last executing test programs:

1.745555738s ago: executing program 0 (id=1508):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet6_int(r0, 0x29, 0x1a, &(0x7f0000000080)=0x5, 0x4)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000000c0)=[@in6={0xa, 0x4e23, 0x401, @loopback, 0x2}], 0x1c)
sendto$inet6(r0, &(0x7f0000000100)="b8", 0x1, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffbf}, 0x1c)

1.694876997s ago: executing program 0 (id=1510):
syz_emit_ethernet(0x56, &(0x7f0000000000)={@random="fd4000000800", @random="24475466a8f0", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "902d03", 0x20, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[@dstopts={0x0, 0x2, '\x00', [@calipso={0x7, 0x8}, @padn, @generic, @pad1]}]}}}}}, 0x0)

1.694287497s ago: executing program 0 (id=1512):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_ADD_STREAMS(0xffffffffffffffff, 0x84, 0x79, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(0xffffffffffffffff, 0x84, 0x17, &(0x7f00000041c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="6fcf0016"], 0x8)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x3, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"/2646], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000e80), 0x10}, 0xfffffd2c)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r1, 0x0, &(0x7f00000000c0))
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r3)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000f40)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, <r6=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r7=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb0}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r8=>0xffffffffffffffff})
recvmsg$unix(r8, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x1f, &(0x7f0000000d80)=ANY=[@ANYBLOB="180000000c000000000000000800000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7020000000000008500000086000000852000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000010000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000001000000850000008200000018170000", @ANYRES32=r0, @ANYBLOB="0000000000000000bf91000800000000b70000000000fd009500"/48], &(0x7f0000003ff6)='GPL\x00', 0x3, 0xce, &(0x7f0000000c80)=""/206, 0x41100, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
sendmsg$inet(r10, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
recvmsg$unix(r9, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r6, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRESDEC=r9], 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x8004)
r11 = socket$nl_xfrm(0x10, 0x3, 0x6)
write$nci(r1, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8=r11], 0x4)

1.4319709s ago: executing program 2 (id=1519):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000240)="5c00000015006b47880000d86e6c1d0002887ea6ea65670000000000000090f9c3dc90f8f41f8ecff32c6e020075e300250045586c8da718ad4b4460bc24eab55600000000000000bf9367b4fa51f60a64c9f4d4938037e786a6d0bd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

1.385728309s ago: executing program 2 (id=1520):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5", 0x5}], 0x1}, 0x0)
unshare(0x20000400)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0)
recvmsg$unix(r1, &(0x7f0000001140)={0x0, 0x0, 0x0}, 0x40000100)

1.385426006s ago: executing program 2 (id=1521):
r0 = socket$igmp6(0xa, 0x3, 0x2)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0xf63, @loopback={0xffffffffffff0000}, 0x1}, 0x1c)

1.323940022s ago: executing program 2 (id=1523):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$kcm(0x29, 0x2, 0x0)
write$cgroup_pressure(r1, &(0x7f0000000140)={'full'}, 0xfffffdef)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x5452, &(0x7f0000000000))
ioctl$int_in(r1, 0x5452, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x24, &(0x7f0000000280)=0x1, 0x4)
shutdown(r0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r3, &(0x7f0000000040)={0x1a, 0x1, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r2, 0x0, 0x0, 0x0, 0x0}, 0x94)
close(0x3)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000005c0)='veth0_to_hsr\x00', 0x10)
write$cgroup_int(r4, &(0x7f0000000200), 0xffffffc1)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000007c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_COALESCE(r7, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000800)={0x30, 0x0, 0x1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x1, 0x4e}, @val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x7, 0x17}}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4000000}, 0x1400c004)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070040000900010073797a30000000003c0000001c0a01040000000000000000070000"], 0x364}}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x22051, r4, 0x0)
mmap(&(0x7f00007a6000/0x3000)=nil, 0x3000, 0x100000c, 0x22051, r4, 0x0)
sendmsg$NL80211_CMD_SET_MPATH(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)={0x14, 0x0, 0x200, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @void}}}, 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x0)
r9 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0x5, &(0x7f0000000500)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x2e}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r10, 0x0, 0x28, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f86dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
connect$bt_rfcomm(r9, &(0x7f0000005dc0)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x15}, 0xa)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

1.176039374s ago: executing program 1 (id=1528):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=ANY=[@ANYBLOB="280000002100210100000000000000000a00000000000001000000000c001800", @ANYRESDEC=r0], 0x28}, 0x1, 0x0, 0x0, 0x801}, 0x400d0)

1.116042204s ago: executing program 1 (id=1529):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000ac0)={0x1c, 0x3e, 0x107, 0xfffffffe, 0xfffffffc, {0x1, 0x7c}, [@nested={0x8, 0x142, 0x0, 0x1, [@typed={0x4, 0x8}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000c000}, 0xc000)

1.115873483s ago: executing program 1 (id=1530):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)={0x14, 0x1f, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0)

1.066212575s ago: executing program 1 (id=1531):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'xxhash64\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$packet(r1, &(0x7f00000000c0)="37fe0187610488b3d05d92015ee9ad38d34e1b37234adcd7a271dcd87da03ea3c1b0eb949065c29156446f75a0f3128825ba4f61f4b702bf489c5737aa6121dd0090d0729c829124ccc2197c0af536a4bf1add8929dddebfe0edee03a879c0779591813076fe8893e54bae6115825fd42b9c850ae09a0c9138676ef04e8706ec6057fc878302be3a1b9f7bf9805a3eac79cf2fcc0637e8b799b59439dae06bbca57a1254d8f17267776053f23801b92d20f12402acde62c60df22c4cf3bc5d7318e17650b88abedef3dcea88d3", 0x2a, 0x0, 0x0, 0x0)

1.066029186s ago: executing program 1 (id=1532):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local})
write$cgroup_devices(r0, &(0x7f0000000840)=ANY=[@ANYBLOB="1e0308004d6b71ef288563"], 0xffdd)
close(0x3)
close(0x4)

815.268393ms ago: executing program 0 (id=1533):
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x8, &(0x7f0000000040)=0x6, 0x4)

754.59364ms ago: executing program 0 (id=1534):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000500000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000d80)={&(0x7f0000000d40)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000580), 0x8)

695.227501ms ago: executing program 0 (id=1535):
socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
write(r1, &(0x7f0000000340), 0x11000)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffc, 0x3, 0xffdffffffffffffd, 0x0, 0x0, 0x0, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x6ec}, 0x0, 0x0)
vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)

485.783604ms ago: executing program 2 (id=1536):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f00000001c0), 0x4)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000a80)={r1, 0x0, "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"}, &(0x7f0000000180)=0xfebd)

424.622337ms ago: executing program 2 (id=1537):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc, 0x0, 0x9}, 0x8)
sendto$inet6(r0, &(0x7f0000000140)='\x00', 0x1, 0x0, &(0x7f0000000480)={0xa, 0x0, 0xffffffff, @ipv4={'\x00', '\xff\xff', @private=0xa010102}, 0xa}, 0x1c)
setsockopt(r0, 0x84, 0x82, 0x0, 0x0)

0s ago: executing program 1 (id=1538):
r0 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
connect$llc(r0, &(0x7f0000000040)={0x1a, 0x1, 0x0, 0x0, 0xe, 0x29, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x40}}, 0x10)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:56461' (ED25519) to the list of known hosts.
syzkaller login: [   48.415689][ T5830] cgroup: Unknown subsys name 'net'
[   48.537560][ T5830] cgroup: Unknown subsys name 'cpuset'
[   48.541835][ T5830] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   50.258394][ T5830] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   58.144355][ T5863] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   58.232092][ T5235] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   58.241181][ T5235] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   58.243807][ T5235] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   58.247744][ T5235] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   58.250353][ T5235] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   58.292954][ T5864] chnl_net:caif_netlink_parms(): no params data found
[   58.489209][ T5864] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.491876][ T5864] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.494220][ T5864] bridge_slave_0: entered allmulticast mode
[   58.501263][ T5864] bridge_slave_0: entered promiscuous mode
[   58.508155][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.510478][ T5864] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.512791][ T5864] bridge_slave_1: entered allmulticast mode
[   58.517310][ T5864] bridge_slave_1: entered promiscuous mode
[   58.605549][ T5864] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.633808][ T5864] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.672274][ T5864] team0: Port device team_slave_0 added
[   58.689761][ T5864] team0: Port device team_slave_1 added
[   58.723074][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.725476][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.733584][ T5864] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.742155][ T5864] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.744395][ T5864] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.752730][ T5864] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.792996][ T5864] hsr_slave_0: entered promiscuous mode
[   58.795594][ T5864] hsr_slave_1: entered promiscuous mode
[   58.982040][ T5864] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   58.987811][ T5864] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   58.993169][ T5864] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   58.998626][ T5864] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   59.019023][ T5864] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.021313][ T5864] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.023876][ T5864] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.026229][ T5864] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.061495][ T5864] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.072072][ T3946] bridge0: port 1(bridge_slave_0) entered disabled state
[   59.076548][ T3946] bridge0: port 2(bridge_slave_1) entered disabled state
[   59.085850][ T5864] 8021q: adding VLAN 0 to HW filter on device team0
[   59.092165][ T3946] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.094546][ T3946] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.100738][ T3946] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.102970][ T3946] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.203831][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.228171][ T5864] veth0_vlan: entered promiscuous mode
[   59.233489][ T5864] veth1_vlan: entered promiscuous mode
[   59.249360][ T5864] veth0_macvtap: entered promiscuous mode
[   59.253622][ T5864] veth1_macvtap: entered promiscuous mode
[   59.264151][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.269597][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.278313][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.281418][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.284308][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.288069][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.164489][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   60.167801][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   60.175253][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   60.189451][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   60.192190][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   60.222611][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   60.225769][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   60.228276][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   60.232703][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   60.235644][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   60.318148][ T5235] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   60.321052][ T5235] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   60.325521][ T5235] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   60.329451][ T5235] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   60.332049][ T5235] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   60.338741][   T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   60.465652][ T5910] chnl_net:caif_netlink_parms(): no params data found
[   60.607460][ T5910] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.609939][ T5910] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.612230][ T5910] bridge_slave_0: entered allmulticast mode
[   60.615330][ T5910] bridge_slave_0: entered promiscuous mode
[   60.619313][ T5910] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.621575][ T5910] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.623898][ T5910] bridge_slave_1: entered allmulticast mode
[   60.627906][ T5910] bridge_slave_1: entered promiscuous mode
[   60.659511][ T5912] chnl_net:caif_netlink_parms(): no params data found
[   60.670801][ T5910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.686121][ T5910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.715662][ T5910] team0: Port device team_slave_0 added
[   60.730006][ T5915] chnl_net:caif_netlink_parms(): no params data found
[   60.740233][ T5910] team0: Port device team_slave_1 added
[   60.807052][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_0
[   60.809116][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.817983][ T5910] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   60.839537][ T5910] batman_adv: batadv0: Adding interface: batadv_slave_1
[   60.841779][ T5910] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.850322][ T5910] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   60.855924][ T5912] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.858385][ T5912] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.860931][ T5912] bridge_slave_0: entered allmulticast mode
[   60.864330][ T5912] bridge_slave_0: entered promiscuous mode
[   60.892489][ T5912] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.894895][ T5912] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.897047][ T5912] bridge_slave_1: entered allmulticast mode
[   60.900441][ T5912] bridge_slave_1: entered promiscuous mode
[   60.940192][ T5912] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   60.957319][ T5915] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.960092][ T5915] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.962777][ T5915] bridge_slave_0: entered allmulticast mode
[   60.967965][ T5915] bridge_slave_0: entered promiscuous mode
[   60.973215][ T5912] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   60.988716][ T5910] hsr_slave_0: entered promiscuous mode
[   60.991577][ T5910] hsr_slave_1: entered promiscuous mode
[   60.993651][ T5910] debugfs: 'hsr0' already exists in 'hsr'
[   60.995587][ T5910] Cannot create hsr debugfs directory
[   60.997369][ T5915] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.999419][ T5915] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.001630][ T5915] bridge_slave_1: entered allmulticast mode
[   61.004181][ T5915] bridge_slave_1: entered promiscuous mode
[   61.040658][ T5912] team0: Port device team_slave_0 added
[   61.055109][ T5912] team0: Port device team_slave_1 added
[   61.060473][ T5915] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.087708][ T5915] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.106691][ T5912] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.108774][ T5912] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.117430][ T5912] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.151259][ T5912] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.153521][ T5912] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.162523][ T5912] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.182865][ T5915] team0: Port device team_slave_0 added
[   61.203976][ T5915] team0: Port device team_slave_1 added
[   61.234609][ T5912] hsr_slave_0: entered promiscuous mode
[   61.237568][ T5912] hsr_slave_1: entered promiscuous mode
[   61.239833][ T5912] debugfs: 'hsr0' already exists in 'hsr'
[   61.241663][ T5912] Cannot create hsr debugfs directory
[   61.288627][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.291169][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.300997][ T5915] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   61.307186][ T5915] batman_adv: batadv0: Adding interface: batadv_slave_1
[   61.309751][ T5915] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.319509][ T5915] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   61.413860][ T5915] hsr_slave_0: entered promiscuous mode
[   61.417697][ T5915] hsr_slave_1: entered promiscuous mode
[   61.419754][ T5915] debugfs: 'hsr0' already exists in 'hsr'
[   61.421455][ T5915] Cannot create hsr debugfs directory
[   61.499214][ T5910] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.511143][ T5910] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.538562][ T5910] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   61.555446][ T5910] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.584971][ T5912] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   61.595641][ T5912] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   61.603326][ T5912] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   61.613294][ T5912] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   61.647693][   T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   61.703323][ T5910] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.729496][ T5910] 8021q: adding VLAN 0 to HW filter on device team0
[   61.735579][ T5912] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.747580][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.749722][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.753583][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.755862][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.763060][ T5912] 8021q: adding VLAN 0 to HW filter on device team0
[   61.778282][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.781108][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.788559][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.790923][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.934419][ T5912] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.943837][ T5910] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.997844][ T5910] veth0_vlan: entered promiscuous mode
[   62.000164][ T5912] veth0_vlan: entered promiscuous mode
[   62.011377][ T5910] veth1_vlan: entered promiscuous mode
[   62.017798][ T5912] veth1_vlan: entered promiscuous mode
[   62.043409][ T5910] veth0_macvtap: entered promiscuous mode
[   62.050746][ T5910] veth1_macvtap: entered promiscuous mode
[   62.057972][ T5912] veth0_macvtap: entered promiscuous mode
[   62.066668][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.069796][ T5912] veth1_macvtap: entered promiscuous mode
[   62.079341][ T5910] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.087317][ T5930] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.090245][ T5930] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.093123][ T5930] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.098635][ T5930] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.111982][ T5912] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.123520][ T5912] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.139604][ T5674] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.143932][ T5930] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.147875][ T5930] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.150866][ T5930] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.201182][ T1089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.204303][ T1089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.237222][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.239628][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.254038][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.257109][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.276732][   T54] Bluetooth: hci0: command tx timeout
[   62.278960][ T5235] Bluetooth: hci1: command tx timeout
[   62.280354][   T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.284586][   T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.435933][ T5235] Bluetooth: hci2: command tx timeout
[   62.461986][ T5970] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   62.941763][   T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.026253][   T12] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.169824][   T12] bridge_slave_1: left allmulticast mode
[   63.174257][   T12] bridge_slave_1: left promiscuous mode
[   63.185108][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.200665][   T12] bridge_slave_0: left allmulticast mode
[   63.202670][   T12] bridge_slave_0: left promiscuous mode
[   63.204805][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.464090][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   63.469641][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   63.473601][   T12] bond0 (unregistering): Released all slaves
[   63.668782][   T12] hsr_slave_0: left promiscuous mode
[   63.671156][ T6012] netlink: 248 bytes leftover after parsing attributes in process `syz.0.38'.
[   63.683705][   T12] hsr_slave_1: left promiscuous mode
[   63.688513][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.699757][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.710662][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.712895][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.734548][   T12] veth1_macvtap: left promiscuous mode
[   63.737426][   T12] veth0_macvtap: left promiscuous mode
[   63.739286][   T12] veth1_vlan: left promiscuous mode
[   63.741124][   T12] veth0_vlan: left promiscuous mode
[   64.042857][   T12] team0 (unregistering): Port device team_slave_1 removed
[   64.067324][   T12] team0 (unregistering): Port device team_slave_0 removed
[   64.346078][ T5235] Bluetooth: hci1: command tx timeout
[   64.348580][ T5235] Bluetooth: hci0: command tx timeout
[   64.433981][ T6021] netlink: 8 bytes leftover after parsing attributes in process `syz.2.42'.
[   64.521872][ T6021] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.524378][ T5235] Bluetooth: hci2: command tx timeout
[   64.525324][ T6021] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.553792][ T6028] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   64.616524][ T6021] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   64.622754][ T6021] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   64.755080][   T13] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.762676][   T13] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.770928][   T13] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.812102][   T13] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   64.880123][ T5915] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   64.899558][ T5915] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   64.928748][ T5915] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   64.942838][ T5915] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   64.971324][ T6047] netlink: 'syz.2.53': attribute type 282 has an invalid length.
[   65.119530][ T5915] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.134033][ T5915] 8021q: adding VLAN 0 to HW filter on device team0
[   65.148740][ T1039] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.151503][ T1039] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.156322][ T6067] sctp: [Deprecated]: syz.0.59 (pid 6067) Use of struct sctp_assoc_value in delayed_ack socket option.
[   65.156322][ T6067] Use struct sctp_sack_info instead
[   65.178926][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.181223][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.311487][ T6080] macvtap1: entered promiscuous mode
[   65.313303][ T6080] syz_tun: entered promiscuous mode
[   65.338019][ T6080] syz_tun: left promiscuous mode
[   65.428407][ T5915] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.459793][ T5915] veth0_vlan: entered promiscuous mode
[   65.473241][ T5915] veth1_vlan: entered promiscuous mode
[   65.494644][ T5915] veth0_macvtap: entered promiscuous mode
[   65.500585][ T5915] veth1_macvtap: entered promiscuous mode
[   65.511377][ T5915] batman_adv: batadv0: Interface activated: batadv_slave_0
[   65.520863][ T5915] batman_adv: batadv0: Interface activated: batadv_slave_1
[   65.532555][ T5930] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.539169][ T5930] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.541933][ T5930] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.551752][ T5930] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   65.610799][ T1039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.616193][ T1039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.637652][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   65.640569][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   65.767056][ T6104] netlink: 'syz.1.65': attribute type 1 has an invalid length.
[   65.770137][ T6104] netlink: 224 bytes leftover after parsing attributes in process `syz.1.65'.
[   65.860557][ T6113] netlink: 32 bytes leftover after parsing attributes in process `syz.1.67'.
[   66.050679][ T6127] netlink: 'syz.1.71': attribute type 10 has an invalid length.
[   66.059705][ T6127] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.066887][ T6127] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   66.121697][ T6127] syz.1.71 (6127) used greatest stack depth: 20552 bytes left
[   66.264590][ T6141] bridge: RTM_NEWNEIGH with invalid ether address
[   66.405225][ T6145] block nbd0: server does not support multiple connections per device.
[   66.410412][ T6145] block nbd0: shutting down sockets
[   66.435238][ T5235] Bluetooth: hci0: command tx timeout
[   66.437043][ T5235] Bluetooth: hci1: command tx timeout
[   66.584873][   T54] Bluetooth: hci2: command tx timeout
[   66.789567][ T6164] syzkaller1: entered promiscuous mode
[   66.791753][ T6164] syzkaller1: entered allmulticast mode
[   66.873164][ T6170] trusted_key: syz.1.91 sent an empty control message without MSG_MORE.
[   66.907982][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.1.92'.
[   66.915010][ T6172] gretap0: entered promiscuous mode
[   66.921299][ T6172] gretap0: left promiscuous mode
[   67.039353][ T6182] netlink: 'syz.1.96': attribute type 6 has an invalid length.
[   67.181854][ T6194] netlink: 28 bytes leftover after parsing attributes in process `syz.1.102'.
[   67.190456][ T6194] netlink: 28 bytes leftover after parsing attributes in process `syz.1.102'.
[   67.193279][ T6194] netlink: 28 bytes leftover after parsing attributes in process `syz.1.102'.
[   67.198192][ T6195] netlink: 'syz.2.104': attribute type 8 has an invalid length.
[   67.277440][ T6202] netlink: 'syz.0.105': attribute type 1 has an invalid length.
[   67.350930][ T6209] netlink: 8 bytes leftover after parsing attributes in process `syz.2.110'.
[   67.478836][ T6215] netlink: 68 bytes leftover after parsing attributes in process `syz.0.113'.
[   68.113596][ T6264] veth0_to_team: entered promiscuous mode
[   68.177330][   T61] cfg80211: failed to load regulatory.db
[   68.351865][ T6283] netlink: 'syz.2.142': attribute type 7 has an invalid length.
[   68.408547][ T6289] Zero length message leads to an empty skb
[   68.505041][   T54] Bluetooth: hci1: command tx timeout
[   68.666108][   T54] Bluetooth: hci2: command tx timeout
[   68.735716][ T6314] __nla_validate_parse: 7 callbacks suppressed
[   68.735730][ T6314] netlink: 20 bytes leftover after parsing attributes in process `syz.1.157'.
[   68.740523][ T6314] netlink: 12 bytes leftover after parsing attributes in process `syz.1.157'.
[   68.751169][ T6314] netlink: 31 bytes leftover after parsing attributes in process `syz.1.157'.
[   68.757489][ T6314] netlink: 'syz.1.157': attribute type 3 has an invalid length.
[   68.763573][ T6314] netlink: 'syz.1.157': attribute type 2 has an invalid length.
[   68.766151][ T6314] netlink: 31 bytes leftover after parsing attributes in process `syz.1.157'.
[   68.769133][ T6314] netlink: 'syz.1.157': attribute type 2 has an invalid length.
[   69.154151][ T6348] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   69.194553][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.197068][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.200490][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.206323][ T6357] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   69.213254][ T6357] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   69.235445][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.238478][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.241316][ T6357] wg1 speed is unknown, defaulting to 1000
[   69.388602][ T6367] netlink: 8 bytes leftover after parsing attributes in process `syz.0.183'.
[   69.391602][ T6367] netlink: 15 bytes leftover after parsing attributes in process `syz.0.183'.
[   69.528491][ T6371] wg1 speed is unknown, defaulting to 1000
[   69.697504][ T6383] netlink: 52 bytes leftover after parsing attributes in process `syz.2.189'.
[   69.724283][ T5294] udevd[5294]: worker [5860] terminated by signal 33 (Unknown signal 33)
[   69.727348][ T5294] udevd[5294]: worker [5860] failed while handling '/devices/virtual/block/loop1'
[   70.003568][ T6405] validate_nla: 1 callbacks suppressed
[   70.003594][ T6405] netlink: 'syz.0.202': attribute type 1 has an invalid length.
[   70.009200][ T6405] netlink: 228 bytes leftover after parsing attributes in process `syz.0.202'.
[   70.012680][ T6404] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input4
[   70.224276][ T6423] syz.1.208 uses obsolete (PF_INET,SOCK_PACKET)
[   70.316766][ T6432] tipc: Started in network mode
[   70.318379][ T6432] tipc: Node identity bea118de242d, cluster identity 4711
[   70.331247][ T6432] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   70.366540][ T6436] Illegal XDP return value 4294967294 on prog  (id 38) dev N/A, expect packet loss!
[   70.372100][ T6432] syzkaller0: entered promiscuous mode
[   70.373830][ T6432] syzkaller0: entered allmulticast mode
[   70.378797][ T6432] tipc: Resetting bearer <eth:syzkaller0>
[   70.397269][ T6431] tipc: Resetting bearer <eth:syzkaller0>
[   70.646644][ T6443] netlink: 24 bytes leftover after parsing attributes in process `syz.0.217'.
[   71.232872][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[   71.235362][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[   71.318007][ T6431] tipc: Disabling bearer <eth:syzkaller0>
[   71.323162][ T6443] bond0: invalid ARP target 0.0.0.0 specified for addition
[   71.325780][ T6443] bond0: option arp_ip_target: invalid value (0)
[   71.408555][ T6448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.219'.
[   71.458006][ T6451] vlan2: entered promiscuous mode
[   71.459786][ T6451] batadv0: entered promiscuous mode
[   71.653329][ T6475] warning: `syz.2.232' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   71.942827][ T6501] tun0: tun_chr_ioctl cmd 2147767507
[   72.783751][ T6550] netlink: 'syz.0.262': attribute type 1 has an invalid length.
[   72.821225][ T6552] geneve2: entered promiscuous mode
[   73.892270][ T6593] netlink: 'syz.1.281': attribute type 16 has an invalid length.
[   73.895968][ T6593] netlink: 'syz.1.281': attribute type 3 has an invalid length.
[   73.898744][ T6593] __nla_validate_parse: 2 callbacks suppressed
[   73.898754][ T6593] netlink: 64066 bytes leftover after parsing attributes in process `syz.1.281'.
[   74.220464][ T6604] bridge0: port 3(erspan0) entered blocking state
[   74.222866][ T6604] bridge0: port 3(erspan0) entered disabled state
[   74.225969][ T6604] erspan0: entered allmulticast mode
[   74.228929][ T6604] erspan0: entered promiscuous mode
[   74.230912][ T6604] bridge0: port 3(erspan0) entered blocking state
[   74.232996][ T6604] bridge0: port 3(erspan0) entered forwarding state
[   74.348180][   T54] Bluetooth: hci2: command tx timeout
[   74.979600][ T6661] netlink: del zone limit has 8 unknown bytes
[   74.983442][ T6664] netlink: 36 bytes leftover after parsing attributes in process `syz.0.314'.
[   74.987348][ T6664] 8021q: VLANs not supported on ipvlan1
[   75.018227][ T6667] netlink: 8 bytes leftover after parsing attributes in process `syz.1.315'.
[   75.029096][ T6669] netlink: 24 bytes leftover after parsing attributes in process `syz.0.316'.
[   75.362527][ T6701] netlink: 24 bytes leftover after parsing attributes in process `syz.1.332'.
[   75.449673][   T33] audit: type=1800 audit(1754976849.384:2): pid=6696 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.329" name="cgroup.controllers" dev="tmpfs" ino=465 res=0 errno=0
[   75.467622][ T6710] netlink: 8 bytes leftover after parsing attributes in process `syz.1.337'.
[   75.473677][ T6710] veth0: entered promiscuous mode
[   75.477449][ T6710] veth0: left promiscuous mode
[   75.550284][ T6714] bond1: entered promiscuous mode
[   75.551961][ T6714] bond1: entered allmulticast mode
[   75.553932][ T6714] 8021q: adding VLAN 0 to HW filter on device bond1
[   75.604236][ T6720] netlink: 24 bytes leftover after parsing attributes in process `syz.1.341'.
[   76.809146][ T6791] netlink: 'syz.0.367': attribute type 1 has an invalid length.
[   76.826325][ T6791] 8021q: adding VLAN 0 to HW filter on device bond2
[   76.840797][ T6791] ipvlan2: entered allmulticast mode
[   76.842420][ T6791] bond2: entered allmulticast mode
[   76.868109][ T6791] bond2: (slave gretap1): making interface the new active one
[   76.870574][ T6791] gretap1: entered allmulticast mode
[   76.873283][ T6791] bond2: (slave gretap1): Enslaving as an active interface with an up link
[   76.884301][ T6791] syz.0.367 (6791) used greatest stack depth: 19848 bytes left
[   76.959574][ T6801] tipc: Started in network mode
[   76.965746][ T6801] tipc: Node identity ae19835c3131, cluster identity 4711
[   76.969127][ T6801] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   76.973692][ T6801] syzkaller0: entered promiscuous mode
[   76.978847][ T6801] syzkaller0: entered allmulticast mode
[   77.029364][ T6801] tipc: Resetting bearer <eth:syzkaller0>
[   77.036923][ T6799] tipc: Resetting bearer <eth:syzkaller0>
[   77.044760][ T6799] tipc: Disabling bearer <eth:syzkaller0>
[   77.146721][ T6812] netlink: 64 bytes leftover after parsing attributes in process `syz.2.377'.
[   77.759842][ T6845] netlink: 28 bytes leftover after parsing attributes in process `syz.1.393'.
[   77.762751][ T6845] netlink: 32 bytes leftover after parsing attributes in process `syz.1.393'.
[   77.824592][ T6853] veth0: entered promiscuous mode
[   77.826759][ T6852] veth0: left promiscuous mode
[   78.053908][ T6873] vlan2: entered promiscuous mode
[   78.056003][ T6873] vlan2: entered allmulticast mode
[   78.065344][ T6873] hsr_slave_1: entered allmulticast mode
[   78.163360][ T6885] vlan2: entered allmulticast mode
[   78.166135][ T6885] gretap0: entered allmulticast mode
[   78.603943][ T6934] team_slave_0: entered promiscuous mode
[   78.605887][ T6934] team_slave_1: entered promiscuous mode
[   78.608286][ T6934] vlan2: entered promiscuous mode
[   78.609956][ T6934] team0: entered promiscuous mode
[   78.715020][ T6938] wg1 speed is unknown, defaulting to 1000
[   78.782107][ T6940] wg1 speed is unknown, defaulting to 1000
[   78.957417][ T6956] __nla_validate_parse: 8 callbacks suppressed
[   78.957429][ T6956] netlink: 8 bytes leftover after parsing attributes in process `syz.1.444'.
[   78.962386][ T6956] netlink: 4 bytes leftover after parsing attributes in process `syz.1.444'.
[   79.253148][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.456'.
[   79.256006][ T6982] netlink: 4 bytes leftover after parsing attributes in process `syz.2.456'.
[   79.339927][ T6989] netlink: 4 bytes leftover after parsing attributes in process `syz.1.460'.
[   79.775929][ T7034] netlink: 16 bytes leftover after parsing attributes in process `syz.2.479'.
[   79.778876][ T7034] netlink: 16 bytes leftover after parsing attributes in process `syz.2.479'.
[   79.968155][ T7041] netlink: 'syz.0.483': attribute type 1 has an invalid length.
[   79.971291][ T7041] netlink: 'syz.0.483': attribute type 2 has an invalid length.
[   80.032709][ T7047] syzkaller1: entered promiscuous mode
[   80.034569][ T7047] syzkaller1: entered allmulticast mode
[   80.125806][ T7051] IPVS: Scheduler module ip_vs_sip not found
[   80.243944][ T7067] netlink: 'syz.1.495': attribute type 1 has an invalid length.
[   80.296745][ T7067] bond1: (slave gretap1): making interface the new active one
[   80.301220][ T7067] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   80.342265][ T6095] IPVS: starting estimator thread 0...
[   80.361703][ T7075] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   80.381280][ T7078] wg1 speed is unknown, defaulting to 1000
[   80.444895][ T7077] IPVS: using max 59 ests per chain, 141600 per kthread
[   80.663564][ T7090] syz_tun: entered allmulticast mode
[   80.672932][ T7090] syz_tun: left allmulticast mode
[   80.707051][   T13] nci: nci_add_new_protocol: the target found does not have the desired protocol
[   80.761112][ T6095] IPVS: starting estimator thread 0...
[   80.772662][ T7097] syzkaller1: entered promiscuous mode
[   80.774547][ T7097] syzkaller1: entered allmulticast mode
[   80.855977][ T7098] IPVS: using max 61 ests per chain, 146400 per kthread
[   81.528558][ T7131] netlink: 'syz.0.519': attribute type 1 has an invalid length.
[   81.531354][ T7131] netlink: 144 bytes leftover after parsing attributes in process `syz.0.519'.
[   81.534099][ T7131] netlink: 28 bytes leftover after parsing attributes in process `syz.0.519'.
[   81.563565][ T7134] netlink: 8 bytes leftover after parsing attributes in process `syz.1.521'.
[   82.947864][ T7280] netlink: 'syz.0.591': attribute type 1 has an invalid length.
[   82.950363][ T7280] netlink: 'syz.0.591': attribute type 1 has an invalid length.
[   82.955414][ T7280] netlink: 'syz.0.591': attribute type 2 has an invalid length.
[   83.133367][ T7288] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[   83.551988][ T7324] wg1 speed is unknown, defaulting to 1000
[   84.293861][ T7366] __nla_validate_parse: 7 callbacks suppressed
[   84.293872][ T7366] netlink: 40 bytes leftover after parsing attributes in process `syz.0.623'.
[   84.424245][ T7372] netlink: 'syz.0.626': attribute type 2 has an invalid length.
[   84.564524][ T7380] netlink: 'syz.1.629': attribute type 1 has an invalid length.
[   84.571197][ T7380] netlink: 224 bytes leftover after parsing attributes in process `syz.1.629'.
[   84.641508][ T7383] netlink: 'syz.1.630': attribute type 1 has an invalid length.
[   84.649303][ T7383] netlink: 224 bytes leftover after parsing attributes in process `syz.1.630'.
[   85.206643][ T7412] netlink: 24 bytes leftover after parsing attributes in process `syz.1.641'.
[   85.329138][ T7416] pimreg: entered allmulticast mode
[   85.350222][ T7416] pimreg: left allmulticast mode
[   85.399016][ T7422] netlink: 8 bytes leftover after parsing attributes in process `syz.0.645'.
[   85.402700][ T7422] netlink: 4 bytes leftover after parsing attributes in process `syz.0.645'.
[   85.406871][ T7422] netlink: 'syz.0.645': attribute type 13 has an invalid length.
[   85.409629][ T7422] netlink: 'syz.0.645': attribute type 12 has an invalid length.
[   85.593585][ T7434] netlink: 'syz.0.650': attribute type 1 has an invalid length.
[   85.596520][ T7434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.650'.
[   85.774315][ T7448] netlink: 20 bytes leftover after parsing attributes in process `syz.0.657'.
[   85.829411][ T7452] netlink: 24 bytes leftover after parsing attributes in process `syz.0.659'.
[   85.899457][ T7455] wg1 speed is unknown, defaulting to 1000
[   85.969664][ T7464] lo speed is unknown, defaulting to 1000
[   85.971528][ T7464] lo speed is unknown, defaulting to 1000
[   85.973659][ T7464] lo speed is unknown, defaulting to 1000
[   85.982109][ T7464] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[   85.999918][ T7464] lo speed is unknown, defaulting to 1000
[   86.006231][ T7464] lo speed is unknown, defaulting to 1000
[   86.009134][ T7464] lo speed is unknown, defaulting to 1000
[   86.012927][ T7464] lo speed is unknown, defaulting to 1000
[   86.137691][ T7471] netlink: 16 bytes leftover after parsing attributes in process `syz.2.667'.
[   87.119299][   T33] audit: type=1800 audit(1754976861.054:3): pid=7540 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.694" name="memory.events" dev="tmpfs" ino=1211 res=0 errno=0
[   87.248155][ T7559] macsec1: entered promiscuous mode
[   87.249891][ T7559] mac80211_hwsim hwsim3 wlan0: entered promiscuous mode
[   87.252203][ T7559] macsec1: entered allmulticast mode
[   87.253859][ T7559] mac80211_hwsim hwsim3 wlan0: entered allmulticast mode
[   88.979842][ T7633] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615)
[   88.983118][ T7633] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647
[   90.483967][ T7701] netlink: 'syz.1.760': attribute type 3 has an invalid length.
[   90.643767][ T7716] __nla_validate_parse: 6 callbacks suppressed
[   90.643778][ T7716] netlink: 132 bytes leftover after parsing attributes in process `syz.1.767'.
[   90.914103][ T7737] tipc: Started in network mode
[   90.917858][ T7737] tipc: Node identity 7, cluster identity 1
[   90.919796][ T7737] tipc: Node number set to 7
[   90.921553][ T7737] tipc: Cannot configure node identity twice
[   90.950426][ T7743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.779'.
[   90.953724][ T7743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.779'.
[   91.071219][ T7753] syzkaller0: entered promiscuous mode
[   91.073274][ T7753] syzkaller0: entered allmulticast mode
[   91.998277][ T7758] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   92.077684][ T7777] netlink: 'syz.0.796': attribute type 21 has an invalid length.
[   92.080809][ T7777] netlink: 128 bytes leftover after parsing attributes in process `syz.0.796'.
[   92.084503][ T7777] netlink: 'syz.0.796': attribute type 5 has an invalid length.
[   92.089895][ T7777] netlink: 'syz.0.796': attribute type 6 has an invalid length.
[   92.092343][ T7777] netlink: 3 bytes leftover after parsing attributes in process `syz.0.796'.
[   92.166252][ T7786] vlan0: entered promiscuous mode
[   92.248321][ T7798] netlink: 200 bytes leftover after parsing attributes in process `syz.2.806'.
[   92.251706][ T7798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.806'.
[   92.369339][ T7811] netlink: 24 bytes leftover after parsing attributes in process `syz.0.812'.
[   92.482491][ T7824] netlink: 220 bytes leftover after parsing attributes in process `syz.0.819'.
[   92.706289][ T7853] netlink: 'syz.2.833': attribute type 10 has an invalid length.
[   92.711092][ T7853] team0: Port device dummy0 added
[   92.821002][ T7862] netlink: 8 bytes leftover after parsing attributes in process `syz.2.837'.
[   92.877088][ T7868] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   93.426134][ T7946] netlink: 'syz.1.878': attribute type 4 has an invalid length.
[   93.444529][ T7946] netlink: 'syz.1.878': attribute type 4 has an invalid length.
[   93.681442][ T7978] Bluetooth: MGMT ver 1.23
[   93.967270][ T7995] veth0_to_bond: entered allmulticast mode
[   94.628931][ T8020] netlink: 'syz.2.911': attribute type 3 has an invalid length.
[   94.829239][ T8041] wg1 speed is unknown, defaulting to 1000
[   94.832102][ T8041] lo speed is unknown, defaulting to 1000
[   94.901932][ T8001] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[   95.004508][ T8053] IPVS: rr: FWM 3 0x00000003 - no destination available
[   95.029292][ T8053] wg1 speed is unknown, defaulting to 1000
[   95.032610][ T8053] lo speed is unknown, defaulting to 1000
[   96.024150][ T8092] __nla_validate_parse: 9 callbacks suppressed
[   96.024161][ T8092] netlink: 3 bytes leftover after parsing attributes in process `syz.0.941'.
[   96.034336][ T8094] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[   96.126747][ T8104] unsupported nla_type 52263
[   96.129787][ T8102] wg1 speed is unknown, defaulting to 1000
[   96.133342][ T8102] lo speed is unknown, defaulting to 1000
[   96.175568][ T8108] netlink: 'syz.0.945': attribute type 9 has an invalid length.
[   96.178116][ T8108] netlink: 'syz.0.945': attribute type 6 has an invalid length.
[   96.305831][ T8124] netlink: 12 bytes leftover after parsing attributes in process `syz.1.954'.
[   96.791748][ T8180] netlink: 172 bytes leftover after parsing attributes in process `syz.1.979'.
[   96.822938][ T8179] wg1 speed is unknown, defaulting to 1000
[   96.829774][ T8179] lo speed is unknown, defaulting to 1000
[   96.895962][ T8189] netlink: 'syz.0.983': attribute type 20 has an invalid length.
[   97.012781][ T8196] syzkaller1: entered promiscuous mode
[   97.018027][ T8196] syzkaller1: entered allmulticast mode
[   97.217579][ T8201] netlink: 8 bytes leftover after parsing attributes in process `syz.0.988'.
[   97.313930][ T8218] netlink: 'syz.1.996': attribute type 1 has an invalid length.
[   97.317721][ T8218] netlink: 244 bytes leftover after parsing attributes in process `syz.1.996'.
[   98.400576][ T8248] bond0: Unable to set peer notification delay as MII monitoring is disabled
[   98.430915][ T8250] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1006'.
[   98.691849][ T8271] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1016'.
[   98.836240][ T8278] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[   98.966381][ T8292] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1025'.
[   99.114459][ T8303] wg1 speed is unknown, defaulting to 1000
[   99.117340][ T8303] lo speed is unknown, defaulting to 1000
[   99.296286][ T8313] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.1034'.
[   99.441280][ T8317] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1036'.
[   99.444155][ T8317] bridge0: port 3(macvlan1) entered blocking state
[   99.447057][ T8317] bridge0: port 3(macvlan1) entered disabled state
[   99.449406][ T8317] macvlan1: entered allmulticast mode
[   99.452080][ T8317] macvlan1: entered promiscuous mode
[   99.497349][ T8323] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[   99.868506][ T8299] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  100.047551][ T8338] gretap0: entered promiscuous mode
[  100.049319][ T8338] vlan2: entered promiscuous mode
[  100.492448][ T8361] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.519731][ T8373] ksmbd: Unknown IPC event: 3, ignore.
[  100.548750][ T8361] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.604120][ T8361] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  100.900106][ T8402] netlink: 'syz.0.1068': attribute type 1 has an invalid length.
[  100.902886][ T8402] netlink: 'syz.0.1068': attribute type 2 has an invalid length.
[  101.156691][ T8432] sctp: [Deprecated]: syz.2.1079 (pid 8432) Use of struct sctp_assoc_value in delayed_ack socket option.
[  101.156691][ T8432] Use struct sctp_sack_info instead
[  101.234361][ T8439] __nla_validate_parse: 1 callbacks suppressed
[  101.234373][ T8439] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1083'.
[  101.304388][ T8444] wg1 speed is unknown, defaulting to 1000
[  101.310365][ T8444] lo speed is unknown, defaulting to 1000
[  101.696131][ T8464] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1088'.
[  101.701919][ T8464] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1088'.
[  102.108314][ T8494] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  102.325812][ T8524] !: renamed from dummy0 (while UP)
[  102.371848][ T8528] netlink: 'syz.2.1115': attribute type 7 has an invalid length.
[  102.374480][ T8528] netlink: 'syz.2.1115': attribute type 3 has an invalid length.
[  102.377423][ T8528] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1115'.
[  102.431710][ T8531] wg1 speed is unknown, defaulting to 1000
[  102.434279][ T8531] lo speed is unknown, defaulting to 1000
[  102.461130][   T33] audit: type=1107 audit(1754976876.394:4): pid=8534 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  102.519798][   T33] audit: type=1800 audit(1754976876.454:5): pid=8542 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1120" name="blkio.bfq.time_recursive" dev="tmpfs" ino=1715 res=0 errno=0
[  102.932701][ T8576] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1135'.
[  103.700039][ T8601] syzkaller1: entered promiscuous mode
[  103.701807][ T8601] syzkaller1: entered allmulticast mode
[  103.916676][ T8618] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1151'.
[  104.137760][ T8640] openvswitch: netlink: Missing key (keys=40, expected=200000)
[  104.210564][ T8638] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  104.213231][ T5900] IPVS: starting estimator thread 0...
[  104.288221][ T8652] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.290733][ T8652] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.315566][ T8648] IPVS: using max 61 ests per chain, 146400 per kthread
[  104.359330][ T8652] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.368022][ T8652] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.443289][   T13] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.452755][   T13] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.456959][   T13] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.459740][   T13] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.488222][ T8669] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1173'.
[  104.730338][ T8689] syzkaller0: entered promiscuous mode
[  104.732249][ T8689] syzkaller0: entered allmulticast mode
[  105.559729][ T8698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1183'.
[  105.617068][ T8699] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  105.688899][ T8693] gtp0: entered promiscuous mode
[  105.878561][ T8716] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[  105.961839][ T8727] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  105.972719][ T8730] netlink: 134788 bytes leftover after parsing attributes in process `syz.2.1200'.
[  106.082876][ T8744] TCP: tcp_parse_options: Illegal window scaling value 128 > 14 received
[  106.130950][ T8750] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1210'.
[  107.329464][ T8805] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1236'.
[  107.376186][ T8806] wg1 speed is unknown, defaulting to 1000
[  107.379134][ T8806] lo speed is unknown, defaulting to 1000
[  109.098177][ T8927] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1257'.
[  109.494178][ T8938] delete_channel: no stack
[  109.531521][ T8941] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1264'.
[  109.538231][ T8941] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1264'.
[  109.595245][ T8943] wg1 speed is unknown, defaulting to 1000
[  109.597847][ T8943] lo speed is unknown, defaulting to 1000
[  109.753264][ T8835] Set syz1 is full, maxelem 65536 reached
[  109.787764][ T8960] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.790490][ T8960] batadv_slave_0: entered promiscuous mode
[  109.792302][ T8960] batadv_slave_0: entered allmulticast mode
[  109.838940][ T8964] team0: Port device dummy0 removed
[  109.841137][ T8964] bridge_slave_0: left allmulticast mode
[  109.842878][ T8964] bridge_slave_0: left promiscuous mode
[  109.846026][ T8964] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.851673][ T8964] bridge_slave_1: left allmulticast mode
[  109.853410][ T8964] bridge_slave_1: left promiscuous mode
[  109.858280][ T8964] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.862455][ T8964] bond0: (slave bond_slave_0): Releasing backup interface
[  109.866980][ T8964] bond0: (slave bond_slave_1): Releasing backup interface
[  109.871086][ T8964] team0: Port device team_slave_0 removed
[  109.873743][ T8964] team0: Port device team_slave_1 removed
[  109.876694][ T8964] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.879391][ T8964] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.882079][ T8964] macvlan1: left allmulticast mode
[  109.883682][ T8964] macvlan1: left promiscuous mode
[  109.885618][ T8964] bridge0: port 3(macvlan1) entered disabled state
[  109.889821][ T8967] veth0_to_bridge: entered promiscuous mode
[  109.900306][ T8966] veth0_to_bridge: left promiscuous mode
[  109.914410][ T8964] team0: Failed to send options change via netlink (err -105)
[  109.917296][ T8964] team0: Mode changed to "activebackup"
[  111.166994][ T9026] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1302'.
[  111.217555][ T9030] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  111.506889][ T9062] Bluetooth: MGMT ver 1.23
[  111.581103][ T9072] openvswitch: netlink: Missing valid actions attribute.
[  111.586237][ T9072] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  111.607294][ T9074] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1326'.
[  111.610215][ T9074] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1326'.
[  111.612075][ T9076] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.1327'.
[  112.842334][ T9126] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  112.907762][ T9137] netlink: 220 bytes leftover after parsing attributes in process `syz.0.1350'.
[  113.039997][ T9151] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1355'.
[  113.863523][ T9160] netlink: 136 bytes leftover after parsing attributes in process `syz.1.1359'.
[  114.112623][ T9176] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1366'.
[  114.126347][ T9176] openvswitch: netlink: Flow key attr not present in new flow.
[  114.412984][ T9186] wg1 speed is unknown, defaulting to 1000
[  114.427182][ T9186] lo speed is unknown, defaulting to 1000
[  115.702464][ T9199] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1375'.
[  115.954090][ T9215] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1383'.
[  115.957531][ T9215] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1383'.
[  116.042147][ T9221] netlink: 'syz.0.1386': attribute type 3 has an invalid length.
[  116.045937][ T9221] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.1386'.
[  116.238282][ T9237] erspan0: left allmulticast mode
[  116.239888][ T9237] erspan0: left promiscuous mode
[  116.241549][ T9237] bridge0: port 3(erspan0) entered disabled state
[  116.252390][ T9237] bridge_slave_0: left allmulticast mode
[  116.254220][ T9237] bridge_slave_0: left promiscuous mode
[  116.256242][ T9237] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.271360][ T9237] bridge_slave_1: left allmulticast mode
[  116.273321][ T9237] bridge_slave_1: left promiscuous mode
[  116.279266][ T9237] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.286270][ T9237] bond0: (slave bond_slave_0): Releasing backup interface
[  116.294259][ T9237] bond0: (slave bond_slave_1): Releasing backup interface
[  116.302564][ T9237] team_slave_0: left promiscuous mode
[  116.309008][ T9237] team0: Port device team_slave_0 removed
[  116.311259][ T9237] team_slave_1: left promiscuous mode
[  116.317446][ T9237] team0: Port device team_slave_1 removed
[  116.319680][ T9237] batman_adv: batadv0: Removing interface: batadv_slave_0
[  116.322741][ T9237] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  116.325721][ T9237] batman_adv: batadv0: Removing interface: batadv_slave_1
[  116.334099][ T9237] bond2: (slave gretap1): Releasing active interface
[  116.337484][ T9237] gretap1: left allmulticast mode
[  116.342628][ T5995] wg1 speed is unknown, defaulting to 1000
[  116.379582][ T9240] A link change request failed with some changes committed already. Interface bond2 may have been left with an inconsistent configuration, please check.
[  116.429919][ T9243] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1396'.
[  116.432835][ T9243] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1396'.
[  116.590937][ T9249] wg1 speed is unknown, defaulting to 1000
[  116.596450][ T9249] lo speed is unknown, defaulting to 1000
[  116.859389][ T9264] netlink: 'syz.2.1405': attribute type 303 has an invalid length.
[  116.972899][ T9278] netlink: 'syz.0.1412': attribute type 39 has an invalid length.
[  117.679087][ T9360] bridge2: entered promiscuous mode
[  118.003847][ T9390] syzkaller0: entered promiscuous mode
[  118.005739][ T9390] syzkaller0: entered allmulticast mode
[  118.210135][ T9397] __nla_validate_parse: 6 callbacks suppressed
[  118.210147][ T9397] netlink: 240 bytes leftover after parsing attributes in process `syz.1.1467'.
[  119.034078][ T9413] netlink: 288 bytes leftover after parsing attributes in process `syz.0.1471'.
[  119.064859][ T9416] netlink: 65039 bytes leftover after parsing attributes in process `syz.0.1472'.
[  119.143138][ T9424] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1476'.
[  119.148789][ T9424] netlink: 'syz.1.1476': attribute type 21 has an invalid length.
[  119.223576][ T9431] netlink: 'syz.0.1477': attribute type 1 has an invalid length.
[  119.232912][ T9431] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1477'.
[  119.522784][ T9463] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1495'.
[  119.908557][ T9486] netlink: 'syz.2.1505': attribute type 39 has an invalid length.
[  120.181458][ T9510] svc: failed to register nfsdv3 RPC service (errno 111).
[  120.185262][ T9510] svc: failed to register nfsaclv3 RPC service (errno 111).
[  120.555666][ T9537] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1523'.
[  120.701123][   T54] Bluetooth: hci2: link tx timeout
[  120.702926][   T54] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  120.754079][   T33] audit: type=1800 audit(1754976894.684:6): pid=9529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1523" name="cgroup.controllers" dev="tmpfs" ino=2333 res=0 errno=0
[  121.840589][ T9569] ==================================================================
[  121.843133][ T9569] BUG: KASAN: slab-use-after-free in __xfrm_state_lookup+0x6ad/0x8d0
[  121.846068][ T9569] Read of size 2 at addr ffff8881122e4142 by task syz.1.1540/9569
[  121.849407][ T9569] 
[  121.850182][ T9569] CPU: 0 UID: 0 PID: 9569 Comm: syz.1.1540 Not tainted 6.16.0-syzkaller-12063-g37816488247d-dirty #0 PREEMPT(full) 
[  121.850195][ T9569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  121.850201][ T9569] Call Trace:
[  121.850206][ T9569]  <TASK>
[  121.850214][ T9569]  dump_stack_lvl+0x189/0x250
[  121.850255][ T9569]  ? __kasan_check_byte+0x12/0x40
[  121.850269][ T9569]  ? __pfx_dump_stack_lvl+0x10/0x10
[  121.850280][ T9569]  ? lock_release+0x4b/0x3e0
[  121.850294][ T9569]  ? __virt_addr_valid+0x4a5/0x5c0
[  121.850306][ T9569]  print_report+0xca/0x240
[  121.850314][ T9569]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  121.850327][ T9569]  kasan_report+0x118/0x150
[  121.850339][ T9569]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  121.850352][ T9569]  __xfrm_state_lookup+0x6ad/0x8d0
[  121.850366][ T9569]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  121.850381][ T9569]  xfrm_state_add+0x27d/0xc40
[  121.850395][ T9569]  xfrm_add_sa+0x35a1/0x4070
[  121.850405][ T9569]  ? __pfx_xfrm_add_sa+0x10/0x10
[  121.850412][ T9569]  ? apparmor_capable+0x137/0x1b0
[  121.850421][ T9569]  ? __nla_parse+0x40/0x60
[  121.850432][ T9569]  xfrm_user_rcv_msg+0x7a3/0xab0
[  121.850441][ T9569]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  121.850461][ T9569]  ? __pfx___mutex_trylock_common+0x10/0x10
[  121.850472][ T9569]  ? rcu_is_watching+0x15/0xb0
[  121.850481][ T9569]  ? trace_contention_end+0x39/0x120
[  121.850491][ T9569]  ? __mutex_lock+0x335/0x1360
[  121.850504][ T9569]  netlink_rcv_skb+0x208/0x470
[  121.850515][ T9569]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  121.850523][ T9569]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  121.850536][ T9569]  ? netlink_deliver_tap+0x2e/0x1b0
[  121.850545][ T9569]  ? netlink_deliver_tap+0x2e/0x1b0
[  121.850555][ T9569]  xfrm_netlink_rcv+0x79/0x90
[  121.850563][ T9569]  netlink_unicast+0x82f/0x9e0
[  121.850574][ T9569]  ? __pfx_netlink_unicast+0x10/0x10
[  121.850583][ T9569]  ? netlink_sendmsg+0x642/0xb30
[  121.850592][ T9569]  ? skb_put+0x11b/0x210
[  121.850603][ T9569]  netlink_sendmsg+0x805/0xb30
[  121.850615][ T9569]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.850625][ T9569]  ? aa_sock_msg_perm+0xf1/0x1d0
[  121.850636][ T9569]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  121.850645][ T9569]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.850655][ T9569]  __sock_sendmsg+0x21c/0x270
[  121.850665][ T9569]  ____sys_sendmsg+0x505/0x830
[  121.850677][ T9569]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.850690][ T9569]  ? import_iovec+0x74/0xa0
[  121.850698][ T9569]  ___sys_sendmsg+0x21f/0x2a0
[  121.850710][ T9569]  ? __pfx____sys_sendmsg+0x10/0x10
[  121.850728][ T9569]  ? __fget_files+0x2a/0x420
[  121.850739][ T9569]  ? __fget_files+0x3a0/0x420
[  121.850752][ T9569]  __x64_sys_sendmsg+0x19b/0x260
[  121.850764][ T9569]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  121.850778][ T9569]  ? rcu_is_watching+0x15/0xb0
[  121.850786][ T9569]  ? do_syscall_64+0xbe/0x3b0
[  121.850797][ T9569]  do_syscall_64+0xfa/0x3b0
[  121.850807][ T9569]  ? lockdep_hardirqs_on+0x9c/0x150
[  121.850816][ T9569]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.850825][ T9569]  ? exc_page_fault+0x9f/0xf0
[  121.850834][ T9569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.850843][ T9569] RIP: 0033:0x7fee4958ebe9
[  121.850861][ T9569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.850869][ T9569] RSP: 002b:00007fee4a343038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.850879][ T9569] RAX: ffffffffffffffda RBX: 00007fee497b5fa0 RCX: 00007fee4958ebe9
[  121.850885][ T9569] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  121.850890][ T9569] RBP: 00007fee49611e19 R08: 0000000000000000 R09: 0000000000000000
[  121.850895][ T9569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  121.850900][ T9569] R13: 00007fee497b6038 R14: 00007fee497b5fa0 R15: 00007fffc3de73b8
[  121.850909][ T9569]  </TASK>
[  121.850912][ T9569] 
[  121.970424][ T9569] Allocated by task 6701:
[  121.971721][ T9569]  kasan_save_track+0x3e/0x80
[  121.973242][ T9569]  __kasan_slab_alloc+0x6c/0x80
[  121.974703][ T9569]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  121.976316][ T9569]  xfrm_state_alloc+0x24/0x2f0
[  121.977711][ T9569]  __find_acq_core+0x8a7/0x1c00
[  121.979184][ T9569]  xfrm_find_acq+0x78/0xa0
[  121.980543][ T9569]  xfrm_alloc_userspi+0x6b3/0xc90
[  121.982045][ T9569]  xfrm_user_rcv_msg+0x7a3/0xab0
[  121.983532][ T9569]  netlink_rcv_skb+0x208/0x470
[  121.984978][ T9569]  xfrm_netlink_rcv+0x79/0x90
[  121.986392][ T9569]  netlink_unicast+0x82f/0x9e0
[  121.987821][ T9569]  netlink_sendmsg+0x805/0xb30
[  121.989251][ T9569]  __sock_sendmsg+0x21c/0x270
[  121.990677][ T9569]  ____sys_sendmsg+0x505/0x830
[  121.992114][ T9569]  ___sys_sendmsg+0x21f/0x2a0
[  121.993523][ T9569]  __x64_sys_sendmsg+0x19b/0x260
[  121.995052][ T9569]  do_syscall_64+0xfa/0x3b0
[  121.996494][ T9569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.998267][ T9569] 
[  121.998992][ T9569] Freed by task 24:
[  122.000156][ T9569]  kasan_save_track+0x3e/0x80
[  122.001601][ T9569]  kasan_save_free_info+0x46/0x50
[  122.003120][ T9569]  __kasan_slab_free+0x5b/0x80
[  122.004596][ T9569]  kmem_cache_free+0x18f/0x400
[  122.006121][ T9569]  xfrm_state_gc_task+0x52d/0x6b0
[  122.007661][ T9569]  process_scheduled_works+0xae1/0x17b0
[  122.009337][ T9569]  worker_thread+0x8a0/0xda0
[  122.010765][ T9569]  kthread+0x711/0x8a0
[  122.012007][ T9569]  ret_from_fork+0x3fc/0x770
[  122.013401][ T9569]  ret_from_fork_asm+0x1a/0x30
[  122.014862][ T9569] 
[  122.015599][ T9569] The buggy address belongs to the object at ffff8881122e4000
[  122.015599][ T9569]  which belongs to the cache xfrm_state of size 928
[  122.020020][ T9569] The buggy address is located 322 bytes inside of
[  122.020020][ T9569]  freed 928-byte region [ffff8881122e4000, ffff8881122e43a0)
[  122.024587][ T9569] 
[  122.025393][ T9569] The buggy address belongs to the physical page:
[  122.027458][ T9569] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff8881122e5680 pfn:0x1122e4
[  122.030505][ T9569] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  122.033074][ T9569] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  122.035711][ T9569] page_type: f5(slab)
[  122.037095][ T9569] raw: 057ff00000000040 ffff88801bbbbc80 dead000000000122 0000000000000000
[  122.039974][ T9569] raw: ffff8881122e5680 00000000800e000c 00000000f5000000 0000000000000000
[  122.042728][ T9569] head: 057ff00000000040 ffff88801bbbbc80 dead000000000122 0000000000000000
[  122.045751][ T9569] head: ffff8881122e5680 00000000800e000c 00000000f5000000 0000000000000000
[  122.048729][ T9569] head: 057ff00000000002 ffffea000448b901 00000000ffffffff 00000000ffffffff
[  122.051752][ T9569] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  122.054621][ T9569] page dumped because: kasan: bad access detected
[  122.056877][ T9569] page_owner tracks the page as allocated
[  122.058625][ T9569] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6701, tgid 6700 (syz.1.332), ts 75375789987, free_ts 75066176429
[  122.064537][ T9569]  post_alloc_hook+0x240/0x2a0
[  122.066222][ T9569]  get_page_from_freelist+0x21e4/0x22c0
[  122.068067][ T9569]  __alloc_frozen_pages_noprof+0x181/0x370
[  122.070125][ T9569]  alloc_pages_mpol+0x232/0x4a0
[  122.071659][ T9569]  allocate_slab+0x8a/0x370
[  122.073246][ T9569]  ___slab_alloc+0xbeb/0x1410
[  122.074852][ T9569]  kmem_cache_alloc_noprof+0x283/0x3c0
[  122.077024][ T9569]  xfrm_state_alloc+0x24/0x2f0
[  122.078887][ T9569]  __find_acq_core+0x8a7/0x1c00
[  122.080538][ T9569]  xfrm_find_acq+0x78/0xa0
[  122.082107][ T9569]  xfrm_alloc_userspi+0x6b3/0xc90
[  122.083933][ T9569]  xfrm_user_rcv_msg+0x7a3/0xab0
[  122.085513][ T9569]  netlink_rcv_skb+0x208/0x470
[  122.087030][ T9569]  xfrm_netlink_rcv+0x79/0x90
[  122.088605][ T9569]  netlink_unicast+0x82f/0x9e0
[  122.090393][ T9569]  netlink_sendmsg+0x805/0xb30
[  122.091851][ T9569] page last free pid 6662 tgid 6662 stack trace:
[  122.093755][ T9569]  __free_frozen_pages+0xbc4/0xd30
[  122.095410][ T9569]  free_large_kmalloc+0x13a/0x1f0
[  122.096955][ T9569]  free_netdev+0x3e2/0x700
[  122.098542][ T9569]  netdev_run_todo+0xd0c/0xea0
[  122.100042][ T9569]  tun_chr_close+0x13c/0x1c0
[  122.101494][ T9569]  __fput+0x44c/0xa70
[  122.102694][ T9569]  task_work_run+0x1d4/0x260
[  122.104066][ T9569]  exit_to_user_mode_loop+0xec/0x110
[  122.105651][ T9569]  do_syscall_64+0x2bd/0x3b0
[  122.107044][ T9569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.108804][ T9569] 
[  122.109518][ T9569] Memory state around the buggy address:
[  122.111280][ T9569]  ffff8881122e4000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  122.113729][ T9569]  ffff8881122e4080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  122.116120][ T9569] >ffff8881122e4100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  122.118505][ T9569]                                            ^
[  122.120318][ T9569]  ffff8881122e4180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  122.122668][ T9569]  ffff8881122e4200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  122.125031][ T9569] ==================================================================
[  122.127511][ T9569] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  122.129649][ T9569] CPU: 0 UID: 0 PID: 9569 Comm: syz.1.1540 Not tainted 6.16.0-syzkaller-12063-g37816488247d-dirty #0 PREEMPT(full) 
[  122.133449][ T9569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  122.136614][ T9569] Call Trace:
[  122.137736][ T9569]  <TASK>
[  122.138689][ T9569]  dump_stack_lvl+0x99/0x250
[  122.140097][ T9569]  ? __asan_memcpy+0x40/0x70
[  122.141515][ T9569]  ? __pfx_dump_stack_lvl+0x10/0x10
[  122.143105][ T9569]  ? __pfx__printk+0x10/0x10
[  122.144586][ T9569]  vpanic+0x281/0x750
[  122.145830][ T9569]  ? __pfx_vpanic+0x10/0x10
[  122.147222][ T9569]  ? irqentry_exit+0x74/0x90
[  122.148636][ T9569]  panic+0xb9/0xc0
[  122.149811][ T9569]  ? __pfx_panic+0x10/0x10
[  122.151166][ T9569]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  122.152980][ T9569]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  122.154769][ T9569]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  122.156348][ T9569]  check_panic_on_warn+0x89/0xb0
[  122.157810][ T9569]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  122.159398][ T9569]  end_report+0x78/0x160
[  122.160667][ T9569]  kasan_report+0x129/0x150
[  122.162035][ T9569]  ? __xfrm_state_lookup+0x6ad/0x8d0
[  122.163615][ T9569]  __xfrm_state_lookup+0x6ad/0x8d0
[  122.165148][ T9569]  ? __pfx___xfrm_state_lookup+0x10/0x10
[  122.166818][ T9569]  xfrm_state_add+0x27d/0xc40
[  122.168229][ T9569]  xfrm_add_sa+0x35a1/0x4070
[  122.169613][ T9569]  ? __pfx_xfrm_add_sa+0x10/0x10
[  122.171108][ T9569]  ? apparmor_capable+0x137/0x1b0
[  122.172623][ T9569]  ? __nla_parse+0x40/0x60
[  122.173967][ T9569]  xfrm_user_rcv_msg+0x7a3/0xab0
[  122.175456][ T9569]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  122.177040][ T9569]  ? __pfx___mutex_trylock_common+0x10/0x10
[  122.178776][ T9569]  ? rcu_is_watching+0x15/0xb0
[  122.180182][ T9569]  ? trace_contention_end+0x39/0x120
[  122.181760][ T9569]  ? __mutex_lock+0x335/0x1360
[  122.183178][ T9569]  netlink_rcv_skb+0x208/0x470
[  122.184621][ T9569]  ? __pfx_xfrm_user_rcv_msg+0x10/0x10
[  122.186238][ T9569]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  122.187832][ T9569]  ? netlink_deliver_tap+0x2e/0x1b0
[  122.189384][ T9569]  ? netlink_deliver_tap+0x2e/0x1b0
[  122.190951][ T9569]  xfrm_netlink_rcv+0x79/0x90
[  122.192388][ T9569]  netlink_unicast+0x82f/0x9e0
[  122.193768][ T9569]  ? __pfx_netlink_unicast+0x10/0x10
[  122.195301][ T9569]  ? netlink_sendmsg+0x642/0xb30
[  122.196748][ T9569]  ? skb_put+0x11b/0x210
[  122.198008][ T9569]  netlink_sendmsg+0x805/0xb30
[  122.199435][ T9569]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.201016][ T9569]  ? aa_sock_msg_perm+0xf1/0x1d0
[  122.202469][ T9569]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  122.204094][ T9569]  ? __pfx_netlink_sendmsg+0x10/0x10
[  122.205657][ T9569]  __sock_sendmsg+0x21c/0x270
[  122.207053][ T9569]  ____sys_sendmsg+0x505/0x830
[  122.208510][ T9569]  ? __pfx_____sys_sendmsg+0x10/0x10
[  122.210111][ T9569]  ? import_iovec+0x74/0xa0
[  122.211530][ T9569]  ___sys_sendmsg+0x21f/0x2a0
[  122.213074][ T9569]  ? __pfx____sys_sendmsg+0x10/0x10
[  122.214925][ T9569]  ? __fget_files+0x2a/0x420
[  122.216592][ T9569]  ? __fget_files+0x3a0/0x420
[  122.218171][ T9569]  __x64_sys_sendmsg+0x19b/0x260
[  122.219828][ T9569]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  122.221582][ T9569]  ? rcu_is_watching+0x15/0xb0
[  122.223128][ T9569]  ? do_syscall_64+0xbe/0x3b0
[  122.224636][ T9569]  do_syscall_64+0xfa/0x3b0
[  122.226037][ T9569]  ? lockdep_hardirqs_on+0x9c/0x150
[  122.227663][ T9569]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.229535][ T9569]  ? exc_page_fault+0x9f/0xf0
[  122.230976][ T9569]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  122.232760][ T9569] RIP: 0033:0x7fee4958ebe9
[  122.234108][ T9569] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  122.239864][ T9569] RSP: 002b:00007fee4a343038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  122.242835][ T9569] RAX: ffffffffffffffda RBX: 00007fee497b5fa0 RCX: 00007fee4958ebe9
[  122.245229][ T9569] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  122.247783][ T9569] RBP: 00007fee49611e19 R08: 0000000000000000 R09: 0000000000000000
[  122.250572][ T9569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  122.253292][ T9569] R13: 00007fee497b6038 R14: 00007fee497b5fa0 R15: 00007fffc3de73b8
[  122.255611][ T9569]  </TASK>
[  122.257217][ T9569] Kernel Offset: disabled
[  122.258645][ T9569] Rebooting in 86400 seconds..

VM DIAGNOSIS:
05:34:56  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000032 RBX=0000000000000032 RCX=0000000000000000 RDX=00000000000003f8
RSI=000000000000195b RDI=000000000000195c RBP=00000000000003f8 RSP=ffffc900063fe9d0
R8 =ffff888106240237 R9 =1ffff11020c48046 R10=dffffc0000000000 R11=ffffffff854e71d0
R12=dffffc0000000000 R13=ffffffff99af48f8 R14=ffffffff99de94e0 R15=0000000000000000
RIP=ffffffff854e724c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fee4a3436c0 ffffffff 00c00000
GS =0000 ffff8880b8621000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fee4a342fc8 CR3=0000000128e2a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fee49787498 00007fee49787470 XMM03=00007fee497874a8 00007fee497874a0
XMM04=00007fee4a2ed100 00007fee49787460 XMM05=00007fee49787478 00007fee497874c0
XMM06=00007fee497874b8 00007fee497874b0 XMM07=00007fee497874a8 00007fee497874a0
XMM08=0000000000000000 00007fee49612ee7 XMM09=0000000000000000 00007fee49612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0b09a73570c29e00 RBX=ffffffff81968308 RCX=0b09a73570c29e00 RDX=0000000000000001
RSI=ffffffff8d9b494b RDI=ffffffff8be32680 RBP=ffffc90000177f20 RSP=ffffc90000177de0
R8 =ffff888136632f9b R9 =1ffff11026cc65f3 R10=dffffc0000000000 R11=ffffed1026cc65f4
R12=ffffffff8fa34730 R13=0000000000000001 R14=0000000000000001 R15=1ffff110200d5000
RIP=ffffffff8b78b3f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8881a3c21000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000000 CR3=0000000128e2a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=7acbc738c5000000 00a2b90d14aa4785
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=00007fee4a2ed100 00007fee49787460 XMM05=00007fee49787478 00007fee497874c0
XMM06=00007fee497874b8 00007fee497874b0 XMM07=00007fee497874a8 00007fee497874a0
XMM08=0000000000000000 00007fee49612ee7 XMM09=0000000000000000 00007fee49612fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
