10448)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r6, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f00000002c0)={@map, r5, 0xf3c5227cb953423c, 0x2010, 0x0, @value=r6}, 0x20)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(0x0, r7)
r8 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r8, <r9=>0xffffffffffffffff}, &(0x7f0000000200), &(0x7f00000005c0)='%pi6   \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000800)={r9, <r10=>0xffffffffffffffff}, 0x4)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x10, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000ffff0b867b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r10, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r11, 0x0, 0xe, 0x48000000, &(0x7f0000000300)="40f0538ef047b21fb60068305500", 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
socket$alg(0x26, 0x5, 0x0)
r12 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r13 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
listen(r13, 0x8)
getsockopt$IP6T_SO_GET_INFO(r13, 0x29, 0x40, &(0x7f0000000080)={'filter\x00', 0x0, [0x0, 0x52f7bad7, 0x8, 0xfffffff7, 0x2]}, &(0x7f0000000180)=0x54)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r12)
r14 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r14)

498.086597ms ago: executing program 4 (id=1315):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e000000020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmsg$key(r0, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002eb0e00000000030000000105000600200000000a00000040010000000500e50000070000001f00001a000000030000a95a6e870200010000e9ff070040000200000000050005000000cc580a"], 0x80}}, 0x4000000)

417.413609ms ago: executing program 4 (id=1316):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000ac0)={0x30, r1, 0x1, 0x0, 0x40000, {}, [@WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e21}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0xc4}, 0x20000010)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
ioctl$sock_ifreq(r2, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='gretap0\x00'})

408.638356ms ago: executing program 3 (id=1317):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x3a)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) (async)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_ro(r2, &(0x7f0000000380)='memory.stat\x00', 0x0, 0x0)
sendfile(r1, r3, 0x0, 0x400000013)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x600, 0x0, 0x0, 0x6}, [@IFLA_ADDRESS={0xa, 0x3, @random="08e7eebc872f"}, @IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}]}, 0x44}}, 0x0) (async)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x600, 0x0, 0x0, 0x6}, [@IFLA_ADDRESS={0xa, 0x3, @random="08e7eebc872f"}, @IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}]}, 0x44}}, 0x0)

290.1312ms ago: executing program 2 (id=1318):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xb, 0xc3072, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f00000010c0)="9c", 0x1}], 0x1, 0x6)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r3, &(0x7f0000003a80)={&(0x7f00000004c0)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0xb}, @multicast1}}}], 0x20}, 0x4008804) (async)
sendmsg$kcm(r3, &(0x7f0000000480)={&(0x7f00000002c0)=@l2tp={0x2, 0x0, @remote}, 0x80, &(0x7f0000000180)=[{&(0x7f0000002800)='2', 0x1}], 0x1}, 0x8400)
sendmsg$inet(r3, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0) (async, rerun: 64)
recvmsg(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f0000001800)=""/4096, 0x1000}], 0x1}, 0x40010040) (rerun: 64)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x3000001, 0x8c4b815a5465c2b1, r1, 0xec1b3000) (async, rerun: 32)
splice(r0, 0x0, r2, 0x0, 0x10d00, 0xf) (rerun: 32)

289.660424ms ago: executing program 1 (id=1319):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x4, &(0x7f0000000780)=@framed={{}, [@call={0x85, 0x0, 0x3002, 0x11}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

289.197086ms ago: executing program 0 (id=1320):
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb4, 0x7f}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f00000002c0)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r0}, @generic={0xf, 0x8}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_GET(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r2, 0x1, 0x0, 0xffffffff, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x16, 0x2, 'bridge0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004040}, 0x4044094)

213.841938ms ago: executing program 3 (id=1321):
pipe(0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x29}, 0x94)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f00000004c0)=[{&(0x7f0000001740)=""/12, 0xc}], 0x1, 0x4, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="b40800000000000073113300000000008510000002000000b7000000000000009500c200000000009500001200000000"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x70)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="557b000000000000280012800b00010067656e65766500001800028008000b40000000000600"], 0x48}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x15, &(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000140)="0d2192106b6324038a09815d5fd4e299f2ca374bf41b07b4c09a4fb89a0c2d1ca0dac314818e7e9f50fd8da639aaab3a86674e8719b9404aef7842672969589f92e51c71c3e9592e777647dce5c662773c262c624d3635c1d3c2e106cc6ec65ff23d3f4637cde68b1200020214cb093d3cb520048ef6", 0x76, 0x80, &(0x7f0000000240)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, 0x80000000}, 0x1c)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1e, 0x1, 0x0)
shutdown(r3, 0x2)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, 0x0, 0x8000)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
write(0xffffffffffffffff, 0x0, 0x0)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000009c0)='ns/ipc\x00')
vmsplice(r6, 0x0, 0x0, 0x4)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000001000)={@map, 0xffffffffffffffff, 0x25}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000007000000bca30000000000002403000020feffff620af0fff8ffffff71a4f2ff000000001f03000000000000e5000500000000002604fdffff02000014010000033800001d13f8ff000000007a0af0ff0000001f0f14000000000000b503f7fff80000009500000000000000033bc065b78111c6dfa041b63af4a3912435f1a864a7aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168e5181554a090f300020000fe275daf51efd601b6bf01c8e8b1b526375ee4dd6fcd82e4fee5bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e65440000000000000000028610643a98d9ec21ead2ed51b104d4d91af25b845b9f7d08d123deda88c658d42ecbf28bf7076c15b463bebc72f526dd70252e79166d858fcd0e06dd31af9612fa402d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff61623604000000000000006a89adaf17b0a6041bdeebdfd1f5089048ddff6da40f9411fe7226a40409d6e37c4f46756d31cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564163427afea62d84f3a10076443d643649393bf52d2105bd901128c7e0ec82701c8204a1deeed4155617572652d950ad31928b0b036dc2869f478341d02d0f5ad94b081fcd507acb4b9c67382f13d000000225d85ae49cee383dc5049076b98fb6853ab39a21514da60d2ae20cfb91d6a49964757cdf538f9ce2bdbb9893a5de817101a3062cd54f9ff51d355d84ce97bb0c6b6a595e487a2cc47c0efbb2d71cde2c10f0bc6980fe78683ac5c0c31032599dd273863be9261eee52216d009f4c52048ef8c126aeef5f510a8f1aded94a129e4aec6e8d9ab06faffc3a15d91c2ea3e2e04cfe031b287539d0540059fe6c7fe7cd8697502c7596566d674e425da5e7f009602a9f61d3804b3e0a1053abdc31282dfb15eb6841bb64a1b3045024a982f3c48153baae244e7bf573eac34b781337ad5905c6bbf1137548c7f1a4cad2422ee965a38f7defbd2960242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a90144022a579dfc0229cc0dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc48899b212c55318294270a1ad10c80fef7c24d47afcc829ba0f85da6d888f18ea40ab959f6074ab2a40d85d1501783a7ab540b8d7b4ead35a385e0b4a26b702396df7e0c1e02b88c114f244a9bf93f04bf072f0861f5c0b000000000000eedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba3401e6a52acb11883ad2a3b1832371fe5bc621426d1ed01b389708165b9cdbae2ed9dc7358f0ebadde0b727f27feeb7464dcd857ab15e355713767c536cbae2f5c7d951680f6f2f9a6a8346962a350845ffa0d82884f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010ae20e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00000000c95265b2bd83d64a532869d701723fedcbada1ee7baa19faf67256b56a41fd355b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b123145ab5703dad844ced301efeb6dc5f6a9037d2283c42efc54fa84323afc4c10eff462c8843187f1dd48ef0981000000000000ff0f40b1888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538c6ee6ba65893ff1f908ba7554ba583ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738612e4fee18a22da19fc08001011e32f80fb60e14b9eee094277bbc170882c8890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f62e3f753b639a924599c1f69219927ea5301fff0a6063d427180d61542c2571f983e96635600000554f327a3535e7c7542799493c31ac05a7b57f03ca91a01ba2a30ca99e969d6fd09dc28ebc15edb4d91675767999d146aef7799738b292fd64bb25b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a794963342aece449a0d80010f5c653d22d49030a8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b6ef9d12096833d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e1661261173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdd491ec035d232f89fe0120f64c62e8e3ed8bcb45202c204bbec8d722824c0ebca8db1ea4a05e41f6016ab5bbe4fe7ff5d785d0128171c90d9900ca2532b0f9d01c4b45294fbba468df3e1b393cb4e62e753b4172ba7ac1f2b51c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd849904568916694d461b76a58d88cf0f520310a1e9fdc18cde98d662eee077515d0a881192292ffff5392ab3d1311b82432662806add87047f601fa888400000000000000000000000000006acc19808d7cf29bc974b0ea92499a41b9b9a7c2bca311a28ee4952f2d325a56397c78f12205db653a536f9f3322405d1efd78e578dc6b3fb84f3738a4b6caa800000087efa51c5d95ecba4e50e529d1e8c89600e809dc3d0a2f65579e23457949a50f2d0455cf79a43746979f99f6a1527f004f1e37a3926937e84fb478199dc1020f4beb98b8074bf7df8b5e783637da740800000000000000c55a4385e9a617aa6c8e10d4202c5afeb06e2f9115558ea12f92d7ae633d44086b3f03b20d546fa66a72e38207c9d20035abc46271a30f1240de52536941242d23896ab74a3c6670fdc49c14f34fc4eadd6db8d80eba439772bf60a1db18c472dafc5569adc282928d2a1ffe29f1a57d3f18f4edaeb5d37918e6fddcd821da67a0785585a4443440dc65600e64a6a2740000000000000000000000000000000000000000000a0009dd14b38f2f4426d7cf5075047c31f6ce6adddfe3ac649c0643c8bfbeb14ba1fd7a485aa893915cf81e29aaf375e904bbe52691a4100260ffcd8f1d04166d291ebcef893e1b9ccb6797d0646fe0e7274434f28efb43e06e64f0698caca42f4e6018a455736c482a017e2b13dac4a90faa109f0e87cc94e3efb649692456463ca74aa6ad4bf50c1acb0000000000000005375e528285544d0064b98646f3109e9a4942ce42c6e7ec84b664f6c2770803f10baa804a707f0a1fcbfc309381aeba191950bae71f37f1eb7ceeffb3c0547ac6571603adbfde4c8b5f8d7f4b854441613633b48865b65bdc415e1e0dcf672d68cf4cebf04f4bc1eebf560a26d34d3757b1450fdb0a9a69f432e277f3a0386eb2bd3305c821c64757f786b79fef54dbe64c67d73934bc80b2133fb3c04cc7ea48bf97a6243c9f95dcbddecf45f008f1822c7868e1ff5a3cff5d6b6898335792749df7b1f51e91f8c1c3b1b93b33aaa3fab69cef08a9f6f6cf39dea3d878b2ed42545421970cc426e644332bc956d1c6adefdf0ede2c5c94aa632646ae225accdf031f611d01622921f1b922a5ac887cca3136133dce8d9f5f4da7bed2ea5d94362200000000000000000000f296b0c1484e5f781ad26bff696b05ff0a5e2270e07618b04273bd4075ea38ab463bfa6a38e7c537498ba3e4df8dfc9e040000003c3ffad44d2a376def42e41e9fc31678257e040fa7cf32c221aaac08000000000000001a00000000000000000000173570f0c11ae694b0f7a4f9c2f6790044a357e785af6e153d5f1ea460af92c7cbbd6295afe740f5e154346d483e0d641ef02e4d5295d756e110522a7a945b93fb705b95b6aae27a8fb33732ce1da1c0b1af8eb9222a06e984ab1e6984c8bdc12360627137ab67b6b68ab08acb29a74dc36b51209cfbc87f61182bbeb2772e9d5a1ffc477179be481efe46a4ce86be0b1d8eee42a611a3d44ca450b14586ed63dd92005c79e4a8ab8a94f0c6cb4bed8594a39bd76d3ef8a7ab014e787596db796bd93a36c2880423291e3bccc86f66ba792ff4d87b3f80e5908779e51c5e9055fc5b23605cd000c723187ef09dcf4b07b06a9342f3f62ee7acddff292082c1f4d8eb9561f80873a09a1ae0c9af1121175e5600f43a1179484502009759264a5729f07c2b218fa36ba2316a99aaad0130df83d0bda1e711290f78c143ea143967b00adcd77e6ad5e48d839ea61aadb83e4d071c54691924a3830d3e7b5c198bb0ed623153590000000000000000004b985ea1702f34f2f85b168c083e810ed567e3f1979b9ed1a4bf6a10dac825c96a0828b335de445a4880bb6474157efd1a72ca46ae4cbe3ab648c9bc4867a5a4cb87d7d6d55475b34b3cb6aa9e2337d4e04a37e35109752522ac9b186ddd80c47da6a2f4ef7bb909c975520000000000000000000000219cf5c1376ab33786f6b856d354e90a2733f78f2d188057cead3480eade49d55b770fad7fa000d23da6275768810b6b2df91d3a991ea98d929d271696c258d5b735d5db11df434e7dd1b7c1ca05cea3977df564115f4ec6ffab1d2ff8a642ca50934b3fbe44b0abeba9df209566984a29dfc0466e439a94e177b3c4d5f6e92b8176b9d6ddeeeb196fa964217f88e1acc180aaa4"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27}, 0x48)

158.411327ms ago: executing program 1 (id=1322):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
getsockopt$SO_COOKIE(r1, 0x1, 0x39, &(0x7f0000000100), &(0x7f0000000140)=0x8)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000520001000000000000000000020000000c00", @ANYRES16=r1], 0x20}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x44, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x34, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_LEN={0x8}, @NFTA_PAYLOAD_SREG={0x8}, @NFTA_PAYLOAD_OFFSET={0x8}, @NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_CSUM_OFFSET={0x8}, @NFTA_PAYLOAD_CSUM_FLAGS={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x208400, 0x0)
ioctl$TUNSETQUEUE(r2, 0x400454d9, &(0x7f00000001c0)={'dvmrp0\x00'})

98.170384ms ago: executing program 0 (id=1323):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000101000a20000000000a01040000000000000009010080030900010073797a30000000002c000000030a01040000000000000000010000000900010073797a30000000000900030073797a3200000000a0000000060a010400000000000000000100000008000b400000000078000480340001800b000100657874686472000024000280080001400000000c080003400000000008000440000000220500020007000000400001800c00010062697477697365003000028008000340000000040800014000000014080002400000000008000580040001000c000480080001006eee7e000900010073797a30"], 0x114}, 0x1, 0x0, 0x0, 0x4008085}, 0x0)

98.03604ms ago: executing program 2 (id=1324):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x0, 0x2000000000000035, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x80000000, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b00)={r0, 0x2000002, 0xf, 0x0, &(0x7f00000004c0)="0000019b0000006b944f947dd5da34", 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

54.970029ms ago: executing program 2 (id=1325):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
r2 = socket$netlink(0x10, 0x3, 0xa)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r2, 0x10e, 0x1, &(0x7f0000000080)=0x4, 0x4)
r3 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000140)={'wlan0\x00'})
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00000014c0)={0x2, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="0218000014000000000000000000000005000500000000000a00ffff00000000fe8000000000000000000000000000aa0000000000000000080012000000000003000000000000002600000000000000000000000000000002000002000000000000000000000000fc010000000000000000000000000000050006006c0000000a"], 0xa0}}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r7, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c00018014000300000000000000000000000000000000000c0004"], 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0x4000894)
clock_gettime(0x0, &(0x7f0000000200))
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000001001000050000000500000001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="020000000000000000000000000000000000000000000000000000008e4bda32e0e3d43e72fbe3a119bb755cbe061e75c5220eb5f9fc1aea5d90d5d4fafac75e7b58bd6a7d41c3d5d4f320af41e08220276c43cff4a235122fa9b9d7dab902b80c1dde777911453f8f05e1e2e2f97eb52f1faf61aaf4f494dcf23c0836650afa2ca34aed86c7d4299c8625a083539dc26af10d5bef1ba6a2e3283a82893c5439dcc7455a625e35384bc6a39a086d7c5d85a83813c20bf472e95201d8a8914a8595def9e62821ad99443de5e5204bf1bf36370bfc0567e70ff7b705615072cc1131239d6c9f6670360dd852cc6e9c0f184fdd3e1b"], 0x50)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r8, 0x0, 0x0}, 0x20)
ppoll(&(0x7f00000001c0)=[{r0, 0x200}], 0x1, 0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="c3b6fdbe", @ANYRES16=0x0, @ANYBLOB="0700000000000000000002000000140001800500020006000000060001000a000000"], 0x28}}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_SWAP(r9, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)=ANY=[@ANYBLOB="14b48a765a06030000000000000000000a000007"], 0x14}, 0x1, 0x0, 0x0, 0x24000004}, 0x80)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0400000004000000", @ANYRES32, @ANYBLOB="aaf8a20e6a45885978e7c97587fedd7112523045209c34309c3b36b97b2814664a4551636e8ec749f8299e817413d7d59296b56cacea01673dfbbf556f45e99b5e1369068bc3389cbd23865eca42c1110d61cc1778ab32cb17c1fcbc66288cbf17d2ae77ae88a5ded271740744a188cec3b9e137a553562742ac4d6437489383befba743637643b853ed195641b3e8da75f315a6dfe1bf38bba802236d2a1a71ad2783ddf6da41746e66808730ee40c16260bf17c8c5ef270cd6bd563853b3bd9b9b39ea6205e69fa65a34686c553534ffe7d7d504ed90f330047462108ceed0ef1ddf2b257cfaa068a6ab4f5eec96a513c821b100"/256, @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$team(&(0x7f0000000180), r10)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], 0x1264}}, 0x0)
getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000700)=@sack_info={0x0, 0xfffffff7, 0x7fff}, &(0x7f0000000740)=0xc)
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)=@newqdisc={0x8c, 0x24, 0x8, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x5, 0xf}, {0xd, 0xffff}, {0x16, 0x5}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x1}, @TCA_STAB={0x58, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x8, 0xd, 0x3ff, 0x4, 0x0, 0xffffffff, 0x0, 0x6}}, {0x10, 0x2, [0x0, 0x9, 0xf4b4, 0x8, 0x7, 0x9]}}, {{0x1c, 0x1, {0x81, 0x1, 0xff, 0x2, 0x0, 0xa6, 0xd, 0x4}}, {0xc, 0x2, [0x81, 0x7fff, 0x7, 0x6819]}}]}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xffa}]}, 0x8c}, 0x1, 0x0, 0x0, 0x44}, 0x8000)

54.711809ms ago: executing program 4 (id=1326):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x80010, 0xffffffffffffffff, 0x8f818000)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'blake2b-512\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0) (async)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r2, 0x0, 0xfe33)
socket$xdp(0x2c, 0x3, 0x0) (async)
socket$xdp(0x2c, 0x3, 0x0)
recvmsg(r2, 0x0, 0x102)
r3 = socket$kcm(0x2d, 0x2, 0x0)
connect$qrtr(r3, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5) (async)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4) (async)
close(0x4)
getsockopt$inet_udp_int(r1, 0x11, 0x67, &(0x7f0000000080), &(0x7f00000001c0)=0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000040)='ns/cgroup\x00')
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, r4, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x61d2, 0x0) (async)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x61d2, 0x0)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10) (async)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff) (async)
syz_genetlink_get_family_id$batadv(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r7, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40001023, 0x0)

0s ago: executing program 0 (id=1327):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000086c0)=[{{0x0, 0x0, 0x0}, 0x104}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x8001}, {{0x0, 0x0, 0x0}, 0x7ffffffd}], 0x4, 0x4022, 0x0)

kernel console output (not intermixed with test programs):

 mode
[   78.080168][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.092206][ T5181] Bluetooth: hci3: command tx timeout
[   78.108204][ T5861] veth1_macvtap: entered promiscuous mode
[   78.120357][ T5867] veth1_vlan: entered promiscuous mode
[   78.129260][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.140170][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.164406][   T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.172390][ T5181] Bluetooth: hci4: command tx timeout
[   78.186196][   T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.204783][   T59] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.219849][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.230604][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.244143][   T59] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.267928][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.280744][ T5867] veth0_macvtap: entered promiscuous mode
[   78.301219][   T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.311143][   T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.332565][ T5867] veth1_macvtap: entered promiscuous mode
[   78.347481][   T59] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.356837][   T59] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.380656][   T59] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.392326][   T59] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.401145][   T59] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.423506][   T59] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.439078][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.478651][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.491397][ T5869] veth0_vlan: entered promiscuous mode
[   78.498806][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.509717][ T3461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.518027][ T3461] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.529025][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.567450][ T3436] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.578473][ T5869] veth1_vlan: entered promiscuous mode
[   78.585759][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.595246][ T3436] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.602362][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.608580][ T3436] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.633364][ T3436] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.647387][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.657451][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.678219][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.697333][ T5859] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   78.699613][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.793404][ T5869] veth0_macvtap: entered promiscuous mode
[   78.824128][ T5967] macvtap1: entered promiscuous mode
[   78.829485][ T5967] macvtap1: entered allmulticast mode
[   78.838019][ T5967] syz_tun: entered promiscuous mode
[   78.843720][ T5967] syz_tun: entered allmulticast mode
[   78.847555][ T5969] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2'.
[   78.851381][ T5967] team0: Device macvtap1 failed to register rx_handler
[   78.865154][ T5967] syz_tun: left allmulticast mode
[   78.871040][ T5967] syz_tun: left promiscuous mode
[   78.887697][ T3436] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.896683][ T5869] veth1_macvtap: entered promiscuous mode
[   78.905718][ T3436] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.941996][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.962237][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.005065][ T5971] syz.1.6 uses obsolete (PF_INET,SOCK_PACKET)
[   79.034039][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.050938][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.067050][ T5971] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   79.070084][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.116067][ T5971] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6'.
[   79.116941][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.146891][ T5971] bridge_slave_1: left allmulticast mode
[   79.156788][ T5971] bridge_slave_1: left promiscuous mode
[   79.164405][ T5971] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.174902][ T5971] bridge_slave_0: left allmulticast mode
[   79.182341][ T5971] bridge_slave_0: left promiscuous mode
[   79.188084][ T5971] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.203214][ T5978] Zero length message leads to an empty skb
[   79.265696][ T5977] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.275514][ T5977] batadv_slave_0: entered promiscuous mode
[   79.289433][ T5985] Bluetooth: MGMT ver 1.23
[   79.416118][   T36] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.433808][   T36] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.476586][   T36] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.496631][   T36] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.546581][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4'.
[   79.603137][ T5994] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8'.
[   79.617988][ T5990] bridge_slave_1: left allmulticast mode
[   79.633101][ T5990] bridge_slave_1: left promiscuous mode
[   79.643757][ T5990] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.659634][ T5990] bridge_slave_0: left allmulticast mode
[   79.670255][ T5990] bridge_slave_0: left promiscuous mode
[   79.681622][ T5990] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.934391][ T5181] Bluetooth: hci0: command tx timeout
[   80.047962][ T6014] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.055634][ T6014] batadv_slave_0: entered promiscuous mode
[   80.070914][ T1107] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.074420][ T6014] trusted_key: syz.3.10 sent an empty control message without MSG_MORE.
[   80.092255][ T5181] Bluetooth: hci1: command tx timeout
[   80.097210][ T5856] Bluetooth: hci2: command tx timeout
[   80.112097][ T1107] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.172216][ T5856] Bluetooth: hci3: command tx timeout
[   80.189440][ T1107] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.247515][ T1107] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.255331][ T5856] Bluetooth: hci4: command tx timeout
[   80.348133][ T6024] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.374426][ T6024] batadv_slave_0: entered promiscuous mode
[   80.401286][ T6026] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.416315][ T6026] batadv_slave_0: entered promiscuous mode
[   80.673566][ T6034] netlink: 'syz.4.5': attribute type 1 has an invalid length.
[   80.681093][ T6034] netlink: 224 bytes leftover after parsing attributes in process `syz.4.5'.
[   80.790517][ T6035] netlink: 'syz.3.14': attribute type 1 has an invalid length.
[   80.833573][ T6035] netlink: 224 bytes leftover after parsing attributes in process `syz.3.14'.
[   81.081406][ T6052] netlink: 256 bytes leftover after parsing attributes in process `syz.0.16'.
[   81.125697][ T6052] netlink: 48 bytes leftover after parsing attributes in process `syz.0.16'.
[   81.200173][ T6055] bond0: Unable to set down delay as MII monitoring is disabled
[   81.574287][ T6070] netlink: 28 bytes leftover after parsing attributes in process `syz.4.22'.
[   81.690127][ T6080] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.790691][ T6083] 8021q: adding VLAN 0 to HW filter on device batadv1
[   81.834891][ T6083] team0: Failed to send port change of device batadv1 via netlink (err -105)
[   81.842419][   T10] cfg80211: failed to load regulatory.db
[   81.916014][ T6083] team0: Failed to send options change via netlink (err -105)
[   81.943776][ T6083] team0: Port device batadv1 added
[   81.952973][ T6094] FAULT_INJECTION: forcing a failure.
[   81.952973][ T6094] name failslab, interval 1, probability 0, space 0, times 1
[   81.966913][ T6088] netlink: 'syz.1.25': attribute type 1 has an invalid length.
[   81.984176][ T6094] CPU: 0 UID: 0 PID: 6094 Comm: syz.4.26 Not tainted syzkaller #0 PREEMPT(full) 
[   81.984214][ T6094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   81.984233][ T6094] Call Trace:
[   81.984241][ T6094]  <TASK>
[   81.984250][ T6094]  dump_stack_lvl+0x189/0x250
[   81.984284][ T6094]  ? __pfx____ratelimit+0x10/0x10
[   81.984315][ T6094]  ? __pfx_dump_stack_lvl+0x10/0x10
[   81.984340][ T6094]  ? __pfx__printk+0x10/0x10
[   81.984366][ T6094]  ? rcu_is_watching+0x15/0xb0
[   81.984388][ T6094]  ? __pfx___might_resched+0x10/0x10
[   81.984408][ T6094]  ? lock_acquire+0x5f/0x360
[   81.984440][ T6094]  should_fail_ex+0x414/0x560
[   81.984469][ T6094]  should_failslab+0xa8/0x100
[   81.984500][ T6094]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[   81.984529][ T6094]  ? __alloc_skb+0x112/0x2d0
[   81.984550][ T6094]  __alloc_skb+0x112/0x2d0
[   81.984569][ T6094]  ethnl_reply_init+0x59/0x200
[   81.984586][ T6094]  ? tsinfo_reply_size+0x276/0x390
[   81.984606][ T6094]  ethnl_default_doit+0x6a6/0xcd0
[   81.984630][ T6094]  genl_family_rcv_msg_doit+0x212/0x300
[   81.984658][ T6094]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   81.984693][ T6094]  genl_rcv_msg+0x60e/0x790
[   81.984720][ T6094]  ? __pfx_genl_rcv_msg+0x10/0x10
[   81.984749][ T6094]  ? __pfx_ethnl_default_doit+0x10/0x10
[   81.984769][ T6094]  ? __asan_memcpy+0x40/0x70
[   81.984791][ T6094]  ? __pfx_ref_tracker_free+0x10/0x10
[   81.984819][ T6094]  ? __skb_clone+0x63/0x7a0
[   81.984842][ T6094]  netlink_rcv_skb+0x205/0x470
[   81.984873][ T6094]  ? __pfx_genl_rcv_msg+0x10/0x10
[   81.984896][ T6094]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   81.984931][ T6094]  ? lock_release+0x4b/0x3e0
[   81.984962][ T6094]  ? down_read+0x1ad/0x2e0
[   81.984981][ T6094]  genl_rcv+0x28/0x40
[   81.985002][ T6094]  netlink_unicast+0x82f/0x9e0
[   81.985034][ T6094]  ? __pfx_netlink_unicast+0x10/0x10
[   81.985061][ T6094]  ? netlink_sendmsg+0x642/0xb30
[   81.985077][ T6094]  ? skb_put+0x11b/0x210
[   81.985097][ T6094]  netlink_sendmsg+0x805/0xb30
[   81.985119][ T6094]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.985138][ T6094]  ? aa_sock_msg_perm+0xf1/0x1d0
[   81.985157][ T6094]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   81.985179][ T6094]  ? __pfx_netlink_sendmsg+0x10/0x10
[   81.985200][ T6094]  __sock_sendmsg+0x219/0x270
[   81.985228][ T6094]  ____sys_sendmsg+0x505/0x830
[   81.985251][ T6094]  ? __pfx_____sys_sendmsg+0x10/0x10
[   81.985277][ T6094]  ? import_iovec+0x74/0xa0
[   81.985300][ T6094]  ___sys_sendmsg+0x21f/0x2a0
[   81.985321][ T6094]  ? __pfx____sys_sendmsg+0x10/0x10
[   81.985355][ T6094]  ? __fget_files+0x2a/0x420
[   81.985371][ T6094]  ? __fget_files+0x3a0/0x420
[   81.985391][ T6094]  __x64_sys_sendmsg+0x19b/0x260
[   81.985411][ T6094]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   81.985435][ T6094]  ? __pfx_ksys_write+0x10/0x10
[   81.985458][ T6094]  ? rcu_is_watching+0x15/0xb0
[   81.985477][ T6094]  ? rcu_is_watching+0x15/0xb0
[   81.985497][ T6094]  do_syscall_64+0xfa/0x3b0
[   81.985513][ T6094]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.985532][ T6094]  ? clear_bhb_loop+0x60/0xb0
[   81.985552][ T6094]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   81.985570][ T6094] RIP: 0033:0x7fa5fe38ebe9
[   81.985594][ T6094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   81.985610][ T6094] RSP: 002b:00007fa5ff277038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   81.985635][ T6094] RAX: ffffffffffffffda RBX: 00007fa5fe5b6090 RCX: 00007fa5fe38ebe9
[   81.985648][ T6094] RDX: 000000002000c800 RSI: 0000200000000380 RDI: 0000000000000009
[   81.985661][ T6094] RBP: 00007fa5ff277090 R08: 0000000000000000 R09: 0000000000000000
[   81.985672][ T6094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   81.985683][ T6094] R13: 00007fa5fe5b6128 R14: 00007fa5fe5b6090 R15: 00007ffc13165a58
[   81.985703][ T6094]  </TASK>
[   82.371108][ T5856] Bluetooth: hci2: command tx timeout
[   82.376604][ T5856] Bluetooth: hci3: command tx timeout
[   82.382826][ T5856] Bluetooth: hci4: command tx timeout
[   82.388254][ T5856] Bluetooth: hci1: command tx timeout
[   82.438178][ T6080] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.587345][ T6080] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.711554][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.29'.
[   82.750286][ T6113] gretap0: entered promiscuous mode
[   82.792019][ T6113] macvtap1: entered promiscuous mode
[   82.820869][ T6113] macvtap1: entered allmulticast mode
[   82.839884][ T6113] gretap0: entered allmulticast mode
[   82.864786][ T6080] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   83.147983][   T36] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.164054][   T36] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.194223][   T36] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.228984][   T36] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.297797][ T6141] bridge_slave_1: left allmulticast mode
[   83.325824][ T6141] bridge_slave_1: left promiscuous mode
[   83.331604][ T6141] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.450841][ T6141] bridge_slave_0: left allmulticast mode
[   83.459054][ T6141] bridge_slave_0: left promiscuous mode
[   83.479967][ T6141] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.673755][ T6155] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   83.930557][ T6169] __nla_validate_parse: 1 callbacks suppressed
[   83.930578][ T6169] netlink: 244 bytes leftover after parsing attributes in process `syz.3.41'.
[   83.979788][ T6176] netlink: 8 bytes leftover after parsing attributes in process `syz.2.43'.
[   84.181776][ T6188] netlink: 20 bytes leftover after parsing attributes in process `syz.0.45'.
[   84.226449][ T6190] netlink: 'syz.3.46': attribute type 21 has an invalid length.
[   84.232102][ T6188] netlink: 'syz.0.45': attribute type 4 has an invalid length.
[   84.260440][ T6190] netlink: 132 bytes leftover after parsing attributes in process `syz.3.46'.
[   84.374549][ T6197] netlink: 'syz.2.48': attribute type 1 has an invalid length.
[   84.505123][ T6206] netlink: 'syz.0.49': attribute type 1 has an invalid length.
[   84.523740][ T6197] veth3: entered promiscuous mode
[   84.535585][ T6206] netlink: 224 bytes leftover after parsing attributes in process `syz.0.49'.
[   84.687196][ T6208] netlink: 'syz.1.52': attribute type 10 has an invalid length.
[   84.813667][ T6229] netlink: 4 bytes leftover after parsing attributes in process `syz.3.53'.
[   87.637384][ T6230] 8021q: adding VLAN 0 to HW filter on device batadv1
[   87.645474][ T6230] team0: Failed to send port change of device batadv1 via netlink (err -105)
[   87.654476][ T6230] team0: Failed to send options change via netlink (err -105)
[   87.662320][ T6230] team0: Port device batadv1 added
[   87.871522][ T6242] netlink: 4 bytes leftover after parsing attributes in process `syz.0.54'.
[   87.958403][ T6254] netlink: 182 bytes leftover after parsing attributes in process `syz.2.55'.
[   87.965977][ T6253] FAULT_INJECTION: forcing a failure.
[   87.965977][ T6253] name failslab, interval 1, probability 0, space 0, times 0
[   88.005067][ T6255] netlink: 'syz.3.56': attribute type 13 has an invalid length.
[   88.030631][ T6253] CPU: 0 UID: 0 PID: 6253 Comm: syz.4.57 Not tainted syzkaller #0 PREEMPT(full) 
[   88.030659][ T6253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   88.030672][ T6253] Call Trace:
[   88.030679][ T6253]  <TASK>
[   88.030688][ T6253]  dump_stack_lvl+0x189/0x250
[   88.030718][ T6253]  ? __pfx____ratelimit+0x10/0x10
[   88.030749][ T6253]  ? __pfx_dump_stack_lvl+0x10/0x10
[   88.030773][ T6253]  ? __pfx__printk+0x10/0x10
[   88.030805][ T6253]  ? __pfx___might_resched+0x10/0x10
[   88.030825][ T6253]  ? lock_acquire+0x5f/0x360
[   88.030855][ T6253]  should_fail_ex+0x414/0x560
[   88.030884][ T6253]  should_failslab+0xa8/0x100
[   88.030915][ T6253]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[   88.030943][ T6253]  ? __alloc_skb+0x112/0x2d0
[   88.030963][ T6253]  __alloc_skb+0x112/0x2d0
[   88.030982][ T6253]  netlink_ack+0x146/0xa50
[   88.031011][ T6253]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.031041][ T6253]  ? ref_tracker_free+0x63a/0x7d0
[   88.031070][ T6253]  ? __asan_memcpy+0x40/0x70
[   88.031093][ T6253]  ? __pfx_ref_tracker_free+0x10/0x10
[   88.031120][ T6253]  ? __skb_clone+0x63/0x7a0
[   88.031146][ T6253]  netlink_rcv_skb+0x28c/0x470
[   88.031177][ T6253]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   88.031208][ T6253]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   88.031249][ T6253]  netlink_unicast+0x82f/0x9e0
[   88.031281][ T6253]  ? __pfx_netlink_unicast+0x10/0x10
[   88.031310][ T6253]  ? netlink_sendmsg+0x642/0xb30
[   88.031326][ T6253]  ? skb_put+0x11b/0x210
[   88.031360][ T6253]  netlink_sendmsg+0x805/0xb30
[   88.031383][ T6253]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.031403][ T6253]  ? aa_sock_msg_perm+0xf1/0x1d0
[   88.031423][ T6253]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   88.031447][ T6253]  ? __pfx_netlink_sendmsg+0x10/0x10
[   88.031465][ T6253]  __sock_sendmsg+0x219/0x270
[   88.031495][ T6253]  ____sys_sendmsg+0x505/0x830
[   88.031519][ T6253]  ? __pfx_____sys_sendmsg+0x10/0x10
[   88.031546][ T6253]  ? import_iovec+0x74/0xa0
[   88.031571][ T6253]  ___sys_sendmsg+0x21f/0x2a0
[   88.031594][ T6253]  ? __pfx____sys_sendmsg+0x10/0x10
[   88.031634][ T6253]  ? __fget_files+0x2a/0x420
[   88.031651][ T6253]  ? __fget_files+0x3a0/0x420
[   88.031674][ T6253]  __x64_sys_sendmsg+0x19b/0x260
[   88.031697][ T6253]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   88.031723][ T6253]  ? __pfx_ksys_write+0x10/0x10
[   88.031750][ T6253]  ? rcu_is_watching+0x15/0xb0
[   88.031773][ T6253]  ? rcu_is_watching+0x15/0xb0
[   88.031799][ T6253]  do_syscall_64+0xfa/0x3b0
[   88.031817][ T6253]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.031836][ T6253]  ? clear_bhb_loop+0x60/0xb0
[   88.031858][ T6253]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   88.031878][ T6253] RIP: 0033:0x7fa5fe38ebe9
[   88.031896][ T6253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   88.031913][ T6253] RSP: 002b:00007fa5ff298038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   88.031935][ T6253] RAX: ffffffffffffffda RBX: 00007fa5fe5b5fa0 RCX: 00007fa5fe38ebe9
[   88.031950][ T6253] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000003
[   88.031962][ T6253] RBP: 00007fa5ff298090 R08: 0000000000000000 R09: 0000000000000000
[   88.031974][ T6253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   88.031986][ T6253] R13: 00007fa5fe5b6038 R14: 00007fa5fe5b5fa0 R15: 00007ffc13165a58
[   88.032008][ T6253]  </TASK>
[   88.043653][ T6255] netlink: 'syz.3.56': attribute type 17 has an invalid length.
[   88.497917][ T6269] netlink: 4 bytes leftover after parsing attributes in process `syz.4.60'.
[   88.580891][ T6255] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   88.610529][ T6274] geneve2: entered promiscuous mode
[   88.890847][ T6291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.66'.
[   88.948794][ T6279] tipc: Started in network mode
[   88.957078][ T6279] tipc: Node identity , cluster identity 4711
[   88.989606][ T6279] tipc: Failed to set node id, please configure manually
[   89.007164][ T6279] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   89.054638][ T6299] tls_set_device_offload_rx: netdev not found
[   89.296800][ T6314] netlink: 8 bytes leftover after parsing attributes in process `syz.2.71'.
[   89.385428][ T6314] bridge0: port 3(macvlan2) entered blocking state
[   89.399542][ T6314] bridge0: port 3(macvlan2) entered disabled state
[   89.415885][ T6314] macvlan2: entered allmulticast mode
[   89.427330][ T6314] bridge0: entered allmulticast mode
[   89.453867][ T6314] macvlan2: left allmulticast mode
[   89.468014][ T6314] bridge0: left allmulticast mode
[   89.475090][ T6324] netlink: 8 bytes leftover after parsing attributes in process `syz.4.72'.
[   89.506404][ T6324] syz_tun: entered promiscuous mode
[   89.712113][ T6335] netlink: 'syz.4.76': attribute type 10 has an invalid length.
[   89.723552][ T6336] netlink: 28 bytes leftover after parsing attributes in process `syz.1.77'.
[   89.750897][ T6336] netlink: 28 bytes leftover after parsing attributes in process `syz.1.77'.
[   89.811703][ T6340] netlink: 8 bytes leftover after parsing attributes in process `syz.3.79'.
[   89.852426][ T6340] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[   89.871229][ T6342] netlink: 36 bytes leftover after parsing attributes in process `syz.0.80'.
[   89.880631][ T6342] netlink: 16 bytes leftover after parsing attributes in process `syz.0.80'.
[   89.893336][ T6342] netlink: 36 bytes leftover after parsing attributes in process `syz.0.80'.
[   89.903076][ T6342] netlink: 36 bytes leftover after parsing attributes in process `syz.0.80'.
[   89.938408][ T6335] macvlan1: entered allmulticast mode
[   89.952170][ T6335] veth1_vlan: entered allmulticast mode
[   89.958188][ T6335] team0: Device macvlan1 is up. Set it down before adding it as a team port
[   90.169146][ T6353] dummy0: entered promiscuous mode
[   90.190321][ T6353] macsec1: entered promiscuous mode
[   90.196100][ T6353] macsec1: entered allmulticast mode
[   90.204605][ T6356] netlink: 'syz.0.84': attribute type 32 has an invalid length.
[   90.205023][ T6353] dummy0: entered allmulticast mode
[   90.220650][ T6356] netlink: 28 bytes leftover after parsing attributes in process `syz.0.84'.
[   90.231310][ T6353] dummy0: left allmulticast mode
[   90.236494][ T6353] dummy0: left promiscuous mode
[   90.267461][ T6351] macsec2: entered promiscuous mode
[   90.282460][ T6351] mac80211_hwsim hwsim11 wlan1: entered promiscuous mode
[   90.303902][ T6351] mac80211_hwsim hwsim11 wlan1: left promiscuous mode
[   90.628917][ T6374] netlink: 'syz.1.91': attribute type 16 has an invalid length.
[   90.636803][ T6379] nft_compat: unsupported protocol 5
[   90.665941][ T6374] netlink: 'syz.1.91': attribute type 3 has an invalid length.
[   91.275982][ T6404] netlink: 'syz.0.103': attribute type 5 has an invalid length.
[   91.326656][ T6408] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   91.328043][ T6409] veth0_to_bridge: entered promiscuous mode
[   91.399676][ T6404] veth0_to_bridge: left promiscuous mode
[   91.586190][ T6414] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.622703][ T6414] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.832145][ T6423] netlink: 'syz.2.111': attribute type 1 has an invalid length.
[   92.326645][ T6430] gretap0: entered promiscuous mode
[   92.352093][ T6430] macvtap1: entered promiscuous mode
[   92.357558][ T6430] macvtap1: entered allmulticast mode
[   92.384878][ T6430] gretap0: entered allmulticast mode
[   92.671050][ T6444] netlink: 'syz.0.117': attribute type 13 has an invalid length.
[   92.679060][ T6444] netlink: 'syz.0.117': attribute type 17 has an invalid length.
[   92.782045][ T6444] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   93.266903][ T6465] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   93.885451][ T6493] 8021q: VLANs not supported on ipvlan1
[   94.064975][ T6505] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   94.412837][ T6520] tipc: Started in network mode
[   94.417753][ T6520] tipc: Node identity 0000000000000000005885d6a76549cc, cluster identity 4711
[   94.468480][ T6520] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   95.112382][ T6556] erspan1: entered promiscuous mode
[   95.128928][ T6557] netdevsim netdevsim1: Firmware load for './file0/../file0' refused, path contains '..' component
[   95.143506][ T6556] __nla_validate_parse: 11 callbacks suppressed
[   95.143530][ T6556] netlink: 40 bytes leftover after parsing attributes in process `syz.3.157'.
[   95.449127][ T6574] netlink: 24 bytes leftover after parsing attributes in process `syz.4.161'.
[   95.465522][ T6580] netlink: 4 bytes leftover after parsing attributes in process `syz.1.163'.
[   95.487470][ T6580] macvtap2: entered promiscuous mode
[   95.494873][ T6581] FAULT_INJECTION: forcing a failure.
[   95.494873][ T6581] name failslab, interval 1, probability 0, space 0, times 0
[   95.507539][ T6581] CPU: 0 UID: 0 PID: 6581 Comm: syz.3.162 Not tainted syzkaller #0 PREEMPT(full) 
[   95.507564][ T6581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   95.507577][ T6581] Call Trace:
[   95.507584][ T6581]  <TASK>
[   95.507593][ T6581]  dump_stack_lvl+0x189/0x250
[   95.507622][ T6581]  ? __pfx____ratelimit+0x10/0x10
[   95.507651][ T6581]  ? __pfx_dump_stack_lvl+0x10/0x10
[   95.507673][ T6581]  ? __pfx__printk+0x10/0x10
[   95.507704][ T6581]  ? do_raw_spin_unlock+0x122/0x240
[   95.507731][ T6581]  should_fail_ex+0x414/0x560
[   95.507765][ T6581]  should_failslab+0xa8/0x100
[   95.507796][ T6581]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[   95.507824][ T6581]  ? __alloc_skb+0x112/0x2d0
[   95.507844][ T6581]  __alloc_skb+0x112/0x2d0
[   95.507864][ T6581]  tipc_msg_create+0x51/0x4d0
[   95.507896][ T6581]  tipc_sk_filter_rcv+0x1458/0x30b0
[   95.507945][ T6581]  ? __pfx_tipc_sk_filter_rcv+0x10/0x10
[   95.507971][ T6581]  ? rcu_is_watching+0x15/0xb0
[   95.507998][ T6581]  tipc_sk_rcv+0x8a5/0x2ba0
[   95.508028][ T6581]  ? kasan_save_track+0x4f/0x80
[   95.508053][ T6581]  ? __sock_sendmsg+0x219/0x270
[   95.508076][ T6581]  ? ____sys_sendmsg+0x52d/0x830
[   95.508099][ T6581]  ? __pfx_tipc_sk_rcv+0x10/0x10
[   95.508120][ T6581]  ? __might_fault+0xb0/0x130
[   95.508148][ T6581]  ? rcu_is_watching+0x15/0xb0
[   95.508170][ T6581]  ? tipc_loopback_trace+0x48/0x1b0
[   95.508201][ T6581]  ? __might_fault+0xb0/0x130
[   95.508226][ T6581]  ? rcu_read_lock_held+0xa/0x50
[   95.508249][ T6581]  ? __raw_spin_lock_init+0x45/0x100
[   95.508273][ T6581]  tipc_node_xmit+0x1c9/0xe90
[   95.508303][ T6581]  ? rcu_is_watching+0x15/0xb0
[   95.508319][ T6581]  ? trace_kmalloc+0x1f/0xd0
[   95.508341][ T6581]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[   95.508370][ T6581]  ? __pfx_tipc_node_xmit+0x10/0x10
[   95.508399][ T6581]  ? __build_skb_around+0x257/0x3e0
[   95.508449][ T6581]  ? tipc_msg_append+0x2e5/0x660
[   95.508478][ T6581]  ? skb_put+0x11b/0x210
[   95.508502][ T6581]  ? tipc_sk_filtering+0x13c/0x510
[   95.508528][ T6581]  __tipc_sendstream+0xb09/0x1290
[   95.508576][ T6581]  ? __pfx___tipc_sendstream+0x10/0x10
[   95.508603][ T6581]  ? tipc_sendstream+0x47/0x70
[   95.508627][ T6581]  ? __pfx_woken_wake_function+0x10/0x10
[   95.508656][ T6581]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   95.508681][ T6581]  tipc_sendstream+0x55/0x70
[   95.508707][ T6581]  ? __pfx_tipc_sendstream+0x10/0x10
[   95.508734][ T6581]  __sock_sendmsg+0x219/0x270
[   95.508770][ T6581]  ____sys_sendmsg+0x52d/0x830
[   95.508793][ T6581]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.508819][ T6581]  ? import_iovec+0x74/0xa0
[   95.508843][ T6581]  ___sys_sendmsg+0x21f/0x2a0
[   95.508864][ T6581]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.508888][ T6581]  ? kstrtouint+0x6e/0xe0
[   95.508932][ T6581]  ? rcu_is_watching+0x15/0xb0
[   95.508964][ T6581]  ? lock_release+0x4b/0x3e0
[   95.509011][ T6581]  ? __might_fault+0xcc/0x130
[   95.509039][ T6581]  __sys_sendmmsg+0x227/0x430
[   95.509063][ T6581]  ? __pfx___sys_sendmmsg+0x10/0x10
[   95.509083][ T6581]  ? __mutex_unlock_slowpath+0x1a1/0x740
[   95.509127][ T6581]  ? ksys_write+0x22a/0x250
[   95.509155][ T6581]  ? __pfx_ksys_write+0x10/0x10
[   95.509181][ T6581]  ? rcu_is_watching+0x15/0xb0
[   95.509204][ T6581]  __x64_sys_sendmmsg+0xa0/0xc0
[   95.509226][ T6581]  do_syscall_64+0xfa/0x3b0
[   95.509244][ T6581]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.509263][ T6581]  ? clear_bhb_loop+0x60/0xb0
[   95.509287][ T6581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.509306][ T6581] RIP: 0033:0x7f7b3f18ebe9
[   95.509324][ T6581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.509341][ T6581] RSP: 002b:00007f7b3ffcd038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[   95.509363][ T6581] RAX: ffffffffffffffda RBX: 00007f7b3f3b6090 RCX: 00007f7b3f18ebe9
[   95.509378][ T6581] RDX: 0000000000000005 RSI: 0000200000005280 RDI: 0000000000000004
[   95.509390][ T6581] RBP: 00007f7b3ffcd090 R08: 0000000000000000 R09: 0000000000000000
[   95.509403][ T6581] R10: 000000002004c890 R11: 0000000000000246 R12: 0000000000000002
[   95.509415][ T6581] R13: 00007f7b3f3b6128 R14: 00007f7b3f3b6090 R15: 00007ffcd55c9ea8
[   95.509438][ T6581]  </TASK>
[   95.511666][ T6580] macvtap2: entered allmulticast mode
[   96.106504][ T6599] netlink: 4 bytes leftover after parsing attributes in process `syz.1.169'.
[   96.276663][ T6608] netlink: 44 bytes leftover after parsing attributes in process `syz.4.173'.
[   96.289169][ T6608] netlink: 43 bytes leftover after parsing attributes in process `syz.4.173'.
[   96.289417][ T6614] netlink: 36 bytes leftover after parsing attributes in process `syz.0.170'.
[   96.299958][ T6608] netlink: 'syz.4.173': attribute type 5 has an invalid length.
[   96.348885][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz.0.170'.
[   96.349421][ T6608] netlink: 43 bytes leftover after parsing attributes in process `syz.4.173'.
[   96.434699][ T6620] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[   96.582464][ T6628] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   96.593149][ T6629] netlink: 'syz.4.178': attribute type 303 has an invalid length.
[   96.617383][ T6629] netlink: 'syz.4.178': attribute type 1 has an invalid length.
[   96.638692][ T6629] netlink: 224 bytes leftover after parsing attributes in process `syz.4.178'.
[   96.965846][ T6650] syzkaller1: entered promiscuous mode
[   96.971607][ T6650] syzkaller1: entered allmulticast mode
[   97.031137][ T6653] netlink: 'syz.3.190': attribute type 1 has an invalid length.
[   97.191395][ T6664] netlink: 'syz.3.195': attribute type 10 has an invalid length.
[   97.210695][ T6664] macvlan1: entered allmulticast mode
[   97.227586][ T6664] veth1_vlan: entered allmulticast mode
[   97.240380][ T6664] team0: Device macvlan1 is up. Set it down before adding it as a team port
[   97.445486][ T6668] team0 (unregistering): Port device team_slave_0 removed
[   97.455361][ T6668] team0 (unregistering): Port device team_slave_1 removed
[   97.477206][ T6676] warning: `syz.3.200' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   97.586061][  T979] IPVS: starting estimator thread 0...
[   97.695023][ T6684] IPVS: using max 41 ests per chain, 98400 per kthread
[   97.792704][ T6696] netlink: 'syz.4.206': attribute type 5 has an invalid length.
[   97.836699][ T6699] netlink: 'syz.0.208': attribute type 4 has an invalid length.
[   97.997757][ T6694] tipc: Started in network mode
[   98.003000][ T6694] tipc: Node identity , cluster identity 4711
[   98.009187][ T6694] tipc: Failed to set node id, please configure manually
[   98.020732][ T6694] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[   98.154920][ T6712] tipc: Started in network mode
[   98.163290][ T6712] tipc: Node identity 0000000000000000005885d6a76549cc, cluster identity 4711
[   98.178023][ T6712] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[   98.195014][ T6719] bridge_slave_1: left allmulticast mode
[   98.221917][ T6719] bridge_slave_1: left promiscuous mode
[   98.245061][ T6719] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.292678][ T6719] bridge_slave_0: left allmulticast mode
[   98.300898][ T6719] bridge_slave_0: left promiscuous mode
[   98.314968][ T6719] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.367268][ T6726] FAULT_INJECTION: forcing a failure.
[   98.367268][ T6726] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   98.374178][ T6730] gretap0: entered promiscuous mode
[   98.380646][ T6726] CPU: 0 UID: 0 PID: 6726 Comm: syz.1.216 Not tainted syzkaller #0 PREEMPT(full) 
[   98.380679][ T6726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   98.380694][ T6726] Call Trace:
[   98.380703][ T6726]  <TASK>
[   98.380712][ T6726]  dump_stack_lvl+0x189/0x250
[   98.380745][ T6726]  ? __pfx____ratelimit+0x10/0x10
[   98.380780][ T6726]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.380807][ T6726]  ? __pfx__printk+0x10/0x10
[   98.380843][ T6726]  ? rcu_is_watching+0x15/0xb0
[   98.380870][ T6726]  should_fail_ex+0x414/0x560
[   98.380904][ T6726]  _copy_to_user+0x31/0xb0
[   98.380932][ T6726]  simple_read_from_buffer+0xe1/0x170
[   98.380967][ T6726]  proc_fail_nth_read+0x1b3/0x220
[   98.380996][ T6726]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.381023][ T6726]  ? rw_verify_area+0x2a6/0x4d0
[   98.381054][ T6726]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.381080][ T6726]  vfs_read+0x1fd/0xa30
[   98.381109][ T6726]  ? fdget_pos+0x247/0x320
[   98.381131][ T6726]  ? __pfx___mutex_lock+0x10/0x10
[   98.381168][ T6726]  ? __pfx_vfs_read+0x10/0x10
[   98.381203][ T6726]  ? __fget_files+0x3a0/0x420
[   98.381223][ T6726]  ? __fget_files+0x2a/0x420
[   98.381247][ T6726]  ksys_read+0x145/0x250
[   98.381279][ T6726]  ? __pfx_ksys_read+0x10/0x10
[   98.381317][ T6726]  ? rcu_is_watching+0x15/0xb0
[   98.381343][ T6726]  ? rcu_is_watching+0x15/0xb0
[   98.381366][ T6726]  do_syscall_64+0xfa/0x3b0
[   98.381387][ T6726]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.381410][ T6726]  ? clear_bhb_loop+0x60/0xb0
[   98.381436][ T6726]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.381460][ T6726] RIP: 0033:0x7f0aefb8d5fc
[   98.381480][ T6726] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.381499][ T6726] RSP: 002b:00007f0af0aae030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.381525][ T6726] RAX: ffffffffffffffda RBX: 00007f0aefdb5fa0 RCX: 00007f0aefb8d5fc
[   98.381542][ T6726] RDX: 000000000000000f RSI: 00007f0af0aae0a0 RDI: 0000000000000005
[   98.381558][ T6726] RBP: 00007f0af0aae090 R08: 0000000000000000 R09: 0000000000000000
[   98.381570][ T6726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   98.381585][ T6726] R13: 00007f0aefdb6038 R14: 00007f0aefdb5fa0 R15: 00007ffc487fd6b8
[   98.381612][ T6726]  </TASK>
[   98.627388][ T6730] macvtap1: entered promiscuous mode
[   98.633022][ T6730] macvtap1: entered allmulticast mode
[   98.638442][ T6730] gretap0: entered allmulticast mode
[   99.125823][ T6768] Driver unsupported XDP return value 0 on prog  (id 112) dev N/A, expect packet loss!
[   99.439358][ T6783] macvtap1: entered promiscuous mode
[   99.451905][ T6783] vlan0: entered promiscuous mode
[   99.538943][ T6787] 8021q: adding VLAN 0 to HW filter on device bond1
[   99.743421][ T6804] (unnamed net_device) (uninitialized): option broadcast_neighbor: mode dependency failed, not supported in mode balance-rr(0)
[  100.368170][ T6832] __nla_validate_parse: 22 callbacks suppressed
[  100.368202][ T6832] netlink: 20 bytes leftover after parsing attributes in process `syz.4.249'.
[  100.562441][ T6842] 8021q: adding VLAN 0 to HW filter on device bond1
[  100.717361][ T6847] netlink: 4 bytes leftover after parsing attributes in process `syz.2.254'.
[  100.898385][ T6847] geneve2: entered promiscuous mode
[  100.913199][ T6847] geneve2: entered allmulticast mode
[  101.138596][ T6858] netlink: 12 bytes leftover after parsing attributes in process `syz.2.260'.
[  101.401251][ T6871] netlink: 16 bytes leftover after parsing attributes in process `syz.0.264'.
[  101.424197][ T6877] netlink: 'syz.2.267': attribute type 32 has an invalid length.
[  101.518966][ T6880] netlink: 'syz.1.268': attribute type 1 has an invalid length.
[  101.734613][ T6880] 8021q: adding VLAN 0 to HW filter on device bond1
[  101.799219][ T6887] bond1: (slave geneve2): making interface the new active one
[  101.825360][ T6887] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  101.869279][ T6887] syz.1.268 (6887) used greatest stack depth: 18688 bytes left
[  102.302622][ T6925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.275'.
[  102.486437][ T6925] netlink: 28 bytes leftover after parsing attributes in process `syz.1.275'.
[  102.599533][ T6930] bond2 (unregistering): Released all slaves
[  102.742308][ T6936] netlink: 2 bytes leftover after parsing attributes in process `syz.2.277'.
[  102.852437][ T6949] netlink: 'syz.1.280': attribute type 11 has an invalid length.
[  102.880400][ T6949] netlink: 52 bytes leftover after parsing attributes in process `syz.1.280'.
[  103.182650][ T6969] netlink: 40 bytes leftover after parsing attributes in process `syz.1.283'.
[  103.201890][ T6969] netlink: 40 bytes leftover after parsing attributes in process `syz.1.283'.
[  103.401563][ T6979] geneve2: entered promiscuous mode
[  103.716013][ T6991] macvtap1: left allmulticast mode
[  103.746452][ T6991] gretap0: left allmulticast mode
[  103.755078][ T6991] geneve2: left allmulticast mode
[  103.959154][ T7005] netlink: 'syz.3.295': attribute type 8 has an invalid length.
[  104.360786][ T7036] netlink: 'syz.4.303': attribute type 1 has an invalid length.
[  104.455186][ T7036] 8021q: adding VLAN 0 to HW filter on device bond2
[  104.477480][ T7039] bond2: (slave geneve3): making interface the new active one
[  104.486941][ T7039] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  104.514108][ T7044] vlan2: entered promiscuous mode
[  104.531065][ T7044] bond0: entered promiscuous mode
[  104.551109][ T7044] bond_slave_0: entered promiscuous mode
[  104.557283][ T7044] bond_slave_1: entered promiscuous mode
[  104.563405][ T7044] vlan2: entered allmulticast mode
[  104.568758][ T7044] bond0: entered allmulticast mode
[  104.576199][ T7044] bond_slave_0: entered allmulticast mode
[  104.582247][ T7044] bond_slave_1: entered allmulticast mode
[  104.651919][ T7049] veth0_to_bridge: entered promiscuous mode
[  104.703333][ T7056] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  104.753491][ T7043] veth0_to_bridge: left promiscuous mode
[  104.825822][ T7065] bridge0: port 3(macvlan2) entered blocking state
[  104.833770][ T7065] bridge0: port 3(macvlan2) entered disabled state
[  104.840599][ T7065] macvlan2: entered allmulticast mode
[  104.846797][ T7065] bridge0: entered allmulticast mode
[  104.879183][ T7065] macvlan2: left allmulticast mode
[  104.901950][ T7065] bridge0: left allmulticast mode
[  104.971446][ T7072] netlink: 'syz.4.315': attribute type 12 has an invalid length.
[  105.094991][ T7076] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input5
[  105.323334][ T7094] team0: Device gtp0 is of different type
[  105.361680][ T7092] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  105.377866][ T7099] __nla_validate_parse: 12 callbacks suppressed
[  105.377889][ T7099] netlink: 68 bytes leftover after parsing attributes in process `syz.2.326'.
[  105.381583][ T7092] batadv_slave_0: entered promiscuous mode
[  105.429142][ T7099] netlink: 56 bytes leftover after parsing attributes in process `syz.2.326'.
[  105.770634][ T7120] netlink: 64 bytes leftover after parsing attributes in process `syz.2.335'.
[  105.950490][ T7135] netlink: 4 bytes leftover after parsing attributes in process `syz.0.338'.
[  106.036227][ T7139] netlink: 'syz.3.341': attribute type 4 has an invalid length.
[  106.176637][ T7144] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  106.186244][ T5856] Bluetooth: hci4: command 0x0405 tx timeout
[  106.269615][    C1] vcan0: j1939_tp_rxtimer: 0xffff888059c14800: rx timeout, send abort
[  106.278251][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888059c14800: 0x40000: (3) A timeout occurred and this is the connection abort to close the session.
[  106.553727][ T7170] tipc: Started in network mode
[  106.558649][ T7170] tipc: Node identity , cluster identity 4711
[  106.579999][ T7170] tipc: Failed to set node id, please configure manually
[  106.587411][ T7170] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  106.616585][ T7175] netlink: 4 bytes leftover after parsing attributes in process `syz.4.348'.
[  106.659391][ T7178] netlink: 4 bytes leftover after parsing attributes in process `syz.3.351'.
[  106.803355][ T7187] netlink: 'syz.2.352': attribute type 1 has an invalid length.
[  106.811138][ T7187] netlink: 224 bytes leftover after parsing attributes in process `syz.2.352'.
[  107.057811][ T7200] netlink: 'syz.2.356': attribute type 10 has an invalid length.
[  107.145357][ T7200] macvlan1: entered allmulticast mode
[  107.166494][ T7200] veth1_vlan: entered allmulticast mode
[  107.236772][ T7213] netlink: 'syz.3.359': attribute type 32 has an invalid length.
[  107.949814][ T7256] bridge_slave_0: left allmulticast mode
[  107.963868][ T7256] bridge_slave_0: left promiscuous mode
[  107.985399][ T7256] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.005758][ T7256] bridge_slave_1: left allmulticast mode
[  108.011470][ T7256] bridge_slave_1: left promiscuous mode
[  108.016293][ T7260] x_tables: ip_tables: bpf.1 match: invalid size 528 (kernel) != (user) 536
[  108.027189][ T7256] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.083573][ T7266] netlink: 64 bytes leftover after parsing attributes in process `syz.1.376'.
[  108.095703][ T7256] bond0: (slave bond_slave_0): Releasing backup interface
[  108.124576][ T7256] bond0: (slave bond_slave_1): Releasing backup interface
[  108.190163][ T7256] batman_adv: batadv0: Removing interface: batadv_slave_0
[  108.216966][ T7256] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.235065][ T7256] batman_adv: batadv0: Removing interface: batadv_slave_1
[  108.588703][ T7298] netlink: 'syz.0.385': attribute type 32 has an invalid length.
[  108.618228][ T7298] netlink: 28 bytes leftover after parsing attributes in process `syz.0.385'.
[  108.771664][ T7308] netlink: 44 bytes leftover after parsing attributes in process `syz.1.389'.
[  109.046407][ T7317] tipc: Started in network mode
[  109.051885][ T7317] tipc: Node identity , cluster identity 4711
[  109.057995][ T7317] tipc: Failed to set node id, please configure manually
[  109.101736][ T7317] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  109.928169][ T7366] syz_tun: entered promiscuous mode
[  110.755888][ T7414] netlink: 'syz.3.428': attribute type 32 has an invalid length.
[  110.780836][ T7416] __nla_validate_parse: 6 callbacks suppressed
[  110.780857][ T7416] netlink: 196 bytes leftover after parsing attributes in process `syz.2.429'.
[  110.797776][ T7414] netlink: 28 bytes leftover after parsing attributes in process `syz.3.428'.
[  110.830404][ T7419] netlink: 'syz.0.430': attribute type 1 has an invalid length.
[  110.857445][ T7419] netlink: 224 bytes leftover after parsing attributes in process `syz.0.430'.
[  110.969226][ T7421] macvlan1: left allmulticast mode
[  110.986701][ T7421] veth1_vlan: left allmulticast mode
[  111.010175][ T7421] macvtap1: left allmulticast mode
[  111.029401][ T7421] gretap0: left allmulticast mode
[  111.084871][ T7419] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  111.100605][ T7419] syzkaller0: entered promiscuous mode
[  111.112482][ T7410] netlink: 4 bytes leftover after parsing attributes in process `syz.4.427'.
[  111.132442][ T7419] syzkaller0: entered allmulticast mode
[  111.164860][ T7410] netlink: 20 bytes leftover after parsing attributes in process `syz.4.427'.
[  111.172374][ T7419] tipc: Resetting bearer <eth:syzkaller0>
[  111.262785][ T7439] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  111.302307][ T7417] tipc: Resetting bearer <eth:syzkaller0>
[  111.348089][ T7417] tipc: Disabling bearer <eth:syzkaller0>
[  111.712200][ T7466] netlink: 8 bytes leftover after parsing attributes in process `syz.4.446'.
[  111.790047][ T7466] macvtap1: entered promiscuous mode
[  111.813990][ T7466] vlan0: entered promiscuous mode
[  111.944488][ T7480] netlink: 'syz.1.453': attribute type 1 has an invalid length.
[  111.954534][ T7480] netlink: 208 bytes leftover after parsing attributes in process `syz.1.453'.
[  112.133142][ T7483] netlink: 'syz.0.451': attribute type 1 has an invalid length.
[  112.153540][ T7483] netlink: 224 bytes leftover after parsing attributes in process `syz.0.451'.
[  112.293256][ T7495] netlink: 'syz.4.458': attribute type 32 has an invalid length.
[  112.415640][ T7500] netlink: 64 bytes leftover after parsing attributes in process `syz.3.460'.
[  112.643904][ T7514] netlink: 4 bytes leftover after parsing attributes in process `syz.3.464'.
[  112.689233][ T7514] macvtap2: entered promiscuous mode
[  112.717025][ T7514] macvtap2: entered allmulticast mode
[  112.738748][ T7514] gretap0: entered allmulticast mode
[  112.810122][ T7521] netlink: 'syz.2.467': attribute type 9 has an invalid length.
[  113.068461][ T7536] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  113.072488][ T7531] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  113.650434][ T7562] syzkaller0: entered promiscuous mode
[  113.664034][ T7562] syzkaller0: entered allmulticast mode
[  113.703343][ T7562] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  113.927315][ T7577] netlink: 'syz.3.487': attribute type 16 has an invalid length.
[  113.944951][ T7577] netlink: 'syz.3.487': attribute type 17 has an invalid length.
[  114.034281][ T7585] IPv6: NLM_F_REPLACE set, but no existing node found!
[  114.151252][ T7577] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.308666][ T7577] gretap0: left allmulticast mode
[  114.320804][   T37] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.346086][   T37] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.363925][   T37] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.390552][   T37] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  114.587072][ T7600] netlink: 'syz.2.493': attribute type 7 has an invalid length.
[  114.605608][ T7600] netlink: 'syz.2.493': attribute type 8 has an invalid length.
[  114.613534][ T7600] netlink: 'syz.2.493': attribute type 15 has an invalid length.
[  114.944038][ T7620] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  115.078304][ T7625] netlink: 'syz.0.501': attribute type 4 has an invalid length.
[  115.099685][ T7627] macvtap2: left allmulticast mode
[  115.309644][ T7637] sctp: [Deprecated]: syz.2.506 (pid 7637) Use of int in max_burst socket option deprecated.
[  115.309644][ T7637] Use struct sctp_assoc_value instead
[  115.810137][ T7665] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  116.520150][ T7695] __nla_validate_parse: 13 callbacks suppressed
[  116.520170][ T7695] netlink: 224 bytes leftover after parsing attributes in process `syz.1.527'.
[  117.035965][ T7718] validate_nla: 4 callbacks suppressed
[  117.035986][ T7718] netlink: 'syz.4.530': attribute type 7 has an invalid length.
[  117.082820][ T7718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.530'.
[  117.192002][   T30] audit: type=1800 audit(1756348597.144:2): pid=7725 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.537" name="memory.events" dev="tmpfs" ino=649 res=0 errno=0
[  117.215793][ T7734] netlink: 64 bytes leftover after parsing attributes in process `syz.2.541'.
[  117.322062][ T7730] bridge0: port 1(bond3) entered blocking state
[  117.362498][ T7730] bridge0: port 1(bond3) entered disabled state
[  117.412150][ T7730] bond3: entered allmulticast mode
[  117.508293][ T7747] netlink: 20 bytes leftover after parsing attributes in process `syz.2.546'.
[  117.553578][   T36] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  117.555629][ T7747] netlink: 'syz.2.546': attribute type 4 has an invalid length.
[  117.569013][   T36] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  117.579090][   T36] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  117.641118][   T12] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  117.686736][ T7757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.550'.
[  117.770371][ T7757] gretap0: entered promiscuous mode
[  117.789920][ T7757] macvtap2: entered promiscuous mode
[  117.806706][ T7757] macvtap2: entered allmulticast mode
[  117.807944][ T7762] netlink: 20 bytes leftover after parsing attributes in process `syz.0.552'.
[  117.833958][ T7757] gretap0: entered allmulticast mode
[  117.874090][ T7762] netlink: 12 bytes leftover after parsing attributes in process `syz.0.552'.
[  117.887948][ T7768] netlink: 'syz.1.555': attribute type 32 has an invalid length.
[  117.926448][ T7768] netlink: 28 bytes leftover after parsing attributes in process `syz.1.555'.
[  117.962100][ T7762] netlink: 31 bytes leftover after parsing attributes in process `syz.0.552'.
[  117.981472][ T7762] netlink: 'syz.0.552': attribute type 3 has an invalid length.
[  118.015480][ T7774] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  118.024951][ T7762] netlink: 'syz.0.552': attribute type 2 has an invalid length.
[  118.033275][ T7773] netlink: 256 bytes leftover after parsing attributes in process `syz.4.556'.
[  118.051315][ T7775] netdevsim0: mtu less than device minimum
[  118.051465][ T7762] netlink: 'syz.0.552': attribute type 2 has an invalid length.
[  118.228447][ T7780] 8021q: adding VLAN 0 to HW filter on device bond2
[  118.360481][ T7780] bond2 (unregistering): Released all slaves
[  119.011748][ T7828] netlink: 'syz.0.572': attribute type 16 has an invalid length.
[  119.020104][ T7828] netlink: 'syz.0.572': attribute type 17 has an invalid length.
[  119.137073][ T7837] IPv6: NLM_F_REPLACE set, but no existing node found!
[  119.260445][ T7828] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.326234][ T7828] vlan0: left promiscuous mode
[  119.361753][ T7839] tipc: Started in network mode
[  119.422733][ T7839] tipc: Node identity , cluster identity 4711
[  119.447498][ T7839] tipc: Failed to set node id, please configure manually
[  119.479846][ T7839] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  119.498373][   T12] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.605402][   T13] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.665758][   T13] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.755026][   T13] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  119.771350][ T7860] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input6
[  120.257320][ T7891] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  120.461312][ T7901] macvtap3: entered promiscuous mode
[  120.474730][ T7901] macvtap3: entered allmulticast mode
[  120.492472][ T7901] gretap0: entered allmulticast mode
[  121.479744][ T7955] nbd: must specify an index to disconnect
[  121.779285][ T7976] netlink: 'syz.0.619': attribute type 1 has an invalid length.
[  121.807441][ T7977] __nla_validate_parse: 12 callbacks suppressed
[  121.807461][ T7977] netlink: 48 bytes leftover after parsing attributes in process `syz.3.617'.
[  121.866825][ T7976] 8021q: adding VLAN 0 to HW filter on device bond1
[  121.923674][ T7979] 8021q: adding VLAN 0 to HW filter on device bond1
[  121.960548][ T7988] netlink: 24 bytes leftover after parsing attributes in process `syz.2.620'.
[  121.979169][ T7979] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  121.991079][ T7979] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  122.027419][ T7991] netlink: 56 bytes leftover after parsing attributes in process `syz.4.621'.
[  122.072783][ T7976] veth3: entered promiscuous mode
[  122.095548][ T7976] bond1: (slave veth3): Enslaving as an active interface with a down link
[  122.155613][ T7998] netlink: 64 bytes leftover after parsing attributes in process `syz.1.623'.
[  123.017579][ T8042] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (7)
[  123.031768][ T8033] netlink: 24 bytes leftover after parsing attributes in process `syz.1.634'.
[  123.242962][ T8047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.637'.
[  123.437506][ T8049] macvtap1: left allmulticast mode
[  123.443836][ T8049] macvtap2: left allmulticast mode
[  123.449247][ T8049] gretap0: left allmulticast mode
[  123.457539][ T8049] vlan2: left allmulticast mode
[  123.462912][ T8049] bond0: left allmulticast mode
[  123.467949][ T8049] bond_slave_0: left allmulticast mode
[  123.474320][ T8049] bond_slave_1: left allmulticast mode
[  123.485304][ T8054] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551615)
[  123.540604][ T8054] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[  123.571291][ T8044] Bluetooth: MGMT ver 1.23
[  123.593344][ T8059] netlink: 2 bytes leftover after parsing attributes in process `syz.1.641'.
[  123.896137][ T8078] netlink: 44 bytes leftover after parsing attributes in process `syz.4.647'.
[  123.933766][ T8080] bond0: (slave rose0): Error: Device can not be enslaved while up
[  124.068552][ T8084] netlink: 'syz.4.649': attribute type 1 has an invalid length.
[  124.092934][ T8068] syz.1.643 (8068) used greatest stack depth: 17992 bytes left
[  124.109253][ T8084] 8021q: adding VLAN 0 to HW filter on device bond4
[  124.130170][ T8093] netlink: 8 bytes leftover after parsing attributes in process `syz.3.652'.
[  124.266552][ T8094] bond4: (slave geneve4): making interface the new active one
[  124.284487][ T8094] bond4: (slave geneve4): Enslaving as an active interface with an up link
[  124.299851][ T8093] macvtap4: entered promiscuous mode
[  124.305524][ T8093] vlan0: entered promiscuous mode
[  124.686363][ T8125] vlan0: entered promiscuous mode
[  124.695558][ T8125] vlan0: entered allmulticast mode
[  124.702552][ T8125] hsr_slave_1: entered allmulticast mode
[  124.718300][ T8130] netlink: 96 bytes leftover after parsing attributes in process `syz.3.666'.
[  125.160498][ T8162] geneve2: entered promiscuous mode
[  125.165860][ T8162] geneve2: entered allmulticast mode
[  125.178146][ T1107] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.188537][ T1107] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.201218][ T1107] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.213508][ T1107] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.991417][ T8194] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  126.244858][ T8204] netlink: 'syz.4.694': attribute type 5 has an invalid length.
[  126.388666][ T8210] netlink: 'syz.0.696': attribute type 32 has an invalid length.
[  126.788759][ T8229] FAULT_INJECTION: forcing a failure.
[  126.788759][ T8229] name failslab, interval 1, probability 0, space 0, times 0
[  126.818040][ T8229] CPU: 1 UID: 0 PID: 8229 Comm: syz.1.703 Not tainted syzkaller #0 PREEMPT(full) 
[  126.818070][ T8229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  126.818083][ T8229] Call Trace:
[  126.818090][ T8229]  <TASK>
[  126.818099][ T8229]  dump_stack_lvl+0x189/0x250
[  126.818129][ T8229]  ? __pfx____ratelimit+0x10/0x10
[  126.818160][ T8229]  ? __pfx_dump_stack_lvl+0x10/0x10
[  126.818185][ T8229]  ? __pfx__printk+0x10/0x10
[  126.818215][ T8229]  ? __pfx___might_resched+0x10/0x10
[  126.818234][ T8229]  ? lock_acquire+0x5f/0x360
[  126.818266][ T8229]  should_fail_ex+0x414/0x560
[  126.818296][ T8229]  should_failslab+0xa8/0x100
[  126.818327][ T8229]  __kmalloc_noprof+0xcb/0x4f0
[  126.818354][ T8229]  ? fib6_info_alloc+0x30/0xf0
[  126.818380][ T8229]  fib6_info_alloc+0x30/0xf0
[  126.818404][ T8229]  ip6_route_info_create+0x142/0x860
[  126.818441][ T8229]  ? bpf_lsm_capable+0x9/0x20
[  126.818472][ T8229]  ip6_route_add+0x49/0x1b0
[  126.818500][ T8229]  ipv6_route_ioctl+0x35c/0x480
[  126.818531][ T8229]  ? __pfx_ipv6_route_ioctl+0x10/0x10
[  126.818567][ T8229]  ? rcu_is_watching+0x15/0xb0
[  126.818588][ T8229]  ? lock_release+0x4b/0x3e0
[  126.818617][ T8229]  ? __might_fault+0xb0/0x130
[  126.818645][ T8229]  ? __might_fault+0xcc/0x130
[  126.818683][ T8229]  inet6_ioctl+0x219/0x280
[  126.818704][ T8229]  ? __pfx_inet6_ioctl+0x10/0x10
[  126.818722][ T8229]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  126.818755][ T8229]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  126.818785][ T8229]  sock_do_ioctl+0xd9/0x300
[  126.818813][ T8229]  ? __pfx_sock_do_ioctl+0x10/0x10
[  126.818839][ T8229]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  126.818880][ T8229]  sock_ioctl+0x576/0x790
[  126.818904][ T8229]  ? lock_release+0x4b/0x3e0
[  126.818935][ T8229]  ? __pfx_sock_ioctl+0x10/0x10
[  126.818960][ T8229]  ? __fget_files+0x2a/0x420
[  126.818977][ T8229]  ? __fget_files+0x3a0/0x420
[  126.818994][ T8229]  ? __fget_files+0x2a/0x420
[  126.819025][ T8229]  ? bpf_lsm_file_ioctl+0x9/0x20
[  126.819050][ T8229]  ? __pfx_sock_ioctl+0x10/0x10
[  126.819074][ T8229]  __se_sys_ioctl+0xf9/0x170
[  126.819099][ T8229]  do_syscall_64+0xfa/0x3b0
[  126.819118][ T8229]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.819137][ T8229]  ? clear_bhb_loop+0x60/0xb0
[  126.819160][ T8229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.819179][ T8229] RIP: 0033:0x7f0aefb8ebe9
[  126.819197][ T8229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  126.819213][ T8229] RSP: 002b:00007f0af0aae038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  126.819235][ T8229] RAX: ffffffffffffffda RBX: 00007f0aefdb5fa0 RCX: 00007f0aefb8ebe9
[  126.819250][ T8229] RDX: 00002000000000c0 RSI: 000000000000890b RDI: 0000000000000003
[  126.819262][ T8229] RBP: 00007f0af0aae090 R08: 0000000000000000 R09: 0000000000000000
[  126.819275][ T8229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  126.819286][ T8229] R13: 00007f0aefdb6038 R14: 00007f0aefdb5fa0 R15: 00007ffc487fd6b8
[  126.819309][ T8229]  </TASK>
[  127.320606][ T8239] openvswitch: netlink: Tunnel attr 14 has unexpected len 4 expected 0
[  127.636228][ T8267] __nla_validate_parse: 10 callbacks suppressed
[  127.636249][ T8267] netlink: 96 bytes leftover after parsing attributes in process `syz.4.715'.
[  127.841424][ T8284] netlink: 16 bytes leftover after parsing attributes in process `syz.4.722'.
[  127.854016][ T8287] netlink: 8 bytes leftover after parsing attributes in process `syz.3.719'.
[  127.861144][ T8286] netlink: 8 bytes leftover after parsing attributes in process `syz.2.721'.
[  127.891516][ T8286] dummy0: entered promiscuous mode
[  127.919618][ T8286] dummy0: left promiscuous mode
[  127.958187][ T8290] bond0: (slave gretap0): Opening slave failed
[  127.982530][ T8290] tipc: Enabled bearer <udp:syz0>, priority 10
[  128.148905][ T8298] netlink: 8 bytes leftover after parsing attributes in process `syz.4.728'.
[  128.191734][ T8298] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  128.324815][ T8311] netlink: 36 bytes leftover after parsing attributes in process `syz.0.731'.
[  128.332252][ T8317] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.732'.
[  128.435050][ T8311] team0: Port device team_slave_0 removed
[  128.451833][ T8326] netlink: 8 bytes leftover after parsing attributes in process `syz.2.733'.
[  128.470143][ T8321] delete_channel: no stack
[  128.550522][ T8326] syz_tun: entered promiscuous mode
[  128.705897][ T8336] netlink: 2 bytes leftover after parsing attributes in process `syz.1.739'.
[  128.765739][ T8340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.741'.
[  128.807885][ T8345] netlink: 'syz.1.743': attribute type 32 has an invalid length.
[  128.861663][ T8343] batadv_slave_0: left promiscuous mode
[  128.870632][ T8343] erspan1: left promiscuous mode
[  128.881991][ T8343] macvtap1: left promiscuous mode
[  128.892841][ T8343] macvtap2: left promiscuous mode
[  128.915679][ T8343] gretap0: left allmulticast mode
[  128.928319][ T8343] macvtap3: left promiscuous mode
[  128.946008][ T8343] macvtap3: left allmulticast mode
[  128.967382][ T8343] vlan0: left promiscuous mode
[  128.976944][ T8343] macvtap4: left promiscuous mode
[  129.101886][ T5934] tipc: Node number set to 2805845018
[  129.192611][ T8372] !
: renamed from dummy0
[  129.284341][ T8381] FAULT_INJECTION: forcing a failure.
[  129.284341][ T8381] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  129.306696][ T8381] CPU: 1 UID: 0 PID: 8381 Comm: syz.4.755 Not tainted syzkaller #0 PREEMPT(full) 
[  129.306725][ T8381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  129.306737][ T8381] Call Trace:
[  129.306745][ T8381]  <TASK>
[  129.306754][ T8381]  dump_stack_lvl+0x189/0x250
[  129.306784][ T8381]  ? __pfx____ratelimit+0x10/0x10
[  129.306814][ T8381]  ? __pfx_dump_stack_lvl+0x10/0x10
[  129.306837][ T8381]  ? __pfx__printk+0x10/0x10
[  129.306868][ T8381]  ? rcu_is_watching+0x15/0xb0
[  129.306889][ T8381]  should_fail_ex+0x414/0x560
[  129.306918][ T8381]  _copy_to_user+0x31/0xb0
[  129.306943][ T8381]  simple_read_from_buffer+0xe1/0x170
[  129.306976][ T8381]  proc_fail_nth_read+0x1b3/0x220
[  129.307000][ T8381]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  129.307024][ T8381]  ? rw_verify_area+0x2a6/0x4d0
[  129.307050][ T8381]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  129.307072][ T8381]  vfs_read+0x1fd/0xa30
[  129.307096][ T8381]  ? fdget_pos+0x247/0x320
[  129.307116][ T8381]  ? __pfx___mutex_lock+0x10/0x10
[  129.307159][ T8381]  ? __pfx_vfs_read+0x10/0x10
[  129.307188][ T8381]  ? __fget_files+0x3a0/0x420
[  129.307205][ T8381]  ? __fget_files+0x2a/0x420
[  129.307227][ T8381]  ksys_read+0x145/0x250
[  129.307253][ T8381]  ? __fget_files+0x3a0/0x420
[  129.307271][ T8381]  ? __pfx_ksys_read+0x10/0x10
[  129.307297][ T8381]  ? __pfx_sock_ioctl+0x10/0x10
[  129.307324][ T8381]  ? rcu_is_watching+0x15/0xb0
[  129.307347][ T8381]  do_syscall_64+0xfa/0x3b0
[  129.307365][ T8381]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.307386][ T8381]  ? clear_bhb_loop+0x60/0xb0
[  129.307409][ T8381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.307429][ T8381] RIP: 0033:0x7fa5fe38d5fc
[  129.307447][ T8381] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  129.307463][ T8381] RSP: 002b:00007fa5ff298030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  129.307484][ T8381] RAX: ffffffffffffffda RBX: 00007fa5fe5b5fa0 RCX: 00007fa5fe38d5fc
[  129.307500][ T8381] RDX: 000000000000000f RSI: 00007fa5ff2980a0 RDI: 0000000000000004
[  129.307513][ T8381] RBP: 00007fa5ff298090 R08: 0000000000000000 R09: 0000000000000000
[  129.307526][ T8381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.307538][ T8381] R13: 00007fa5fe5b6038 R14: 00007fa5fe5b5fa0 R15: 00007ffc13165a58
[  129.307562][ T8381]  </TASK>
[  129.776321][ T8398] netlink: 'syz.2.759': attribute type 9 has an invalid length.
[  129.784097][ T8398] netlink: 'syz.2.759': attribute type 6 has an invalid length.
[  129.801302][ T8398] netlink: 'syz.2.759': attribute type 7 has an invalid length.
[  129.810315][ T8398] netlink: 'syz.2.759': attribute type 8 has an invalid length.
[  130.567224][ T8449] bond0: (slave gretap0): Opening slave failed
[  131.492534][ T8502] netlink: 'syz.3.771': attribute type 15 has an invalid length.
[  131.619142][ T8509] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  132.084156][ T8528] bridge0: port 1(macvlan2) entered blocking state
[  132.101422][ T8528] bridge0: port 1(macvlan2) entered disabled state
[  132.111393][ T8528] macvlan2: entered allmulticast mode
[  132.117909][ T8528] bridge0: entered allmulticast mode
[  132.125816][ T8528] macvlan2: left allmulticast mode
[  132.131427][ T8532] FAULT_INJECTION: forcing a failure.
[  132.131427][ T8532] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.145281][ T8528] bridge0: left allmulticast mode
[  132.161456][ T8532] CPU: 1 UID: 0 PID: 8532 Comm: syz.0.794 Not tainted syzkaller #0 PREEMPT(full) 
[  132.161485][ T8532] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.161498][ T8532] Call Trace:
[  132.161506][ T8532]  <TASK>
[  132.161515][ T8532]  dump_stack_lvl+0x189/0x250
[  132.161545][ T8532]  ? __pfx____ratelimit+0x10/0x10
[  132.161577][ T8532]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.161601][ T8532]  ? __pfx__printk+0x10/0x10
[  132.161632][ T8532]  ? __might_fault+0xb0/0x130
[  132.161665][ T8532]  ? rcu_is_watching+0x15/0xb0
[  132.161687][ T8532]  should_fail_ex+0x414/0x560
[  132.161717][ T8532]  _copy_from_iter+0x1db/0x16f0
[  132.161739][ T8532]  ? rcu_is_watching+0x15/0xb0
[  132.161760][ T8532]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  132.161788][ T8532]  ? __pfx__copy_from_iter+0x10/0x10
[  132.161807][ T8532]  ? __build_skb_around+0x257/0x3e0
[  132.161843][ T8532]  ? netlink_sendmsg+0x642/0xb30
[  132.161860][ T8532]  ? skb_put+0x11b/0x210
[  132.161881][ T8532]  netlink_sendmsg+0x6b2/0xb30
[  132.161904][ T8532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.161924][ T8532]  ? aa_sock_msg_perm+0xf1/0x1d0
[  132.161944][ T8532]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  132.161966][ T8532]  ? __pfx_netlink_sendmsg+0x10/0x10
[  132.161984][ T8532]  __sock_sendmsg+0x219/0x270
[  132.162013][ T8532]  ____sys_sendmsg+0x505/0x830
[  132.162044][ T8532]  ? __pfx_____sys_sendmsg+0x10/0x10
[  132.162072][ T8532]  ? import_iovec+0x74/0xa0
[  132.162097][ T8532]  ___sys_sendmsg+0x21f/0x2a0
[  132.162120][ T8532]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.162160][ T8532]  ? __fget_files+0x2a/0x420
[  132.162177][ T8532]  ? __fget_files+0x3a0/0x420
[  132.162200][ T8532]  __x64_sys_sendmsg+0x19b/0x260
[  132.162223][ T8532]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  132.162251][ T8532]  ? __pfx_ksys_write+0x10/0x10
[  132.162277][ T8532]  ? rcu_is_watching+0x15/0xb0
[  132.162299][ T8532]  ? rcu_is_watching+0x15/0xb0
[  132.162321][ T8532]  do_syscall_64+0xfa/0x3b0
[  132.162340][ T8532]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.162361][ T8532]  ? clear_bhb_loop+0x60/0xb0
[  132.162383][ T8532]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.162402][ T8532] RIP: 0033:0x7f966a38ebe9
[  132.162420][ T8532] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.162437][ T8532] RSP: 002b:00007f966b21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.162460][ T8532] RAX: ffffffffffffffda RBX: 00007f966a5b5fa0 RCX: 00007f966a38ebe9
[  132.162475][ T8532] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  132.162488][ T8532] RBP: 00007f966b21c090 R08: 0000000000000000 R09: 0000000000000000
[  132.162501][ T8532] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.162513][ T8532] R13: 00007f966a5b6038 R14: 00007f966a5b5fa0 R15: 00007ffc75980dc8
[  132.162536][ T8532]  </TASK>
[  132.580662][ T8540] netlink: 'syz.1.798': attribute type 39 has an invalid length.
[  132.613496][ T8542] netlink: 'syz.0.799': attribute type 1 has an invalid length.
[  132.666328][ T8542] 8021q: adding VLAN 0 to HW filter on device bond2
[  132.723253][ T8548] bond2: (slave geneve3): making interface the new active one
[  132.734673][ T8548] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  132.919087][ T8568] FAULT_INJECTION: forcing a failure.
[  132.919087][ T8568] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.939627][ T8568] CPU: 1 UID: 0 PID: 8568 Comm: syz.1.808 Not tainted syzkaller #0 PREEMPT(full) 
[  132.939656][ T8568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.939669][ T8568] Call Trace:
[  132.939676][ T8568]  <TASK>
[  132.939685][ T8568]  dump_stack_lvl+0x189/0x250
[  132.939716][ T8568]  ? __pfx____ratelimit+0x10/0x10
[  132.939748][ T8568]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.939772][ T8568]  ? __pfx__printk+0x10/0x10
[  132.939799][ T8568]  ? __might_fault+0xb0/0x130
[  132.939832][ T8568]  ? rcu_is_watching+0x15/0xb0
[  132.939854][ T8568]  should_fail_ex+0x414/0x560
[  132.939884][ T8568]  _copy_from_user+0x2d/0xb0
[  132.939908][ T8568]  ___sys_sendmsg+0x158/0x2a0
[  132.939942][ T8568]  ? __pfx____sys_sendmsg+0x10/0x10
[  132.939983][ T8568]  ? __fget_files+0x2a/0x420
[  132.940000][ T8568]  ? __fget_files+0x3a0/0x420
[  132.940023][ T8568]  __x64_sys_sendmsg+0x19b/0x260
[  132.940058][ T8568]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  132.940084][ T8568]  ? __pfx_ksys_write+0x10/0x10
[  132.940109][ T8568]  ? rcu_is_watching+0x15/0xb0
[  132.940130][ T8568]  ? rcu_is_watching+0x15/0xb0
[  132.940151][ T8568]  do_syscall_64+0xfa/0x3b0
[  132.940169][ T8568]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.940189][ T8568]  ? clear_bhb_loop+0x60/0xb0
[  132.940210][ T8568]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.940228][ T8568] RIP: 0033:0x7f0aefb8ebe9
[  132.940244][ T8568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  132.940260][ T8568] RSP: 002b:00007f0af0aae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  132.940281][ T8568] RAX: ffffffffffffffda RBX: 00007f0aefdb5fa0 RCX: 00007f0aefb8ebe9
[  132.940296][ T8568] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  132.940308][ T8568] RBP: 00007f0af0aae090 R08: 0000000000000000 R09: 0000000000000000
[  132.940320][ T8568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.940331][ T8568] R13: 00007f0aefdb6038 R14: 00007f0aefdb5fa0 R15: 00007ffc487fd6b8
[  132.940354][ T8568]  </TASK>
[  133.153597][ T8565] __nla_validate_parse: 10 callbacks suppressed
[  133.153618][ T8565] netlink: 2 bytes leftover after parsing attributes in process `syz.3.807'.
[  133.472056][ T8558] macvlan1: left allmulticast mode
[  133.482679][ T8558] veth1_vlan: left allmulticast mode
[  133.503696][ T8558] vlan0: left allmulticast mode
[  133.519969][ T8558] hsr_slave_1: left allmulticast mode
[  133.542228][ T8590] netlink: 16 bytes leftover after parsing attributes in process `syz.3.812'.
[  133.572206][ T8590] netlink: 8 bytes leftover after parsing attributes in process `syz.3.812'.
[  133.586261][ T8584] netlink: 260 bytes leftover after parsing attributes in process `syz.1.811'.
[  133.601932][ T8584] netlink: 260 bytes leftover after parsing attributes in process `syz.1.811'.
[  133.668518][ T8597] netlink: 8 bytes leftover after parsing attributes in process `syz.2.815'.
[  133.688579][ T8590] batadv_slave_1: entered promiscuous mode
[  133.724994][ T8597] netlink: 24 bytes leftover after parsing attributes in process `syz.2.815'.
[  133.747185][ T8581] batadv_slave_1: left promiscuous mode
[  133.820503][ T8598] netlink: 4 bytes leftover after parsing attributes in process `syz.4.814'.
[  133.836966][ T8608] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  133.848797][ T8606] FAULT_INJECTION: forcing a failure.
[  133.848797][ T8606] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.862062][ T8598] bond3: left allmulticast mode
[  133.862335][ T8598] bridge0: port 1(bond3) entered disabled state
[  133.928717][ T8606] CPU: 1 UID: 0 PID: 8606 Comm: syz.2.818 Not tainted syzkaller #0 PREEMPT(full) 
[  133.928747][ T8606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  133.928761][ T8606] Call Trace:
[  133.928769][ T8606]  <TASK>
[  133.928777][ T8606]  dump_stack_lvl+0x189/0x250
[  133.928809][ T8606]  ? __pfx____ratelimit+0x10/0x10
[  133.928840][ T8606]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.928868][ T8606]  ? __pfx__printk+0x10/0x10
[  133.928902][ T8606]  ? __might_fault+0xb0/0x130
[  133.928936][ T8606]  ? rcu_is_watching+0x15/0xb0
[  133.928959][ T8606]  should_fail_ex+0x414/0x560
[  133.928988][ T8606]  _copy_from_user+0x2d/0xb0
[  133.929013][ T8606]  ___sys_sendmsg+0x158/0x2a0
[  133.929038][ T8606]  ? __pfx____sys_sendmsg+0x10/0x10
[  133.929080][ T8606]  ? __fget_files+0x2a/0x420
[  133.929098][ T8606]  ? __fget_files+0x3a0/0x420
[  133.929121][ T8606]  __x64_sys_sendmsg+0x19b/0x260
[  133.929144][ T8606]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  133.929172][ T8606]  ? __pfx_ksys_write+0x10/0x10
[  133.929199][ T8606]  ? rcu_is_watching+0x15/0xb0
[  133.929221][ T8606]  ? rcu_is_watching+0x15/0xb0
[  133.929243][ T8606]  do_syscall_64+0xfa/0x3b0
[  133.929262][ T8606]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.929282][ T8606]  ? clear_bhb_loop+0x60/0xb0
[  133.929305][ T8606]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.929326][ T8606] RIP: 0033:0x7f037778ebe9
[  133.929344][ T8606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.929362][ T8606] RSP: 002b:00007f037869d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  133.929384][ T8606] RAX: ffffffffffffffda RBX: 00007f03779b5fa0 RCX: 00007f037778ebe9
[  133.929399][ T8606] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  133.929412][ T8606] RBP: 00007f037869d090 R08: 0000000000000000 R09: 0000000000000000
[  133.929424][ T8606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.929436][ T8606] R13: 00007f03779b6038 R14: 00007f03779b5fa0 R15: 00007fffa6342538
[  133.929461][ T8606]  </TASK>
[  133.948218][ T8613] netlink: 8 bytes leftover after parsing attributes in process `syz.1.816'.
[  134.218670][ T8615] netlink: 4 bytes leftover after parsing attributes in process `syz.2.820'.
[  134.496054][ T8627] dummy0: entered promiscuous mode
[  134.538957][ T8627] dummy0: left promiscuous mode
[  134.572142][ T8634] FAULT_INJECTION: forcing a failure.
[  134.572142][ T8634] name failslab, interval 1, probability 0, space 0, times 0
[  134.588456][ T8634] CPU: 1 UID: 0 PID: 8634 Comm: syz.1.828 Not tainted syzkaller #0 PREEMPT(full) 
[  134.588493][ T8634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  134.588506][ T8634] Call Trace:
[  134.588514][ T8634]  <TASK>
[  134.588523][ T8634]  dump_stack_lvl+0x189/0x250
[  134.588560][ T8634]  ? __pfx____ratelimit+0x10/0x10
[  134.588613][ T8634]  ? __pfx_dump_stack_lvl+0x10/0x10
[  134.588637][ T8634]  ? __pfx__printk+0x10/0x10
[  134.588673][ T8634]  ? fs_reclaim_acquire+0x7d/0x100
[  134.588705][ T8634]  ? rcu_is_watching+0x15/0xb0
[  134.588725][ T8634]  ? __pfx___might_resched+0x10/0x10
[  134.588750][ T8634]  ? lock_acquire+0x5f/0x360
[  134.588783][ T8634]  should_fail_ex+0x414/0x560
[  134.588814][ T8634]  should_failslab+0xa8/0x100
[  134.588844][ T8634]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  134.588873][ T8634]  ? __alloc_skb+0x112/0x2d0
[  134.588894][ T8634]  __alloc_skb+0x112/0x2d0
[  134.588913][ T8634]  netlink_sendmsg+0x5c6/0xb30
[  134.588937][ T8634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.588956][ T8634]  ? aa_sock_msg_perm+0xf1/0x1d0
[  134.588975][ T8634]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  134.588996][ T8634]  ? __pfx_netlink_sendmsg+0x10/0x10
[  134.589022][ T8634]  __sock_sendmsg+0x219/0x270
[  134.589051][ T8634]  ____sys_sendmsg+0x505/0x830
[  134.589077][ T8634]  ? __pfx_____sys_sendmsg+0x10/0x10
[  134.589103][ T8634]  ? import_iovec+0x74/0xa0
[  134.589128][ T8634]  ___sys_sendmsg+0x21f/0x2a0
[  134.589151][ T8634]  ? __pfx____sys_sendmsg+0x10/0x10
[  134.589193][ T8634]  ? __fget_files+0x2a/0x420
[  134.589210][ T8634]  ? __fget_files+0x3a0/0x420
[  134.589233][ T8634]  __x64_sys_sendmsg+0x19b/0x260
[  134.589257][ T8634]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  134.589285][ T8634]  ? __pfx_ksys_write+0x10/0x10
[  134.589311][ T8634]  ? rcu_is_watching+0x15/0xb0
[  134.589334][ T8634]  ? rcu_is_watching+0x15/0xb0
[  134.589355][ T8634]  do_syscall_64+0xfa/0x3b0
[  134.589374][ T8634]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.589394][ T8634]  ? clear_bhb_loop+0x60/0xb0
[  134.589417][ T8634]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  134.589436][ T8634] RIP: 0033:0x7f0aefb8ebe9
[  134.589454][ T8634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.589471][ T8634] RSP: 002b:00007f0af0aae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  134.589493][ T8634] RAX: ffffffffffffffda RBX: 00007f0aefdb5fa0 RCX: 00007f0aefb8ebe9
[  134.589508][ T8634] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  134.589521][ T8634] RBP: 00007f0af0aae090 R08: 0000000000000000 R09: 0000000000000000
[  134.589534][ T8634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.589546][ T8634] R13: 00007f0aefdb6038 R14: 00007f0aefdb5fa0 R15: 00007ffc487fd6b8
[  134.589569][ T8634]  </TASK>
[  134.931402][ T8641] netlink: 'syz.4.833': attribute type 32 has an invalid length.
[  135.527668][ T8667] FAULT_INJECTION: forcing a failure.
[  135.527668][ T8667] name failslab, interval 1, probability 0, space 0, times 0
[  135.560335][ T8667] CPU: 0 UID: 0 PID: 8667 Comm: syz.0.838 Not tainted syzkaller #0 PREEMPT(full) 
[  135.560366][ T8667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  135.560379][ T8667] Call Trace:
[  135.560387][ T8667]  <TASK>
[  135.560396][ T8667]  dump_stack_lvl+0x189/0x250
[  135.560427][ T8667]  ? __pfx____ratelimit+0x10/0x10
[  135.560457][ T8667]  ? __pfx_dump_stack_lvl+0x10/0x10
[  135.560481][ T8667]  ? __pfx__printk+0x10/0x10
[  135.560510][ T8667]  ? fs_reclaim_acquire+0x7d/0x100
[  135.560541][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.560561][ T8667]  ? __pfx___might_resched+0x10/0x10
[  135.560580][ T8667]  ? lock_acquire+0x5f/0x360
[  135.560610][ T8667]  should_fail_ex+0x414/0x560
[  135.560640][ T8667]  should_failslab+0xa8/0x100
[  135.560670][ T8667]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  135.560697][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.560724][ T8667]  ? __alloc_skb+0x112/0x2d0
[  135.560745][ T8667]  __alloc_skb+0x112/0x2d0
[  135.560765][ T8667]  inet_rtm_getroute+0x74c/0x27e0
[  135.560799][ T8667]  ? unwind_next_frame+0xa5/0x2390
[  135.560822][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.560842][ T8667]  ? unwind_next_frame+0xa5/0x2390
[  135.560866][ T8667]  ? __pfx_inet_rtm_getroute+0x10/0x10
[  135.560909][ T8667]  ? kernel_text_address+0xa5/0xe0
[  135.560939][ T8667]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  135.560965][ T8667]  ? arch_stack_walk+0xfc/0x150
[  135.560994][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.561013][ T8667]  ? lock_release+0x4b/0x3e0
[  135.561042][ T8667]  ? __pfx_stack_trace_save+0x10/0x10
[  135.561069][ T8667]  ? __pfx_inet_rtm_getroute+0x10/0x10
[  135.561097][ T8667]  rtnetlink_rcv_msg+0x7cc/0xb70
[  135.561132][ T8667]  ? rtnetlink_rcv_msg+0x1ab/0xb70
[  135.561162][ T8667]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  135.561193][ T8667]  ? __netlink_lookup+0xbd/0x810
[  135.561211][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.561231][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.561254][ T8667]  netlink_rcv_skb+0x205/0x470
[  135.561289][ T8667]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  135.561321][ T8667]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  135.561364][ T8667]  netlink_unicast+0x82f/0x9e0
[  135.561397][ T8667]  ? __pfx_netlink_unicast+0x10/0x10
[  135.561426][ T8667]  ? netlink_sendmsg+0x642/0xb30
[  135.561443][ T8667]  ? skb_put+0x11b/0x210
[  135.561464][ T8667]  netlink_sendmsg+0x805/0xb30
[  135.561487][ T8667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.561507][ T8667]  ? aa_sock_msg_perm+0xf1/0x1d0
[  135.561528][ T8667]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  135.561551][ T8667]  ? __pfx_netlink_sendmsg+0x10/0x10
[  135.561570][ T8667]  __sock_sendmsg+0x219/0x270
[  135.561599][ T8667]  ____sys_sendmsg+0x505/0x830
[  135.561623][ T8667]  ? __pfx_____sys_sendmsg+0x10/0x10
[  135.561650][ T8667]  ? import_iovec+0x74/0xa0
[  135.561675][ T8667]  ___sys_sendmsg+0x21f/0x2a0
[  135.561698][ T8667]  ? __pfx____sys_sendmsg+0x10/0x10
[  135.561746][ T8667]  ? __fget_files+0x2a/0x420
[  135.561764][ T8667]  ? __fget_files+0x3a0/0x420
[  135.561786][ T8667]  __x64_sys_sendmsg+0x19b/0x260
[  135.561808][ T8667]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  135.561834][ T8667]  ? __pfx_ksys_write+0x10/0x10
[  135.561859][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.561881][ T8667]  ? rcu_is_watching+0x15/0xb0
[  135.561902][ T8667]  do_syscall_64+0xfa/0x3b0
[  135.561921][ T8667]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.561941][ T8667]  ? clear_bhb_loop+0x60/0xb0
[  135.561963][ T8667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  135.561981][ T8667] RIP: 0033:0x7f966a38ebe9
[  135.562000][ T8667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  135.562018][ T8667] RSP: 002b:00007f966b21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  135.562041][ T8667] RAX: ffffffffffffffda RBX: 00007f966a5b5fa0 RCX: 00007f966a38ebe9
[  135.562056][ T8667] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  135.562069][ T8667] RBP: 00007f966b21c090 R08: 0000000000000000 R09: 0000000000000000
[  135.562082][ T8667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  135.562094][ T8667] R13: 00007f966a5b6038 R14: 00007f966a5b5fa0 R15: 00007ffc75980dc8
[  135.562117][ T8667]  </TASK>
[  135.584335][ T8672] netlink: 'syz.1.839': attribute type 1 has an invalid length.
[  135.823202][ T8678] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (3)
[  137.205804][ T8686] netlink: 'syz.0.845': attribute type 6 has an invalid length.
[  137.376864][ T8711] macvtap2: entered promiscuous mode
[  137.394763][ T8711] macvtap2: entered allmulticast mode
[  137.400293][ T8711] gretap0: entered allmulticast mode
[  137.413948][ T8713] netlink: 'syz.1.855': attribute type 32 has an invalid length.
[  137.557018][ T8720] pim6reg1: entered promiscuous mode
[  137.573308][ T8720] pim6reg1: entered allmulticast mode
[  137.574522][ T8726] netlink: 'syz.3.857': attribute type 2 has an invalid length.
[  137.589274][ T8720] netlink: 'syz.1.859': attribute type 9 has an invalid length.
[  138.205494][ T8753] __nla_validate_parse: 13 callbacks suppressed
[  138.205536][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.868'.
[  138.221667][ T8754] netlink: 'syz.4.867': attribute type 1 has an invalid length.
[  138.342678][ T8754] bond5: entered promiscuous mode
[  138.351561][ T8764] FAULT_INJECTION: forcing a failure.
[  138.351561][ T8764] name failslab, interval 1, probability 0, space 0, times 0
[  138.361286][ T8754] 8021q: adding VLAN 0 to HW filter on device bond5
[  138.364605][ T8764] CPU: 1 UID: 0 PID: 8764 Comm: syz.3.871 Not tainted syzkaller #0 PREEMPT(full) 
[  138.364651][ T8764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  138.364674][ T8764] Call Trace:
[  138.364691][ T8764]  <TASK>
[  138.364709][ T8764]  dump_stack_lvl+0x189/0x250
[  138.364751][ T8764]  ? __pfx____ratelimit+0x10/0x10
[  138.364795][ T8764]  ? __pfx_dump_stack_lvl+0x10/0x10
[  138.364832][ T8764]  ? __pfx__printk+0x10/0x10
[  138.364887][ T8764]  ? __pfx___might_resched+0x10/0x10
[  138.364919][ T8764]  ? lock_acquire+0x5f/0x360
[  138.364964][ T8764]  should_fail_ex+0x414/0x560
[  138.365008][ T8764]  should_failslab+0xa8/0x100
[  138.365051][ T8764]  __kmalloc_noprof+0xcb/0x4f0
[  138.365091][ T8764]  ? kfree+0x4d/0x440
[  138.365125][ T8764]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  138.365162][ T8764]  tomoyo_realpath_from_path+0xe3/0x5d0
[  138.365196][ T8764]  ? tomoyo_domain+0xd9/0x130
[  138.365232][ T8764]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  138.365272][ T8764]  tomoyo_path_number_perm+0x1e8/0x5a0
[  138.365313][ T8764]  ? lock_release+0x4b/0x3e0
[  138.365355][ T8764]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  138.365399][ T8764]  ? rcu_is_watching+0x15/0xb0
[  138.365432][ T8764]  ? lock_release+0x4b/0x3e0
[  138.365468][ T8764]  ? vfs_write+0x956/0xb30
[  138.365515][ T8764]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  138.365584][ T8764]  ? lock_release+0x4b/0x3e0
[  138.365629][ T8764]  ? __fget_files+0x2a/0x420
[  138.365657][ T8764]  ? __fget_files+0x3a0/0x420
[  138.365685][ T8764]  ? __fget_files+0x2a/0x420
[  138.365715][ T8764]  security_file_ioctl+0xcb/0x2d0
[  138.365757][ T8764]  __se_sys_ioctl+0x47/0x170
[  138.365795][ T8764]  do_syscall_64+0xfa/0x3b0
[  138.365826][ T8764]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.365866][ T8764]  ? clear_bhb_loop+0x60/0xb0
[  138.365902][ T8764]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.365934][ T8764] RIP: 0033:0x7f7b3f18ebe9
[  138.365965][ T8764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.365993][ T8764] RSP: 002b:00007f7b3ffee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  138.366058][ T8764] RAX: ffffffffffffffda RBX: 00007f7b3f3b5fa0 RCX: 00007f7b3f18ebe9
[  138.366083][ T8764] RDX: 0000200000000180 RSI: 0000000000008990 RDI: 0000000000000004
[  138.366117][ T8764] RBP: 00007f7b3ffee090 R08: 0000000000000000 R09: 0000000000000000
[  138.366140][ T8764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.366162][ T8764] R13: 00007f7b3f3b6038 R14: 00007f7b3f3b5fa0 R15: 00007ffcd55c9ea8
[  138.366201][ T8764]  </TASK>
[  138.366288][ T8764] ERROR: Out of memory at tomoyo_realpath_from_path.
[  138.639309][ T8766] netlink: 2 bytes leftover after parsing attributes in process `syz.0.872'.
[  138.650052][ T8764] bond0: (slave gretap0): Opening slave failed
[  138.763465][ T8771] netlink: 8 bytes leftover after parsing attributes in process `syz.0.873'.
[  138.817589][ T8771] netlink: 'syz.0.873': attribute type 4 has an invalid length.
[  138.837870][ T8771] netlink: 12 bytes leftover after parsing attributes in process `syz.0.873'.
[  138.852883][ T8771] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  138.875303][ T8776] netlink: 4 bytes leftover after parsing attributes in process `syz.3.877'.
[  138.891244][ T8776] geneve2: entered promiscuous mode
[  138.901093][ T8776] geneve2: entered allmulticast mode
[  138.911184][ T8423] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.919852][ T8423] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.961281][ T8423] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.971995][ T8781] netlink: 'syz.4.878': attribute type 9 has an invalid length.
[  139.005185][ T8781] netlink: 8 bytes leftover after parsing attributes in process `syz.4.878'.
[  139.007975][ T8423] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.137004][ T8789] batadv_slave_0: entered promiscuous mode
[  139.482259][ T8811] netlink: 44 bytes leftover after parsing attributes in process `syz.3.888'.
[  139.531209][ T8809] bond0: (slave bond_slave_0): Releasing backup interface
[  139.553176][ T8809] bond_slave_0: left promiscuous mode
[  139.572638][ T8809] bond0: (slave bond_slave_1): Releasing backup interface
[  139.613781][ T8809] bond_slave_1: left promiscuous mode
[  139.670967][ T8809] team0: Port device team_slave_0 removed
[  139.734538][ T8809] team0: Port device team_slave_1 removed
[  139.762288][ T8809] batman_adv: batadv0: Removing interface: batadv_slave_0
[  139.793166][ T8809] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  139.800607][ T8809] batman_adv: batadv0: Removing interface: batadv_slave_1
[  139.889299][ T8809] bond1: (slave geneve2): Releasing active interface
[  139.978792][ T8817] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  139.997663][ T8842] netlink: 20824 bytes leftover after parsing attributes in process `syz.3.895'.
[  140.032608][ T8842] netlink: 24 bytes leftover after parsing attributes in process `syz.3.895'.
[  140.076367][ T8836] netlink: 4 bytes leftover after parsing attributes in process `syz.4.896'.
[  140.164983][ T8848] geneve2: left allmulticast mode
[  140.421233][ T8862] xfrm0: entered promiscuous mode
[  140.437728][ T8862] xfrm0: entered allmulticast mode
[  140.526830][ T8868] netlink: 'syz.0.904': attribute type 1 has an invalid length.
[  140.633226][ T8868] 8021q: adding VLAN 0 to HW filter on device bond3
[  140.669474][ T8864] bond3: (slave geneve4): making interface the new active one
[  140.699925][ T8864] bond3: (slave geneve4): Enslaving as an active interface with an up link
[  140.741070][ T8884] openvswitch: netlink: IP tunnel attribute has 12 unknown bytes.
[  140.779277][ T8884] syz_tun: entered allmulticast mode
[  140.991856][ T8898] sctp: [Deprecated]: syz.0.914 (pid 8898) Use of int in maxseg socket option.
[  140.991856][ T8898] Use struct sctp_assoc_value instead
[  141.205079][ T8906] netlink: 'syz.2.917': attribute type 10 has an invalid length.
[  141.255008][ T8906] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  141.475189][ T8928] FAULT_INJECTION: forcing a failure.
[  141.475189][ T8928] name failslab, interval 1, probability 0, space 0, times 0
[  141.488107][ T8928] CPU: 0 UID: 0 PID: 8928 Comm: syz.4.923 Not tainted syzkaller #0 PREEMPT(full) 
[  141.488132][ T8928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  141.488142][ T8928] Call Trace:
[  141.488148][ T8928]  <TASK>
[  141.488156][ T8928]  dump_stack_lvl+0x189/0x250
[  141.488182][ T8928]  ? __pfx____ratelimit+0x10/0x10
[  141.488207][ T8928]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.488227][ T8928]  ? __pfx__printk+0x10/0x10
[  141.488251][ T8928]  ? __pfx___might_resched+0x10/0x10
[  141.488267][ T8928]  ? lock_acquire+0x5f/0x360
[  141.488293][ T8928]  should_fail_ex+0x414/0x560
[  141.488318][ T8928]  should_failslab+0xa8/0x100
[  141.488344][ T8928]  __kmalloc_noprof+0xcb/0x4f0
[  141.488367][ T8928]  ? tomoyo_encode+0x28b/0x550
[  141.488386][ T8928]  tomoyo_encode+0x28b/0x550
[  141.488404][ T8928]  tomoyo_realpath_from_path+0x58d/0x5d0
[  141.488422][ T8928]  ? tomoyo_domain+0xd9/0x130
[  141.488441][ T8928]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  141.488464][ T8928]  tomoyo_path_number_perm+0x1e8/0x5a0
[  141.488487][ T8928]  ? lock_release+0x4b/0x3e0
[  141.488512][ T8928]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  141.488536][ T8928]  ? rcu_is_watching+0x15/0xb0
[  141.488553][ T8928]  ? lock_release+0x4b/0x3e0
[  141.488576][ T8928]  ? vfs_write+0x956/0xb30
[  141.488601][ T8928]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  141.488644][ T8928]  ? lock_release+0x4b/0x3e0
[  141.488670][ T8928]  ? __fget_files+0x2a/0x420
[  141.488684][ T8928]  ? __fget_files+0x3a0/0x420
[  141.488697][ T8928]  ? __fget_files+0x2a/0x420
[  141.488713][ T8928]  security_file_ioctl+0xcb/0x2d0
[  141.488736][ T8928]  __se_sys_ioctl+0x47/0x170
[  141.488757][ T8928]  do_syscall_64+0xfa/0x3b0
[  141.488773][ T8928]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.488790][ T8928]  ? clear_bhb_loop+0x60/0xb0
[  141.488808][ T8928]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.488825][ T8928] RIP: 0033:0x7fa5fe38ebe9
[  141.488840][ T8928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.488854][ T8928] RSP: 002b:00007fa5ff298038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  141.488873][ T8928] RAX: ffffffffffffffda RBX: 00007fa5fe5b5fa0 RCX: 00007fa5fe38ebe9
[  141.488885][ T8928] RDX: 0000200000000180 RSI: 0000000000008990 RDI: 0000000000000004
[  141.488896][ T8928] RBP: 00007fa5ff298090 R08: 0000000000000000 R09: 0000000000000000
[  141.488906][ T8928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.488916][ T8928] R13: 00007fa5fe5b6038 R14: 00007fa5fe5b5fa0 R15: 00007ffc13165a58
[  141.488938][ T8928]  </TASK>
[  141.488959][ T8928] ERROR: Out of memory at tomoyo_realpath_from_path.
[  141.761215][ T8932] netlink: 'syz.3.926': attribute type 32 has an invalid length.
[  141.781993][ T8928] bond0: (slave gretap0): Opening slave failed
[  142.029256][ T8949] netlink: 'syz.0.931': attribute type 11 has an invalid length.
[  142.377293][ T8970] FAULT_INJECTION: forcing a failure.
[  142.377293][ T8970] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.432667][ T8970] CPU: 0 UID: 0 PID: 8970 Comm: syz.1.938 Not tainted syzkaller #0 PREEMPT(full) 
[  142.432697][ T8970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  142.432710][ T8970] Call Trace:
[  142.432717][ T8970]  <TASK>
[  142.432726][ T8970]  dump_stack_lvl+0x189/0x250
[  142.432756][ T8970]  ? __pfx____ratelimit+0x10/0x10
[  142.432787][ T8970]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.432810][ T8970]  ? __pfx__printk+0x10/0x10
[  142.432837][ T8970]  ? __might_fault+0xb0/0x130
[  142.432869][ T8970]  ? rcu_is_watching+0x15/0xb0
[  142.432891][ T8970]  should_fail_ex+0x414/0x560
[  142.432921][ T8970]  _copy_from_iter+0x1db/0x16f0
[  142.432943][ T8970]  ? rcu_is_watching+0x15/0xb0
[  142.432964][ T8970]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  142.432993][ T8970]  ? __pfx__copy_from_iter+0x10/0x10
[  142.433013][ T8970]  ? __build_skb_around+0x257/0x3e0
[  142.433047][ T8970]  ? netlink_sendmsg+0x642/0xb30
[  142.433064][ T8970]  ? skb_put+0x11b/0x210
[  142.433085][ T8970]  netlink_sendmsg+0x6b2/0xb30
[  142.433107][ T8970]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.433128][ T8970]  ? aa_sock_msg_perm+0xf1/0x1d0
[  142.433147][ T8970]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  142.433170][ T8970]  ? __pfx_netlink_sendmsg+0x10/0x10
[  142.433188][ T8970]  __sock_sendmsg+0x219/0x270
[  142.433216][ T8970]  ____sys_sendmsg+0x505/0x830
[  142.433240][ T8970]  ? __pfx_____sys_sendmsg+0x10/0x10
[  142.433266][ T8970]  ? import_iovec+0x74/0xa0
[  142.433291][ T8970]  ___sys_sendmsg+0x21f/0x2a0
[  142.433313][ T8970]  ? __pfx____sys_sendmsg+0x10/0x10
[  142.433347][ T8970]  ? __fget_files+0x2a/0x420
[  142.433366][ T8970]  ? __fget_files+0x3a0/0x420
[  142.433385][ T8970]  __x64_sys_sendmsg+0x19b/0x260
[  142.433404][ T8970]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  142.433426][ T8970]  ? __pfx_ksys_write+0x10/0x10
[  142.433447][ T8970]  ? rcu_is_watching+0x15/0xb0
[  142.433464][ T8970]  ? rcu_is_watching+0x15/0xb0
[  142.433481][ T8970]  do_syscall_64+0xfa/0x3b0
[  142.433497][ T8970]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.433513][ T8970]  ? clear_bhb_loop+0x60/0xb0
[  142.433531][ T8970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.433556][ T8970] RIP: 0033:0x7f0aefb8ebe9
[  142.433571][ T8970] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.433585][ T8970] RSP: 002b:00007f0af0aae038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.433603][ T8970] RAX: ffffffffffffffda RBX: 00007f0aefdb5fa0 RCX: 00007f0aefb8ebe9
[  142.433622][ T8970] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000003
[  142.433632][ T8970] RBP: 00007f0af0aae090 R08: 0000000000000000 R09: 0000000000000000
[  142.433647][ T8970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.433656][ T8970] R13: 00007f0aefdb6038 R14: 00007f0aefdb5fa0 R15: 00007ffc487fd6b8
[  142.433675][ T8970]  </TASK>
[  142.857961][ T8982] netlink: 'syz.0.944': attribute type 32 has an invalid length.
[  143.747830][ T9010] __nla_validate_parse: 8 callbacks suppressed
[  143.747851][ T9010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.953'.
[  143.767569][ T9012] netlink: 'syz.1.951': attribute type 15 has an invalid length.
[  143.786623][ T9011] netlink: 112 bytes leftover after parsing attributes in process `syz.4.954'.
[  143.869581][ T9014] netlink: 8 bytes leftover after parsing attributes in process `syz.2.955'.
[  143.916366][ T9014] macvtap3: entered promiscuous mode
[  144.345494][ T9041] FAULT_INJECTION: forcing a failure.
[  144.345494][ T9041] name failslab, interval 1, probability 0, space 0, times 0
[  144.432040][ T9041] CPU: 1 UID: 0 PID: 9041 Comm: syz.2.964 Not tainted syzkaller #0 PREEMPT(full) 
[  144.432070][ T9041] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  144.432083][ T9041] Call Trace:
[  144.432091][ T9041]  <TASK>
[  144.432100][ T9041]  dump_stack_lvl+0x189/0x250
[  144.432141][ T9041]  ? __pfx____ratelimit+0x10/0x10
[  144.432172][ T9041]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.432197][ T9041]  ? __pfx__printk+0x10/0x10
[  144.432228][ T9041]  ? __pfx___might_resched+0x10/0x10
[  144.432248][ T9041]  ? lock_acquire+0x5f/0x360
[  144.432279][ T9041]  should_fail_ex+0x414/0x560
[  144.432309][ T9041]  should_failslab+0xa8/0x100
[  144.432340][ T9041]  __kmalloc_noprof+0xcb/0x4f0
[  144.432367][ T9041]  ? tomoyo_encode+0x28b/0x550
[  144.432389][ T9041]  tomoyo_encode+0x28b/0x550
[  144.432412][ T9041]  tomoyo_realpath_from_path+0x58d/0x5d0
[  144.432434][ T9041]  ? tomoyo_domain+0xd9/0x130
[  144.432457][ T9041]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  144.432486][ T9041]  tomoyo_path_number_perm+0x1e8/0x5a0
[  144.432515][ T9041]  ? lock_release+0x4b/0x3e0
[  144.432545][ T9041]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  144.432575][ T9041]  ? rcu_is_watching+0x15/0xb0
[  144.432596][ T9041]  ? lock_release+0x4b/0x3e0
[  144.432624][ T9041]  ? vfs_write+0x956/0xb30
[  144.432654][ T9041]  ? __mutex_unlock_slowpath+0x1a1/0x740
[  144.432697][ T9041]  ? lock_release+0x4b/0x3e0
[  144.432730][ T9041]  ? __fget_files+0x2a/0x420
[  144.432747][ T9041]  ? __fget_files+0x3a0/0x420
[  144.432764][ T9041]  ? __fget_files+0x2a/0x420
[  144.432783][ T9041]  security_file_ioctl+0xcb/0x2d0
[  144.432810][ T9041]  __se_sys_ioctl+0x47/0x170
[  144.432837][ T9041]  do_syscall_64+0xfa/0x3b0
[  144.432856][ T9041]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.432877][ T9041]  ? clear_bhb_loop+0x60/0xb0
[  144.432900][ T9041]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.432921][ T9041] RIP: 0033:0x7f037778ebe9
[  144.432939][ T9041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  144.432957][ T9041] RSP: 002b:00007f037869d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  144.432980][ T9041] RAX: ffffffffffffffda RBX: 00007f03779b5fa0 RCX: 00007f037778ebe9
[  144.432995][ T9041] RDX: 0000200000000180 RSI: 0000000000008990 RDI: 0000000000000004
[  144.433008][ T9041] RBP: 00007f037869d090 R08: 0000000000000000 R09: 0000000000000000
[  144.433027][ T9041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  144.433039][ T9041] R13: 00007f03779b6038 R14: 00007f03779b5fa0 R15: 00007fffa6342538
[  144.433064][ T9041]  </TASK>
[  144.433167][ T9041] ERROR: Out of memory at tomoyo_realpath_from_path.
[  144.717705][ T9041] bond0: (slave gretap0): Opening slave failed
[  144.870005][ T9056] netlink: 44 bytes leftover after parsing attributes in process `syz.2.971'.
[  144.999640][ T9065] FAULT_INJECTION: forcing a failure.
[  144.999640][ T9065] name failslab, interval 1, probability 0, space 0, times 0
[  145.044870][ T9065] CPU: 0 UID: 0 PID: 9065 Comm: syz.0.976 Not tainted syzkaller #0 PREEMPT(full) 
[  145.044899][ T9065] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  145.044913][ T9065] Call Trace:
[  145.044920][ T9065]  <TASK>
[  145.044928][ T9065]  dump_stack_lvl+0x189/0x250
[  145.044958][ T9065]  ? __pfx____ratelimit+0x10/0x10
[  145.044988][ T9065]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.045011][ T9065]  ? __pfx__printk+0x10/0x10
[  145.045041][ T9065]  ? fs_reclaim_acquire+0x7d/0x100
[  145.045072][ T9065]  ? __pfx___might_resched+0x10/0x10
[  145.045091][ T9065]  ? lock_acquire+0x5f/0x360
[  145.045121][ T9065]  should_fail_ex+0x414/0x560
[  145.045151][ T9065]  should_failslab+0xa8/0x100
[  145.045181][ T9065]  __kmalloc_cache_noprof+0x70/0x3d0
[  145.045209][ T9065]  ? __inet_diag_dump_start+0x9d/0xa10
[  145.045232][ T9065]  __inet_diag_dump_start+0x9d/0xa10
[  145.045251][ T9065]  ? netlink_lookup+0x30/0x200
[  145.045280][ T9065]  ? netlink_lookup+0x30/0x200
[  145.045318][ T9065]  __netlink_dump_start+0x469/0x7e0
[  145.045353][ T9065]  inet_diag_rcv_msg_compat+0x1ea/0x3b0
[  145.045376][ T9065]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  145.045396][ T9065]  ? stack_depot_save_flags+0x40/0x860
[  145.045423][ T9065]  ? __pfx_stack_trace_save+0x10/0x10
[  145.045449][ T9065]  ? sock_diag_rcv_msg+0x188/0x600
[  145.045477][ T9065]  ? rcu_is_watching+0x15/0xb0
[  145.045496][ T9065]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  145.045515][ T9065]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  145.045534][ T9065]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  145.045555][ T9065]  ? sock_diag_rcv_msg+0x188/0x600
[  145.045583][ T9065]  ? lock_release+0x4b/0x3e0
[  145.045610][ T9065]  ? __netlink_lookup+0xbd/0x810
[  145.045628][ T9065]  ? rcu_is_watching+0x15/0xb0
[  145.045650][ T9065]  sock_diag_rcv_msg+0x4c9/0x600
[  145.045681][ T9065]  netlink_rcv_skb+0x205/0x470
[  145.045711][ T9065]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  145.045742][ T9065]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  145.045783][ T9065]  netlink_unicast+0x82f/0x9e0
[  145.045817][ T9065]  ? __pfx_netlink_unicast+0x10/0x10
[  145.045844][ T9065]  ? netlink_sendmsg+0x642/0xb30
[  145.045861][ T9065]  ? skb_put+0x11b/0x210
[  145.045882][ T9065]  netlink_sendmsg+0x805/0xb30
[  145.045904][ T9065]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.045923][ T9065]  ? aa_sock_msg_perm+0xf1/0x1d0
[  145.045943][ T9065]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  145.045965][ T9065]  ? __pfx_netlink_sendmsg+0x10/0x10
[  145.045983][ T9065]  __sock_sendmsg+0x219/0x270
[  145.046011][ T9065]  ____sys_sendmsg+0x505/0x830
[  145.046036][ T9065]  ? __pfx_____sys_sendmsg+0x10/0x10
[  145.046062][ T9065]  ? import_iovec+0x74/0xa0
[  145.046086][ T9065]  ___sys_sendmsg+0x21f/0x2a0
[  145.046108][ T9065]  ? __pfx____sys_sendmsg+0x10/0x10
[  145.046149][ T9065]  ? __fget_files+0x2a/0x420
[  145.046165][ T9065]  ? __fget_files+0x3a0/0x420
[  145.046187][ T9065]  __x64_sys_sendmsg+0x19b/0x260
[  145.046210][ T9065]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  145.046236][ T9065]  ? __pfx_ksys_write+0x10/0x10
[  145.046262][ T9065]  ? rcu_is_watching+0x15/0xb0
[  145.046283][ T9065]  ? rcu_is_watching+0x15/0xb0
[  145.046304][ T9065]  do_syscall_64+0xfa/0x3b0
[  145.046328][ T9065]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.046349][ T9065]  ? clear_bhb_loop+0x60/0xb0
[  145.046371][ T9065]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  145.046391][ T9065] RIP: 0033:0x7f966a38ebe9
[  145.046408][ T9065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  145.046425][ T9065] RSP: 002b:00007f966b21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  145.046447][ T9065] RAX: ffffffffffffffda RBX: 00007f966a5b5fa0 RCX: 00007f966a38ebe9
[  145.046463][ T9065] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  145.046475][ T9065] RBP: 00007f966b21c090 R08: 0000000000000000 R09: 0000000000000000
[  145.046488][ T9065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  145.046500][ T9065] R13: 00007f966a5b6038 R14: 00007f966a5b5fa0 R15: 00007ffc75980dc8
[  145.046524][ T9065]  </TASK>
[  145.067237][ T9062] netlink: 24 bytes leftover after parsing attributes in process `syz.1.974'.
[  145.154628][ T9070] netlink: 'syz.2.978': attribute type 32 has an invalid length.
[  145.470763][ T9070] netlink: 28 bytes leftover after parsing attributes in process `syz.2.978'.
[  145.808291][ T9091] tipc: Started in network mode
[  145.815252][ T9091] tipc: Node identity , cluster identity 4711
[  145.822655][ T9091] tipc: Failed to set node id, please configure manually
[  145.830930][ T9091] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  145.862449][ T9082] netlink: 4 bytes leftover after parsing attributes in process `syz.0.982'.
[  145.929741][ T9097] tipc: Started in network mode
[  145.936925][ T9097] tipc: Node identity , cluster identity 4711
[  145.947821][ T9097] tipc: Failed to obtain node identity
[  145.957399][ T9097] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  146.146931][ T9118] netlink: 8 bytes leftover after parsing attributes in process `syz.4.994'.
[  146.169061][ T9097] syzkaller0: entered promiscuous mode
[  146.186797][ T9097] syzkaller0: entered allmulticast mode
[  146.205293][ T9122] netlink: 4 bytes leftover after parsing attributes in process `syz.0.996'.
[  146.221530][ T9118] macvtap3: entered promiscuous mode
[  146.229102][ T9121] netlink: 2 bytes leftover after parsing attributes in process `syz.2.995'.
[  146.239993][ T9122] team0: Device is already in use.
[  146.469427][ T9133] gretap1: entered promiscuous mode
[  146.478117][ T9133] gretap1: entered allmulticast mode
[  147.056701][ T9172] FAULT_INJECTION: forcing a failure.
[  147.056701][ T9172] name failslab, interval 1, probability 0, space 0, times 0
[  147.071211][ T9172] CPU: 0 UID: 0 PID: 9172 Comm: syz.0.1017 Not tainted syzkaller #0 PREEMPT(full) 
[  147.071243][ T9172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.071257][ T9172] Call Trace:
[  147.071265][ T9172]  <TASK>
[  147.071273][ T9172]  dump_stack_lvl+0x189/0x250
[  147.071303][ T9172]  ? __pfx____ratelimit+0x10/0x10
[  147.071333][ T9172]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.071358][ T9172]  ? __pfx__printk+0x10/0x10
[  147.071388][ T9172]  ? fs_reclaim_acquire+0x7d/0x100
[  147.071420][ T9172]  ? __pfx___might_resched+0x10/0x10
[  147.071438][ T9172]  ? lock_acquire+0x5f/0x360
[  147.071482][ T9172]  should_fail_ex+0x414/0x560
[  147.071516][ T9172]  should_failslab+0xa8/0x100
[  147.071546][ T9172]  __kmalloc_noprof+0xcb/0x4f0
[  147.071571][ T9172]  ? bpf_sk_storage_diag_alloc+0x22a/0x6b0
[  147.071604][ T9172]  bpf_sk_storage_diag_alloc+0x22a/0x6b0
[  147.071637][ T9172]  __inet_diag_dump_start+0x35c/0xa10
[  147.071658][ T9172]  ? netlink_lookup+0x30/0x200
[  147.071691][ T9172]  __netlink_dump_start+0x469/0x7e0
[  147.071725][ T9172]  inet_diag_rcv_msg_compat+0x1ea/0x3b0
[  147.071749][ T9172]  ? __pfx_inet_diag_rcv_msg_compat+0x10/0x10
[  147.071775][ T9172]  ? stack_depot_save_flags+0x40/0x860
[  147.071802][ T9172]  ? __pfx_stack_trace_save+0x10/0x10
[  147.071829][ T9172]  ? sock_diag_rcv_msg+0x188/0x600
[  147.071857][ T9172]  ? rcu_is_watching+0x15/0xb0
[  147.071876][ T9172]  ? __pfx_inet_diag_dump_start_compat+0x10/0x10
[  147.071906][ T9172]  ? __pfx_inet_diag_dump_compat+0x10/0x10
[  147.071926][ T9172]  ? __pfx_inet_diag_dump_done+0x10/0x10
[  147.071947][ T9172]  ? sock_diag_rcv_msg+0x188/0x600
[  147.071976][ T9172]  ? lock_release+0x4b/0x3e0
[  147.072004][ T9172]  ? __netlink_lookup+0xbd/0x810
[  147.072022][ T9172]  ? rcu_is_watching+0x15/0xb0
[  147.072044][ T9172]  sock_diag_rcv_msg+0x4c9/0x600
[  147.072076][ T9172]  netlink_rcv_skb+0x205/0x470
[  147.072107][ T9172]  ? __pfx_sock_diag_rcv_msg+0x10/0x10
[  147.072138][ T9172]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  147.072181][ T9172]  netlink_unicast+0x82f/0x9e0
[  147.072214][ T9172]  ? __pfx_netlink_unicast+0x10/0x10
[  147.072243][ T9172]  ? netlink_sendmsg+0x642/0xb30
[  147.072260][ T9172]  ? skb_put+0x11b/0x210
[  147.072282][ T9172]  netlink_sendmsg+0x805/0xb30
[  147.072306][ T9172]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.072326][ T9172]  ? aa_sock_msg_perm+0xf1/0x1d0
[  147.072347][ T9172]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  147.072370][ T9172]  ? __pfx_netlink_sendmsg+0x10/0x10
[  147.072389][ T9172]  __sock_sendmsg+0x219/0x270
[  147.072419][ T9172]  ____sys_sendmsg+0x505/0x830
[  147.072443][ T9172]  ? __pfx_____sys_sendmsg+0x10/0x10
[  147.072471][ T9172]  ? import_iovec+0x74/0xa0
[  147.072496][ T9172]  ___sys_sendmsg+0x21f/0x2a0
[  147.072519][ T9172]  ? __pfx____sys_sendmsg+0x10/0x10
[  147.072560][ T9172]  ? __fget_files+0x2a/0x420
[  147.072578][ T9172]  ? __fget_files+0x3a0/0x420
[  147.072600][ T9172]  __x64_sys_sendmsg+0x19b/0x260
[  147.072622][ T9172]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  147.072648][ T9172]  ? __pfx_ksys_write+0x10/0x10
[  147.072672][ T9172]  ? rcu_is_watching+0x15/0xb0
[  147.072693][ T9172]  ? rcu_is_watching+0x15/0xb0
[  147.072714][ T9172]  do_syscall_64+0xfa/0x3b0
[  147.072733][ T9172]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.072753][ T9172]  ? clear_bhb_loop+0x60/0xb0
[  147.072776][ T9172]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.072796][ T9172] RIP: 0033:0x7f966a38ebe9
[  147.072815][ T9172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.072832][ T9172] RSP: 002b:00007f966b21c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.072853][ T9172] RAX: ffffffffffffffda RBX: 00007f966a5b5fa0 RCX: 00007f966a38ebe9
[  147.072869][ T9172] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  147.072881][ T9172] RBP: 00007f966b21c090 R08: 0000000000000000 R09: 0000000000000000
[  147.072900][ T9172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.072910][ T9172] R13: 00007f966a5b6038 R14: 00007f966a5b5fa0 R15: 00007ffc75980dc8
[  147.072932][ T9172]  </TASK>
[  148.058265][ T9199] netlink: 'syz.1.1023': attribute type 2 has an invalid length.
[  148.380043][ T9223] dummy0: entered promiscuous mode
[  148.389240][ T9223] macsec2: entered promiscuous mode
[  148.402914][ T9223] macsec2: entered allmulticast mode
[  148.408338][ T9223] dummy0: entered allmulticast mode
[  148.415605][ T9223] dummy0: left allmulticast mode
[  148.424192][ T9223] dummy0: left promiscuous mode
[  148.762381][ T9245] __nla_validate_parse: 6 callbacks suppressed
[  148.762402][ T9245] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1040'.
[  148.791175][ T9245] macvtap3: entered promiscuous mode
[  148.796883][ T9245] vlan0: entered promiscuous mode
[  148.993351][ T9252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1043'.
[  149.018182][ T9252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1043'.
[  149.267881][ T9256] bond0: (slave gretap0): Opening slave failed
[  149.298434][ T9258] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1046'.
[  149.307577][ T9258] netlink: 'syz.4.1046': attribute type 4 has an invalid length.
[  149.808299][ T9298] FAULT_INJECTION: forcing a failure.
[  149.808299][ T9298] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.843391][ T9301] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1060'.
[  149.846210][ T9300] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1059'.
[  149.875138][ T9298] CPU: 0 UID: 0 PID: 9298 Comm: syz.0.1061 Not tainted syzkaller #0 PREEMPT(full) 
[  149.875168][ T9298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.875182][ T9298] Call Trace:
[  149.875190][ T9298]  <TASK>
[  149.875198][ T9298]  dump_stack_lvl+0x189/0x250
[  149.875229][ T9298]  ? __pfx____ratelimit+0x10/0x10
[  149.875260][ T9298]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.875285][ T9298]  ? __pfx__printk+0x10/0x10
[  149.875324][ T9298]  ? rcu_is_watching+0x15/0xb0
[  149.875347][ T9298]  should_fail_ex+0x414/0x560
[  149.875378][ T9298]  _copy_to_user+0x31/0xb0
[  149.875402][ T9298]  simple_read_from_buffer+0xe1/0x170
[  149.875435][ T9298]  proc_fail_nth_read+0x1b3/0x220
[  149.875460][ T9298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.875485][ T9298]  ? rw_verify_area+0x2a6/0x4d0
[  149.875511][ T9298]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  149.875534][ T9298]  vfs_read+0x1fd/0xa30
[  149.875560][ T9298]  ? fdget_pos+0x247/0x320
[  149.875581][ T9298]  ? __pfx___mutex_lock+0x10/0x10
[  149.875613][ T9298]  ? __pfx_vfs_read+0x10/0x10
[  149.875645][ T9298]  ? __fget_files+0x3a0/0x420
[  149.875662][ T9298]  ? __fget_files+0x2a/0x420
[  149.875684][ T9298]  ksys_read+0x145/0x250
[  149.875713][ T9298]  ? __pfx_ksys_read+0x10/0x10
[  149.875738][ T9298]  ? rcu_is_watching+0x15/0xb0
[  149.875761][ T9298]  ? rcu_is_watching+0x15/0xb0
[  149.875784][ T9298]  do_syscall_64+0xfa/0x3b0
[  149.875803][ T9298]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.875824][ T9298]  ? clear_bhb_loop+0x60/0xb0
[  149.875848][ T9298]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  149.875869][ T9298] RIP: 0033:0x7f966a38d5fc
[  149.875887][ T9298] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  149.875906][ T9298] RSP: 002b:00007f966b21c030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  149.875929][ T9298] RAX: ffffffffffffffda RBX: 00007f966a5b5fa0 RCX: 00007f966a38d5fc
[  149.875945][ T9298] RDX: 000000000000000f RSI: 00007f966b21c0a0 RDI: 0000000000000004
[  149.875966][ T9298] RBP: 00007f966b21c090 R08: 0000000000000000 R09: 0000000000000000
[  149.875980][ T9298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  149.875992][ T9298] R13: 00007f966a5b6038 R14: 00007f966a5b5fa0 R15: 00007ffc75980dc8
[  149.876016][ T9298]  </TASK>
[  150.160951][ T9294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1058'.
[  150.197745][ T9294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1058'.
[  150.290221][ T9309] netlink: 'syz.0.1063': attribute type 32 has an invalid length.
[  150.298626][ T9309] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1063'.
[  150.480902][ T9321] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  150.636028][ T9333] netlink: 'syz.2.1072': attribute type 32 has an invalid length.
[  150.788070][ T9341] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1075'.
[  150.894601][ T9348] gretap0: entered promiscuous mode
[  150.937020][ T9348] gretap0: left promiscuous mode
[  151.188673][ T9363] macvtap4: entered promiscuous mode
[  151.346786][ T9382] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  153.088360][ T9487] gretap1: left allmulticast mode
[  153.646091][ T9528] netlink: 'syz.4.1122': attribute type 1 has an invalid length.
[  153.673991][ T9528] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  153.773281][ T9537] tipc: Started in network mode
[  153.786685][ T9537] tipc: Node identity ac1414aa, cluster identity 4711
[  153.804369][ T9537] tipc: Enabled bearer <udp:syz0>, priority 10
[  153.817516][ T9539] vlan2: entered promiscuous mode
[  153.825433][ T9539] vlan2: entered allmulticast mode
[  153.830957][ T9539] hsr_slave_1: entered allmulticast mode
[  153.869622][ T9544] __nla_validate_parse: 12 callbacks suppressed
[  153.869643][ T9544] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1127'.
[  154.072556][ T9556] netlink: 'syz.4.1132': attribute type 1 has an invalid length.
[  154.099977][ T9559] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1132'.
[  154.145136][ T9561] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1134'.
[  154.276303][ T9571] lo speed is unknown, defaulting to 1000
[  154.318287][ T9571] lo speed is unknown, defaulting to 1000
[  154.333481][ T9571] lo speed is unknown, defaulting to 1000
[  154.365914][ T9571] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  154.406285][ T9571] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  154.541906][ T9571] lo speed is unknown, defaulting to 1000
[  154.550315][ T9590] netlink: 'syz.0.1142': attribute type 1 has an invalid length.
[  154.564432][ T9571] lo speed is unknown, defaulting to 1000
[  154.638637][ T9590] 8021q: adding VLAN 0 to HW filter on device bond4
[  154.664819][ T9571] lo speed is unknown, defaulting to 1000
[  154.671672][ T9571] lo speed is unknown, defaulting to 1000
[  154.703426][ T9592] bond4: (slave geneve5): making interface the new active one
[  154.767450][ T9592] bond4: (slave geneve5): Enslaving as an active interface with an up link
[  154.776428][ T9571] lo speed is unknown, defaulting to 1000
[  154.922022][ T5933] tipc: Node number set to 2886997162
[  155.284362][ T9620] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1153'.
[  155.299565][ T9620] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  155.360951][ T9624] team0 (unregistering): Port device team_slave_0 removed
[  155.401449][ T9624] team0 (unregistering): Port device team_slave_1 removed
[  155.419230][ T9624] team0 (unregistering): Port device batadv1 removed
[  155.539491][ T5856] Bluetooth: hci4: link tx timeout
[  155.544849][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.550180][ T9636] lo speed is unknown, defaulting to 1000
[  155.556073][ T5856] Bluetooth: hci4: link tx timeout
[  155.563929][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.619693][ T5856] Bluetooth: hci4: link tx timeout
[  155.625260][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.635958][ T5856] Bluetooth: hci4: link tx timeout
[  155.641179][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.649453][ T5856] Bluetooth: hci4: link tx timeout
[  155.657689][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.677280][ T5856] Bluetooth: hci4: link tx timeout
[  155.682573][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.690717][ T5856] Bluetooth: hci4: link tx timeout
[  155.696353][ T5856] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  155.869023][ T9657] bond0: (slave dummy0): Releasing backup interface
[  155.987225][ T9665] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1165'.
[  156.016984][ T5933] lo speed is unknown, defaulting to 1000
[  156.107875][ T9657] tipc: Enabling of bearer <eth:team0> rejected, failed to enable media
[  156.310045][ T9677] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  156.459022][ T9687] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1170'.
[  156.563876][ T9695] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1175'.
[  156.879905][ T9720] netlink: 'syz.4.1179': attribute type 13 has an invalid length.
[  156.900456][ T9720] netlink: 'syz.4.1179': attribute type 17 has an invalid length.
[  156.952517][ T9720] syz_tun: left allmulticast mode
[  156.991335][ T9720] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  157.099094][ T9711] lo speed is unknown, defaulting to 1000
[  157.108032][ T9716] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  157.172240][ T9726] netlink: 'syz.2.1184': attribute type 1 has an invalid length.
[  157.184504][ T9716] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  157.225333][ T9730] netlink: 'syz.1.1185': attribute type 1 has an invalid length.
[  157.226814][ T9726] 8021q: adding VLAN 0 to HW filter on device bond2
[  157.243978][ T9730] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1185'.
[  157.263631][ T9730] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1185'.
[  157.276522][ T9731] bond2: (slave geneve3): making interface the new active one
[  157.289860][ T9731] bond2: (slave geneve3): Enslaving as an active interface with an up link
[  157.369052][ T9735] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1186'.
[  157.564454][ T9747] lo speed is unknown, defaulting to 1000
[  157.612250][ T5856] Bluetooth: hci4: command 0x0405 tx timeout
[  157.812124][ T9764] macvtap4: entered promiscuous mode
[  157.944247][ T9772] bridge0: port 1(macvlan2) entered blocking state
[  157.951113][ T9772] bridge0: port 1(macvlan2) entered disabled state
[  157.959119][ T9772] macvlan2: entered allmulticast mode
[  157.968081][ T9772] macvlan2: left allmulticast mode
[  158.451381][ T9810] sctp: [Deprecated]: syz.2.1214 (pid 9810) Use of struct sctp_assoc_value in delayed_ack socket option.
[  158.451381][ T9810] Use struct sctp_sack_info instead
[  158.825221][ T9827] netlink: 'syz.4.1219': attribute type 32 has an invalid length.
[  158.844161][ T9825] tipc: Started in network mode
[  158.849556][ T9825] tipc: Node identity 225c8073df2, cluster identity 4711
[  158.858658][ T9825] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  158.870515][ T9825] syzkaller0: entered promiscuous mode
[  158.882970][ T9825] syzkaller0: entered allmulticast mode
[  158.905298][ T9825] tipc: Resetting bearer <eth:syzkaller0>
[  158.947463][ T9825] tipc: Resetting bearer <eth:syzkaller0>
[  158.976282][ T9835] __nla_validate_parse: 10 callbacks suppressed
[  158.976303][ T9835] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1221'.
[  159.176585][ T9848] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1227'.
[  159.206256][ T9848] sch_tbf: burst 0 is lower than device tunl0 mtu (1480) !
[  159.878683][ T9887] bond0: (slave gretap0): Opening slave failed
[  159.889062][ T9879] openvswitch: netlink: Missing key (keys=40, expected=80)
[  159.946814][ T6016] tipc: Node number set to 4252794995
[  160.030130][ T9892] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1246'.
[  160.080863][ T9895] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1247'.
[  160.722328][ T9942] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1258'.
[  160.750642][ T9942] netlink: 'syz.2.1258': attribute type 30 has an invalid length.
[  160.767063][ T1107] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  160.778866][ T9942] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1258'.
[  160.790648][ T1107] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  160.804373][ T9942] netlink: 'syz.2.1258': attribute type 30 has an invalid length.
[  160.818883][ T9945] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.854539][ T1107] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  160.886030][ T9948] gretap0: left promiscuous mode
[  160.916358][ T9948] 8021q: adding VLAN 0 to HW filter on device bond0
[  160.926314][ T9948] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  160.945433][ T1107] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  160.959740][ T9945] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.016518][ T9945] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.086775][ T9945] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.088728][ T9954] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1261'.
[  161.138398][ T1107] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.156664][ T1107] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.183342][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.201428][ T1107] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.229866][ T9957] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1262'.
[  161.242421][ T9957] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1262'.
[  161.251408][ T9957] netlink: 'syz.1.1262': attribute type 5 has an invalid length.
[  161.261546][ T9957] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1262'.
[  161.279907][ T9959] 8021q: VLANs not supported on ip_vti0
[  161.636222][ T9983] bond0: (slave gretap0): Opening slave failed
[  161.835511][ T9996] macvtap4: entered promiscuous mode
[  161.874982][T10000] bridge_slave_0: entered allmulticast mode
[  162.035186][T10010] syzkaller0: entered promiscuous mode
[  162.042103][T10010] syzkaller0: entered allmulticast mode
[  162.634204][T10059] blkio.reset_stats is deprecated
[  163.085656][T10092] netlink: 'syz.0.1309': attribute type 1 has an invalid length.
[  163.217763][T10092] 8021q: adding VLAN 0 to HW filter on device bond5
[  163.260342][T10103] bond5: (slave geneve6): making interface the new active one
[  163.294223][T10103] bond5: (slave geneve6): Enslaving as an active interface with an up link
[  163.568043][T10132] bond0: (slave gretap0): Opening slave failed
[  163.684980][T10137] ------------[ cut here ]------------
[  163.690619][T10137] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xfffffadd, 0xffffc823] s64=[0xfffffadd, 0xffffc823] u32=[0xfffffadd, 0xffffc823] s32=[0xfffffadd, 0xfffff2d9] var_off=(0xfffffadd, 0x0)(1)
[  163.780343][T10137] WARNING: CPU: 0 PID: 10137 at kernel/bpf/verifier.c:2733 reg_bounds_sanity_check+0x6e6/0xc20
[  163.791040][T10137] Modules linked in:
[  163.795075][T10137] CPU: 0 UID: 0 PID: 10137 Comm: syz.3.1321 Not tainted syzkaller #0 PREEMPT(full) 
[  163.804538][T10137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  163.814689][T10137] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  163.821000][T10137] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 2f 35 aa ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  163.841138][T10137] RSP: 0018:ffffc9000f366f08 EFLAGS: 00010282
[  163.847540][T10137] RAX: feaf1b5855a0a500 RBX: 00000000fffffadd RCX: 0000000000080000
[  163.856207][T10137] RDX: ffffc9000c40b000 RSI: 000000000001665e RDI: 000000000001665f
[  163.864614][T10137] RBP: 00000000fffffadd R08: 0000000000000003 R09: 0000000000000004
[  163.872861][T10137] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: ffff888029153168
[  163.881037][T10137] R13: ffff888029153188 R14: ffff8880291531a0 R15: 00000000fffff2d9
[  163.889263][T10137] FS:  00007f7b3ffee6c0(0000) GS:ffff888125c1a000(0000) knlGS:0000000000000000
[  163.898599][T10137] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  163.905558][T10137] CR2: 00007ffc6e7130a8 CR3: 0000000078b68000 CR4: 00000000003526f0
[  163.914196][T10137] Call Trace:
[  163.917522][T10137]  <TASK>
[  163.920493][T10137]  reg_set_min_max+0x214/0x300
[  163.925661][T10137]  check_cond_jmp_op+0x1625/0x2910
[  163.930836][T10137]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  163.936730][T10137]  ? incomplete_read_marks+0xc4/0x1f0
[  163.942530][T10137]  do_check+0x6751/0xe520
[  163.946950][T10137]  ? __pfx_do_check+0x10/0x10
[  163.951668][T10137]  ? init_func_state+0x1ddf/0x2d20
[  163.957187][T10137]  do_check_common+0x1949/0x24f0
[  163.962522][T10137]  bpf_check+0x1746a/0x1d2d0
[  163.967162][T10137]  ? kernel_text_address+0xa5/0xe0
[  163.972659][T10137]  ? __kernel_text_address+0xd/0x40
[  163.977972][T10137]  ? unwind_get_return_address+0x4d/0x90
[  163.983888][T10137]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  163.990088][T10137]  ? arch_stack_walk+0xfc/0x150
[  163.995258][T10137]  ? __mutex_trylock_common+0x153/0x260
[  164.000865][T10137]  ? __pfx___mutex_trylock_common+0x10/0x10
[  164.006970][T10137]  ? trace_contention_end+0x39/0x120
[  164.012335][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.017137][T10137]  ? trace_contention_end+0x39/0x120
[  164.022502][T10137]  ? css_rstat_updated+0x23a/0x4f0
[  164.027649][T10137]  ? __pfx_css_rstat_updated+0x10/0x10
[  164.033188][T10137]  ? do_raw_spin_lock+0x121/0x290
[  164.038252][T10137]  ? pcpu_memcg_post_alloc_hook+0x6b/0x520
[  164.044284][T10137]  ? __pfx_bpf_check+0x10/0x10
[  164.049085][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.053935][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.059355][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.064225][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.069647][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.074530][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.079944][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.085393][T10137]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  164.091677][T10137]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  164.098580][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.103441][T10137]  ? lock_release+0x4b/0x3e0
[  164.108080][T10137]  ? __might_fault+0xb0/0x130
[  164.112858][T10137]  ? __asan_memset+0x22/0x50
[  164.117489][T10137]  ? bpf_obj_name_cpy+0x194/0x1e0
[  164.122582][T10137]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  164.127818][T10137]  ? security_bpf_prog_load+0x7f/0x310
[  164.133371][T10137]  bpf_prog_load+0x1318/0x1930
[  164.138183][T10137]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.143372][T10137]  ? __might_fault+0xb0/0x130
[  164.148098][T10137]  ? lock_release+0x4b/0x3e0
[  164.152772][T10137]  ? __might_fault+0xb0/0x130
[  164.157494][T10137]  ? __might_fault+0xcc/0x130
[  164.162244][T10137]  ? bpf_lsm_bpf+0x9/0x20
[  164.166618][T10137]  ? security_bpf+0x7e/0x300
[  164.171280][T10137]  __sys_bpf+0x528/0x870
[  164.175667][T10137]  ? __pfx___sys_bpf+0x10/0x10
[  164.180525][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.185386][T10137]  __x64_sys_bpf+0x7c/0x90
[  164.189845][T10137]  do_syscall_64+0xfa/0x3b0
[  164.194452][T10137]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.200553][T10137]  ? clear_bhb_loop+0x60/0xb0
[  164.205309][T10137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.211236][T10137] RIP: 0033:0x7f7b3f18ebe9
[  164.215767][T10137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.235466][T10137] RSP: 002b:00007f7b3ffee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.243984][T10137] RAX: ffffffffffffffda RBX: 00007f7b3f3b5fa0 RCX: 00007f7b3f18ebe9
[  164.252082][T10137] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  164.260097][T10137] RBP: 00007f7b3f211e19 R08: 0000000000000000 R09: 0000000000000000
[  164.268167][T10137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.276223][T10137] R13: 00007f7b3f3b6038 R14: 00007f7b3f3b5fa0 R15: 00007ffcd55c9ea8
[  164.284297][T10137]  </TASK>
[  164.287346][T10137] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  164.294651][T10137] CPU: 0 UID: 0 PID: 10137 Comm: syz.3.1321 Not tainted syzkaller #0 PREEMPT(full) 
[  164.304142][T10137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  164.314219][T10137] Call Trace:
[  164.317513][T10137]  <TASK>
[  164.320456][T10137]  dump_stack_lvl+0x99/0x250
[  164.325062][T10137]  ? __asan_memcpy+0x40/0x70
[  164.329666][T10137]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.334881][T10137]  ? __pfx__printk+0x10/0x10
[  164.339496][T10137]  vpanic+0x281/0x750
[  164.343492][T10137]  ? __pfx__printk+0x10/0x10
[  164.348097][T10137]  ? __pfx_vpanic+0x10/0x10
[  164.352614][T10137]  ? is_bpf_text_address+0x26/0x2b0
[  164.357839][T10137]  panic+0xb9/0xc0
[  164.361581][T10137]  ? __pfx_panic+0x10/0x10
[  164.366012][T10137]  __warn+0x31b/0x4b0
[  164.370001][T10137]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  164.375745][T10137]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  164.381489][T10137]  report_bug+0x2be/0x4f0
[  164.385837][T10137]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  164.391500][T10137]  ? reg_bounds_sanity_check+0x6e6/0xc20
[  164.397156][T10137]  ? reg_bounds_sanity_check+0x6e8/0xc20
[  164.402839][T10137]  handle_bug+0x84/0x160
[  164.407096][T10137]  exc_invalid_op+0x1a/0x50
[  164.411604][T10137]  asm_exc_invalid_op+0x1a/0x20
[  164.416552][T10137] RIP: 0010:reg_bounds_sanity_check+0x6e6/0xc20
[  164.422825][T10137] Code: 24 20 4c 8b 44 24 60 4c 8b 4c 24 58 41 ff 75 00 53 41 57 55 ff 74 24 38 ff 74 24 70 ff 74 24 40 e8 2f 35 aa ff 48 83 c4 38 90 <0f> 0b 90 90 48 bb 00 00 00 00 00 fc ff df 4d 89 f7 4c 8b 74 24 08
[  164.442460][T10137] RSP: 0018:ffffc9000f366f08 EFLAGS: 00010282
[  164.448560][T10137] RAX: feaf1b5855a0a500 RBX: 00000000fffffadd RCX: 0000000000080000
[  164.456538][T10137] RDX: ffffc9000c40b000 RSI: 000000000001665e RDI: 000000000001665f
[  164.464521][T10137] RBP: 00000000fffffadd R08: 0000000000000003 R09: 0000000000000004
[  164.472505][T10137] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: ffff888029153168
[  164.480492][T10137] R13: ffff888029153188 R14: ffff8880291531a0 R15: 00000000fffff2d9
[  164.488496][T10137]  reg_set_min_max+0x214/0x300
[  164.493286][T10137]  check_cond_jmp_op+0x1625/0x2910
[  164.498431][T10137]  ? __pfx_check_cond_jmp_op+0x10/0x10
[  164.503912][T10137]  ? incomplete_read_marks+0xc4/0x1f0
[  164.509308][T10137]  do_check+0x6751/0xe520
[  164.513720][T10137]  ? __pfx_do_check+0x10/0x10
[  164.518415][T10137]  ? init_func_state+0x1ddf/0x2d20
[  164.523544][T10137]  do_check_common+0x1949/0x24f0
[  164.528505][T10137]  bpf_check+0x1746a/0x1d2d0
[  164.533142][T10137]  ? kernel_text_address+0xa5/0xe0
[  164.538270][T10137]  ? __kernel_text_address+0xd/0x40
[  164.543484][T10137]  ? unwind_get_return_address+0x4d/0x90
[  164.549130][T10137]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  164.555304][T10137]  ? arch_stack_walk+0xfc/0x150
[  164.560194][T10137]  ? __mutex_trylock_common+0x153/0x260
[  164.565802][T10137]  ? __pfx___mutex_trylock_common+0x10/0x10
[  164.571726][T10137]  ? trace_contention_end+0x39/0x120
[  164.577045][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.581835][T10137]  ? trace_contention_end+0x39/0x120
[  164.587134][T10137]  ? css_rstat_updated+0x23a/0x4f0
[  164.592260][T10137]  ? __pfx_css_rstat_updated+0x10/0x10
[  164.597725][T10137]  ? do_raw_spin_lock+0x121/0x290
[  164.602769][T10137]  ? pcpu_memcg_post_alloc_hook+0x6b/0x520
[  164.608597][T10137]  ? __pfx_bpf_check+0x10/0x10
[  164.613375][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.618147][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.623537][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.628306][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.633692][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.638462][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.643844][T10137]  ? ktime_get_with_offset+0x8c/0x2a0
[  164.649229][T10137]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  164.655486][T10137]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  164.662095][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.666869][T10137]  ? lock_release+0x4b/0x3e0
[  164.671474][T10137]  ? __might_fault+0xb0/0x130
[  164.676172][T10137]  ? __asan_memset+0x22/0x50
[  164.680795][T10137]  ? bpf_obj_name_cpy+0x194/0x1e0
[  164.685825][T10137]  ? bpf_lsm_bpf_prog_load+0x9/0x20
[  164.691037][T10137]  ? security_bpf_prog_load+0x7f/0x310
[  164.696512][T10137]  bpf_prog_load+0x1318/0x1930
[  164.701300][T10137]  ? __pfx_bpf_prog_load+0x10/0x10
[  164.706426][T10137]  ? __might_fault+0xb0/0x130
[  164.711125][T10137]  ? lock_release+0x4b/0x3e0
[  164.715734][T10137]  ? __might_fault+0xb0/0x130
[  164.720434][T10137]  ? __might_fault+0xcc/0x130
[  164.725126][T10137]  ? bpf_lsm_bpf+0x9/0x20
[  164.729466][T10137]  ? security_bpf+0x7e/0x300
[  164.734075][T10137]  __sys_bpf+0x528/0x870
[  164.738334][T10137]  ? __pfx___sys_bpf+0x10/0x10
[  164.743119][T10137]  ? rcu_is_watching+0x15/0xb0
[  164.747895][T10137]  __x64_sys_bpf+0x7c/0x90
[  164.752329][T10137]  do_syscall_64+0xfa/0x3b0
[  164.756852][T10137]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.762927][T10137]  ? clear_bhb_loop+0x60/0xb0
[  164.767626][T10137]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.773538][T10137] RIP: 0033:0x7f7b3f18ebe9
[  164.777975][T10137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.797770][T10137] RSP: 002b:00007f7b3ffee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  164.806198][T10137] RAX: ffffffffffffffda RBX: 00007f7b3f3b5fa0 RCX: 00007f7b3f18ebe9
[  164.814183][T10137] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  164.822167][T10137] RBP: 00007f7b3f211e19 R08: 0000000000000000 R09: 0000000000000000
[  164.830147][T10137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  164.838142][T10137] R13: 00007f7b3f3b6038 R14: 00007f7b3f3b5fa0 R15: 00007ffcd55c9ea8
[  164.846131][T10137]  </TASK>
[  164.849468][T10137] Kernel Offset: disabled
[  164.853794][T10137] Rebooting in 86400 seconds..