last executing test programs:

6.366633571s ago: executing program 1 (id=2764):
unshare(0x22020400)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_mreqn(r0, 0x0, 0x53, 0x0, &(0x7f0000000040)=0xf)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x20}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="30ef00001000010495ee7dde7c5d002bb9df906c", @ANYRES32=0x0, @ANYBLOB="030500002114000008002800f4610000080005"], 0x30}, 0x1, 0x0, 0x0, 0x20004800}, 0x4000020)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac141400340008"], 0x2c}}, 0x0)
sendto$inet6(r3, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r4=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000c40)=ANY=[@ANYRES8=r2], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
sendmsg$NL80211_CMD_SET_BEACON(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r2, 0x1, 0x70bd2b, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4c844}, 0x20004000)
sendmsg$nl_route(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="6000000010000108fdfffffffddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="000000042104020008001b000000080038001a8004002d000a80"], 0x60}, 0x1, 0x0, 0x0, 0x4040080}, 0x0)

6.03472455s ago: executing program 1 (id=2771):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x7, 0x11, 0x0, @rand_addr=0x64010101, @dev={0xac, 0x14, 0x14, 0x21}}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461b007d444012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfdfe4f3a4745a8f762b96400", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)

5.95137597s ago: executing program 1 (id=2773):
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)=@generic={&(0x7f0000000200)='./file0\x00', 0x0, 0x1c}, 0x18)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x86, 0x81, &(0x7f0000000280)="740336f8ffffffc0898ad43d745d99e02c", 0x11)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @empty}], 0x1c)
sendto$inet6(r0, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(0xffffffffffffffff, 0x0, 0x8000)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
epoll_create1(0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000240)="2f0000001c0005fffffff7000d000000020000000b000000ec0091c913000180f0ffffeb46860f21244e36c3fdb9c3", 0x2f}], 0x1}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
r1 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r1, &(0x7f0000000140)=[{0x3, 0x0, 0x0}], 0x1, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
ppoll(&(0x7f0000000500)=[{r2}], 0x1, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
socket(0x2, 0x6, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, 0x0, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2})
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{0x61}, {0x6}]})
close(0x4)

5.893353366s ago: executing program 0 (id=2774):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000200)='ns/pid_for_children\x00')
unshare(0x6a040000)
r0 = socket(0x8, 0x3, 0x0)
ioctl$sock_netrom_SIOCADDRT(r0, 0x6180, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='contention_end\x00', r1}, 0x18)
close(0x4)
sendmsg$NL80211_CMD_TDLS_OPER(r0, 0x0, 0x40080)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x3, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="180000000000000000000000000000009110a9000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e}, 0x94)

5.272244892s ago: executing program 2 (id=2777):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000200)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = accept(r1, 0x0, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001f00)=[{{0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000280)="bf545102fde10d8f587b30cd1207b37be2cee6cba3406fb1010a0bf7a17bb6e350bf3dddbcb53561fd1bfe6bf5c7a9390cef98e51e3d0c0e10161041538ab22fbd3f27888c2183b781100a953d58ee2ceabe7c2888604530e9ce97c110550a4d9e62301960cb08ff32ba0d2a5f4808eb3a1ac0e50a089d5154e3734964984aa0657cd7c88f32aafc4e", 0x89}, {&(0x7f00000006c0)="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", 0x1000}, {&(0x7f0000000580)="d19b019340846c1a355b244d4cee8a3f7faebf97e07aa16ae066a15caccbe226adf964c6e11eba855a1191f265b4295fed2d457150c943e502413a519582f2121f5445e4385872004bef36ac61087a7c5f67aa6c0b5d4b9b5c5c658be160bc4b1ad7c1bf11af53bd242837b2818af2246183f6857fa36dbe4640ad222959ba0666c3bbce32405f60dc447bf15f7b5be5c5616f5643a810cac6e8dfd2dce6791f62d03c7c7f1a7f56e0aea5da5c771ee84e7205e1090b10de4b", 0xb9}, {&(0x7f00000016c0)="52d906fb6ac9a382b57b345c5636bc14f79555bae7b20cf39a1201eea0ba89271e19cd534047b5a95820dd501b3f7228d94f8a6e3d23789b74387e73dcc108c4bd14c5f589288112a03b3543b82d4168cd974bdf8d647b735c0743b6ed1550e99d7da8a52bf05988dc2158be7558e7b36af5aee3b0cae85da1c9e8ab4b159e965f1ceef7a687250d59c91f1647", 0x8d}, {&(0x7f0000000040)="ff", 0x1}], 0x5, &(0x7f0000000380)=[@dstopts={{0x30, 0x29, 0x37, {0xff, 0x3, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @jumbo={0xc2, 0x4, 0x2}]}}}], 0x30}}, {{&(0x7f0000000400)={0xa, 0x4e22, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x4}, 0x1c, &(0x7f0000000440)=[{&(0x7f0000001780)="c01cb0df6c4f999843b3c9524cb5d22267b31b369fbe4bde8996958e3f195210e1eae3dcc6804b52b1e05393944740612f19df83e0e1ea59df16aa0c28618f8dec9e211767d8009376c67cbfb134f14927024f2d0efd665b8d9a62daeafe1fe44d2b45f79b764c3e74994f8cb5d29e96ab9ffe0800375199cad38800e841b07057d182ff6b9febd9e2d562f33d07980c67e2247d2d870b81c8109ce5f9f38623357bb5352a5b326fd62c6e5a8b290ffe779da48378d09c01b78d4de35eb6974466431d3c6923e93ceb49f71ee2342c210e9981f5ce8a8c37b750529eb4f9", 0xde}, {&(0x7f0000001880)="ec5cd8b6c5683ad536907d8c9b3fe084b3ddcc9d2461d78d4aab21941a5bae080a3787f607cc9f61fd87601de3aecd73420ec2ffc1957dd19c26ca9d3ceb7f846f2e98960769b8eae7e131eb9b7edef141a62ef69d410b64603410b8bc7ff2e3b90b03e463d86fd883846852680eb1b74659277d2a94cfc5b725dc9cf5b0e2a9a35d35f36f6dbd9f35", 0x89}], 0x2, &(0x7f00000004c0)=[@hopopts_2292={{0x70, 0x29, 0x36, {0x0, 0xa, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @empty}, @calipso={0x7, 0x28, {0x1, 0x8, 0x3d, 0x6, [0x8, 0x0, 0x1, 0x0]}}, @ra={0x5, 0x2, 0x1}, @jumbo={0xc2, 0x4, 0x8}, @ra={0x5, 0x2, 0x8}]}}}], 0x70}}, {{0x0, 0x0, &(0x7f0000001940)}}, {{&(0x7f0000001980)={0xa, 0x4e20, 0x9, @mcast2, 0x200}, 0x1c, &(0x7f0000001d40)=[{&(0x7f00000019c0)="20bf5b027b0812c692a4fcdc277f3ad6107694efa5e461833306ff94be94098cca4aa8b907940103a61ef016f78f4ef2e582f34b7a61c07d670cbf795632576ca9b9f20e24f82e2d7d2dd9f92a1c9da7f8a4b0ccaf3ffe4da4386063541bc4656c79ea511da7454138fd25a6fc9316d06f7366d99732d12b07496dfcff9b3ddb7460d5000bc2e58a12740bb4539e26dcce47cfcd6726c57716c3d8838f0972916e171796c4d9fdf33e4ef75335c4ea47f3e2bfdca40f6be4a5be63a91222aded", 0xc0}, {&(0x7f0000001a80)="92d1a69dc841cb1c494de20bc8db57acdde4493f576ac8b9340a1ebbf43bbdeaaf532a47dccb3b219a7eb5fc89a598cad98746e47ec1b086751683bf91146147d7d7cf274b1235130bfef0f4027090172d857a74b2b16c87d13f1bbc416f1cde77142212e98fb4cf1031a48dfd12ee7f236f3cbf5d3615f51c84511a7802e4fa90effdda901969c34dc639910e03ed1f362b60625117b91823f049ffd2d41ab2494ea50d89d9dc", 0xa7}, {&(0x7f0000001b40)="f3d0be248802d6aef65d0aa973d25c367a1fb20f4ff819b664cff68ddfd6b8a8202f57372368df3793b8ec57b2d6083bb4bb0a8b9bba11db2a25870c949475a959a7ae7dee9c87c45c6f045df638de3567af86c5d2d40182d2060926b022c4dd23da6a6c9fa8619ed58b00a0b1a4a0ceb63574d68c0ff3360cc66aeb398e705ae6bab0a41e678d0d881eb64988db5645ab55cf67975afe7eeba05031896f158dbcf023098e536a94bf269a8745d9e9ee653dbec2af53", 0xb6}, {&(0x7f0000001c00)="e4a9f41f", 0x4}, {&(0x7f0000001c40)="fe6530051c21dbb0f287f27d8fd0aa22bc2a417ac030ce6c78b1316f12ddec2743c7e4143abdc1b803be76d951dfb45987f9b1ce5fef9b3f3e26f5f6139540a22b200f48690a582eaf294190d870ad45c07f9b09cc42096baffa04299a89c9eb856d0534039a727b76e137024c582debff8dd81129318cd866c1351930ab0125d95cb3ae3b686a50da78c9bf6df8e9916ebe13276740b92e099ea802829d35714c371efa2cab6b3354fd0d5294ac225f1afe4eca41a0b32383609e75ac65f83ef59303bba55a7719fc84dd2dc4bc1d7acd7829c8bbb42b670a7c5d", 0xdb}], 0x5, &(0x7f0000001dc0)=[@rthdr_2292={{0x58, 0x29, 0x39, {0x5c, 0x8, 0x0, 0x1, 0x0, [@private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private2, @loopback]}}}, @dstopts_2292={{0x68, 0x29, 0x4, {0x33, 0x9, '\x00', [@calipso={0x7, 0x38, {0x2, 0xc, 0xf7, 0x5, [0x101, 0x5, 0x2, 0x6, 0x80000000, 0x1ff]}}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}]}}}, @hopopts_2292={{0x50, 0x29, 0x36, {0x11, 0x6, '\x00', [@padn={0x1, 0x2, [0x0, 0x0]}, @calipso={0x7, 0x28, {0x0, 0x8, 0x1c, 0x8, [0x8, 0x7, 0x2, 0x3]}}, @padn={0x1, 0x2, [0x0, 0x0]}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x7}}, @hoplimit={{0x14, 0x29, 0x34, 0x3}}], 0x140}}], 0x4, 0x0)

5.158390692s ago: executing program 2 (id=2778):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0}, 0x30)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x8000)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newlink={0x50, 0x10, 0xf11, 0x21, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104, 0xffffffef}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20, 0x20}}}}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

5.126325345s ago: executing program 0 (id=2779):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000000)=0x800, 0x4) (async)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000a, 0xc3072, 0xffffffffffffffff, 0x2fd15000)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800006, 0x7000001, 0x6e073, 0xffffffffffffffff, 0x2000)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x6, 0x8012, r0, 0x0) (async)
ioctl$BTRFS_IOC_SYNC(r0, 0x9408, 0x0) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x27, 0xffffff83, 0xfffffffffffffd6b, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x20f42, 0x0) (async)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0) (async, rerun: 64)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000280)=[@in6={0xa, 0x4e21, 0x0, @private2={0xfc, 0x2, '\x00', 0xff}}, @in6={0xa, 0x4e21, 0xf, @loopback, 0x6}]}, &(0x7f0000000180)=0x10) (rerun: 64)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f0000000000)={r5, @in={{0x2, 0x4e24, @empty}}, 0x27c0}, 0x90) (async)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r3, 0x84, 0x85, &(0x7f00000001c0)={r5, @in={{0x2, 0x4e24, @empty}}, 0xfffc}, 0x90) (async)
setsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f00000001c0)={r5, @in6={{0xa, 0x4e20, 0x80000000, @dev={0xfe, 0x80, '\x00', 0x3b}, 0x3}}}, 0x84) (async)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'rose0\x00', 0x6132}) (async)
r6 = socket$nl_route(0x10, 0x3, 0x0) (async)
r7 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f00000004c0)={'macvlan0\x00', <r8=>0x0}) (async)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r9, 0x8933, &(0x7f00000000c0)={'team0\x00', <r10=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000130001002dbd7000fddbdf2500000000", @ANYRES32=r8, @ANYBLOB="ecff0041096e000008000a00", @ANYRES32=r10], 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000000) (async)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000540)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x9}, {0x0, [0x0, 0x30, 0x2e, 0x5f, 0x30, 0x61, 0x5f]}}, 0x0, 0x21}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="180000005c04"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34}, 0x94) (async)
r11 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r11, &(0x7f0000000180)={&(0x7f0000000000)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0102}}}, 0x14, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8040}, 0x10) (async)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[], 0xfe3a)

4.890601926s ago: executing program 0 (id=2780):
r0 = socket$inet6(0xa, 0x3, 0x4)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000001f40)={0x9, {{0xa, 0x0, 0x3, @mcast2}}, {{0xa, 0x2, 0x4, @ipv4={'\x00', '\xff\xff', @local}, 0xfffffff8}}}, 0x108)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000180)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000640)=ANY=[@ANYBLOB="09000000000000000a00004000000003ff0200"], 0x90)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r1, 0x8983, &(0x7f0000001a80)={0x6, 'wlan1\x00', {0x1}, 0x2})
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000040)={0x1}, 0x1)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000001ac0)={0x0, 'veth0_vlan\x00', {0x3}, 0x2})
r3 = accept4$tipc(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x1000)
setsockopt$TIPC_SRC_DROPPABLE(r3, 0x10f, 0x80, &(0x7f0000000140)=0x5, 0x4)
syz_emit_ethernet(0xdc, &(0x7f0000000000)={@broadcast, @broadcast, @void, {@llc={0x4, {@llc={0xff, 0xf0, 'e', "effeaab3bd5dc0e2ea0327854dc41a9299e8a18511a65f19742897ea8a7108149c25c6189ea99a82326a5db214dd6b96a26f6e5e973ba0e14c67d56804bed2fcdf3c1f219bff760b5fd9f1d620fbdd546a042cf1f48b78d11715d44214209933f3ac6b4d7a4e80ea7b7619e40f8ae500e6d3e9e8ed5d4f462909f49e347a8c5f6ae40beb47782a7133256ee98ac8e6cca43e052a1b43079c28d4c5fdfcb38cca5df982aba4e2a73dfc1a0ea6a3eada0dffeb517a243583293bfaf728dca9a0a4e82f7d8a1c60d41edac1d4"}}}}}, 0x0)

4.840161922s ago: executing program 3 (id=2781):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000340)={0x1, 0x4}, 0x8)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000003c0)=0x89a, 0x4)
sendmmsg$inet6(r0, &(0x7f00000002c0)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x18, 0x0}}], 0x1, 0x4088000)

4.732487597s ago: executing program 2 (id=2782):
sendmsg$netlink(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x42901, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x770, 0x0, 0xbabd}, 0x1c)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="034886dd0900300003003000000060ce902d120c2f0081e949b93897bc3b0000004100007d01ff020000000000000000000000000001120022eb"], 0xfdef)

4.676269112s ago: executing program 0 (id=2783):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r1, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
connect$unix(r1, &(0x7f0000000000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)="b557a4cbda660900e45fb308f69c04e756a83f0000000000000000cb4587235f7cd2e0e63faecdd8970af721f8ac98fcacfd7fd875eeb81c80f43303e78133d2a3", 0x0, 0x80000000}, 0x38)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000096c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=@newtaction={0x48, 0x30, 0x2, 0x70bd25, 0x0, {}, [{0x34, 0x1, [@m_vlan={0x30, 0x1, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001680)=ANY=[@ANYBLOB="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"/2728], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x108, 0xe, 0x0, &(0x7f0000000340)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xf48f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000080)={&(0x7f0000b95000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000040)=0x40)
connect$unix(r1, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r5, &(0x7f0000000200)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
getsockopt$TIPC_CONN_TIMEOUT(r5, 0x10f, 0x82, &(0x7f0000000240), &(0x7f0000000280)=0x4)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000540)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r6, {}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_hhf={{0x8}, {0xc, 0x2, [@TCA_HHF_NON_HH_WEIGHT={0x8, 0x7, 0xfffffff9}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40001}, 0x0)

4.673803867s ago: executing program 3 (id=2784):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmsg$rds(r0, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x5)
close(0x4)
syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/ipc\x00')
unshare(0x6a040000)
socket$packet(0x11, 0x2, 0x300)
sendmsg(0xffffffffffffffff, 0x0, 0x844)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
r5 = socket(0x840000000002, 0x3, 0xfa)
connect$inet(r5, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r5, &(0x7f0000005240), 0x4000095, 0x0)
getsockname$packet(r5, 0x0, 0x0)
connect$rose(r5, 0x0, 0x0)
connect$inet(r4, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg(r4, &(0x7f0000007fc0), 0x800001d, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000380)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)={0x2c, r2, 0x1, 0x70bd25, 0x25dfdbfc, {{}, {@val={0x8, 0x1, 0x6b}, @val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x3}]}, 0x2c}, 0x1, 0x0, 0x0, 0x58844}, 0x80)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r8 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r8, 0x8914, &(0x7f0000000000))

4.655825827s ago: executing program 4 (id=2785):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x50)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x40, 0x0, 0x38, 0x4}]})
ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f0000000240)=0x10001)
write(r1, &(0x7f0000000280)="4591c28e8b83", 0x6)
write$ppp(r1, &(0x7f00000002c0)="44a9287b42e120ba14373d93da925e55cd158b47f300a1b555484e9476a536544c6d6a620027a8f88b46a63d7a8ade3f5f393fac4f9d020219f02a78b6837e88ecc831a702dc36c49dec8d6ce0430b9f49f2a97f9d472d01e8ccd2731cf47225f709571666073b9ade1393f5acd0877a63714059ca795de06b4af29c9ba34333d6511def42dfd56b53694f0c707a710d0b5485326e182e12b3d1ac6cf618635b08b4bdd1b2e6bb3c0b2c9759f832d97714f44d330e1574f936dc28358ccf6333097a1cb2", 0xc4)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
setsockopt$packet_int(r2, 0x107, 0x13, &(0x7f00000001c0)=0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r1, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
getpeername$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, &(0x7f00000001c0)=0x1c)

4.622380492s ago: executing program 1 (id=2786):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000009c0)=ANY=[@ANYBLOB="38010000", @ANYRES16=r1, @ANYBLOB="010000000000000000000700000008000300", @ANYRES32=r2, @ANYBLOB="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"], 0x138}}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f00000000c0)=0x7, 0x4)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r6=>0x0})
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r6, @ANYBLOB="00000000000000005c001280110001006272696467655f736c6176650000000044000580050005000000000005002000", @ANYRES8=r3], 0x7c}}, 0x0)

4.478588115s ago: executing program 0 (id=2787):
clock_gettime(0x0, &(0x7f0000005840)={<r0=>0x0, <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB="140000002500010027bd7023fcdbdf"], 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40000)
recvmmsg(0xffffffffffffffff, &(0x7f0000005700)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000002c0)=""/161, 0xa1}, {&(0x7f0000000380)=""/242, 0xf2}, {&(0x7f0000000480)=""/208, 0xd0}, {&(0x7f0000000600)=""/253, 0xfd}, {&(0x7f0000000700)=""/192, 0xc0}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x7}, 0x200}, {{&(0x7f0000000840)=@x25, 0x80, &(0x7f0000000d00)=[{&(0x7f00000000c0)=""/44, 0x2c}, {&(0x7f00000008c0)=""/86, 0x56}, {&(0x7f0000000940)=""/178, 0xb2}, {&(0x7f0000000a00)=""/129, 0x81}, {&(0x7f0000000ac0)=""/204, 0xcc}, {&(0x7f0000000200)=""/14, 0xe}, {&(0x7f0000003300)=""/4096, 0x1000}, {&(0x7f0000000bc0)=""/73, 0x49}, {&(0x7f0000000c40)=""/187, 0xbb}, {&(0x7f0000000580)=""/9, 0x9}], 0xa, &(0x7f0000000dc0)=""/44, 0x2c}, 0x5}, {{&(0x7f0000000e00)=@nfc, 0x80, &(0x7f0000000f40)}, 0xb8c}, {{&(0x7f0000001040)=@l2, 0x80, &(0x7f0000001280)=[{&(0x7f00000010c0)=""/200, 0xc8}, {&(0x7f00000011c0)=""/161, 0xa1}], 0x2, &(0x7f0000005300)=""/194, 0xc2}, 0x3}, {{&(0x7f0000005400)=@isdn, 0x80, &(0x7f00000056c0)=[{&(0x7f0000005480)=""/36, 0x24}, {0x0}, {&(0x7f0000005600)=""/142, 0x8e}], 0x3}}], 0x5, 0x2, &(0x7f0000005880)={r0, r1+10000000})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000340)=@framed={{}, [@alu={0x7, 0x0, 0x5, 0x0, 0x0, 0x0, 0xfffffffffffffff0}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendto$inet(r4, &(0x7f0000000040)="0e00", 0xffec, 0x0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$packet(0x11, 0x2, 0x300)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
recvmsg(r5, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x40000000000000}, 0x0, 0x0, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@empty, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x1, 0x3}]}]}, 0xfc}}, 0x0)
sendmsg$tipc(r6, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0)
r7 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r7, &(0x7f0000002a40)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f00000029c0)=ANY=[@ANYBLOB="140000000d0603"], 0x14}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r7)

4.458005495s ago: executing program 4 (id=2788):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000180)={0x14, 0x25, 0x1, 0x70bd2c, 0x259fdbfb, {0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x10)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=ANY=[@ANYBLOB="0a00000016000000b30000007f00000000000000", @ANYRES32, @ANYBLOB="0000000000000000000000000000000200100000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@bridge_newvlan={0x24, 0x76, 0x709, 0x1, 0x0, {0x7, 0x2}, [@BRIDGE_VLANDB_ENTRY={0xc, 0xd, 0x0, 0x1, @BRIDGE_VLANDB_ENTRY_STATE={0x5, 0x3, 0x4}}]}, 0x24}, 0x1, 0x5502000000000000}, 0x4000)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000cc0)=@newsa={0x144, 0x10, 0x1, 0x70bd28, 0x25dfdbff, {{@in=@rand_addr=0x64010100, @in=@loopback, 0x4e23, 0x0, 0x2000, 0x8000, 0x0, 0x20, 0x0, 0xc}, {@in=@rand_addr=0x64010101, 0x20, 0x6c}, @in6=@dev={0xfe, 0x80, '\x00', 0x23}, {0xfffffffffffffffe, 0x0, 0x0, 0x800000000000001, 0x10000000002c8, 0x6, 0x4000000000000}, {0x1fffffffffff, 0x8, 0x0, 0x4}, {0x0, 0x9}, 0x0, 0x0, 0xa, 0x1, 0x0, 0x3}, [@offload={0xc, 0x1c, {0x0, 0x1}}, @algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x144}, 0x1, 0x0, 0x0, 0x4075}, 0x4800)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x1, 0xb, &(0x7f0000000080)=@framed={{0x18, 0x3}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x1, 0x0, r1}, @generic={0x66}, @initr0, @exit, @alu={0x7, 0x0, 0x8, 0x3}]}, &(0x7f0000000000)='GPL\x00'}, 0x90)
r4 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan0\x00'})

4.336329045s ago: executing program 2 (id=2789):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0x3, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18ffffff7fffffffff000000000000008500000061000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300005500000085000000d000000095"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)

4.082760187s ago: executing program 2 (id=2790):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="3c020000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000003000000000a0000205e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x23c}}, 0x0)
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
syz_80211_join_ibss(&(0x7f0000000000)='wlan0\x00', &(0x7f00000001c0)=@default_ap_ssid, 0x6, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c008c05", @ANYRES16=r1, @ANYBLOB="20000000000000000000060000000800050003000000"], 0x1c}}, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)

4.039187894s ago: executing program 1 (id=2791):
r0 = socket$key(0xf, 0x3, 0x2)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000180)={0x0, 0x2, 0x8, 0x7100000})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002700)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @synproxy={{0xd}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb8}}, 0x0)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000000c0)={0x2, 0x3, 0x0, 0x9, 0x5, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x20, 0x0, 0x0, 0xe, @in={0x2, 0x0, @multicast1=0xe0000009}}]}, 0x2}}, 0x0)

4.0049863s ago: executing program 4 (id=2792):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r2, 0x1, 0x70bd26, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r3}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x8000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_DEL_STATION(r4, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000040)={&(0x7f00000004c0)={0x148, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x3, 0x5e}}}}, [@NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_STA_WME={0x1c, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0xb}, @NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x1}, @NL80211_STA_WME_UAPSD_QUEUES={0x5}]}, @NL80211_ATTR_MGMT_SUBTYPE={0x5, 0x29, 0xa}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x4}, @NL80211_ATTR_STA_EXT_CAPABILITY={0xf4, 0xac, "6c9fb3e191ebce65ee00000000333db5cff0d5733930fdb2e8388c0d040c0a0b88504ba26d91d72c59b1aae89138613b63bb00b83691ed337f14ed0090f41211876e2bd546f3e3ec45adb2591879608d4621f90012625fb4a23df4d278a78ac4656c8a4428de9404cae7f5807d507f824e480401cca6d6a5e7130648447cc7e5bf0dda219fb7bfecfd6fa6b5c081e9ccac69ee00cc60a5919dfb5f8172a5499317a700b11b1f07bc865c7570f803f73d139e184cfc35c9de7256e88f3ce64019770b4993e21e1b577549ceaf9d15a21eab3e831de48dc57580ac0c9d966fc49fe64f39fe39d652ddba3417fd5ec6a9cb"}]}, 0x148}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), r0)
sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x2c, r6, 0x1, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}]}, 0x2c}, 0x1, 0x0, 0x0, 0x48000}, 0x0)

3.80284832s ago: executing program 4 (id=2793):
syz_emit_ethernet(0x5e, &(0x7f0000000000)={@link_local, @empty, @val={@val={0x88a8, 0x3, 0x1, 0x3}}, {@canfd={0xd, {{}, 0x4, 0x4, 0x0, 0x0, "8b5b30fd6fed84f143bdedf1b5daa17d499c26814398e7ae57bf69ed45357428c894a2c53be93233b0e09a93e49a3b6c05c4fbf8321cba7a85317814b576d7ab"}}}}, 0x0)

3.802187188s ago: executing program 2 (id=2794):
clock_gettime(0x0, &(0x7f0000005840)={<r0=>0x0, <r1=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000005700)=[{{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f00000002c0)=""/161, 0xa1}, {&(0x7f0000000380)=""/242, 0xf2}, {&(0x7f0000000480)=""/208, 0xd0}, {&(0x7f0000000600)=""/253, 0xfd}, {&(0x7f0000000700)=""/192, 0xc0}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x7}, 0x200}, {{&(0x7f0000000840)=@x25, 0x80, &(0x7f0000000d00)=[{&(0x7f00000000c0)=""/44, 0x2c}, {&(0x7f00000008c0)=""/86, 0x56}, {&(0x7f0000000940)=""/178, 0xb2}, {&(0x7f0000000a00)=""/129, 0x81}, {&(0x7f0000000ac0)=""/204, 0xcc}, {&(0x7f0000000200)=""/14, 0xe}, {&(0x7f0000003300)=""/4096, 0x1000}, {&(0x7f0000000bc0)=""/73, 0x49}, {&(0x7f0000000c40)=""/187, 0xbb}, {&(0x7f0000000580)=""/9, 0x9}], 0xa, &(0x7f0000000dc0)=""/44, 0x2c}, 0x5}, {{&(0x7f0000000e00)=@nfc, 0x80, &(0x7f0000000f40)=[{&(0x7f0000000e80)=""/12, 0xc}, {&(0x7f0000000ec0)=""/125, 0x7d}, {&(0x7f0000004300)=""/4096, 0x1000}], 0x3}, 0xb8c}, {{&(0x7f0000001040)=@l2, 0x80, &(0x7f0000001280)=[{&(0x7f00000010c0)=""/200, 0xc8}, {&(0x7f00000011c0)=""/161, 0xa1}], 0x2, &(0x7f0000005300)=""/194, 0xc2}, 0x3}, {{&(0x7f0000005400)=@isdn, 0x80, &(0x7f00000056c0)=[{&(0x7f0000005480)=""/36, 0x24}, {&(0x7f00000054c0)=""/217, 0xd9}, {&(0x7f00000055c0)=""/30, 0x1e}, {&(0x7f0000005600)=""/142, 0x8e}], 0x4}}], 0x5, 0x2, &(0x7f0000005880)={r0, r1+10000000})
pselect6(0x40, &(0x7f00000058c0)={0x4, 0xf87, 0x4, 0x3, 0x401, 0x100000000, 0x9, 0x101}, &(0x7f0000005900)={0x81, 0x1, 0x2edd, 0x5, 0x9, 0x7fffffffffffffff, 0x3ff, 0xc5f6}, &(0x7f0000005940)={0xe, 0x2, 0x1, 0x2, 0x72, 0x5, 0x800000000, 0x7fffffff}, &(0x7f0000005980)={0x77359400}, &(0x7f0000005a00)={&(0x7f00000059c0)={[0x9]}, 0x8})
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0xb, 0x3}, {0x2, 0x9}, {0x8}}}, 0x24}, 0x1, 0x0, 0x0, 0x4008001}, 0x40004)
sendmsg$inet(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f0000000000ff00040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x0)

3.61997132s ago: executing program 3 (id=2795):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet6_int(r0, 0x29, 0x12, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0a00000004000000040000000500000000000000", @ANYRES32, @ANYBLOB="0023000000000000000000000000000000000000ff7a5a0a951760032d3b691330579bb1031ddc58fc140882d12b78d7decdc4f17450fe885a4fd3d45b89e191d23372b1e46b9b80bcd53e59c773313f6abe576e10154589181468e1267ada3f5fa407e44b9fc8876b965d1779d0037623b225b45b70169624192b09deda1fe5b0dd43586975dd0b96fc4993997ea8c40a827222d08e482f1c50d51d7e79bb0a8dabca1139daf87a10bcb5c99f28f3a38990e5d01dc952d15dbd0bf749f384e99fd22b", @ANYRES32=0x0, @ANYRES32, @ANYRESOCT=0x0, @ANYRESOCT=r1, @ANYRES8=r0, @ANYRES32=r1, @ANYRES16=r1], 0x50)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
setsockopt$sock_int(r2, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
ppoll(&(0x7f0000000500)=[{r3}], 0x1, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x20f, &(0x7f0000000e40)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb0200c23d0354a9995c878ddd8ca4e1c6aed3324d48ec13f39c2500e596728e04ac9bca959c30bbb487dbffc653ba4e37beac30610fd2b1bac86952d9c6a558eef1ad8fdbb7b7aff81112dc751b76ea727ba5f3b22cdb718a879156ab203c047c11f1ed7833411885f0ed04f3d3852205592976c09a2fc2e2242df778dedb426dad06592058bb180b1bd90228bbb3e847f9746477b8630b35c92462bb65ca80184d53cf0f2149de539030c0f8615161036b21e05a2f69c991a54fb8b86626ddf4ee567fd597c5e82e0807b66f84b5b262a32e22f08af8b434092d20f7e336d6f071d408b58e1fe397992000e18bfffad06bb5741f69266efdc66aeb2f947eff33d761ef01c63fa5723f41fe28c7e684fad5b85508e2e499212f1df0d6ccce7ddbb565729e6b6a8c43cedfee652b5dc325bd910b1131a817dbffd6ec6b11c52d669404ba8321f220fb486591f8337a5d7b28f5583a2c278b2d0de955c534e22bc34d18e4c2802a06692f161996a2c168ede40b07aed3ce7bdf2a0d4cebe7723548f87d675a1b26442da103d9b0fe790dc87223ba6fd2d90f30d6db378df3df027983cf72ee53f1629aa25f75ca4ee5cc711dc001f3077694b0b224061ae6211788eeb2f827d3dca411120b004e0bbe411fc86e45cccea5a7a363e56dc0a6bc5fb91690c081d34017b6f833bcd8bfc33c5b88c53bde68e7735dbd5ae8d05ba4795cc816665ccb32a41c13295d31f67cddd0bd6664d98ee8a7cbd785d593fca9dbd8d3c34dd011602e9ecf6e72608b32ca7ad9f415751a6d05ce301e0d0bfdd5a4f1984e14255fccab96e86f79ade676ad90296c15e9d27173a6499c5e137bb7eabd1f62ae10afdaaf787265bf552c3a8a6affc92ef00f0486780a4a89743af33d643d9fda1ecb1901bc99c5f2a249396d704a36f3fcdf3251c65847c53c664d019e5104539cf63f47a89895e1aa0a2784a8c37224bdcc174826394261329cb0e43d1cc6329b12b44d721d67deb532762a1a47dc6e88d89e8697e9b41790ac405ca2d1a650c3baf4e15d13913741fdc74e8136c4cd36b351d96c848e4aa9a70a9006d0107c1a5afdf034c3b99c8c4464afad0d8f0b48a27128fdb2062161ebbb6b22b278d571e341"], 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(0xffffffffffffffff, 0x84, 0x22, &(0x7f0000000040)={0x2, 0x206, 0x8ce, 0xf44}, 0x10)
ppoll(&(0x7f0000000100)=[{r3}], 0x1, &(0x7f0000000180)={0x77359400}, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xffffffff}, 0x1c)

3.594608976s ago: executing program 4 (id=2796):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000003180)=[{{&(0x7f0000000440)={0xa, 0x4e21, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x6}, 0x1c, &(0x7f00000028c0)=[{&(0x7f00000032c0)="0f7c", 0x2}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000002d00)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x2}}, @dstopts_2292={{0x18, 0x84, 0x4, {0x11}}}], 0x30}}], 0x2, 0x4000) (fail_nth: 44)

2.854517905s ago: executing program 4 (id=2797):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
syz_extract_tcp_res$synack(&(0x7f0000000140)={<r4=>0x41424344}, 0x1, 0x0)
syz_extract_tcp_res(&(0x7f0000000180)={0x41424344, <r5=>0x41424344}, 0x5f, 0x1)
write$tun(r0, &(0x7f0000001480)={@void, @void, @ipv6=@tcp={0xc, 0x6, "62b15d", 0x134c, 0x6, 0xff, @private2={0xfc, 0x2, '\x00', 0x1}, @private2, {[@dstopts={0x4, 0x23, '\x00', [@pad1, @generic={0x0, 0xfa, "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"}, @generic={0x8, 0xd, "6f05a52fce6008e492081b4dea"}, @jumbo={0xc2, 0x4, 0x1}, @jumbo={0xc2, 0x4, 0x80}, @ra={0x5, 0x2, 0x748}]}, @routing={0x67, 0x12, 0x1, 0xf6, 0x0, [@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private2, @private0={0xfc, 0x0, '\x00', 0x1}, @private0, @dev={0xfe, 0x80, '\x00', 0x26}, @private1={0xfc, 0x1, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00']}, @dstopts={0x62, 0x1, '\x00', [@padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}, @srh={0x87, 0xe, 0x4, 0x7, 0xa, 0x20, 0x9, [@empty, @private1={0xfc, 0x1, '\x00', 0x1}, @empty, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @mcast2, @local, @mcast1]}, @hopopts={0x2e, 0x3, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @ra={0x5, 0x2, 0xff}, @jumbo={0xc2, 0x4, 0x4}]}, @routing={0x93da25eb63dafed1, 0x6, 0x1, 0x3, 0x0, [@mcast2, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}]}, @srh={0x4, 0x6, 0x4, 0x3, 0x80, 0x8, 0xd, [@rand_addr=' \x01\x00', @private0, @dev={0xfe, 0x80, '\x00', 0x2a}]}], {{0x4e24, 0x4e24, r4, r5, 0x0, 0x0, 0x1b, 0x20, 0x8001, 0x0, 0x5, {[@sack={0x5, 0x1e, [0x2, 0x1, 0x7, 0x5, 0x4, 0xd25, 0x5]}, @timestamp={0x8, 0xa, 0xcb42d51, 0xff}, @exp_smc={0xfe, 0x6}, @generic={0x1, 0x9, "3ae9c33b231dc7"}, @sack={0x5, 0x6, [0x3]}, @sack={0x5, 0x16, [0x4, 0xffffffb5, 0x4000000, 0xfffff8b0, 0x80000001]}, @eol, @fastopen={0x22, 0x2}]}}, {"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"}}}}}, 0x1374)
r6 = socket(0x1, 0x803, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
bind$netlink(r8, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
getsockname$packet(r8, &(0x7f0000000600)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r7, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x40d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r9, 0x1}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x4}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r10=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r10}]}, 0x44}}, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNGETVNETLE(r0, 0x400454de, &(0x7f0000001140))

2.6587108s ago: executing program 1 (id=2798):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0a00000004000000040000000a"], 0x50)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000100)={0x1, &(0x7f0000000080)=[{0x40, 0x0, 0x38, 0x4}]})
ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f0000000240)=0x10001)
write(r1, &(0x7f0000000280)="4591c28e8b83", 0x6)
write$ppp(r1, &(0x7f00000002c0)="44a9287b42e120ba14373d93da925e55cd158b47f300a1b555484e9476a536544c6d6a620027a8f88b46a63d7a8ade3f5f393fac4f9d020219f02a78b6837e88ecc831a702dc36c49dec8d6ce0430b9f49f2a97f9d472d01e8ccd2731cf47225f709571666073b9ade1393f5acd0877a63714059ca795de06b4af29c9ba34333d6511def42dfd56b53694f0c707a710d0b5485326e182e12b3d1ac6cf618635b08b4bdd1b2e6bb3c0b2c9759f832d97714f44d330e1574f936dc28358ccf6333097a1cb265d4", 0xc6)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
setsockopt$packet_int(r2, 0x107, 0x13, &(0x7f00000001c0)=0x2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES16=r1, @ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r3}, 0x10)
getpeername$inet6(0xffffffffffffffff, &(0x7f0000000180)={0xa, 0x0, 0x0, @dev}, &(0x7f00000001c0)=0x1c)

2.653072585s ago: executing program 3 (id=2799):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
setsockopt$inet_tcp_int(r0, 0x6, 0x9, 0x0, 0x0)

2.558629212s ago: executing program 0 (id=2800):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
close(0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'syzkaller0\x00', <r2=>0x0})
bind$packet(r1, &(0x7f0000000080)={0x11, 0x1a, r2, 0x1, 0x1, 0x6, @broadcast}, 0x14)
bind$packet(r1, &(0x7f00000001c0)={0x11, 0x6, r2, 0x1, 0x3, 0x6, @remote}, 0x14)

520.034µs ago: executing program 3 (id=2801):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000340)={0x26, 'aead\x00', 0x0, 0x0, 'gcm_base(ctr(aes-aesni),ghash-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000005dc0)=[{0x0, 0x0, &(0x7f0000001b40)=[{&(0x7f00000003c0)="d875153ae2f514ad854e70fff6a1cdca0288", 0x12}], 0x1}], 0x1, 0x20004000)
recvmmsg(r1, &(0x7f0000000f00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000024c0)=""/4096, 0x1000}], 0x1}, 0x1}], 0x2, 0x10600, 0x0)

0s ago: executing program 3 (id=2802):
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$phonet_pipe(0x23, 0x5, 0x2)
socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x20, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x2}, @TCA_SAMPLE_RATE={0x8}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x7}}}}]}]}, 0x70}}, 0x20040000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000012000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32=r1], 0x90}}, 0x0)

kernel console output (not intermixed with test programs):

02.592305][T12138]  ? __pfx___handle_mm_fault+0x10/0x10
[  302.592358][T12138]  ? find_vma+0xe7/0x160
[  302.592384][T12138]  ? __pfx_find_vma+0x10/0x10
[  302.592414][T12138]  handle_mm_fault+0x40a/0x8e0
[  302.592455][T12138]  do_user_addr_fault+0x764/0x1390
[  302.592508][T12138]  exc_page_fault+0x76/0xf0
[  302.592539][T12138]  asm_exc_page_fault+0x26/0x30
[  302.592559][T12138] RIP: 0010:__put_user_nocheck_4+0x3/0x10
[  302.592593][T12138] Code: d9 0f 01 cb 89 01 31 c9 0f 01 ca c3 cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 01 cb <89> 01 31 c9 0f 01 ca e9 c1 44 03 00 90 90 90 90 90 90 90 90 90 90
[  302.592611][T12138] RSP: 0018:ffffc9001c2978b8 EFLAGS: 00050246
[  302.592629][T12138] RAX: 0000000000000020 RBX: 0000000000000020 RCX: 0000200000004030
[  302.592642][T12138] RDX: ffff888032f8da00 RSI: 0000000000000000 RDI: 00000000ffffffff
[  302.592655][T12138] RBP: ffffc9001c297a30 R08: ffffffff8fa37e37 R09: 1ffffffff1f46fc6
[  302.592669][T12138] R10: dffffc0000000000 R11: fffffbfff1f46fc7 R12: 0000000000000000
[  302.592683][T12138] R13: dffffc0000000000 R14: 0000000000000000 R15: 0000200000004000
[  302.592717][T12138]  ____sys_recvmsg+0x2ab/0x460
[  302.592752][T12138]  ? __pfx_____sys_recvmsg+0x10/0x10
[  302.592792][T12138]  ? import_iovec+0x74/0xa0
[  302.592820][T12138]  ___sys_recvmsg+0x1b5/0x510
[  302.592847][T12138]  ? __pfx____sys_recvmsg+0x10/0x10
[  302.592905][T12138]  ? __might_fault+0xb0/0x130
[  302.592938][T12138]  do_recvmmsg+0x307/0x770
[  302.592971][T12138]  ? __pfx_do_recvmmsg+0x10/0x10
[  302.593008][T12138]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  302.593056][T12138]  __x64_sys_recvmmsg+0x190/0x240
[  302.593082][T12138]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  302.593102][T12138]  ? rcu_is_watching+0x15/0xb0
[  302.593130][T12138]  ? do_syscall_64+0xbe/0x3b0
[  302.593170][T12138]  do_syscall_64+0xfa/0x3b0
[  302.593198][T12138]  ? lockdep_hardirqs_on+0x9c/0x150
[  302.593226][T12138]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.593246][T12138]  ? clear_bhb_loop+0x60/0xb0
[  302.593272][T12138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.593291][T12138] RIP: 0033:0x7f3717f8ebe9
[  302.593309][T12138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.593327][T12138] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  302.593347][T12138] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  302.593362][T12138] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  302.593375][T12138] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  302.593387][T12138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  302.593398][T12138] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  302.593431][T12138]  </TASK>
[  304.030351][ T5181] Bluetooth: hci4: command 0x0406 tx timeout
[  304.585098][T12201] veth11: entered promiscuous mode
[  304.597681][T12201] Ã: (slave veth11): Enslaving as an active interface with an up link
[  305.269839][T12225] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  305.469346][T12233] gre0: entered allmulticast mode
[  305.485316][T12233] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1759'.
[  305.512160][T12233] netlink: 120 bytes leftover after parsing attributes in process `syz.0.1759'.
[  305.579735][T12243] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1762'.
[  305.717464][T12233] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1759'.
[  306.026236][T12232] gre0: left allmulticast mode
[  306.405534][T12276] FAULT_INJECTION: forcing a failure.
[  306.405534][T12276] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  306.433617][T12276] CPU: 0 UID: 0 PID: 12276 Comm: syz.2.1770 Not tainted syzkaller #0 PREEMPT(full) 
[  306.433657][T12276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  306.433670][T12276] Call Trace:
[  306.433679][T12276]  <TASK>
[  306.433691][T12276]  dump_stack_lvl+0x189/0x250
[  306.433723][T12276]  ? __pfx____ratelimit+0x10/0x10
[  306.433752][T12276]  ? __pfx_dump_stack_lvl+0x10/0x10
[  306.433780][T12276]  ? __pfx__printk+0x10/0x10
[  306.433823][T12276]  should_fail_ex+0x414/0x560
[  306.433858][T12276]  _copy_to_user+0x31/0xb0
[  306.433886][T12276]  simple_read_from_buffer+0xe1/0x170
[  306.433921][T12276]  proc_fail_nth_read+0x1b3/0x220
[  306.433949][T12276]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  306.433977][T12276]  ? rw_verify_area+0x2a6/0x4d0
[  306.434002][T12276]  ? __lock_acquire+0xab9/0xd20
[  306.434031][T12276]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  306.434057][T12276]  vfs_read+0x200/0xa30
[  306.434083][T12276]  ? fdget_pos+0x247/0x320
[  306.434106][T12276]  ? __pfx___mutex_lock+0x10/0x10
[  306.434138][T12276]  ? __pfx_vfs_read+0x10/0x10
[  306.434168][T12276]  ? __fget_files+0x2a/0x420
[  306.434205][T12276]  ? __fget_files+0x3a0/0x420
[  306.434235][T12276]  ? __fget_files+0x2a/0x420
[  306.434280][T12276]  ksys_read+0x145/0x250
[  306.434311][T12276]  ? __pfx_ksys_read+0x10/0x10
[  306.434335][T12276]  ? rcu_is_watching+0x15/0xb0
[  306.434363][T12276]  ? do_syscall_64+0xbe/0x3b0
[  306.434394][T12276]  do_syscall_64+0xfa/0x3b0
[  306.434419][T12276]  ? lockdep_hardirqs_on+0x9c/0x150
[  306.434443][T12276]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.434460][T12276]  ? clear_bhb_loop+0x60/0xb0
[  306.434482][T12276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.434499][T12276] RIP: 0033:0x7fa80fd8d5fc
[  306.434516][T12276] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  306.434531][T12276] RSP: 002b:00007fa810bf7030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  306.434550][T12276] RAX: ffffffffffffffda RBX: 00007fa80ffb5fa0 RCX: 00007fa80fd8d5fc
[  306.434563][T12276] RDX: 000000000000000f RSI: 00007fa810bf70a0 RDI: 0000000000000005
[  306.434574][T12276] RBP: 00007fa810bf7090 R08: 0000000000000000 R09: 0000000000000000
[  306.434585][T12276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.434595][T12276] R13: 00007fa80ffb6038 R14: 00007fa80ffb5fa0 R15: 00007ffc71f19da8
[  306.434634][T12276]  </TASK>
[  306.794098][T12281] netlink: 92 bytes leftover after parsing attributes in process `syz.0.1771'.
[  307.894901][T12320] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1782'.
[  308.909252][T12343] FAULT_INJECTION: forcing a failure.
[  308.909252][T12343] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.931451][T12343] CPU: 1 UID: 0 PID: 12343 Comm: syz.0.1789 Not tainted syzkaller #0 PREEMPT(full) 
[  308.931481][T12343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  308.931495][T12343] Call Trace:
[  308.931504][T12343]  <TASK>
[  308.931513][T12343]  dump_stack_lvl+0x189/0x250
[  308.931545][T12343]  ? __pfx____ratelimit+0x10/0x10
[  308.931585][T12343]  ? __pfx_dump_stack_lvl+0x10/0x10
[  308.931610][T12343]  ? __pfx__printk+0x10/0x10
[  308.931656][T12343]  should_fail_ex+0x414/0x560
[  308.931690][T12343]  _copy_to_user+0x31/0xb0
[  308.931717][T12343]  bpf_test_finish+0x1ab/0x700
[  308.931760][T12343]  ? __pfx_bpf_test_finish+0x10/0x10
[  308.931798][T12343]  ? slab_build_skb+0x273/0x3e0
[  308.931835][T12343]  bpf_prog_test_run_skb+0xed5/0x1560
[  308.931884][T12343]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  308.931916][T12343]  bpf_prog_test_run+0x2c7/0x340
[  308.931950][T12343]  __sys_bpf+0x581/0x870
[  308.931980][T12343]  ? __pfx___sys_bpf+0x10/0x10
[  308.932021][T12343]  ? ksys_write+0x22a/0x250
[  308.932054][T12343]  ? __pfx_ksys_write+0x10/0x10
[  308.932078][T12343]  ? rcu_is_watching+0x15/0xb0
[  308.932106][T12343]  __x64_sys_bpf+0x7c/0x90
[  308.932132][T12343]  do_syscall_64+0xfa/0x3b0
[  308.932161][T12343]  ? lockdep_hardirqs_on+0x9c/0x150
[  308.932190][T12343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.932211][T12343]  ? clear_bhb_loop+0x60/0xb0
[  308.932235][T12343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.932255][T12343] RIP: 0033:0x7f3717f8ebe9
[  308.932273][T12343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  308.932290][T12343] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  308.932311][T12343] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  308.932325][T12343] RDX: 0000000000000050 RSI: 0000200000000340 RDI: 000000000000000a
[  308.932337][T12343] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  308.932350][T12343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.932362][T12343] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  308.932398][T12343]  </TASK>
[  308.947190][T12345] openvswitch: netlink: Message has 8 unknown bytes.
[  309.449993][T12362] netlink: 156 bytes leftover after parsing attributes in process `syz.0.1792'.
[  309.936519][T12382] sctp: [Deprecated]: syz.2.1801 (pid 12382) Use of int in maxseg socket option.
[  309.936519][T12382] Use struct sctp_assoc_value instead
[  309.984332][T12382] sctp: [Deprecated]: syz.2.1801 (pid 12382) Use of int in maxseg socket option.
[  309.984332][T12382] Use struct sctp_assoc_value instead
[  310.005468][T12388] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1800'.
[  310.045945][T12390] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1802'.
[  310.292971][T12401] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1805'.
[  310.338370][T12408] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1808'.
[  310.591302][T12415] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1809'.
[  310.998875][T12445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1818'.
[  311.006464][T12444] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1817'.
[  311.220528][   T10] IPVS: starting estimator thread 0...
[  311.330395][T12454] IPVS: using max 24 ests per chain, 57600 per kthread
[  311.654776][T12475] netlink: 'syz.4.1826': attribute type 10 has an invalid length.
[  312.302845][T12497] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  312.316824][T12497] syzkaller0: entered promiscuous mode
[  312.335232][T12497] syzkaller0: entered allmulticast mode
[  312.386976][T12496] tipc: Resetting bearer <eth:syzkaller0>
[  312.429619][T12496] tipc: Disabling bearer <eth:syzkaller0>
[  312.658752][T12503] __nla_validate_parse: 2 callbacks suppressed
[  312.658774][T12503] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1834'.
[  313.014691][T12509] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  313.065430][T12509] syzkaller0: entered promiscuous mode
[  313.079721][T12509] syzkaller0: entered allmulticast mode
[  313.160534][T12509] tipc: Resetting bearer <eth:syzkaller0>
[  313.280954][T12518] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1838'.
[  313.297998][T12508] tipc: Resetting bearer <eth:syzkaller0>
[  313.380260][T12508] tipc: Disabling bearer <eth:syzkaller0>
[  313.468874][T12520] tap0: tun_chr_ioctl cmd 1074025675
[  313.474234][T12520] tap0: persist disabled
[  313.509703][T12520] tap0: tun_chr_ioctl cmd 1074025676
[  313.515129][T12520] tap0: owner set to 0
[  313.583732][T12523] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1842'.
[  313.610787][T12523] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1842'.
[  313.881152][T12536] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1846'.
[  313.939632][T12538] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1847'.
[  314.362372][T12547] syzkaller0: entered promiscuous mode
[  314.367914][T12547] syzkaller0: entered allmulticast mode
[  314.381348][T12555] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1854'.
[  314.417398][T12559] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1853'.
[  314.879767][T12573] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1858'.
[  315.034737][T12582] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1862'.
[  315.046768][T12582] netlink: 'syz.2.1862': attribute type 7 has an invalid length.
[  315.055376][T12582] netlink: 'syz.2.1862': attribute type 8 has an invalid length.
[  316.367403][T12582] ip6gretap0: entered promiscuous mode
[  316.374926][T12582] syz_tun: entered promiscuous mode
[  316.391510][T12582] ip6gretap0: left promiscuous mode
[  316.402826][T12582] syz_tun: left promiscuous mode
[  316.489060][T12594] netlink: 'syz.0.1867': attribute type 1 has an invalid length.
[  316.688043][T12596] bond6: (slave geneve2): making interface the new active one
[  316.713418][T12596] bond6: (slave geneve2): Enslaving as an active interface with an up link
[  316.741040][ T6151] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  316.759924][ T6151] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  316.797271][T12603] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  316.841895][T12605] syzkaller0: entered promiscuous mode
[  316.847428][T12605] syzkaller0: entered allmulticast mode
[  316.937243][ T6151] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  316.957510][ T6151] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  316.986350][T12603] tipc: Resetting bearer <eth:syzkaller0>
[  317.070382][T12600] tipc: Resetting bearer <eth:syzkaller0>
[  317.087733][T12600] tipc: Disabling bearer <eth:syzkaller0>
[  317.978417][T12651] __nla_validate_parse: 3 callbacks suppressed
[  317.978440][T12651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1882'.
[  318.045331][T12653] netlink: 188 bytes leftover after parsing attributes in process `syz.2.1883'.
[  318.199899][T12657] netlink: 'syz.1.1884': attribute type 1 has an invalid length.
[  318.617696][T12676] workqueue: name exceeds WQ_NAME_LEN. Truncating to: žÀ^–>º>ùMv^µ
â侦¸ÑKc'A¥»–
[  319.002950][T12692] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.1896'.
[  319.290360][T12695] 8021q: adding VLAN 0 to HW filter on device bond2
[  319.296852][T12699] FAULT_INJECTION: forcing a failure.
[  319.296852][T12699] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.308629][T12692] netlink: 'syz.3.1896': attribute type 1 has an invalid length.
[  319.348327][T12699] CPU: 1 UID: 0 PID: 12699 Comm: syz.1.1899 Not tainted syzkaller #0 PREEMPT(full) 
[  319.348356][T12699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  319.348369][T12699] Call Trace:
[  319.348378][T12699]  <TASK>
[  319.348387][T12699]  dump_stack_lvl+0x189/0x250
[  319.348419][T12699]  ? __pfx____ratelimit+0x10/0x10
[  319.348450][T12699]  ? __pfx_dump_stack_lvl+0x10/0x10
[  319.348476][T12699]  ? __pfx__printk+0x10/0x10
[  319.348523][T12699]  should_fail_ex+0x414/0x560
[  319.348557][T12699]  _copy_to_user+0x31/0xb0
[  319.348584][T12699]  simple_read_from_buffer+0xe1/0x170
[  319.348622][T12699]  proc_fail_nth_read+0x1b3/0x220
[  319.348650][T12699]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  319.348679][T12699]  ? rw_verify_area+0x2a6/0x4d0
[  319.348705][T12699]  ? __lock_acquire+0xab9/0xd20
[  319.348735][T12699]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  319.348761][T12699]  vfs_read+0x200/0xa30
[  319.348787][T12699]  ? fdget_pos+0x247/0x320
[  319.348813][T12699]  ? __pfx___mutex_lock+0x10/0x10
[  319.348845][T12699]  ? __pfx_vfs_read+0x10/0x10
[  319.348875][T12699]  ? __fget_files+0x2a/0x420
[  319.348913][T12699]  ? __fget_files+0x3a0/0x420
[  319.348949][T12699]  ? __fget_files+0x2a/0x420
[  319.348993][T12699]  ksys_read+0x145/0x250
[  319.349025][T12699]  ? __pfx_ksys_read+0x10/0x10
[  319.349056][T12699]  ? rcu_is_watching+0x15/0xb0
[  319.349084][T12699]  ? do_syscall_64+0xbe/0x3b0
[  319.349119][T12699]  do_syscall_64+0xfa/0x3b0
[  319.349148][T12699]  ? lockdep_hardirqs_on+0x9c/0x150
[  319.349177][T12699]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.349198][T12699]  ? clear_bhb_loop+0x60/0xb0
[  319.349222][T12699]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.349243][T12699] RIP: 0033:0x7fb73998d5fc
[  319.349262][T12699] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  319.349280][T12699] RSP: 002b:00007fb73a898030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  319.349303][T12699] RAX: ffffffffffffffda RBX: 00007fb739bb5fa0 RCX: 00007fb73998d5fc
[  319.349319][T12699] RDX: 000000000000000f RSI: 00007fb73a8980a0 RDI: 0000000000000009
[  319.349332][T12699] RBP: 00007fb73a898090 R08: 0000000000000000 R09: 0000000000000000
[  319.349345][T12699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.349358][T12699] R13: 00007fb739bb6038 R14: 00007fb739bb5fa0 R15: 00007ffde8df0518
[  319.349394][T12699]  </TASK>
[  319.886952][T12712] FAULT_INJECTION: forcing a failure.
[  319.886952][T12712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  319.988859][T12712] CPU: 1 UID: 0 PID: 12712 Comm: syz.3.1904 Not tainted syzkaller #0 PREEMPT(full) 
[  319.988890][T12712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  319.988903][T12712] Call Trace:
[  319.988911][T12712]  <TASK>
[  319.988920][T12712]  dump_stack_lvl+0x189/0x250
[  319.988951][T12712]  ? __pfx____ratelimit+0x10/0x10
[  319.988980][T12712]  ? __pfx_dump_stack_lvl+0x10/0x10
[  319.989013][T12712]  ? __pfx__printk+0x10/0x10
[  319.989044][T12712]  ? __might_fault+0xb0/0x130
[  319.989086][T12712]  should_fail_ex+0x414/0x560
[  319.989120][T12712]  _copy_from_user+0x2d/0xb0
[  319.989145][T12712]  ___sys_recvmsg+0x12e/0x510
[  319.989176][T12712]  ? __pfx____sys_recvmsg+0x10/0x10
[  319.989235][T12712]  ? __might_fault+0xb0/0x130
[  319.989269][T12712]  do_recvmmsg+0x307/0x770
[  319.989302][T12712]  ? __pfx_do_recvmmsg+0x10/0x10
[  319.989340][T12712]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  319.989392][T12712]  __x64_sys_recvmmsg+0x190/0x240
[  319.989420][T12712]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  319.989441][T12712]  ? rcu_is_watching+0x15/0xb0
[  319.989468][T12712]  ? do_syscall_64+0xbe/0x3b0
[  319.989504][T12712]  do_syscall_64+0xfa/0x3b0
[  319.989533][T12712]  ? lockdep_hardirqs_on+0x9c/0x150
[  319.989562][T12712]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.989583][T12712]  ? clear_bhb_loop+0x60/0xb0
[  319.989609][T12712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.989629][T12712] RIP: 0033:0x7f5f1ab8ebe9
[  319.989648][T12712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.989667][T12712] RSP: 002b:00007f5f1ba84038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  319.989689][T12712] RAX: ffffffffffffffda RBX: 00007f5f1adb5fa0 RCX: 00007f5f1ab8ebe9
[  319.989705][T12712] RDX: 0000000004000032 RSI: 0000200000004c00 RDI: 0000000000000005
[  319.989718][T12712] RBP: 00007f5f1ba84090 R08: 0000000000000000 R09: 0000000000000000
[  319.989731][T12712] R10: 0000000040000021 R11: 0000000000000246 R12: 0000000000000002
[  319.989745][T12712] R13: 00007f5f1adb6038 R14: 00007f5f1adb5fa0 R15: 00007ffc7180eae8
[  319.989780][T12712]  </TASK>
[  320.483292][T12726] netlink: 'syz.4.1905': attribute type 10 has an invalid length.
[  320.492057][T12714] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1903'.
[  320.674534][T12733] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  320.977068][T12738] hsr0: left allmulticast mode
[  320.984832][T12738] bond0: left allmulticast mode
[  320.998885][T12738] bond_slave_0: left allmulticast mode
[  321.015751][T12738] bond_slave_1: left allmulticast mode
[  321.053862][T12738] veth3: left allmulticast mode
[  321.077693][T12738] veth5: left allmulticast mode
[  321.095538][T12750] netlink: 'syz.1.1914': attribute type 10 has an invalid length.
[  321.098734][T12738] veth7: left allmulticast mode
[  321.115979][T12738] batadv0: left allmulticast mode
[  321.807983][T12767] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1921'.
[  321.977179][T12777] batadv2: entered promiscuous mode
[  322.031904][T12787] FAULT_INJECTION: forcing a failure.
[  322.031904][T12787] name failslab, interval 1, probability 0, space 0, times 0
[  322.064379][T12789] FAULT_INJECTION: forcing a failure.
[  322.064379][T12789] name failslab, interval 1, probability 0, space 0, times 0
[  322.077203][T12789] CPU: 1 UID: 0 PID: 12789 Comm: syz.4.1927 Not tainted syzkaller #0 PREEMPT(full) 
[  322.077231][T12789] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  322.077244][T12789] Call Trace:
[  322.077253][T12789]  <TASK>
[  322.077262][T12789]  dump_stack_lvl+0x189/0x250
[  322.077294][T12789]  ? __pfx____ratelimit+0x10/0x10
[  322.077324][T12789]  ? __pfx_dump_stack_lvl+0x10/0x10
[  322.077350][T12789]  ? __pfx__printk+0x10/0x10
[  322.077383][T12789]  ? rcu_is_watching+0x15/0xb0
[  322.077416][T12789]  should_fail_ex+0x414/0x560
[  322.077450][T12789]  should_failslab+0xa8/0x100
[  322.077483][T12789]  kmem_cache_alloc_noprof+0x73/0x3c0
[  322.077511][T12789]  ? skb_clone+0x212/0x3a0
[  322.077539][T12789]  skb_clone+0x212/0x3a0
[  322.077567][T12789]  bpf_clone_redirect+0xad/0x3d0
[  322.077603][T12789]  ? bpf_test_run+0x197/0x7b0
[  322.077633][T12789]  bpf_prog_c08ef512837047f4+0x62/0x6b
[  322.077659][T12789]  ? preempt_schedule+0xae/0xc0
[  322.077685][T12789]  ? bpf_test_run+0x197/0x7b0
[  322.077715][T12789]  ? preempt_schedule_common+0x83/0xd0
[  322.077744][T12789]  ? preempt_schedule+0xae/0xc0
[  322.077770][T12789]  ? __pfx_preempt_schedule+0x10/0x10
[  322.077795][T12789]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  322.077831][T12789]  ? preempt_schedule_notrace_thunk+0x16/0x30
[  322.077864][T12789]  ? __local_bh_disable_ip+0xf1/0x190
[  322.077886][T12789]  ? __pfx___cant_migrate+0x10/0x10
[  322.077904][T12789]  ? __local_bh_enable_ip+0x12d/0x1c0
[  322.077926][T12789]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  322.077952][T12789]  ? bpf_test_timer_continue+0x136/0x350
[  322.077990][T12789]  bpf_test_run+0x315/0x7b0
[  322.078047][T12789]  ? __pfx_bpf_test_run+0x10/0x10
[  322.078106][T12789]  ? slab_build_skb+0x273/0x3e0
[  322.078137][T12789]  ? convert___skb_to_skb+0x3d/0x590
[  322.078170][T12789]  bpf_prog_test_run_skb+0xb30/0x1560
[  322.078226][T12789]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  322.078258][T12789]  bpf_prog_test_run+0x2c7/0x340
[  322.078293][T12789]  __sys_bpf+0x581/0x870
[  322.078324][T12789]  ? __pfx___sys_bpf+0x10/0x10
[  322.078369][T12789]  ? ksys_write+0x22a/0x250
[  322.078401][T12789]  ? __pfx_ksys_write+0x10/0x10
[  322.078426][T12789]  ? rcu_is_watching+0x15/0xb0
[  322.078457][T12789]  __x64_sys_bpf+0x7c/0x90
[  322.078495][T12789]  do_syscall_64+0xfa/0x3b0
[  322.078525][T12789]  ? lockdep_hardirqs_on+0x9c/0x150
[  322.078553][T12789]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.078574][T12789]  ? clear_bhb_loop+0x60/0xb0
[  322.078599][T12789]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.078619][T12789] RIP: 0033:0x7faa17b8ebe9
[  322.078638][T12789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.078656][T12789] RSP: 002b:00007faa189b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  322.078678][T12789] RAX: ffffffffffffffda RBX: 00007faa17db5fa0 RCX: 00007faa17b8ebe9
[  322.078693][T12789] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a
[  322.078706][T12789] RBP: 00007faa189b4090 R08: 0000000000000000 R09: 0000000000000000
[  322.078719][T12789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  322.078731][T12789] R13: 00007faa17db6038 R14: 00007faa17db5fa0 R15: 00007ffe3aad8db8
[  322.078765][T12789]  </TASK>
[  322.402562][T12787] CPU: 0 UID: 0 PID: 12787 Comm: syz.1.1926 Not tainted syzkaller #0 PREEMPT(full) 
[  322.402594][T12787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  322.402608][T12787] Call Trace:
[  322.402616][T12787]  <TASK>
[  322.402625][T12787]  dump_stack_lvl+0x189/0x250
[  322.402656][T12787]  ? __pfx____ratelimit+0x10/0x10
[  322.402686][T12787]  ? __pfx_dump_stack_lvl+0x10/0x10
[  322.402711][T12787]  ? __pfx__printk+0x10/0x10
[  322.402748][T12787]  ? __pfx___might_resched+0x10/0x10
[  322.402767][T12787]  ? fs_reclaim_acquire+0x7d/0x100
[  322.402799][T12787]  should_fail_ex+0x414/0x560
[  322.402827][T12787]  should_failslab+0xa8/0x100
[  322.402863][T12787]  kmem_cache_alloc_noprof+0x73/0x3c0
[  322.402887][T12787]  ? __kernfs_new_node+0xd7/0x7e0
[  322.402912][T12787]  __kernfs_new_node+0xd7/0x7e0
[  322.402932][T12787]  ? __lock_acquire+0xab9/0xd20
[  322.402964][T12787]  ? __pfx___kernfs_new_node+0x10/0x10
[  322.402986][T12787]  ? kernfs_root+0x1c/0x230
[  322.403011][T12787]  ? kernfs_root+0x1c/0x230
[  322.403029][T12787]  ? kernfs_root+0x1c/0x230
[  322.403045][T12787]  ? kernfs_root+0x1c/0x230
[  322.403068][T12787]  kernfs_new_node+0x102/0x210
[  322.403093][T12787]  __kernfs_create_file+0x4b/0x2e0
[  322.403122][T12787]  sysfs_add_file_mode_ns+0x238/0x300
[  322.403157][T12787]  internal_create_group+0x66d/0x1110
[  322.403192][T12787]  ? __pfx_internal_create_group+0x10/0x10
[  322.403222][T12787]  sysfs_create_groups+0x59/0x120
[  322.403244][T12787]  device_add_attrs+0x1c4/0x5a0
[  322.403268][T12787]  ? __pfx_device_add_attrs+0x10/0x10
[  322.403283][T12787]  ? kobject_put+0x43f/0x480
[  322.403314][T12787]  ? device_add_class_symlinks+0x21f/0x240
[  322.403335][T12787]  device_add+0x496/0xb50
[  322.403351][T12787]  ? device_initialize+0x24b/0x440
[  322.403370][T12787]  wakeup_source_sysfs_add+0x1af/0x280
[  322.403393][T12787]  wakeup_source_register+0x18a/0x380
[  322.403426][T12787]  ep_insert+0xff3/0x19e0
[  322.403466][T12787]  ? __pfx_ep_insert+0x10/0x10
[  322.403503][T12787]  ? bpf_lsm_capable+0x9/0x20
[  322.403536][T12787]  do_epoll_ctl+0x7f4/0xe80
[  322.403570][T12787]  __x64_sys_epoll_ctl+0x163/0x1a0
[  322.403600][T12787]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  322.403624][T12787]  ? rcu_is_watching+0x15/0xb0
[  322.403647][T12787]  ? do_syscall_64+0xbe/0x3b0
[  322.403676][T12787]  do_syscall_64+0xfa/0x3b0
[  322.403701][T12787]  ? lockdep_hardirqs_on+0x9c/0x150
[  322.403725][T12787]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.403742][T12787]  ? clear_bhb_loop+0x60/0xb0
[  322.403764][T12787]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  322.403780][T12787] RIP: 0033:0x7fb73998ebe9
[  322.403809][T12787] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  322.403823][T12787] RSP: 002b:00007fb73a877038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  322.403849][T12787] RAX: ffffffffffffffda RBX: 00007fb739bb6090 RCX: 00007fb73998ebe9
[  322.403862][T12787] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000003
[  322.403872][T12787] RBP: 00007fb73a877090 R08: 0000000000000000 R09: 0000000000000000
[  322.403882][T12787] R10: 0000200000000480 R11: 0000000000000246 R12: 0000000000000002
[  322.403893][T12787] R13: 00007fb739bb6128 R14: 00007fb739bb6090 R15: 00007ffde8df0518
[  322.403920][T12787]  </TASK>
[  322.728299][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  322.943439][T12794] netlink: 'syz.4.1929': attribute type 1 has an invalid length.
[  322.969574][T12795] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1930'.
[  323.034029][T12798] netlink: 264 bytes leftover after parsing attributes in process `syz.1.1931'.
[  323.055850][T12795] chnl_net:caif_netlink_parms(): no params data found
[  323.064679][T12800] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1932'.
[  323.107399][T12800] netlink: 'syz.0.1932': attribute type 1 has an invalid length.
[  323.140238][T12798] batman_adv: batadv0: Adding interface: macvlan1
[  323.146707][T12798] batman_adv: batadv0: The MTU of interface macvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  323.175700][T12798] batman_adv: batadv0: Not using interface macvlan1 (retrying later): interface not active
[  323.233075][T12794] bond3: (slave geneve2): making interface the new active one
[  323.255160][T12794] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  323.382093][ T6149] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  323.405804][ T6149] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  323.459106][ T6149] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  323.491912][ T6149] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  323.769131][T12824] netlink: 'syz.1.1941': attribute type 10 has an invalid length.
[  323.809376][T12824] batman_adv: batadv0: Adding interface: netdevsim0
[  323.816481][T12824] batman_adv: batadv0: The MTU of interface netdevsim0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  323.860391][T12824] batman_adv: batadv0: Not using interface netdevsim0 (retrying later): interface not active
[  323.896609][T12833] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1943'.
[  323.911897][T12824] openvswitch: netlink: Message has 20 unknown bytes.
[  323.914561][T12827] vlan2: entered promiscuous mode
[  323.919644][T12824] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  323.951057][T12832] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1944'.
[  324.006656][T12838] veth0_to_bond: entered allmulticast mode
[  324.381869][T12846] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) !
[  325.063652][T12880] FAULT_INJECTION: forcing a failure.
[  325.063652][T12880] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  325.078455][T12880] CPU: 1 UID: 0 PID: 12880 Comm: syz.3.1957 Not tainted syzkaller #0 PREEMPT(full) 
[  325.078482][T12880] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  325.078495][T12880] Call Trace:
[  325.078502][T12880]  <TASK>
[  325.078511][T12880]  dump_stack_lvl+0x189/0x250
[  325.078538][T12880]  ? __pfx____ratelimit+0x10/0x10
[  325.078564][T12880]  ? __pfx_dump_stack_lvl+0x10/0x10
[  325.078585][T12880]  ? __pfx__printk+0x10/0x10
[  325.078610][T12880]  ? __might_fault+0xb0/0x130
[  325.078659][T12880]  should_fail_ex+0x414/0x560
[  325.078689][T12880]  _copy_from_user+0x2d/0xb0
[  325.078713][T12880]  ___sys_recvmsg+0x12e/0x510
[  325.078744][T12880]  ? __pfx____sys_recvmsg+0x10/0x10
[  325.078803][T12880]  ? __might_fault+0xb0/0x130
[  325.078836][T12880]  do_recvmmsg+0x307/0x770
[  325.078869][T12880]  ? __pfx_do_recvmmsg+0x10/0x10
[  325.078906][T12880]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  325.078959][T12880]  __x64_sys_recvmmsg+0x190/0x240
[  325.078986][T12880]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  325.079008][T12880]  ? rcu_is_watching+0x15/0xb0
[  325.079035][T12880]  ? do_syscall_64+0xbe/0x3b0
[  325.079072][T12880]  do_syscall_64+0xfa/0x3b0
[  325.079101][T12880]  ? lockdep_hardirqs_on+0x9c/0x150
[  325.079129][T12880]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.079150][T12880]  ? clear_bhb_loop+0x60/0xb0
[  325.079176][T12880]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  325.079196][T12880] RIP: 0033:0x7f5f1ab8ebe9
[  325.079216][T12880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  325.079234][T12880] RSP: 002b:00007f5f1ba84038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  325.079258][T12880] RAX: ffffffffffffffda RBX: 00007f5f1adb5fa0 RCX: 00007f5f1ab8ebe9
[  325.079273][T12880] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  325.079287][T12880] RBP: 00007f5f1ba84090 R08: 0000000000000000 R09: 0000000000000000
[  325.079300][T12880] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  325.079313][T12880] R13: 00007f5f1adb6038 R14: 00007f5f1adb5fa0 R15: 00007ffc7180eae8
[  325.079347][T12880]  </TASK>
[  325.482113][T12886] netlink: 'syz.1.1961': attribute type 10 has an invalid length.
[  325.521983][T12886] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1961'.
[  325.544365][T12893] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  325.641182][T12893] ipvlan3: entered promiscuous mode
[  325.651310][T12893] 8021q: adding VLAN 0 to HW filter on device ipvlan3
[  325.897649][T12907] netlink: 'syz.3.1967': attribute type 1 has an invalid length.
[  325.928420][T12907] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1967'.
[  326.149368][T12917] netlink: 'syz.2.1971': attribute type 10 has an invalid length.
[  326.178976][T12917] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1971'.
[  326.194708][T12917] team0: entered promiscuous mode
[  326.200971][T12917] team_slave_0: entered promiscuous mode
[  326.206963][T12917] team_slave_1: entered promiscuous mode
[  326.214730][T12917] 8021q: adding VLAN 0 to HW filter on device team0
[  326.362854][T12933] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1976'.
[  326.737127][T12948] netlink: 212376 bytes leftover after parsing attributes in process `syz.2.1981'.
[  327.049540][T12959] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1986'.
[  327.367628][T12972] af_packet: tpacket_rcv: packet too big, clamped from 64993 to 3952. macoff=96
[  327.408635][T12976] netlink: 'syz.2.1993': attribute type 1 has an invalid length.
[  327.692227][   T12] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  327.716111][   T12] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  327.770430][   T12] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  327.797868][T12990] unsupported nla_type 65024
[  327.810974][   T12] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  328.862628][T13024] __nla_validate_parse: 6 callbacks suppressed
[  328.862648][T13024] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2007'.
[  329.021858][T13030] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2009'.
[  329.081750][T13030] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2009'.
[  329.095831][T13030] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2009'.
[  329.167551][T13033] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  329.220025][T13033] syzkaller0: entered promiscuous mode
[  329.225801][T13033] syzkaller0: entered allmulticast mode
[  329.300414][T13033] tipc: Resetting bearer <eth:syzkaller0>
[  329.341077][T13032] tipc: Resetting bearer <eth:syzkaller0>
[  329.439585][T13032] tipc: Disabling bearer <eth:syzkaller0>
[  329.672530][T13049] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2017'.
[  329.693431][T13049] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2017'.
[  329.797085][T13054] 8021q: adding VLAN 0 to HW filter on device team0
[  329.831871][T13054] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  329.898568][T13049] bridge0: port 1(vlan0) entered blocking state
[  329.915065][T13049] bridge0: port 1(vlan0) entered disabled state
[  329.948999][T13049] vlan0: entered allmulticast mode
[  329.964029][T13049] bridge0: entered allmulticast mode
[  330.001241][T13049] vlan0: left allmulticast mode
[  330.011605][T13049] bridge0: left allmulticast mode
[  330.053957][T13073] netem: change failed
[  330.066900][T13061] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  330.095151][T13062] pim6reg1: entered promiscuous mode
[  330.101093][T13062] pim6reg1: entered allmulticast mode
[  330.509051][T13092] FAULT_INJECTION: forcing a failure.
[  330.509051][T13092] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  330.555613][T13092] CPU: 1 UID: 0 PID: 13092 Comm: syz.1.2027 Not tainted syzkaller #0 PREEMPT(full) 
[  330.555643][T13092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  330.555657][T13092] Call Trace:
[  330.555665][T13092]  <TASK>
[  330.555673][T13092]  dump_stack_lvl+0x189/0x250
[  330.555705][T13092]  ? __pfx____ratelimit+0x10/0x10
[  330.555736][T13092]  ? __pfx_dump_stack_lvl+0x10/0x10
[  330.555761][T13092]  ? __pfx__printk+0x10/0x10
[  330.555793][T13092]  ? __might_fault+0xb0/0x130
[  330.555836][T13092]  should_fail_ex+0x414/0x560
[  330.555870][T13092]  _copy_from_user+0x2d/0xb0
[  330.555896][T13092]  ___sys_sendmsg+0x158/0x2a0
[  330.555922][T13092]  ? __pfx____sys_sendmsg+0x10/0x10
[  330.555988][T13092]  ? __fget_files+0x2a/0x420
[  330.556019][T13092]  ? __fget_files+0x3a0/0x420
[  330.556065][T13092]  __x64_sys_sendmsg+0x19b/0x260
[  330.556092][T13092]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  330.556126][T13092]  ? __pfx_ksys_write+0x10/0x10
[  330.556162][T13092]  ? do_syscall_64+0xbe/0x3b0
[  330.556198][T13092]  do_syscall_64+0xfa/0x3b0
[  330.556228][T13092]  ? lockdep_hardirqs_on+0x9c/0x150
[  330.556256][T13092]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.556278][T13092]  ? clear_bhb_loop+0x60/0xb0
[  330.556305][T13092]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  330.556333][T13092] RIP: 0033:0x7fb73998ebe9
[  330.556352][T13092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  330.556371][T13092] RSP: 002b:00007fb73a877038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  330.556392][T13092] RAX: ffffffffffffffda RBX: 00007fb739bb6090 RCX: 00007fb73998ebe9
[  330.556408][T13092] RDX: 0000000004044014 RSI: 0000200000000200 RDI: 0000000000000003
[  330.556422][T13092] RBP: 00007fb73a877090 R08: 0000000000000000 R09: 0000000000000000
[  330.556435][T13092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  330.556447][T13092] R13: 00007fb739bb6128 R14: 00007fb739bb6090 R15: 00007ffde8df0518
[  330.556482][T13092]  </TASK>
[  330.826484][T13100] netlink: 35 bytes leftover after parsing attributes in process `syz.3.2032'.
[  331.110122][T13117] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2031'.
[  331.187821][T13116] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2034'.
[  331.540687][T13131] netlink: 'syz.1.2040': attribute type 10 has an invalid length.
[  331.562168][T13133] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2042'.
[  332.320041][T13179] sctp: [Deprecated]: syz.4.2054 (pid 13179) Use of struct sctp_assoc_value in delayed_ack socket option.
[  332.320041][T13179] Use struct sctp_sack_info instead
[  332.487146][T13183] netlink: 'syz.0.2056': attribute type 9 has an invalid length.
[  332.921394][T13198] netlink: 'syz.1.2063': attribute type 11 has an invalid length.
[  332.991327][T13201] macsec0: entered promiscuous mode
[  333.018378][T13201] macvlan1: entered promiscuous mode
[  333.087470][T13201] macvlan1: left promiscuous mode
[  333.771340][T13234] netlink: 'syz.2.2073': attribute type 1 has an invalid length.
[  333.793111][T13234] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  333.912493][T13239] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  333.964655][T13239] syzkaller0: entered promiscuous mode
[  333.979106][T13239] syzkaller0: entered allmulticast mode
[  334.067650][T13239] syzkaller0: mtu less than device minimum
[  334.181279][T13238] tipc: Resetting bearer <eth:syzkaller0>
[  334.224920][T13238] tipc: Disabling bearer <eth:syzkaller0>
[  334.465616][T13257] FAULT_INJECTION: forcing a failure.
[  334.465616][T13257] name failslab, interval 1, probability 0, space 0, times 0
[  334.503162][T13257] CPU: 1 UID: 0 PID: 13257 Comm: syz.0.2080 Not tainted syzkaller #0 PREEMPT(full) 
[  334.503194][T13257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  334.503208][T13257] Call Trace:
[  334.503217][T13257]  <TASK>
[  334.503226][T13257]  dump_stack_lvl+0x189/0x250
[  334.503259][T13257]  ? __pfx____ratelimit+0x10/0x10
[  334.503290][T13257]  ? __pfx_dump_stack_lvl+0x10/0x10
[  334.503317][T13257]  ? __pfx__printk+0x10/0x10
[  334.503364][T13257]  should_fail_ex+0x414/0x560
[  334.503399][T13257]  should_failslab+0xa8/0x100
[  334.503432][T13257]  __kmalloc_cache_noprof+0x70/0x3d0
[  334.503460][T13257]  ? sctp_add_bind_addr+0x8c/0x370
[  334.503492][T13257]  sctp_add_bind_addr+0x8c/0x370
[  334.503528][T13257]  sctp_copy_local_addr_list+0x30b/0x4e0
[  334.503561][T13257]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  334.503589][T13257]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  334.503619][T13257]  ? sctp_v6_is_any+0x64/0x80
[  334.503652][T13257]  ? sctp_copy_one_addr+0x93/0x360
[  334.503684][T13257]  sctp_bind_addr_copy+0xb3/0x3c0
[  334.503713][T13257]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  334.503743][T13257]  sctp_connect_new_asoc+0x2e0/0x690
[  334.503768][T13257]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  334.503787][T13257]  ? __local_bh_enable_ip+0x12d/0x1c0
[  334.503818][T13257]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  334.503843][T13257]  ? security_sctp_bind_connect+0x7e/0x2e0
[  334.503874][T13257]  sctp_sendmsg+0x155c/0x2810
[  334.503922][T13257]  ? __pfx_sctp_sendmsg+0x10/0x10
[  334.503961][T13257]  ? aa_sk_perm+0x81e/0x950
[  334.504010][T13257]  ? __pfx_aa_sk_perm+0x10/0x10
[  334.504047][T13257]  ? sock_rps_record_flow+0x19/0x410
[  334.504079][T13257]  ? inet_sendmsg+0x2f4/0x370
[  334.504114][T13257]  __sock_sendmsg+0x19c/0x270
[  334.504148][T13257]  ____sys_sendmsg+0x52d/0x830
[  334.504179][T13257]  ? __pfx_____sys_sendmsg+0x10/0x10
[  334.504212][T13257]  ? import_iovec+0x74/0xa0
[  334.504241][T13257]  ___sys_sendmsg+0x21f/0x2a0
[  334.504267][T13257]  ? __pfx____sys_sendmsg+0x10/0x10
[  334.504337][T13257]  ? __fget_files+0x2a/0x420
[  334.504370][T13257]  ? __fget_files+0x3a0/0x420
[  334.504417][T13257]  __sys_sendmmsg+0x227/0x430
[  334.504447][T13257]  ? __pfx___sys_sendmmsg+0x10/0x10
[  334.504468][T13257]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  334.504535][T13257]  ? ksys_write+0x22a/0x250
[  334.504567][T13257]  ? __pfx_ksys_write+0x10/0x10
[  334.504592][T13257]  ? rcu_is_watching+0x15/0xb0
[  334.504623][T13257]  __x64_sys_sendmmsg+0xa0/0xc0
[  334.504649][T13257]  do_syscall_64+0xfa/0x3b0
[  334.504680][T13257]  ? lockdep_hardirqs_on+0x9c/0x150
[  334.504709][T13257]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.504731][T13257]  ? clear_bhb_loop+0x60/0xb0
[  334.504758][T13257]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.504780][T13257] RIP: 0033:0x7f3717f8ebe9
[  334.504800][T13257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  334.504820][T13257] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  334.504843][T13257] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  334.504859][T13257] RDX: 0000000000000002 RSI: 0000200000003180 RDI: 0000000000000003
[  334.504872][T13257] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  334.504885][T13257] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000002
[  334.504897][T13257] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  334.504934][T13257]  </TASK>
[  335.030666][T13267] __nla_validate_parse: 5 callbacks suppressed
[  335.030687][T13267] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2085'.
[  335.106496][T13273] FAULT_INJECTION: forcing a failure.
[  335.106496][T13273] name failslab, interval 1, probability 0, space 0, times 0
[  335.117542][T13263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2083'.
[  335.119182][T13273] CPU: 1 UID: 0 PID: 13273 Comm: syz.1.2087 Not tainted syzkaller #0 PREEMPT(full) 
[  335.119209][T13273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  335.119221][T13273] Call Trace:
[  335.119230][T13273]  <TASK>
[  335.119239][T13273]  dump_stack_lvl+0x189/0x250
[  335.119277][T13273]  ? __pfx____ratelimit+0x10/0x10
[  335.119312][T13273]  ? __pfx_dump_stack_lvl+0x10/0x10
[  335.119344][T13273]  ? __pfx__printk+0x10/0x10
[  335.119382][T13273]  ? rcu_is_watching+0x15/0xb0
[  335.119419][T13273]  should_fail_ex+0x414/0x560
[  335.119459][T13273]  should_failslab+0xa8/0x100
[  335.119497][T13273]  kmem_cache_alloc_noprof+0x73/0x3c0
[  335.119529][T13273]  ? skb_clone+0x212/0x3a0
[  335.119562][T13273]  skb_clone+0x212/0x3a0
[  335.119606][T13273]  bpf_clone_redirect+0xad/0x3d0
[  335.119646][T13273]  ? bpf_test_run+0x197/0x7b0
[  335.119680][T13273]  bpf_prog_c08ef512837047f4+0x62/0x6b
[  335.119729][T13273]  ? ktime_get+0x3e/0x1f0
[  335.119780][T13273]  ? seqcount_lockdep_reader_access+0x123/0x1c0
[  335.119808][T13273]  ? lockdep_hardirqs_on+0x9c/0x150
[  335.119840][T13273]  ? ktime_get+0x3e/0x1f0
[  335.119864][T13273]  ? seqcount_lockdep_reader_access+0x175/0x1c0
[  335.119902][T13273]  ? __local_bh_disable_ip+0xf1/0x190
[  335.119925][T13273]  ? __pfx___cant_migrate+0x10/0x10
[  335.119946][T13273]  ? __local_bh_enable_ip+0x12d/0x1c0
[  335.119995][T13273]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  335.120024][T13273]  ? bpf_test_timer_continue+0x136/0x350
[  335.120067][T13273]  bpf_test_run+0x315/0x7b0
[  335.120130][T13273]  ? __pfx_bpf_test_run+0x10/0x10
[  335.120199][T13273]  ? slab_build_skb+0x273/0x3e0
[  335.120235][T13273]  ? convert___skb_to_skb+0x3d/0x590
[  335.120273][T13273]  bpf_prog_test_run_skb+0xb30/0x1560
[  335.120329][T13273]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  335.120365][T13273]  bpf_prog_test_run+0x2c7/0x340
[  335.120407][T13273]  __sys_bpf+0x581/0x870
[  335.120443][T13273]  ? __pfx___sys_bpf+0x10/0x10
[  335.120492][T13273]  ? ksys_write+0x22a/0x250
[  335.120528][T13273]  ? __pfx_ksys_write+0x10/0x10
[  335.120557][T13273]  ? rcu_is_watching+0x15/0xb0
[  335.120589][T13273]  __x64_sys_bpf+0x7c/0x90
[  335.120621][T13273]  do_syscall_64+0xfa/0x3b0
[  335.120655][T13273]  ? lockdep_hardirqs_on+0x9c/0x150
[  335.120687][T13273]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.120712][T13273]  ? clear_bhb_loop+0x60/0xb0
[  335.120735][T13273]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.120758][T13273] RIP: 0033:0x7fb73998ebe9
[  335.120782][T13273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.120802][T13273] RSP: 002b:00007fb73a898038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  335.120829][T13273] RAX: ffffffffffffffda RBX: 00007fb739bb5fa0 RCX: 00007fb73998ebe9
[  335.120847][T13273] RDX: 0000000000000028 RSI: 0000200000000080 RDI: 000000000000000a
[  335.120863][T13273] RBP: 00007fb73a898090 R08: 0000000000000000 R09: 0000000000000000
[  335.120879][T13273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  335.120894][T13273] R13: 00007fb739bb6038 R14: 00007fb739bb5fa0 R15: 00007ffde8df0518
[  335.120934][T13273]  </TASK>
[  335.275828][T13274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2084'.
[  335.500807][T13263] geneve2: entered promiscuous mode
[  335.509761][T13263] geneve2: entered allmulticast mode
[  335.526071][ T6133] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  335.540783][ T6133] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  335.590789][ T6133] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  335.629254][ T6133] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  335.686231][T13289] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  335.970921][T13301] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2096'.
[  335.998481][T13301] netlink: 'syz.1.2096': attribute type 7 has an invalid length.
[  336.010226][T13301] netlink: 'syz.1.2096': attribute type 8 has an invalid length.
[  336.023351][T13301] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2096'.
[  336.335824][T13315] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2101'.
[  336.410478][T13319] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2104'.
[  336.420485][T13319] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2104'.
[  336.554315][T13322] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2105'.
[  336.707648][T13326] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2106'.
[  337.792781][T13356] 8021q: adding VLAN 0 to HW filter on device bond0
[  337.802876][T13356] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  338.096422][T13363] veth7: entered promiscuous mode
[  338.112376][T13363] bond0: (slave veth7): Enslaving as an active interface with an up link
[  338.908712][ T5181] Bluetooth: hci4: command 0x0406 tx timeout
[  339.091051][T13408] IPVS: sync thread started: state = BACKUP, mcast_ifn = wg0, syncid = 4, id = 0
[  339.581612][T13430] netlink: 'syz.0.2140': attribute type 1 has an invalid length.
[  339.915933][T13443] tipc: MTU too low for tipc bearer
[  340.004565][T13443] batman_adv: batadv0: Adding interface: ip6gretap1
[  340.012432][T13443] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  340.070666][T13443] batman_adv: batadv0: Interface activated: ip6gretap1
[  340.210803][T13454] 8021q: adding VLAN 0 to HW filter on device bond0
[  341.004706][T13466] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:0
[  341.060034][T13495] __nla_validate_parse: 9 callbacks suppressed
[  341.060054][T13495] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2160'.
[  341.087218][T13495] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2160'.
[  341.129079][T13495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2160'.
[  341.650634][T13504] netlink: 92 bytes leftover after parsing attributes in process `syz.2.2163'.
[  341.736085][T13507] netlink: 208 bytes leftover after parsing attributes in process `syz.4.2164'.
[  342.010748][ T6133] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  342.042612][ T6133] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  342.075278][ T6133] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  342.119919][ T6133] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  342.174988][T13523] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2171'.
[  342.183285][T13524] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2170'.
[  342.367665][T13529] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2173'.
[  342.502751][T13537] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2177'.
[  342.800737][T13554] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2182'.
[  343.930091][T13586] netlink: 'syz.1.2191': attribute type 3 has an invalid length.
[  344.173828][T13594] FAULT_INJECTION: forcing a failure.
[  344.173828][T13594] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  344.209936][T13594] CPU: 1 UID: 0 PID: 13594 Comm: syz.3.2193 Not tainted syzkaller #0 PREEMPT(full) 
[  344.209967][T13594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  344.209981][T13594] Call Trace:
[  344.209989][T13594]  <TASK>
[  344.209997][T13594]  dump_stack_lvl+0x189/0x250
[  344.210028][T13594]  ? __pfx____ratelimit+0x10/0x10
[  344.210057][T13594]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.210082][T13594]  ? __pfx__printk+0x10/0x10
[  344.210126][T13594]  should_fail_ex+0x414/0x560
[  344.210160][T13594]  _copy_to_user+0x31/0xb0
[  344.210186][T13594]  simple_read_from_buffer+0xe1/0x170
[  344.210222][T13594]  proc_fail_nth_read+0x1b3/0x220
[  344.210249][T13594]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  344.210276][T13594]  ? rw_verify_area+0x2a6/0x4d0
[  344.210301][T13594]  ? __lock_acquire+0xab9/0xd20
[  344.210330][T13594]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  344.210364][T13594]  vfs_read+0x200/0xa30
[  344.210389][T13594]  ? fdget_pos+0x247/0x320
[  344.210412][T13594]  ? __pfx___mutex_lock+0x10/0x10
[  344.210442][T13594]  ? __pfx_vfs_read+0x10/0x10
[  344.210472][T13594]  ? __fget_files+0x2a/0x420
[  344.210509][T13594]  ? __fget_files+0x3a0/0x420
[  344.210538][T13594]  ? __fget_files+0x2a/0x420
[  344.210580][T13594]  ksys_read+0x145/0x250
[  344.210610][T13594]  ? __pfx_ksys_read+0x10/0x10
[  344.210634][T13594]  ? rcu_is_watching+0x15/0xb0
[  344.210661][T13594]  ? do_syscall_64+0xbe/0x3b0
[  344.210696][T13594]  do_syscall_64+0xfa/0x3b0
[  344.210724][T13594]  ? lockdep_hardirqs_on+0x9c/0x150
[  344.210752][T13594]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.210774][T13594]  ? clear_bhb_loop+0x60/0xb0
[  344.210799][T13594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  344.210817][T13594] RIP: 0033:0x7f5f1ab8d5fc
[  344.210835][T13594] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  344.210854][T13594] RSP: 002b:00007f5f1ba84030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  344.210876][T13594] RAX: ffffffffffffffda RBX: 00007f5f1adb5fa0 RCX: 00007f5f1ab8d5fc
[  344.210891][T13594] RDX: 000000000000000f RSI: 00007f5f1ba840a0 RDI: 0000000000000004
[  344.210904][T13594] RBP: 00007f5f1ba84090 R08: 0000000000000000 R09: 0000000000000000
[  344.210916][T13594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  344.210927][T13594] R13: 00007f5f1adb6038 R14: 00007f5f1adb5fa0 R15: 00007ffc7180eae8
[  344.210962][T13594]  </TASK>
[  344.641584][T13599] lo: entered allmulticast mode
[  344.781554][T13612] netlink: 'syz.0.2201': attribute type 10 has an invalid length.
[  345.137793][   T12] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0x7
[  346.057871][T13663] macvlan1: entered allmulticast mode
[  346.063480][T13663] team0: entered allmulticast mode
[  346.068700][T13663] team_slave_0: entered allmulticast mode
[  346.074455][T13663] team_slave_1: entered allmulticast mode
[  346.085284][T13663] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  346.130894][T13663] team0: left allmulticast mode
[  346.135828][T13663] team_slave_0: left allmulticast mode
[  346.162892][T13663] team_slave_1: left allmulticast mode
[  346.461856][T13676] __nla_validate_parse: 11 callbacks suppressed
[  346.461879][T13676] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2223'.
[  346.486475][T13676] chnl_net:caif_netlink_parms(): no params data found
[  346.738683][T13685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2226'.
[  346.856789][T13685] batadv0: entered promiscuous mode
[  346.899331][T13685] debugfs: 'hsr1' already exists in 'hsr'
[  346.917802][T13685] Cannot create hsr debugfs directory
[  346.941409][T13685] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  346.959824][T13685] hsr1: entered allmulticast mode
[  346.965009][T13685] bond0: entered allmulticast mode
[  346.970252][T13685] veth5: entered allmulticast mode
[  346.975481][T13685] veth7: entered allmulticast mode
[  346.976292][T13695] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2230'.
[  346.980891][T13685] batadv0: entered allmulticast mode
[  346.997303][T13685] 8021q: adding VLAN 0 to HW filter on device hsr1
[  347.497065][T13717] netlink: 'syz.3.2237': attribute type 2 has an invalid length.
[  347.538154][T13717] : entered promiscuous mode
[  348.068048][T13735] veth9: entered promiscuous mode
[  348.090700][T13735] veth9: entered allmulticast mode
[  348.100184][T13735] bond0: (slave veth9): Enslaving as an active interface with an up link
[  348.152917][T13740] sit0: left promiscuous mode
[  348.164137][T13740] team0: left promiscuous mode
[  348.173637][T13740] team_slave_0: left promiscuous mode
[  348.185241][T13740] team_slave_1: left promiscuous mode
[  348.203677][T13740] bridge0: left promiscuous mode
[  348.349118][T13740] geneve2: left promiscuous mode
[  348.367501][T13740] geneve2: left allmulticast mode
[  348.382179][ T6141] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.391421][ T6141] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.432599][ T6141] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.474541][ T6141] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  348.780281][T13770] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2254'.
[  349.115930][T13784] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2262'.
[  349.189566][T13789] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2261'.
[  349.354432][T13801] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2268'.
[  349.384452][T13801] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2268'.
[  349.748432][T13816] openvswitch: netlink: Key type 5126 is out of range max 32
[  349.937637][T13824] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2274'.
[  349.963482][T13824] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2274'.
[  350.041721][T13832] FAULT_INJECTION: forcing a failure.
[  350.041721][T13832] name failslab, interval 1, probability 0, space 0, times 0
[  350.089004][T13832] CPU: 1 UID: 0 PID: 13832 Comm: syz.1.2275 Not tainted syzkaller #0 PREEMPT(full) 
[  350.089035][T13832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  350.089049][T13832] Call Trace:
[  350.089057][T13832]  <TASK>
[  350.089066][T13832]  dump_stack_lvl+0x189/0x250
[  350.089098][T13832]  ? __pfx____ratelimit+0x10/0x10
[  350.089127][T13832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  350.089152][T13832]  ? __pfx__printk+0x10/0x10
[  350.089188][T13832]  ? __pfx___might_resched+0x10/0x10
[  350.089206][T13832]  ? fs_reclaim_acquire+0x7d/0x100
[  350.089244][T13832]  should_fail_ex+0x414/0x560
[  350.089277][T13832]  should_failslab+0xa8/0x100
[  350.089309][T13832]  __kmalloc_noprof+0xcb/0x4f0
[  350.089335][T13832]  ? kobject_get_path+0xc5/0x2d0
[  350.089370][T13832]  kobject_get_path+0xc5/0x2d0
[  350.089407][T13832]  kobject_uevent_env+0x292/0x8c0
[  350.089440][T13832]  device_add+0x557/0xb50
[  350.089466][T13832]  wakeup_source_sysfs_add+0x1af/0x280
[  350.089494][T13832]  wakeup_source_register+0x18a/0x380
[  350.089532][T13832]  ep_insert+0xff3/0x19e0
[  350.089580][T13832]  ? __pfx_ep_insert+0x10/0x10
[  350.089624][T13832]  ? bpf_lsm_capable+0x9/0x20
[  350.089667][T13832]  do_epoll_ctl+0x7f4/0xe80
[  350.089713][T13832]  __x64_sys_epoll_ctl+0x163/0x1a0
[  350.089747][T13832]  ? __pfx___x64_sys_epoll_ctl+0x10/0x10
[  350.089784][T13832]  ? do_syscall_64+0xbe/0x3b0
[  350.089818][T13832]  do_syscall_64+0xfa/0x3b0
[  350.089846][T13832]  ? lockdep_hardirqs_on+0x9c/0x150
[  350.089874][T13832]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.089894][T13832]  ? clear_bhb_loop+0x60/0xb0
[  350.089920][T13832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.089939][T13832] RIP: 0033:0x7fb73998ebe9
[  350.089959][T13832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.089977][T13832] RSP: 002b:00007fb73a877038 EFLAGS: 00000246 ORIG_RAX: 00000000000000e9
[  350.089999][T13832] RAX: ffffffffffffffda RBX: 00007fb739bb6090 RCX: 00007fb73998ebe9
[  350.090014][T13832] RDX: 0000000000000004 RSI: 0000000000000001 RDI: 0000000000000003
[  350.090025][T13832] RBP: 00007fb73a877090 R08: 0000000000000000 R09: 0000000000000000
[  350.090038][T13832] R10: 0000200000000480 R11: 0000000000000246 R12: 0000000000000002
[  350.090050][T13832] R13: 00007fb739bb6128 R14: 00007fb739bb6090 R15: 00007ffde8df0518
[  350.090085][T13832]  </TASK>
[  350.422882][T13837] IPVS: set_ctl: invalid protocol: 98 172.20.20.187:20001
[  350.556931][T13844] FAULT_INJECTION: forcing a failure.
[  350.556931][T13844] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  350.576630][T13844] CPU: 0 UID: 0 PID: 13844 Comm: syz.0.2281 Not tainted syzkaller #0 PREEMPT(full) 
[  350.576661][T13844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  350.576676][T13844] Call Trace:
[  350.576684][T13844]  <TASK>
[  350.576693][T13844]  dump_stack_lvl+0x189/0x250
[  350.576726][T13844]  ? __pfx____ratelimit+0x10/0x10
[  350.576756][T13844]  ? __pfx_dump_stack_lvl+0x10/0x10
[  350.576782][T13844]  ? __pfx__printk+0x10/0x10
[  350.576814][T13844]  ? __might_fault+0xb0/0x130
[  350.576857][T13844]  should_fail_ex+0x414/0x560
[  350.576892][T13844]  _copy_from_iter+0x1db/0x16f0
[  350.576933][T13844]  ? rcu_is_watching+0x15/0xb0
[  350.576957][T13844]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  350.576989][T13844]  ? __pfx__copy_from_iter+0x10/0x10
[  350.577013][T13844]  ? __build_skb_around+0x257/0x3e0
[  350.577051][T13844]  ? netlink_sendmsg+0x642/0xb30
[  350.577081][T13844]  ? skb_put+0x11b/0x210
[  350.577105][T13844]  netlink_sendmsg+0x6b2/0xb30
[  350.577148][T13844]  ? __pfx_netlink_sendmsg+0x10/0x10
[  350.577185][T13844]  ? aa_sock_msg_perm+0xf1/0x1d0
[  350.577221][T13844]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  350.577245][T13844]  ? __pfx_netlink_sendmsg+0x10/0x10
[  350.577278][T13844]  __sock_sendmsg+0x219/0x270
[  350.577309][T13844]  ____sys_sendmsg+0x505/0x830
[  350.577339][T13844]  ? __pfx_____sys_sendmsg+0x10/0x10
[  350.577372][T13844]  ? import_iovec+0x74/0xa0
[  350.577401][T13844]  ___sys_sendmsg+0x21f/0x2a0
[  350.577426][T13844]  ? __pfx____sys_sendmsg+0x10/0x10
[  350.577492][T13844]  ? __fget_files+0x2a/0x420
[  350.577523][T13844]  ? __fget_files+0x3a0/0x420
[  350.577567][T13844]  __x64_sys_sendmsg+0x19b/0x260
[  350.577593][T13844]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  350.577628][T13844]  ? __pfx_ksys_write+0x10/0x10
[  350.577654][T13844]  ? rcu_is_watching+0x15/0xb0
[  350.577680][T13844]  ? do_syscall_64+0xbe/0x3b0
[  350.577715][T13844]  do_syscall_64+0xfa/0x3b0
[  350.577744][T13844]  ? lockdep_hardirqs_on+0x9c/0x150
[  350.577773][T13844]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.577795][T13844]  ? clear_bhb_loop+0x60/0xb0
[  350.577820][T13844]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  350.577841][T13844] RIP: 0033:0x7f3717f8ebe9
[  350.577861][T13844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  350.577879][T13844] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  350.577902][T13844] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  350.577924][T13844] RDX: 0000000004044014 RSI: 0000200000000200 RDI: 0000000000000003
[  350.577937][T13844] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  350.577950][T13844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  350.577962][T13844] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  350.577996][T13844]  </TASK>
[  351.627865][T13872] netlink: 'syz.3.2290': attribute type 1 has an invalid length.
[  352.685393][T13908] __nla_validate_parse: 2 callbacks suppressed
[  352.685412][T13908] netlink: 256 bytes leftover after parsing attributes in process `syz.3.2303'.
[  352.700697][T13911] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2305'.
[  352.872033][T13917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2308'.
[  353.122781][T13930] syzkaller0: left promiscuous mode
[  353.130449][T13930] syzkaller0: left allmulticast mode
[  353.377894][T13939] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2315'.
[  353.630587][T13952] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2320'.
[  353.660338][T13949] vlan2: entered promiscuous mode
[  353.712585][T13952] chnl_net:caif_netlink_parms(): no params data found
[  354.607523][T13991] veth11: entered promiscuous mode
[  354.613439][T13991] veth11: entered allmulticast mode
[  354.623746][T13991] bond0: (slave veth11): Enslaving as an active interface with an up link
[  354.794763][T13999] openvswitch: netlink: IP tunnel attribute has 8 unknown bytes.
[  355.309739][T14009] batadv_slave_1: left promiscuous mode
[  355.339906][T14009] batadv_slave_1: left allmulticast mode
[  355.372194][T14009] tipc: Resetting bearer <eth:syzkaller0>
[  355.425142][T14009] ipvlan3: left promiscuous mode
[  355.439483][T14009] batman_adv: batadv0: Interface deactivated: ip6gretap1
[  355.480514][ T6147] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  355.497794][ T6147] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 20000 - 0
[  355.507157][ T6147] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  355.523947][ T6147] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 20000 - 0
[  355.649695][T14039] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2346'.
[  355.671528][ T6147] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  355.686744][T14042] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2348'.
[  355.696762][T14042] netlink: 'syz.4.2348': attribute type 7 has an invalid length.
[  355.708461][ T6147] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 20000 - 0
[  355.725403][T14042] netlink: 'syz.4.2348': attribute type 8 has an invalid length.
[  355.734217][ T6147] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  355.747197][ T6147] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 20000 - 0
[  355.757773][T14042] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2348'.
[  355.813992][T14043] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  355.849501][T14041] syzkaller0: entered allmulticast mode
[  355.873299][T14048] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  355.894462][T14048] syzkaller0: entered promiscuous mode
[  355.900142][T14048] syzkaller0: entered allmulticast mode
[  355.916918][T14048] netlink: 'syz.3.2350': attribute type 4 has an invalid length.
[  355.951132][T14041] tipc: Resetting bearer <eth:syzkaller0>
[  355.969919][T14051] netlink: 'syz.3.2350': attribute type 4 has an invalid length.
[  356.042852][T14055] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.2352'.
[  356.065392][T14056] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2351'.
[  356.224467][T14038] tipc: Disabling bearer <eth:syzkaller0>
[  356.268080][T14059] tipc: Resetting bearer <eth:syzkaller0>
[  356.455017][T14047] tipc: Resetting bearer <eth:syzkaller0>
[  356.496407][T14047] tipc: Disabling bearer <eth:syzkaller0>
[  356.846010][T14088] FAULT_INJECTION: forcing a failure.
[  356.846010][T14088] name failslab, interval 1, probability 0, space 0, times 0
[  356.893371][T14088] CPU: 0 UID: 0 PID: 14088 Comm: syz.1.2363 Not tainted syzkaller #0 PREEMPT(full) 
[  356.893420][T14088] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  356.893442][T14088] Call Trace:
[  356.893451][T14088]  <TASK>
[  356.893461][T14088]  dump_stack_lvl+0x189/0x250
[  356.893494][T14088]  ? __pfx____ratelimit+0x10/0x10
[  356.893524][T14088]  ? __pfx_dump_stack_lvl+0x10/0x10
[  356.893550][T14088]  ? __pfx__printk+0x10/0x10
[  356.893583][T14088]  ? __pfx___might_resched+0x10/0x10
[  356.893603][T14088]  ? fs_reclaim_acquire+0x7d/0x100
[  356.893642][T14088]  should_fail_ex+0x414/0x560
[  356.893676][T14088]  should_failslab+0xa8/0x100
[  356.893709][T14088]  __kmalloc_noprof+0xcb/0x4f0
[  356.893735][T14088]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  356.893755][T14088]  ? sock_kmalloc+0xd6/0x160
[  356.893785][T14088]  sock_kmalloc+0xd6/0x160
[  356.893812][T14088]  hash_recvmsg+0x1d4/0x840
[  356.893846][T14088]  ? __pfx_hash_recvmsg+0x10/0x10
[  356.893874][T14088]  sock_recvmsg_nosec+0x186/0x1c0
[  356.893908][T14088]  ____sys_recvmsg+0x3aa/0x460
[  356.893942][T14088]  ? __pfx_____sys_recvmsg+0x10/0x10
[  356.893985][T14088]  ? import_iovec+0x74/0xa0
[  356.894018][T14088]  ___sys_recvmsg+0x1b5/0x510
[  356.894048][T14088]  ? __pfx____sys_recvmsg+0x10/0x10
[  356.894109][T14088]  ? __might_fault+0xb0/0x130
[  356.894143][T14088]  do_recvmmsg+0x307/0x770
[  356.894178][T14088]  ? __pfx_do_recvmmsg+0x10/0x10
[  356.894215][T14088]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  356.894276][T14088]  __x64_sys_recvmmsg+0x190/0x240
[  356.894304][T14088]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  356.894325][T14088]  ? rcu_is_watching+0x15/0xb0
[  356.894354][T14088]  ? do_syscall_64+0xbe/0x3b0
[  356.894390][T14088]  do_syscall_64+0xfa/0x3b0
[  356.894420][T14088]  ? lockdep_hardirqs_on+0x9c/0x150
[  356.894449][T14088]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.894470][T14088]  ? clear_bhb_loop+0x60/0xb0
[  356.894498][T14088]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  356.894519][T14088] RIP: 0033:0x7fb73998ebe9
[  356.894538][T14088] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  356.894557][T14088] RSP: 002b:00007fb73a898038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  356.894580][T14088] RAX: ffffffffffffffda RBX: 00007fb739bb5fa0 RCX: 00007fb73998ebe9
[  356.894596][T14088] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  356.894610][T14088] RBP: 00007fb73a898090 R08: 0000000000000000 R09: 0000000000000000
[  356.894623][T14088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  356.894636][T14088] R13: 00007fb739bb6038 R14: 00007fb739bb5fa0 R15: 00007ffde8df0518
[  356.894671][T14088]  </TASK>
[  357.266574][T14098] IPVS: set_ctl: invalid protocol: 59 224.0.0.1:20001
[  357.376936][T14104] vlan3: entered promiscuous mode
[  357.850046][T14120] 8021q: adding VLAN 0 to HW filter on device Ã
[  357.881266][T14120] 8021q: adding VLAN 0 to HW filter on device team0
[  357.911095][T14120] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  358.241999][T14141] __nla_validate_parse: 3 callbacks suppressed
[  358.242022][T14141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2376'.
[  363.424823][T14177] FAULT_INJECTION: forcing a failure.
[  363.424823][T14177] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  363.459738][T14178] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2386'.
[  363.463042][T14177] CPU: 0 UID: 0 PID: 14177 Comm: syz.3.2388 Not tainted syzkaller #0 PREEMPT(full) 
[  363.463075][T14177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  363.463097][T14177] Call Trace:
[  363.463106][T14177]  <TASK>
[  363.463117][T14177]  dump_stack_lvl+0x189/0x250
[  363.463153][T14177]  ? __pfx____ratelimit+0x10/0x10
[  363.463188][T14177]  ? __pfx_dump_stack_lvl+0x10/0x10
[  363.463218][T14177]  ? __pfx__printk+0x10/0x10
[  363.463253][T14177]  ? __might_fault+0xb0/0x130
[  363.463302][T14177]  should_fail_ex+0x414/0x560
[  363.463342][T14177]  _copy_from_user+0x2d/0xb0
[  363.463371][T14177]  ___sys_sendmsg+0x158/0x2a0
[  363.463400][T14177]  ? __pfx____sys_sendmsg+0x10/0x10
[  363.463473][T14177]  ? __fget_files+0x2a/0x420
[  363.463511][T14177]  ? __fget_files+0x3a0/0x420
[  363.463560][T14177]  __x64_sys_sendmsg+0x19b/0x260
[  363.463592][T14177]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  363.463629][T14177]  ? __pfx_ksys_write+0x10/0x10
[  363.463659][T14177]  ? rcu_is_watching+0x15/0xb0
[  363.463702][T14177]  ? do_syscall_64+0xbe/0x3b0
[  363.463740][T14177]  do_syscall_64+0xfa/0x3b0
[  363.463774][T14177]  ? lockdep_hardirqs_on+0x9c/0x150
[  363.463812][T14177]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.463835][T14177]  ? clear_bhb_loop+0x60/0xb0
[  363.463864][T14177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  363.463892][T14177] RIP: 0033:0x7f5f1ab8ebe9
[  363.463914][T14177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  363.463933][T14177] RSP: 002b:00007f5f1ba84038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  363.463959][T14177] RAX: ffffffffffffffda RBX: 00007f5f1adb5fa0 RCX: 00007f5f1ab8ebe9
[  363.463976][T14177] RDX: 0000000000000080 RSI: 0000200000000000 RDI: 0000000000000007
[  363.463989][T14177] RBP: 00007f5f1ba84090 R08: 0000000000000000 R09: 0000000000000000
[  363.464008][T14177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  363.464023][T14177] R13: 00007f5f1adb6038 R14: 00007f5f1adb5fa0 R15: 00007ffc7180eae8
[  363.464061][T14177]  </TASK>
[  363.745388][T14185] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2390'.
[  363.970936][T14187] veth0_to_bond: left allmulticast mode
[  364.205348][T14200] FAULT_INJECTION: forcing a failure.
[  364.205348][T14200] name failslab, interval 1, probability 0, space 0, times 0
[  364.218644][T14200] CPU: 0 UID: 0 PID: 14200 Comm: syz.2.2397 Not tainted syzkaller #0 PREEMPT(full) 
[  364.218675][T14200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  364.218688][T14200] Call Trace:
[  364.218697][T14200]  <TASK>
[  364.218706][T14200]  dump_stack_lvl+0x189/0x250
[  364.218736][T14200]  ? __pfx____ratelimit+0x10/0x10
[  364.218766][T14200]  ? __pfx_dump_stack_lvl+0x10/0x10
[  364.218792][T14200]  ? __pfx__printk+0x10/0x10
[  364.218826][T14200]  ? __pfx___might_resched+0x10/0x10
[  364.218846][T14200]  ? fs_reclaim_acquire+0x7d/0x100
[  364.218885][T14200]  should_fail_ex+0x414/0x560
[  364.218919][T14200]  should_failslab+0xa8/0x100
[  364.218951][T14200]  __kmalloc_noprof+0xcb/0x4f0
[  364.218980][T14200]  ? ethnl_default_set_doit+0x168/0x890
[  364.219016][T14200]  ethnl_default_set_doit+0x168/0x890
[  364.219038][T14200]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  364.219064][T14200]  ? genl_family_rcv_msg_attrs_parse+0x212/0x2a0
[  364.219099][T14200]  genl_family_rcv_msg_doit+0x212/0x300
[  364.219133][T14200]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  364.219175][T14200]  ? bpf_lsm_capable+0x9/0x20
[  364.219203][T14200]  ? security_capable+0x7e/0x2e0
[  364.219243][T14200]  genl_rcv_msg+0x60e/0x790
[  364.219276][T14200]  ? __pfx_genl_rcv_msg+0x10/0x10
[  364.219301][T14200]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  364.219342][T14200]  netlink_rcv_skb+0x205/0x470
[  364.219371][T14200]  ? __lock_acquire+0xab9/0xd20
[  364.219404][T14200]  ? __pfx_genl_rcv_msg+0x10/0x10
[  364.219430][T14200]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  364.219485][T14200]  ? down_read+0x1ad/0x2e0
[  364.219509][T14200]  genl_rcv+0x28/0x40
[  364.219530][T14200]  netlink_unicast+0x82f/0x9e0
[  364.219569][T14200]  ? __pfx_netlink_unicast+0x10/0x10
[  364.219601][T14200]  ? netlink_sendmsg+0x642/0xb30
[  364.219630][T14200]  ? skb_put+0x11b/0x210
[  364.219656][T14200]  netlink_sendmsg+0x805/0xb30
[  364.219700][T14200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  364.219768][T14200]  ? aa_sock_msg_perm+0xf1/0x1d0
[  364.219805][T14200]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  364.219828][T14200]  ? __pfx_netlink_sendmsg+0x10/0x10
[  364.219859][T14200]  __sock_sendmsg+0x219/0x270
[  364.219891][T14200]  ____sys_sendmsg+0x505/0x830
[  364.219918][T14200]  ? __pfx_____sys_sendmsg+0x10/0x10
[  364.219951][T14200]  ? import_iovec+0x74/0xa0
[  364.219979][T14200]  ___sys_sendmsg+0x21f/0x2a0
[  364.220016][T14200]  ? __pfx____sys_sendmsg+0x10/0x10
[  364.220083][T14200]  ? __fget_files+0x2a/0x420
[  364.220116][T14200]  ? __fget_files+0x3a0/0x420
[  364.220161][T14200]  __x64_sys_sendmsg+0x19b/0x260
[  364.220187][T14200]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  364.220222][T14200]  ? __pfx_ksys_write+0x10/0x10
[  364.220248][T14200]  ? rcu_is_watching+0x15/0xb0
[  364.220275][T14200]  ? do_syscall_64+0xbe/0x3b0
[  364.220311][T14200]  do_syscall_64+0xfa/0x3b0
[  364.220340][T14200]  ? lockdep_hardirqs_on+0x9c/0x150
[  364.220369][T14200]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.220390][T14200]  ? clear_bhb_loop+0x60/0xb0
[  364.220416][T14200]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  364.220435][T14200] RIP: 0033:0x7fa80fd8ebe9
[  364.220455][T14200] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  364.220473][T14200] RSP: 002b:00007fa810bf7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  364.220495][T14200] RAX: ffffffffffffffda RBX: 00007fa80ffb5fa0 RCX: 00007fa80fd8ebe9
[  364.220510][T14200] RDX: 0000000004044014 RSI: 0000200000000200 RDI: 0000000000000003
[  364.220524][T14200] RBP: 00007fa810bf7090 R08: 0000000000000000 R09: 0000000000000000
[  364.220537][T14200] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  364.220549][T14200] R13: 00007fa80ffb6038 R14: 00007fa80ffb5fa0 R15: 00007ffc71f19da8
[  364.220584][T14200]  </TASK>
[  364.805596][T14218] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2403'.
[  364.886944][T14219] netlink: 264 bytes leftover after parsing attributes in process `syz.0.2402'.
[  364.897346][T14219] batman_adv: batadv0: Adding interface: macvlan1
[  364.910246][T14219] batman_adv: batadv0: The MTU of interface macvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  364.936473][T14219] batman_adv: batadv0: Not using interface macvlan1 (retrying later): interface not active
[  365.412611][T14238] netlink: 'syz.3.2411': attribute type 13 has an invalid length.
[  365.441532][T14240] batman_adv: batadv0: Removing interface: macvlan1
[  365.450896][T14240] bond3: (slave gretap1): Releasing active interface
[  365.466721][T14240] team0: Port device bond4 removed
[  365.502718][T14240] Ã: (slave veth9): Releasing backup interface
[  365.568860][T14240] Ã: (slave veth9): the permanent HWaddr of slave - 26:43:77:05:c7:20 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  365.598136][T14240] veth9: left promiscuous mode
[  365.672195][T14240] Ã: (slave veth11): Releasing backup interface
[  365.730825][T14240] veth11: left promiscuous mode
[  365.749561][T14240] bond6: (slave geneve2): Releasing active interface
[  365.751842][T14253] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2414'.
[  365.776355][T14253] netlink: 'syz.4.2414': attribute type 7 has an invalid length.
[  365.780725][T14240] batman_adv: batadv0: Removing interface: ip6gretap1
[  365.795003][T14253] netlink: 'syz.4.2414': attribute type 8 has an invalid length.
[  365.803128][T14253] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2414'.
[  366.298520][T14272] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2420'.
[  366.967180][T14294] netlink: 'syz.2.2427': attribute type 13 has an invalid length.
[  367.557115][T14318] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2434'.
[  367.737116][T14309] batman_adv: batadv0: Removing interface: netdevsim0
[  368.033408][T14324] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2436'.
[  368.069384][T14324] openvswitch: netlink: Flow key attr not present in new flow.
[  368.414064][T14338] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2441'.
[  368.454120][T14339] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  368.471452][T14339] syzkaller0: entered promiscuous mode
[  368.487146][T14339] syzkaller0: entered allmulticast mode
[  368.521348][T14339] tipc: Resetting bearer <eth:syzkaller0>
[  368.938617][T14350] netlink: 'syz.4.2446': attribute type 2 has an invalid length.
[  368.953088][T14351] netlink: 'syz.4.2446': attribute type 2 has an invalid length.
[  369.216088][T14337] tipc: Resetting bearer <eth:syzkaller0>
[  369.288050][T14337] tipc: Disabling bearer <eth:syzkaller0>
[  369.371522][T14367] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  370.301873][T14401] netlink: 216 bytes leftover after parsing attributes in process `syz.4.2461'.
[  370.368599][T14401] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2461'.
[  370.458479][T14401] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2461'.
[  370.498927][T14413] netlink: 'syz.0.2463': attribute type 1 has an invalid length.
[  370.517470][T14413] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2463'.
[  370.576824][T14414] dummy0: entered allmulticast mode
[  370.608402][T14412] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2463'.
[  370.768840][T14404] dummy0: left allmulticast mode
[  370.796767][T14426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2466'.
[  372.219220][T14427] !
: renamed from dummy0
[  372.339917][T14461] netlink: 'syz.0.2471': attribute type 1 has an invalid length.
[  372.363043][T14461] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2471'.
[  372.665846][T14470] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2474'.
[  372.675001][T14470] netlink: 'syz.3.2474': attribute type 7 has an invalid length.
[  372.692172][T14470] netlink: 'syz.3.2474': attribute type 8 has an invalid length.
[  372.703966][T14470] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2474'.
[  372.806034][T14470] ip6gretap0: entered promiscuous mode
[  372.817585][T14470] syz_tun: entered promiscuous mode
[  372.838681][T14470] ip6gretap0: left promiscuous mode
[  372.871183][T14470] syz_tun: left promiscuous mode
[  373.256122][T14481] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2475'.
[  373.728130][T14497] veth13: entered promiscuous mode
[  373.744894][T14497] veth13: entered allmulticast mode
[  373.782021][T14497] bond0: (slave veth13): Enslaving as an active interface with an up link
[  373.808248][T14506] IPVS: sync thread started: state = BACKUP, mcast_ifn = bond0, syncid = 8, id = 0
[  375.252136][T14549] veth7: entered promiscuous mode
[  375.291680][T14552] 8021q: VLANs not supported on gre0
[  375.531729][T14558] __nla_validate_parse: 8 callbacks suppressed
[  375.531751][T14558] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2500'.
[  375.639080][T14558] netlink: 'syz.1.2500': attribute type 1 has an invalid length.
[  375.681992][T14558] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2500'.
[  375.693855][T14566] Bluetooth: MGMT ver 1.23
[  375.722344][T14567] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2501'.
[  376.070060][T14579] netlink: 'syz.0.2506': attribute type 1 has an invalid length.
[  376.121979][T14579] 8021q: adding VLAN 0 to HW filter on device bond8
[  376.138964][T14583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2507'.
[  376.148982][T14583] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  376.162298][T14588] 8021q: adding VLAN 0 to HW filter on device bond8
[  376.170331][T14588] bond8: (slave vcan1): The slave device specified does not support setting the MAC address
[  376.183582][T14588] bond8: (slave vcan1): Error -95 calling set_mac_address
[  376.237609][T14579] gretap3: entered promiscuous mode
[  376.257155][T14594] FAULT_INJECTION: forcing a failure.
[  376.257155][T14594] name failslab, interval 1, probability 0, space 0, times 0
[  376.270117][T14594] CPU: 1 UID: 0 PID: 14594 Comm: syz.2.2509 Not tainted syzkaller #0 PREEMPT(full) 
[  376.270146][T14594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  376.270161][T14594] Call Trace:
[  376.270170][T14594]  <TASK>
[  376.270187][T14594]  dump_stack_lvl+0x189/0x250
[  376.270219][T14594]  ? __pfx____ratelimit+0x10/0x10
[  376.270250][T14594]  ? __pfx_dump_stack_lvl+0x10/0x10
[  376.270278][T14594]  ? __pfx__printk+0x10/0x10
[  376.270316][T14594]  ? __pfx___might_resched+0x10/0x10
[  376.270344][T14594]  should_fail_ex+0x414/0x560
[  376.270380][T14594]  should_failslab+0xa8/0x100
[  376.270416][T14594]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  376.270449][T14594]  ? __alloc_skb+0x112/0x2d0
[  376.270488][T14594]  __alloc_skb+0x112/0x2d0
[  376.270527][T14594]  ctrl_getfamily+0x3a1/0x590
[  376.270556][T14594]  ? __pfx_ctrl_getfamily+0x10/0x10
[  376.270581][T14594]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  376.270618][T14594]  genl_family_rcv_msg_doit+0x212/0x300
[  376.270653][T14594]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  376.270699][T14594]  ? stack_trace_save+0x9c/0xe0
[  376.270732][T14594]  genl_rcv_msg+0x60e/0x790
[  376.270767][T14594]  ? __pfx_genl_rcv_msg+0x10/0x10
[  376.270791][T14594]  ? __pfx_ctrl_getfamily+0x10/0x10
[  376.270834][T14594]  netlink_rcv_skb+0x205/0x470
[  376.270864][T14594]  ? __lock_acquire+0xab9/0xd20
[  376.270897][T14594]  ? __pfx_genl_rcv_msg+0x10/0x10
[  376.270924][T14594]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  376.270981][T14594]  ? down_read+0x1ad/0x2e0
[  376.271006][T14594]  genl_rcv+0x28/0x40
[  376.271028][T14594]  netlink_unicast+0x82f/0x9e0
[  376.271069][T14594]  ? __pfx_netlink_unicast+0x10/0x10
[  376.271107][T14594]  ? netlink_sendmsg+0x642/0xb30
[  376.271137][T14594]  ? skb_put+0x11b/0x210
[  376.271163][T14594]  netlink_sendmsg+0x805/0xb30
[  376.271216][T14594]  ? __pfx_netlink_sendmsg+0x10/0x10
[  376.271255][T14594]  ? aa_sock_msg_perm+0xf1/0x1d0
[  376.271293][T14594]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  376.271317][T14594]  ? __pfx_netlink_sendmsg+0x10/0x10
[  376.271352][T14594]  __sock_sendmsg+0x219/0x270
[  376.271384][T14594]  __sys_sendto+0x3bd/0x520
[  376.271422][T14594]  ? __pfx___sys_sendto+0x10/0x10
[  376.271469][T14594]  ? count_memcg_event_mm+0x21/0x260
[  376.271514][T14594]  ? exc_page_fault+0x76/0xf0
[  376.271548][T14594]  ? do_user_addr_fault+0xc8a/0x1390
[  376.271589][T14594]  __x64_sys_sendto+0xde/0x100
[  376.271628][T14594]  do_syscall_64+0xfa/0x3b0
[  376.271658][T14594]  ? lockdep_hardirqs_on+0x9c/0x150
[  376.271688][T14594]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.271709][T14594]  ? clear_bhb_loop+0x60/0xb0
[  376.271737][T14594]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  376.271758][T14594] RIP: 0033:0x7fa80fd90a7c
[  376.271778][T14594] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b
[  376.271796][T14594] RSP: 002b:00007fa810bf5ec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  376.271819][T14594] RAX: ffffffffffffffda RBX: 00007fa810bf5fc0 RCX: 00007fa80fd90a7c
[  376.271834][T14594] RDX: 0000000000000024 RSI: 00007fa810bf6010 RDI: 0000000000000007
[  376.271848][T14594] RBP: 0000000000000000 R08: 00007fa810bf5f14 R09: 000000000000000c
[  376.271861][T14594] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000007
[  376.271873][T14594] R13: 00007fa810bf5f68 R14: 00007fa810bf6010 R15: 0000000000000000
[  376.271910][T14594]  </TASK>
[  376.911894][T14607] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2515'.
[  377.489685][T14641] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2525'.
[  377.607410][T14643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2528'.
[  377.686114][T14644] netlink: 200 bytes leftover after parsing attributes in process `syz.4.2527'.
[  378.089432][T14650] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2527'.
[  378.398408][T14664] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  378.460780][T14664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2530'.
[  378.784086][T14685] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  378.977657][T14695] netlink: 'syz.1.2538': attribute type 66 has an invalid length.
[  379.054403][T14694] pim6reg1: entered promiscuous mode
[  379.062682][T14694] pim6reg1: entered allmulticast mode
[  379.133650][T14704] netlink: 'syz.4.2542': attribute type 1 has an invalid length.
[  379.369006][T14719] IPVS: set_ctl: invalid protocol: 0 0.0.0.0:20002
[  379.398920][T14719] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:21
[  379.416188][T14721] syzkaller1: entered promiscuous mode
[  379.438415][T14721] syzkaller1: entered allmulticast mode
[  379.490355][T14724] FAULT_INJECTION: forcing a failure.
[  379.490355][T14724] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  379.595442][T14724] CPU: 1 UID: 0 PID: 14724 Comm: syz.0.2549 Not tainted syzkaller #0 PREEMPT(full) 
[  379.595474][T14724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  379.595487][T14724] Call Trace:
[  379.595496][T14724]  <TASK>
[  379.595505][T14724]  dump_stack_lvl+0x189/0x250
[  379.595542][T14724]  ? __pfx____ratelimit+0x10/0x10
[  379.595573][T14724]  ? __pfx_dump_stack_lvl+0x10/0x10
[  379.595599][T14724]  ? __pfx__printk+0x10/0x10
[  379.595634][T14724]  ? __might_fault+0xb0/0x130
[  379.595678][T14724]  should_fail_ex+0x414/0x560
[  379.595709][T14724]  _copy_from_user+0x2d/0xb0
[  379.595736][T14724]  ___sys_recvmsg+0x12e/0x510
[  379.595766][T14724]  ? __pfx____sys_recvmsg+0x10/0x10
[  379.595818][T14724]  ? __fget_files+0x3a0/0x420
[  379.595864][T14724]  do_recvmmsg+0x307/0x770
[  379.595899][T14724]  ? __pfx_do_recvmmsg+0x10/0x10
[  379.595938][T14724]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  379.595998][T14724]  __x64_sys_recvmmsg+0x190/0x240
[  379.596026][T14724]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  379.596047][T14724]  ? rcu_is_watching+0x15/0xb0
[  379.596075][T14724]  ? do_syscall_64+0xbe/0x3b0
[  379.596111][T14724]  do_syscall_64+0xfa/0x3b0
[  379.596140][T14724]  ? lockdep_hardirqs_on+0x9c/0x150
[  379.596169][T14724]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.596190][T14724]  ? clear_bhb_loop+0x60/0xb0
[  379.596217][T14724]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  379.596237][T14724] RIP: 0033:0x7f3717f8ebe9
[  379.596257][T14724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  379.596275][T14724] RSP: 002b:00007f3718dbd038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  379.596298][T14724] RAX: ffffffffffffffda RBX: 00007f37181b6090 RCX: 00007f3717f8ebe9
[  379.596313][T14724] RDX: 0000000000000001 RSI: 0000200000003e00 RDI: 0000000000000003
[  379.596327][T14724] RBP: 00007f3718dbd090 R08: 0000000000000000 R09: 0000000000000000
[  379.596340][T14724] R10: 45833af92e4b39ff R11: 0000000000000246 R12: 0000000000000001
[  379.596354][T14724] R13: 00007f37181b6128 R14: 00007f37181b6090 R15: 00007ffe0bca8fe8
[  379.596390][T14724]  </TASK>
[  379.821180][T14726] workqueue: Failed to create a rescuer kthread for wq "nfc4_nci_cmd_wq": -EINTR
[  379.832648][T14738] openvswitch: netlink: Duplicate or invalid key (type 0).
[  379.849242][T14738] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  379.870150][T14738] syzkaller0: entered promiscuous mode
[  379.875686][T14738] syzkaller0: entered allmulticast mode
[  380.497724][T14746] syzkaller0: entered promiscuous mode
[  380.557495][T14746] syzkaller0: entered allmulticast mode
[  380.714940][T14771] FAULT_INJECTION: forcing a failure.
[  380.714940][T14771] name failslab, interval 1, probability 0, space 0, times 0
[  380.748404][T14771] CPU: 0 UID: 0 PID: 14771 Comm: syz.0.2562 Not tainted syzkaller #0 PREEMPT(full) 
[  380.748436][T14771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  380.748450][T14771] Call Trace:
[  380.748458][T14771]  <TASK>
[  380.748468][T14771]  dump_stack_lvl+0x189/0x250
[  380.748499][T14771]  ? __pfx____ratelimit+0x10/0x10
[  380.748529][T14771]  ? __pfx_dump_stack_lvl+0x10/0x10
[  380.748555][T14771]  ? __pfx__printk+0x10/0x10
[  380.748605][T14771]  should_fail_ex+0x414/0x560
[  380.748646][T14771]  should_failslab+0xa8/0x100
[  380.748679][T14771]  __kmalloc_cache_noprof+0x70/0x3d0
[  380.748709][T14771]  ? sctp_add_bind_addr+0x8c/0x370
[  380.748742][T14771]  sctp_add_bind_addr+0x8c/0x370
[  380.748775][T14771]  sctp_copy_local_addr_list+0x30b/0x4e0
[  380.748806][T14771]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  380.748834][T14771]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  380.748865][T14771]  ? sctp_v6_is_any+0x64/0x80
[  380.748897][T14771]  ? sctp_copy_one_addr+0x93/0x360
[  380.748930][T14771]  sctp_bind_addr_copy+0xb3/0x3c0
[  380.748959][T14771]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  380.748988][T14771]  sctp_connect_new_asoc+0x2e0/0x690
[  380.749013][T14771]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  380.749031][T14771]  ? __local_bh_enable_ip+0x12d/0x1c0
[  380.749062][T14771]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  380.749087][T14771]  ? security_sctp_bind_connect+0x7e/0x2e0
[  380.749119][T14771]  sctp_sendmsg+0x155c/0x2810
[  380.749164][T14771]  ? __pfx_sctp_sendmsg+0x10/0x10
[  380.749199][T14771]  ? aa_sk_perm+0x81e/0x950
[  380.749234][T14771]  ? __pfx_aa_sk_perm+0x10/0x10
[  380.749267][T14771]  ? sock_rps_record_flow+0x19/0x410
[  380.749294][T14771]  ? inet_sendmsg+0x2f4/0x370
[  380.749322][T14771]  __sock_sendmsg+0x19c/0x270
[  380.749351][T14771]  ____sys_sendmsg+0x52d/0x830
[  380.749378][T14771]  ? __pfx_____sys_sendmsg+0x10/0x10
[  380.749408][T14771]  ? import_iovec+0x74/0xa0
[  380.749437][T14771]  ___sys_sendmsg+0x21f/0x2a0
[  380.749461][T14771]  ? __pfx____sys_sendmsg+0x10/0x10
[  380.749523][T14771]  ? __fget_files+0x2a/0x420
[  380.749554][T14771]  ? __fget_files+0x3a0/0x420
[  380.749598][T14771]  __sys_sendmmsg+0x227/0x430
[  380.749636][T14771]  ? __pfx___sys_sendmmsg+0x10/0x10
[  380.749654][T14771]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  380.749716][T14771]  ? ksys_write+0x22a/0x250
[  380.749747][T14771]  ? __pfx_ksys_write+0x10/0x10
[  380.749783][T14771]  __x64_sys_sendmmsg+0xa0/0xc0
[  380.749808][T14771]  do_syscall_64+0xfa/0x3b0
[  380.749837][T14771]  ? lockdep_hardirqs_on+0x9c/0x150
[  380.749865][T14771]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.749885][T14771]  ? clear_bhb_loop+0x60/0xb0
[  380.749919][T14771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.749939][T14771] RIP: 0033:0x7f3717f8ebe9
[  380.749958][T14771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.749976][T14771] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  380.749999][T14771] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  380.750014][T14771] RDX: 0000000000000001 RSI: 0000200000002480 RDI: 0000000000000003
[  380.750028][T14771] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  380.750041][T14771] R10: 0000000000044844 R11: 0000000000000246 R12: 0000000000000002
[  380.750054][T14771] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  380.750090][T14771]  </TASK>
[  381.228716][T14777] __nla_validate_parse: 6 callbacks suppressed
[  381.228741][T14777] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2563'.
[  381.244358][T14777] openvswitch: netlink: nsh attribute has unmatched MD type 0.
[  381.252222][T14777] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  381.404067][T14782] FAULT_INJECTION: forcing a failure.
[  381.404067][T14782] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  381.417344][T14782] CPU: 0 UID: 0 PID: 14782 Comm: syz.0.2564 Not tainted syzkaller #0 PREEMPT(full) 
[  381.417373][T14782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  381.417387][T14782] Call Trace:
[  381.417395][T14782]  <TASK>
[  381.417406][T14782]  dump_stack_lvl+0x189/0x250
[  381.417436][T14782]  ? __pfx____ratelimit+0x10/0x10
[  381.417467][T14782]  ? __pfx_dump_stack_lvl+0x10/0x10
[  381.417493][T14782]  ? __pfx__printk+0x10/0x10
[  381.417524][T14782]  ? __might_fault+0xb0/0x130
[  381.417566][T14782]  should_fail_ex+0x414/0x560
[  381.417602][T14782]  _copy_from_user+0x2d/0xb0
[  381.417628][T14782]  ___sys_recvmsg+0x12e/0x510
[  381.417660][T14782]  ? __pfx____sys_recvmsg+0x10/0x10
[  381.417721][T14782]  ? __might_fault+0xb0/0x130
[  381.417755][T14782]  do_recvmmsg+0x307/0x770
[  381.417788][T14782]  ? __pfx_do_recvmmsg+0x10/0x10
[  381.417835][T14782]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  381.417888][T14782]  __x64_sys_recvmmsg+0x190/0x240
[  381.417916][T14782]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  381.417937][T14782]  ? rcu_is_watching+0x15/0xb0
[  381.417965][T14782]  ? do_syscall_64+0xbe/0x3b0
[  381.418001][T14782]  do_syscall_64+0xfa/0x3b0
[  381.418031][T14782]  ? lockdep_hardirqs_on+0x9c/0x150
[  381.418060][T14782]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.418081][T14782]  ? clear_bhb_loop+0x60/0xb0
[  381.418108][T14782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  381.418129][T14782] RIP: 0033:0x7f3717f8ebe9
[  381.418149][T14782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  381.418172][T14782] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  381.418194][T14782] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  381.418209][T14782] RDX: 0000000000000600 RSI: 0000200000003700 RDI: 0000000000000005
[  381.418222][T14782] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  381.418235][T14782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  381.418247][T14782] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  381.418279][T14782]  </TASK>
[  382.935340][T14757] bond0: default FDB implementation only supports local addresses
[  383.846490][T14829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2577'.
[  384.585488][T14849] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2582'.
[  384.849706][T14856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2586'.
[  385.652061][T14873] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2590'.
[  385.976586][T14895] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2597'.
[  386.201682][T14903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2600'.
[  386.829486][T14923] openvswitch: netlink: Duplicate or invalid key (type 0).
[  386.836784][T14923] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  386.969298][T14923] syzkaller0: entered promiscuous mode
[  386.974935][T14923] syzkaller0: entered allmulticast mode
[  387.096775][T14933] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2610'.
[  387.232227][T14937] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2611'.
[  387.478493][T14945] FAULT_INJECTION: forcing a failure.
[  387.478493][T14945] name failslab, interval 1, probability 0, space 0, times 0
[  387.507647][T14945] CPU: 0 UID: 0 PID: 14945 Comm: syz.0.2615 Not tainted syzkaller #0 PREEMPT(full) 
[  387.507677][T14945] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  387.507690][T14945] Call Trace:
[  387.507698][T14945]  <TASK>
[  387.507708][T14945]  dump_stack_lvl+0x189/0x250
[  387.507739][T14945]  ? __pfx____ratelimit+0x10/0x10
[  387.507770][T14945]  ? __pfx_dump_stack_lvl+0x10/0x10
[  387.507796][T14945]  ? __pfx__printk+0x10/0x10
[  387.507844][T14945]  should_fail_ex+0x414/0x560
[  387.507877][T14945]  should_failslab+0xa8/0x100
[  387.507912][T14945]  __kmalloc_cache_noprof+0x70/0x3d0
[  387.507941][T14945]  ? sctp_add_bind_addr+0x8c/0x370
[  387.507973][T14945]  sctp_add_bind_addr+0x8c/0x370
[  387.508007][T14945]  sctp_copy_local_addr_list+0x30b/0x4e0
[  387.508040][T14945]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  387.508069][T14945]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  387.508099][T14945]  ? sctp_v6_is_any+0x64/0x80
[  387.508132][T14945]  ? sctp_copy_one_addr+0x93/0x360
[  387.508169][T14945]  sctp_bind_addr_copy+0xb3/0x3c0
[  387.508198][T14945]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  387.508260][T14945]  sctp_connect_new_asoc+0x2e0/0x690
[  387.508286][T14945]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  387.508304][T14945]  ? __local_bh_enable_ip+0x12d/0x1c0
[  387.508335][T14945]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  387.508361][T14945]  ? security_sctp_bind_connect+0x7e/0x2e0
[  387.508393][T14945]  sctp_sendmsg+0x155c/0x2810
[  387.508443][T14945]  ? __pfx_sctp_sendmsg+0x10/0x10
[  387.508480][T14945]  ? aa_sk_perm+0x81e/0x950
[  387.508518][T14945]  ? __pfx_aa_sk_perm+0x10/0x10
[  387.508554][T14945]  ? sock_rps_record_flow+0x19/0x410
[  387.508584][T14945]  ? inet_sendmsg+0x2f4/0x370
[  387.508616][T14945]  __sock_sendmsg+0x19c/0x270
[  387.508649][T14945]  ____sys_sendmsg+0x52d/0x830
[  387.508679][T14945]  ? __pfx_____sys_sendmsg+0x10/0x10
[  387.508714][T14945]  ? import_iovec+0x74/0xa0
[  387.508743][T14945]  ___sys_sendmsg+0x21f/0x2a0
[  387.508770][T14945]  ? __pfx____sys_sendmsg+0x10/0x10
[  387.508839][T14945]  ? __fget_files+0x2a/0x420
[  387.508873][T14945]  ? __fget_files+0x3a0/0x420
[  387.508920][T14945]  __sys_sendmmsg+0x227/0x430
[  387.508951][T14945]  ? __pfx___sys_sendmmsg+0x10/0x10
[  387.508971][T14945]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  387.509037][T14945]  ? ksys_write+0x22a/0x250
[  387.509069][T14945]  ? __pfx_ksys_write+0x10/0x10
[  387.509095][T14945]  ? rcu_is_watching+0x15/0xb0
[  387.509126][T14945]  __x64_sys_sendmmsg+0xa0/0xc0
[  387.509152][T14945]  do_syscall_64+0xfa/0x3b0
[  387.509183][T14945]  ? lockdep_hardirqs_on+0x9c/0x150
[  387.509213][T14945]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.509246][T14945]  ? clear_bhb_loop+0x60/0xb0
[  387.509274][T14945]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.509295][T14945] RIP: 0033:0x7f3717f8ebe9
[  387.509316][T14945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.509336][T14945] RSP: 002b:00007f3718dde038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  387.509360][T14945] RAX: ffffffffffffffda RBX: 00007f37181b5fa0 RCX: 00007f3717f8ebe9
[  387.509376][T14945] RDX: 0000000000000002 RSI: 0000200000003180 RDI: 0000000000000003
[  387.509390][T14945] RBP: 00007f3718dde090 R08: 0000000000000000 R09: 0000000000000000
[  387.509404][T14945] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000002
[  387.509418][T14945] R13: 00007f37181b6038 R14: 00007f37181b5fa0 R15: 00007ffe0bca8fe8
[  387.509455][T14945]  </TASK>
[  387.855428][T14947] FAULT_INJECTION: forcing a failure.
[  387.855428][T14947] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  387.878035][T14947] CPU: 1 UID: 0 PID: 14947 Comm: syz.3.2616 Not tainted syzkaller #0 PREEMPT(full) 
[  387.878075][T14947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  387.878091][T14947] Call Trace:
[  387.878100][T14947]  <TASK>
[  387.878132][T14947]  dump_stack_lvl+0x189/0x250
[  387.878167][T14947]  ? __pfx____ratelimit+0x10/0x10
[  387.878200][T14947]  ? __pfx_dump_stack_lvl+0x10/0x10
[  387.878228][T14947]  ? __pfx__printk+0x10/0x10
[  387.878263][T14947]  ? __might_fault+0xb0/0x130
[  387.878311][T14947]  should_fail_ex+0x414/0x560
[  387.878350][T14947]  _copy_from_user+0x2d/0xb0
[  387.878389][T14947]  ___sys_recvmsg+0x12e/0x510
[  387.878423][T14947]  ? __pfx____sys_recvmsg+0x10/0x10
[  387.878493][T14947]  ? __might_fault+0xb0/0x130
[  387.878531][T14947]  do_recvmmsg+0x307/0x770
[  387.878569][T14947]  ? __pfx_do_recvmmsg+0x10/0x10
[  387.878611][T14947]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  387.878670][T14947]  __x64_sys_recvmmsg+0x190/0x240
[  387.878701][T14947]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  387.878724][T14947]  ? rcu_is_watching+0x15/0xb0
[  387.878756][T14947]  ? do_syscall_64+0xbe/0x3b0
[  387.878795][T14947]  do_syscall_64+0xfa/0x3b0
[  387.878828][T14947]  ? lockdep_hardirqs_on+0x9c/0x150
[  387.878859][T14947]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.878883][T14947]  ? clear_bhb_loop+0x60/0xb0
[  387.878912][T14947]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.878935][T14947] RIP: 0033:0x7f5f1ab8ebe9
[  387.878956][T14947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  387.878977][T14947] RSP: 002b:00007f5f1ba84038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  387.879002][T14947] RAX: ffffffffffffffda RBX: 00007f5f1adb5fa0 RCX: 00007f5f1ab8ebe9
[  387.879019][T14947] RDX: 0000000004000032 RSI: 0000200000004c00 RDI: 0000000000000005
[  387.879034][T14947] RBP: 00007f5f1ba84090 R08: 0000000000000000 R09: 0000000000000000
[  387.879048][T14947] R10: 0000000040000021 R11: 0000000000000246 R12: 0000000000000002
[  387.879063][T14947] R13: 00007f5f1adb6038 R14: 00007f5f1adb5fa0 R15: 00007ffc7180eae8
[  387.879103][T14947]  </TASK>
[  388.281828][T14957] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2620'.
[  388.410943][T14961] FAULT_INJECTION: forcing a failure.
[  388.410943][T14961] name failslab, interval 1, probability 0, space 0, times 0
[  388.448348][T14961] CPU: 1 UID: 0 PID: 14961 Comm: syz.4.2621 Not tainted syzkaller #0 PREEMPT(full) 
[  388.448380][T14961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  388.448393][T14961] Call Trace:
[  388.448402][T14961]  <TASK>
[  388.448412][T14961]  dump_stack_lvl+0x189/0x250
[  388.448444][T14961]  ? __pfx____ratelimit+0x10/0x10
[  388.448475][T14961]  ? __pfx_dump_stack_lvl+0x10/0x10
[  388.448501][T14961]  ? __pfx__printk+0x10/0x10
[  388.448539][T14961]  ? __pfx___might_resched+0x10/0x10
[  388.448566][T14961]  should_fail_ex+0x414/0x560
[  388.448599][T14961]  should_failslab+0xa8/0x100
[  388.448634][T14961]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  388.448665][T14961]  ? __alloc_skb+0x112/0x2d0
[  388.448702][T14961]  __alloc_skb+0x112/0x2d0
[  388.448740][T14961]  netlink_sendmsg+0x5c6/0xb30
[  388.448784][T14961]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.448820][T14961]  ? aa_sock_msg_perm+0xf1/0x1d0
[  388.448856][T14961]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  388.448879][T14961]  ? __pfx_netlink_sendmsg+0x10/0x10
[  388.448912][T14961]  __sock_sendmsg+0x219/0x270
[  388.448944][T14961]  ____sys_sendmsg+0x505/0x830
[  388.448974][T14961]  ? __pfx_____sys_sendmsg+0x10/0x10
[  388.449007][T14961]  ? import_iovec+0x74/0xa0
[  388.449036][T14961]  ___sys_sendmsg+0x21f/0x2a0
[  388.449062][T14961]  ? __pfx____sys_sendmsg+0x10/0x10
[  388.449128][T14961]  ? __fget_files+0x2a/0x420
[  388.449160][T14961]  ? __fget_files+0x3a0/0x420
[  388.449205][T14961]  __x64_sys_sendmsg+0x19b/0x260
[  388.449232][T14961]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  388.449266][T14961]  ? __pfx_ksys_write+0x10/0x10
[  388.449302][T14961]  ? do_syscall_64+0xbe/0x3b0
[  388.449344][T14961]  do_syscall_64+0xfa/0x3b0
[  388.449374][T14961]  ? lockdep_hardirqs_on+0x9c/0x150
[  388.449403][T14961]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.449424][T14961]  ? clear_bhb_loop+0x60/0xb0
[  388.449451][T14961]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.449471][T14961] RIP: 0033:0x7faa17b8ebe9
[  388.449491][T14961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.449510][T14961] RSP: 002b:00007faa18993038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  388.449532][T14961] RAX: ffffffffffffffda RBX: 00007faa17db6090 RCX: 00007faa17b8ebe9
[  388.449548][T14961] RDX: 0000000020004804 RSI: 00002000000000c0 RDI: 0000000000000004
[  388.449562][T14961] RBP: 00007faa18993090 R08: 0000000000000000 R09: 0000000000000000
[  388.449575][T14961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.449587][T14961] R13: 00007faa17db6128 R14: 00007faa17db6090 R15: 00007ffe3aad8db8
[  388.449622][T14961]  </TASK>
[  388.828376][ T5863] Bluetooth: hci2: command 0x0406 tx timeout
[  389.073914][T14976] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2629'.
[  389.153744][T14981] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2628'.
[  389.177703][T14981] netlink: 'syz.0.2628': attribute type 8 has an invalid length.
[  389.705096][T15005] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2637'.
[  390.128841][T15025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2643'.
[  390.386471][T15035] lo speed is unknown, defaulting to 1000
[  390.401277][T15035] lo speed is unknown, defaulting to 1000
[  390.455394][T15037] macvlan5: entered allmulticast mode
[  390.470758][T15037] veth1_vlan: entered allmulticast mode
[  390.486981][T15037] veth1_vlan: left allmulticast mode
[  390.567800][T15035] lo speed is unknown, defaulting to 1000
[  390.618015][T15035] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  390.645065][T15046] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2650'.
[  390.674004][T15035] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  390.749179][T15035] lo speed is unknown, defaulting to 1000
[  390.776287][T15035] lo speed is unknown, defaulting to 1000
[  390.797018][T15035] lo speed is unknown, defaulting to 1000
[  390.809273][T15035] lo speed is unknown, defaulting to 1000
[  390.829233][T15035] lo speed is unknown, defaulting to 1000
[  391.565022][T15083] netlink: 'syz.2.2660': attribute type 10 has an invalid length.
[  391.764985][T15095] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2665'.
[  392.007585][T15114] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2669'.
[  392.292330][T15125] netlink: 'syz.0.2675': attribute type 11 has an invalid length.
[  392.931629][T15148] netlink: 'syz.3.2683': attribute type 3 has an invalid length.
[  393.029991][T15165] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2687'.
[  393.537410][T15180] lo speed is unknown, defaulting to 1000
[  393.697474][T15197] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2696'.
[  393.893649][T15206] openvswitch: netlink: Duplicate or invalid key (type 0).
[  393.905775][T15206] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  393.981577][T15206] syzkaller0: entered promiscuous mode
[  393.987879][T15206] syzkaller0: entered allmulticast mode
[  394.026931][T15173] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  394.681744][T15232] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2704'.
[  395.273909][T15251] openvswitch: netlink: Duplicate or invalid key (type 0).
[  395.292618][T15251] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  395.344143][T15251] syzkaller0: entered promiscuous mode
[  395.350541][T15251] syzkaller0: entered allmulticast mode
[  395.436804][T15256] lo speed is unknown, defaulting to 1000
[  395.534902][T15265] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2714'.
[  395.687223][T15271] vlan0: entered promiscuous mode
[  395.703528][T15274] netlink: 216 bytes leftover after parsing attributes in process `syz.0.2718'.
[  395.713838][T15274] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2718'.
[  395.723289][T15274] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2718'.
[  395.944536][T15282] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2721'.
[  396.211676][T15296] syzkaller1: entered promiscuous mode
[  396.221567][T15296] syzkaller1: entered allmulticast mode
[  396.262171][T15298] bond0: entered promiscuous mode
[  396.274443][T15298] bond0: left promiscuous mode
[  396.318063][T15304] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  396.350929][T15298] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2727'.
[  396.407957][T15294] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2727'.
[  396.501590][T15307] lo speed is unknown, defaulting to 1000
[  396.640605][T15316] lo speed is unknown, defaulting to 1000
[  398.007415][T15363] veth15: entered promiscuous mode
[  398.020909][T15363] veth15: entered allmulticast mode
[  398.027932][T15363] bond0: (slave veth15): Enslaving as an active interface with an up link
[  398.367979][T15377] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  398.552789][T15377] syzkaller0: entered promiscuous mode
[  398.563029][T15377] syzkaller0: entered allmulticast mode
[  398.623023][T15382] __nla_validate_parse: 5 callbacks suppressed
[  398.623047][T15382] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2755'.
[  399.478430][ T1210] tipc: Node number set to 2690924264
[  400.793690][T15376] tipc: Resetting bearer <eth:syzkaller0>
[  401.076982][T15405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2762'.
[  402.571421][T15376] tipc: Disabling bearer <eth:syzkaller0>
[  402.589340][T15392] macvlan1: entered allmulticast mode
[  402.594758][T15392] team0: entered allmulticast mode
[  402.600324][T15392] team_slave_0: entered allmulticast mode
[  402.606079][T15392] team_slave_1: entered allmulticast mode
[  402.612273][T15392] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  402.625679][T15392] team0: left allmulticast mode
[  402.630674][T15392] team_slave_0: left allmulticast mode
[  402.636174][T15392] team_slave_1: left allmulticast mode
[  402.663901][T15403] kthread_run failed with err -4
[  402.686704][T15418] netlink: 27 bytes leftover after parsing attributes in process `syz.1.2764'.
[  402.922020][T15427] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2767'.
[  403.059114][T15432] openvswitch: netlink: Message has 92 unknown bytes.
[  403.297535][T15451] netlink: 'syz.3.2775': attribute type 1 has an invalid length.
[  403.356158][T15455] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2775'.
[  403.416061][T15451] bond3: entered promiscuous mode
[  403.421900][T15451] 8021q: adding VLAN 0 to HW filter on device bond3
[  403.456115][T15455] batadv1: entered promiscuous mode
[  403.461668][T15455] batadv1: entered allmulticast mode
[  403.469309][T15455] 8021q: adding VLAN 0 to HW filter on device batadv1
[  403.484063][T15455] bond3: (slave batadv1): making interface the new active one
[  403.498350][T15455] bond3: (slave batadv1): Enslaving as an active interface with an up link
[  403.575444][T15453] lo speed is unknown, defaulting to 1000
[  403.726957][T15451] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2775'.
[  404.205461][T15475] veth5: entered promiscuous mode
[  404.221054][T15475] bond0: (slave veth5): Enslaving as an active interface with an up link
[  404.666782][T15490] lo speed is unknown, defaulting to 1000
[  404.820851][T15499] netlink: 'syz.4.2788': attribute type 3 has an invalid length.
[  404.869448][T15494] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2786'.
[  405.166588][ T6141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  405.199900][ T6141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.541557][T15529] netlink: 'syz.2.2794': attribute type 10 has an invalid length.
[  405.562279][T15529] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2794'.
[  405.566461][T15531] FAULT_INJECTION: forcing a failure.
[  405.566461][T15531] name failslab, interval 1, probability 0, space 0, times 0
[  405.616384][T15531] CPU: 1 UID: 0 PID: 15531 Comm: syz.4.2796 Not tainted syzkaller #0 PREEMPT(full) 
[  405.616417][T15531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  405.616430][T15531] Call Trace:
[  405.616439][T15531]  <TASK>
[  405.616449][T15531]  dump_stack_lvl+0x189/0x250
[  405.616482][T15531]  ? __pfx____ratelimit+0x10/0x10
[  405.616513][T15531]  ? __pfx_dump_stack_lvl+0x10/0x10
[  405.616540][T15531]  ? __pfx__printk+0x10/0x10
[  405.616588][T15531]  should_fail_ex+0x414/0x560
[  405.616623][T15531]  should_failslab+0xa8/0x100
[  405.616658][T15531]  __kmalloc_cache_noprof+0x70/0x3d0
[  405.616687][T15531]  ? sctp_add_bind_addr+0x8c/0x370
[  405.616722][T15531]  sctp_add_bind_addr+0x8c/0x370
[  405.616755][T15531]  sctp_copy_local_addr_list+0x30b/0x4e0
[  405.616789][T15531]  ? sctp_copy_local_addr_list+0x9b/0x4e0
[  405.616818][T15531]  ? __pfx_sctp_copy_local_addr_list+0x10/0x10
[  405.616849][T15531]  ? sctp_v6_is_any+0x64/0x80
[  405.616881][T15531]  ? sctp_copy_one_addr+0x93/0x360
[  405.616930][T15531]  sctp_bind_addr_copy+0xb3/0x3c0
[  405.616968][T15531]  ? sctp_assoc_set_bind_addr_from_ep+0xa5/0x1a0
[  405.616998][T15531]  sctp_connect_new_asoc+0x2e0/0x690
[  405.617024][T15531]  ? __pfx_sctp_connect_new_asoc+0x10/0x10
[  405.617043][T15531]  ? __local_bh_enable_ip+0x12d/0x1c0
[  405.617074][T15531]  ? bpf_lsm_sctp_bind_connect+0x9/0x20
[  405.617101][T15531]  ? security_sctp_bind_connect+0x7e/0x2e0
[  405.617133][T15531]  sctp_sendmsg+0x155c/0x2810
[  405.617182][T15531]  ? __pfx_sctp_sendmsg+0x10/0x10
[  405.617219][T15531]  ? aa_sk_perm+0x81e/0x950
[  405.617256][T15531]  ? __pfx_aa_sk_perm+0x10/0x10
[  405.617292][T15531]  ? sock_rps_record_flow+0x19/0x410
[  405.617323][T15531]  ? inet_sendmsg+0x2f4/0x370
[  405.617353][T15531]  __sock_sendmsg+0x19c/0x270
[  405.617386][T15531]  ____sys_sendmsg+0x52d/0x830
[  405.617415][T15531]  ? __pfx_____sys_sendmsg+0x10/0x10
[  405.617449][T15531]  ? import_iovec+0x74/0xa0
[  405.617478][T15531]  ___sys_sendmsg+0x21f/0x2a0
[  405.617504][T15531]  ? __pfx____sys_sendmsg+0x10/0x10
[  405.617570][T15531]  ? __fget_files+0x2a/0x420
[  405.617603][T15531]  ? __fget_files+0x3a0/0x420
[  405.617648][T15531]  __sys_sendmmsg+0x227/0x430
[  405.617678][T15531]  ? __pfx___sys_sendmmsg+0x10/0x10
[  405.617697][T15531]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  405.617761][T15531]  ? ksys_write+0x22a/0x250
[  405.617793][T15531]  ? __pfx_ksys_write+0x10/0x10
[  405.617818][T15531]  ? rcu_is_watching+0x15/0xb0
[  405.617847][T15531]  __x64_sys_sendmmsg+0xa0/0xc0
[  405.617871][T15531]  do_syscall_64+0xfa/0x3b0
[  405.617900][T15531]  ? lockdep_hardirqs_on+0x9c/0x150
[  405.617929][T15531]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.617959][T15531]  ? clear_bhb_loop+0x60/0xb0
[  405.617987][T15531]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.618007][T15531] RIP: 0033:0x7faa17b8ebe9
[  405.618027][T15531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.618047][T15531] RSP: 002b:00007faa189b4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  405.618069][T15531] RAX: ffffffffffffffda RBX: 00007faa17db5fa0 RCX: 00007faa17b8ebe9
[  405.618085][T15531] RDX: 0000000000000002 RSI: 0000200000003180 RDI: 0000000000000003
[  405.618099][T15531] RBP: 00007faa189b4090 R08: 0000000000000000 R09: 0000000000000000
[  405.618112][T15531] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000002
[  405.618125][T15531] R13: 00007faa17db6038 R14: 00007faa17db5fa0 R15: 00007ffe3aad8db8
[  405.618165][T15531]  </TASK>
[  406.044848][T15529] batman_adv: batadv0: Adding interface: virt_wifi0
[  406.090521][T15529] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  406.216353][T15529] batman_adv: batadv0: Not using interface virt_wifi0 (retrying later): interface not active
[  408.934401][T15553] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2802'.
[  408.943841][T15553] netlink: 'syz.3.2802': attribute type 7 has an invalid length.
[  408.951700][T15553] netlink: 'syz.3.2802': attribute type 8 has an invalid length.
[  408.959782][T15553] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2802'.
[  421.260360][ T5181] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  421.270773][ T5181] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  421.278935][ T5181] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  421.288572][ T5181] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  421.296500][ T5181] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  422.995455][   T51] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  423.007067][ T9339] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  423.016241][ T9340] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  423.025947][ T9339] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  423.034854][ T9340] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  423.043063][ T9339] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  423.051803][ T9340] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  423.059941][ T9339] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  423.069697][ T9339] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  423.077442][ T9339] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  423.084808][ T9340] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  423.093815][ T9339] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  423.102894][ T9339] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  423.112485][ T9340] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  423.120787][ T9339] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  423.388630][ T5867] Bluetooth: hci5: command tx timeout
[  425.034202][ T9339] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  425.043417][ T9339] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  425.051552][ T9339] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  425.060566][ T9339] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  425.069929][ T9339] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  425.148395][ T9339] Bluetooth: hci8: command tx timeout
[  425.154483][ T9339] Bluetooth: hci6: command tx timeout
[  425.161182][ T5867] Bluetooth: hci7: command tx timeout
[  425.468625][ T5867] Bluetooth: hci5: command tx timeout
[  427.148349][ T5867] Bluetooth: hci9: command tx timeout
[  427.228416][   T51] Bluetooth: hci8: command tx timeout
[  427.234036][ T9339] Bluetooth: hci6: command tx timeout
[  427.239536][ T5867] Bluetooth: hci7: command tx timeout
[  427.548636][ T9339] Bluetooth: hci5: command tx timeout
[  429.230209][ T9339] Bluetooth: hci9: command tx timeout
[  429.308377][ T9339] Bluetooth: hci6: command tx timeout
[  429.313829][ T9339] Bluetooth: hci7: command tx timeout
[  429.320122][ T5867] Bluetooth: hci8: command tx timeout
[  429.628539][ T9339] Bluetooth: hci5: command tx timeout
[  431.308285][ T9339] Bluetooth: hci9: command tx timeout
[  431.388391][   T51] Bluetooth: hci8: command tx timeout
[  431.393854][   T51] Bluetooth: hci6: command tx timeout
[  431.399433][ T9339] Bluetooth: hci7: command tx timeout
[  433.388315][ T9339] Bluetooth: hci9: command tx timeout
[  482.110230][   T51] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  482.119486][   T51] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  482.127506][   T51] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  482.136620][   T51] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  482.144622][   T51] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  483.791556][ T5867] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  483.800849][ T5867] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  483.809087][ T5867] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  483.817280][ T5867] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  483.825315][ T5867] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  483.859419][ T5867] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  483.868965][ T5867] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  483.877065][ T5867] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  483.885940][ T5867] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  483.894645][ T5867] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  483.918847][ T5867] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  483.927888][ T5867] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  483.936204][ T5867] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  483.945273][ T5867] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  483.953215][ T5867] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  484.188378][   T51] Bluetooth: hci10: command tx timeout
[  485.817058][ T5867] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  485.826573][ T5867] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  485.835449][ T5867] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  485.843730][ T5867] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  485.851620][ T5867] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  485.868627][   T51] Bluetooth: hci11: command tx timeout
[  485.948304][   T51] Bluetooth: hci12: command tx timeout
[  486.028305][   T51] Bluetooth: hci13: command tx timeout
[  486.268394][   T51] Bluetooth: hci10: command tx timeout
[  487.948335][ T5867] Bluetooth: hci11: command tx timeout
[  487.953986][   T51] Bluetooth: hci14: command tx timeout
[  488.028498][   T51] Bluetooth: hci12: command tx timeout
[  488.108253][   T51] Bluetooth: hci13: command tx timeout
[  488.348255][   T51] Bluetooth: hci10: command tx timeout
[  490.028350][ T5867] Bluetooth: hci11: command tx timeout
[  490.033976][   T51] Bluetooth: hci14: command tx timeout
[  490.108266][   T51] Bluetooth: hci12: command tx timeout
[  490.188316][   T51] Bluetooth: hci13: command tx timeout
[  490.428806][   T51] Bluetooth: hci10: command tx timeout
[  492.108301][   T51] Bluetooth: hci14: command tx timeout
[  492.113857][   T51] Bluetooth: hci11: command tx timeout
[  492.188276][   T51] Bluetooth: hci12: command tx timeout
[  492.268250][   T51] Bluetooth: hci13: command tx timeout
[  494.188373][   T51] Bluetooth: hci14: command tx timeout
[  513.878140][    C0] rcu: INFO: rcu_preempt self-detected stall on CPU
[  513.884793][    C0] rcu: 	0-....: (1 GPs behind) idle=bd4c/0/0x3 softirq=74223/74224 fqs=5249
[  513.894795][    C0] rcu: 	         hardirqs   softirqs   csw/system
[  513.901224][    C0] rcu: 	 number:     5255          0            0
[  513.907653][    C0] rcu: 	cputime:      121      52377            0   ==> 52520(ms)
[  513.915460][    C0] rcu: 	(t=10503 jiffies g=63521 q=3568 ncpus=2)
[  513.921802][    C0] CPU: 0 UID: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0 PREEMPT(full) 
[  513.921827][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  513.921837][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x70
[  513.921862][    C0] Code: 8b 3d c4 48 fe 0b 48 89 de 5b e9 73 98 58 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0c 25 08 40 a0 92 65 8b 15 e8 93 e0 10 81 e2 00 01 ff 00
[  513.921875][    C0] RSP: 0018:ffffc90000007018 EFLAGS: 00000202
[  513.921889][    C0] RAX: ffffffff899885ce RBX: ffff888055856b98 RCX: dffffc0000000000
[  513.921900][    C0] RDX: ffff888055856b98 RSI: ffff888055856b98 RDI: ffff888055856ad0
[  513.921911][    C0] RBP: ffff888055856b88 R08: ffffffff8de95100 R09: 0000000000000002
[  513.921922][    C0] R10: 0000000000000001 R11: ffffffff89988130 R12: dffffc0000000000
[  513.921932][    C0] R13: ffff888055856ad0 R14: ffff888055856b98 R15: ffff888055856ba0
[  513.921944][    C0] FS:  0000000000000000(0000) GS:ffff888125c1c000(0000) knlGS:0000000000000000
[  513.921956][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  513.921966][    C0] CR2: 000000110c2727f9 CR3: 000000000df36000 CR4: 00000000003526f0
[  513.921979][    C0] Call Trace:
[  513.921986][    C0]  <IRQ>
[  513.921991][    C0]  hhf_dequeue+0x49e/0x940
[  513.922023][    C0]  __qdisc_run+0x23c/0x15f0
[  513.922060][    C0]  __dev_queue_xmit+0x1056/0x3b50
[  513.922088][    C0]  ? __dev_queue_xmit+0x27b/0x3b50
[  513.922118][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  513.922134][    C0]  ? kfree+0x18e/0x440
[  513.922152][    C0]  ? ip_push_pending_frames+0x30/0x150
[  513.922169][    C0]  ? __icmp_send+0xf87/0x12d0
[  513.922188][    C0]  ? ipv4_link_failure+0x64e/0xa30
[  513.922204][    C0]  ? arp_error_report+0x115/0x160
[  513.922221][    C0]  ? neigh_invalidate+0x235/0x460
[  513.922234][    C0]  ? neigh_timer_handler+0x949/0x1150
[  513.922246][    C0]  ? call_timer_fn+0x17e/0x5f0
[  513.922267][    C0]  ? __run_timer_base+0x61a/0x860
[  513.922284][    C0]  ? run_timer_softirq+0xb7/0x180
[  513.922303][    C0]  ? handle_softirqs+0x283/0x870
[  513.922316][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  513.922329][    C0]  ? irq_exit_rcu+0x9/0x30
[  513.922341][    C0]  ? sysvec_apic_timer_interrupt+0xa6/0xc0
[  513.922365][    C0]  ? __lock_acquire+0xab9/0xd20
[  513.922403][    C0]  ? ip_finish_output2+0xae7/0x1160
[  513.922425][    C0]  ip_finish_output2+0xd03/0x1160
[  513.922442][    C0]  ? ip_skb_dst_mtu+0x1a5/0xab0
[  513.922463][    C0]  ? ip_finish_output2+0x452/0x1160
[  513.922483][    C0]  ? __pfx_ip_finish_output2+0x10/0x10
[  513.922503][    C0]  ? ip_skb_dst_mtu+0x866/0xab0
[  513.922522][    C0]  ? ip_finish_output+0x33a/0x3f0
[  513.922540][    C0]  ip_output+0x2a1/0x3c0
[  513.922557][    C0]  ? ip_output+0x60/0x3c0
[  513.922574][    C0]  ip_push_pending_frames+0xbe/0x150
[  513.922593][    C0]  __icmp_send+0xf87/0x12d0
[  513.922612][    C0]  ? arch_stack_walk+0x11c/0x150
[  513.922643][    C0]  ? __icmp_send+0x1b9/0x12d0
[  513.922668][    C0]  ? __pfx___icmp_send+0x10/0x10
[  513.922696][    C0]  ? kasan_save_track+0x3e/0x80
[  513.922713][    C0]  ? kasan_save_free_info+0x46/0x50
[  513.922727][    C0]  ? __kasan_slab_free+0x5b/0x80
[  513.922745][    C0]  ? kmem_cache_free+0x18f/0x400
[  513.922765][    C0]  ? neigh_timer_handler+0x949/0x1150
[  513.922778][    C0]  ? call_timer_fn+0x17e/0x5f0
[  513.922797][    C0]  ? __run_timer_base+0x61a/0x860
[  513.922819][    C0]  ? default_idle+0x13/0x20
[  513.922831][    C0]  ? default_idle_call+0x74/0xb0
[  513.922843][    C0]  ? do_idle+0x1e8/0x510
[  513.922855][    C0]  ? cpu_startup_entry+0x44/0x60
[  513.922867][    C0]  ? rest_init+0x2de/0x300
[  513.922897][    C0]  ipv4_link_failure+0x64e/0xa30
[  513.922922][    C0]  ? __pfx_ipv4_link_failure+0x10/0x10
[  513.922947][    C0]  ? __pfx_ipv4_link_failure+0x10/0x10
[  513.922963][    C0]  arp_error_report+0x115/0x160
[  513.922984][    C0]  neigh_invalidate+0x235/0x460
[  513.923006][    C0]  neigh_timer_handler+0x949/0x1150
[  513.923029][    C0]  call_timer_fn+0x17e/0x5f0
[  513.923049][    C0]  ? __pfx_neigh_timer_handler+0x10/0x10
[  513.923062][    C0]  ? call_timer_fn+0xbe/0x5f0
[  513.923083][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  513.923111][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  513.923129][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  513.923147][    C0]  ? __pfx_neigh_timer_handler+0x10/0x10
[  513.923163][    C0]  __run_timer_base+0x61a/0x860
[  513.923182][    C0]  ? ktime_get+0x3e/0x1f0
[  513.923208][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  513.923225][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  513.923256][    C0]  run_timer_softirq+0xb7/0x180
[  513.923277][    C0]  handle_softirqs+0x283/0x870
[  513.923294][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  513.923313][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  513.923332][    C0]  ? irqtime_account_irq+0xb6/0x1c0
[  513.923352][    C0]  __irq_exit_rcu+0xca/0x1f0
[  513.923366][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  513.923388][    C0]  irq_exit_rcu+0x9/0x30
[  513.923400][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  513.923420][    C0]  </IRQ>
[  513.923425][    C0]  <TASK>
[  513.923430][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  513.923447][    C0] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  513.923466][    C0] Code: 13 e8 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d f3 d6 0e 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  513.923478][    C0] RSP: 0018:ffffffff8de07d80 EFLAGS: 000002c2
[  513.923490][    C0] RAX: 9b05934dd7ca5400 RBX: ffffffff819683a8 RCX: 9b05934dd7ca5400
[  513.923501][    C0] RDX: 0000000000000001 RSI: ffffffff8d9b6e7b RDI: ffffffff8be33300
[  513.923511][    C0] RBP: ffffffff8de07eb8 R08: ffff8880b8632f9b R09: 1ffff110170c65f3
[  513.923522][    C0] R10: dffffc0000000000 R11: ffffed10170c65f4 R12: ffffffff8fa37e30
[  513.923533][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 1ffffffff1bd2a20
[  513.923546][    C0]  ? do_idle+0x1e8/0x510
[  513.923568][    C0]  default_idle+0x13/0x20
[  513.923580][    C0]  default_idle_call+0x74/0xb0
[  513.923594][    C0]  do_idle+0x1e8/0x510
[  513.923612][    C0]  ? __pfx_do_idle+0x10/0x10
[  513.923646][    C0]  cpu_startup_entry+0x44/0x60
[  513.923660][    C0]  rest_init+0x2de/0x300
[  513.923677][    C0]  start_kernel+0x3a9/0x410
[  513.923697][    C0]  x86_64_start_reservations+0x24/0x30
[  513.923719][    C0]  x86_64_start_kernel+0x143/0x1c0
[  513.923740][    C0]  common_startup_64+0x13e/0x147
[  513.923773][    C0]  </TASK>