last executing test programs:

839.522937ms ago: executing program 0 (id=2163):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ae4000000060a0b0400000000000000000200fffeb80004802800018007000100637400001c0002800800014000000002080002400000000f05000300060000008c0001800c000100636f756e746572007c0002800c00014000000000000000020c00024000000000000000090c000140fffffffffffffbff0c00024000000000000000010c00024000000000000006920c00014000000000000000020c00024000000000000000010c00024000000000000000070c00014000000000000088770c00024000000000000000060900010073797a30000000000900020073797a32"], 0x10c}, 0x1, 0x0, 0x0, 0x840}, 0x0)

810.144425ms ago: executing program 1 (id=2164):
r0 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x20000011)
sendmsg$kcm(r0, &(0x7f0000000b00)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @dev, 0x5}, 0x80, 0x0}, 0xe07e872420dfef8a)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x8a, 0x3, 0x0, 0x3, 0x0, 0x10000000000, 0x8a06, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_bp={0x0, 0x6}, 0x4108, 0x3, 0x0, 0x3, 0x7, 0xffffffff, 0x2, 0x0, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x5452, &(0x7f00000006c0)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6T\xdf\xcd\x02\xc5\xb0\xba\x12\'QXp\t\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7\x19\x9e\x19\xf5-\xfe\xbd\xae\xbbR\x82\x16\xf9\x15S\x03U\xe0\xd8t\xe3%96')
recvmsg(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000180)=""/92, 0x5c}], 0x1}, 0x0)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfcd3bb00f90429fc60", 0x14}], 0x1}, 0x2400c000)

729.450574ms ago: executing program 0 (id=2166):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000140)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36514001ac004000202080002000a00010004000200eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x300)

728.884188ms ago: executing program 0 (id=2168):
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x82, 0x0, 0x0, 0xfc, 0x0, 0x2, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x3}, 0x0, 0xc8, 0xffff, 0x1, 0x1, 0x0, 0x2, 0x0, 0xffffffff}, 0x0, 0x2000, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
close(r1)
recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r2=>0xffffffffffffffff]}}], 0x18}, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="0763707573751400000000000009"], 0x17)

689.72747ms ago: executing program 0 (id=2170):
r0 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000000)='syz0\x00', 0x200002, 0x0)
openat$cgroup_subtree(r0, &(0x7f0000000040), 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001640)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000098000000060a010400000000000000000100000008000b400000000070000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002d0500020007000000380001800c0001006269747769736500280002800800014000000014080002400000001208000640000000030400058008000340000000010900010073797a3000005555671ccc8c6e19010000000000000000000700000a"], 0x10c}}, 0x0)
perf_event_open(&(0x7f0000004cc0)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0x400, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1f, 0x2, @perf_bp={0x0, 0x1}, 0x100410, 0x200, 0x2, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
perf_event_open(&(0x7f0000004cc0)={0x2, 0x80, 0x2, 0x0, 0x40, 0x0, 0x0, 0x9, 0x400, 0x6, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xaf1d, 0x1, @perf_config_ext={0xff, 0x7}, 0x100410, 0x200, 0x2, 0x1, 0x9, 0x9, 0xfffd, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x6, 0xffffffffffffffff}, 0x828, 0x0, 0x9, 0x0, 0x9, 0x800200, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
ioctl$PERF_EVENT_IOC_RESET(r3, 0x2403, 0x7)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4000000}, 0x94)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x4a, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x1946}, 0x0, 0x0, 0x0, 0x8, 0x7fe, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYRES64, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000}, 0x94)
r5 = socket$kcm(0xa, 0x2, 0x73)
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000001280)={@map=<r7=>0xffffffffffffffff, 0x7, 0x0, 0x9, &(0x7f0000001140)=[0x0], 0x1, 0x0, &(0x7f00000011c0)=[0x0, 0x0, 0x0], &(0x7f0000001200)=[0x0, 0x0, 0x0], &(0x7f0000001240)=[0x0, 0x0, 0x0], <r8=>0x0}, 0x40)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000001300)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x4)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='freezer.self_freezing\x00', 0x26e1, 0x0)
close(r10)
ioctl$SIOCSIFHWADDR(r10, 0x8b32, &(0x7f0000000000)={'virt_wifi0\x00'})
bpf$BPF_PROG_ATTACH(0x8, &(0x7f00000012c0)={@map=r9, r6, 0x2c, 0x10, r4, @void, @value=r10, @void, @void, r8}, 0x20)
r11 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r11, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000001880)="5c00000012006b1e003de3d86e6c1dff05137e031b59ffff000000b68675f8001d000a00a0e69ee517d34442bc24eab556a7e60f1e6182949a36c23d3b48dfd8cdbf9367b4fa51f60a64c9f408000300060100000800030011000000", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$inet(r5, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0x10, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0xe00}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x14, 0x29, 0x36}}, @ip_tos_u8={{0x11, 0x29, 0x3b}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x50}, 0x0)
r12 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r12, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000b80)="2e00000010008188040f80ec59acbc0413a1f848100000005e0c00f0ffffff180e000a001400000002801687121f", 0x2e}], 0x1}, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001600)={r10, 0xe0, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, &(0x7f0000001340)=[0x0, 0x0, 0x0], ""/16, <r13=>0x0, 0x0, 0x0, 0x0, 0x4, 0x3, &(0x7f0000001380)=[0x0, 0x0, 0x0, 0x0], &(0x7f00000013c0)=[0x0, 0x0, 0x0], 0x0, 0xc0, &(0x7f0000001400)=[{}], 0x8, 0x10, &(0x7f0000001440), &(0x7f0000001480), 0x8, 0xf0, 0x8, 0x8, &(0x7f00000014c0)}}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000001640)=@base={0x12, 0x31ff, 0x6, 0x7, 0x400, r7, 0xc7b, '\x00', r13, r10, 0x1, 0x0, 0x2}, 0x50)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000240)={'pimreg0\x00', 0x8000})
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x40, 0x2, 0x3, 0x801, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFQA_CFG_PARAMS={0x9, 0x2, {0xf, 0x2}}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x13}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x61d7fb6b}}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x45}}]}, 0x40}, 0x1, 0x0, 0x0, 0x4008011}, 0x20004891)
syz_clone(0x8010e000, 0x0, 0x0, 0x0, 0x0, 0x0)

620.519806ms ago: executing program 2 (id=2171):
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x890b, 0x0)

560.075348ms ago: executing program 1 (id=2172):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x38, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}]}, 0x38}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)

559.50849ms ago: executing program 2 (id=2173):
r0 = socket$kcm(0x10, 0x400000002, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xf0, 0xa9, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x10665, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_config_ext={0xffff, 0x7fffffff}, 0x201c, 0x9dd, 0x80000000, 0x6, 0x9, 0xf3a, 0x6, 0x0, 0x100, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)="2e00000012002f8c35093f974b21b92e0a", 0x11}], 0x1}, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="1310000016"], 0xfe33)

509.560971ms ago: executing program 2 (id=2174):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x10f, 0x88, 0x0, 0x0)

509.373307ms ago: executing program 2 (id=2175):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000006c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000280)={'hsr0\x00', @multicast})

509.148923ms ago: executing program 1 (id=2176):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="20010000120013070000000000000000e0000001000000000000000000000000fc00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000072c42572f64a264410b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fbc18c8582fc7800000000000000000000000050019000000000028001a"], 0x120}}, 0x0)

427.279619ms ago: executing program 1 (id=2177):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x52, 0x1, 0x0, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x1, @perf_config_ext={0x407fff, 0xaea}, 0x14105, 0x2e, 0xfffffbff, 0x3, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x5}, 0x0, 0x2, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3)
socket$kcm(0x11, 0x200000000000002, 0x300)
socket$kcm(0x10, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rpm_return_int\x00', r0, 0x0, 0x18000000}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x5, &(0x7f0000000080)=ANY=[@ANYBLOB="180200000000000000000000000000008500000061000000850000005000000095"], &(0x7f00000006c0)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpuacct.usage_percpu\x00', 0x26e1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x10}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x10}}, @rights={{0x10}}, @rights={{0x10}}], 0xd0}, 0x40002000)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, &(0x7f0000000140)='GPL\x00'}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'dummy0\x00'})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8946, &(0x7f0000000080))

342.816501ms ago: executing program 2 (id=2178):
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x53, 0x1, 0xff, 0x0, 0x0, 0x7fef, 0x82, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x107b7d, 0x4, @perf_config_ext={0x5, 0x2000000014f}, 0x14105, 0x8, 0xfffffbff, 0x8, 0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xa9e2}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x80044, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x4, @perf_bp={0x0, 0x6}, 0x0, 0x2, 0xfffffffe, 0x7, 0x0, 0x0, 0x2}, 0x0, 0xffefffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000f40)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="160000da00000000f0ffffff", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x10}, 0x0, 0xca, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0xfffffffd, 0x0, 0x4}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000034000000bc00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r4, 0x5, 0xe, 0x0, &(0x7f0000000280)="432275e2065074ef2415f73227b2", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000002940)="2000000020008107090f9becdb4cb96b0200000000fbff010000000000000000", 0x20}], 0x1, 0x0, 0x0, 0x81000000}, 0x4)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
close(r2)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r6}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x20, 0x4, 0x2, 0x0, 0x201, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0xffffffff}, 0x50)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x77, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.numa_stat\x00', 0x26e1, 0x0)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57)
sendmsg$kcm(r7, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000028000b05d25a806f8c6394f90524fc60", 0x14}], 0x1}, 0x40)
r8 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r8, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000003080)=ANY=[@ANYRES32], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)

230.064248ms ago: executing program 1 (id=2179):
r0 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x4b, 0x1, 0x0, 0x0, 0x0, 0x9c5, 0x2000, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1946}, 0x105048, 0x0, 0x0, 0x3, 0x3fe, 0x7fffffff, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x830d}, 0x0, 0x2, 0xfffffffe, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000002c0)={0x0, 0x8, 0x8}, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x15, 0x0, 0x0, 0x0, 0x7, 0x24, &(0x7f0000000300)=""/36, 0x40f00, 0x6, '\x00', 0x0, @sk_reuseport=0x27, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000440)={0x3, 0x1, 0x100008, 0x5}, 0x10, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x10, 0x4, &(0x7f0000000140)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94)
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000b40)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
ioctl$TUNSETCARRIER(r2, 0x400454e2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{}, &(0x7f0000000840), 0x0}, 0x20)
r3 = socket$kcm(0x2b, 0x1, 0x0)
sendmsg$inet(r3, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x200048cc)
setsockopt$sock_attach_bpf(r2, 0x1, 0xd, &(0x7f0000000100)=r1, 0x4)
close(r3)
r4 = socket$kcm(0x10, 0x2, 0x10)
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)}, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xb0080, 0x0)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e02002c000b35d25a806f8c6394f90324fc602f1b02000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)
bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file\x00', 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
perf_event_open(&(0x7f0000000040)={0x4, 0x80, 0xec, 0xfd, 0x0, 0x8, 0x0, 0xffffffff, 0x2101, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, @perf_config_ext={0x7, 0x9}, 0x828, 0x80, 0x0, 0x0, 0x9, 0x800000, 0x0, 0x0, 0x1, 0x0, 0x40}, 0x0, 0xffffffffffffffff, r0, 0x0)
socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0))

154.427435ms ago: executing program 0 (id=2180):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"/2944], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd64}, 0x48)

122.633824ms ago: executing program 2 (id=2181):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xec, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x2}, 0x828, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)={0x40, 0x0, 0xb, 0x101, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_COMPAT_NAME={0x19, 0x1, '#^,{.,#^(-^,+-^+[:$&\x00'}, @NFTA_COMPAT_TYPE={0x8}]}, 0x40}, 0x1, 0x0, 0x0, 0x20000804}, 0x4000)

48.682543ms ago: executing program 0 (id=2182):
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0xeb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2121, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7, 0xffffffffffffffff}, 0x828, 0x0, 0x0, 0x0, 0x9, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = socket$kcm(0x2d, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000340)={<r1=>r0})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000240)={r1})

0s ago: executing program 1 (id=2183):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x0, 0x25dfdbfc, [@sadb_address={0x5, 0x6, 0x0, 0x10, 0x0, @in6={0xa, 0x4e20, 0x400, @remote, 0x40}}, @sadb_address={0x5, 0x5, 0x32, 0x0, 0x0, @in6={0xa, 0x4e22, 0x1, @private0, 0x101}}]}, 0x60}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:4248' (ED25519) to the list of known hosts.
syzkaller login: [   55.586332][ T5831] cgroup: Unknown subsys name 'net'
[   55.689068][ T5831] cgroup: Unknown subsys name 'cpuset'
[   55.694201][ T5831] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   57.096956][ T5831] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   61.134747][   T54] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   61.137726][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   61.141666][   T54] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   61.144468][   T54] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   61.147555][   T54] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   61.270800][ T5234] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   61.273995][ T5234] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   61.277250][ T5234] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   61.282683][ T5234] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   61.286106][ T5234] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   61.308756][   T54] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   61.311963][   T54] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   61.315062][   T54] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   61.319214][   T54] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   61.322804][   T54] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   61.439228][ T5845] chnl_net:caif_netlink_parms(): no params data found
[   61.675393][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.678226][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.680654][ T5845] bridge_slave_0: entered allmulticast mode
[   61.683954][ T5845] bridge_slave_0: entered promiscuous mode
[   61.689689][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.692304][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.694960][ T5845] bridge_slave_1: entered allmulticast mode
[   61.699397][ T5845] bridge_slave_1: entered promiscuous mode
[   61.711887][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   61.728328][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   61.774895][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   61.781532][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   61.854234][ T5845] team0: Port device team_slave_0 added
[   61.894786][ T5845] team0: Port device team_slave_1 added
[   61.897590][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.900174][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.903231][ T5853] bridge_slave_0: entered allmulticast mode
[   61.906419][ T5853] bridge_slave_0: entered promiscuous mode
[   61.909512][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.912440][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.915559][ T5850] bridge_slave_0: entered allmulticast mode
[   61.918883][ T5850] bridge_slave_0: entered promiscuous mode
[   61.922285][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.924846][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.928181][ T5850] bridge_slave_1: entered allmulticast mode
[   61.930837][ T5850] bridge_slave_1: entered promiscuous mode
[   61.948770][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.951163][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.953698][ T5853] bridge_slave_1: entered allmulticast mode
[   61.956956][ T5853] bridge_slave_1: entered promiscuous mode
[   61.974986][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0
[   61.977413][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   61.986236][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.001519][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.006503][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.019120][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.022052][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.032937][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.056559][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   62.076741][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   62.084463][ T5845] hsr_slave_0: entered promiscuous mode
[   62.087453][ T5845] hsr_slave_1: entered promiscuous mode
[   62.090790][ T5853] team0: Port device team_slave_0 added
[   62.111188][ T5853] team0: Port device team_slave_1 added
[   62.154289][ T5850] team0: Port device team_slave_0 added
[   62.162366][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.165057][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.176485][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.182000][ T5850] team0: Port device team_slave_1 added
[   62.184741][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.187614][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.196155][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.236366][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   62.239162][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.249427][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   62.254582][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   62.257416][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   62.267526][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   62.314018][ T5853] hsr_slave_0: entered promiscuous mode
[   62.317263][ T5853] hsr_slave_1: entered promiscuous mode
[   62.319965][ T5853] debugfs: 'hsr0' already exists in 'hsr'
[   62.322326][ T5853] Cannot create hsr debugfs directory
[   62.362448][ T5850] hsr_slave_0: entered promiscuous mode
[   62.366216][ T5850] hsr_slave_1: entered promiscuous mode
[   62.369155][ T5850] debugfs: 'hsr0' already exists in 'hsr'
[   62.371629][ T5850] Cannot create hsr debugfs directory
[   62.543713][ T5845] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   62.568184][ T5845] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   62.598503][ T5845] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   62.610041][ T5845] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   62.690139][ T5853] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   62.702685][ T5853] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   62.709861][ T5853] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   62.730358][ T5853] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   62.786569][ T5850] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   62.802329][ T5850] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   62.812278][ T5850] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   62.823781][ T5850] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   62.867684][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.901792][ T5845] 8021q: adding VLAN 0 to HW filter on device team0
[   62.928187][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   62.932971][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.936170][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.957897][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.960934][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.993698][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   63.017888][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   63.028613][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.031739][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.053765][ T1089] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.056337][ T1089] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.080175][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   63.091806][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.094336][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.113053][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.116148][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.196562][ T5850] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   63.206902][   T54] Bluetooth: hci0: command tx timeout
[   63.223701][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.292837][ T5845] veth0_vlan: entered promiscuous mode
[   63.324960][ T5845] veth1_vlan: entered promiscuous mode
[   63.362377][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.369044][   T54] Bluetooth: hci2: command tx timeout
[   63.371539][   T54] Bluetooth: hci1: command tx timeout
[   63.379031][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   63.399416][ T5845] veth0_macvtap: entered promiscuous mode
[   63.414738][ T5845] veth1_macvtap: entered promiscuous mode
[   63.448262][ T5850] veth0_vlan: entered promiscuous mode
[   63.458485][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.468942][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.484522][ T5850] veth1_vlan: entered promiscuous mode
[   63.492160][ T5853] veth0_vlan: entered promiscuous mode
[   63.499747][ T5872] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.510904][ T5872] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.514934][ T5872] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.531550][ T5872] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.554432][ T5853] veth1_vlan: entered promiscuous mode
[   63.573889][ T5850] veth0_macvtap: entered promiscuous mode
[   63.586790][ T5850] veth1_macvtap: entered promiscuous mode
[   63.622752][ T5853] veth0_macvtap: entered promiscuous mode
[   63.633471][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.644286][ T5853] veth1_macvtap: entered promiscuous mode
[   63.650203][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.680178][   T12] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.701092][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.705054][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.710217][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.715575][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.723310][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.734656][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   63.740697][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.758121][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.773733][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.780854][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.784037][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.802443][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.809121][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.859072][ T1061] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.861804][ T1061] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.876365][ T5845] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   63.900520][ T1089] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.903924][ T1089] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.929288][ T1089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.932650][ T1089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.963491][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.968758][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.057738][ T5914] Illegal XDP return value 4294967294 on prog  (id 4) dev N/A, expect packet loss!
[   64.686666][ T5919] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6'.
[   64.962681][ T5922] warning: `syz.1.7' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   65.289098][   T54] Bluetooth: hci0: command tx timeout
[   65.301760][ T5939] netlink: 16 bytes leftover after parsing attributes in process `syz.2.14'.
[   65.412327][   T54] Bluetooth: hci0: unknown advertising packet type: 0x0c
[   65.445290][   T54] Bluetooth: hci1: command tx timeout
[   65.445360][ T5234] Bluetooth: hci2: command tx timeout
[   65.583667][ T5234] Bluetooth: hci2: unexpected subevent 0x01 length: 150 > 18
[   65.620116][ T5960] netlink: 24 bytes leftover after parsing attributes in process `syz.1.24'.
[   65.624206][ T5960] netlink: 24 bytes leftover after parsing attributes in process `syz.1.24'.
[   65.748330][ T5970] netlink: 12 bytes leftover after parsing attributes in process `syz.0.29'.
[   66.452908][ T6018] netlink: 'syz.2.46': attribute type 33 has an invalid length.
[   66.467955][ T6018] netlink: 152 bytes leftover after parsing attributes in process `syz.2.46'.
[   66.523681][ T6024] netlink: 32 bytes leftover after parsing attributes in process `syz.1.50'.
[   66.529131][ T6024] netlink: 32 bytes leftover after parsing attributes in process `syz.1.50'.
[   66.954531][ T6045] netlink: 32 bytes leftover after parsing attributes in process `syz.0.58'.
[   66.972337][ T6045] netlink: 32 bytes leftover after parsing attributes in process `syz.0.58'.
[   67.127262][ T6056] netlink: 'syz.2.63': attribute type 21 has an invalid length.
[   67.382900][   T54] Bluetooth: hci0: command tx timeout
[   67.526098][   T54] Bluetooth: hci2: command tx timeout
[   67.537132][   T54] Bluetooth: hci1: command tx timeout
[   69.117490][ T6105] openvswitch: netlink: VXLAN extension 1 has unexpected len 5 expected 4
[   69.192137][ T6107] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   69.195012][ T6107] batman_adv: batadv0: Removing interface: batadv_slave_0
[   69.213755][ T6107] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   69.239716][ T6107] batman_adv: batadv0: Removing interface: batadv_slave_1
[   69.460522][    C1] hrtimer: interrupt took 71468 ns
[   69.477790][   T54] Bluetooth: hci0: command tx timeout
[   69.615628][   T54] Bluetooth: hci1: command tx timeout
[   69.615677][ T5234] Bluetooth: hci2: command tx timeout
[   70.441792][ T6168] netlink: 'syz.0.111': attribute type 5 has an invalid length.
[   71.169720][ T6185] delete_channel: no stack
[   71.184249][ T6185] delete_channel: no stack
[   71.230166][ T6178] __nla_validate_parse: 2 callbacks suppressed
[   71.230210][ T6178] netlink: 146936 bytes leftover after parsing attributes in process `syz.1.116'.
[   71.253275][ T6178] openvswitch: netlink: Message has 6 unknown bytes.
[   71.271688][ T6191] netlink: 40 bytes leftover after parsing attributes in process `syz.2.122'.
[   71.368465][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[   71.370812][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[   71.382912][ T6192] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.116'.
[   71.698095][ T6216] tap0: tun_chr_ioctl cmd 1074025677
[   71.701543][ T6216] tap0: linktype set to 6
[   71.970431][   T51] cfg80211: failed to load regulatory.db
[   72.193091][ T6231] netlink: 'syz.1.141': attribute type 12 has an invalid length.
[   72.197450][ T6231] netlink: 132 bytes leftover after parsing attributes in process `syz.1.141'.
[   72.367141][ T6236] netlink: 'syz.1.143': attribute type 22 has an invalid length.
[   72.697818][ T6248] netlink: 'syz.1.149': attribute type 10 has an invalid length.
[   73.446955][ T6248] syz.1.149 (6248) used greatest stack depth: 20024 bytes left
[   73.529714][    C0] Scheduler tracepoints stat_sleep, stat_iowait, stat_blocked and stat_runtime require the kernel parameter schedstats=enable or kernel.sched_schedstats=1
[   73.553503][ T6259] netlink: 'syz.2.153': attribute type 10 has an invalid length.
[   73.562082][ T6264] netlink: 'syz.0.155': attribute type 17 has an invalid length.
[   73.564556][ T6266] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   73.617445][ T6259] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   73.683461][ T6270] netlink: 28 bytes leftover after parsing attributes in process `syz.1.158'.
[   73.689883][ T6270] netlink: 28 bytes leftover after parsing attributes in process `syz.1.158'.
[   73.693738][ T6270] netlink: 80 bytes leftover after parsing attributes in process `syz.1.158'.
[   73.821307][ T5234] Bluetooth: hci2: unexpected event 0x03 length: 15 > 11
[   73.987006][ T6282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.164'.
[   74.249469][ T6301] netlink: 14 bytes leftover after parsing attributes in process `syz.2.173'.
[   74.268362][ T6301] hsr_slave_0: left promiscuous mode
[   74.272901][ T6301] hsr_slave_1: left promiscuous mode
[   74.277028][ T6306] netlink: 140 bytes leftover after parsing attributes in process `syz.1.174'.
[   76.206100][ T6365] skbuff: bad partial csum: csum=65535/127 headroom=178 headlen=65664
[   76.375844][ T6371] __nla_validate_parse: 3 callbacks suppressed
[   76.375857][ T6371] netlink: 4200 bytes leftover after parsing attributes in process `syz.2.202'.
[   77.665395][ T6396] netlink: 'syz.0.213': attribute type 29 has an invalid length.
[   77.670261][ T6396] netlink: 'syz.0.213': attribute type 29 has an invalid length.
[   78.821876][ T6415] pim6reg1: entered allmulticast mode
[   79.121827][ T6421] Zero length message leads to an empty skb
[   79.997113][ T6438] syz.0.230: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   80.004352][ T6438] CPU: 1 UID: 0 PID: 6438 Comm: syz.0.230 Not tainted syzkaller #0 PREEMPT(full) 
[   80.004368][ T6438] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   80.004377][ T6438] Call Trace:
[   80.004383][ T6438]  <TASK>
[   80.004388][ T6438]  dump_stack_lvl+0x189/0x250
[   80.004409][ T6438]  ? __pfx_dump_stack_lvl+0x10/0x10
[   80.004424][ T6438]  ? __pfx__printk+0x10/0x10
[   80.004442][ T6438]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[   80.004457][ T6438]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[   80.004473][ T6438]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[   80.004487][ T6438]  warn_alloc+0x214/0x310
[   80.004506][ T6438]  ? stack_depot_save_flags+0x41b/0x860
[   80.004523][ T6438]  ? __pfx_warn_alloc+0x10/0x10
[   80.004541][ T6438]  ? kasan_save_track+0x4f/0x80
[   80.004559][ T6438]  ? xskq_create+0x56/0x170
[   80.004572][ T6438]  ? xsk_init_queue+0xb0/0x110
[   80.004584][ T6438]  ? xsk_setsockopt+0x57b/0x8d0
[   80.004596][ T6438]  ? do_sock_setsockopt+0x17c/0x1b0
[   80.004614][ T6438]  ? __x64_sys_setsockopt+0x13f/0x1b0
[   80.004623][ T6438]  ? do_syscall_64+0xfa/0x3b0
[   80.004640][ T6438]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.004659][ T6438]  __vmalloc_node_range_noprof+0x125/0x12f0
[   80.004694][ T6438]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   80.004715][ T6438]  ? __kasan_kmalloc+0x93/0xb0
[   80.004733][ T6438]  vmalloc_user_noprof+0xad/0xf0
[   80.004749][ T6438]  ? xskq_create+0xbf/0x170
[   80.004812][ T6438]  xskq_create+0xbf/0x170
[   80.004831][ T6438]  xsk_init_queue+0xb0/0x110
[   80.004848][ T6438]  xsk_setsockopt+0x57b/0x8d0
[   80.004866][ T6438]  ? __pfx_xsk_setsockopt+0x10/0x10
[   80.004879][ T6438]  ? __pfx_aa_sk_perm+0x10/0x10
[   80.004899][ T6438]  ? __fget_files+0x2a/0x420
[   80.004908][ T6438]  ? aa_sock_opt_perm+0xff/0x1b0
[   80.004922][ T6438]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[   80.004936][ T6438]  ? __pfx_xsk_setsockopt+0x10/0x10
[   80.004953][ T6438]  do_sock_setsockopt+0x17c/0x1b0
[   80.004975][ T6438]  __x64_sys_setsockopt+0x13f/0x1b0
[   80.004990][ T6438]  do_syscall_64+0xfa/0x3b0
[   80.005006][ T6438]  ? lockdep_hardirqs_on+0x9c/0x150
[   80.005023][ T6438]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.005033][ T6438]  ? exc_page_fault+0x9f/0xf0
[   80.005049][ T6438]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   80.005061][ T6438] RIP: 0033:0x7f05d9d8ebe9
[   80.005072][ T6438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   80.005105][ T6438] RSP: 002b:00007f05dac1a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   80.005119][ T6438] RAX: ffffffffffffffda RBX: 00007f05d9fb5fa0 RCX: 00007f05d9d8ebe9
[   80.005127][ T6438] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000007
[   80.005135][ T6438] RBP: 00007f05d9e11e19 R08: 0000000000000004 R09: 0000000000000000
[   80.005152][ T6438] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000
[   80.005161][ T6438] R13: 00007f05d9fb6038 R14: 00007f05d9fb5fa0 R15: 00007ffff77bc2e8
[   80.005180][ T6438]  </TASK>
[   80.158443][ T6438] Mem-Info:
[   80.159678][ T6438] active_anon:5279 inactive_anon:0 isolated_anon:0
[   80.159678][ T6438]  active_file:1227 inactive_file:38211 isolated_file:0
[   80.159678][ T6438]  unevictable:1768 dirty:1428 writeback:0
[   80.159678][ T6438]  slab_reclaimable:9231 slab_unreclaimable:54369
[   80.159678][ T6438]  mapped:18062 shmem:2430 pagetables:958
[   80.159678][ T6438]  sec_pagetables:0 bounce:0
[   80.159678][ T6438]  kernel_misc_reclaimable:0
[   80.159678][ T6438]  free:303996 free_pcp:18115 free_cma:0
[   80.188309][ T6438] Node 0 active_anon:11496kB inactive_anon:0kB active_file:3364kB inactive_file:83568kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:33776kB dirty:4828kB writeback:0kB shmem:4812kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:6328kB pagetables:2152kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   80.203269][ T6438] Node 1 active_anon:9620kB inactive_anon:0kB active_file:1544kB inactive_file:69276kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:38472kB dirty:884kB writeback:0kB shmem:4908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5044kB pagetables:1748kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   80.218749][ T6438] Node 0 DMA free:15360kB boost:0kB min:640kB low:800kB high:960kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   80.232101][ T6438] lowmem_reserve[]: 0 811 811 811 811
[   80.234187][ T6438] Node 0 DMA32 free:351536kB boost:0kB min:33660kB low:42072kB high:50484kB reserved_highatomic:0KB free_highatomic:0KB active_anon:11564kB inactive_anon:0kB active_file:3364kB inactive_file:83568kB unevictable:3536kB writepending:4828kB present:1556484kB managed:830960kB mlocked:0kB bounce:0kB free_pcp:48096kB local_pcp:20944kB free_cma:0kB
[   80.248879][ T6438] lowmem_reserve[]: 0 0 0 0 0
[   80.257516][ T6438] Node 1 DMA32 free:458492kB boost:0kB min:19192kB low:23988kB high:28784kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:524152kB managed:458616kB mlocked:0kB bounce:0kB free_pcp:116kB local_pcp:0kB free_cma:0kB
[   80.281219][ T6438] lowmem_reserve[]: 0 0 854 854 854
[   80.283986][ T6438] Node 1 Normal free:390140kB boost:0kB min:36612kB low:45764kB high:54916kB reserved_highatomic:0KB free_highatomic:0KB active_anon:9620kB inactive_anon:0kB active_file:1544kB inactive_file:69276kB unevictable:3536kB writepending:884kB present:1048576kB managed:874952kB mlocked:0kB bounce:0kB free_pcp:24828kB local_pcp:9964kB free_cma:0kB
[   80.306338][ T6438] lowmem_reserve[]: 0 0 0 0 0
[   80.317897][ T6438] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   80.331174][ T6438] Node 0 DMA32: 514*4kB (UM) 341*8kB (UME) 128*16kB (UME) 105*32kB (UME) 83*64kB (UM) 15*128kB (UM) 7*256kB (UME) 1*512kB (U) 2*1024kB (ME) 1*2048kB (M) 80*4096kB (UM) = 351504kB
[   80.344935][ T6438] Node 1 DMA32: 3*4kB (UM) 2*8kB (M) 2*16kB (M) 2*32kB (M) 2*64kB (M) 2*128kB (UM) 3*256kB (UM) 3*512kB (UM) 3*1024kB (UM) 3*2048kB (UM) 109*4096kB (M) = 458492kB
[   80.353399][ T6438] Node 1 Normal: 337*4kB (UM) 487*8kB (UE) 318*16kB (UME) 97*32kB (UME) 24*64kB (UME) 17*128kB (UM) 11*256kB (UME) 9*512kB (UME) 7*1024kB (UM) 3*2048kB (M) 86*4096kB (UM) = 390140kB
[   80.362938][ T6438] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   80.368082][ T6438] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   80.372349][ T6438] 41868 total pagecache pages
[   80.374838][ T6438] 0 pages in swap cache
[   80.380612][ T6438] Free swap  = 124996kB
[   80.383195][ T6438] Total swap = 124996kB
[   80.385666][ T6438] 786301 pages RAM
[   80.387508][ T6438] 0 pages HighMem/MovableOnly
[   80.390054][ T6438] 241329 pages reserved
[   80.392347][ T6438] 0 pages cma reserved
[   80.490250][ T6449] netlink: 211 bytes leftover after parsing attributes in process `syz.2.234'.
[   80.954377][ T6465] netlink: 8 bytes leftover after parsing attributes in process `syz.0.241'.
[   81.315589][ T6465] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   81.369773][ T6465] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   82.184549][ T6521] x_tables: ip_tables: icmp match: only valid for protocol 1
[   82.563218][ T5234] Bluetooth: hci1: unexpected event 0x14 length: 151 > 6
[   83.124095][ T6545] netlink: 'syz.2.277': attribute type 5 has an invalid length.
[   84.490918][ T6596] netlink: 4 bytes leftover after parsing attributes in process `syz.2.301'.
[   84.601467][ T6604] netlink: 56 bytes leftover after parsing attributes in process `syz.0.305'.
[   84.782397][ T6605] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.788072][ T6605] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.797251][ T6605] bridge0: entered allmulticast mode
[   84.867434][ T6610] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.870472][ T6610] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.874044][ T6610] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.876542][ T6610] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.887470][ T6610] bridge0: entered promiscuous mode
[   85.372938][ T6634] netlink: 196 bytes leftover after parsing attributes in process `syz.0.316'.
[   85.673073][ T6644] netlink: 'syz.1.320': attribute type 10 has an invalid length.
[   85.683021][ T6644] netlink: 40 bytes leftover after parsing attributes in process `syz.1.320'.
[   85.693002][ T6644] dummy0: entered promiscuous mode
[   85.699889][ T6646] netlink: 20 bytes leftover after parsing attributes in process `syz.2.319'.
[   85.705418][ T6646] netlink: 16 bytes leftover after parsing attributes in process `syz.2.319'.
[   85.976126][ T6667] syz.0.328 (6667) used obsolete PPPIOCDETACH ioctl
[   86.001416][ T6668] netlink: 182 bytes leftover after parsing attributes in process `syz.1.329'.
[   86.114046][ T6671] netlink: 'syz.0.330': attribute type 21 has an invalid length.
[   87.199593][ T6694] netlink: 'syz.2.337': attribute type 4 has an invalid length.
[   88.067459][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.346'.
[   88.072232][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.346'.
[   88.498509][ T6732] netlink: 'syz.0.350': attribute type 10 has an invalid length.
[   88.521311][ T6732] batman_adv: batadv0: Adding interface: team0
[   88.523507][ T6732] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   88.532826][ T6732] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[   88.592605][ T6742] netlink: 'syz.0.355': attribute type 29 has an invalid length.
[   88.596844][ T6742] netlink: 'syz.0.355': attribute type 3 has an invalid length.
[   88.599549][ T6742] netlink: 132 bytes leftover after parsing attributes in process `syz.0.355'.
[   88.867737][ T6764] netlink: 'syz.0.366': attribute type 12 has an invalid length.
[   89.031441][ T6776] netlink: 'syz.2.372': attribute type 1 has an invalid length.
[   89.645091][ T6793] __nla_validate_parse: 3 callbacks suppressed
[   89.660580][ T6793] netlink: 32 bytes leftover after parsing attributes in process `syz.2.380'.
[   90.661137][ T6812] netlink: 'syz.0.389': attribute type 1 has an invalid length.
[   91.754735][ T6814] syzkaller0: entered promiscuous mode
[   91.758623][ T6814] syzkaller0: entered allmulticast mode
[   92.041779][ T6837] netlink: 10 bytes leftover after parsing attributes in process `syz.2.400'.
[   92.542635][ T6841] netlink: 132 bytes leftover after parsing attributes in process `syz.2.402'.
[   93.294662][ T6862] netlink: 'syz.0.412': attribute type 64 has an invalid length.
[   93.409312][ T6872] netlink: 24 bytes leftover after parsing attributes in process `syz.2.417'.
[   93.459181][ T6876] netlink: 'syz.2.419': attribute type 4 has an invalid length.
[   93.462685][ T6876] netlink: 'syz.2.419': attribute type 16 has an invalid length.
[   93.469926][ T6876] netlink: 132 bytes leftover after parsing attributes in process `syz.2.419'.
[   93.556992][ T6880] syzkaller0: entered promiscuous mode
[   93.559199][ T6880] syzkaller0: entered allmulticast mode
[   93.701241][ T5234] Bluetooth: hci2: unexpected subevent 0x12 length: 150 > 5
[   94.803832][ T6915] netlink: 40 bytes leftover after parsing attributes in process `syz.0.437'.
[   94.857766][ T6918] syzkaller0: entered promiscuous mode
[   94.860027][ T6918] syzkaller0: entered allmulticast mode
[   95.767389][ T6933] netlink: 'syz.2.444': attribute type 21 has an invalid length.
[   95.855805][ T6935] netlink: 'syz.1.445': attribute type 10 has an invalid length.
[   95.874123][ T6935] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets).
[   96.198370][ T6951] netlink: 188 bytes leftover after parsing attributes in process `syz.2.452'.
[   96.228817][ T6953] netlink: 'syz.1.453': attribute type 1 has an invalid length.
[   96.231946][ T6953] netlink: 124 bytes leftover after parsing attributes in process `syz.1.453'.
[   96.238260][ T6953] netlink: 125920 bytes leftover after parsing attributes in process `syz.1.453'.
[   96.242855][ T6953] netlink: 'syz.1.453': attribute type 1 has an invalid length.
[   96.247105][ T6953] netlink: 124 bytes leftover after parsing attributes in process `syz.1.453'.
[   96.702397][ T6979] netlink: 'syz.1.464': attribute type 10 has an invalid length.
[   96.742839][ T6979] bond0: entered promiscuous mode
[   96.745396][ T6979] bond_slave_0: entered promiscuous mode
[   96.748846][ T6979] bond_slave_1: entered promiscuous mode
[   96.816874][ T6979] syz.1.464 (6979) used greatest stack depth: 19456 bytes left
[   96.914175][ T6989] netlink: 'syz.1.469': attribute type 4 has an invalid length.
[   96.918044][ T6989] netlink: 140 bytes leftover after parsing attributes in process `syz.1.469'.
[   97.276490][ T7017] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   98.273456][ T7043] netlink: 8 bytes leftover after parsing attributes in process `syz.2.490'.
[   98.388807][ T7051] netlink: 'syz.2.493': attribute type 9 has an invalid length.
[   98.461914][ T7056] netlink: 112 bytes leftover after parsing attributes in process `syz.2.496'.
[   98.475236][ T7056] netlink: 56 bytes leftover after parsing attributes in process `syz.2.496'.
[   98.541309][ T7064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.498'.
[   98.631849][ T7065] mac80211_hwsim hwsim6 O3c: renamed from wlan1 (while UP)
[   98.964382][ T5234] Bluetooth: hci1: unexpected event 0x34 length: 15 > 6
[   99.327783][ T7094] netlink: 'syz.1.511': attribute type 39 has an invalid length.
[   99.653044][ T7101] netlink: 'syz.2.514': attribute type 29 has an invalid length.
[   99.661662][ T7103] netlink: 'syz.2.514': attribute type 29 has an invalid length.
[   99.878805][ T7117] __nla_validate_parse: 1 callbacks suppressed
[   99.878819][ T7117] netlink: 181400 bytes leftover after parsing attributes in process `syz.2.519'.
[  100.014368][ T7124] netlink: 60 bytes leftover after parsing attributes in process `syz.0.522'.
[  100.049424][ T7126] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  100.209673][ T7141] netlink: 14 bytes leftover after parsing attributes in process `syz.2.530'.
[  100.338295][ T7153] netlink: 28 bytes leftover after parsing attributes in process `syz.0.536'.
[  100.343134][ T7153] netlink: 28 bytes leftover after parsing attributes in process `syz.0.536'.
[  100.348194][ T7154] netlink: 60 bytes leftover after parsing attributes in process `syz.1.533'.
[  100.355743][ T7149] netlink: 60 bytes leftover after parsing attributes in process `syz.1.533'.
[  100.361000][ T7154] netlink: 60 bytes leftover after parsing attributes in process `syz.1.533'.
[  101.039029][ T7176] netlink: 240 bytes leftover after parsing attributes in process `syz.0.544'.
[  101.082670][ T7178] netlink: 4 bytes leftover after parsing attributes in process `syz.0.545'.
[  101.228863][ T7185] validate_nla: 4 callbacks suppressed
[  101.228880][ T7185] netlink: 'syz.2.548': attribute type 5 has an invalid length.
[  101.597734][ T7204] netlink: 'syz.0.557': attribute type 7 has an invalid length.
[  102.816573][ T7251] netlink: 'syz.0.577': attribute type 27 has an invalid length.
[  102.834982][ T7253] netlink: 'syz.1.578': attribute type 7 has an invalid length.
[  104.186957][ T7299] netlink: 'syz.2.598': attribute type 2 has an invalid length.
[  104.190038][ T7299] netlink: 'syz.2.598': attribute type 1 has an invalid length.
[  104.194150][ T7299] netlink: 'syz.2.598': attribute type 1 has an invalid length.
[  104.228728][ T7301] netlink: 'syz.2.599': attribute type 1 has an invalid length.
[  104.411685][ T7307] netlink: 'syz.0.602': attribute type 2 has an invalid length.
[  104.415260][ T7307] netlink: 'syz.0.602': attribute type 5 has an invalid length.
[  104.531122][ T7318] delete_channel: no stack
[  104.584852][ T7324] x_tables: ip_tables: policy.0 match: invalid size 312 (kernel) != (user) 320
[  106.057658][ T7343] __nla_validate_parse: 8 callbacks suppressed
[  106.057669][ T7343] netlink: 13435 bytes leftover after parsing attributes in process `syz.0.617'.
[  106.132205][ T7353] openvswitch: netlink: Message has 4 unknown bytes.
[  106.230989][ T7360] netlink: 14 bytes leftover after parsing attributes in process `syz.2.624'.
[  106.233302][ T7364] netlink: 14536 bytes leftover after parsing attributes in process `syz.1.626'.
[  106.292841][ T7368] validate_nla: 9 callbacks suppressed
[  106.292852][ T7368] netlink: 'syz.1.628': attribute type 9 has an invalid length.
[  106.298509][ T7368] netlink: 146452 bytes leftover after parsing attributes in process `syz.1.628'.
[  106.501163][ T7388] netlink: 8 bytes leftover after parsing attributes in process `syz.2.637'.
[  106.504212][ T7388] openvswitch: netlink: nsh attr 0 has unexpected len 86 expected 0
[  106.516313][ T7388] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  106.624096][ T5234] Bluetooth: hci0: ACL packet for unknown connection handle 0
[  106.708001][ T7398] netlink: 'syz.2.641': attribute type 10 has an invalid length.
[  106.797632][ T7404] netlink: 64 bytes leftover after parsing attributes in process `syz.1.644'.
[  106.844483][ T7398] team0 (unregistering): Port device team_slave_0 removed
[  106.853793][ T7398] team0 (unregistering): Port device team_slave_1 removed
[  106.889745][ T7400] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  106.893504][ T7400] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  107.031639][ T7409] netlink: 'syz.1.646': attribute type 11 has an invalid length.
[  107.034593][ T7409] netlink: 149476 bytes leftover after parsing attributes in process `syz.1.646'.
[  107.099517][ T7410] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  107.521461][ T7422] netlink: 12 bytes leftover after parsing attributes in process `syz.1.651'.
[  107.541812][ T7424] netlink: 'syz.2.652': attribute type 2 has an invalid length.
[  107.544517][ T7424] netlink: 'syz.2.652': attribute type 7 has an invalid length.
[  107.547677][ T7424] netlink: 85 bytes leftover after parsing attributes in process `syz.2.652'.
[  107.551029][ T7424] netlink: 130140 bytes leftover after parsing attributes in process `syz.2.652'.
[  107.554612][ T7424] netlink: 'syz.2.652': attribute type 2 has an invalid length.
[  107.559450][ T7424] netlink: 'syz.2.652': attribute type 7 has an invalid length.
[  107.707670][ T7438] netlink: 'syz.1.659': attribute type 5 has an invalid length.
[  107.728935][ T7438] : entered promiscuous mode
[  108.518883][ T7456] netlink: 'syz.2.667': attribute type 16 has an invalid length.
[  109.821735][ T7516] infiniband syz1: set down
[  109.824537][ T7516] infiniband syz1: added bond0
[  109.870527][ T7516] RDS/IB: syz1: added
[  109.873143][ T7516] smc: adding ib device syz1 with port count 1
[  109.881008][ T7516] smc:    ib device syz1 port 1 has pnetid 
[  110.349018][ T7545] netlink: 'syz.2.708': attribute type 7 has an invalid length.
[  110.482155][ T7557] netlink: 'syz.0.714': attribute type 3 has an invalid length.
[  111.059018][ T7597] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  111.138406][ T7601] __nla_validate_parse: 18 callbacks suppressed
[  111.138423][ T7601] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.733'.
[  111.549560][ T7618] netlink: 'syz.1.741': attribute type 1 has an invalid length.
[  111.740648][ T7623] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  111.879502][ T7629] netlink: 'syz.1.746': attribute type 1 has an invalid length.
[  112.281402][ T7641] netlink: 'syz.2.751': attribute type 21 has an invalid length.
[  113.139181][ T7648] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.143087][ T7648] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.147099][ T7648] bridge0: left promiscuous mode
[  113.149158][ T7648] bridge0: left allmulticast mode
[  113.200033][ T7652] netlink: 104 bytes leftover after parsing attributes in process `syz.0.756'.
[  113.325466][ T7649] delete_channel: no stack
[  113.386153][ T5872] syzkaller0: tun_net_xmit 76
[  113.388034][ T5872] syzkaller0: tun_net_xmit 48
[  113.389910][ T7660] syzkaller0: create flow: hash 3013317168 index 1
[  113.406143][   T51] syzkaller0: tun_net_xmit 76
[  113.424077][ T7660] syzkaller0: delete flow: hash 3013317168 index 1
[  113.577407][ T7670] delete_channel: no stack
[  113.579596][ T7670] delete_channel: no stack
[  114.278203][ T7672] netlink: 92 bytes leftover after parsing attributes in process `syz.2.766'.
[  114.281884][ T7672] netlink: 92 bytes leftover after parsing attributes in process `syz.2.766'.
[  114.468231][ T7690] netlink: 'syz.1.775': attribute type 1 has an invalid length.
[  115.267870][ T7756] netlink: 196 bytes leftover after parsing attributes in process `syz.1.804'.
[  115.417725][ T7763] netlink: 'syz.1.807': attribute type 10 has an invalid length.
[  115.599029][ T7763] team0: Port device netdevsim0 added
[  116.199403][ T7783] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  117.080820][ T7837] netlink: 'syz.2.829': attribute type 25 has an invalid length.
[  117.084387][ T7837] netlink: 'syz.2.829': attribute type 1 has an invalid length.
[  117.090389][ T7837] bridge0: port 1(bridge_slave_0) entered learning state
[  117.418049][ T7849] =======================================================
[  117.418049][ T7849] WARNING: The mand mount option has been deprecated and
[  117.418049][ T7849]          and is ignored by this kernel. Remove the mand
[  117.418049][ T7849]          option from the mount to silence this warning.
[  117.418049][ T7849] =======================================================
[  117.620599][ T7859] netlink: 'syz.1.840': attribute type 39 has an invalid length.
[  117.896089][ T7879] netlink: 1018 bytes leftover after parsing attributes in process `syz.1.846'.
[  118.094836][ T7890] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  118.421846][ T7904] netlink: zone id is out of range
[  118.465680][ T7911] netlink: del zone limit has 4 unknown bytes
[  118.543866][ T7916] netlink: 56 bytes leftover after parsing attributes in process `syz.0.863'.
[  118.545762][ T7904] netlink: set zone limit has 4 unknown bytes
[  120.422445][ T7993] netlink: 'syz.2.895': attribute type 1 has an invalid length.
[  120.518447][ T8000] netlink: 'syz.1.900': attribute type 10 has an invalid length.
[  120.521737][ T8000] netlink: 40 bytes leftover after parsing attributes in process `syz.1.900'.
[  120.526414][ T8000] ipvlan1: entered promiscuous mode
[  120.528703][ T8000] ipvlan1: entered allmulticast mode
[  120.530915][ T8000] veth0_vlan: entered allmulticast mode
[  120.534320][ T8000] bridge0: port 3(ipvlan1) entered blocking state
[  120.539743][ T8000] bridge0: port 3(ipvlan1) entered disabled state
[  120.545802][ T8000] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  120.888233][ T8029] netlink: 'syz.1.912': attribute type 10 has an invalid length.
[  120.891321][ T8029] netlink: 40 bytes leftover after parsing attributes in process `syz.1.912'.
[  120.896345][ T8029] A link change request failed with some changes committed already. Interface hsr_slave_1 may have been left with an inconsistent configuration, please check.
[  121.186604][ T8045] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  121.296424][ T8049] netlink: 'syz.1.921': attribute type 1 has an invalid length.
[  121.469829][ T8063] netlink: 'syz.1.927': attribute type 21 has an invalid length.
[  121.472617][ T8063] netlink: 132 bytes leftover after parsing attributes in process `syz.1.927'.
[  124.182483][ T8092] netlink: 128 bytes leftover after parsing attributes in process `syz.1.942'.
[  124.186461][ T8092] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  124.245337][ T8092] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  124.361474][ T8097] netlink: 260 bytes leftover after parsing attributes in process `syz.2.943'.
[  124.377855][ T8097] netlink: 260 bytes leftover after parsing attributes in process `syz.2.943'.
[  124.405202][ T8097] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  124.409261][ T8097] IPv6: NLM_F_CREATE should be set when creating new route
[  124.413230][ T8097] IPv6: NLM_F_CREATE should be set when creating new route
[  124.508756][ T8115] netlink: 'syz.1.947': attribute type 4 has an invalid length.
[  124.640444][ T8128] sit0: entered allmulticast mode
[  124.684052][ T8128] sit0: entered promiscuous mode
[  125.554233][ T8150] netlink: 8 bytes leftover after parsing attributes in process `syz.2.961'.
[  125.612216][ T8155] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.962'.
[  125.635929][ T8156] netlink: 'syz.2.963': attribute type 1 has an invalid length.
[  125.639326][ T8156] netlink: 'syz.2.963': attribute type 4 has an invalid length.
[  125.642060][ T8156] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.963'.
[  126.697248][ T8189] syz.0.977 uses obsolete (PF_INET,SOCK_PACKET)
[  127.379308][ T8194] syzkaller0: entered promiscuous mode
[  127.382326][ T8194] syzkaller0: entered allmulticast mode
[  127.913080][ T8209] netlink: 8 bytes leftover after parsing attributes in process `syz.0.980'.
[  129.678485][ T8236] delete_channel: no stack
[  129.776809][ T8255] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1003'.
[  130.027708][ T8268] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1008'.
[  130.031263][ T8268] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1008'.
[  130.809751][ T8324] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.1030'.
[  130.861628][ T8328] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1031'.
[  131.082028][ T8341] netlink: 703 bytes leftover after parsing attributes in process `syz.2.1036'.
[  131.976480][ T8356] netlink: 'syz.1.1041': attribute type 1 has an invalid length.
[  131.984669][ T8356] netlink: 'syz.1.1041': attribute type 2 has an invalid length.
[  131.992918][ T8356] netlink: 'syz.1.1041': attribute type 4 has an invalid length.
[  132.019090][ T8356] netlink: 'syz.1.1041': attribute type 1 has an invalid length.
[  132.022441][ T8356] netlink: 'syz.1.1041': attribute type 2 has an invalid length.
[  132.039814][ T8356] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1041'.
[  132.055333][ T8356] netlink: 130080 bytes leftover after parsing attributes in process `syz.1.1041'.
[  132.069754][ T8356] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1041'.
[  132.297308][ T8362] netlink: 'syz.2.1044': attribute type 10 has an invalid length.
[  132.366762][ T8368] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1047'.
[  132.808239][ T1364] ieee802154 phy0 wpan0: encryption failed: -22
[  132.810519][ T1364] ieee802154 phy1 wpan1: encryption failed: -22
[  133.113446][ T8412] netlink: 'syz.2.1066': attribute type 10 has an invalid length.
[  133.133558][ T8412] geneve0: entered promiscuous mode
[  133.151042][ T8412] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  134.444869][ T8440] netlink: 'syz.0.1077': attribute type 10 has an invalid length.
[  135.032467][ T8460] netlink: 'syz.0.1087': attribute type 29 has an invalid length.
[  135.050306][ T8460] netlink: 'syz.0.1087': attribute type 29 has an invalid length.
[  135.451990][ T8497] __nla_validate_parse: 2 callbacks suppressed
[  135.452000][ T8497] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1105'.
[  135.470800][ T8497] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1105'.
[  135.474986][ T8497] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1105'.
[  135.994299][ T8538] netlink: 204 bytes leftover after parsing attributes in process `syz.2.1124'.
[  136.083031][ T8541] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.1126'.
[  137.732258][ T8572] openvswitch: netlink: IP tunnel attribute has 16 unknown bytes.
[  137.828521][ T8576] validate_nla: 7 callbacks suppressed
[  137.828531][ T8576] netlink: 'syz.0.1141': attribute type 21 has an invalid length.
[  137.843159][ T8578] netlink: 'syz.1.1142': attribute type 10 has an invalid length.
[  137.855057][ T8580] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  138.109476][ T8599] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1152'.
[  138.110539][ T8597] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1151'.
[  138.173347][ T8603] delete_channel: no stack
[  138.200514][ T8607] netlink: 'syz.2.1156': attribute type 4 has an invalid length.
[  138.204549][ T8607] netlink: 'syz.2.1156': attribute type 10 has an invalid length.
[  138.301576][ T8609] netlink: 'syz.0.1157': attribute type 1 has an invalid length.
[  138.308373][ T8615] netlink: 992 bytes leftover after parsing attributes in process `syz.2.1160'.
[  138.461757][ T8625] openvswitch: netlink: IP tunnel dst address not specified
[  138.610967][ T8633] netlink: 'syz.0.1168': attribute type 2 has an invalid length.
[  138.614442][ T8633] netlink: 'syz.0.1168': attribute type 1 has an invalid length.
[  138.620368][ T8633] netlink: 'syz.0.1168': attribute type 1 has an invalid length.
[  138.807819][ T5234] Bluetooth: hci0: unexpected cc 0x1004 length: 12 > 11
[  138.855773][ T8646] netlink: 14568 bytes leftover after parsing attributes in process `syz.2.1174'.
[  138.924017][ T8654] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  139.646829][ T8704] netlink: 'syz.0.1196': attribute type 23 has an invalid length.
[  140.056702][ T8718] netlink: 'syz.2.1203': attribute type 1 has an invalid length.
[  140.059655][ T8718] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  141.108470][ T8779] openvswitch: netlink: nsh attribute has 2 unknown bytes.
[  141.112677][ T8779] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  141.169178][ T8783] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1233'.
[  141.828054][ T8829] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1255'.
[  142.087102][ T8849] netlink: 211988 bytes leftover after parsing attributes in process `syz.1.1264'.
[  142.717447][ T8864] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1271'.
[  142.847244][ T8837] delete_channel: no stack
[  142.888179][ T5234] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  142.891864][ T5234] Bluetooth: hci0: Injecting HCI hardware error event
[  142.895645][ T5234] Bluetooth: hci0: hardware error 0x00
[  143.011543][ T8880] netlink: 16410 bytes leftover after parsing attributes in process `syz.0.1280'.
[  143.033025][   T54] Bluetooth: hci1: unexpected subevent 0x0c length: 150 > 5
[  143.402946][ T8910] validate_nla: 3 callbacks suppressed
[  143.402962][ T8910] netlink: 'syz.2.1294': attribute type 1 has an invalid length.
[  143.418291][ T8910] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.1294'.
[  144.861846][   T54] Bluetooth: hci2: unexpected event 0x04 length: 15 > 10
[  144.965283][ T5234] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  145.300647][ T8987] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1327'.
[  145.304709][ T8987] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  145.592310][ T9011] netlink: 'syz.2.1338': attribute type 21 has an invalid length.
[  145.601512][ T9011] netlink: 128 bytes leftover after parsing attributes in process `syz.2.1338'.
[  145.653749][ T9018] netlink: 'syz.2.1341': attribute type 2 has an invalid length.
[  145.656727][ T9018] netlink: 120 bytes leftover after parsing attributes in process `syz.2.1341'.
[  145.805305][ T9026] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1345'.
[  146.134297][ T9042] netlink: 'syz.2.1351': attribute type 10 has an invalid length.
[  146.262539][ T9055] netlink: 'syz.2.1358': attribute type 21 has an invalid length.
[  146.271287][ T9056] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  146.887913][ T5234] Bluetooth: hci2: command tx timeout
[  147.392104][ T9106] netlink: 'syz.1.1382': attribute type 21 has an invalid length.
[  147.671332][ T9117] netlink: 10 bytes leftover after parsing attributes in process `syz.2.1386'.
[  147.873057][ T9124] netlink: 'syz.1.1388': attribute type 21 has an invalid length.
[  147.876124][ T9124] netlink: 'syz.1.1388': attribute type 6 has an invalid length.
[  147.879235][ T9124] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1388'.
[  147.972340][ T9132] netlink: 1057 bytes leftover after parsing attributes in process `syz.1.1391'.
[  149.074867][ T9191] netlink: 55631 bytes leftover after parsing attributes in process `syz.2.1418'.
[  149.083699][ T9191] netlink: 6264 bytes leftover after parsing attributes in process `syz.2.1418'.
[  149.092162][ T9191] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1418'.
[  149.163468][ T9190] netlink: 'syz.0.1419': attribute type 4 has an invalid length.
[  149.178169][ T9190] netlink: 211448 bytes leftover after parsing attributes in process `syz.0.1419'.
[  149.327509][ T9214] netlink: 'syz.1.1430': attribute type 12 has an invalid length.
[  149.330213][ T9214] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1430'.
[  149.617020][ T9238] netlink: 596 bytes leftover after parsing attributes in process `syz.1.1442'.
[  149.666450][ T9243] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1444'.
[  149.675291][ T9243] netlink: 'syz.2.1444': attribute type 2 has an invalid length.
[  149.691463][ T9243] netlink: 'syz.2.1444': attribute type 2 has an invalid length.
[  149.694805][ T9243] netlink: 'syz.2.1444': attribute type 1 has an invalid length.
[  149.925467][ T9252] netlink: 'syz.1.1448': attribute type 4 has an invalid length.
[  150.074631][ T9260] C: renamed from team_slave_0 (while UP)
[  151.638779][ T9299] netlink: 'syz.2.1470': attribute type 10 has an invalid length.
[  152.190485][ T9327] sysfs: cannot create duplicate filename '/class/ieee80211/!'
[  152.192953][ T9327] CPU: 0 UID: 0 PID: 9327 Comm: syz.2.1482 Not tainted syzkaller #0 PREEMPT(full) 
[  152.192963][ T9327] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  152.192968][ T9327] Call Trace:
[  152.192972][ T9327]  <TASK>
[  152.192976][ T9327]  dump_stack_lvl+0x189/0x250
[  152.192994][ T9327]  ? kernfs_path_from_node+0x2f/0x290
[  152.193007][ T9327]  ? __pfx_dump_stack_lvl+0x10/0x10
[  152.193016][ T9327]  ? __pfx__printk+0x10/0x10
[  152.193031][ T9327]  ? kernfs_path_from_node+0x2f/0x290
[  152.193039][ T9327]  ? kernfs_path_from_node+0x250/0x290
[  152.193047][ T9327]  ? kernfs_path_from_node+0x2f/0x290
[  152.193059][ T9327]  sysfs_warn_dup+0x8e/0xa0
[  152.193068][ T9327]  sysfs_do_create_link_sd+0xc0/0x110
[  152.193078][ T9327]  device_add_class_symlinks+0x1cf/0x240
[  152.193088][ T9327]  device_add+0x475/0xb50
[  152.193097][ T9327]  wiphy_register+0x1ba6/0x28d0
[  152.193118][ T9327]  ? __pfx_wiphy_register+0x10/0x10
[  152.193128][ T9327]  ? minstrel_ht_alloc+0x6dd/0x7e0
[  152.193143][ T9327]  ? ieee80211_init_rate_ctrl_alg+0x56d/0x5f0
[  152.193159][ T9327]  ieee80211_register_hw+0x3425/0x4080
[  152.193182][ T9327]  ? ieee80211_register_hw+0x1471/0x4080
[  152.193194][ T9327]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  152.193203][ T9327]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  152.193216][ T9327]  ? __hrtimer_setup+0x187/0x210
[  152.193223][ T9327]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  152.193237][ T9327]  mac80211_hwsim_new_radio+0x2f0e/0x5340
[  152.193260][ T9327]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  152.193267][ T9327]  ? trace_kmalloc+0x1f/0xd0
[  152.193275][ T9327]  ? __kmalloc_node_track_caller_noprof+0x28e/0x4e0
[  152.193284][ T9327]  ? kstrndup+0xbf/0x160
[  152.193296][ T9327]  hwsim_new_radio_nl+0xea4/0x1b10
[  152.193309][ T9327]  ? __pfx___nla_validate_parse+0x10/0x10
[  152.193328][ T9327]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  152.193345][ T9327]  ? __nla_parse+0x40/0x60
[  152.193357][ T9327]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  152.193370][ T9327]  genl_family_rcv_msg_doit+0x215/0x300
[  152.193381][ T9327]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  152.193395][ T9327]  ? bpf_lsm_capable+0x9/0x20
[  152.193404][ T9327]  ? security_capable+0x7e/0x2e0
[  152.193417][ T9327]  genl_rcv_msg+0x60e/0x790
[  152.193427][ T9327]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.193434][ T9327]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  152.193443][ T9327]  ? __asan_memcpy+0x40/0x70
[  152.193450][ T9327]  ? __pfx_ref_tracker_free+0x10/0x10
[  152.193463][ T9327]  netlink_rcv_skb+0x208/0x470
[  152.193472][ T9327]  ? __lock_acquire+0xab9/0xd20
[  152.193482][ T9327]  ? __pfx_genl_rcv_msg+0x10/0x10
[  152.193490][ T9327]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  152.193508][ T9327]  ? down_read+0x1ad/0x2e0
[  152.193519][ T9327]  genl_rcv+0x28/0x40
[  152.193525][ T9327]  netlink_unicast+0x82f/0x9e0
[  152.193538][ T9327]  ? __pfx_netlink_unicast+0x10/0x10
[  152.193547][ T9327]  ? netlink_sendmsg+0x642/0xb30
[  152.193555][ T9327]  ? skb_put+0x11b/0x210
[  152.193567][ T9327]  netlink_sendmsg+0x805/0xb30
[  152.193581][ T9327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.193592][ T9327]  ? aa_sock_msg_perm+0xf1/0x1d0
[  152.193603][ T9327]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  152.193610][ T9327]  ? __pfx_netlink_sendmsg+0x10/0x10
[  152.193619][ T9327]  __sock_sendmsg+0x21c/0x270
[  152.193629][ T9327]  ____sys_sendmsg+0x505/0x830
[  152.193640][ T9327]  ? __pfx_____sys_sendmsg+0x10/0x10
[  152.193651][ T9327]  ? import_iovec+0x74/0xa0
[  152.193661][ T9327]  ___sys_sendmsg+0x21f/0x2a0
[  152.193708][ T9327]  ? __pfx____sys_sendmsg+0x10/0x10
[  152.193730][ T9327]  ? __fget_files+0x2a/0x420
[  152.193744][ T9327]  ? __fget_files+0x2a/0x420
[  152.193749][ T9327]  ? __fget_files+0x3a0/0x420
[  152.193764][ T9327]  __x64_sys_sendmsg+0x19b/0x260
[  152.193773][ T9327]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  152.193787][ T9327]  ? rcu_is_watching+0x15/0xb0
[  152.193799][ T9327]  ? do_syscall_64+0xbe/0x3b0
[  152.193813][ T9327]  do_syscall_64+0xfa/0x3b0
[  152.193823][ T9327]  ? lockdep_hardirqs_on+0x9c/0x150
[  152.193833][ T9327]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.193840][ T9327]  ? exc_page_fault+0x9f/0xf0
[  152.193850][ T9327]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  152.193857][ T9327] RIP: 0033:0x7fb76298ebe9
[  152.193864][ T9327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  152.193870][ T9327] RSP: 002b:00007fb763802038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  152.193879][ T9327] RAX: ffffffffffffffda RBX: 00007fb762bb5fa0 RCX: 00007fb76298ebe9
[  152.193883][ T9327] RDX: 0000000000000310 RSI: 0000200000000040 RDI: 0000000000000004
[  152.193888][ T9327] RBP: 00007fb762a11e19 R08: 0000000000000000 R09: 0000000000000000
[  152.193892][ T9327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  152.193896][ T9327] R13: 00007fb762bb6038 R14: 00007fb762bb5fa0 R15: 00007fff1b0c48b8
[  152.193909][ T9327]  </TASK>
[  152.812551][ T9355] __nla_validate_parse: 7 callbacks suppressed
[  152.812568][ T9355] netlink: 202920 bytes leftover after parsing attributes in process `syz.0.1494'.
[  152.883388][ T9359] faux_driver regulatory: Direct firmware load for regulatory.db failed with error -2
[  152.890036][ T9359] faux_driver regulatory: Falling back to sysfs fallback for: regulatory.db
[  153.202934][ T9361] netlink: 35840 bytes leftover after parsing attributes in process `syz.2.1497'.
[  153.297630][ T9368] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1500'.
[  153.301202][ T9368] netlink: 46 bytes leftover after parsing attributes in process `syz.2.1500'.
[  153.323808][ T9368] netlink: 46 bytes leftover after parsing attributes in process `syz.2.1500'.
[  153.361030][ T9375] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1504'.
[  154.690256][ T9408] netlink: 'syz.0.1518': attribute type 10 has an invalid length.
[  154.693718][ T9408] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1518'.
[  154.697824][ T9408] dummy0: entered promiscuous mode
[  154.705973][ T9408] bridge0: port 3(dummy0) entered blocking state
[  154.709177][ T9408] bridge0: port 3(dummy0) entered disabled state
[  154.712858][ T9408] dummy0: entered allmulticast mode
[  154.723600][ T9408] bridge0: port 3(dummy0) entered blocking state
[  154.726728][ T9408] bridge0: port 3(dummy0) entered forwarding state
[  155.739510][ T9418] netlink: 149044 bytes leftover after parsing attributes in process `syz.0.1523'.
[  156.103461][ T9431] netlink: 'syz.1.1529': attribute type 3 has an invalid length.
[  156.113563][ T9431] netlink: 'syz.1.1529': attribute type 1 has an invalid length.
[  156.117253][ T9431] netlink: 193500 bytes leftover after parsing attributes in process `syz.1.1529'.
[  156.411298][ T9462] netlink: 'syz.1.1541': attribute type 16 has an invalid length.
[  156.414554][ T9462] netlink: 'syz.1.1541': attribute type 3 has an invalid length.
[  156.419131][ T9462] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1541'.
[  156.931222][ T9492] netlink: 'syz.0.1555': attribute type 1 has an invalid length.
[  156.961790][   T33] audit: type=1107 audit(1755611789.019:2): pid=9491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='#?v&ԹI~+#{U=TsamvDP])x}C|
[  156.961790][   T33] CA6cz06YX}Yq̌4Iޓp5BeVSo$<1v.b紛xq,HrNG5[$8L{+=i~{5#r4,;=GfVeuu;){ZK><XmG#zv0{ᑤQTOňFU~ ~z1s^|^eM5R;V?'Ss}_cV4q{ΞO1wXf.(\&vhq7"0B+':񢕎1k8)וv7F>7;ްqSݰ\vqށTFkYҵoZi*0	1->uJ.h`@A)2CEhFTڑC_9C?^LCnM`3@$KqH<Ō03ҢI\1A7$Lo)7_֫hQ, QAl
[  156.961790][   T33] cvm1kOk:tN=,R; wD_b'ɀAM"5qfg]<'ſU	փ]	c!{@6cG|rC(m	T}Z{0.Cӭlt9aԘA$G+4BtU'GVj-	.㢐TkD4V%(ƈ\pEUBd\Ldc}b(hom(m̈awO}
[  156.961790][   T33] ru)aoG7>9NeʇNf4+ePz'*apS(0m9.v!$HDt}1nuR
[  157.979158][ T9539] netlink: 'syz.0.1572': attribute type 2 has an invalid length.
[  158.016357][ T9539] netlink: 'syz.0.1572': attribute type 8 has an invalid length.
[  158.019522][ T9539] __nla_validate_parse: 4 callbacks suppressed
[  158.019531][ T9539] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1572'.
[  158.218703][ T9554] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1579'.
[  158.223432][ T9554] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1579'.
[  158.436373][ T9572] netlink: 763 bytes leftover after parsing attributes in process `syz.0.1588'.
[  158.832506][ T9592] netlink: 'syz.2.1598': attribute type 13 has an invalid length.
[  158.836507][ T9592] netlink: 61967 bytes leftover after parsing attributes in process `syz.2.1598'.
[  158.898919][ T9596] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1600'.
[  158.980230][ T9599] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.1601'.
[  159.355071][ T9620] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1610'.
[  159.356170][ T9622] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1611'.
[  160.144238][ T9653] syzkaller0: entered promiscuous mode
[  160.146958][ T9653] syzkaller0: entered allmulticast mode
[  161.130820][ T5234] Bluetooth: hci2: unexpected subevent 0x0a length: 150 > 30
[  161.657007][   T54] Bluetooth: hci2: unexpected event 0x3b length: 15 > 10
[  162.251270][ T9684] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1640'.
[  162.512451][ T9696] team_slave_0: entered allmulticast mode
[  163.017874][ T9725] -1: renamed from syzkaller0
[  163.205438][   T54] Bluetooth: hci2: command tx timeout
[  163.598546][ T9753] __nla_validate_parse: 1 callbacks suppressed
[  163.598560][ T9753] netlink: 56537 bytes leftover after parsing attributes in process `syz.1.1670'.
[  163.897669][ T9757] netlink: 830 bytes leftover after parsing attributes in process `syz.0.1672'.
[  164.527785][ T9776] netlink: 'syz.1.1679': attribute type 10 has an invalid length.
[  164.843379][ T9776] geneve0: entered promiscuous mode
[  164.947874][ T9776] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  165.004146][ T9778] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1680'.
[  165.016391][ T9778] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1680'.
[  165.142322][ T9781] netlink: 'syz.0.1680': attribute type 21 has an invalid length.
[  165.153747][ T9781] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1680'.
[  165.159744][ T9781] netlink: 'syz.0.1680': attribute type 4 has an invalid length.
[  165.164018][ T9781] netlink: 'syz.0.1680': attribute type 5 has an invalid length.
[  165.169015][ T9781] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1680'.
[  165.415966][ T9795] netlink: 55631 bytes leftover after parsing attributes in process `syz.2.1685'.
[  165.695079][ T9809] netlink: 'syz.2.1692': attribute type 2 has an invalid length.
[  165.782298][ T9807] netlink: 'syz.1.1691': attribute type 29 has an invalid length.
[  165.825770][ T9807] netlink: 'syz.1.1691': attribute type 10 has an invalid length.
[  165.830268][ T9807] bond0: left promiscuous mode
[  165.833053][ T9807] bond_slave_0: left promiscuous mode
[  165.861461][ T9807] bond_slave_1: left promiscuous mode
[  166.184086][ T9807] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.234812][ T9807] team0: Port device bond0 added
[  166.532009][ T9829] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1700'.
[  167.398065][ T9889] netlink: 'syz.1.1724': attribute type 10 has an invalid length.
[  167.434288][ T9889] team0: Cannot enslave team device to itself
[  167.878310][ T9909] netlink: 176 bytes leftover after parsing attributes in process `syz.2.1734'.
[  168.308514][ T9916] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1736'.
[  169.577775][ T9957] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  169.587448][ T9965] __nla_validate_parse: 1 callbacks suppressed
[  169.587460][ T9965] netlink: 763 bytes leftover after parsing attributes in process `syz.1.1757'.
[  169.776846][ T9982] netlink: zone id is out of range
[  169.779020][ T9982] netlink: zone id is out of range
[  169.781029][ T9982] netlink: zone id is out of range
[  169.782878][ T9982] netlink: zone id is out of range
[  169.784593][ T9982] netlink: zone id is out of range
[  169.787461][ T9982] netlink: zone id is out of range
[  169.789200][ T9982] netlink: zone id is out of range
[  169.791020][ T9982] netlink: zone id is out of range
[  169.792863][ T9982] netlink: zone id is out of range
[  170.016514][ T9998] netlink: 'syz.1.1772': attribute type 27 has an invalid length.
[  170.019302][ T9998] netlink: 152 bytes leftover after parsing attributes in process `syz.1.1772'.
[  170.053085][T10000] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1773'.
[  170.204160][T10010] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1777'.
[  170.849107][   T54] Bluetooth: hci1: adv larger than maximum supported
[  171.059734][T10044] netlink: 'syz.1.1790': attribute type 10 has an invalid length.
[  171.065637][T10044] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1790'.
[  171.194844][T10053] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1794'.
[  171.201359][T10053] netlink: 6 bytes leftover after parsing attributes in process `syz.0.1794'.
[  171.323502][T10063] pim6reg1: tun_chr_ioctl cmd 1074025680
[  171.632303][T10073] netlink: 'syz.2.1803': attribute type 2 has an invalid length.
[  172.447713][T10106] netlink: 164 bytes leftover after parsing attributes in process `syz.1.1814'.
[  172.594290][T10116] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  173.752729][T10125] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1821'.
[  173.757766][T10125] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1821'.
[  174.857835][T10176] net_ratelimit: 82 callbacks suppressed
[  174.857844][T10176] openvswitch: netlink: Message has 16 unknown bytes.
[  175.838064][T10214] netlink: 'syz.0.1865': attribute type 13 has an invalid length.
[  175.840832][T10214] netlink: 'syz.0.1865': attribute type 17 has an invalid length.
[  175.860479][T10216] __nla_validate_parse: 1 callbacks suppressed
[  175.860489][T10216] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1866'.
[  175.870821][T10216] C: entered allmulticast mode
[  175.872895][T10216] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check.
[  175.928773][T10221] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1868'.
[  175.998205][T10228] IPv6: NLM_F_CREATE should be specified when creating new route
[  176.243860][T10247] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.1881'.
[  176.248084][T10246] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.1881'.
[  176.252729][T10247] netlink: 4083 bytes leftover after parsing attributes in process `syz.1.1881'.
[  176.408724][T10262] netlink: 'syz.1.1888': attribute type 3 has an invalid length.
[  176.412110][T10262] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1888'.
[  176.475059][T10267] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1890'.
[  176.627770][T10274] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1892'.
[  176.632297][T10274] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1892'.
[  176.648942][T10274] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1892'.
[  177.099539][T10284] netdevsim netdevsim2: Direct firmware load for  failed with error -2
[  177.103580][T10284] netdevsim netdevsim2: Falling back to sysfs fallback for: 
[  177.507531][T10291] syzkaller0: tun_chr_ioctl cmd 1074025677
[  177.509713][T10291] syzkaller0: linktype set to 801
[  178.041141][T10304] netlink: 'syz.0.1906': attribute type 16 has an invalid length.
[  178.061174][T10304] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.108489][T10311] hsr_slave_0: left promiscuous mode
[  178.111459][T10311] hsr_slave_1: left promiscuous mode
[  178.637015][T10335] mac80211_hwsim hwsim7 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  178.696637][T10345] : entered promiscuous mode
[  179.098225][T10377] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  180.044979][T10409] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  180.821196][   T27] wlan1: Trigger new scan to find an IBSS to join
[  181.129102][T10496] netlink: 'syz.1.1990': attribute type 1 has an invalid length.
[  181.275745][T10506] netlink: 'syz.0.1988': attribute type 40 has an invalid length.
[  181.341160][T10506] bridge0: port 2(bridge_slave_1) entered disabled state
[  181.761885][T10521] __nla_validate_parse: 13 callbacks suppressed
[  181.761900][T10521] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2001'.
[  181.769520][T10521] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2001'.
[  181.773458][T10521] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2001'.
[  181.793416][T10523] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  181.947461][T10537] netlink: 'syz.2.2009': attribute type 1 has an invalid length.
[  182.038462][T10545] netlink: 'syz.1.2012': attribute type 2 has an invalid length.
[  182.041520][T10545] netlink: 'syz.1.2012': attribute type 8 has an invalid length.
[  182.057938][T10545] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2012'.
[  182.122335][T10553] netlink: 64535 bytes leftover after parsing attributes in process `syz.1.2017'.
[  182.264608][T10567] netlink: 'syz.1.2024': attribute type 13 has an invalid length.
[  182.307361][T10572] netlink: 'syz.0.2026': attribute type 21 has an invalid length.
[  182.876799][T10624] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2050'.
[  182.881082][T10624] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2050'.
[  183.024082][T10635] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.2055'.
[  183.028267][T10635] netlink: 4268 bytes leftover after parsing attributes in process `syz.2.2055'.
[  183.460963][T10663] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2066'.
[  183.589782][T10675] netlink: 'syz.2.2072': attribute type 10 has an invalid length.
[  183.593621][T10675] dummy0: entered promiscuous mode
[  183.602604][T10675] bridge0: port 3(dummy0) entered blocking state
[  183.605907][T10675] bridge0: port 3(dummy0) entered disabled state
[  183.608928][T10675] dummy0: entered allmulticast mode
[  183.613317][T10675] bridge0: port 3(dummy0) entered blocking state
[  183.616314][T10675] bridge0: port 3(dummy0) entered forwarding state
[  184.023293][T10694] netlink: 'syz.0.2080': attribute type 13 has an invalid length.
[  184.793724][T10742] netlink: 'syz.0.2102': attribute type 29 has an invalid length.
[  185.856728][   T82] wlan1: Trigger new scan to find an IBSS to join
[  186.036048][T10692] Bluetooth: hci1: unexpected event for opcode 0x0000
[  186.086499][T10692] Bluetooth: hci2: command 0x0406 tx timeout
[  187.133982][ T1061] wlan1: Creating new IBSS network, BSSID 9e:6c:4a:a3:bf:17
[  187.212922][T10831] __nla_validate_parse: 8 callbacks suppressed
[  187.213153][T10831] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2134'.
[  187.761704][T10864] validate_nla: 4 callbacks suppressed
[  187.761722][T10864] netlink: 'syz.2.2146': attribute type 3 has an invalid length.
[  187.768749][T10864] netlink: 16066 bytes leftover after parsing attributes in process `syz.2.2146'.
[  187.912852][T10868] netlink: 1041 bytes leftover after parsing attributes in process `syz.1.2151'.
[  187.921654][T10868] netlink: get zone limit has 8 unknown bytes
[  188.061054][T10866] netlink: 824 bytes leftover after parsing attributes in process `syz.0.2150'.
[  188.713861][T10909] netlink: 'syz.0.2170': attribute type 10 has an invalid length.
[  188.759072][T10916] netlink: 2451 bytes leftover after parsing attributes in process `syz.2.2173'.
[  188.832561][T10922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2176'.
[  189.088821][T10930] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2178'.
[  189.184286][T10929] ksmbd: Daemon and kernel module version mismatch. ksmbd: 36, kernel module: 1. User-space ksmbd should terminate.
[  189.223600][T10932] netlink: 6955 bytes leftover after parsing attributes in process `syz.1.2179'.
[  189.235592][T10932] netlink: 127868 bytes leftover after parsing attributes in process `syz.1.2179'.
[  189.344501][T10941] ==================================================================
[  189.347994][T10941] BUG: KASAN: slab-use-after-free in xfrm_alloc_spi+0x570/0xf30
[  189.351271][T10941] Read of size 4 at addr ffff88810a04a044 by task syz.1.2183/10941
[  189.355585][T10941] 
[  189.356650][T10941] CPU: 1 UID: 0 PID: 10941 Comm: syz.1.2183 Not tainted syzkaller #0 PREEMPT(full) 
[  189.356666][T10941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  189.356675][T10941] Call Trace:
[  189.356681][T10941]  <TASK>
[  189.356687][T10941]  dump_stack_lvl+0x189/0x250
[  189.356708][T10941]  ? __kasan_check_byte+0x12/0x40
[  189.356730][T10941]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.356744][T10941]  ? lock_release+0x4b/0x3e0
[  189.356767][T10941]  ? __virt_addr_valid+0x4a5/0x5c0
[  189.356784][T10941]  print_report+0xca/0x240
[  189.356796][T10941]  ? xfrm_alloc_spi+0x570/0xf30
[  189.356809][T10941]  kasan_report+0x118/0x150
[  189.356825][T10941]  ? xfrm_alloc_spi+0x570/0xf30
[  189.356840][T10941]  xfrm_alloc_spi+0x570/0xf30
[  189.356854][T10941]  ? xfrm_alloc_spi+0x2a0/0xf30
[  189.356867][T10941]  ? __local_bh_enable_ip+0x62/0x1c0
[  189.356883][T10941]  ? __pfx_xfrm_alloc_spi+0x10/0x10
[  189.356897][T10941]  ? xfrm_find_acq+0x87/0xa0
[  189.356913][T10941]  pfkey_getspi+0x7a8/0xee0
[  189.356939][T10941]  pfkey_sendmsg+0xbfe/0x1090
[  189.356955][T10941]  ? trace_sched_exit_tp+0x36/0x110
[  189.356977][T10941]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  189.357004][T10941]  ? aa_sock_msg_perm+0xf1/0x1d0
[  189.357022][T10941]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  189.357036][T10941]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  189.357053][T10941]  __sock_sendmsg+0x21c/0x270
[  189.357069][T10941]  ____sys_sendmsg+0x505/0x830
[  189.357083][T10941]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.357099][T10941]  ? import_iovec+0x74/0xa0
[  189.357114][T10941]  ___sys_sendmsg+0x21f/0x2a0
[  189.357127][T10941]  ? __pfx____sys_sendmsg+0x10/0x10
[  189.357181][T10941]  ? __fget_files+0x2a/0x420
[  189.357195][T10941]  ? __fget_files+0x3a0/0x420
[  189.357211][T10941]  __x64_sys_sendmsg+0x19b/0x260
[  189.357224][T10941]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  189.357245][T10941]  ? do_syscall_64+0xbe/0x3b0
[  189.357266][T10941]  do_syscall_64+0xfa/0x3b0
[  189.357283][T10941]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.357300][T10941]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.357312][T10941]  ? exc_page_fault+0x9f/0xf0
[  189.357325][T10941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.357337][T10941] RIP: 0033:0x7f493f98ebe9
[  189.357348][T10941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.357357][T10941] RSP: 002b:00007f49407ab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.357367][T10941] RAX: ffffffffffffffda RBX: 00007f493fbb5fa0 RCX: 00007f493f98ebe9
[  189.357376][T10941] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  189.357383][T10941] RBP: 00007f493fa11e19 R08: 0000000000000000 R09: 0000000000000000
[  189.357399][T10941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  189.357406][T10941] R13: 00007f493fbb6038 R14: 00007f493fbb5fa0 R15: 00007fffa3bf3a88
[  189.357422][T10941]  </TASK>
[  189.357427][T10941] 
[  189.479613][T10941] Allocated by task 9238:
[  189.481491][T10941]  kasan_save_track+0x3e/0x80
[  189.483506][T10941]  __kasan_slab_alloc+0x6c/0x80
[  189.485512][T10941]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  189.487807][T10941]  xfrm_state_alloc+0x24/0x2f0
[  189.489900][T10941]  __find_acq_core+0x8a7/0x1c00
[  189.492015][T10941]  xfrm_find_acq+0x78/0xa0
[  189.493907][T10941]  xfrm_alloc_userspi+0x6b3/0xc90
[  189.496014][T10941]  xfrm_user_rcv_msg+0x7a3/0xab0
[  189.497682][T10941]  netlink_rcv_skb+0x208/0x470
[  189.499261][T10941]  xfrm_netlink_rcv+0x79/0x90
[  189.500894][T10941]  netlink_unicast+0x82f/0x9e0
[  189.502575][T10941]  netlink_sendmsg+0x805/0xb30
[  189.504230][T10941]  __sock_sendmsg+0x21c/0x270
[  189.505874][T10941]  ____sys_sendmsg+0x505/0x830
[  189.507513][T10941]  ___sys_sendmsg+0x21f/0x2a0
[  189.509122][T10941]  __x64_sys_sendmsg+0x19b/0x260
[  189.510862][T10941]  do_syscall_64+0xfa/0x3b0
[  189.512428][T10941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.514455][T10941] 
[  189.515327][T10941] Freed by task 51:
[  189.516636][T10941]  kasan_save_track+0x3e/0x80
[  189.518276][T10941]  kasan_save_free_info+0x46/0x50
[  189.519981][T10941]  __kasan_slab_free+0x5b/0x80
[  189.521729][T10941]  kmem_cache_free+0x18f/0x400
[  189.523363][T10941]  xfrm_state_gc_task+0x52d/0x6b0
[  189.525091][T10941]  process_scheduled_works+0xae1/0x17b0
[  189.526977][T10941]  worker_thread+0x8a0/0xda0
[  189.528577][T10941]  kthread+0x711/0x8a0
[  189.529972][T10941]  ret_from_fork+0x3fc/0x770
[  189.531598][T10941]  ret_from_fork_asm+0x1a/0x30
[  189.533271][T10941] 
[  189.534071][T10941] The buggy address belongs to the object at ffff88810a049f80
[  189.534071][T10941]  which belongs to the cache xfrm_state of size 928
[  189.539232][T10941] The buggy address is located 196 bytes inside of
[  189.539232][T10941]  freed 928-byte region [ffff88810a049f80, ffff88810a04a320)
[  189.544321][T10941] 
[  189.545252][T10941] The buggy address belongs to the physical page:
[  189.547650][T10941] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88810a049b00 pfn:0x10a048
[  189.551430][T10941] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  189.554429][T10941] flags: 0x57ff00000000040(head|node=1|zone=2|lastcpupid=0x7ff)
[  189.557266][T10941] page_type: f5(slab)
[  189.558787][T10941] raw: 057ff00000000040 ffff888104e6db40 dead000000000122 0000000000000000
[  189.562031][T10941] raw: ffff88810a049b00 00000000800e0007 00000000f5000000 0000000000000000
[  189.565243][T10941] head: 057ff00000000040 ffff888104e6db40 dead000000000122 0000000000000000
[  189.568428][T10941] head: ffff88810a049b00 00000000800e0007 00000000f5000000 0000000000000000
[  189.571634][T10941] head: 057ff00000000002 ffffea0004281201 00000000ffffffff 00000000ffffffff
[  189.574796][T10941] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  189.578001][T10941] page dumped because: kasan: bad access detected
[  189.580398][T10941] page_owner tracks the page as allocated
[  189.582538][T10941] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5916, tgid 5915 (syz.2.5), ts 64093220255, free_ts 64073818598
[  189.589259][T10941]  post_alloc_hook+0x240/0x2a0
[  189.591064][T10941]  get_page_from_freelist+0x21e4/0x22c0
[  189.593158][T10941]  __alloc_frozen_pages_noprof+0x181/0x370
[  189.595344][T10941]  alloc_pages_mpol+0x232/0x4a0
[  189.597155][T10941]  allocate_slab+0x8a/0x370
[  189.598773][T10941]  ___slab_alloc+0xbeb/0x1410
[  189.600547][T10941]  kmem_cache_alloc_noprof+0x283/0x3c0
[  189.602551][T10941]  xfrm_state_alloc+0x24/0x2f0
[  189.604289][T10941]  __find_acq_core+0x8a7/0x1c00
[  189.606125][T10941]  xfrm_find_acq+0x78/0xa0
[  189.607823][T10941]  xfrm_alloc_userspi+0x6b3/0xc90
[  189.609731][T10941]  xfrm_user_rcv_msg+0x7a3/0xab0
[  189.611601][T10941]  netlink_rcv_skb+0x208/0x470
[  189.613415][T10941]  xfrm_netlink_rcv+0x79/0x90
[  189.615199][T10941]  netlink_unicast+0x82f/0x9e0
[  189.616997][T10941]  netlink_sendmsg+0x805/0xb30
[  189.618806][T10941] page last free pid 5850 tgid 5850 stack trace:
[  189.621180][T10941]  __free_frozen_pages+0xbc4/0xd30
[  189.623123][T10941]  __put_partials+0x156/0x1a0
[  189.624915][T10941]  put_cpu_partial+0x17c/0x250
[  189.626727][T10941]  __slab_free+0x2d5/0x3c0
[  189.628421][T10941]  qlist_free_all+0x97/0x140
[  189.630163][T10941]  kasan_quarantine_reduce+0x148/0x160
[  189.632215][T10941]  __kasan_slab_alloc+0x22/0x80
[  189.634045][T10941]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  189.636100][T10941]  getname_flags+0xb8/0x540
[  189.637795][T10941]  do_sys_openat2+0xbc/0x1c0
[  189.639508][T10941]  __x64_sys_openat+0x138/0x170
[  189.641353][T10941]  do_syscall_64+0xfa/0x3b0
[  189.643069][T10941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.645290][T10941] 
[  189.646217][T10941] Memory state around the buggy address:
[  189.648329][T10941]  ffff88810a049f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  189.651312][T10941]  ffff88810a049f80: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  189.654323][T10941] >ffff88810a04a000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  189.657311][T10941]                                            ^
[  189.659606][T10941]  ffff88810a04a080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  189.662543][T10941]  ffff88810a04a100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  189.665542][T10941] ==================================================================
[  189.668873][T10941] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  189.671346][T10941] CPU: 1 UID: 0 PID: 10941 Comm: syz.1.2183 Not tainted syzkaller #0 PREEMPT(full) 
[  189.674367][T10941] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[  189.677622][T10941] Call Trace:
[  189.678692][T10941]  <TASK>
[  189.679722][T10941]  dump_stack_lvl+0x99/0x250
[  189.681394][T10941]  ? __asan_memcpy+0x40/0x70
[  189.683213][T10941]  ? __pfx_dump_stack_lvl+0x10/0x10
[  189.684962][T10941]  ? __pfx__printk+0x10/0x10
[  189.686539][T10941]  vpanic+0x281/0x750
[  189.687865][T10941]  ? __pfx_vpanic+0x10/0x10
[  189.689365][T10941]  ? irqentry_exit+0x74/0x90
[  189.690911][T10941]  panic+0xb9/0xc0
[  189.692188][T10941]  ? __pfx_panic+0x10/0x10
[  189.693713][T10941]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  189.695680][T10941]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  189.697642][T10941]  ? xfrm_alloc_spi+0x570/0xf30
[  189.699283][T10941]  check_panic_on_warn+0x89/0xb0
[  189.700932][T10941]  ? xfrm_alloc_spi+0x570/0xf30
[  189.702623][T10941]  end_report+0x78/0x160
[  189.703987][T10941]  kasan_report+0x129/0x150
[  189.705572][T10941]  ? xfrm_alloc_spi+0x570/0xf30
[  189.707192][T10941]  xfrm_alloc_spi+0x570/0xf30
[  189.708805][T10941]  ? xfrm_alloc_spi+0x2a0/0xf30
[  189.710664][T10941]  ? __local_bh_enable_ip+0x62/0x1c0
[  189.712397][T10941]  ? __pfx_xfrm_alloc_spi+0x10/0x10
[  189.714119][T10941]  ? xfrm_find_acq+0x87/0xa0
[  189.715677][T10941]  pfkey_getspi+0x7a8/0xee0
[  189.717197][T10941]  pfkey_sendmsg+0xbfe/0x1090
[  189.718755][T10941]  ? trace_sched_exit_tp+0x36/0x110
[  189.720472][T10941]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  189.722195][T10941]  ? aa_sock_msg_perm+0xf1/0x1d0
[  189.723827][T10941]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  189.725575][T10941]  ? __pfx_pfkey_sendmsg+0x10/0x10
[  189.727238][T10941]  __sock_sendmsg+0x21c/0x270
[  189.728814][T10941]  ____sys_sendmsg+0x505/0x830
[  189.730788][T10941]  ? __pfx_____sys_sendmsg+0x10/0x10
[  189.732974][T10941]  ? import_iovec+0x74/0xa0
[  189.734868][T10941]  ___sys_sendmsg+0x21f/0x2a0
[  189.736808][T10941]  ? __pfx____sys_sendmsg+0x10/0x10
[  189.738971][T10941]  ? __fget_files+0x2a/0x420
[  189.740881][T10941]  ? __fget_files+0x3a0/0x420
[  189.742754][T10941]  __x64_sys_sendmsg+0x19b/0x260
[  189.744473][T10941]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  189.746209][T10941]  ? do_syscall_64+0xbe/0x3b0
[  189.747772][T10941]  do_syscall_64+0xfa/0x3b0
[  189.749286][T10941]  ? lockdep_hardirqs_on+0x9c/0x150
[  189.751004][T10941]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.753014][T10941]  ? exc_page_fault+0x9f/0xf0
[  189.754594][T10941]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  189.756556][T10941] RIP: 0033:0x7f493f98ebe9
[  189.758022][T10941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  189.764703][T10941] RSP: 002b:00007f49407ab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  189.767796][T10941] RAX: ffffffffffffffda RBX: 00007f493fbb5fa0 RCX: 00007f493f98ebe9
[  189.771025][T10941] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003
[  189.774276][T10941] RBP: 00007f493fa11e19 R08: 0000000000000000 R09: 0000000000000000
[  189.777528][T10941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  189.780347][T10941] R13: 00007f493fbb6038 R14: 00007f493fbb5fa0 R15: 00007fffa3bf3a88
[  189.782966][T10941]  </TASK>
[  189.784640][T10941] Kernel Offset: disabled
[  189.786079][T10941] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:57:01  Registers:
info registers vcpu 0

CPU#0
RAX=4f0f03bda4dd2900 RBX=ffffffff819683a8 RCX=4f0f03bda4dd2900 RDX=0000000000000001
RSI=ffffffff8d9b6a0a RDI=ffffffff8be33300 RBP=ffffffff8de07eb8 RSP=ffffffff8de07d80
R8 =ffff88804b032f9b R9 =1ffff110096065f3 R10=dffffc0000000000 R11=ffffed10096065f4
R12=ffffffff8fa38030 R13=0000000000000000 R14=0000000000000000 R15=1ffffffff1bd2a20
RIP=ffffffff8b7933f3 RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880b861c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000000000 CR3=0000000027efe000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000082 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=2525252525252525 2525252525252525
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 00000000000000ff XMM05=0000000000000000 00007f05d9e12e53
XMM06=0000000000000000 00007f05d9e12e4d XMM07=0000000000000000 00007f05d9e12e61
XMM08=0000000000000000 00007f05d9e12ee7 XMM09=0000000000000000 00007f05d9e12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff33bdc60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000000feb RDI=0000000000000fec RBP=ffffffff99dee630 RSP=ffffc9000311ee50
R8 =ffff888020b68237 R9 =1ffff1100416d046 R10=dffffc0000000000 R11=ffffffff854ef960
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff99dee3a0 R15=0000000000000000
RIP=ffffffff854ef9d7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f49407ab6c0 ffffffff 00c00000
GS =0000 ffff8881a3c1c000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f49407aafc8 CR3=000000010a384000 CR4=000006f0
DR0=0000200000000300 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007f493fb87498 00007f493fb87470 XMM03=00007f493fb874a8 00007f493fb874a0
XMM04=00007f49406ed100 00007f493fb87460 XMM05=00007f493fb87478 00007f493fb874c0
XMM06=00007f493fb874b8 00007f493fb874b0 XMM07=00007f493fb874a8 00007f493fb874a0
XMM08=0000000000000000 00007f493fa12ee7 XMM09=0000000000000000 00007f493fa12fc5
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
