last executing test programs:

19.872369023s ago: executing program 4 (id=1186):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xffffffed, 0x6}, [@TCA_NETEM_LATENCY64={0xc, 0xa, 0x5}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r6, {}, {0x2, 0xb}, {0xd, 0x7}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}}, 0x10008844)
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

19.094972392s ago: executing program 4 (id=1199):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000580)={0x44, 0x1, 0x1, 0x101, 0x60, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @remote}, {0x8, 0x2, @private}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0xd}]}]}, 0x44}}, 0x4000000)

18.728192191s ago: executing program 4 (id=1201):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket(0x10, 0x3, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = socket(0x2, 0x80805, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000c80)={'lo\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x12}]}}]}, 0x38}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r7=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000080)=ANY=[@ANYRES32=r7, @ANYBLOB="000806002184e34d4651"], 0xe)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r9)
getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c0000001000010400eeffff11feffffff000000", @ANYRES32=r10, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="300000001e000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="000012"], 0x30}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000005840)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000380)=@newqdisc={0xc0, 0x24, 0x2, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x94, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0xc5, 0x8, 0x5e94, 0x0, 0x1, 0x0, 0x7}}, {0x12, 0x2, [0x10, 0x1, 0xffff, 0x3, 0x6, 0x5, 0x7e4e]}}, {{0x1c, 0x1, {0x3, 0x3, 0x4, 0xfa, 0x2, 0x7, 0x7, 0x6}}, {0x10, 0x2, [0xfffb, 0x8006, 0x2, 0x1, 0xafc2, 0xc]}}, {{0x1c, 0x1, {0x1, 0x3, 0xd77, 0xfe1, 0x2, 0x80000000, 0x3, 0xa}}, {0x18, 0x2, [0x5, 0x8, 0x3, 0x9, 0x9, 0x9, 0x8, 0xdfe, 0x9, 0x153]}}]}, @TCA_INGRESS_BLOCK={0x8}]}, 0xc0}, 0x1, 0x0, 0x0, 0x4040004}, 0x0)
socket$packet(0x11, 0x2, 0x300)
r12 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a20000000000a01030000000000000000010000010900010073797a310000000040000000030a01040000000000000000010000000900030073797a31000000000900010073797a3100000000140004800800014000000005080002401886c30128000000000a05000000000000000000010000080900010073797a31000000000800024000000001140000001100010000000000000000000000000a3fe7e4e403006c5c4ad37570ef08d49fd4169df460f8c5ba9cbafca6fd43846a696403925724eda8f3b0d70163b48e9210672dbb7676161f1e4f54c75b015b0e4bf2"], 0xb0}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000012c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {}, {0xd}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_IPV4_SRC_MASK={0x8, 0xb, 0xffffff00}, @TCA_FLOWER_KEY_IPV4_SRC={0x8, 0xa, @local}]}}]}, 0x44}}, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="1c0000004000090000000000000000000300000008000200", @ANYRES32=0x0, @ANYBLOB="b5adba00b87ce5d5971ebe25e821e2e7a8af75b2d952710125508f037525dec4b41c7402e5404d093d734ee0b5a2bad86f30ebdebc740b36d5839fc3da178d5ed3ed558e635463269d2f350f309337b50813b843f9dfbb9c822042e5402c4ede9e3b05c7dbfc581aba62a1d7e7d5f1aac624fa0d7f8204ede1a90ceeefa507b978c35c30dd47676494dcc5e02994f1ad4a959defa00977ab466941f9756b19ca1a2b065e73b970ec892b7ee9fb664e6bc197004eb252de8e9e5af751643d59e084eda9ddfa9c75261be94e71f48131a26ce0fbb5c7a54e4b27cc34c04a99329f560d"], 0x1c}}, 0x24000044)
r13 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r13, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="180000001600010a"], 0x78}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r14 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$sock_int(r14, 0x1, 0x12, &(0x7f0000000080), 0x4)
recvmmsg(r13, &(0x7f000001ef40)=[{{0x0, 0x0, 0x0}, 0x8}, {{0x0, 0x0, 0x0}, 0x100}], 0x2, 0x20, 0x0)
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r1, 0x89f6, &(0x7f0000000280)={'sit0\x00', &(0x7f0000000040)={@initdev={0xac, 0x1e, 0x0, 0x0}}})

18.219832232s ago: executing program 4 (id=1206):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
connect$rxrpc(r1, &(0x7f0000000000)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x24)
r2 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0x10000000000030, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002000010000000000000000000a00000000000000000000000c001400", @ANYRES16], 0x28}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32, @ANYBLOB="020000000000800080001200080001007674"], 0xa0}}, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r3, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000540)={0x4c, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xb0a, 0x14}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x8bf}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x2d}, @NL80211_ATTR_PMK={0x14, 0xfe, "4c3e06de9de7d6cfaa865562642b24d5"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000004}, 0x40090)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004300)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0xffffffffffffffff}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, r5)
close(0xffffffffffffffff)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
setsockopt$RXRPC_SECURITY_KEY(r1, 0x110, 0x1, 0x0, 0x0)

18.086293636s ago: executing program 3 (id=1209):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400062918000e3580009f0001140000002f0600ac141430e0000003808a8972bd0b72e41082b1a3d206"], 0xdd12}], 0x1}, 0x10)

17.773975825s ago: executing program 3 (id=1211):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000100), r0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x4, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x2}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @func={0x2}]}, {0x0, [0x0, 0x2e]}}, 0x0, 0x50}, 0x20)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000140)={0x34, r1, 0x1, 0x400000, 0xfff7fffd, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @loopback}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x404c080}, 0x0)

17.773293608s ago: executing program 1 (id=1212):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4f20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}, 0x1, 0x0, 0xf4ffffffffffffff}, 0x40)

17.73542925s ago: executing program 4 (id=1213):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)
r2 = socket$inet6(0xa, 0x802, 0x0)
unshare(0x22020400)
r3 = socket$alg(0x26, 0x5, 0x0)
accept4(r3, 0x0, 0x0, 0x6e02a6c3770c3083)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000300)="06", 0x1}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r2, 0x84, 0x6e, &(0x7f00000000c0)=[@in={0x2, 0x4e22, @multicast2}, @in6={0xa, 0x4e24, 0x2, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x17}}, 0x81}, @in6={0xa, 0x4e24, 0x10001, @loopback, 0x1}, @in={0x2, 0x4e20, @local}], 0x58)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r0], 0x1000f)

17.569167153s ago: executing program 3 (id=1215):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) (fail_nth: 16)

17.50817753s ago: executing program 1 (id=1216):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000060a0b04000000000000000002000000640004"], 0xb8}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="58f300001000010400ee00cf7a1b2f0afafb2b00b8b94e28649599e6158bedf036674261298e82f929e3712870372a9ae412b8bedf037131979609cae9018065025026fcb15d41b2d7f6a2be01b47694663c86b0f7bcab0b9243b2aa5e025d1c88779fb05be05cded7045912638b5958859f03a4f9666538fc4b1abe5e978f2451e6f864bde98cc2ffe9e992ca1555f387387e794a72c2ee28c8c1cd24c1d66d70ba735d59967bf5a4f38b4b44668341bc62264f045d2a5a5398e30b8d626c8fa432956049b591", @ANYRES32=0x0, @ANYBLOB="0000000000000000380012800e00010069703665727370616e0000002400028014001800fc010000000000000000000000000000050016000200000004001200"], 0x58}}, 0x0)
sendmsg$IPSET_CMD_HEADER(r1, &(0x7f0000000080)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000580)={0x50, 0xc, 0x6, 0x201, 0x0, 0x0, {0x0, 0x0, 0x8}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x4044800)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000040)='illinois\x00', 0x9)
getsockopt$inet6_tcp_buf(r3, 0x6, 0x1a, 0x0, &(0x7f00000001c0))
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x12, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2}, {0xffff, 0x8}}}, 0x24}}, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x12, 0x4, 0x4, 0x12}, 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r5, &(0x7f0000000840), &(0x7f0000004880)=@udp=r4}, 0x20)
ioctl$int_in(r4, 0x5452, &(0x7f00000000c0)=0x14f)
recvmsg(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000480)=""/149, 0x95}], 0x1}, 0x22)
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800e000100697036677265746170000000100002800800040008000000040012001400031d29696376f4f80b3fd1cedc160cff4dd808aeea34912a59df00000000"], 0x58}, 0x1, 0x0, 0x0, 0x8c1}, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)={0x44, r8, 0x1, 0x70bd29, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x18, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_VALUE={0x8, 0x4, "3423d5d2"}]}]}, 0x44}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000003c0)=ANY=[@ANYBLOB="28ffff00"/20, @ANYRES32=0x0, @ANYBLOB="070d000041c0000008000a"], 0x28}, 0x1, 0x0, 0x0, 0x4000800}, 0x0)
r9 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r10 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000300)={'bond0\x00', <r11=>0x0})
r12 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r12, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newqdisc={0x98, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r11, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x68, 0x2, [@TCA_TAPRIO_ATTR_FLAGS={0x8, 0xa, 0x2}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x3], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}]}}]}, 0x98}}, 0x0)
sendmsg$netlink(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001e000504000000000000000004"], 0x114}], 0x1}, 0x10)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9c000000020605000000000000000000000000000c000780080006400000000705000100070000000500050005000000cd39452800078008000a400000af1f08001240000001000c00018008000140ac1414aa08705b3079264c968d001740000000060900020073797a310000000038000780080008400000002a0c00018008000140ffffffff080012400000007f060005404e230000060005404e22000008000b40000000c0f0291e1dac2a32422efa1670d8e6bf"], 0x9c}}, 0x0)

17.295498249s ago: executing program 4 (id=1217):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r8)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r10=>0x0)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r10], 0xfd45}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000200)=<r11=>0x0)
r12 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r13)
ioctl$IOCTL_GET_NCIDEV_IDX(r12, 0x0, &(0x7f00000000c0)=<r15=>0x0)
sendmsg$NFC_CMD_DEV_UP(r13, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r14, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r15], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000240)=<r16=>0x0)
r17 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r18 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r19 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r18)
ioctl$IOCTL_GET_NCIDEV_IDX(r17, 0x0, &(0x7f00000000c0)=<r20=>0x0)
sendmsg$NFC_CMD_DEV_UP(r18, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r19, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r20}]}, 0x1c}}, 0x0)
sendmsg$NFC_CMD_GET_DEVICE(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r9, 0x310, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r20}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004094}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r21=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r21, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

17.04850031s ago: executing program 2 (id=1218):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0xe4ff, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002c00128009000100626f6e64000000001c0002800500010004002000080020"], 0x4c}}, 0x0)

16.924316323s ago: executing program 3 (id=1220):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000080)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000180)="aabbcc", 0x3}], 0x1}, 0xa00}, {{&(0x7f00000001c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c, &(0x7f0000000200)=[{&(0x7f0000000240)="aabbcc", 0x3}], 0x1}}], 0x2, 0x0)

16.736654307s ago: executing program 3 (id=1222):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, 0x1411, 0x1, 0x0, 0xffffffef, "", [@RDMA_NLDEV_ATTR_STAT_RES={0x8}]}, 0x18}}, 0x0)

16.711876846s ago: executing program 3 (id=1223):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
connect$rxrpc(r1, &(0x7f0000000000)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x24)
r2 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0x10000000000030, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002000010000000000000000000a00000000000000000000000c001400", @ANYRES16], 0x28}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32, @ANYBLOB="020000000000800080001200080001007674"], 0xa0}}, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r3, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000540)={0x4c, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xb0a, 0x14}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x8bf}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x2d}, @NL80211_ATTR_PMK={0x14, 0xfe, "4c3e06de9de7d6cfaa865562642b24d5"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000004}, 0x40090)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004300)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0xffffffffffffffff}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, r5)
close(0xffffffffffffffff)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
setsockopt$RXRPC_SECURITY_KEY(r1, 0x110, 0x1, 0x0, 0x0)

16.596255541s ago: executing program 1 (id=1224):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{0x0}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRES16=r2], 0x1000f)

16.480484567s ago: executing program 2 (id=1225):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000), 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xffc0}], 0x1}, 0x80d1)

16.408444324s ago: executing program 1 (id=1227):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r2=>0x0})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_inet_SIOCGIFADDR(r3, 0x8915, &(0x7f0000000100)={'hsr0\x00', {0x2, 0x0, @initdev}})
listen(r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c4400000000000e0fe1709850000000e00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48)
r6 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r6, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r6, 0x29, 0x30, &(0x7f0000000380)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000002"], 0x190)
close(0x3)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000140)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='\a'], 0x10)
r7 = socket$kcm(0x29, 0x5, 0x0)
recvmsg$kcm(r7, &(0x7f0000001d40)={0x0, 0x0, 0x0}, 0x60)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r3}, 0x20)
sendmmsg$inet6(r3, &(0x7f0000000480)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000200)="bd", 0xf4240}], 0x1}}], 0x1, 0x41)
sendmsg$sock(r3, &(0x7f0000001a40)={0x0, 0x0, &(0x7f0000001900)=[{&(0x7f0000000180)="07fc", 0x2}], 0x1}, 0x4000014)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000600)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0c00990000000000000000000800a000ea15000008009f000b000000080026000816"], 0x40}}, 0x0)

16.38756849s ago: executing program 2 (id=1228):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0xa)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000200)=@newlink={0x3c, 0x41, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x3c}}, 0x0)

16.276518641s ago: executing program 0 (id=1229):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0xa, 0xa, 0x101, 0x0, 0x0, {}, [@NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x24}]}, 0x1c}, 0x1, 0x3000000, 0x0, 0x400000c0}, 0x880)

16.260251221s ago: executing program 2 (id=1230):
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={r0, 0x4, 0xc4d3, 0x3}) (async)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000040)={<r1=>r0, 0x4, 0xc4d3, 0x3})
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000500)={<r2=>0x0, @in={{0x2, 0x4e21, @loopback}}, 0x8, 0x2, 0x8, 0xe, 0x7}, &(0x7f00000005c0)=0x98)
sendmsg$inet_sctp(r1, &(0x7f00000006c0)={&(0x7f0000000080)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000480)=[{&(0x7f00000000c0)="511a1f7c82d9cd349da0142c98f761293e12edfe1c19bc7d6319b7e6d80aa3bd44526ac375d5efc9c08025878f65047a5273814e0ca2778044bcadc1bd03da6eda59ff08b636c8f8b4596a82265645e398803e5c98d2f12a2799839ea0d2278d125e0e1b3e790250fa6ba81429c161a0b4b27ca4c5816bcc4eef2da9de334a57f55a2cf4dff26393519e0fed", 0x8c}, {&(0x7f0000000180)="70f8484c87164f57ea050e9ac74d30b828752311c0bdeb96a90935bfe80d87dda981def4c554ff6c7c4a419ff4f2f9724dbfbf936845353707554980accc79de4a54e292a1d02dc42555ffbb503d012c2016c3bf7109b5fcec012b6d2ffa24b093979dcb4bfe6f75c4bf491f2d89183bf1a31cd773f02aef73b8", 0x7a}, {&(0x7f0000000200)="6c10e2cd179c7021aadbb254ca8fc96837cfc7f85940c47bff6a260e9bd983e00c2c27eab969020e840e74daa831182a8c3aef36387737a012d5c3fb132194b89c130350bbf91d449d25aa724212e49e690c3d1efd389e8c0e2fe64309dde2ee4bb6892eab6a6d2503e38a35b08f128ffca00e3ac3256be5ce01bff326c7dcf9c1478ff6f8770a748bb3682aaab7f45aed88c8981c8bcce087d789007279712a6a7fdd62bc9ef352d062ac", 0xab}, {&(0x7f00000002c0)="58ea36935a40ffc52437ff60eca8b7dd304fa9b11a31f3881236a8d958775de8d9fa7416fa2248a1e1931cf9e99b934d51955861942f78f493ab27e6eff1c77de92f5d583455c285f30a5cddcc857c9d4b99bcd0c77e9c9d8d13e8752742eb6b7c829cc12adfdbe5c92233355a83cc555fbd035af8094d0d069f66976623a17afae2e690ecf919cfb929f0a29d824e79ad0a730a12ded416ddab5ffe3355fe3aea988215a0546adb75a01d6a594713573e7c95ca357c31eb36baa6caad4a5cc0", 0xc0}, {&(0x7f0000000380)="ee74ce80162de2fbf3ad4bb5d517a2f5001b60ae45737788468103b0d48899fc9bb56950f880c1aa54ac1d83143a1bb1326b61195be764b37901b099f51711fd920cf0c0caba31cbd2b3a74557d481ac98340ff27c6aeab86a2d3a98e5860e82f308108c207df2290c6caa156dd5077bee87f26a9428f8e274e4efaa2d149fc5118a095389b45096bd8ff8278665f7b73a02b633b64b480ac85a16c61c923d922f1d863e2f05d3481f7c7d8b6b1849fc7b0c7fc26d869950f85aaf8287a69cbe307a0fcc0c7e10546383684e0eaaf50797248496e41ab89965675ccb6da63723affcb6faab8aced64e71ecef01e657a965e2b7f1dbfc207b", 0xf8}], 0x5, &(0x7f0000000600)=[@init={0x18, 0x84, 0x0, {0x7, 0x8, 0xdc, 0x2}}, @sndrcv={0x30, 0x84, 0x1, {0xfe, 0x4, 0x1, 0x7, 0xe, 0x6, 0x1, 0xad, r2}}, @sndrcv={0x30, 0x84, 0x1, {0x0, 0x4, 0x0, 0x9, 0x7ff, 0x8f5c, 0x3, 0x6}}, @authinfo={0x18, 0x84, 0x6, {0x1b}}], 0x90, 0x40000}, 0x4000)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000700)={0x0, "5166aeaca197da6564668c60f69e5420"})
setsockopt$RDS_RECVERR(r1, 0x114, 0x5, &(0x7f0000001700), 0x4)
connect$llc(r1, &(0x7f0000001740)={0x1a, 0x200, 0x5, 0x8, 0x81, 0x7, @random="905d586c8483"}, 0x10)
r3 = socket(0x1f, 0x5, 0x2)
accept$unix(r3, &(0x7f0000001780), &(0x7f0000001800)=0x6e) (async)
r4 = accept$unix(r3, &(0x7f0000001780), &(0x7f0000001800)=0x6e)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001880), r3)
sendmsg$IPVS_CMD_SET_DEST(r1, &(0x7f0000001a40)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000001a00)={&(0x7f00000018c0)={0x120, r5, 0x10, 0x70bd26, 0x25dfdbff, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3}, @IPVS_CMD_ATTR_SERVICE={0x64, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e24}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x30, 0x29}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@rand_addr=0x64010100}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@rand_addr=0x64010100}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'none\x00'}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_DAEMON={0x70, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x3d}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'veth0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x5}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e21}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xfffffff8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xf}]}, 0x120}, 0x1, 0x0, 0x0, 0x800}, 0xc040)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000001a80)={r2, @in={{0x2, 0x4e21, @loopback}}}, 0x84) (async)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r1, 0x84, 0x5, &(0x7f0000001a80)={r2, @in={{0x2, 0x4e21, @loopback}}}, 0x84)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001b40)={0xffffffffffffffff, 0x1000}, 0xc)
ioctl$FS_IOC_GETFSLABEL(r6, 0x81009431, &(0x7f0000001b80))
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000001c80)=@assoc_value={r2, 0x3}, 0x8)
syz_emit_ethernet(0x2e, &(0x7f0000001cc0)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0x15}, @broadcast, @val={@void, {0x8100, 0x0, 0x1, 0x3}}, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @remote, @multicast, @empty}}}}, &(0x7f0000001d00)={0x1, 0x3, [0x88f, 0xd8, 0xd9c, 0x3d8]})
syz_extract_tcp_res$synack(&(0x7f0000001d40), 0x1, 0x0)
openat$cgroup_ro(r0, &(0x7f0000001d80)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0) (async)
r8 = openat$cgroup_ro(r0, &(0x7f0000001d80)='blkio.throttle.io_serviced_recursive\x00', 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000001e00), r1) (async)
r9 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001e00), r1)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x30, r9, 0x300, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4801) (async)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r8, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001e80)={&(0x7f0000001e40)={0x30, r9, 0x300, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4}, 0x4801)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r3, 0x110, 0x3) (async)
setsockopt$RXRPC_EXCLUSIVE_CONNECTION(r3, 0x110, 0x3)
ioctl$FIONCLEX(r0, 0x5450)
getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r7, 0x84, 0x13, &(0x7f0000001f00)={r2, 0x6}, &(0x7f0000001f40)=0x8)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000001f80)={'vxcan0\x00'}) (async)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000001f80)={'vxcan0\x00', <r10=>0x0})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001fc0)={0x2, 0x4, 0x8, 0x1, 0x80, r8, 0xfffffff2, '\x00', r10, r8, 0x5, 0x2, 0x5}, 0x50) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001fc0)={0x2, 0x4, 0x8, 0x1, 0x80, r8, 0xfffffff2, '\x00', r10, r8, 0x5, 0x2, 0x5}, 0x50)
sendmsg$WG_CMD_SET_DEVICE(r8, &(0x7f0000002280)={&(0x7f0000002040)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000002240)={&(0x7f0000002080)={0x1ac, 0x0, 0x0, 0x70bd2b, 0x25dfdbfd, {}, [@WGDEVICE_A_PEERS={0x134, 0x8, 0x0, 0x1, [{0x6c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x30, @loopback, 0x6}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}]}, {0x3c, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "62d3b6fbaef81423de0b5f9cc1dba6ad72465267bda93d60061b37f1e5ee192e"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @empty}}]}, {0x88, 0x0, 0x0, 0x1, [@WGPEER_A_FLAGS={0x8, 0x3, 0x3}, @WGPEER_A_FLAGS={0x8, 0x3, 0x1}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PUBLIC_KEY={0x24}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_FLAGS={0x8, 0x3, 0x7}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg2\x00'}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x27e585ffeb212487}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x1ac}, 0x1, 0x0, 0x0, 0x880}, 0x8040)
ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f00000022c0)=<r11=>0x0)
setsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000002340)={r11}, 0xc) (async)
setsockopt$sock_cred(r7, 0x1, 0x11, &(0x7f0000002340)={r11}, 0xc)

16.204728412s ago: executing program 0 (id=1231):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x11, 0x6, &(0x7f00000002c0)=@framed={{0x18, 0x8, 0x0, 0x95ff}, [@initr0, @alu={0x7, 0x1, 0xb, 0x0, 0x0, 0x10}]}, &(0x7f0000000000)='GPL\x00', 0x8}, 0x94)

16.092517368s ago: executing program 2 (id=1232):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000140)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x2f}]}, &(0x7f0000000040)='syzkaller\x00', 0x2}, 0x90) (async)
r0 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000000)={0xffffffffffffffff, 0x3, 0x8}, 0xc) (async)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600) (async)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000080)={0x1b, 0x0, 0x0, 0x7, 0x0, r0, 0x50000000, '\x00', 0x0, r1, 0x2, 0x2}, 0x50)

16.085361121s ago: executing program 1 (id=1233):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x10)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x2c, 0x4, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_HANDLE={0x6558, 0x2, 0x1, 0x0, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8090}, 0x4004000)

16.075404011s ago: executing program 0 (id=1234):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x24, r2, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x6}]}, 0x24}, 0x1, 0x0, 0x0, 0x24011}, 0x6004084)
r4 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240)={<r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000000c0)={'gretap0\x00', <r6=>0x0})
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha512\x00'}, 0x58)
r8 = accept4(r7, 0x0, 0x0, 0x800)
recvmsg$can_raw(r8, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x400, 0x0, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0x3}, {0xffff, 0xffff}, {0x0, 0xc}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0xd0}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000140)={&(0x7f00000003c0)=@newchain={0x24, 0x64, 0x1, 0x70bd28, 0x25dfdbfe, {0x0, 0x0, 0x0, r6, {0x2, 0x9}, {0xfff3, 0x3}, {0x1, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x80}, 0x48001)
r9 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$inet_int(r9, 0x0, 0x17, &(0x7f00000001c0), &(0x7f0000000040)=0x3)
sendmsg$nl_route(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=@ipv6_newrule={0x38, 0x20, 0x8, 0x99e8, 0x25dfdbfb, {0xa, 0x20, 0x20, 0x6, 0x3, 0x0, 0x0, 0x0, 0x8002}, [@FRA_SRC={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x4, 0x5}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000800}, 0x10010)
r10 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000040), 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYRES32=r10], 0x0, 0x46, 0x0, 0x0, 0x4}, 0x28)

16.016496419s ago: executing program 2 (id=1235):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000680))
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$packet(0x11, 0x3, 0x300)
pipe(&(0x7f0000000140))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

15.962656647s ago: executing program 1 (id=1236):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x80000001}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

15.930858216s ago: executing program 0 (id=1237):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$unix(0x1, 0x1, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000340)={0x0, 0xcc}, 0x8)
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback, 0x7}], 0x1c)
sendmmsg$inet6(r1, &(0x7f0000000640)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x2, @loopback, 0x3}, 0x1c, &(0x7f0000000500)=[{0x0}], 0x1}}], 0x1, 0x3404c8d4)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32, @ANYRES16=r1, @ANYRES16=r2], 0x1000f)

15.849648644s ago: executing program 0 (id=1238):
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2}, {0x10000002, 0x0, 0x0, 0xc}]}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000), 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xffc0}], 0x1}, 0x80d1)

15.785952194s ago: executing program 0 (id=1239):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB='AF', @ANYRES8=r11], 0x4)

2.039114165s ago: executing program 32 (id=1217):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r8)
ioctl$IOCTL_GET_NCIDEV_IDX(r7, 0x0, &(0x7f00000000c0)=<r10=>0x0)
sendmsg$NFC_CMD_DEV_UP(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r9, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r10], 0xfd45}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000200)=<r11=>0x0)
r12 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r13 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r14 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r13)
ioctl$IOCTL_GET_NCIDEV_IDX(r12, 0x0, &(0x7f00000000c0)=<r15=>0x0)
sendmsg$NFC_CMD_DEV_UP(r13, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r14, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r15], 0x1c}}, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(0xffffffffffffffff, 0x0, &(0x7f0000000240)=<r16=>0x0)
r17 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r18 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r19 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r18)
ioctl$IOCTL_GET_NCIDEV_IDX(r17, 0x0, &(0x7f00000000c0)=<r20=>0x0)
sendmsg$NFC_CMD_DEV_UP(r18, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r19, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r20}]}, 0x1c}}, 0x0)
sendmsg$NFC_CMD_GET_DEVICE(r6, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x3c, r9, 0x310, 0x70bd26, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r11}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r15}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r16}, @NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r20}, @NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004094}, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r21=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r21, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

1.009516915s ago: executing program 33 (id=1235):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000680))
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$packet(0x11, 0x3, 0x300)
pipe(&(0x7f0000000140))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

969.345432ms ago: executing program 34 (id=1223):
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
connect$rxrpc(r1, &(0x7f0000000000)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @dev}}, 0x24)
r2 = socket(0xa, 0x2400000001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
getsockopt$inet6_buf(r2, 0x29, 0x10000000000030, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002000010000000000000000000a00000000000000000000000c001400", @ANYRES16], 0x28}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32, @ANYBLOB="020000000000800080001200080001007674"], 0xa0}}, 0x0)
sendmsg$NL80211_CMD_DEL_PMKSA(r3, &(0x7f0000000400)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000540)={0x4c, 0x0, 0x400, 0x70bd2c, 0x25dfdbff, {{}, {@val={0x8}, @val={0xc, 0x99, {0xb0a, 0x14}}}}, [@NL80211_ATTR_PMK_LIFETIME={0x8, 0x11f, 0x8bf}, @NL80211_ATTR_PMK_REAUTH_THRESHOLD={0x5, 0x120, 0x2d}, @NL80211_ATTR_PMK={0x14, 0xfe, "4c3e06de9de7d6cfaa865562642b24d5"}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000004}, 0x40090)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000004300)=@newtaction={0x68, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0xffffffffffffffff}, 0x4}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(0x0, r5)
close(0xffffffffffffffff)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000022, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[], 0x1c8}}, 0x0)
setsockopt$RXRPC_SECURITY_KEY(r1, 0x110, 0x1, 0x0, 0x0)

36.901019ms ago: executing program 35 (id=1239):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r7, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB='AF', @ANYRES8=r11], 0x4)

0s ago: executing program 36 (id=1236):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x400, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r3)
r4 = socket$unix(0x1, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x80000001}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

kernel console output (not intermixed with test programs):

 T6973]  ? clear_bhb_loop+0x60/0xb0
[  196.381818][ T6973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.381839][ T6973] RIP: 0033:0x7f3f6218ebe9
[  196.381857][ T6973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.381874][ T6973] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  196.381896][ T6973] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  196.381912][ T6973] RDX: 0000000000044010 RSI: 0000200000000140 RDI: 0000000000000005
[  196.381925][ T6973] RBP: 00007f3f62fd7090 R08: 0000000000000000 R09: 0000000000000000
[  196.381938][ T6973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.381950][ T6973] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  196.381984][ T6973]  </TASK>
[  196.427414][ T6978] syzkaller0: entered promiscuous mode
[  196.629499][ T6978] syzkaller0: entered allmulticast mode
[  196.853060][ T6993] FAULT_INJECTION: forcing a failure.
[  196.853060][ T6993] name failslab, interval 1, probability 0, space 0, times 0
[  196.874096][ T6993] CPU: 1 UID: 0 PID: 6993 Comm: syz.2.292 Not tainted syzkaller #0 PREEMPT(full) 
[  196.874125][ T6993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  196.874138][ T6993] Call Trace:
[  196.874146][ T6993]  <TASK>
[  196.874155][ T6993]  dump_stack_lvl+0x189/0x250
[  196.874187][ T6993]  ? __pfx____ratelimit+0x10/0x10
[  196.874216][ T6993]  ? __pfx_dump_stack_lvl+0x10/0x10
[  196.874242][ T6993]  ? __pfx__printk+0x10/0x10
[  196.874279][ T6993]  ? __pfx___might_resched+0x10/0x10
[  196.874305][ T6993]  should_fail_ex+0x414/0x560
[  196.874339][ T6993]  should_failslab+0xa8/0x100
[  196.874372][ T6993]  __kmalloc_cache_node_noprof+0x73/0x3d0
[  196.874403][ T6993]  ? __get_vm_area_node+0x13f/0x300
[  196.874437][ T6993]  __get_vm_area_node+0x13f/0x300
[  196.874473][ T6993]  __vmalloc_node_range_noprof+0x301/0x12f0
[  196.874504][ T6993]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  196.874534][ T6993]  ? __lock_acquire+0xab9/0xd20
[  196.874592][ T6993]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  196.874622][ T6993]  ? __might_fault+0xb0/0x130
[  196.874654][ T6993]  ? _parse_integer_limit+0x1ae/0x1f0
[  196.874692][ T6993]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  196.874721][ T6993]  __vmalloc_noprof+0xb1/0xf0
[  196.874751][ T6993]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  196.874784][ T6993]  bpf_prog_alloc_no_stats+0x4a/0x4b0
[  196.874820][ T6993]  bpf_prog_alloc+0x3c/0x1a0
[  196.874854][ T6993]  bpf_prog_load+0x735/0x1930
[  196.874898][ T6993]  ? __pfx_bpf_prog_load+0x10/0x10
[  196.874951][ T6993]  ? bpf_lsm_bpf+0x9/0x20
[  196.874977][ T6993]  ? security_bpf+0x7e/0x300
[  196.875019][ T6993]  __sys_bpf+0x528/0x870
[  196.875056][ T6993]  ? __pfx___sys_bpf+0x10/0x10
[  196.875097][ T6993]  ? ksys_write+0x22a/0x250
[  196.875127][ T6993]  ? __pfx_ksys_write+0x10/0x10
[  196.875162][ T6993]  __x64_sys_bpf+0x7c/0x90
[  196.875187][ T6993]  do_syscall_64+0xfa/0x3b0
[  196.875225][ T6993]  ? lockdep_hardirqs_on+0x9c/0x150
[  196.875254][ T6993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.875273][ T6993]  ? clear_bhb_loop+0x60/0xb0
[  196.875297][ T6993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  196.875314][ T6993] RIP: 0033:0x7fd682d8ebe9
[  196.875331][ T6993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  196.875347][ T6993] RSP: 002b:00007fd683c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  196.875366][ T6993] RAX: ffffffffffffffda RBX: 00007fd682fb5fa0 RCX: 00007fd682d8ebe9
[  196.875380][ T6993] RDX: 0000000000000094 RSI: 0000200000000080 RDI: 0000000000000005
[  196.875392][ T6993] RBP: 00007fd683c3f090 R08: 0000000000000000 R09: 0000000000000000
[  196.875403][ T6993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  196.875414][ T6993] R13: 00007fd682fb6038 R14: 00007fd682fb5fa0 R15: 00007fff442ede78
[  196.875444][ T6993]  </TASK>
[  196.875665][ T6993] syz.2.292: vmalloc error: size 4096, vm_struct allocation failed, mode:0x500dc0(GFP_USER|__GFP_ZERO|__GFP_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  197.281627][ T6993] CPU: 1 UID: 0 PID: 6993 Comm: syz.2.292 Not tainted syzkaller #0 PREEMPT(full) 
[  197.281656][ T6993] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  197.281669][ T6993] Call Trace:
[  197.281677][ T6993]  <TASK>
[  197.281686][ T6993]  dump_stack_lvl+0x189/0x250
[  197.281720][ T6993]  ? __pfx_dump_stack_lvl+0x10/0x10
[  197.281747][ T6993]  ? __pfx__printk+0x10/0x10
[  197.281778][ T6993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  197.281804][ T6993]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  197.281831][ T6993]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  197.281859][ T6993]  warn_alloc+0x214/0x310
[  197.281899][ T6993]  ? __pfx_warn_alloc+0x10/0x10
[  197.281935][ T6993]  ? __get_vm_area_node+0x13f/0x300
[  197.281977][ T6993]  ? __get_vm_area_node+0x2b5/0x300
[  197.282014][ T6993]  __vmalloc_node_range_noprof+0x326/0x12f0
[  197.282045][ T6993]  ? __lock_acquire+0xab9/0xd20
[  197.282106][ T6993]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  197.282136][ T6993]  ? __might_fault+0xb0/0x130
[  197.282167][ T6993]  ? _parse_integer_limit+0x1ae/0x1f0
[  197.282205][ T6993]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  197.282234][ T6993]  __vmalloc_noprof+0xb1/0xf0
[  197.282264][ T6993]  ? bpf_prog_alloc_no_stats+0x4a/0x4b0
[  197.282297][ T6993]  bpf_prog_alloc_no_stats+0x4a/0x4b0
[  197.282334][ T6993]  bpf_prog_alloc+0x3c/0x1a0
[  197.282366][ T6993]  bpf_prog_load+0x735/0x1930
[  197.282410][ T6993]  ? __pfx_bpf_prog_load+0x10/0x10
[  197.282464][ T6993]  ? bpf_lsm_bpf+0x9/0x20
[  197.282489][ T6993]  ? security_bpf+0x7e/0x300
[  197.282519][ T6993]  __sys_bpf+0x528/0x870
[  197.282548][ T6993]  ? __pfx___sys_bpf+0x10/0x10
[  197.282591][ T6993]  ? ksys_write+0x22a/0x250
[  197.282627][ T6993]  ? __pfx_ksys_write+0x10/0x10
[  197.282663][ T6993]  __x64_sys_bpf+0x7c/0x90
[  197.282690][ T6993]  do_syscall_64+0xfa/0x3b0
[  197.282720][ T6993]  ? lockdep_hardirqs_on+0x9c/0x150
[  197.282749][ T6993]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.282770][ T6993]  ? clear_bhb_loop+0x60/0xb0
[  197.282797][ T6993]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  197.282817][ T6993] RIP: 0033:0x7fd682d8ebe9
[  197.282836][ T6993] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  197.282854][ T6993] RSP: 002b:00007fd683c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  197.282876][ T6993] RAX: ffffffffffffffda RBX: 00007fd682fb5fa0 RCX: 00007fd682d8ebe9
[  197.282891][ T6993] RDX: 0000000000000094 RSI: 0000200000000080 RDI: 0000000000000005
[  197.282904][ T6993] RBP: 00007fd683c3f090 R08: 0000000000000000 R09: 0000000000000000
[  197.282917][ T6993] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  197.282928][ T6993] R13: 00007fd682fb6038 R14: 00007fd682fb5fa0 R15: 00007fff442ede78
[  197.282968][ T6993]  </TASK>
[  197.581785][ T6993] Mem-Info:
[  197.585169][ T6993] active_anon:5852 inactive_anon:0 isolated_anon:0
[  197.585169][ T6993]  active_file:3215 inactive_file:39842 isolated_file:0
[  197.585169][ T6993]  unevictable:768 dirty:256 writeback:0
[  197.585169][ T6993]  slab_reclaimable:10183 slab_unreclaimable:95273
[  197.585169][ T6993]  mapped:29300 shmem:1416 pagetables:1202
[  197.585169][ T6993]  sec_pagetables:0 bounce:0
[  197.585169][ T6993]  kernel_misc_reclaimable:0
[  197.585169][ T6993]  free:1330905 free_pcp:14352 free_cma:0
[  197.665443][ T6993] Node 0 active_anon:23108kB inactive_anon:0kB active_file:12860kB inactive_file:159168kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117000kB dirty:1024kB writeback:0kB shmem:4128kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11948kB pagetables:4664kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  197.782381][ T6993] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:144kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  197.813740][ T6993] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  197.844758][ T6993] lowmem_reserve[]: 0 2497 2499 2499 2499
[  197.850590][ T6993] Node 0 DMA32 free:1421216kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:23160kB inactive_anon:0kB active_file:12860kB inactive_file:157604kB unevictable:1536kB writepending:1024kB present:3129332kB managed:2557476kB mlocked:0kB bounce:0kB free_pcp:38560kB local_pcp:20564kB free_cma:0kB
[  197.939261][ T6993] lowmem_reserve[]: 0 0 1 1 1
[  197.973112][ T6993] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1564kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  198.104759][ T7020] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  198.123837][ T6993] lowmem_reserve[]: 0 0 0 0 0
[  198.128658][ T6993] Node 1 Normal free:3887020kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:19300kB local_pcp:9152kB free_cma:0kB
[  198.171830][ T7020] syzkaller0: entered promiscuous mode
[  198.187003][ T7020] syzkaller0: entered allmulticast mode
[  198.210467][ T7020] tipc: Resetting bearer <eth:syzkaller0>
[  198.222596][ T6993] lowmem_reserve[]: 0 0 0 0 0
[  198.227697][ T7019] tipc: Resetting bearer <eth:syzkaller0>
[  198.245220][ T6993] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  198.298299][ T7019] tipc: Disabling bearer <eth:syzkaller0>
[  198.307546][ T6993] Node 0 DMA32: 852*4kB (UM) 356*8kB (UM) 215*16kB (UME) 186*32kB (UME) 48*64kB (UME) 33*128kB (UME) 22*256kB (UME) 16*512kB (M) 6*1024kB (UM) 7*2048kB (UME) 333*4096kB (M) = 1421216kB
[  198.327111][ T6993] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[  198.347809][ T7026] netlink: 12 bytes leftover after parsing attributes in process `syz.1.302'.
[  198.350933][ T6993] Node 1 Normal: 197*4kB (UE) 59*8kB (UME) 40*16kB (UME) 76*32kB (UME) 29*64kB (UME) 5*128kB (UME) 5*256kB (UME) 4*512kB (UME) 2*1024kB (UM) 2*2048kB (UE) 945*4096kB (M) = 3887020kB
[  198.359108][ T7028] netlink: 'syz.3.305': attribute type 32 has an invalid length.
[  198.381284][ T6993] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  198.397765][ T6993] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  198.410895][ T6993] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  198.421660][ T6993] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  198.441868][ T6993] 44418 total pagecache pages
[  198.456354][ T7028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.305'.
[  198.466822][ T7028] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  198.475710][ T6993] 0 pages in swap cache
[  198.498786][ T6993] Free swap  = 124996kB
[  198.520064][ T6993] Total swap = 124996kB
[  198.524468][ T6993] 2097051 pages RAM
[  198.529172][ T6993] 0 pages HighMem/MovableOnly
[  198.533937][ T6993] 425656 pages reserved
[  198.538231][ T6993] 0 pages cma reserved
[  199.255494][ T7062] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  199.270885][ T7062] syzkaller0: entered promiscuous mode
[  199.289904][ T7062] syzkaller0: entered allmulticast mode
[  199.311402][ T7062] sch_tbf: burst 0 is lower than device syzkaller0 mtu (1514) !
[  199.335144][ T7062] tipc: Resetting bearer <eth:syzkaller0>
[  199.366596][ T7060] tipc: Resetting bearer <eth:syzkaller0>
[  199.392431][ T7060] tipc: Disabling bearer <eth:syzkaller0>
[  199.453443][ T7075] netlink: 'syz.4.323': attribute type 4 has an invalid length.
[  199.554466][ T7078] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  199.573090][ T7078] syzkaller0: entered promiscuous mode
[  199.583111][ T7078] syzkaller0: entered allmulticast mode
[  199.608387][ T7080] syzkaller1: entered promiscuous mode
[  199.614386][ T7080] syzkaller1: entered allmulticast mode
[  199.623321][ T7077] tipc: Resetting bearer <eth:syzkaller0>
[  199.647898][ T7077] tipc: Disabling bearer <eth:syzkaller0>
[  199.687306][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  199.839576][ T7086] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  199.849746][ T7086] syzkaller0: entered promiscuous mode
[  199.855660][ T7086] syzkaller0: entered allmulticast mode
[  199.878237][ T7086] tipc: Resetting bearer <eth:syzkaller0>
[  199.897403][ T7085] tipc: Resetting bearer <eth:syzkaller0>
[  199.927129][ T7085] tipc: Disabling bearer <eth:syzkaller0>
[  200.090306][ T7094] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  200.195859][ T7096] FAULT_INJECTION: forcing a failure.
[  200.195859][ T7096] name failslab, interval 1, probability 0, space 0, times 0
[  200.243899][ T7096] CPU: 0 UID: 0 PID: 7096 Comm: syz.0.329 Not tainted syzkaller #0 PREEMPT(full) 
[  200.243928][ T7096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  200.243940][ T7096] Call Trace:
[  200.243948][ T7096]  <TASK>
[  200.243957][ T7096]  dump_stack_lvl+0x189/0x250
[  200.243987][ T7096]  ? __pfx____ratelimit+0x10/0x10
[  200.244016][ T7096]  ? __pfx_dump_stack_lvl+0x10/0x10
[  200.244040][ T7096]  ? __pfx__printk+0x10/0x10
[  200.244076][ T7096]  ? __pfx___might_resched+0x10/0x10
[  200.244101][ T7096]  should_fail_ex+0x414/0x560
[  200.244133][ T7096]  should_failslab+0xa8/0x100
[  200.244165][ T7096]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  200.244193][ T7096]  ? security_capable+0x7e/0x2e0
[  200.244221][ T7096]  ? __alloc_skb+0x112/0x2d0
[  200.244257][ T7096]  __alloc_skb+0x112/0x2d0
[  200.244291][ T7096]  netlink_sendmsg+0x5c6/0xb30
[  200.244332][ T7096]  ? __pfx_netlink_sendmsg+0x10/0x10
[  200.244365][ T7096]  ? __lock_acquire+0xab9/0xd20
[  200.244393][ T7096]  ? aa_sock_msg_perm+0xf1/0x1d0
[  200.244427][ T7096]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  200.244450][ T7096]  ? __pfx_netlink_sendmsg+0x10/0x10
[  200.244481][ T7096]  __sock_sendmsg+0x21c/0x270
[  200.244511][ T7096]  ____sys_sendmsg+0x505/0x830
[  200.244537][ T7096]  ? __pfx_____sys_sendmsg+0x10/0x10
[  200.244567][ T7096]  ? import_iovec+0x74/0xa0
[  200.244595][ T7096]  ___sys_sendmsg+0x21f/0x2a0
[  200.244618][ T7096]  ? __pfx____sys_sendmsg+0x10/0x10
[  200.244683][ T7096]  ? __fget_files+0x2a/0x420
[  200.244715][ T7096]  ? __fget_files+0x3a0/0x420
[  200.244754][ T7096]  __x64_sys_sendmsg+0x19b/0x260
[  200.244777][ T7096]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  200.244808][ T7096]  ? __pfx_ksys_write+0x10/0x10
[  200.244836][ T7096]  ? rcu_is_watching+0x15/0xb0
[  200.244862][ T7096]  ? do_syscall_64+0xbe/0x3b0
[  200.244894][ T7096]  do_syscall_64+0xfa/0x3b0
[  200.244921][ T7096]  ? lockdep_hardirqs_on+0x9c/0x150
[  200.244948][ T7096]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.244969][ T7096]  ? clear_bhb_loop+0x60/0xb0
[  200.244995][ T7096]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  200.245015][ T7096] RIP: 0033:0x7ff0f8b8ebe9
[  200.245033][ T7096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  200.245050][ T7096] RSP: 002b:00007ff0f99d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  200.245071][ T7096] RAX: ffffffffffffffda RBX: 00007ff0f8db5fa0 RCX: 00007ff0f8b8ebe9
[  200.245086][ T7096] RDX: 0000000004000000 RSI: 0000200000000340 RDI: 0000000000000004
[  200.245098][ T7096] RBP: 00007ff0f99d2090 R08: 0000000000000000 R09: 0000000000000000
[  200.245110][ T7096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  200.245121][ T7096] R13: 00007ff0f8db6038 R14: 00007ff0f8db5fa0 R15: 00007ffe1809a238
[  200.245154][ T7096]  </TASK>
[  200.578843][ T7103] netlink: 'syz.4.331': attribute type 32 has an invalid length.
[  200.588635][ T7103] netlink: 8 bytes leftover after parsing attributes in process `syz.4.331'.
[  200.599262][ T7103] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  200.881211][ T7112] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  200.907891][ T7115] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  200.936917][ T7112] syzkaller0: entered promiscuous mode
[  200.966519][ T7112] syzkaller0: entered allmulticast mode
[  201.073308][ T7122] netlink: 4 bytes leftover after parsing attributes in process `syz.4.340'.
[  201.096668][ T7111] tipc: Resetting bearer <eth:syzkaller0>
[  201.123546][ T7111] tipc: Disabling bearer <eth:syzkaller0>
[  201.140088][ T7130] netlink: 'syz.4.340': attribute type 32 has an invalid length.
[  201.167845][ T7130] netlink: 8 bytes leftover after parsing attributes in process `syz.4.340'.
[  201.188548][ T7130] (unnamed net_device) (uninitialized): option coupled_control: invalid value (64)
[  201.312056][ T7135] FAULT_INJECTION: forcing a failure.
[  201.312056][ T7135] name failslab, interval 1, probability 0, space 0, times 0
[  201.363743][ T7135] CPU: 1 UID: 0 PID: 7135 Comm: syz.1.344 Not tainted syzkaller #0 PREEMPT(full) 
[  201.363773][ T7135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  201.363785][ T7135] Call Trace:
[  201.363793][ T7135]  <TASK>
[  201.363801][ T7135]  dump_stack_lvl+0x189/0x250
[  201.363831][ T7135]  ? __pfx____ratelimit+0x10/0x10
[  201.363859][ T7135]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.363885][ T7135]  ? __pfx__printk+0x10/0x10
[  201.363915][ T7135]  ? __lock_acquire+0xab9/0xd20
[  201.363955][ T7135]  should_fail_ex+0x414/0x560
[  201.363988][ T7135]  should_failslab+0xa8/0x100
[  201.364020][ T7135]  kmem_cache_alloc_noprof+0x73/0x3c0
[  201.364048][ T7135]  ? skb_clone+0x212/0x3a0
[  201.364075][ T7135]  skb_clone+0x212/0x3a0
[  201.364101][ T7135]  __netlink_deliver_tap+0x404/0x850
[  201.364145][ T7135]  ? netlink_deliver_tap+0x2e/0x1b0
[  201.364176][ T7135]  netlink_deliver_tap+0x19c/0x1b0
[  201.364208][ T7135]  netlink_unicast+0x7fa/0x9e0
[  201.364244][ T7135]  ? __pfx_netlink_unicast+0x10/0x10
[  201.364274][ T7135]  ? netlink_sendmsg+0x642/0xb30
[  201.364309][ T7135]  ? skb_put+0x11b/0x210
[  201.364345][ T7135]  netlink_sendmsg+0x805/0xb30
[  201.364386][ T7135]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.364420][ T7135]  ? aa_sock_msg_perm+0xf1/0x1d0
[  201.364454][ T7135]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  201.364476][ T7135]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.364508][ T7135]  __sock_sendmsg+0x21c/0x270
[  201.364538][ T7135]  ____sys_sendmsg+0x505/0x830
[  201.364567][ T7135]  ? __pfx_____sys_sendmsg+0x10/0x10
[  201.364598][ T7135]  ? import_iovec+0x74/0xa0
[  201.364626][ T7135]  ___sys_sendmsg+0x21f/0x2a0
[  201.364650][ T7135]  ? __pfx____sys_sendmsg+0x10/0x10
[  201.364712][ T7135]  ? __fget_files+0x2a/0x420
[  201.364742][ T7135]  ? __fget_files+0x3a0/0x420
[  201.364785][ T7135]  __x64_sys_sendmsg+0x19b/0x260
[  201.364809][ T7135]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  201.364842][ T7135]  ? __pfx_ksys_write+0x10/0x10
[  201.364867][ T7135]  ? rcu_is_watching+0x15/0xb0
[  201.364893][ T7135]  ? do_syscall_64+0xbe/0x3b0
[  201.364928][ T7135]  do_syscall_64+0xfa/0x3b0
[  201.364956][ T7135]  ? lockdep_hardirqs_on+0x9c/0x150
[  201.364983][ T7135]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.365003][ T7135]  ? clear_bhb_loop+0x60/0xb0
[  201.365029][ T7135]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.365049][ T7135] RIP: 0033:0x7fdbb7f8ebe9
[  201.365067][ T7135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  201.365084][ T7135] RSP: 002b:00007fdbb8d99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  201.365105][ T7135] RAX: ffffffffffffffda RBX: 00007fdbb81b5fa0 RCX: 00007fdbb7f8ebe9
[  201.365120][ T7135] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[  201.365132][ T7135] RBP: 00007fdbb8d99090 R08: 0000000000000000 R09: 0000000000000000
[  201.365145][ T7135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  201.365156][ T7135] R13: 00007fdbb81b6038 R14: 00007fdbb81b5fa0 R15: 00007ffe7454d748
[  201.365189][ T7135]  </TASK>
[  201.689164][ T7135] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  201.833165][ T7142] netlink: 12 bytes leftover after parsing attributes in process `syz.0.348'.
[  201.922919][ T7150] netlink: 56 bytes leftover after parsing attributes in process `syz.1.347'.
[  201.973120][ T7142] geneve2: entered promiscuous mode
[  202.085658][ T7154] blkio.reset_stats is deprecated
[  202.382409][ T7172] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  202.412122][ T7174] netlink: 'syz.3.355': attribute type 1 has an invalid length.
[  202.423311][ T7172] syzkaller0: entered promiscuous mode
[  202.448628][ T7174] netlink: 172 bytes leftover after parsing attributes in process `syz.3.355'.
[  202.471452][ T7172] syzkaller0: entered allmulticast mode
[  202.569169][ T7169] tipc: Resetting bearer <eth:syzkaller0>
[  202.702518][ T7169] tipc: Disabling bearer <eth:syzkaller0>
[  202.769411][ T7187] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  202.817195][ T7194] netlink: 12 bytes leftover after parsing attributes in process `syz.4.361'.
[  202.821147][ T7182] tipc: Resetting bearer <eth:syzkaller0>
[  202.921741][ T7180] tipc: Disabling bearer <eth:syzkaller0>
[  202.947219][ T7198] FAULT_INJECTION: forcing a failure.
[  202.947219][ T7198] name failslab, interval 1, probability 0, space 0, times 0
[  202.970783][ T7198] CPU: 1 UID: 0 PID: 7198 Comm: syz.1.364 Not tainted syzkaller #0 PREEMPT(full) 
[  202.970808][ T7198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  202.970819][ T7198] Call Trace:
[  202.970826][ T7198]  <TASK>
[  202.970834][ T7198]  dump_stack_lvl+0x189/0x250
[  202.970863][ T7198]  ? __pfx____ratelimit+0x10/0x10
[  202.970889][ T7198]  ? __pfx_dump_stack_lvl+0x10/0x10
[  202.970912][ T7198]  ? __pfx__printk+0x10/0x10
[  202.970960][ T7198]  ? __pfx___might_resched+0x10/0x10
[  202.970979][ T7198]  ? fs_reclaim_acquire+0x7d/0x100
[  202.971015][ T7198]  should_fail_ex+0x414/0x560
[  202.971047][ T7198]  should_failslab+0xa8/0x100
[  202.971079][ T7198]  __kmalloc_noprof+0xcb/0x4f0
[  202.971114][ T7198]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  202.971144][ T7198]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  202.971177][ T7198]  genl_family_rcv_msg_doit+0xb8/0x300
[  202.971207][ T7198]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  202.971237][ T7198]  ? apparmor_capable+0x137/0x1b0
[  202.971261][ T7198]  ? bpf_lsm_capable+0x9/0x20
[  202.971286][ T7198]  ? security_capable+0x7e/0x2e0
[  202.971323][ T7198]  genl_rcv_msg+0x60e/0x790
[  202.971352][ T7198]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.971374][ T7198]  ? __pfx_ovs_flow_cmd_new+0x10/0x10
[  202.971404][ T7198]  ? __asan_memcpy+0x40/0x70
[  202.971427][ T7198]  ? __pfx_ref_tracker_free+0x10/0x10
[  202.971463][ T7198]  netlink_rcv_skb+0x208/0x470
[  202.971490][ T7198]  ? __lock_acquire+0xab9/0xd20
[  202.971520][ T7198]  ? __pfx_genl_rcv_msg+0x10/0x10
[  202.971572][ T7198]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  202.971623][ T7198]  ? down_read+0x1ad/0x2e0
[  202.971658][ T7198]  genl_rcv+0x28/0x40
[  202.971678][ T7198]  netlink_unicast+0x82c/0x9e0
[  202.971715][ T7198]  ? __pfx_netlink_unicast+0x10/0x10
[  202.971744][ T7198]  ? netlink_sendmsg+0x642/0xb30
[  202.971772][ T7198]  ? skb_put+0x11b/0x210
[  202.971808][ T7198]  netlink_sendmsg+0x805/0xb30
[  202.971850][ T7198]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.971885][ T7198]  ? aa_sock_msg_perm+0xf1/0x1d0
[  202.971918][ T7198]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  202.971941][ T7198]  ? __pfx_netlink_sendmsg+0x10/0x10
[  202.971973][ T7198]  __sock_sendmsg+0x21c/0x270
[  202.972003][ T7198]  ____sys_sendmsg+0x505/0x830
[  202.972031][ T7198]  ? __pfx_____sys_sendmsg+0x10/0x10
[  202.972063][ T7198]  ? import_iovec+0x74/0xa0
[  202.972090][ T7198]  ___sys_sendmsg+0x21f/0x2a0
[  202.972121][ T7198]  ? __pfx____sys_sendmsg+0x10/0x10
[  202.972182][ T7198]  ? __fget_files+0x2a/0x420
[  202.972213][ T7198]  ? __fget_files+0x3a0/0x420
[  202.972256][ T7198]  __x64_sys_sendmsg+0x19b/0x260
[  202.972281][ T7198]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  202.972313][ T7198]  ? __pfx_ksys_write+0x10/0x10
[  202.972338][ T7198]  ? rcu_is_watching+0x15/0xb0
[  202.972365][ T7198]  ? do_syscall_64+0xbe/0x3b0
[  202.972400][ T7198]  do_syscall_64+0xfa/0x3b0
[  202.972428][ T7198]  ? lockdep_hardirqs_on+0x9c/0x150
[  202.972456][ T7198]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.972477][ T7198]  ? clear_bhb_loop+0x60/0xb0
[  202.972502][ T7198]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.972522][ T7198] RIP: 0033:0x7fdbb7f8ebe9
[  202.972540][ T7198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.972558][ T7198] RSP: 002b:00007fdbb8d99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  202.972579][ T7198] RAX: ffffffffffffffda RBX: 00007fdbb81b5fa0 RCX: 00007fdbb7f8ebe9
[  202.972594][ T7198] RDX: 000000000000c000 RSI: 0000200000000000 RDI: 0000000000000003
[  202.972606][ T7198] RBP: 00007fdbb8d99090 R08: 0000000000000000 R09: 0000000000000000
[  202.972619][ T7198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.972630][ T7198] R13: 00007fdbb81b6038 R14: 00007fdbb81b5fa0 R15: 00007ffe7454d748
[  202.972663][ T7198]  </TASK>
[  203.511177][ T7210] netlink: 64 bytes leftover after parsing attributes in process `syz.3.367'.
[  203.671250][ T7219] FAULT_INJECTION: forcing a failure.
[  203.671250][ T7219] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  203.684542][ T7219] CPU: 1 UID: 0 PID: 7219 Comm: syz.0.370 Not tainted syzkaller #0 PREEMPT(full) 
[  203.684568][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  203.684580][ T7219] Call Trace:
[  203.684588][ T7219]  <TASK>
[  203.684597][ T7219]  dump_stack_lvl+0x189/0x250
[  203.684628][ T7219]  ? __pfx____ratelimit+0x10/0x10
[  203.684657][ T7219]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.684682][ T7219]  ? __pfx__printk+0x10/0x10
[  203.684713][ T7219]  ? __asan_memcpy+0x40/0x70
[  203.684745][ T7219]  should_fail_ex+0x414/0x560
[  203.684778][ T7219]  _copy_to_user+0x31/0xb0
[  203.684804][ T7219]  bpf_verifier_vlog+0x48c/0x900
[  203.684843][ T7219]  __btf_verifier_log+0xd4/0x120
[  203.684879][ T7219]  ? __pfx___btf_verifier_log+0x10/0x10
[  203.684906][ T7219]  ? __might_fault+0xb0/0x130
[  203.684940][ T7219]  ? btf_parse_hdr+0x1e2/0x6d0
[  203.684967][ T7219]  btf_parse_hdr+0x282/0x6d0
[  203.685003][ T7219]  btf_new_fd+0x36d/0xc90
[  203.685025][ T7219]  ? apparmor_capable+0x137/0x1b0
[  203.685058][ T7219]  ? __pfx_btf_new_fd+0x10/0x10
[  203.685082][ T7219]  ? bpf_token_put+0x143/0x160
[  203.685111][ T7219]  ? bpf_btf_load+0x126/0x190
[  203.685144][ T7219]  __sys_bpf+0x406/0x870
[  203.685173][ T7219]  ? __pfx___sys_bpf+0x10/0x10
[  203.685215][ T7219]  ? ksys_write+0x22a/0x250
[  203.685244][ T7219]  ? __pfx_ksys_write+0x10/0x10
[  203.685279][ T7219]  __x64_sys_bpf+0x7c/0x90
[  203.685304][ T7219]  do_syscall_64+0xfa/0x3b0
[  203.685333][ T7219]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.685360][ T7219]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.685380][ T7219]  ? clear_bhb_loop+0x60/0xb0
[  203.685405][ T7219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.685425][ T7219] RIP: 0033:0x7ff0f8b8ebe9
[  203.685444][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.685461][ T7219] RSP: 002b:00007ff0f99d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  203.685482][ T7219] RAX: ffffffffffffffda RBX: 00007ff0f8db5fa0 RCX: 00007ff0f8b8ebe9
[  203.685497][ T7219] RDX: 0000000000000020 RSI: 0000200000002180 RDI: 0000000000000012
[  203.685510][ T7219] RBP: 00007ff0f99d2090 R08: 0000000000000000 R09: 0000000000000000
[  203.685521][ T7219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  203.685532][ T7219] R13: 00007ff0f8db6038 R14: 00007ff0f8db5fa0 R15: 00007ffe1809a238
[  203.685564][ T7219]  </TASK>
[  203.993163][ T7222] ieee802154 phy1 wpan1: encryption failed: -22
[  204.057436][ T7224] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  204.065646][ T7224] syzkaller0: entered promiscuous mode
[  204.071163][ T7224] syzkaller0: entered allmulticast mode
[  204.083797][ T7224] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  204.327633][ T7234] netlink: 8 bytes leftover after parsing attributes in process `syz.1.376'.
[  204.380422][ T7234] netlink: 4 bytes leftover after parsing attributes in process `syz.1.376'.
[  204.408892][ T7224] tipc: Resetting bearer <eth:syzkaller0>
[  204.434137][ T7223] tipc: Resetting bearer <eth:syzkaller0>
[  204.540483][ T7223] tipc: Disabling bearer <eth:syzkaller0>
[  204.658520][ T7241] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  204.711155][ T7241] syzkaller0: entered promiscuous mode
[  204.718707][ T7241] syzkaller0: entered allmulticast mode
[  204.838746][ T7241] tipc: Resetting bearer <eth:syzkaller0>
[  204.906571][ T7240] tipc: Resetting bearer <eth:syzkaller0>
[  204.932447][ T7240] tipc: Disabling bearer <eth:syzkaller0>
[  205.175567][ T7255] netlink: 40 bytes leftover after parsing attributes in process `syz.1.384'.
[  205.359820][ T7265] FAULT_INJECTION: forcing a failure.
[  205.359820][ T7265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  205.374036][ T7265] CPU: 1 UID: 0 PID: 7265 Comm: syz.4.387 Not tainted syzkaller #0 PREEMPT(full) 
[  205.374063][ T7265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  205.374075][ T7265] Call Trace:
[  205.374083][ T7265]  <TASK>
[  205.374099][ T7265]  dump_stack_lvl+0x189/0x250
[  205.374128][ T7265]  ? __pfx____ratelimit+0x10/0x10
[  205.374157][ T7265]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.374182][ T7265]  ? __pfx__printk+0x10/0x10
[  205.374212][ T7265]  ? __asan_memcpy+0x40/0x70
[  205.374243][ T7265]  should_fail_ex+0x414/0x560
[  205.374276][ T7265]  _copy_to_user+0x31/0xb0
[  205.374301][ T7265]  bpf_verifier_vlog+0x48c/0x900
[  205.374339][ T7265]  __btf_verifier_log+0xd4/0x120
[  205.374387][ T7265]  ? __pfx___btf_verifier_log+0x10/0x10
[  205.374411][ T7265]  ? __might_fault+0xb0/0x130
[  205.374444][ T7265]  ? btf_parse_hdr+0x1e2/0x6d0
[  205.374488][ T7265]  btf_parse_hdr+0x2ad/0x6d0
[  205.374516][ T7265]  btf_new_fd+0x36d/0xc90
[  205.374537][ T7265]  ? apparmor_capable+0x137/0x1b0
[  205.374569][ T7265]  ? __pfx_btf_new_fd+0x10/0x10
[  205.374593][ T7265]  ? bpf_token_put+0x143/0x160
[  205.374622][ T7265]  ? bpf_btf_load+0x126/0x190
[  205.374665][ T7265]  __sys_bpf+0x406/0x870
[  205.374692][ T7265]  ? __pfx___sys_bpf+0x10/0x10
[  205.374730][ T7265]  ? ksys_write+0x22a/0x250
[  205.374758][ T7265]  ? __pfx_ksys_write+0x10/0x10
[  205.374791][ T7265]  __x64_sys_bpf+0x7c/0x90
[  205.374814][ T7265]  do_syscall_64+0xfa/0x3b0
[  205.374841][ T7265]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.374868][ T7265]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.374886][ T7265]  ? clear_bhb_loop+0x60/0xb0
[  205.374909][ T7265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.374927][ T7265] RIP: 0033:0x7f9cd218ebe9
[  205.374945][ T7265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.374960][ T7265] RSP: 002b:00007f9cd3070038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  205.374981][ T7265] RAX: ffffffffffffffda RBX: 00007f9cd23b5fa0 RCX: 00007f9cd218ebe9
[  205.374994][ T7265] RDX: 0000000000000020 RSI: 0000200000002180 RDI: 0000000000000012
[  205.375006][ T7265] RBP: 00007f9cd3070090 R08: 0000000000000000 R09: 0000000000000000
[  205.375017][ T7265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.375028][ T7265] R13: 00007f9cd23b6038 R14: 00007f9cd23b5fa0 R15: 00007ffe5a71c438
[  205.375058][ T7265]  </TASK>
[  205.405953][ T7262] netlink: 8 bytes leftover after parsing attributes in process `syz.2.386'.
[  205.558047][ T7270] FAULT_INJECTION: forcing a failure.
[  205.558047][ T7270] name failslab, interval 1, probability 0, space 0, times 0
[  205.708929][ T7270] CPU: 1 UID: 0 PID: 7270 Comm: syz.4.389 Not tainted syzkaller #0 PREEMPT(full) 
[  205.708958][ T7270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  205.708971][ T7270] Call Trace:
[  205.708978][ T7270]  <TASK>
[  205.708987][ T7270]  dump_stack_lvl+0x189/0x250
[  205.709017][ T7270]  ? __pfx____ratelimit+0x10/0x10
[  205.709054][ T7270]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.709080][ T7270]  ? __pfx__printk+0x10/0x10
[  205.709114][ T7270]  ? __pfx___might_resched+0x10/0x10
[  205.709133][ T7270]  ? fs_reclaim_acquire+0x7d/0x100
[  205.709169][ T7270]  should_fail_ex+0x414/0x560
[  205.709202][ T7270]  should_failslab+0xa8/0x100
[  205.709233][ T7270]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  205.709262][ T7270]  ? __alloc_skb+0x112/0x2d0
[  205.709297][ T7270]  __alloc_skb+0x112/0x2d0
[  205.709333][ T7270]  netlink_ack+0x146/0xa50
[  205.709379][ T7270]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.709408][ T7270]  ? __asan_memcpy+0x40/0x70
[  205.709431][ T7270]  ? __pfx_ref_tracker_free+0x10/0x10
[  205.709470][ T7270]  netlink_rcv_skb+0x28c/0x470
[  205.709498][ T7270]  ? __lock_acquire+0xab9/0xd20
[  205.709530][ T7270]  ? __pfx_genl_rcv_msg+0x10/0x10
[  205.709556][ T7270]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  205.709608][ T7270]  ? down_read+0x1ad/0x2e0
[  205.709645][ T7270]  genl_rcv+0x28/0x40
[  205.709665][ T7270]  netlink_unicast+0x82c/0x9e0
[  205.709704][ T7270]  ? __pfx_netlink_unicast+0x10/0x10
[  205.709734][ T7270]  ? netlink_sendmsg+0x642/0xb30
[  205.709763][ T7270]  ? skb_put+0x11b/0x210
[  205.709799][ T7270]  netlink_sendmsg+0x805/0xb30
[  205.709843][ T7270]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.709879][ T7270]  ? aa_sock_msg_perm+0xf1/0x1d0
[  205.709916][ T7270]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  205.709939][ T7270]  ? __pfx_netlink_sendmsg+0x10/0x10
[  205.709973][ T7270]  __sock_sendmsg+0x21c/0x270
[  205.710003][ T7270]  ____sys_sendmsg+0x505/0x830
[  205.710033][ T7270]  ? __pfx_____sys_sendmsg+0x10/0x10
[  205.710074][ T7270]  ? import_iovec+0x74/0xa0
[  205.710103][ T7270]  ___sys_sendmsg+0x21f/0x2a0
[  205.710128][ T7270]  ? __pfx____sys_sendmsg+0x10/0x10
[  205.710191][ T7270]  ? __fget_files+0x2a/0x420
[  205.710222][ T7270]  ? __fget_files+0x3a0/0x420
[  205.710266][ T7270]  __x64_sys_sendmsg+0x19b/0x260
[  205.710291][ T7270]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  205.710324][ T7270]  ? __pfx_ksys_write+0x10/0x10
[  205.710351][ T7270]  ? rcu_is_watching+0x15/0xb0
[  205.710378][ T7270]  ? do_syscall_64+0xbe/0x3b0
[  205.710414][ T7270]  do_syscall_64+0xfa/0x3b0
[  205.710442][ T7270]  ? lockdep_hardirqs_on+0x9c/0x150
[  205.710471][ T7270]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.710493][ T7270]  ? clear_bhb_loop+0x60/0xb0
[  205.710519][ T7270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.710540][ T7270] RIP: 0033:0x7f9cd218ebe9
[  205.710559][ T7270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  205.710576][ T7270] RSP: 002b:00007f9cd3070038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  205.710598][ T7270] RAX: ffffffffffffffda RBX: 00007f9cd23b5fa0 RCX: 00007f9cd218ebe9
[  205.710613][ T7270] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[  205.710626][ T7270] RBP: 00007f9cd3070090 R08: 0000000000000000 R09: 0000000000000000
[  205.710638][ T7270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  205.710650][ T7270] R13: 00007f9cd23b6038 R14: 00007f9cd23b5fa0 R15: 00007ffe5a71c438
[  205.710684][ T7270]  </TASK>
[  206.098859][ T7281] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  206.188148][ T7284] netlink: 'syz.4.391': attribute type 1 has an invalid length.
[  206.203877][ T7284] netlink: 224 bytes leftover after parsing attributes in process `syz.4.391'.
[  206.621478][ T7298] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  206.632425][ T7294] netlink: 156 bytes leftover after parsing attributes in process `syz.4.393'.
[  206.677400][ T7294] netlink: 156 bytes leftover after parsing attributes in process `syz.4.393'.
[  206.806901][ T7303] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  206.900110][ T7307] netlink: 232 bytes leftover after parsing attributes in process `syz.0.395'.
[  206.935261][ T7303] syzkaller0: entered promiscuous mode
[  206.954537][ T7303] syzkaller0: entered allmulticast mode
[  206.968300][ T7313] FAULT_INJECTION: forcing a failure.
[  206.968300][ T7313] name failslab, interval 1, probability 0, space 0, times 0
[  207.013071][ T7313] CPU: 1 UID: 0 PID: 7313 Comm: syz.1.397 Not tainted syzkaller #0 PREEMPT(full) 
[  207.013099][ T7313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  207.013112][ T7313] Call Trace:
[  207.013120][ T7313]  <TASK>
[  207.013129][ T7313]  dump_stack_lvl+0x189/0x250
[  207.013161][ T7313]  ? __pfx____ratelimit+0x10/0x10
[  207.013191][ T7313]  ? __pfx_dump_stack_lvl+0x10/0x10
[  207.013218][ T7313]  ? __pfx__printk+0x10/0x10
[  207.013256][ T7313]  ? __pfx___might_resched+0x10/0x10
[  207.013276][ T7313]  ? fs_reclaim_acquire+0x7d/0x100
[  207.013315][ T7313]  should_fail_ex+0x414/0x560
[  207.013349][ T7313]  should_failslab+0xa8/0x100
[  207.013382][ T7313]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  207.013411][ T7313]  ? __alloc_skb+0x112/0x2d0
[  207.013448][ T7313]  __alloc_skb+0x112/0x2d0
[  207.013484][ T7313]  netlink_ack+0x146/0xa50
[  207.013511][ T7313]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.013545][ T7313]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  207.013566][ T7313]  ? __pfx_nl80211_post_doit+0x10/0x10
[  207.013589][ T7313]  ? __asan_memcpy+0x40/0x70
[  207.013615][ T7313]  ? __pfx_ref_tracker_free+0x10/0x10
[  207.013651][ T7313]  netlink_rcv_skb+0x28c/0x470
[  207.013678][ T7313]  ? __lock_acquire+0xab9/0xd20
[  207.013708][ T7313]  ? __pfx_genl_rcv_msg+0x10/0x10
[  207.013732][ T7313]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  207.013784][ T7313]  ? down_read+0x1ad/0x2e0
[  207.013819][ T7313]  genl_rcv+0x28/0x40
[  207.013840][ T7313]  netlink_unicast+0x82c/0x9e0
[  207.013876][ T7313]  ? __pfx_netlink_unicast+0x10/0x10
[  207.014046][ T7313]  ? netlink_sendmsg+0x642/0xb30
[  207.014086][ T7313]  ? skb_put+0x11b/0x210
[  207.014123][ T7313]  netlink_sendmsg+0x805/0xb30
[  207.014166][ T7313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.014202][ T7313]  ? aa_sock_msg_perm+0xf1/0x1d0
[  207.014238][ T7313]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  207.014261][ T7313]  ? __pfx_netlink_sendmsg+0x10/0x10
[  207.014293][ T7313]  __sock_sendmsg+0x21c/0x270
[  207.014324][ T7313]  ____sys_sendmsg+0x505/0x830
[  207.014353][ T7313]  ? __pfx_____sys_sendmsg+0x10/0x10
[  207.014397][ T7313]  ? import_iovec+0x74/0xa0
[  207.014426][ T7313]  ___sys_sendmsg+0x21f/0x2a0
[  207.014470][ T7313]  ? __pfx____sys_sendmsg+0x10/0x10
[  207.014534][ T7313]  ? __fget_files+0x2a/0x420
[  207.014565][ T7313]  ? __fget_files+0x3a0/0x420
[  207.014611][ T7313]  __x64_sys_sendmsg+0x19b/0x260
[  207.014636][ T7313]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  207.014671][ T7313]  ? __pfx_ksys_write+0x10/0x10
[  207.014698][ T7313]  ? rcu_is_watching+0x15/0xb0
[  207.014726][ T7313]  ? do_syscall_64+0xbe/0x3b0
[  207.014762][ T7313]  do_syscall_64+0xfa/0x3b0
[  207.014792][ T7313]  ? lockdep_hardirqs_on+0x9c/0x150
[  207.014820][ T7313]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.014841][ T7313]  ? clear_bhb_loop+0x60/0xb0
[  207.014868][ T7313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.014900][ T7313] RIP: 0033:0x7fdbb7f8ebe9
[  207.014920][ T7313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  207.014938][ T7313] RSP: 002b:00007fdbb8d99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  207.014960][ T7313] RAX: ffffffffffffffda RBX: 00007fdbb81b5fa0 RCX: 00007fdbb7f8ebe9
[  207.014975][ T7313] RDX: 0000000000000000 RSI: 0000200000000400 RDI: 0000000000000003
[  207.014988][ T7313] RBP: 00007fdbb8d99090 R08: 0000000000000000 R09: 0000000000000000
[  207.015007][ T7313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  207.015019][ T7313] R13: 00007fdbb81b6038 R14: 00007fdbb81b5fa0 R15: 00007ffe7454d748
[  207.015055][ T7313]  </TASK>
[  207.389786][ T7303] tipc: Resetting bearer <eth:syzkaller0>
[  207.554414][ T7301] tipc: Resetting bearer <eth:syzkaller0>
[  207.592684][ T7329] netlink: 'syz.1.400': attribute type 4 has an invalid length.
[  207.641340][ T7301] tipc: Disabling bearer <eth:syzkaller0>
[  207.781048][ T7335] netlink: 'syz.4.402': attribute type 1 has an invalid length.
[  207.816345][ T7335] netlink: 224 bytes leftover after parsing attributes in process `syz.4.402'.
[  208.018850][ T7345] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  208.364020][ T7362] FAULT_INJECTION: forcing a failure.
[  208.364020][ T7362] name failslab, interval 1, probability 0, space 0, times 0
[  208.399103][ T7362] CPU: 1 UID: 0 PID: 7362 Comm: syz.3.411 Not tainted syzkaller #0 PREEMPT(full) 
[  208.399132][ T7362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  208.399144][ T7362] Call Trace:
[  208.399152][ T7362]  <TASK>
[  208.399161][ T7362]  dump_stack_lvl+0x189/0x250
[  208.399191][ T7362]  ? __pfx____ratelimit+0x10/0x10
[  208.399219][ T7362]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.399243][ T7362]  ? __pfx__printk+0x10/0x10
[  208.399278][ T7362]  ? __pfx___might_resched+0x10/0x10
[  208.399296][ T7362]  ? fs_reclaim_acquire+0x7d/0x100
[  208.399331][ T7362]  should_fail_ex+0x414/0x560
[  208.399364][ T7362]  should_failslab+0xa8/0x100
[  208.399396][ T7362]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  208.399425][ T7362]  ? __alloc_skb+0x112/0x2d0
[  208.399461][ T7362]  __alloc_skb+0x112/0x2d0
[  208.399496][ T7362]  netlink_ack+0x146/0xa50
[  208.399523][ T7362]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.399550][ T7362]  ? __asan_memcpy+0x40/0x70
[  208.399573][ T7362]  ? __pfx_ref_tracker_free+0x10/0x10
[  208.399610][ T7362]  netlink_rcv_skb+0x28c/0x470
[  208.399636][ T7362]  ? __lock_acquire+0xab9/0xd20
[  208.399666][ T7362]  ? __pfx_genl_rcv_msg+0x10/0x10
[  208.399709][ T7362]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  208.399760][ T7362]  ? down_read+0x1ad/0x2e0
[  208.399804][ T7362]  genl_rcv+0x28/0x40
[  208.399824][ T7362]  netlink_unicast+0x82c/0x9e0
[  208.399862][ T7362]  ? __pfx_netlink_unicast+0x10/0x10
[  208.399891][ T7362]  ? netlink_sendmsg+0x642/0xb30
[  208.399919][ T7362]  ? skb_put+0x11b/0x210
[  208.399955][ T7362]  netlink_sendmsg+0x805/0xb30
[  208.399997][ T7362]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.400031][ T7362]  ? aa_sock_msg_perm+0xf1/0x1d0
[  208.400066][ T7362]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  208.400088][ T7362]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.400120][ T7362]  __sock_sendmsg+0x21c/0x270
[  208.400150][ T7362]  ____sys_sendmsg+0x505/0x830
[  208.400178][ T7362]  ? __pfx_____sys_sendmsg+0x10/0x10
[  208.400210][ T7362]  ? import_iovec+0x74/0xa0
[  208.400238][ T7362]  ___sys_sendmsg+0x21f/0x2a0
[  208.400262][ T7362]  ? __pfx____sys_sendmsg+0x10/0x10
[  208.400325][ T7362]  ? __fget_files+0x2a/0x420
[  208.400356][ T7362]  ? __fget_files+0x3a0/0x420
[  208.400400][ T7362]  __x64_sys_sendmsg+0x19b/0x260
[  208.400425][ T7362]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  208.400458][ T7362]  ? __pfx_ksys_write+0x10/0x10
[  208.400483][ T7362]  ? rcu_is_watching+0x15/0xb0
[  208.400511][ T7362]  ? do_syscall_64+0xbe/0x3b0
[  208.400547][ T7362]  do_syscall_64+0xfa/0x3b0
[  208.400575][ T7362]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.400603][ T7362]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.400624][ T7362]  ? clear_bhb_loop+0x60/0xb0
[  208.400650][ T7362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.400670][ T7362] RIP: 0033:0x7f3f6218ebe9
[  208.400689][ T7362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.400706][ T7362] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.400729][ T7362] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  208.400744][ T7362] RDX: 0000000000000084 RSI: 0000200000000100 RDI: 0000000000000003
[  208.400756][ T7362] RBP: 00007f3f62fd7090 R08: 0000000000000000 R09: 0000000000000000
[  208.400775][ T7362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  208.400787][ T7362] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  208.400822][ T7362]  </TASK>
[  208.966460][ T7353] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  208.972642][ T7353] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  209.066881][ T7377] bridge1: the hash_elasticity option has been deprecated and is always 16
[  209.077075][ T7378] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  209.100231][ T7382] syzkaller0: entered promiscuous mode
[  209.106192][ T7382] syzkaller0: entered allmulticast mode
[  209.172274][ T7353] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  209.208885][ T7353] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  209.243445][ T7378] tipc: Resetting bearer <eth:syzkaller0>
[  209.260320][ T7386] netlink: 'syz.0.417': attribute type 1 has an invalid length.
[  209.279477][ T7386] netlink: 224 bytes leftover after parsing attributes in process `syz.0.417'.
[  209.293738][ T7353] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  209.299711][ T7353] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  209.309413][ T7374] tipc: Resetting bearer <eth:syzkaller0>
[  209.397069][ T7374] tipc: Disabling bearer <eth:syzkaller0>
[  209.445858][ T7353] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  209.493539][ T7353] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  209.581666][ T7353] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  209.617238][ T7353] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[  209.628958][ T7402] FAULT_INJECTION: forcing a failure.
[  209.628958][ T7402] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  209.650278][ T7402] CPU: 1 UID: 0 PID: 7402 Comm: syz.3.420 Not tainted syzkaller #0 PREEMPT(full) 
[  209.650307][ T7402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  209.650319][ T7402] Call Trace:
[  209.650327][ T7402]  <TASK>
[  209.650336][ T7402]  dump_stack_lvl+0x189/0x250
[  209.650366][ T7402]  ? __pfx____ratelimit+0x10/0x10
[  209.650394][ T7402]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.650420][ T7402]  ? __pfx__printk+0x10/0x10
[  209.650449][ T7402]  ? __might_fault+0xb0/0x130
[  209.650490][ T7402]  should_fail_ex+0x414/0x560
[  209.650522][ T7402]  _copy_from_user+0x2d/0xb0
[  209.650547][ T7402]  kstrtouint_from_user+0xc4/0x170
[  209.650608][ T7402]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  209.650660][ T7402]  proc_fail_nth_write+0x88/0x200
[  209.650684][ T7402]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  209.650715][ T7402]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  209.650741][ T7402]  vfs_write+0x27b/0xb30
[  209.650780][ T7402]  ? __pfx_vfs_write+0x10/0x10
[  209.650810][ T7402]  ? __fget_files+0x2a/0x420
[  209.650847][ T7402]  ? __fget_files+0x3a0/0x420
[  209.650877][ T7402]  ? __fget_files+0x2a/0x420
[  209.650920][ T7402]  ksys_write+0x145/0x250
[  209.650951][ T7402]  ? __pfx_ksys_write+0x10/0x10
[  209.650986][ T7402]  ? do_syscall_64+0xbe/0x3b0
[  209.651021][ T7402]  do_syscall_64+0xfa/0x3b0
[  209.651049][ T7402]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.651077][ T7402]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.651098][ T7402]  ? clear_bhb_loop+0x60/0xb0
[  209.651125][ T7402]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.651145][ T7402] RIP: 0033:0x7f3f6218d69f
[  209.651164][ T7402] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  209.651181][ T7402] RSP: 002b:00007f3f62fb6030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  209.651203][ T7402] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3f6218d69f
[  209.651217][ T7402] RDX: 0000000000000001 RSI: 00007f3f62fb60a0 RDI: 0000000000000004
[  209.651229][ T7402] RBP: 00007f3f62fb6090 R08: 0000000000000000 R09: 0000000000000000
[  209.651241][ T7402] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  209.651253][ T7402] R13: 00007f3f623b6128 R14: 00007f3f623b6090 R15: 00007ffef96c59b8
[  209.651287][ T7402]  </TASK>
[  210.382413][ T7420] netlink: 'syz.2.424': attribute type 1 has an invalid length.
[  210.403040][ T7420] netlink: 'syz.2.424': attribute type 4 has an invalid length.
[  210.432515][ T7420] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.424'.
[  210.450131][ T7425] netlink: 100 bytes leftover after parsing attributes in process `syz.2.424'.
[  211.076002][ T7444] netlink: 'syz.0.429': attribute type 1 has an invalid length.
[  211.118329][ T7444] netlink: 224 bytes leftover after parsing attributes in process `syz.0.429'.
[  211.184535][ T7447] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  211.210287][ T7447] syzkaller0: entered promiscuous mode
[  211.236905][ T7447] syzkaller0: entered allmulticast mode
[  211.285252][ T7455] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  211.329506][ T7447] tipc: Resetting bearer <eth:syzkaller0>
[  211.406165][ T7445] tipc: Resetting bearer <eth:syzkaller0>
[  211.501515][ T7445] tipc: Disabling bearer <eth:syzkaller0>
[  211.639996][ T7463] netlink: 16 bytes leftover after parsing attributes in process `syz.1.436'.
[  212.070826][ T7492] netlink: 'syz.3.444': attribute type 1 has an invalid length.
[  212.083641][ T7492] netlink: 224 bytes leftover after parsing attributes in process `syz.3.444'.
[  212.439063][ T7508] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  212.887102][ T7528] syzkaller1: entered promiscuous mode
[  212.902896][ T7528] syzkaller1: entered allmulticast mode
[  212.920944][ T7528] netlink: 156 bytes leftover after parsing attributes in process `syz.0.454'.
[  212.940855][ T7528] netlink: 156 bytes leftover after parsing attributes in process `syz.0.454'.
[  213.050604][ T7533] netlink: 'syz.4.456': attribute type 1 has an invalid length.
[  213.061925][ T7533] netlink: 224 bytes leftover after parsing attributes in process `syz.4.456'.
[  213.137170][ T7538] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  213.194476][ T7538] syzkaller0: entered promiscuous mode
[  213.222574][ T7538] syzkaller0: entered allmulticast mode
[  213.251514][ T7542] netlink: 24 bytes leftover after parsing attributes in process `syz.0.458'.
[  213.322215][ T7538] tipc: Resetting bearer <eth:syzkaller0>
[  213.356764][ T7537] tipc: Resetting bearer <eth:syzkaller0>
[  213.404490][ T7537] tipc: Disabling bearer <eth:syzkaller0>
[  213.796103][ T7565] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  213.825942][ T7565] syzkaller0: entered promiscuous mode
[  213.861437][ T7565] syzkaller0: entered allmulticast mode
[  214.222645][ T7581] tipc: Resetting bearer <eth:syzkaller0>
[  214.237100][ T7587] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  214.248728][ T7563] tipc: Resetting bearer <eth:syzkaller0>
[  214.309784][ T7563] tipc: Disabling bearer <eth:syzkaller0>
[  214.730274][ T7614] FAULT_INJECTION: forcing a failure.
[  214.730274][ T7614] name failslab, interval 1, probability 0, space 0, times 0
[  214.799143][ T7614] CPU: 1 UID: 0 PID: 7614 Comm: syz.3.474 Not tainted syzkaller #0 PREEMPT(full) 
[  214.799173][ T7614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  214.799186][ T7614] Call Trace:
[  214.799194][ T7614]  <TASK>
[  214.799203][ T7614]  dump_stack_lvl+0x189/0x250
[  214.799235][ T7614]  ? __pfx____ratelimit+0x10/0x10
[  214.799265][ T7614]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.799290][ T7614]  ? __pfx__printk+0x10/0x10
[  214.799326][ T7614]  ? __pfx___might_resched+0x10/0x10
[  214.799344][ T7614]  ? fs_reclaim_acquire+0x7d/0x100
[  214.799382][ T7614]  should_fail_ex+0x414/0x560
[  214.799415][ T7614]  should_failslab+0xa8/0x100
[  214.799448][ T7614]  __kmalloc_noprof+0xcb/0x4f0
[  214.799475][ T7614]  ? __list_lru_init+0xba/0x5c0
[  214.799501][ T7614]  __list_lru_init+0xba/0x5c0
[  214.799531][ T7614]  alloc_super+0x819/0x970
[  214.799564][ T7614]  sget_fc+0x329/0xa40
[  214.799592][ T7614]  ? __pfx_set_anon_super_fc+0x10/0x10
[  214.799617][ T7614]  ? __pfx_mqueue_fill_super+0x10/0x10
[  214.799647][ T7614]  get_tree_nodev+0x2a/0x150
[  214.799677][ T7614]  vfs_get_tree+0x92/0x2b0
[  214.799709][ T7614]  fc_mount_longterm+0x1c/0x100
[  214.799745][ T7614]  mq_init_ns+0x3a1/0x510
[  214.799776][ T7614]  copy_ipcs+0x2f6/0x4f0
[  214.799810][ T7614]  create_new_namespaces+0x218/0x720
[  214.799849][ T7614]  ? security_capable+0x7e/0x2e0
[  214.799888][ T7614]  unshare_nsproxy_namespaces+0x11c/0x170
[  214.799912][ T7614]  ksys_unshare+0x4c8/0x8c0
[  214.799946][ T7614]  ? __pfx_ksys_unshare+0x10/0x10
[  214.799971][ T7614]  ? __pfx_ksys_write+0x10/0x10
[  214.799997][ T7614]  ? rcu_is_watching+0x15/0xb0
[  214.800029][ T7614]  __x64_sys_unshare+0x38/0x50
[  214.800054][ T7614]  do_syscall_64+0xfa/0x3b0
[  214.800083][ T7614]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.800111][ T7614]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.800132][ T7614]  ? clear_bhb_loop+0x60/0xb0
[  214.800157][ T7614]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.800181][ T7614] RIP: 0033:0x7f3f6218ebe9
[  214.800200][ T7614] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.800217][ T7614] RSP: 002b:00007f3f62fb6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  214.800238][ T7614] RAX: ffffffffffffffda RBX: 00007f3f623b6090 RCX: 00007f3f6218ebe9
[  214.800253][ T7614] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000
[  214.800265][ T7614] RBP: 00007f3f62fb6090 R08: 0000000000000000 R09: 0000000000000000
[  214.800277][ T7614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  214.800288][ T7614] R13: 00007f3f623b6128 R14: 00007f3f623b6090 R15: 00007ffef96c59b8
[  214.800339][ T7614]  </TASK>
[  214.950509][ T7619] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.122031][ T7622] syzkaller0: entered promiscuous mode
[  215.131493][ T7622] syzkaller0: entered allmulticast mode
[  215.191632][ T7619] tipc: Resetting bearer <eth:syzkaller0>
[  215.217419][ T7618] tipc: Resetting bearer <eth:syzkaller0>
[  215.309608][ T7618] tipc: Disabling bearer <eth:syzkaller0>
[  215.576720][ T7640] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.591938][ T7640] syzkaller0: entered promiscuous mode
[  215.633770][ T7640] syzkaller0: entered allmulticast mode
[  215.698880][ T7640] tipc: Resetting bearer <eth:syzkaller0>
[  215.739701][ T7639] tipc: Resetting bearer <eth:syzkaller0>
[  215.833431][ T7639] tipc: Disabling bearer <eth:syzkaller0>
[  215.922685][ T7651] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  215.953257][ T7651] syzkaller0: entered promiscuous mode
[  215.992981][ T7651] syzkaller0: entered allmulticast mode
[  216.028362][ T7663] FAULT_INJECTION: forcing a failure.
[  216.028362][ T7663] name failslab, interval 1, probability 0, space 0, times 0
[  216.096296][ T7651] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  216.103718][ T7663] CPU: 0 UID: 0 PID: 7663 Comm: syz.0.488 Not tainted syzkaller #0 PREEMPT(full) 
[  216.103751][ T7663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  216.103765][ T7663] Call Trace:
[  216.103776][ T7663]  <TASK>
[  216.103788][ T7663]  dump_stack_lvl+0x189/0x250
[  216.103835][ T7663]  ? __pfx____ratelimit+0x10/0x10
[  216.103870][ T7663]  ? __pfx_dump_stack_lvl+0x10/0x10
[  216.103904][ T7663]  ? __pfx__printk+0x10/0x10
[  216.103942][ T7663]  ? __pfx___might_resched+0x10/0x10
[  216.103966][ T7663]  ? fs_reclaim_acquire+0x7d/0x100
[  216.104022][ T7663]  should_fail_ex+0x414/0x560
[  216.104057][ T7663]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[  216.104090][ T7663]  should_failslab+0xa8/0x100
[  216.104126][ T7663]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[  216.104153][ T7663]  kmem_cache_alloc_lru_noprof+0x78/0x3d0
[  216.104181][ T7663]  ? mqueue_alloc_inode+0x28/0x40
[  216.104212][ T7663]  ? __pfx_mqueue_alloc_inode+0x10/0x10
[  216.104238][ T7663]  mqueue_alloc_inode+0x28/0x40
[  216.104264][ T7663]  alloc_inode+0x6a/0x1b0
[  216.104293][ T7663]  ? __pfx_mqueue_fill_super+0x10/0x10
[  216.104321][ T7663]  new_inode+0x22/0x170
[  216.104351][ T7663]  ? sget_fc+0x962/0xa40
[  216.104373][ T7663]  ? __pfx_mqueue_fill_super+0x10/0x10
[  216.104401][ T7663]  mqueue_fill_super+0xdc/0x380
[  216.104427][ T7663]  ? __pfx_mqueue_fill_super+0x10/0x10
[  216.104457][ T7663]  get_tree_nodev+0xbb/0x150
[  216.104487][ T7663]  vfs_get_tree+0x92/0x2b0
[  216.104519][ T7663]  fc_mount_longterm+0x1c/0x100
[  216.104549][ T7663]  mq_init_ns+0x3a1/0x510
[  216.104604][ T7663]  copy_ipcs+0x2f6/0x4f0
[  216.104663][ T7663]  create_new_namespaces+0x218/0x720
[  216.104710][ T7663]  ? security_capable+0x7e/0x2e0
[  216.104756][ T7663]  unshare_nsproxy_namespaces+0x11c/0x170
[  216.104784][ T7663]  ksys_unshare+0x4c8/0x8c0
[  216.104845][ T7663]  ? __pfx_ksys_unshare+0x10/0x10
[  216.104875][ T7663]  ? __pfx_ksys_write+0x10/0x10
[  216.104923][ T7663]  ? rcu_is_watching+0x15/0xb0
[  216.104961][ T7663]  __x64_sys_unshare+0x38/0x50
[  216.104992][ T7663]  do_syscall_64+0xfa/0x3b0
[  216.105027][ T7663]  ? lockdep_hardirqs_on+0x9c/0x150
[  216.105058][ T7663]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.105083][ T7663]  ? clear_bhb_loop+0x60/0xb0
[  216.105113][ T7663]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  216.105137][ T7663] RIP: 0033:0x7ff0f8b8ebe9
[  216.105159][ T7663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  216.105181][ T7663] RSP: 002b:00007ff0f99b1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  216.105205][ T7663] RAX: ffffffffffffffda RBX: 00007ff0f8db6090 RCX: 00007ff0f8b8ebe9
[  216.105223][ T7663] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000006a040000
[  216.105238][ T7663] RBP: 00007ff0f99b1090 R08: 0000000000000000 R09: 0000000000000000
[  216.105252][ T7663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  216.105266][ T7663] R13: 00007ff0f8db6128 R14: 00007ff0f8db6090 R15: 00007ffe1809a238
[  216.105304][ T7663]  </TASK>
[  216.644004][ T7650] tipc: Resetting bearer <eth:syzkaller0>
[  216.752359][ T7650] tipc: Disabling bearer <eth:syzkaller0>
[  216.988426][ T7699] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  217.032887][ T7699] syzkaller0: entered promiscuous mode
[  217.069859][ T7699] syzkaller0: entered allmulticast mode
[  217.132955][ T7699] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  217.274165][ T7698] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  217.319651][ T7699] tipc: Resetting bearer <eth:syzkaller0>
[  217.344074][ T7697] tipc: Resetting bearer <eth:syzkaller0>
[  217.450953][ T7697] tipc: Disabling bearer <eth:syzkaller0>
[  217.721716][ T7729] syzkaller0: entered promiscuous mode
[  217.728086][ T7729] syzkaller0: entered allmulticast mode
[  219.379280][ T7756] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  219.527405][ T7784] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  219.570391][ T7784] syzkaller0: entered promiscuous mode
[  219.614459][ T7784] syzkaller0: entered allmulticast mode
[  219.739465][ T7782] tipc: Resetting bearer <eth:syzkaller0>
[  219.869228][ T7782] tipc: Disabling bearer <eth:syzkaller0>
[  220.053430][ T7813] netlink: 8 bytes leftover after parsing attributes in process `syz.0.523'.
[  220.183969][ T7818] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  220.217329][ T7818] trusted_key: syz.2.522 sent an empty control message without MSG_MORE.
[  220.412452][ T7833] netlink: 20 bytes leftover after parsing attributes in process `syz.3.527'.
[  220.443331][ T7833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.527'.
[  220.929063][ T7844] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  220.948955][ T7843] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  221.099016][ T7848] syzkaller0: entered promiscuous mode
[  221.133144][ T7848] syzkaller0: entered allmulticast mode
[  221.207874][ T7839] tipc: Resetting bearer <eth:syzkaller0>
[  221.343019][ T7839] tipc: Disabling bearer <eth:syzkaller0>
[  221.390656][ T7872] vxcan1: tx address claim with dest, not broadcast
[  221.411793][ T7865] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  221.429727][ T7873] RDS: rds_bind could not find a transport for ::ffff:172.30.1.3, load rds_tcp or rds_rdma?
[  221.449935][ T7865] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  221.473239][ T7865] gretap1: entered promiscuous mode
[  221.485821][ T7865] gretap1: entered allmulticast mode
[  221.494639][ T7864] C: renamed from team_slave_0 (while UP)
[  221.511708][ T7864] netlink: 'syz.0.534': attribute type 1 has an invalid length.
[  221.539848][ T7864] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  222.005975][ T7892] netlink: 'syz.0.543': attribute type 1 has an invalid length.
[  222.040073][ T7892] netlink: 224 bytes leftover after parsing attributes in process `syz.0.543'.
[  222.112530][ T7902] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  222.417047][ T7918] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  222.456895][ T7918] syzkaller0: entered promiscuous mode
[  222.462427][ T7918] syzkaller0: entered allmulticast mode
[  222.554820][ T7925] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  222.710672][ T7914] tipc: Resetting bearer <eth:syzkaller0>
[  222.770112][ T7914] tipc: Disabling bearer <eth:syzkaller0>
[  222.787392][ T7934] netlink: 20 bytes leftover after parsing attributes in process `syz.4.555'.
[  223.574940][ T7966] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  224.007622][ T7988] bridge_slave_0: left allmulticast mode
[  224.013331][ T7988] bridge_slave_0: left promiscuous mode
[  224.026977][ T7988] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.049277][ T7991] netlink: 248 bytes leftover after parsing attributes in process `syz.0.572'.
[  224.101058][ T7988] bridge_slave_1: left allmulticast mode
[  224.133111][ T7988] bridge_slave_1: left promiscuous mode
[  224.182988][ T7988] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.232034][ T7988] bond0: (slave bond_slave_0): Releasing backup interface
[  224.272184][ T7988] bond0: (slave bond_slave_1): Releasing backup interface
[  224.316431][ T7988] team0: Port device team_slave_0 removed
[  224.368048][ T7988] team0: Port device team_slave_1 removed
[  224.385653][ T7988] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  224.421498][ T7988] batman_adv: batadv0: Removing interface: batadv_slave_0
[  224.474086][ T7988] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  224.496874][ T7988] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.568222][ T7988] team0: Port device wlan0 removed
[  224.594739][ T7988] bond1: (slave geneve2): Releasing active interface
[  224.686172][ T8003] syzkaller0: entered promiscuous mode
[  224.694874][ T8003] syzkaller0: entered allmulticast mode
[  224.860142][ T8018] netlink: 12 bytes leftover after parsing attributes in process `syz.2.574'.
[  225.426877][ T8028] syzkaller1: entered promiscuous mode
[  225.463904][ T8028] syzkaller1: entered allmulticast mode
[  225.540179][ T8053] Bluetooth: MGMT ver 1.23
[  225.554596][ T8055] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  225.974573][ T8066] nbd0: detected capacity change from 0 to 549764202496
[  225.998400][ T5898] block nbd0: Receive control failed (result -32)
[  226.001584][ T8075] netlink: 'syz.4.587': attribute type 4 has an invalid length.
[  226.051022][ T8076] netlink: 'syz.0.586': attribute type 24 has an invalid length.
[  226.061106][ T5938] block nbd0: Dead connection, failed to find a fallback
[  226.113546][ T8072] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  226.130999][ T5938] block nbd0: shutting down sockets
[  226.137731][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.198102][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.223509][ T8083] vxcan1: tx address claim with dest, not broadcast
[  226.233177][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.275052][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.324076][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.337559][ T8087] netlink: 'syz.1.589': attribute type 32 has an invalid length.
[  226.369960][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.374718][ T8087] netlink: 8 bytes leftover after parsing attributes in process `syz.1.589'.
[  226.402689][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.438636][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.475875][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.525988][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.534644][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.544230][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.552467][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.580602][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.594002][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.611088][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.621417][ T5938] ldm_validate_partition_table(): Disk read failed.
[  226.628849][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.639098][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.674144][ T5938] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.697012][ T8087] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  226.702405][ T5938] Buffer I/O error on dev nbd0, logical block 0, async page read
[  226.727029][ T5938] Dev nbd0: unable to read RDB block 0
[  226.744967][ T5938]  nbd0: unable to read partition table
[  226.768695][ T5938] ldm_validate_partition_table(): Disk read failed.
[  226.781886][ T5938] Dev nbd0: unable to read RDB block 0
[  226.788867][ T5938]  nbd0: unable to read partition table
[  226.841125][ T5938] ldm_validate_partition_table(): Disk read failed.
[  226.879666][ T5938] Dev nbd0: unable to read RDB block 0
[  226.901127][ T5938]  nbd0: unable to read partition table
[  226.932107][ T5938] ldm_validate_partition_table(): Disk read failed.
[  226.961628][ T5938] Dev nbd0: unable to read RDB block 0
[  226.990689][ T5938]  nbd0: unable to read partition table
[  227.210062][ T8114] netlink: 8 bytes leftover after parsing attributes in process `syz.2.599'.
[  227.340243][ T8117] netlink: 12 bytes leftover after parsing attributes in process `syz.3.600'.
[  227.392108][ T8122] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  228.003074][ T8149] IPVS: Unknown mcast interface: nicvf0
[  228.623155][ T8176] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  228.680111][ T8176] syzkaller0: entered promiscuous mode
[  228.721766][ T8176] syzkaller0: entered allmulticast mode
[  228.808221][ T8176] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  228.916703][ T8176] tipc: Resetting bearer <eth:syzkaller0>
[  228.982543][ T8175] tipc: Resetting bearer <eth:syzkaller0>
[  229.074671][ T8175] tipc: Disabling bearer <eth:syzkaller0>
[  229.205402][ T8204] openvswitch: netlink: EtherType 257 is less than min 600
[  229.479385][ T8215] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  229.778738][ T8227] netlink: 'syz.1.631': attribute type 3 has an invalid length.
[  229.880779][ T8235] netlink: 16 bytes leftover after parsing attributes in process `syz.0.632'.
[  230.833082][ T8277] netem: unknown loss type 0
[  230.838196][ T8277] netem: change failed
[  230.985955][ T8286] netlink: 'syz.0.648': attribute type 4 has an invalid length.
[  231.024837][ T8286] netlink: 'syz.0.648': attribute type 83 has an invalid length.
[  231.451020][ T8302] netlink: 20 bytes leftover after parsing attributes in process `syz.4.651'.
[  231.680706][   T35] tipc: Subscription rejected, illegal request
[  233.063016][ T8315] pimreg: entered allmulticast mode
[  233.625257][ T8362] netlink: 8 bytes leftover after parsing attributes in process `syz.1.665'.
[  233.648270][ T8355] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  233.661525][ T8360] syzkaller0: entered promiscuous mode
[  233.668261][ T8360] syzkaller0: entered allmulticast mode
[  233.718564][ T8362] netlink: 260 bytes leftover after parsing attributes in process `syz.1.665'.
[  233.850497][ T8347] tipc: Resetting bearer <eth:syzkaller0>
[  233.891070][ T8347] tipc: Disabling bearer <eth:syzkaller0>
[  233.929365][ T8369] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  233.960452][ T8369] syzkaller0: entered promiscuous mode
[  233.984740][ T8369] syzkaller0: entered allmulticast mode
[  234.065719][ T8369] tipc: Resetting bearer <eth:syzkaller0>
[  234.123854][ T8368] tipc: Resetting bearer <eth:syzkaller0>
[  234.170348][ T8368] tipc: Disabling bearer <eth:syzkaller0>
[  234.678952][ T8400] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  234.700402][ T8400] syzkaller0: entered promiscuous mode
[  234.733622][ T8400] syzkaller0: entered allmulticast mode
[  234.900203][ T8397] tipc: Resetting bearer <eth:syzkaller0>
[  234.949462][ T8397] tipc: Disabling bearer <eth:syzkaller0>
[  235.097442][ T8416] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  235.168870][ T8409] tipc: Resetting bearer <eth:syzkaller0>
[  235.347455][ T8420] syzkaller0: entered promiscuous mode
[  235.373537][ T8420] syzkaller0: entered allmulticast mode
[  235.411752][ T8437] netlink: 20 bytes leftover after parsing attributes in process `syz.4.692'.
[  235.427434][ T8407] tipc: Resetting bearer <eth:syzkaller0>
[  235.443896][ T8437] netlink: 8 bytes leftover after parsing attributes in process `syz.4.692'.
[  235.472323][ T8407] tipc: Disabling bearer <eth:syzkaller0>
[  235.782737][ T8440] netlink: 8 bytes leftover after parsing attributes in process `syz.4.692'.
[  235.809713][ T8440] netlink: 'syz.4.692': attribute type 21 has an invalid length.
[  235.823978][ T8440] netlink: 4 bytes leftover after parsing attributes in process `syz.4.692'.
[  235.834846][ T8451] netlink: 92 bytes leftover after parsing attributes in process `syz.0.697'.
[  235.904277][ T8451] netlink: 8 bytes leftover after parsing attributes in process `syz.0.697'.
[  235.940854][ T2971] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  235.950068][ T8440] netlink: 8 bytes leftover after parsing attributes in process `syz.4.692'.
[  235.965536][ T2971] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  235.982763][ T8455] netlink: 'syz.1.698': attribute type 4 has an invalid length.
[  236.019253][ T2971] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  236.033634][ T8440] netlink: 'syz.4.692': attribute type 21 has an invalid length.
[  236.060619][ T2971] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  236.227998][ T8461] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  236.254835][ T8461] syzkaller0: entered promiscuous mode
[  236.275990][ T8461] syzkaller0: entered allmulticast mode
[  236.309475][ T8460] tipc: Resetting bearer <eth:syzkaller0>
[  236.415903][ T8460] tipc: Disabling bearer <eth:syzkaller0>
[  236.666004][ T8480] netlink: 'syz.1.707': attribute type 32 has an invalid length.
[  236.722437][ T8480] __nla_validate_parse: 2 callbacks suppressed
[  236.722457][ T8480] netlink: 8 bytes leftover after parsing attributes in process `syz.1.707'.
[  236.784567][ T8480] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  237.128664][ T8504] netlink: 16 bytes leftover after parsing attributes in process `syz.1.718'.
[  237.147060][ T8506] FAULT_INJECTION: forcing a failure.
[  237.147060][ T8506] name failslab, interval 1, probability 0, space 0, times 0
[  237.173489][ T8507] netlink: 76 bytes leftover after parsing attributes in process `syz.1.718'.
[  237.190834][ T8506] CPU: 0 UID: 0 PID: 8506 Comm: syz.3.719 Not tainted syzkaller #0 PREEMPT(full) 
[  237.190864][ T8506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  237.190876][ T8506] Call Trace:
[  237.190885][ T8506]  <TASK>
[  237.190894][ T8506]  dump_stack_lvl+0x189/0x250
[  237.190926][ T8506]  ? __pfx____ratelimit+0x10/0x10
[  237.190956][ T8506]  ? __pfx_dump_stack_lvl+0x10/0x10
[  237.190981][ T8506]  ? __pfx__printk+0x10/0x10
[  237.191018][ T8506]  ? __pfx___might_resched+0x10/0x10
[  237.191045][ T8506]  should_fail_ex+0x414/0x560
[  237.191079][ T8506]  should_failslab+0xa8/0x100
[  237.191113][ T8506]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  237.191144][ T8506]  ? __alloc_skb+0x112/0x2d0
[  237.191181][ T8506]  __alloc_skb+0x112/0x2d0
[  237.191217][ T8506]  netlink_sendmsg+0x5c6/0xb30
[  237.191260][ T8506]  ? __pfx_netlink_sendmsg+0x10/0x10
[  237.191296][ T8506]  ? aa_sock_msg_perm+0xf1/0x1d0
[  237.191331][ T8506]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  237.191354][ T8506]  ? __pfx_netlink_sendmsg+0x10/0x10
[  237.191386][ T8506]  __sock_sendmsg+0x21c/0x270
[  237.191417][ T8506]  ____sys_sendmsg+0x505/0x830
[  237.191445][ T8506]  ? __pfx_____sys_sendmsg+0x10/0x10
[  237.191485][ T8506]  ? import_iovec+0x74/0xa0
[  237.191519][ T8506]  ___sys_sendmsg+0x21f/0x2a0
[  237.191543][ T8506]  ? __pfx____sys_sendmsg+0x10/0x10
[  237.191604][ T8506]  ? __fget_files+0x2a/0x420
[  237.191635][ T8506]  ? __fget_files+0x3a0/0x420
[  237.191678][ T8506]  __x64_sys_sendmsg+0x19b/0x260
[  237.191702][ T8506]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  237.191735][ T8506]  ? __pfx_ksys_write+0x10/0x10
[  237.191761][ T8506]  ? rcu_is_watching+0x15/0xb0
[  237.191792][ T8506]  ? do_syscall_64+0xbe/0x3b0
[  237.191827][ T8506]  do_syscall_64+0xfa/0x3b0
[  237.191857][ T8506]  ? lockdep_hardirqs_on+0x9c/0x150
[  237.191885][ T8506]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.191907][ T8506]  ? clear_bhb_loop+0x60/0xb0
[  237.191933][ T8506]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  237.191954][ T8506] RIP: 0033:0x7f3f6218ebe9
[  237.191973][ T8506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  237.191989][ T8506] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  237.192011][ T8506] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  237.192026][ T8506] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000003
[  237.192039][ T8506] RBP: 00007f3f62fd7090 R08: 0000000000000000 R09: 0000000000000000
[  237.192050][ T8506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  237.192061][ T8506] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  237.192094][ T8506]  </TASK>
[  237.797302][ T8522] smc: net device bond0 applied user defined pnetid SYZ2
[  237.870968][ T8525] netlink: 24 bytes leftover after parsing attributes in process `syz.2.725'.
[  238.056287][ T8525] netlink: 60 bytes leftover after parsing attributes in process `syz.2.725'.
[  238.912489][ T8574] netlink: 'syz.1.742': attribute type 21 has an invalid length.
[  238.929932][ T8581] netlink: 'syz.0.744': attribute type 32 has an invalid length.
[  238.938273][ T8581] netlink: 8 bytes leftover after parsing attributes in process `syz.0.744'.
[  238.947885][ T8574] netlink: 152 bytes leftover after parsing attributes in process `syz.1.742'.
[  238.963957][ T8581] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  238.998951][ T8574] netlink: 'syz.1.742': attribute type 11 has an invalid length.
[  239.040531][ T8574] netlink: 'syz.1.742': attribute type 11 has an invalid length.
[  239.049278][ T8574] netlink: 224 bytes leftover after parsing attributes in process `syz.1.742'.
[  239.072146][ T8588] syzkaller0: entered promiscuous mode
[  239.112140][ T8588] syzkaller0: entered allmulticast mode
[  239.147450][ T8593] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  239.375272][ T8597] netlink: 4 bytes leftover after parsing attributes in process `syz.4.751'.
[  240.158448][ T8636] netlink: 'syz.0.765': attribute type 3 has an invalid length.
[  241.791941][ T8712] FAULT_INJECTION: forcing a failure.
[  241.791941][ T8712] name failslab, interval 1, probability 0, space 0, times 0
[  241.805954][ T8712] CPU: 1 UID: 0 PID: 8712 Comm: syz.3.789 Not tainted syzkaller #0 PREEMPT(full) 
[  241.805981][ T8712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  241.805995][ T8712] Call Trace:
[  241.806003][ T8712]  <TASK>
[  241.806012][ T8712]  dump_stack_lvl+0x189/0x250
[  241.806044][ T8712]  ? __pfx____ratelimit+0x10/0x10
[  241.806074][ T8712]  ? __pfx_dump_stack_lvl+0x10/0x10
[  241.806099][ T8712]  ? __pfx__printk+0x10/0x10
[  241.806125][ T8712]  ? trace_contention_end+0x39/0x120
[  241.806149][ T8712]  ? __mutex_lock+0x335/0x1360
[  241.806182][ T8712]  ? __netlink_lookup+0xbd/0x810
[  241.806222][ T8712]  should_fail_ex+0x414/0x560
[  241.806255][ T8712]  should_failslab+0xa8/0x100
[  241.806288][ T8712]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  241.806319][ T8712]  ? nf_tables_dump_sets_start+0x49/0x90
[  241.806354][ T8712]  kmemdup_noprof+0x2b/0x70
[  241.806379][ T8712]  nf_tables_dump_sets_start+0x49/0x90
[  241.806411][ T8712]  __netlink_dump_start+0x466/0x7e0
[  241.806447][ T8712]  ? nft_netlink_dump_start_rcu+0xb6/0x1a0
[  241.806473][ T8712]  nft_netlink_dump_start_rcu+0xdb/0x1a0
[  241.806503][ T8712]  nf_tables_getset+0x599/0xa90
[  241.806540][ T8712]  ? __pfx_nf_tables_getset+0x10/0x10
[  241.806568][ T8712]  ? nfnl_pernet+0x23/0x240
[  241.806593][ T8712]  ? __pfx_nf_tables_dump_sets_start+0x10/0x10
[  241.806620][ T8712]  ? __pfx_nf_tables_dump_sets+0x10/0x10
[  241.806646][ T8712]  ? __pfx_nf_tables_dump_sets_done+0x10/0x10
[  241.806691][ T8712]  ? __nla_parse+0x40/0x60
[  241.806722][ T8712]  ? __pfx_nf_tables_getset+0x10/0x10
[  241.806746][ T8712]  nfnetlink_rcv_msg+0x80e/0x1130
[  241.806774][ T8712]  ? nfnetlink_rcv_msg+0x20d/0x1130
[  241.806822][ T8712]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  241.806846][ T8712]  ? kasan_save_free_info+0x46/0x50
[  241.806928][ T8712]  netlink_rcv_skb+0x208/0x470
[  241.806961][ T8712]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  241.806990][ T8712]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  241.807035][ T8712]  ? bpf_lsm_capable+0x9/0x20
[  241.807063][ T8712]  ? security_capable+0x7e/0x2e0
[  241.807103][ T8712]  nfnetlink_rcv+0x26a/0x2520
[  241.807134][ T8712]  ? __dev_queue_xmit+0x1d79/0x3b50
[  241.807171][ T8712]  ? __dev_queue_xmit+0x27b/0x3b50
[  241.807210][ T8712]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  241.807236][ T8712]  ? __pfx___dev_queue_xmit+0x10/0x10
[  241.807278][ T8712]  ? ref_tracker_free+0x63a/0x7d0
[  241.807309][ T8712]  ? __asan_memcpy+0x40/0x70
[  241.807333][ T8712]  ? __pfx_ref_tracker_free+0x10/0x10
[  241.807383][ T8712]  ? skb_clone+0x246/0x3a0
[  241.807410][ T8712]  ? __netlink_deliver_tap+0x807/0x850
[  241.807441][ T8712]  ? netlink_deliver_tap+0x2e/0x1b0
[  241.807480][ T8712]  ? netlink_deliver_tap+0x2e/0x1b0
[  241.807521][ T8712]  netlink_unicast+0x82c/0x9e0
[  241.807559][ T8712]  ? __pfx_netlink_unicast+0x10/0x10
[  241.807589][ T8712]  ? netlink_sendmsg+0x642/0xb30
[  241.807618][ T8712]  ? skb_put+0x11b/0x210
[  241.807662][ T8712]  netlink_sendmsg+0x805/0xb30
[  241.807705][ T8712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.807738][ T8712]  ? aa_sock_msg_perm+0xf1/0x1d0
[  241.807775][ T8712]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  241.807797][ T8712]  ? __pfx_netlink_sendmsg+0x10/0x10
[  241.807830][ T8712]  __sock_sendmsg+0x21c/0x270
[  241.807856][ T8712]  ____sys_sendmsg+0x505/0x830
[  241.807879][ T8712]  ? __pfx_____sys_sendmsg+0x10/0x10
[  241.807905][ T8712]  ? import_iovec+0x74/0xa0
[  241.807929][ T8712]  ___sys_sendmsg+0x21f/0x2a0
[  241.807949][ T8712]  ? __pfx____sys_sendmsg+0x10/0x10
[  241.807999][ T8712]  ? __fget_files+0x2a/0x420
[  241.808025][ T8712]  ? __fget_files+0x3a0/0x420
[  241.808062][ T8712]  __x64_sys_sendmsg+0x19b/0x260
[  241.808081][ T8712]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  241.808108][ T8712]  ? __pfx_ksys_write+0x10/0x10
[  241.808130][ T8712]  ? rcu_is_watching+0x15/0xb0
[  241.808151][ T8712]  ? do_syscall_64+0xbe/0x3b0
[  241.808181][ T8712]  do_syscall_64+0xfa/0x3b0
[  241.808205][ T8712]  ? lockdep_hardirqs_on+0x9c/0x150
[  241.808229][ T8712]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.808246][ T8712]  ? clear_bhb_loop+0x60/0xb0
[  241.808267][ T8712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  241.808284][ T8712] RIP: 0033:0x7f3f6218ebe9
[  241.808300][ T8712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  241.808318][ T8712] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  241.808338][ T8712] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  241.808351][ T8712] RDX: 0000000000000094 RSI: 00002000000000c0 RDI: 0000000000000003
[  241.808362][ T8712] RBP: 00007f3f62fd7090 R08: 0000000000000000 R09: 0000000000000000
[  241.808373][ T8712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.808383][ T8712] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  241.808411][ T8712]  </TASK>
[  242.386650][ T8715] netlink: 224 bytes leftover after parsing attributes in process `syz.3.790'.
[  242.453196][ T8717] netlink: 16 bytes leftover after parsing attributes in process `syz.3.791'.
[  242.571750][ T8717] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.592412][ T8717] bond0: (slave rose0): Enslaving as an active interface with an up link
[  242.987684][ T8746] netlink: 8 bytes leftover after parsing attributes in process `syz.0.802'.
[  243.010464][ T8743] netlink: 224 bytes leftover after parsing attributes in process `syz.1.801'.
[  243.590957][ T8769] netlink: 'syz.3.810': attribute type 11 has an invalid length.
[  243.620211][ T8769] netlink: 224 bytes leftover after parsing attributes in process `syz.3.810'.
[  243.639867][ T8775] netlink: 'syz.3.810': attribute type 11 has an invalid length.
[  243.650173][ T8775] netlink: 224 bytes leftover after parsing attributes in process `syz.3.810'.
[  243.650389][ T8774] FAULT_INJECTION: forcing a failure.
[  243.650389][ T8774] name failslab, interval 1, probability 0, space 0, times 0
[  243.665269][ T8772] FAULT_INJECTION: forcing a failure.
[  243.665269][ T8772] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.719058][ T8772] CPU: 1 UID: 0 PID: 8772 Comm: syz.4.808 Not tainted syzkaller #0 PREEMPT(full) 
[  243.719087][ T8772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  243.719101][ T8772] Call Trace:
[  243.719109][ T8772]  <TASK>
[  243.719118][ T8772]  dump_stack_lvl+0x189/0x250
[  243.719150][ T8772]  ? __pfx____ratelimit+0x10/0x10
[  243.719179][ T8772]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.719205][ T8772]  ? __pfx__printk+0x10/0x10
[  243.719235][ T8772]  ? __might_fault+0xb0/0x130
[  243.719278][ T8772]  should_fail_ex+0x414/0x560
[  243.719312][ T8772]  _copy_from_iter+0x3f5/0x16f0
[  243.719338][ T8772]  ? rcu_is_watching+0x15/0xb0
[  243.719366][ T8772]  ? __pfx__copy_from_iter+0x10/0x10
[  243.719389][ T8772]  ? __build_skb_around+0x257/0x3e0
[  243.719426][ T8772]  ? netlink_sendmsg+0x642/0xb30
[  243.719475][ T8772]  ? skb_put+0x11b/0x210
[  243.719511][ T8772]  netlink_sendmsg+0x6b2/0xb30
[  243.719551][ T8772]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.719585][ T8772]  ? aa_sock_msg_perm+0xf1/0x1d0
[  243.719619][ T8772]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  243.719641][ T8772]  ? __pfx_netlink_sendmsg+0x10/0x10
[  243.719672][ T8772]  __sock_sendmsg+0x21c/0x270
[  243.719702][ T8772]  ____sys_sendmsg+0x505/0x830
[  243.719730][ T8772]  ? __pfx_____sys_sendmsg+0x10/0x10
[  243.719762][ T8772]  ? import_iovec+0x74/0xa0
[  243.719789][ T8772]  ___sys_sendmsg+0x21f/0x2a0
[  243.719812][ T8772]  ? __pfx____sys_sendmsg+0x10/0x10
[  243.719873][ T8772]  ? __fget_files+0x2a/0x420
[  243.719904][ T8772]  ? __fget_files+0x3a0/0x420
[  243.719946][ T8772]  __x64_sys_sendmsg+0x19b/0x260
[  243.719970][ T8772]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  243.720002][ T8772]  ? __pfx_ksys_write+0x10/0x10
[  243.720026][ T8772]  ? rcu_is_watching+0x15/0xb0
[  243.720053][ T8772]  ? do_syscall_64+0xbe/0x3b0
[  243.720091][ T8772]  do_syscall_64+0xfa/0x3b0
[  243.720119][ T8772]  ? lockdep_hardirqs_on+0x9c/0x150
[  243.720146][ T8772]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.720166][ T8772]  ? clear_bhb_loop+0x60/0xb0
[  243.720191][ T8772]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.720211][ T8772] RIP: 0033:0x7f9cd218ebe9
[  243.720229][ T8772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.720246][ T8772] RSP: 002b:00007f9cd3070038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.720268][ T8772] RAX: ffffffffffffffda RBX: 00007f9cd23b5fa0 RCX: 00007f9cd218ebe9
[  243.720283][ T8772] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[  243.720296][ T8772] RBP: 00007f9cd3070090 R08: 0000000000000000 R09: 0000000000000000
[  243.720308][ T8772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.720320][ T8772] R13: 00007f9cd23b6038 R14: 00007f9cd23b5fa0 R15: 00007ffe5a71c438
[  243.720352][ T8772]  </TASK>
[  243.725115][ T8774] CPU: 0 UID: 0 PID: 8774 Comm: syz.1.809 Not tainted syzkaller #0 PREEMPT(full) 
[  243.725150][ T8774] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  243.725166][ T8774] Call Trace:
[  243.725175][ T8774]  <TASK>
[  243.725186][ T8774]  dump_stack_lvl+0x189/0x250
[  243.725221][ T8774]  ? __pfx____ratelimit+0x10/0x10
[  243.725256][ T8774]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.725284][ T8774]  ? __pfx__printk+0x10/0x10
[  243.725321][ T8774]  ? __pfx___might_resched+0x10/0x10
[  243.725344][ T8774]  ? fs_reclaim_acquire+0x7d/0x100
[  243.725387][ T8774]  should_fail_ex+0x414/0x560
[  243.725424][ T8774]  should_failslab+0xa8/0x100
[  243.725478][ T8774]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  243.725513][ T8774]  ? __alloc_skb+0x112/0x2d0
[  243.725556][ T8774]  __alloc_skb+0x112/0x2d0
[  243.725597][ T8774]  alloc_skb_with_frags+0xca/0x890
[  243.725621][ T8774]  ? __might_fault+0xb0/0x130
[  243.725671][ T8774]  sock_alloc_send_pskb+0x857/0x990
[  243.725731][ T8774]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  243.725766][ T8774]  ? packet_cached_dev_get+0x1c/0x2b0
[  243.725799][ T8774]  ? packet_cached_dev_get+0x1c/0x2b0
[  243.725839][ T8774]  packet_sendmsg+0x33a0/0x5080
[  243.725880][ T8774]  ? audit_net_cb+0x4f0/0x970
[  243.725940][ T8774]  ? __pfx___might_resched+0x10/0x10
[  243.725961][ T8774]  ? __lock_acquire+0xab9/0xd20
[  243.726029][ T8774]  ? __pfx_packet_sendmsg+0x10/0x10
[  243.726053][ T8774]  ? aa_sk_perm+0x81e/0x950
[  243.726096][ T8774]  ? tomoyo_socket_sendmsg_permission+0x1e1/0x300
[  243.726128][ T8774]  ? aa_sock_msg_perm+0xf1/0x1d0
[  243.726167][ T8774]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  243.726193][ T8774]  ? __pfx_packet_sendmsg+0x10/0x10
[  243.726220][ T8774]  __sock_sendmsg+0x21c/0x270
[  243.726255][ T8774]  ____sys_sendmsg+0x505/0x830
[  243.726286][ T8774]  ? __pfx_____sys_sendmsg+0x10/0x10
[  243.726322][ T8774]  ? import_iovec+0x74/0xa0
[  243.726354][ T8774]  ___sys_sendmsg+0x21f/0x2a0
[  243.726381][ T8774]  ? __pfx____sys_sendmsg+0x10/0x10
[  243.726448][ T8774]  ? __fget_files+0x2a/0x420
[  243.726501][ T8774]  ? __fget_files+0x3a0/0x420
[  243.726554][ T8774]  __x64_sys_sendmsg+0x19b/0x260
[  243.726584][ T8774]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  243.726622][ T8774]  ? __pfx_ksys_write+0x10/0x10
[  243.726653][ T8774]  ? rcu_is_watching+0x15/0xb0
[  243.726683][ T8774]  ? do_syscall_64+0xbe/0x3b0
[  243.726730][ T8774]  do_syscall_64+0xfa/0x3b0
[  243.726763][ T8774]  ? lockdep_hardirqs_on+0x9c/0x150
[  243.726797][ T8774]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.726821][ T8774]  ? clear_bhb_loop+0x60/0xb0
[  243.726851][ T8774]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.726876][ T8774] RIP: 0033:0x7fdbb7f8ebe9
[  243.726897][ T8774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.726918][ T8774] RSP: 002b:00007fdbb8d99038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.726949][ T8774] RAX: ffffffffffffffda RBX: 00007fdbb81b5fa0 RCX: 00007fdbb7f8ebe9
[  243.726968][ T8774] RDX: 0000000000000010 RSI: 0000200000002ac0 RDI: 0000000000000003
[  243.726983][ T8774] RBP: 00007fdbb8d99090 R08: 0000000000000000 R09: 0000000000000000
[  243.726998][ T8774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.727013][ T8774] R13: 00007fdbb81b6038 R14: 00007fdbb81b5fa0 R15: 00007ffe7454d748
[  243.727052][ T8774]  </TASK>
[  244.981476][ T8796] netlink: 224 bytes leftover after parsing attributes in process `syz.2.816'.
[  245.662276][ T8839] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  245.870997][ T8850] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  245.915350][ T8846] syzkaller0: entered promiscuous mode
[  245.920886][ T8846] syzkaller0: entered allmulticast mode
[  246.048106][ T8846] tipc: Resetting bearer <eth:syzkaller0>
[  246.139328][ T8844] tipc: Resetting bearer <eth:syzkaller0>
[  246.176496][ T8865] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  246.218046][ T8844] tipc: Disabling bearer <eth:syzkaller0>
[  246.291722][ T8870] netlink: 'syz.1.831': attribute type 1 has an invalid length.
[  246.313880][ T8870] netlink: 224 bytes leftover after parsing attributes in process `syz.1.831'.
[  246.615900][ T8863] syzkaller0: entered promiscuous mode
[  246.634277][ T8863] syzkaller0: entered allmulticast mode
[  248.198323][ T8891] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  248.207176][ T8900] syzkaller0: entered promiscuous mode
[  248.212693][ T8900] syzkaller0: entered allmulticast mode
[  248.240103][ T8915] tipc: Resetting bearer <eth:syzkaller0>
[  248.271504][ T8925] FAULT_INJECTION: forcing a failure.
[  248.271504][ T8925] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  248.306321][ T8925] CPU: 0 UID: 0 PID: 8925 Comm: syz.3.844 Not tainted syzkaller #0 PREEMPT(full) 
[  248.306350][ T8925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  248.306363][ T8925] Call Trace:
[  248.306371][ T8925]  <TASK>
[  248.306380][ T8925]  dump_stack_lvl+0x189/0x250
[  248.306412][ T8925]  ? __pfx____ratelimit+0x10/0x10
[  248.306442][ T8925]  ? __pfx_dump_stack_lvl+0x10/0x10
[  248.306468][ T8925]  ? __pfx__printk+0x10/0x10
[  248.306498][ T8925]  ? __might_fault+0xb0/0x130
[  248.306541][ T8925]  should_fail_ex+0x414/0x560
[  248.306575][ T8925]  _copy_from_user+0x2d/0xb0
[  248.306601][ T8925]  __sys_sendto+0x25c/0x520
[  248.306638][ T8925]  ? __pfx___sys_sendto+0x10/0x10
[  248.306667][ T8925]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  248.306712][ T8925]  ? __fget_files+0x3a0/0x420
[  248.306758][ T8925]  ? ksys_write+0x22a/0x250
[  248.306790][ T8925]  ? __pfx_ksys_write+0x10/0x10
[  248.306815][ T8925]  ? rcu_is_watching+0x15/0xb0
[  248.306843][ T8925]  __x64_sys_sendto+0xde/0x100
[  248.306879][ T8925]  do_syscall_64+0xfa/0x3b0
[  248.306908][ T8925]  ? lockdep_hardirqs_on+0x9c/0x150
[  248.306937][ T8925]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.306958][ T8925]  ? clear_bhb_loop+0x60/0xb0
[  248.306985][ T8925]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  248.307006][ T8925] RIP: 0033:0x7f3f6218ebe9
[  248.307025][ T8925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  248.307043][ T8925] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  248.307065][ T8925] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  248.307082][ T8925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  248.307094][ T8925] RBP: 00007f3f62fd7090 R08: 0000200000000200 R09: 0000000000000014
[  248.307108][ T8925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  248.307121][ T8925] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  248.307156][ T8925]  </TASK>
[  248.312809][ T8889] tipc: Resetting bearer <eth:syzkaller0>
[  248.502756][ T8928] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  248.589168][ T8889] tipc: Disabling bearer <eth:syzkaller0>
[  248.609267][ T8931] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  248.744637][ T8933] netlink: 'syz.3.847': attribute type 1 has an invalid length.
[  248.753365][ T8933] netlink: 224 bytes leftover after parsing attributes in process `syz.3.847'.
[  248.772165][ T8936] netlink: 'syz.2.848': attribute type 4 has an invalid length.
[  248.809091][ T8938] netlink: 'syz.2.848': attribute type 4 has an invalid length.
[  249.557958][ T8975] netlink: 'syz.0.862': attribute type 4 has an invalid length.
[  249.582637][ T8974] netlink: 4 bytes leftover after parsing attributes in process `syz.1.863'.
[  249.618545][ T8974] netlink: 12 bytes leftover after parsing attributes in process `syz.1.863'.
[  249.886453][ T8988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.866'.
[  249.927945][ T8986] netlink: 4 bytes leftover after parsing attributes in process `syz.3.866'.
[  249.955700][ T8991] syzkaller0: entered promiscuous mode
[  249.972529][ T8991] syzkaller0: entered allmulticast mode
[  249.990608][ T8986] netlink: 40 bytes leftover after parsing attributes in process `syz.3.866'.
[  250.113365][ T8999] netlink: 18 bytes leftover after parsing attributes in process `syz.1.871'.
[  250.227030][ T8999] netlink: 20 bytes leftover after parsing attributes in process `syz.1.871'.
[  250.658110][ T9019] team0: Device vti0 is of different type
[  250.756734][ T9024] syzkaller0: entered promiscuous mode
[  250.762263][ T9024] syzkaller0: entered allmulticast mode
[  251.122488][ T9036] syzkaller0: entered promiscuous mode
[  251.138677][ T9036] syzkaller0: entered allmulticast mode
[  251.185965][ T9042] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  251.432130][ T9051] FAULT_INJECTION: forcing a failure.
[  251.432130][ T9051] name failslab, interval 1, probability 0, space 0, times 0
[  251.507377][ T9051] CPU: 0 UID: 0 PID: 9051 Comm: syz.0.892 Not tainted syzkaller #0 PREEMPT(full) 
[  251.507407][ T9051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  251.507420][ T9051] Call Trace:
[  251.507428][ T9051]  <TASK>
[  251.507437][ T9051]  dump_stack_lvl+0x189/0x250
[  251.507467][ T9051]  ? __pfx____ratelimit+0x10/0x10
[  251.507498][ T9051]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.507523][ T9051]  ? __pfx__printk+0x10/0x10
[  251.507558][ T9051]  ? __pfx___might_resched+0x10/0x10
[  251.507579][ T9051]  ? fs_reclaim_acquire+0x7d/0x100
[  251.507617][ T9051]  should_fail_ex+0x414/0x560
[  251.507666][ T9051]  should_failslab+0xa8/0x100
[  251.507699][ T9051]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  251.507729][ T9051]  ? __alloc_skb+0x112/0x2d0
[  251.507765][ T9051]  __alloc_skb+0x112/0x2d0
[  251.507816][ T9051]  netlink_ack+0x146/0xa50
[  251.507873][ T9051]  netlink_rcv_skb+0x28c/0x470
[  251.507905][ T9051]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[  251.507935][ T9051]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  251.507974][ T9051]  ? bpf_lsm_capable+0x9/0x20
[  251.507998][ T9051]  ? security_capable+0x7e/0x2e0
[  251.508028][ T9051]  nfnetlink_rcv+0x26a/0x2520
[  251.508053][ T9051]  ? __dev_queue_xmit+0x1d79/0x3b50
[  251.508082][ T9051]  ? __dev_queue_xmit+0x27b/0x3b50
[  251.508110][ T9051]  ? __pfx_nfnetlink_rcv+0x10/0x10
[  251.508132][ T9051]  ? __pfx___dev_queue_xmit+0x10/0x10
[  251.508165][ T9051]  ? ref_tracker_free+0x63a/0x7d0
[  251.508191][ T9051]  ? __asan_memcpy+0x40/0x70
[  251.508211][ T9051]  ? __pfx_ref_tracker_free+0x10/0x10
[  251.508247][ T9051]  ? skb_clone+0x246/0x3a0
[  251.508268][ T9051]  ? __netlink_deliver_tap+0x807/0x850
[  251.508292][ T9051]  ? netlink_deliver_tap+0x2e/0x1b0
[  251.508322][ T9051]  ? netlink_deliver_tap+0x2e/0x1b0
[  251.508362][ T9051]  netlink_unicast+0x82c/0x9e0
[  251.508393][ T9051]  ? __pfx_netlink_unicast+0x10/0x10
[  251.508417][ T9051]  ? netlink_sendmsg+0x642/0xb30
[  251.508440][ T9051]  ? skb_put+0x11b/0x210
[  251.508470][ T9051]  netlink_sendmsg+0x805/0xb30
[  251.508506][ T9051]  ? __pfx_netlink_sendmsg+0x10/0x10
[  251.508536][ T9051]  ? aa_sock_msg_perm+0xf1/0x1d0
[  251.508568][ T9051]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  251.508586][ T9051]  ? __pfx_netlink_sendmsg+0x10/0x10
[  251.508611][ T9051]  __sock_sendmsg+0x21c/0x270
[  251.508636][ T9051]  ____sys_sendmsg+0x505/0x830
[  251.508659][ T9051]  ? __pfx_____sys_sendmsg+0x10/0x10
[  251.508688][ T9051]  ? import_iovec+0x74/0xa0
[  251.508714][ T9051]  ___sys_sendmsg+0x21f/0x2a0
[  251.508735][ T9051]  ? __pfx____sys_sendmsg+0x10/0x10
[  251.508796][ T9051]  ? __fget_files+0x2a/0x420
[  251.508835][ T9051]  ? __fget_files+0x3a0/0x420
[  251.508879][ T9051]  __x64_sys_sendmsg+0x19b/0x260
[  251.508903][ T9051]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  251.508934][ T9051]  ? __pfx_ksys_write+0x10/0x10
[  251.508961][ T9051]  ? rcu_is_watching+0x15/0xb0
[  251.508988][ T9051]  ? do_syscall_64+0xbe/0x3b0
[  251.509023][ T9051]  do_syscall_64+0xfa/0x3b0
[  251.509052][ T9051]  ? lockdep_hardirqs_on+0x9c/0x150
[  251.509080][ T9051]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.509101][ T9051]  ? clear_bhb_loop+0x60/0xb0
[  251.509127][ T9051]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.509147][ T9051] RIP: 0033:0x7ff0f8b8ebe9
[  251.509166][ T9051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.509184][ T9051] RSP: 002b:00007ff0f99d2038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  251.509207][ T9051] RAX: ffffffffffffffda RBX: 00007ff0f8db5fa0 RCX: 00007ff0f8b8ebe9
[  251.509223][ T9051] RDX: 0000000004004000 RSI: 00002000000003c0 RDI: 0000000000000003
[  251.509236][ T9051] RBP: 00007ff0f99d2090 R08: 0000000000000000 R09: 0000000000000000
[  251.509248][ T9051] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  251.509260][ T9051] R13: 00007ff0f8db6038 R14: 00007ff0f8db5fa0 R15: 00007ffe1809a238
[  251.509293][ T9051]  </TASK>
[  252.137408][ T9065] syzkaller0: entered promiscuous mode
[  252.173820][ T9065] syzkaller0: entered allmulticast mode
[  252.222039][ T9067] netlink: 'syz.4.899': attribute type 5 has an invalid length.
[  252.290111][ T9077] netlink: 'syz.3.902': attribute type 32 has an invalid length.
[  252.353291][ T9077] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  252.655091][ T9082] syzkaller0: entered promiscuous mode
[  252.660628][ T9082] syzkaller0: entered allmulticast mode
[  253.415456][ T9114] netlink: 'syz.1.917': attribute type 1 has an invalid length.
[  253.496956][ T9119] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  254.043023][ T9146] __nla_validate_parse: 8 callbacks suppressed
[  254.043044][ T9146] netlink: 116 bytes leftover after parsing attributes in process `syz.1.928'.
[  254.182773][ T9154] netlink: 'syz.0.930': attribute type 1 has an invalid length.
[  254.192527][ T9154] netlink: 224 bytes leftover after parsing attributes in process `syz.0.930'.
[  254.462697][ T9169] vxcan1: tx address claim with dest, not broadcast
[  254.489761][ T9167] syzkaller0: entered promiscuous mode
[  254.504235][ T9167] syzkaller0: entered allmulticast mode
[  254.859681][ T9184] netlink: 116 bytes leftover after parsing attributes in process `syz.2.942'.
[  255.047661][ T9195] netlink: 'syz.4.945': attribute type 1 has an invalid length.
[  255.070767][ T9195] netlink: 224 bytes leftover after parsing attributes in process `syz.4.945'.
[  255.350696][ T9206] syzkaller0: entered promiscuous mode
[  255.362348][ T9206] syzkaller0: entered allmulticast mode
[  255.563250][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.953'.
[  255.694304][ T9221] netlink: 116 bytes leftover after parsing attributes in process `syz.0.956'.
[  255.933113][ T9231] netlink: 'syz.1.959': attribute type 1 has an invalid length.
[  255.945687][ T9231] netlink: 224 bytes leftover after parsing attributes in process `syz.1.959'.
[  255.973090][ T9238] netlink: 12 bytes leftover after parsing attributes in process `syz.3.961'.
[  256.238207][ T9238] 8021q: adding VLAN 0 to HW filter on device bond4
[  256.369854][ T9230] 8021q: adding VLAN 0 to HW filter on device bond4
[  256.404781][ T9230] bond4: (slave vxcan3): The slave device specified does not support setting the MAC address
[  256.432540][ T9230] bond4: (slave vxcan3): Error -95 calling set_mac_address
[  256.487838][ T9260] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  256.499603][ T9260] netlink: 72 bytes leftover after parsing attributes in process `syz.1.967'.
[  256.626200][ T9263] syzkaller0: entered promiscuous mode
[  256.646590][ T9263] syzkaller0: entered allmulticast mode
[  256.794789][ T9273] netlink: 4 bytes leftover after parsing attributes in process `syz.1.970'.
[  256.991233][ T9278] netlink: 'syz.0.972': attribute type 1 has an invalid length.
[  257.022161][ T9281] netlink: 'syz.4.973': attribute type 1 has an invalid length.
[  257.339475][ T9296] netlink: 'syz.4.979': attribute type 32 has an invalid length.
[  257.378383][ T9296] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  257.440151][ T9295] syzkaller0: entered promiscuous mode
[  257.446225][ T9295] syzkaller0: entered allmulticast mode
[  257.578950][ T9308] FAULT_INJECTION: forcing a failure.
[  257.578950][ T9308] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  257.599554][ T9308] CPU: 0 UID: 0 PID: 9308 Comm: syz.4.983 Not tainted syzkaller #0 PREEMPT(full) 
[  257.599584][ T9308] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  257.599597][ T9308] Call Trace:
[  257.599605][ T9308]  <TASK>
[  257.599614][ T9308]  dump_stack_lvl+0x189/0x250
[  257.599645][ T9308]  ? __pfx____ratelimit+0x10/0x10
[  257.599674][ T9308]  ? __pfx_dump_stack_lvl+0x10/0x10
[  257.599700][ T9308]  ? __pfx__printk+0x10/0x10
[  257.599729][ T9308]  ? __might_fault+0xb0/0x130
[  257.599772][ T9308]  should_fail_ex+0x414/0x560
[  257.599805][ T9308]  _copy_from_user+0x2d/0xb0
[  257.599860][ T9308]  do_sock_getsockopt+0x17d/0x450
[  257.599902][ T9308]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  257.599923][ T9308]  ? write_ibpb+0x30/0x40
[  257.599952][ T9308]  ? __fget_files+0x3a0/0x420
[  257.599984][ T9308]  ? __fget_files+0x2a/0x420
[  257.600025][ T9308]  __x64_sys_getsockopt+0x1a5/0x250
[  257.600045][ T9308]  ? write_ibpb+0x30/0x40
[  257.600076][ T9308]  ? write_ibpb+0x30/0x40
[  257.600112][ T9308]  do_syscall_64+0xfa/0x3b0
[  257.600141][ T9308]  ? lockdep_hardirqs_on+0x9c/0x150
[  257.600170][ T9308]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.600192][ T9308]  ? clear_bhb_loop+0x60/0xb0
[  257.600217][ T9308]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  257.600239][ T9308] RIP: 0033:0x7f9cd218ebe9
[  257.600258][ T9308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  257.600277][ T9308] RSP: 002b:00007f9cd3070038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  257.600300][ T9308] RAX: ffffffffffffffda RBX: 00007f9cd23b5fa0 RCX: 00007f9cd218ebe9
[  257.600315][ T9308] RDX: 0000000000002711 RSI: 0000200000000114 RDI: 0000000000000003
[  257.600329][ T9308] RBP: 00007f9cd3070090 R08: 0000200000000000 R09: 0000000000000000
[  257.600343][ T9308] R10: 0000200000c35fff R11: 0000000000000246 R12: 0000000000000001
[  257.600357][ T9308] R13: 00007f9cd23b6038 R14: 00007f9cd23b5fa0 R15: 00007ffe5a71c438
[  257.600392][ T9308]  </TASK>
[  257.934657][ T9306] netlink: 'syz.0.986': attribute type 1 has an invalid length.
[  257.945476][ T9321] netlink: 'syz.1.989': attribute type 1 has an invalid length.
[  258.207413][ T9330] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  258.303859][ T9330] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  258.342366][ T9330] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  258.559332][ T9350] netlink: 'syz.3.1000': attribute type 1 has an invalid length.
[  258.653065][ T9352] syzkaller0: entered promiscuous mode
[  258.659494][ T9352] syzkaller0: entered allmulticast mode
[  258.738139][ T9356] FAULT_INJECTION: forcing a failure.
[  258.738139][ T9356] name failslab, interval 1, probability 0, space 0, times 0
[  258.752371][ T9356] CPU: 0 UID: 0 PID: 9356 Comm: syz.4.1004 Not tainted syzkaller #0 PREEMPT(full) 
[  258.752399][ T9356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  258.752413][ T9356] Call Trace:
[  258.752421][ T9356]  <TASK>
[  258.752430][ T9356]  dump_stack_lvl+0x189/0x250
[  258.752462][ T9356]  ? __pfx____ratelimit+0x10/0x10
[  258.752492][ T9356]  ? __pfx_dump_stack_lvl+0x10/0x10
[  258.752518][ T9356]  ? __pfx__printk+0x10/0x10
[  258.752556][ T9356]  ? __pfx___might_resched+0x10/0x10
[  258.752577][ T9356]  ? fs_reclaim_acquire+0x7d/0x100
[  258.752616][ T9356]  should_fail_ex+0x414/0x560
[  258.752651][ T9356]  should_failslab+0xa8/0x100
[  258.752683][ T9356]  __kmalloc_noprof+0xcb/0x4f0
[  258.752721][ T9356]  ? rds_info_getsockopt+0x1db/0x470
[  258.752753][ T9356]  rds_info_getsockopt+0x1db/0x470
[  258.752798][ T9356]  ? __pfx_rds_info_getsockopt+0x10/0x10
[  258.752826][ T9356]  ? __might_fault+0xb0/0x130
[  258.752858][ T9356]  ? rds_getsockopt+0x2b4/0x500
[  258.752876][ T9356]  ? __pfx_rds_getsockopt+0x10/0x10
[  258.752896][ T9356]  do_sock_getsockopt+0x36f/0x450
[  258.752920][ T9356]  ? __pfx_do_sock_getsockopt+0x10/0x10
[  258.752938][ T9356]  ? write_ibpb+0x30/0x40
[  258.752965][ T9356]  ? __fget_files+0x3a0/0x420
[  258.752995][ T9356]  ? __fget_files+0x2a/0x420
[  258.753032][ T9356]  __x64_sys_getsockopt+0x1a5/0x250
[  258.753051][ T9356]  ? write_ibpb+0x30/0x40
[  258.753080][ T9356]  ? write_ibpb+0x30/0x40
[  258.753110][ T9356]  do_syscall_64+0xfa/0x3b0
[  258.753137][ T9356]  ? lockdep_hardirqs_on+0x9c/0x150
[  258.753163][ T9356]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.753182][ T9356]  ? clear_bhb_loop+0x60/0xb0
[  258.753206][ T9356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.753226][ T9356] RIP: 0033:0x7f9cd218ebe9
[  258.753243][ T9356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.753260][ T9356] RSP: 002b:00007f9cd3070038 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  258.753281][ T9356] RAX: ffffffffffffffda RBX: 00007f9cd23b5fa0 RCX: 00007f9cd218ebe9
[  258.753296][ T9356] RDX: 0000000000002711 RSI: 0000200000000114 RDI: 0000000000000003
[  258.753308][ T9356] RBP: 00007f9cd3070090 R08: 0000200000000000 R09: 0000000000000000
[  258.753321][ T9356] R10: 0000200000c35fff R11: 0000000000000246 R12: 0000000000000001
[  258.753334][ T9356] R13: 00007f9cd23b6038 R14: 00007f9cd23b5fa0 R15: 00007ffe5a71c438
[  258.753365][ T9356]  </TASK>
[  259.032558][ T9358] netlink: 'syz.3.1003': attribute type 1 has an invalid length.
[  259.052284][ T9358] __nla_validate_parse: 6 callbacks suppressed
[  259.052302][ T9358] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1003'.
[  259.411404][ T9379] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1009'.
[  259.499028][ T9378] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.506986][ T9378] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.636772][ T9392] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1013'.
[  259.743302][ T9378] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  259.758242][ T9378] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  259.808334][ T9399] netlink: 'syz.2.1012': attribute type 1 has an invalid length.
[  259.822262][ T9399] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1012'.
[  259.976247][ T9373] netlink: 'syz.1.1010': attribute type 5 has an invalid length.
[  260.005212][ T9373] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1010'.
[  260.073389][   T13] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  260.109820][   T13] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  260.148976][   T13] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  260.174819][   T13] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  260.272203][ T9409] syzkaller0: entered promiscuous mode
[  260.292686][ T9409] syzkaller0: entered allmulticast mode
[  260.566991][ T9418] netlink: 'syz.4.1019': attribute type 1 has an invalid length.
[  260.596199][ T9418] netlink: 224 bytes leftover after parsing attributes in process `syz.4.1019'.
[  261.007581][ T9441] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1026'.
[  261.119538][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  261.134045][ T9448] netlink: 'syz.1.1028': attribute type 1 has an invalid length.
[  261.142315][ T9448] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1028'.
[  261.511794][ T9463] netlink: 'syz.1.1036': attribute type 1 has an invalid length.
[  261.533886][ T9463] netlink: 224 bytes leftover after parsing attributes in process `syz.1.1036'.
[  262.093490][ T9495] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1043'.
[  262.354191][ T9506] netlink: 'syz.1.1046': attribute type 32 has an invalid length.
[  262.466615][ T9506] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  262.657946][ T9513] syzkaller0: entered promiscuous mode
[  262.676231][ T9513] syzkaller0: entered allmulticast mode
[  262.764274][ T9518] team0: Device gtp1 is up. Set it down before adding it as a team port
[  263.342273][ T9543] netlink: 'syz.2.1056': attribute type 1 has an invalid length.
[  263.704890][ T9566] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  264.228879][ T9589] netlink: 'syz.3.1067': attribute type 32 has an invalid length.
[  264.259484][ T9589] __nla_validate_parse: 5 callbacks suppressed
[  264.259502][ T9589] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1067'.
[  264.288047][ T9591] netlink: 'syz.0.1069': attribute type 1 has an invalid length.
[  264.298380][ T9589] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  264.299581][ T9591] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1069'.
[  264.982765][ T9630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1080'.
[  265.012151][ T9630] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1080'.
[  265.027141][ T9630] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1080'.
[  265.275888][ T9639] netlink: 'syz.2.1082': attribute type 1 has an invalid length.
[  265.313060][ T9639] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1082'.
[  265.782989][ T9665] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  265.876404][ T9673] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1092'.
[  265.970092][ T9673] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1092'.
[  266.016471][ T9678] C: renamed from lo
[  266.023515][ T9678] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  266.058140][ T9678] nbd: must specify at least one socket
[  266.068534][ T9673] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1092'.
[  266.288866][ T9690] FAULT_INJECTION: forcing a failure.
[  266.288866][ T9690] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.371433][ T9696] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1098'.
[  266.433983][ T9690] CPU: 0 UID: 0 PID: 9690 Comm: syz.2.1097 Not tainted syzkaller #0 PREEMPT(full) 
[  266.434011][ T9690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  266.434022][ T9690] Call Trace:
[  266.434028][ T9690]  <TASK>
[  266.434035][ T9690]  dump_stack_lvl+0x189/0x250
[  266.434059][ T9690]  ? __pfx____ratelimit+0x10/0x10
[  266.434082][ T9690]  ? __pfx_dump_stack_lvl+0x10/0x10
[  266.434117][ T9690]  ? __pfx__printk+0x10/0x10
[  266.434150][ T9690]  should_fail_ex+0x414/0x560
[  266.434176][ T9690]  _copy_to_user+0x31/0xb0
[  266.434196][ T9690]  simple_read_from_buffer+0xe1/0x170
[  266.434224][ T9690]  proc_fail_nth_read+0x1b3/0x220
[  266.434246][ T9690]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  266.434266][ T9690]  ? rw_verify_area+0x2a6/0x4d0
[  266.434286][ T9690]  ? __lock_acquire+0xab9/0xd20
[  266.434309][ T9690]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  266.434328][ T9690]  vfs_read+0x200/0xa30
[  266.434348][ T9690]  ? fdget_pos+0x247/0x320
[  266.434370][ T9690]  ? __pfx___mutex_lock+0x10/0x10
[  266.434395][ T9690]  ? __pfx_vfs_read+0x10/0x10
[  266.434417][ T9690]  ? __fget_files+0x2a/0x420
[  266.434445][ T9690]  ? __fget_files+0x3a0/0x420
[  266.434468][ T9690]  ? __fget_files+0x2a/0x420
[  266.434499][ T9690]  ksys_read+0x145/0x250
[  266.434522][ T9690]  ? __pfx_ksys_read+0x10/0x10
[  266.434541][ T9690]  ? rcu_is_watching+0x15/0xb0
[  266.434561][ T9690]  ? do_syscall_64+0xbe/0x3b0
[  266.434588][ T9690]  do_syscall_64+0xfa/0x3b0
[  266.434609][ T9690]  ? lockdep_hardirqs_on+0x9c/0x150
[  266.434631][ T9690]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.434647][ T9690]  ? clear_bhb_loop+0x60/0xb0
[  266.434666][ T9690]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.434682][ T9690] RIP: 0033:0x7fd682d8d5fc
[  266.434696][ T9690] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  266.434711][ T9690] RSP: 002b:00007fd683c3f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  266.434728][ T9690] RAX: ffffffffffffffda RBX: 00007fd682fb5fa0 RCX: 00007fd682d8d5fc
[  266.434740][ T9690] RDX: 000000000000000f RSI: 00007fd683c3f0a0 RDI: 0000000000000004
[  266.434750][ T9690] RBP: 00007fd683c3f090 R08: 0000000000000000 R09: 0000000000000000
[  266.434760][ T9690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.434769][ T9690] R13: 00007fd682fb6038 R14: 00007fd682fb5fa0 R15: 00007fff442ede78
[  266.434794][ T9690]  </TASK>
[  268.980974][ T9820] netlink: 'syz.0.1132': attribute type 3 has an invalid length.
[  269.004953][ T9825] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  269.049683][ T9825] syzkaller0: entered promiscuous mode
[  269.074830][ T9825] syzkaller0: entered allmulticast mode
[  269.653102][ T9861] __nla_validate_parse: 3 callbacks suppressed
[  269.653121][ T9861] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1137'.
[  269.760787][ T9873] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1138'.
[  270.298509][ T9904] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1149'.
[  270.310712][ T9903] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  270.350753][ T9904] openvswitch: netlink: Actions may not be safe on all matching packets
[  270.362544][ T9903] syzkaller0: entered promiscuous mode
[  270.383035][ T9903] syzkaller0: entered allmulticast mode
[  270.717152][ T9930] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  271.049805][ T9935] FAULT_INJECTION: forcing a failure.
[  271.049805][ T9935] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  271.187664][ T9935] CPU: 0 UID: 0 PID: 9935 Comm: syz.2.1155 Not tainted syzkaller #0 PREEMPT(full) 
[  271.187695][ T9935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  271.187709][ T9935] Call Trace:
[  271.187718][ T9935]  <TASK>
[  271.187727][ T9935]  dump_stack_lvl+0x189/0x250
[  271.187758][ T9935]  ? __pfx____ratelimit+0x10/0x10
[  271.187789][ T9935]  ? __pfx_dump_stack_lvl+0x10/0x10
[  271.187815][ T9935]  ? __pfx__printk+0x10/0x10
[  271.187861][ T9935]  should_fail_ex+0x414/0x560
[  271.187895][ T9935]  _copy_to_user+0x31/0xb0
[  271.187923][ T9935]  simple_read_from_buffer+0xe1/0x170
[  271.187961][ T9935]  proc_fail_nth_read+0x1b3/0x220
[  271.187990][ T9935]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  271.188019][ T9935]  ? rw_verify_area+0x2a6/0x4d0
[  271.188045][ T9935]  ? __lock_acquire+0xab9/0xd20
[  271.188075][ T9935]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  271.188101][ T9935]  vfs_read+0x200/0xa30
[  271.188128][ T9935]  ? fdget_pos+0x247/0x320
[  271.188152][ T9935]  ? __pfx___mutex_lock+0x10/0x10
[  271.188184][ T9935]  ? __pfx_vfs_read+0x10/0x10
[  271.188214][ T9935]  ? __fget_files+0x2a/0x420
[  271.188252][ T9935]  ? __fget_files+0x3a0/0x420
[  271.188292][ T9935]  ? __fget_files+0x2a/0x420
[  271.188336][ T9935]  ksys_read+0x145/0x250
[  271.188368][ T9935]  ? __pfx_ksys_read+0x10/0x10
[  271.188393][ T9935]  ? rcu_is_watching+0x15/0xb0
[  271.188422][ T9935]  ? do_syscall_64+0xbe/0x3b0
[  271.188457][ T9935]  do_syscall_64+0xfa/0x3b0
[  271.188487][ T9935]  ? lockdep_hardirqs_on+0x9c/0x150
[  271.188517][ T9935]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.188539][ T9935]  ? clear_bhb_loop+0x60/0xb0
[  271.188574][ T9935]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  271.188596][ T9935] RIP: 0033:0x7fd682d8d5fc
[  271.188615][ T9935] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  271.188635][ T9935] RSP: 002b:00007fd683c3f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  271.188657][ T9935] RAX: ffffffffffffffda RBX: 00007fd682fb5fa0 RCX: 00007fd682d8d5fc
[  271.188674][ T9935] RDX: 000000000000000f RSI: 00007fd683c3f0a0 RDI: 0000000000000004
[  271.188688][ T9935] RBP: 00007fd683c3f090 R08: 0000000000000000 R09: 0000000000000000
[  271.188701][ T9935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  271.188714][ T9935] R13: 00007fd682fb6038 R14: 00007fd682fb5fa0 R15: 00007fff442ede78
[  271.188750][ T9935]  </TASK>
[  272.248291][ T9969] tipc: Enabling of bearer <eth:syzkaller> rejected, failed to enable media
[  272.304192][ T9973] syzkaller0: entered promiscuous mode
[  272.331307][ T9973] syzkaller0: entered allmulticast mode
[  272.556235][ T9986] syzkaller1: entered promiscuous mode
[  272.561760][ T9986] syzkaller1: entered allmulticast mode
[  272.572659][ T9986] PF_CAN: dropped non conform CAN skbuff: dev type 280, len 324
[  273.503348][T10027] syzkaller0: entered promiscuous mode
[  273.534586][T10027] syzkaller0: entered allmulticast mode
[  274.009711][T10054] netlink: 88 bytes leftover after parsing attributes in process `syz.2.1195'.
[  274.149002][T10054] team0: Device vti0 is of different type
[  274.678795][T10084] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1201'.
[  274.754919][T10089] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1201'.
[  274.820074][T10084] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1201'.
[  275.017820][T10097] netlink: 'syz.2.1204': attribute type 11 has an invalid length.
[  275.133154][T10102] netlink: 116 bytes leftover after parsing attributes in process `syz.4.1206'.
[  275.653543][T10126] tipc: Enabled bearer <udp:syz1>, priority 10
[  275.687260][T10126] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1214'.
[  275.733508][T10130] FAULT_INJECTION: forcing a failure.
[  275.733508][T10130] name failslab, interval 1, probability 0, space 0, times 0
[  275.775303][T10130] CPU: 1 UID: 0 PID: 10130 Comm: syz.3.1215 Not tainted syzkaller #0 PREEMPT(full) 
[  275.775332][T10130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  275.775345][T10130] Call Trace:
[  275.775354][T10130]  <TASK>
[  275.775363][T10130]  dump_stack_lvl+0x189/0x250
[  275.775394][T10130]  ? __pfx____ratelimit+0x10/0x10
[  275.775423][T10130]  ? __pfx_dump_stack_lvl+0x10/0x10
[  275.775448][T10130]  ? __pfx__printk+0x10/0x10
[  275.775481][T10130]  ? __pfx___might_resched+0x10/0x10
[  275.775501][T10130]  ? fs_reclaim_acquire+0x7d/0x100
[  275.775539][T10130]  should_fail_ex+0x414/0x560
[  275.775572][T10130]  should_failslab+0xa8/0x100
[  275.775604][T10130]  __kmalloc_cache_noprof+0x70/0x3d0
[  275.775632][T10130]  ? rfkill_fop_open+0x198/0x820
[  275.775668][T10130]  rfkill_fop_open+0x198/0x820
[  275.775711][T10130]  ? __pfx_rfkill_fop_open+0x10/0x10
[  275.775740][T10130]  misc_open+0x2b9/0x330
[  275.775771][T10130]  chrdev_open+0x4c9/0x5e0
[  275.775806][T10130]  ? __pfx_chrdev_open+0x10/0x10
[  275.775841][T10130]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  275.775879][T10130]  ? __pfx_chrdev_open+0x10/0x10
[  275.775908][T10130]  do_dentry_open+0x950/0x13f0
[  275.775947][T10130]  vfs_open+0x3b/0x340
[  275.775965][T10130]  ? path_openat+0x2ecd/0x3830
[  275.775994][T10130]  path_openat+0x2ee5/0x3830
[  275.776023][T10130]  ? arch_stack_walk+0xfc/0x150
[  275.776069][T10130]  ? stack_depot_save_flags+0x40/0x860
[  275.776113][T10130]  ? __pfx_path_openat+0x10/0x10
[  275.776134][T10130]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.776179][T10130]  do_filp_open+0x1fa/0x410
[  275.776202][T10130]  ? __lock_acquire+0xab9/0xd20
[  275.776234][T10130]  ? __pfx_do_filp_open+0x10/0x10
[  275.776286][T10130]  ? _raw_spin_unlock+0x28/0x50
[  275.776310][T10130]  ? alloc_fd+0x64c/0x6c0
[  275.776353][T10130]  do_sys_openat2+0x121/0x1c0
[  275.776379][T10130]  ? __pfx_do_sys_openat2+0x10/0x10
[  275.776403][T10130]  ? ksys_write+0x22a/0x250
[  275.776433][T10130]  ? __pfx_ksys_write+0x10/0x10
[  275.776457][T10130]  ? rcu_is_watching+0x15/0xb0
[  275.776482][T10130]  __x64_sys_openat+0x138/0x170
[  275.776511][T10130]  do_syscall_64+0xfa/0x3b0
[  275.776539][T10130]  ? lockdep_hardirqs_on+0x9c/0x150
[  275.776567][T10130]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.776587][T10130]  ? clear_bhb_loop+0x60/0xb0
[  275.776613][T10130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  275.776632][T10130] RIP: 0033:0x7f3f6218ebe9
[  275.776651][T10130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  275.776669][T10130] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  275.776691][T10130] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  275.776706][T10130] RDX: 0000000000000801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  275.776720][T10130] RBP: 00007f3f62fd7090 R08: 0000000000000000 R09: 0000000000000000
[  275.776732][T10130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.776762][T10130] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  275.776798][T10130]  </TASK>
[  276.259395][T10138] netlink: 'syz.2.1218': attribute type 32 has an invalid length.
[  276.288676][T10133] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1217'.
[  276.301157][T10138] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1218'.
[  276.313549][T10141] syzkaller0: entered promiscuous mode
[  276.319249][T10141] syzkaller0: entered allmulticast mode
[  276.367645][T10146] netlink: 256 bytes leftover after parsing attributes in process `syz.1.1216'.
[  276.386103][T10146] netlink: 108 bytes leftover after parsing attributes in process `syz.1.1216'.
[  276.472771][T10138] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[  276.576365][T10162] netlink: 116 bytes leftover after parsing attributes in process `syz.3.1223'.
[  276.692026][T10166] vlan2: entered allmulticast mode
[  276.716771][ T5839] tipc: Node number set to 38986907
[  276.723665][T10166] bridge0: entered allmulticast mode
[  276.744469][T10166] bridge1: port 1(vlan2) entered blocking state
[  276.798273][T10166] bridge1: port 1(vlan2) entered disabled state
[  276.839902][T10166] vlan2: entered promiscuous mode
[  276.854840][T10166] bridge0: entered promiscuous mode
[  322.557441][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  383.996902][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  430.082590][   T31] INFO: task kworker/0:0:9 blocked for more than 143 seconds.
[  430.091196][   T31]       Not tainted syzkaller #0
[  430.097244][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  430.106044][   T31] task:kworker/0:0     state:D stack:23992 pid:9     tgid:9     ppid:2      task_flags:0x4208060 flags:0x00004000
[  430.118235][   T31] Workqueue: events rfkill_sync_work
[  430.123648][   T31] Call Trace:
[  430.126986][   T31]  <TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  430.129943][   T31]  __schedule+0x1798/0x4cc0
[  430.134772][   T31]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  430.140222][   T31]  ? __pfx___schedule+0x10/0x10
[  430.145732][   T31]  ? schedule+0x91/0x360
[  430.150339][   T31]  schedule+0x165/0x360
[  430.155139][   T31]  schedule_preempt_disabled+0x13/0x30
[  430.160643][   T31]  __mutex_lock+0x7e6/0x1360
[  430.165444][   T31]  ? __mutex_lock+0x5b6/0x1360
[  430.170280][   T31]  ? nfc_rfkill_set_block+0x50/0x2e0
[  430.193779][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  430.199087][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  430.213612][   T31]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  430.219592][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  430.259451][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  430.269938][   T31]  nfc_rfkill_set_block+0x50/0x2e0
[  430.275702][   T31]  ? __pfx_nfc_rfkill_set_block+0x10/0x10
[  430.281490][   T31]  rfkill_set_block+0x1d2/0x440
[  430.286542][   T31]  rfkill_sync_work+0x114/0x200
[  430.291539][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  430.297332][   T31]  process_scheduled_works+0xae1/0x17b0
[  430.302932][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  430.308989][   T31]  worker_thread+0x8a0/0xda0
[  430.313710][   T31]  kthread+0x711/0x8a0
[  430.317849][   T31]  ? __pfx_worker_thread+0x10/0x10
[  430.322965][   T31]  ? __pfx_kthread+0x10/0x10
[  430.328514][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  430.333865][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  430.339206][   T31]  ? __pfx_kthread+0x10/0x10
[  430.344171][   T31]  ret_from_fork+0x3f9/0x770
[  430.349277][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  430.354644][   T31]  ? __switch_to_asm+0x39/0x70
[  430.359464][   T31]  ? __switch_to_asm+0x33/0x70
[  430.364554][   T31]  ? __pfx_kthread+0x10/0x10
[  430.369459][   T31]  ret_from_fork_asm+0x1a/0x30
[  430.374456][   T31]  </TASK>
[  430.377703][   T31] INFO: task kworker/0:1:10 blocked for more than 143 seconds.
[  430.385385][   T31]       Not tainted syzkaller #0
[  430.390367][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  430.399366][   T31] task:kworker/0:1     state:D stack:24024 pid:10    tgid:10    ppid:2      task_flags:0x4208060 flags:0x00004000
[  430.411506][   T31] Workqueue: events rfkill_global_led_trigger_worker
[  430.418499][   T31] Call Trace:
[  430.421813][   T31]  <TASK>
[  430.424979][   T31]  __schedule+0x1798/0x4cc0
[  430.429537][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  430.436033][   T31]  ? __pfx___schedule+0x10/0x10
[  430.440989][   T31]  ? schedule+0x91/0x360
[  430.445424][   T31]  schedule+0x165/0x360
[  430.449803][   T31]  schedule_preempt_disabled+0x13/0x30
[  430.455379][   T31]  __mutex_lock+0x7e6/0x1360
[  430.460017][   T31]  ? __mutex_lock+0x5b6/0x1360
[  430.464901][   T31]  ? rfkill_global_led_trigger_worker+0x27/0xd0
[  430.471209][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  430.476411][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  430.482254][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  430.488173][   T31]  rfkill_global_led_trigger_worker+0x27/0xd0
[  430.494499][   T31]  ? process_scheduled_works+0x9ef/0x17b0
[  430.500280][   T31]  process_scheduled_works+0xae1/0x17b0
[  430.505975][   T31]  ? __pfx_process_scheduled_works+0x10/0x10
[  430.512012][   T31]  worker_thread+0x8a0/0xda0
[  430.516846][   T31]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  430.523234][   T31]  ? __kthread_parkme+0x7b/0x200
[  430.528493][   T31]  kthread+0x711/0x8a0
[  430.532620][   T31]  ? __pfx_worker_thread+0x10/0x10
[  430.537840][   T31]  ? __pfx_kthread+0x10/0x10
[  430.542476][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  430.547809][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  430.554106][   T31]  ? __pfx_kthread+0x10/0x10
[  430.558755][   T31]  ret_from_fork+0x3f9/0x770
[  430.563368][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  430.568585][   T31]  ? __switch_to_asm+0x39/0x70
[  430.573406][   T31]  ? __switch_to_asm+0x33/0x70
[  430.578276][   T31]  ? __pfx_kthread+0x10/0x10
[  430.582905][   T31]  ret_from_fork_asm+0x1a/0x30
[  430.587881][   T31]  </TASK>
[  430.591058][   T31] INFO: task syz.4.1217:10132 blocked for more than 143 seconds.
[  430.599969][   T31]       Not tainted syzkaller #0
[  430.605350][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  430.614248][   T31] task:syz.4.1217      state:D stack:24104 pid:10132 tgid:10132 ppid:5884   task_flags:0x400040 flags:0x00004004
[  430.626667][   T31] Call Trace:
[  430.630015][   T31]  <TASK>
[  430.633075][   T31]  __schedule+0x1798/0x4cc0
[  430.637990][   T31]  ? validate_chain+0x897/0x2140
[  430.642996][   T31]  ? __lock_acquire+0xab9/0xd20
[  430.648055][   T31]  ? __pfx___schedule+0x10/0x10
[  430.653059][   T31]  ? schedule+0x91/0x360
[  430.657461][   T31]  schedule+0x165/0x360
[  430.661763][   T31]  schedule_timeout+0x9a/0x270
[  430.666623][   T31]  ? __pfx_schedule_timeout+0x10/0x10
[  430.672480][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  430.677877][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  430.683214][   T31]  ? wait_for_completion+0x267/0x5d0
[  430.688789][   T31]  wait_for_completion+0x2bf/0x5d0
[  430.694046][   T31]  ? __pfx_wait_for_completion+0x10/0x10
[  430.699727][   T31]  ? __flush_work+0xd2/0xbc0
[  430.704392][   T31]  ? __flush_work+0xd2/0xbc0
[  430.709019][   T31]  __flush_work+0x9b9/0xbc0
[  430.713826][   T31]  ? __flush_work+0xd2/0xbc0
[  430.718459][   T31]  ? __pfx___flush_work+0x10/0x10
[  430.723566][   T31]  ? __pfx_wq_barrier_func+0x10/0x10
[  430.728893][   T31]  ? __pfx___cancel_work+0x10/0x10
[  430.734099][   T31]  ? nfc_genl_device_removed+0x23c/0x330
[  430.739962][   T31]  __cancel_work_sync+0xbe/0x110
[  430.745206][   T31]  rfkill_unregister+0x92/0x220
[  430.750106][   T31]  nfc_unregister_device+0x96/0x2a0
[  430.755464][   T31]  ? __pfx_virtual_ncidev_close+0x10/0x10
[  430.761239][   T31]  virtual_ncidev_close+0x56/0x90
[  430.766474][   T31]  __fput+0x44c/0xa70
[  430.770657][   T31]  task_work_run+0x1d1/0x260
[  430.775450][   T31]  ? __pfx_task_work_run+0x10/0x10
[  430.780624][   T31]  ? exit_to_user_mode_loop+0x40/0x110
[  430.786615][   T31]  exit_to_user_mode_loop+0xec/0x110
[  430.791977][   T31]  do_syscall_64+0x2bd/0x3b0
[  430.796835][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.803056][   T31]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  430.809281][   T31]  ? clear_bhb_loop+0x60/0xb0
[  430.814059][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  430.820008][   T31] RIP: 0033:0x7f9cd218ebe9
[  430.824576][   T31] RSP: 002b:00007ffe5a71c598 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  430.833027][   T31] RAX: 0000000000000000 RBX: 00007f9cd23b7da0 RCX: 00007f9cd218ebe9
[  430.841282][   T31] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  430.849429][   T31] RBP: 00007f9cd23b7da0 R08: 0000000000000214 R09: 0000001d5a71c88f
[  430.857960][   T31] R10: 00007f9cd23b7cb0 R11: 0000000000000246 R12: 00000000000439c9
[  430.866036][   T31] R13: 00007ffe5a71c690 R14: ffffffffffffffff R15: 00007ffe5a71c6b0
[  430.874418][   T31]  </TASK>
[  430.877489][   T31] INFO: task syz.4.1217:10137 blocked for more than 144 seconds.
[  430.892435][   T31]       Not tainted syzkaller #0
[  430.897648][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  430.906605][   T31] task:syz.4.1217      state:D stack:25096 pid:10137 tgid:10132 ppid:5884   task_flags:0x400140 flags:0x00004004
[  430.918938][   T31] Call Trace:
[  430.922345][   T31]  <TASK>
[  430.925369][   T31]  __schedule+0x1798/0x4cc0
[  430.930023][   T31]  ? __lock_acquire+0xab9/0xd20
[  430.935103][   T31]  ? __lock_acquire+0xab9/0xd20
[  430.940034][   T31]  ? __pfx___schedule+0x10/0x10
[  430.945174][   T31]  ? schedule+0x91/0x360
[  430.949458][   T31]  schedule+0x165/0x360
[  430.953889][   T31]  schedule_preempt_disabled+0x13/0x30
[  430.959501][   T31]  __mutex_lock+0x7e6/0x1360
[  430.964682][   T31]  ? __mutex_lock+0x5b6/0x1360
[  430.969699][   T31]  ? rfkill_register+0x37/0x8e0
[  430.974956][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  430.980295][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  430.986690][   T31]  ? device_initialize+0x24b/0x440
[  430.992148][   T31]  rfkill_register+0x37/0x8e0
[  430.997603][   T31]  nfc_register_device+0x14a/0x320
[  431.003213][   T31]  nci_register_device+0x87f/0x9d0
[  431.009196][   T31]  ? __pfx_nci_register_device+0x10/0x10
[  431.015360][   T31]  ? __raw_spin_lock_init+0x45/0x100
[  431.021870][   T31]  ? __init_waitqueue_head+0xa9/0x150
[  431.028003][   T31]  virtual_ncidev_open+0x129/0x1a0
[  431.034200][   T31]  ? __pfx_virtual_ncidev_open+0x10/0x10
[  431.040455][   T31]  misc_open+0x2b9/0x330
[  431.045981][   T31]  chrdev_open+0x4c9/0x5e0
[  431.051366][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.057675][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  431.064969][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.071973][   T31]  do_dentry_open+0x950/0x13f0
[  431.078275][   T31]  vfs_open+0x3b/0x340
[  431.083337][   T31]  ? path_openat+0x2ecd/0x3830
[  431.090331][   T31]  path_openat+0x2ee5/0x3830
[  431.096038][   T31]  ? arch_stack_walk+0xfc/0x150
[  431.101874][   T31]  ? stack_depot_save_flags+0x40/0x860
[  431.110877][   T31]  ? __pfx_path_openat+0x10/0x10
[  431.116607][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.124731][   T31]  do_filp_open+0x1fa/0x410
[  431.130689][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.137033][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  431.142849][   T31]  ? _raw_spin_unlock+0x28/0x50
[  431.149557][   T31]  ? alloc_fd+0x64c/0x6c0
[  431.155067][   T31]  do_sys_openat2+0x121/0x1c0
[  431.160642][   T31]  ? __se_sys_futex+0x36f/0x400
[  431.167370][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  431.173790][   T31]  ? rcu_is_watching+0x15/0xb0
[  431.179564][   T31]  __x64_sys_openat+0x138/0x170
[  431.185066][   T31]  do_syscall_64+0xfa/0x3b0
[  431.190104][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  431.199749][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.206495][   T31]  ? clear_bhb_loop+0x60/0xb0
[  431.213781][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.220990][   T31] RIP: 0033:0x7f9cd218ebe9
[  431.226109][   T31] RSP: 002b:00007f9cd304f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  431.235879][   T31] RAX: ffffffffffffffda RBX: 00007f9cd23b6090 RCX: 00007f9cd218ebe9
[  431.244640][   T31] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  431.252955][   T31] RBP: 00007f9cd2211e19 R08: 0000000000000000 R09: 0000000000000000
[  431.263005][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.272292][   T31] R13: 00007f9cd23b6128 R14: 00007f9cd23b6090 R15: 00007ffe5a71c438
[  431.281573][   T31]  </TASK>
[  431.284909][   T31] INFO: task syz.3.1223:10159 blocked for more than 144 seconds.
[  431.292951][   T31]       Not tainted syzkaller #0
[  431.298424][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.307747][   T31] task:syz.3.1223      state:D stack:28328 pid:10159 tgid:10157 ppid:5885   task_flags:0x400040 flags:0x00004004
[  431.321239][   T31] Call Trace:
[  431.324970][   T31]  <TASK>
[  431.327987][   T31]  __schedule+0x1798/0x4cc0
[  431.332572][   T31]  ? kasan_save_free_info+0x46/0x50
[  431.338467][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.343832][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.350368][   T31]  ? __pfx___schedule+0x10/0x10
[  431.356403][   T31]  ? schedule+0x91/0x360
[  431.360973][   T31]  schedule+0x165/0x360
[  431.365489][   T31]  schedule_preempt_disabled+0x13/0x30
[  431.371785][   T31]  __mutex_lock+0x7e6/0x1360
[  431.376855][   T31]  ? __mutex_lock+0x5b6/0x1360
[  431.381946][   T31]  ? misc_open+0x51/0x330
[  431.386523][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  431.391893][   T31]  misc_open+0x51/0x330
[  431.396310][   T31]  chrdev_open+0x4c9/0x5e0
[  431.401106][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.406613][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  431.414934][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.419946][   T31]  do_dentry_open+0x950/0x13f0
[  431.425630][   T31]  vfs_open+0x3b/0x340
[  431.429843][   T31]  ? path_openat+0x2ecd/0x3830
[  431.434933][   T31]  path_openat+0x2ee5/0x3830
[  431.439748][   T31]  ? arch_stack_walk+0xfc/0x150
[  431.444770][   T31]  ? stack_depot_save_flags+0x40/0x860
[  431.450406][   T31]  ? __pfx_path_openat+0x10/0x10
[  431.455826][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.462346][   T31]  do_filp_open+0x1fa/0x410
[  431.467086][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.472302][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  431.477762][   T31]  ? _raw_spin_unlock+0x28/0x50
[  431.482874][   T31]  ? alloc_fd+0x64c/0x6c0
[  431.487445][   T31]  do_sys_openat2+0x121/0x1c0
[  431.492155][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  431.497466][   T31]  ? exc_page_fault+0x76/0xf0
[  431.502196][   T31]  ? do_user_addr_fault+0xc8a/0x1390
[  431.507726][   T31]  __x64_sys_openat+0x138/0x170
[  431.512635][   T31]  do_syscall_64+0xfa/0x3b0
[  431.517498][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  431.522762][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.529229][   T31]  ? clear_bhb_loop+0x60/0xb0
[  431.534068][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.540205][   T31] RIP: 0033:0x7f3f6218ebe9
[  431.544950][   T31] RSP: 002b:00007f3f62fd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  431.554366][   T31] RAX: ffffffffffffffda RBX: 00007f3f623b5fa0 RCX: 00007f3f6218ebe9
[  431.562490][   T31] RDX: 0000000000000801 RSI: 0000200000000040 RDI: ffffffffffffff9c
[  431.571414][   T31] RBP: 00007f3f62211e19 R08: 0000000000000000 R09: 0000000000000000
[  431.580034][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.588197][   T31] R13: 00007f3f623b6038 R14: 00007f3f623b5fa0 R15: 00007ffef96c59b8
[  431.597511][   T31]  </TASK>
[  431.600627][   T31] INFO: task syz.2.1235:10192 blocked for more than 144 seconds.
[  431.608512][   T31]       Not tainted syzkaller #0
[  431.613814][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.622884][   T31] task:syz.2.1235      state:D stack:27240 pid:10192 tgid:10191 ppid:5886   task_flags:0x400140 flags:0x00004004
[  431.635674][   T31] Call Trace:
[  431.639474][   T31]  <TASK>
[  431.642523][   T31]  __schedule+0x1798/0x4cc0
[  431.647171][   T31]  ? kasan_save_free_info+0x46/0x50
[  431.652439][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.657623][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.662549][   T31]  ? __pfx___schedule+0x10/0x10
[  431.667542][   T31]  ? schedule+0x91/0x360
[  431.672027][   T31]  schedule+0x165/0x360
[  431.676727][   T31]  schedule_preempt_disabled+0x13/0x30
[  431.682503][   T31]  __mutex_lock+0x7e6/0x1360
[  431.687215][   T31]  ? __mutex_lock+0x5b6/0x1360
[  431.692138][   T31]  ? misc_open+0x51/0x330
[  431.696675][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  431.701883][   T31]  misc_open+0x51/0x330
[  431.706606][   T31]  chrdev_open+0x4c9/0x5e0
[  431.711085][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.716237][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  431.722647][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  431.727860][   T31]  do_dentry_open+0x950/0x13f0
[  431.732780][   T31]  vfs_open+0x3b/0x340
[  431.736969][   T31]  ? path_openat+0x2ecd/0x3830
[  431.742236][   T31]  path_openat+0x2ee5/0x3830
[  431.747256][   T31]  ? arch_stack_walk+0xfc/0x150
[  431.752274][   T31]  ? stack_depot_save_flags+0x40/0x860
[  431.758646][   T31]  ? __pfx_path_openat+0x10/0x10
[  431.764073][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.770474][   T31]  do_filp_open+0x1fa/0x410
[  431.775704][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.780971][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  431.786603][   T31]  ? _raw_spin_unlock+0x28/0x50
[  431.791860][   T31]  ? alloc_fd+0x64c/0x6c0
[  431.796415][   T31]  do_sys_openat2+0x121/0x1c0
[  431.801141][   T31]  ? __se_sys_futex+0x36f/0x400
[  431.806120][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  431.811464][   T31]  ? rcu_is_watching+0x15/0xb0
[  431.816866][   T31]  __x64_sys_openat+0x138/0x170
[  431.822345][   T31]  do_syscall_64+0xfa/0x3b0
[  431.827380][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  431.833158][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.839437][   T31]  ? clear_bhb_loop+0x60/0xb0
[  431.844494][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  431.850602][   T31] RIP: 0033:0x7fd682d8ebe9
[  431.855592][   T31] RSP: 002b:00007fd683c3f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  431.864370][   T31] RAX: ffffffffffffffda RBX: 00007fd682fb5fa0 RCX: 00007fd682d8ebe9
[  431.872661][   T31] RDX: 0000000000000000 RSI: 0000200000000240 RDI: ffffffffffffff9c
[  431.882411][   T31] RBP: 00007fd682e11e19 R08: 0000000000000000 R09: 0000000000000000
[  431.890758][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  431.898975][   T31] R13: 00007fd682fb6038 R14: 00007fd682fb5fa0 R15: 00007fff442ede78
[  431.907184][   T31]  </TASK>
[  431.910249][   T31] INFO: task syz.1.1236:10195 blocked for more than 145 seconds.
[  431.919426][   T31]       Not tainted syzkaller #0
[  431.924760][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  431.933470][   T31] task:syz.1.1236      state:D stack:28328 pid:10195 tgid:10193 ppid:5895   task_flags:0x400040 flags:0x00004004
[  431.945593][   T31] Call Trace:
[  431.948997][   T31]  <TASK>
[  431.952027][   T31]  __schedule+0x1798/0x4cc0
[  431.956732][   T31]  ? kasan_save_free_info+0x46/0x50
[  431.962005][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.967188][   T31]  ? __lock_acquire+0xab9/0xd20
[  431.972280][   T31]  ? __pfx___schedule+0x10/0x10
[  431.977350][   T31]  ? schedule+0x91/0x360
[  431.981772][   T31]  schedule+0x165/0x360
[  431.986037][   T31]  schedule_preempt_disabled+0x13/0x30
[  431.991735][   T31]  __mutex_lock+0x7e6/0x1360
[  431.996538][   T31]  ? __mutex_lock+0x5b6/0x1360
[  432.001362][   T31]  ? misc_open+0x51/0x330
[  432.005821][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  432.011027][   T31]  misc_open+0x51/0x330
[  432.015592][   T31]  chrdev_open+0x4c9/0x5e0
[  432.021636][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.026811][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  432.033383][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.040670][   T31]  do_dentry_open+0x950/0x13f0
[  432.046106][   T31]  vfs_open+0x3b/0x340
[  432.051885][   T31]  ? path_openat+0x2ecd/0x3830
[  432.057890][   T31]  path_openat+0x2ee5/0x3830
[  432.063309][   T31]  ? arch_stack_walk+0xfc/0x150
[  432.068464][   T31]  ? stack_depot_save_flags+0x40/0x860
[  432.074726][   T31]  ? __pfx_path_openat+0x10/0x10
[  432.079730][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.086314][   T31]  do_filp_open+0x1fa/0x410
[  432.091131][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.096402][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  432.101575][   T31]  ? _raw_spin_unlock+0x28/0x50
[  432.107059][   T31]  ? alloc_fd+0x64c/0x6c0
[  432.111568][   T31]  do_sys_openat2+0x121/0x1c0
[  432.116528][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  432.121802][   T31]  ? exc_page_fault+0x76/0xf0
[  432.126573][   T31]  ? do_user_addr_fault+0xc8a/0x1390
[  432.131948][   T31]  __x64_sys_openat+0x138/0x170
[  432.137043][   T31]  do_syscall_64+0xfa/0x3b0
[  432.142059][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  432.147399][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.153866][   T31]  ? clear_bhb_loop+0x60/0xb0
[  432.158612][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.164623][   T31] RIP: 0033:0x7fdbb7f8ebe9
[  432.169162][   T31] RSP: 002b:00007fdbb8d99038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  432.177875][   T31] RAX: ffffffffffffffda RBX: 00007fdbb81b5fa0 RCX: 00007fdbb7f8ebe9
[  432.186413][   T31] RDX: 0000000000000000 RSI: 0000200000000100 RDI: ffffffffffffff9c
[  432.194760][   T31] RBP: 00007fdbb8011e19 R08: 0000000000000000 R09: 0000000000000000
[  432.203157][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.211439][   T31] R13: 00007fdbb81b6038 R14: 00007fdbb81b5fa0 R15: 00007ffe7454d748
[  432.219986][   T31]  </TASK>
[  432.223140][   T31] INFO: task syz.1.1236:10199 blocked for more than 145 seconds.
[  432.231025][   T31]       Not tainted syzkaller #0
[  432.236389][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.245491][   T31] task:syz.1.1236      state:D stack:28328 pid:10199 tgid:10193 ppid:5895   task_flags:0x400040 flags:0x00004004
[  432.257873][   T31] Call Trace:
[  432.261196][   T31]  <TASK>
[  432.264433][   T31]  __schedule+0x1798/0x4cc0
[  432.269309][   T31]  ? kasan_save_free_info+0x46/0x50
[  432.274702][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.279826][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.284805][   T31]  ? __pfx___schedule+0x10/0x10
[  432.289761][   T31]  ? schedule+0x91/0x360
[  432.294398][   T31]  schedule+0x165/0x360
[  432.298624][   T31]  schedule_preempt_disabled+0x13/0x30
[  432.304203][   T31]  __mutex_lock+0x7e6/0x1360
[  432.308864][   T31]  ? __mutex_lock+0x5b6/0x1360
[  432.313871][   T31]  ? misc_open+0x51/0x330
[  432.318364][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  432.323435][   T31]  misc_open+0x51/0x330
[  432.327823][   T31]  chrdev_open+0x4c9/0x5e0
[  432.332385][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.337465][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  432.344003][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.349007][   T31]  do_dentry_open+0x950/0x13f0
[  432.353956][   T31]  vfs_open+0x3b/0x340
[  432.358112][   T31]  ? path_openat+0x2ecd/0x3830
[  432.362994][   T31]  path_openat+0x2ee5/0x3830
[  432.367655][   T31]  ? arch_stack_walk+0xfc/0x150
[  432.372557][   T31]  ? stack_depot_save_flags+0x40/0x860
[  432.378268][   T31]  ? __pfx_path_openat+0x10/0x10
[  432.383252][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.389493][   T31]  do_filp_open+0x1fa/0x410
[  432.394101][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.398990][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  432.404631][   T31]  ? _raw_spin_unlock+0x28/0x50
[  432.409543][   T31]  ? alloc_fd+0x64c/0x6c0
[  432.414058][   T31]  do_sys_openat2+0x121/0x1c0
[  432.418782][   T31]  ? __se_sys_futex+0x36f/0x400
[  432.427772][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  432.433048][   T31]  ? rcu_is_watching+0x15/0xb0
[  432.437933][   T31]  __x64_sys_openat+0x138/0x170
[  432.442841][   T31]  do_syscall_64+0xfa/0x3b0
[  432.447457][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  432.452888][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.459170][   T31]  ? clear_bhb_loop+0x60/0xb0
[  432.464059][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.470095][   T31] RIP: 0033:0x7fdbb7f8ebe9
[  432.474673][   T31] RSP: 002b:00007fdbb8d78038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  432.483325][   T31] RAX: ffffffffffffffda RBX: 00007fdbb81b6090 RCX: 00007fdbb7f8ebe9
[  432.492548][   T31] RDX: 0000000000000400 RSI: 0000200000000140 RDI: ffffffffffffff9c
[  432.500717][   T31] RBP: 00007fdbb8011e19 R08: 0000000000000000 R09: 0000000000000000
[  432.508812][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.517065][   T31] R13: 00007fdbb81b6128 R14: 00007fdbb81b6090 R15: 00007ffe7454d748
[  432.525175][   T31]  </TASK>
[  432.528253][   T31] INFO: task syz.1.1236:10201 blocked for more than 145 seconds.
[  432.536392][   T31]       Not tainted syzkaller #0
[  432.541359][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.550183][   T31] task:syz.1.1236      state:D stack:27848 pid:10201 tgid:10193 ppid:5895   task_flags:0x400040 flags:0x00004004
[  432.562298][   T31] Call Trace:
[  432.565676][   T31]  <TASK>
[  432.568641][   T31]  __schedule+0x1798/0x4cc0
[  432.573286][   T31]  ? kasan_save_free_info+0x46/0x50
[  432.578608][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.583590][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.588502][   T31]  ? __pfx___schedule+0x10/0x10
[  432.593404][   T31]  ? schedule+0x91/0x360
[  432.597906][   T31]  schedule+0x165/0x360
[  432.602283][   T31]  schedule_preempt_disabled+0x13/0x30
[  432.607830][   T31]  __mutex_lock+0x7e6/0x1360
[  432.612517][   T31]  ? __mutex_lock+0x5b6/0x1360
[  432.617420][   T31]  ? misc_open+0x51/0x330
[  432.621889][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  432.627235][   T31]  misc_open+0x51/0x330
[  432.631591][   T31]  chrdev_open+0x4c9/0x5e0
[  432.636412][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.641417][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  432.648211][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.653241][   T31]  do_dentry_open+0x950/0x13f0
[  432.658220][   T31]  vfs_open+0x3b/0x340
[  432.662852][   T31]  ? path_openat+0x2ecd/0x3830
[  432.667752][   T31]  path_openat+0x2ee5/0x3830
[  432.672379][   T31]  ? arch_stack_walk+0xfc/0x150
[  432.677466][   T31]  ? stack_depot_save_flags+0x40/0x860
[  432.682985][   T31]  ? __pfx_path_openat+0x10/0x10
[  432.688063][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.694282][   T31]  do_filp_open+0x1fa/0x410
[  432.698844][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.704005][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  432.709093][   T31]  ? _raw_spin_unlock+0x28/0x50
[  432.714082][   T31]  ? alloc_fd+0x64c/0x6c0
[  432.718470][   T31]  do_sys_openat2+0x121/0x1c0
[  432.723267][   T31]  ? __se_sys_futex+0x36f/0x400
[  432.728210][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  432.733455][   T31]  ? rcu_is_watching+0x15/0xb0
[  432.738544][   T31]  __x64_sys_openat+0x138/0x170
[  432.743571][   T31]  do_syscall_64+0xfa/0x3b0
[  432.748553][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  432.753960][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.760079][   T31]  ? clear_bhb_loop+0x60/0xb0
[  432.764854][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  432.770798][   T31] RIP: 0033:0x7fdbb7f8ebe9
[  432.775362][   T31] RSP: 002b:00007fdbb8d57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  432.784001][   T31] RAX: ffffffffffffffda RBX: 00007fdbb81b6180 RCX: 00007fdbb7f8ebe9
[  432.792023][   T31] RDX: 0000000000000100 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  432.800854][   T31] RBP: 00007fdbb8011e19 R08: 0000000000000000 R09: 0000000000000000
[  432.808942][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  432.817111][   T31] R13: 00007fdbb81b6218 R14: 00007fdbb81b6180 R15: 00007ffe7454d748
[  432.825220][   T31]  </TASK>
[  432.828303][   T31] INFO: task syz.0.1239:10203 blocked for more than 146 seconds.
[  432.836270][   T31]       Not tainted syzkaller #0
[  432.841325][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  432.850373][   T31] task:syz.0.1239      state:D stack:27240 pid:10203 tgid:10202 ppid:5899   task_flags:0x400040 flags:0x00004004
[  432.862692][   T31] Call Trace:
[  432.866124][   T31]  <TASK>
[  432.869086][   T31]  __schedule+0x1798/0x4cc0
[  432.873693][   T31]  ? kasan_save_free_info+0x46/0x50
[  432.879105][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.884062][   T31]  ? __lock_acquire+0xab9/0xd20
[  432.889053][   T31]  ? __pfx___schedule+0x10/0x10
[  432.894113][   T31]  ? schedule+0x91/0x360
[  432.898492][   T31]  schedule+0x165/0x360
[  432.902702][   T31]  schedule_preempt_disabled+0x13/0x30
[  432.908293][   T31]  __mutex_lock+0x7e6/0x1360
[  432.913091][   T31]  ? __mutex_lock+0x5b6/0x1360
[  432.918431][   T31]  ? misc_open+0x51/0x330
[  432.923167][   T31]  ? __pfx___mutex_lock+0x10/0x10
[  432.928403][   T31]  misc_open+0x51/0x330
[  432.932888][   T31]  chrdev_open+0x4c9/0x5e0
[  432.937447][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.942961][   T31]  ? fsnotify_open_perm_and_set_mode+0x113/0x610
[  432.949565][   T31]  ? __pfx_chrdev_open+0x10/0x10
[  432.954909][   T31]  do_dentry_open+0x950/0x13f0
[  432.960074][   T31]  vfs_open+0x3b/0x340
[  432.964736][   T31]  ? path_openat+0x2ecd/0x3830
[  432.970844][   T31]  path_openat+0x2ee5/0x3830
[  432.976743][   T31]  ? arch_stack_walk+0xfc/0x150
[  432.981772][   T31]  ? stack_depot_save_flags+0x40/0x860
[  432.988763][   T31]  ? __pfx_path_openat+0x10/0x10
[  432.994215][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.004372][   T31]  do_filp_open+0x1fa/0x410
[  433.009201][   T31]  ? __lock_acquire+0xab9/0xd20
[  433.014425][   T31]  ? __pfx_do_filp_open+0x10/0x10
[  433.019948][   T31]  ? _raw_spin_unlock+0x28/0x50
[  433.025113][   T31]  ? alloc_fd+0x64c/0x6c0
[  433.029719][   T31]  do_sys_openat2+0x121/0x1c0
[  433.034744][   T31]  ? __pfx_do_sys_openat2+0x10/0x10
[  433.040107][   T31]  ? exc_page_fault+0x76/0xf0
[  433.045016][   T31]  ? do_user_addr_fault+0xc8a/0x1390
[  433.050719][   T31]  __x64_sys_openat+0x138/0x170
[  433.056050][   T31]  do_syscall_64+0xfa/0x3b0
[  433.060813][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  433.066503][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.072637][   T31]  ? clear_bhb_loop+0x60/0xb0
[  433.077492][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.083442][   T31] RIP: 0033:0x7ff0f8b8ebe9
[  433.088055][   T31] RSP: 002b:00007ff0f99d2038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  433.096689][   T31] RAX: ffffffffffffffda RBX: 00007ff0f8db5fa0 RCX: 00007ff0f8b8ebe9
[  433.105751][   T31] RDX: 0000000000000002 RSI: 0000200000000080 RDI: ffffffffffffff9c
[  433.114230][   T31] RBP: 00007ff0f8c11e19 R08: 0000000000000000 R09: 0000000000000000
[  433.122509][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  433.132797][   T31] R13: 00007ff0f8db6038 R14: 00007ff0f8db5fa0 R15: 00007ffe1809a238
[  433.141323][   T31]  </TASK>
[  433.144488][   T31] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  433.154573][   T31] 
[  433.154573][   T31] Showing all locks held in the system:
[  433.162500][   T31] 4 locks held by kworker/0:0/9:
[  433.167724][   T31]  #0: ffff88801a480d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  433.179193][   T31]  #1: ffffc900000e7bc0 ((work_completion)(&rfkill->sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  433.191747][   T31]  #2: ffffffff8f811788 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_sync_work+0x2e/0x200
[  433.202322][   T31]  #3: ffff8880326c6100 (&dev->mutex){....}-{4:4}, at: nfc_rfkill_set_block+0x50/0x2e0
[  433.212698][   T31] 3 locks held by kworker/0:1/10:
[  433.218604][   T31]  #0: ffff88801a480d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[  433.229876][   T31]  #1: ffffc900000f7bc0 ((work_completion)(&rfkill_global_led_trigger_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[  433.243931][   T31]  #2: ffffffff8f811788 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_global_led_trigger_worker+0x27/0xd0
[  433.255553][   T31] 1 lock held by khungtaskd/31:
[  433.260465][   T31]  #0: ffffffff8e139ea0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  433.270833][   T31] 2 locks held by getty/5625:
[  433.276026][   T31]  #0: ffff88814dd730a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  433.286414][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  433.297010][   T31] 1 lock held by syz.4.1217/10132:
[  433.302150][   T31]  #0: ffff8880326c6100 (&dev->mutex){....}-{4:4}, at: nfc_unregister_device+0x63/0x2a0
[  433.312146][   T31] 3 locks held by syz.4.1217/10137:
[  433.317572][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.326749][   T31]  #1: ffff88805a890100 (&dev->mutex){....}-{4:4}, at: nfc_register_device+0xa1/0x320
[  433.336545][   T31]  #2: ffffffff8f811788 (rfkill_global_mutex){+.+.}-{4:4}, at: rfkill_register+0x37/0x8e0
[  433.346948][   T31] 1 lock held by syz.3.1223/10159:
[  433.352370][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.361280][   T31] 1 lock held by syz.2.1235/10192:
[  433.367387][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.376113][   T31] 1 lock held by syz.1.1236/10195:
[  433.381686][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.390556][   T31] 1 lock held by syz.1.1236/10199:
[  433.395815][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.404756][   T31] 1 lock held by syz.1.1236/10201:
[  433.409984][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.418715][   T31] 1 lock held by syz.0.1239/10203:
[  433.423980][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.432516][   T31] 1 lock held by syz-executor/10210:
[  433.437997][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.446744][   T31] 1 lock held by syz-executor/10213:
[  433.452074][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.461115][   T31] 1 lock held by syz-executor/10214:
[  433.466792][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.475867][   T31] 1 lock held by syz-executor/10217:
[  433.481278][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.490348][   T31] 1 lock held by syz-executor/10218:
[  433.495813][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.505262][   T31] 1 lock held by syz-executor/10225:
[  433.510934][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.519891][   T31] 1 lock held by syz-executor/10227:
[  433.525521][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.535587][   T31] 1 lock held by syz-executor/10231:
[  433.541559][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.550690][   T31] 1 lock held by syz-executor/10232:
[  433.556496][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.565124][   T31] 1 lock held by syz-executor/10233:
[  433.570527][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.579358][   T31] 1 lock held by syz-executor/10240:
[  433.584746][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.594005][   T31] 1 lock held by syz-executor/10242:
[  433.599591][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.608187][   T31] 1 lock held by syz-executor/10246:
[  433.613548][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.622436][   T31] 1 lock held by syz-executor/10247:
[  433.627833][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.636536][   T31] 1 lock held by syz-executor/10248:
[  433.642119][   T31]  #0: ffffffff8e9c12c8 (misc_mtx){+.+.}-{4:4}, at: misc_open+0x51/0x330
[  433.651313][   T31] 
[  433.654522][   T31] =============================================
[  433.654522][   T31] 
[  433.663155][   T31] NMI backtrace for cpu 1
[  433.663176][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  433.663193][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  433.663203][   T31] Call Trace:
[  433.663211][   T31]  <TASK>
[  433.663218][   T31]  dump_stack_lvl+0x189/0x250
[  433.663246][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  433.663264][   T31]  ? __pfx__printk+0x10/0x10
[  433.663296][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[  433.663317][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  433.663337][   T31]  ? __pfx__printk+0x10/0x10
[  433.663362][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  433.663389][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  433.663409][   T31]  watchdog+0xf93/0xfe0
[  433.663434][   T31]  ? watchdog+0x1de/0xfe0
[  433.663460][   T31]  kthread+0x711/0x8a0
[  433.663489][   T31]  ? __pfx_watchdog+0x10/0x10
[  433.663516][   T31]  ? __pfx_kthread+0x10/0x10
[  433.663543][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  433.663568][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  433.663595][   T31]  ? __pfx_kthread+0x10/0x10
[  433.663621][   T31]  ret_from_fork+0x3f9/0x770
[  433.663645][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  433.663672][   T31]  ? __switch_to_asm+0x39/0x70
[  433.663699][   T31]  ? __switch_to_asm+0x33/0x70
[  433.663726][   T31]  ? __pfx_kthread+0x10/0x10
[  433.663754][   T31]  ret_from_fork_asm+0x1a/0x30
[  433.663801][   T31]  </TASK>
[  433.811818][   T31] Sending NMI from CPU 1 to CPUs 0:
[  433.817714][    C0] NMI backtrace for cpu 0
[  433.817735][    C0] CPU: 0 UID: 0 PID: 9847 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) 
[  433.817756][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  433.817768][    C0] Workqueue: bat_events batadv_nc_worker
[  433.817797][    C0] RIP: 0010:lock_acquire+0x13d/0x360
[  433.817825][    C0] Code: 00 6a 00 55 ff 74 24 30 e8 e0 02 00 00 48 83 c4 28 48 c7 c7 5f 5d ba 8d e8 f0 25 dc 09 b8 ff ff ff ff 65 0f c1 05 93 33 03 11 <83> f8 01 0f 85 c9 00 00 00 48 c7 44 24 30 00 00 00 00 9c 8f 44 24
[  433.817842][    C0] RSP: 0018:ffffc9000b597980 EFLAGS: 00000057
[  433.817857][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: c283aeb91cef3700
[  433.817869][    C0] RDX: 0000000000000000 RSI: ffffffff8dba5d5f RDI: ffffffff8be33300
[  433.817881][    C0] RBP: ffffffff8b46f032 R08: 0000000000000000 R09: ffffffff8b46f032
[  433.817893][    C0] R10: dffffc0000000000 R11: ffffffff8b46ef60 R12: 0000000000000002
[  433.817905][    C0] R13: ffffffff8e139ea0 R14: 0000000000000000 R15: 0000000000000246
[  433.817917][    C0] FS:  0000000000000000(0000) GS:ffff888125c1b000(0000) knlGS:0000000000000000
[  433.817932][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  433.817943][    C0] CR2: 00007ffc17187fbc CR3: 000000000df36000 CR4: 00000000003526f0
[  433.817959][    C0] Call Trace:
[  433.817967][    C0]  <TASK>
[  433.817981][    C0]  ? batadv_nc_worker+0xd2/0x610
[  433.818002][    C0]  ? batadv_nc_worker+0xd2/0x610
[  433.818024][    C0]  batadv_nc_worker+0xef/0x610
[  433.818049][    C0]  ? batadv_nc_worker+0xd2/0x610
[  433.818071][    C0]  ? process_scheduled_works+0x9ef/0x17b0
[  433.818090][    C0]  process_scheduled_works+0xae1/0x17b0
[  433.818124][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  433.818152][    C0]  worker_thread+0x8a0/0xda0
[  433.818189][    C0]  kthread+0x711/0x8a0
[  433.818217][    C0]  ? __pfx_worker_thread+0x10/0x10
[  433.818235][    C0]  ? __pfx_kthread+0x10/0x10
[  433.818262][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  433.818285][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  433.818309][    C0]  ? __pfx_kthread+0x10/0x10
[  433.818331][    C0]  ret_from_fork+0x3f9/0x770
[  433.818351][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  433.818372][    C0]  ? __switch_to_asm+0x39/0x70
[  433.818396][    C0]  ? __switch_to_asm+0x33/0x70
[  433.818418][    C0]  ? __pfx_kthread+0x10/0x10
[  433.818441][    C0]  ret_from_fork_asm+0x1a/0x30
[  433.818474][    C0]  </TASK>
[  433.819458][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  434.062905][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  434.074212][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  434.085007][   T31] Call Trace:
[  434.088300][   T31]  <TASK>
[  434.091254][   T31]  dump_stack_lvl+0x99/0x250
[  434.095860][   T31]  ? __asan_memcpy+0x40/0x70
[  434.101079][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[  434.106489][   T31]  ? __pfx__printk+0x10/0x10
[  434.111147][   T31]  vpanic+0x281/0x750
[  434.115177][   T31]  ? __pfx_vpanic+0x10/0x10
[  434.119801][   T31]  ? preempt_schedule+0xae/0xc0
[  434.124883][   T31]  ? preempt_schedule_common+0x83/0xd0
[  434.130568][   T31]  panic+0xb9/0xc0
[  434.134332][   T31]  ? __pfx_panic+0x10/0x10
[  434.138790][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  434.144270][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  434.150721][   T31]  watchdog+0xfd2/0xfe0
[  434.154957][   T31]  ? watchdog+0x1de/0xfe0
[  434.159325][   T31]  kthread+0x711/0x8a0
[  434.163435][   T31]  ? __pfx_watchdog+0x10/0x10
[  434.168487][   T31]  ? __pfx_kthread+0x10/0x10
[  434.173358][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[  434.178606][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[  434.183932][   T31]  ? __pfx_kthread+0x10/0x10
[  434.188715][   T31]  ret_from_fork+0x3f9/0x770
[  434.193628][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  434.199236][   T31]  ? __switch_to_asm+0x39/0x70
[  434.204379][   T31]  ? __switch_to_asm+0x33/0x70
[  434.209695][   T31]  ? __pfx_kthread+0x10/0x10
[  434.214680][   T31]  ret_from_fork_asm+0x1a/0x30
[  434.220034][   T31]  </TASK>
[  434.224151][   T31] Kernel Offset: disabled
[  434.228976][   T31] Rebooting in 86400 seconds..