last executing test programs:

1m15.629707688s ago: executing program 3 (id=361):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
sendmsg$IEEE802154_LLSEC_LIST_KEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x14, r1, 0x325}, 0x14}}, 0x0) (fail_nth: 8)

1m15.504004421s ago: executing program 3 (id=362):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
r1 = gettid()
rt_sigtimedwait(&(0x7f0000000000)={[0xe, 0x1f]}, 0x0, 0x0, 0x8)
tkill(r1, 0x4)

1m15.364608886s ago: executing program 3 (id=364):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'macvlan0\x00', <r2=>0x0})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r5, 0x4068aea3, &(0x7f0000000140))
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002340), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r6, &(0x7f00000005c0)={0x15, 0x110, 0xfa00, {r7, 0x0, 0x0, 0x30, 0x0, @ib={0x1b, 0x8, 0x5, {"00000000000000000000000000000200"}, 0x1, 0x2, 0x4}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x80000001}}}, 0x118)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000040)={0x2, 0x0, [{0x400000b0, 0x0, 0x5}, {0x400000b1, 0x0, 0x5}]})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0xe315}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_ADDRESS={0xa, 0x1, @remote}]}, 0x48}}, 0x0)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

1m15.022620109s ago: executing program 3 (id=367):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$tmpfs(0x0, 0x0, 0x0, 0x1000810, 0x0)

1m15.022187177s ago: executing program 2 (id=368):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x5, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000009cd3000000000000000000850000002a00000085000000d000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0xb, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0xcc0, 0x0, &(0x7f0000000040)="f4b84de4115d64244a0e839e86dd", 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9000000}, 0x50)

1m14.943823189s ago: executing program 2 (id=369):
socket(0x2, 0x80805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000003fc0), 0x840, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
setrlimit(0x9, &(0x7f0000000040)={0x7fff, 0x37e})
bpf$MAP_LOOKUP_BATCH(0x18, 0x0, 0x0)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xa43d, 0x80, 0x2, 0x3b9}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x47f6, 0x0, 0x2, 0x0, 0x0)

1m14.943340515s ago: executing program 3 (id=370):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000000), r0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), r2)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000480)={'wpan1\x00'})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={0x14, r3, 0xc11, 0x70bd2d, 0x25df9bff}, 0x14}, 0x1, 0x0, 0x0, 0xc000}, 0x4004084)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000000c0)={'wpan1\x00', <r4=>0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
r6 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000003c0), r0)
sendmsg$IEEE802154_ASSOCIATE_RESP(r2, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)={0x30, r6, 0x8, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_HW_ADDR={0xc}, @IEEE802154_ATTR_COORD_SHORT_ADDR={0x6}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x26}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x1)
write$P9_RREADLINK(r5, &(0x7f0000000000)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0xfffffdab)
lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f0000000080)=@known='system.posix_acl_default\x00')
mount$bind(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000340), 0x8000, 0x0)
open$dir(&(0x7f0000000300)='./file0\x00', 0x4480, 0x80)
sendmsg$NL802154_CMD_SET_SHORT_ADDR(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x48, r3, 0x10, 0x70bd25, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_SHORT_ADDR={0x6, 0xa, 0xffff}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}]}, 0x48}, 0x1, 0x0, 0x0, 0xc000}, 0x40)
sendmsg$IEEE802154_LLSEC_LIST_KEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x14, r1, 0x325}, 0x14}}, 0x0)

1m14.624407301s ago: executing program 3 (id=371):
syz_open_dev$swradio(0x0, 0x0, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
sendmsg$NBD_CMD_CONNECT(r3, 0x0, 0x20000000)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="980000", @ANYRES16=r1, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000000000800010000000000340007800c00018008000100", @ANYRES32=r2], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x8886}, 0x20004880)

1m14.40998093s ago: executing program 32 (id=371):
syz_open_dev$swradio(0x0, 0x0, 0x2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
sendmsg$NBD_CMD_CONNECT(r3, 0x0, 0x20000000)
sendmsg$NBD_CMD_RECONFIGURE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="980000", @ANYRES16=r1, @ANYBLOB="2da52abd7000fbdbdf250300000008000100000000000800010000000000340007800c00018008000100", @ANYRES32=r2], 0x98}, 0x1, 0x0, 0x0, 0x4008040}, 0x4000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x8, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x844}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="14000000", @ANYRES16=r7, @ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x8886}, 0x20004880)

1m12.972541405s ago: executing program 2 (id=374):
socket(0x2, 0x80805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000003fc0), 0x840, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
setrlimit(0x9, &(0x7f0000000040)={0x7fff, 0x37e})
socket$kcm(0x2b, 0x1, 0x0)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xa43d, 0x80, 0x2, 0x3b9}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x47f6, 0x0, 0x2, 0x0, 0x0)

1m10.865138815s ago: executing program 2 (id=378):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$tmpfs(0x0, 0x0, 0x0, 0x1000810, 0x0)

1m10.773557071s ago: executing program 2 (id=379):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000000), &(0x7f0000000040)=0x4)
r1 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x120000011})

1m10.414323124s ago: executing program 2 (id=380):
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee00}}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x40f00, 0x6c}, 0x94)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc01cf509, &(0x7f0000000000)={<r2=>0xffffffffffffffff, 0x8001, 0x7, 0x8000000000000001})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x100010, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000003c0)={'wlan1\x00', {0x2, 0x0, @rand_addr=0x64010100}})
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x11}, 0x0)
sendmsg$IPSET_CMD_DEL(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000000a0601010000000d0000000000000000000000000700000014000880100007800900120073797a32000000000900020073797a32000000000800094000000000"], 0x44}}, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008060001080006040001aa"], 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x2d5, &(0x7f00000006c0)={@local, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x6, 0x6, "323dcb", 0x29f, 0x2f, 0xff, @empty, @ipv4={'\x00', '\xff\xff', @remote}, {[@hopopts={0x2f, 0x19, '\x00', [@calipso={0x7, 0x30, {0x2, 0xa, 0xc, 0x3, [0x5, 0x2, 0x8, 0x0, 0x2]}}, @generic={0xc, 0x8e, "05059adef19a35f6a7f8433f2ab68e7eabbd6200c3b92a1c4779a50ab77fee1cb13ef19704be9d8225c9f798e059df70b4320ed34df02423f3fecb2c65142f47018481e7c8eefcd50d328739928f053789ed307d4dc8a9112f49de8e58106d1ed3b0b7cbc68bcfd6f32a6301c81ec136c94ceff3c3fa4ff954c790fce061095ab9ad279e717f10150ed2d3adf042"}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, @dstopts={0x11, 0x1, '\x00', [@pad1, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @hopopts={0x32, 0x0, '\x00', [@ra={0x5, 0x2, 0x6}]}, @dstopts={0x2, 0xc, '\x00', [@enc_lim={0x4, 0x1, 0x4}, @hao={0xc9, 0x10, @private2}, @enc_lim={0x4, 0x1, 0x5}, @calipso={0x7, 0x30, {0x1, 0xa, 0x4, 0x7, [0x5, 0x9, 0x60, 0x100000000, 0x80000001]}}, @jumbo={0xc2, 0x4, 0xffffffff}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x3}, @jumbo={0xc2, 0x4, 0x1}]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x86, 0x1, [0x4], "3921f52b8e4ccc4a036eb5f224d1c36ee3562d91f12cff7eef7cd7de0f470847cfb00802a95c351f249ddc8c1582b6d551ff5004376b0c6d8526abe518210ebb048260ba8d811054273bd9f8689d6251a4322b690d19308e1de38f40160aa5b2bb5cea197497d0615ab83a5a389374dbacd56288e738c616661f40a7d9ee16459fa85a969767"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [], "9f5fdd7aeeca5e478f3e"}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0xd7, 0x200], "3ee431165b0d5cef6b92769ea8a00ec9ea221a6a8bf76e4f98d0c3732dd9d1ccdcdd1d7653740f5507266ed017ff3041c277c7dab958f211fba3acd0636ce522bed32cb19040ca95e030164d79a00be68d14bfecf0869fc56c"}, {0x8, 0x88be, 0x3, {{0x5, 0x1, 0x64, 0x2, 0x1, 0x0, 0x6, 0x7}, 0x1, {0xa}}}, {0x8, 0x22eb, 0x2, {{0x9, 0x2, 0x9, 0x0, 0x1, 0x2, 0x0, 0x9}, 0x2, {0x10ffff, 0x800, 0x0, 0x12, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x0, "da42504e"}}}}}}}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='setgroups\x00')
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r5 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
dup(r5)

1m10.285325567s ago: executing program 33 (id=380):
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee00}}, './file0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x0, 0x0, 0x0, 0xc0, 0x0, 0x0, 0x40f00, 0x6c}, 0x94)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r1, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x9, &(0x7f0000006680))
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc01cf509, &(0x7f0000000000)={<r2=>0xffffffffffffffff, 0x8001, 0x7, 0x8000000000000001})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x100010, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000003c0)={'wlan1\x00', {0x2, 0x0, @rand_addr=0x64010100}})
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x11}, 0x0)
sendmsg$IPSET_CMD_DEL(r3, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000000a0601010000000d0000000000000000000000000700000014000880100007800900120073797a32000000000900020073797a32000000000800094000000000"], 0x44}}, 0x0)
syz_emit_ethernet(0xfdef, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0008060001080006040001aa"], 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x2d5, &(0x7f00000006c0)={@local, @remote, @void, {@ipv6={0x86dd, @gre_packet={0x6, 0x6, "323dcb", 0x29f, 0x2f, 0xff, @empty, @ipv4={'\x00', '\xff\xff', @remote}, {[@hopopts={0x2f, 0x19, '\x00', [@calipso={0x7, 0x30, {0x2, 0xa, 0xc, 0x3, [0x5, 0x2, 0x8, 0x0, 0x2]}}, @generic={0xc, 0x8e, "05059adef19a35f6a7f8433f2ab68e7eabbd6200c3b92a1c4779a50ab77fee1cb13ef19704be9d8225c9f798e059df70b4320ed34df02423f3fecb2c65142f47018481e7c8eefcd50d328739928f053789ed307d4dc8a9112f49de8e58106d1ed3b0b7cbc68bcfd6f32a6301c81ec136c94ceff3c3fa4ff954c790fce061095ab9ad279e717f10150ed2d3adf042"}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}, @dstopts={0x11, 0x1, '\x00', [@pad1, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}, @hopopts={0x32, 0x0, '\x00', [@ra={0x5, 0x2, 0x6}]}, @dstopts={0x2, 0xc, '\x00', [@enc_lim={0x4, 0x1, 0x4}, @hao={0xc9, 0x10, @private2}, @enc_lim={0x4, 0x1, 0x5}, @calipso={0x7, 0x30, {0x1, 0xa, 0x4, 0x7, [0x5, 0x9, 0x60, 0x100000000, 0x80000001]}}, @jumbo={0xc2, 0x4, 0xffffffff}, @padn={0x1, 0x9, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x3}, @jumbo={0xc2, 0x4, 0x1}]}], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x86, 0x1, [0x4], "3921f52b8e4ccc4a036eb5f224d1c36ee3562d91f12cff7eef7cd7de0f470847cfb00802a95c351f249ddc8c1582b6d551ff5004376b0c6d8526abe518210ebb048260ba8d811054273bd9f8689d6251a4322b690d19308e1de38f40160aa5b2bb5cea197497d0615ab83a5a389374dbacd56288e738c616661f40a7d9ee16459fa85a969767"}, {0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [], "9f5fdd7aeeca5e478f3e"}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0xd7, 0x200], "3ee431165b0d5cef6b92769ea8a00ec9ea221a6a8bf76e4f98d0c3732dd9d1ccdcdd1d7653740f5507266ed017ff3041c277c7dab958f211fba3acd0636ce522bed32cb19040ca95e030164d79a00be68d14bfecf0869fc56c"}, {0x8, 0x88be, 0x3, {{0x5, 0x1, 0x64, 0x2, 0x1, 0x0, 0x6, 0x7}, 0x1, {0xa}}}, {0x8, 0x22eb, 0x2, {{0x9, 0x2, 0x9, 0x0, 0x1, 0x2, 0x0, 0x9}, 0x2, {0x10ffff, 0x800, 0x0, 0x12, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x0, "da42504e"}}}}}}}, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='setgroups\x00')
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
r5 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000002e40)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
dup(r5)

1m10.220536798s ago: executing program 4 (id=372):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
readv(r4, &(0x7f0000000200), 0x10000000000000d2)
keyctl$get_security(0x11, 0x0, &(0x7f0000000880)=""/4096, 0x1000)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

1m9.011554793s ago: executing program 4 (id=383):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x2c}, 0x94)
r1 = socket$inet6(0xa, 0x3, 0x3)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f00000001c0)={0x28, 0x0, 0x2710, @host}, 0x10)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x88bbcfd08703268b, @host}, 0x10)
r4 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r4, 0x65, 0x2, &(0x7f00000000c0)=0x6, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'bond_slave_1\x00', <r5=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000400)={r0, r5, 0x25, 0x0, @void}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14080, 0x10000}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r0}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000100))
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@delnexthop={0x18, 0x69, 0xb, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}}, 0x18}}, 0x4000000)
socket$xdp(0x2c, 0x3, 0x0)
socket$xdp(0x2c, 0x3, 0x0)

1m7.445973273s ago: executing program 4 (id=386):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$tmpfs(0x0, 0x0, 0x0, 0x1000810, 0x0)

1m7.353635486s ago: executing program 4 (id=387):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000380)={0xc})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r2, r2)
setpgid(0x0, r2)
sched_setaffinity(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f00, 0x12)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/dev_snmp6\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)

1m6.737775868s ago: executing program 4 (id=388):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
readv(r4, &(0x7f0000000200), 0x10000000000000d2)
keyctl$get_security(0x11, 0x0, &(0x7f0000000880)=""/4096, 0x1000)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

1m6.621374126s ago: executing program 34 (id=388):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='environ\x00')
readv(r4, &(0x7f0000000200), 0x10000000000000d2)
keyctl$get_security(0x11, 0x0, &(0x7f0000000880)=""/4096, 0x1000)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
r5 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x8000, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r5, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

23.285252625s ago: executing program 6 (id=542):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r0, &(0x7f0000000200)="18b310", 0x3)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(0xffffffffffffffff, 0x40045532, &(0x7f0000000140))
r1 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r1, 0xc0684113, &(0x7f0000000080)={0x0, 0x8, 0x7fffffff, 0x3e, 0x7, 0x0, 0x0, 0x8, 0x40000000, 0xe5, 0x4a1})

22.714092291s ago: executing program 6 (id=546):
r0 = socket(0x10, 0x800, 0x3)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
r1 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000400)='/dev/comedi1\x00', 0x4ac142, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0xfffffffe, 0xe1, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x6, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000001100)=[{{&(0x7f0000000ac0)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f0000000440), 0x0, &(0x7f0000000700)=[@cred={{0x18}}], 0x18, 0x20004810}}, {{&(0x7f0000000740)=@file={0x1, './file0/file0\x00'}, 0x6e, &(0x7f00000007c0)=[{&(0x7f0000002940)="e7c4149ad1d1a5403254e7b681fcc5598645381a5ce9c29ca1eda75e75b835613576b16c65b669bae7a4cfe1a1fb1a4770866ada236cffae7255769c1d36b55bfc5df25f07045abdafe120c76dcee50a44e577c3fb2471ca3d579596273299ac2f05b1d5e4f0c1d38480565fbf307251dd4542a7e7575a6a03d7ed8b3602f865da9c1c7e396636e5151cbb3d9ffa39a695174df7a3739bcc14d6058ff4a8f1b110a8c67a250c1fdccf21bbcfe342bf1dfcffe4e0d17ccee52fc173b365513b020533c4b4b998e2b8e00b674fdfab6bd6fee3dd267892996b3b09197888af", 0xde}], 0x1, 0x0, 0x0, 0x20006041}}, {{&(0x7f0000000900)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000a80)=[{&(0x7f0000000280)="bcb1d4e44db11555e6e5329b339b8e2d6560f4473a8aad4b0f29525247377bb9b2f8decdd316ecab1c2e3ad3dab2", 0x2e}, {&(0x7f0000000980)="5bf5204ce9d760f098fab367f9f0b3e8cd7da68e57218c063a3eb23f1258d8c8ea2edcc6544b793c618af2af37e735c33c9ba06bce0c73d0a448c8300829838122c732a2334817063a7797f04fb9ac83a96d6a78df86e969d521708fc7172f5c29b98d938174e25ae1676df1a70a3cc138de0849f45f924614a72acb9d08b756107ce6f4d6a18f5cf2b4bb703a3e9bd626527f6a326763350def79dcc45809d4eefd956341b1f7d0f6dc78873ef3b6ff323bf631cc82a3ad12592e3767db92f53af187f9f9fd", 0xc6}], 0x2, &(0x7f0000000b40)=[@cred={{0x18, 0x1, 0x2, {r3}}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0x14, 0x1, 0x1, [r1, r4]}}, @cred={{0x18, 0x1, 0x2, {r3}}}, @rights={{0x10, 0x1, 0x1, [r0]}}, @rights={{0x18, 0x1, 0x1, [r2, r2, r0]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r4, r4, 0xffffffffffffffff]}}, @rights={{0x10, 0x1, 0x1, [r1]}}], 0xc8, 0x80}}, {{&(0x7f0000000d80)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000001080), 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="180000000100000002000000970d273da28137f33596341469699b3d6c51e4b6fc792bcbe15494dfc30948447508b7801b22f92facafe7de6378", @ANYRES64=r5, @ANYRES32=0x0, @ANYRES32=r1, @ANYBLOB="0c0000000100000001000000"], 0x24, 0x40008c1}}], 0x4, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="14bd4381000043000711009ec9b8ef00"], 0x14}, 0x1, 0x0, 0x0, 0xc004}, 0x400c010)
capset(0x0, &(0x7f0000000140))
r7 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)=[{}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x44010)
sendmsg$nl_route(r0, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000500)={&(0x7f0000000480)=ANY=[@ANYBLOB="680000001500040025bd7000fedbdf25021088fe", @ANYRES32=0x0, @ANYBLOB="080008000201000008000200ac1e0001140003006e69637666300000000000000000000008000100ac14140208000800400300001400060088090000000080eb000001000300000008000200e0000001"], 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x4000080)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
dup(0xffffffffffffffff)
r8 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r8, 0xc02c564a, &(0x7f00000004c0)={0x81, 0x42474752, 0x3, @discrete={0x8, 0x5}})
r9 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$vim2m_VIDIOC_QUERYBUF(r9, 0xc044560f, &(0x7f0000000080)=@mmap={0xffffffff, 0x2, 0x4, 0x10, 0x7, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "10110401"}})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{0x0}], 0x1}, 0x4048043)
dup(0xffffffffffffffff)
ioctl$COMEDI_DEVCONFIG(r1, 0x40946400, &(0x7f00000000c0)={'comedi_bond\x00', [0x2f, 0x80, 0x10006, 0x4, 0x1, 0xcc7, 0x8, 0x17, 0xa, 0x24c, 0xfff, 0x7, 0x5, 0x5, 0x4, 0x105, 0x8, 0x2, 0x2009, 0x1, 0x89, 0x6, 0x0, 0x20001e5a, 0x1000b, 0x7, 0x9, 0x4, 0x6, 0x401, 0xfffffffd]})

21.714171756s ago: executing program 6 (id=548):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r0, r0)
setpgid(0x0, r0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r2, &(0x7f0000000040)=0x1f00, 0x12)
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r3, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r4}, './file0\x00'})

20.384257882s ago: executing program 6 (id=552):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
r2 = fsmount(r1, 0x0, 0x3)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = inotify_init1(0x80000)
inotify_add_watch(r3, &(0x7f0000000240)='.\x00', 0x60000726)
chdir(&(0x7f0000000140)='./bus\x00')
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r4 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x11, 0x4, 0x4, 0x2, 0x0, 0x1, 0x1000000}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x15, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000010000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000860000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002000000850000008220f4c626524c20", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b70400000000000085000000330000009500000000000000"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r7, 0x2000012, 0xe, 0x0, &(0x7f0000000000)="63ec90c97b265715fe27cd9359a4", 0x0, 0xe6a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xd}, 0x50)
io_setup(0x202, &(0x7f0000000200)=<r8=>0x0)
io_submit(r8, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x0, 0x1, 0x0, r4, &(0x7f0000000000), 0x4000000}])
syz_clone3(&(0x7f0000000340)={0x201800000, 0x0, 0x0, 0x0, {0x1f}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)

20.137216001s ago: executing program 6 (id=555):
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400}) (async)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r0, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="03adc019f2638219a50ffa2c05359d50558b24e6cfc200512b6ad0c0c795dc874b6400121d8ab7347b88ef998c573f4934a036d03159", @ANYRES16=r0, @ANYRES64=r0], 0x10}}, 0x4000050)

19.743793124s ago: executing program 6 (id=562):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x98, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x68, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0xc, 0x2, 0x0, 0x1, [{0x4}, {0x4}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xe, [0x1, 0x1, 0x9, 0x5, 0xc, 0x6, 0x9, 0x10, 0x9, 0x0, 0x0, 0x10, 0x10, 0x0, 0x0, 0x7], 0x0, [0x6, 0x0, 0x1, 0x200, 0x2, 0xff80, 0x4, 0x10, 0x4, 0x13, 0x2, 0xf98f, 0x8000, 0xffe8, 0x5, 0xe], [0x3ff, 0x86fc, 0x0, 0x3, 0xb00, 0xd8, 0x401, 0x17e0, 0x90, 0x2, 0x8001, 0x2, 0x40, 0x0, 0x8, 0x7]}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x20000000)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x1f, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)

19.678727775s ago: executing program 35 (id=562):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=@newqdisc={0x98, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x5}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x68, 0x2, [@TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0xc, 0x2, 0x0, 0x1, [{0x4}, {0x4}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0xe, [0x1, 0x1, 0x9, 0x5, 0xc, 0x6, 0x9, 0x10, 0x9, 0x0, 0x0, 0x10, 0x10, 0x0, 0x0, 0x7], 0x0, [0x6, 0x0, 0x1, 0x200, 0x2, 0xff80, 0x4, 0x10, 0x4, 0x13, 0x2, 0xf98f, 0x8000, 0xffe8, 0x5, 0xe], [0x3ff, 0x86fc, 0x0, 0x3, 0xb00, 0xd8, 0x401, 0x17e0, 0x90, 0x2, 0x8001, 0x2, 0x40, 0x0, 0x8, 0x7]}}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r1, 0x0, 0x20000000)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket(0x1f, 0x5, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)

7.922520046s ago: executing program 0 (id=620):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000380)={0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r2, r2)
setpgid(0x0, r2)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f00, 0x12)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})

6.03383094s ago: executing program 5 (id=630):
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
socket$packet(0x11, 0x2, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r2, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0) (fail_nth: 1)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x4, 0x200000005c831, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, 0x0)

5.693872253s ago: executing program 5 (id=631):
socket(0x2, 0x80805, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
openat$mixer(0xffffffffffffff9c, &(0x7f0000003fc0), 0x840, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
close(0x3)
setrlimit(0x9, &(0x7f0000000040)={0x7fff, 0x37e})
r3 = socket$kcm(0x2b, 0x1, 0x0)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xa43d, 0x80, 0x2, 0x3b9}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000000c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0x47f6, 0x0, 0x2, 0x0, 0x0)
shutdown(r3, 0x1)

5.541496844s ago: executing program 0 (id=632):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x3, 0x4, &(0x7f00000008c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x80}, [@call={0x85, 0x0, 0x0, 0x18}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20}, 0x94)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@newtfilter={0x38, 0x2c, 0xd23, 0x70bd22, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x2400}, {0xf000}, {0x8, 0x4}}, [@filter_kind_options=@f_bpf={{0x8}, {0xc, 0x2, [@TCA_BPF_FD={0x8, 0x6, r1}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4084}, 0x8000)

3.992587194s ago: executing program 5 (id=633):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

3.913502144s ago: executing program 7 (id=635):
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x1)
ioctl$KVM_SET_MEMORY_ATTRIBUTES(r1, 0x4020aed2, 0x0)

3.146840581s ago: executing program 7 (id=636):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000380)={0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r2, r2)
setpgid(0x0, r2)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f00, 0x12)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})

3.096396682s ago: executing program 0 (id=637):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb47, 0x9, 0x8, 0x80000001, 0x3}, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = syz_open_dev$vim2m(0x0, 0xa, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FRAMESIZES(r2, 0xc02c564a, &(0x7f0000000140)={0x0, 0x34324142, 0x2, @discrete={0x1, 0x401}})
r3 = memfd_create(0x0, 0x2)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r3, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r4, 0x0, 0x0)
r5 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r5, &(0x7f0000000040)={0x24, @long={0x3, 0x1, {0xaaaaaaaaaaaa0102}}}, 0x14)
connect$802154_dgram(r5, &(0x7f0000000240)={0x24, @short={0x2, 0x1, 0xffff}}, 0x14)
sendmmsg(r5, &(0x7f00000196c0)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f00}}, {{0x0, 0xd, 0x0, 0x0, 0x0, 0x7f00}}], 0x4000050, 0x400c010)

3.091090751s ago: executing program 5 (id=638):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000040)={0x0, 0x4000000, 0x8, 0xd, 0x200, &(0x7f0000001500)="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"})

2.255436584s ago: executing program 5 (id=639):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000380)={0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r2, r2)
setpgid(0x0, r2)
sched_setaffinity(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f00, 0x12)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})

2.151683003s ago: executing program 0 (id=640):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c3c00000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18)
r1 = gettid()
rt_sigtimedwait(&(0x7f0000000000)={[0xe, 0x1f00]}, 0x0, 0x0, 0x8)
tkill(r1, 0x4)

1.973977787s ago: executing program 0 (id=641):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000020000000900010073797a300000000040000000030a09020000000000000000020000000900010073797a30000000000900030073797a3200000000140004800800014000000000080002400000000014000000110001"], 0x88}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWRULE={0x98, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x6c, 0x4, 0x0, 0x1, [{0x68, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x58, 0x2, 0x0, 0x1, [@NFTA_TARGET_INFO={0x40, 0x3, "9b6a37b458a8056dd9a87f963d140d7a9d3ac869f3a860917523679abf4579f9cd656422a633a39f0300000000000000000000000100000000000000"}, @NFTA_TARGET_NAME={0xa, 0x1, 'HMARK\x00'}, @NFTA_TARGET_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xc0}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
syz_emit_ethernet(0x3e, &(0x7f00000005c0)={@local, @random="2c09000000f8", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x3, 0x7, 0x30, 0x67, 0x0, 0x9, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x21}, @remote}, @redirect={0x5, 0x1, 0x0, @private=0xa010101, {0x5, 0x4, 0x3, 0x2a, 0xc7e, 0x64, 0xdd, 0x2, 0x21, 0x5, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x1, 0x0}}}}}}}, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_setup(0x8, &(0x7f0000000100)=<r3=>0x0)
r4 = timerfd_create(0x0, 0x0)
io_submit(r3, 0x3, &(0x7f0000000280)=[&(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x5409, r4, &(0x7f00000002c0)="77a380a583c0d5f0", 0x8, 0x9, 0x0, 0x2}, 0x0, 0x0])
write(r0, &(0x7f0000000040)="05000000010000", 0x7)

1.863135925s ago: executing program 1 (id=642):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

1.663891733s ago: executing program 0 (id=643):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0x40)
openat$uinput(0xffffff9c, &(0x7f0000000180), 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(0xffffffffffffffff, 0xc020662a, 0x0)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
r1 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000003c0), 0x80002, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000380)={0xc})
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc22, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r2, r2)
setpgid(0x0, r2)
sched_setaffinity(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0x1f00, 0x12)
r5 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x40100, 0x0)
r6 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, r6}, './file0\x00'})
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/dev_snmp6\x00')
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)

1.358878699s ago: executing program 1 (id=644):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r0, 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, &(0x7f0000000080)={0x0, 0x8, 0x7fffffff, 0x3e, 0x7, 0x0, 0x0, 0x8, 0x40000000, 0xe5, 0x4a1})

1.323689785s ago: executing program 7 (id=645):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2, 0x9, 0x0, 0xa4}, 0x20)

1.241990015s ago: executing program 7 (id=646):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$tmpfs(0x0, &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1000810, 0x0) (fail_nth: 1)

1.241271694s ago: executing program 1 (id=647):
r0 = socket$inet(0x2, 0x1, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x0, 0xd}, 0x18)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x800, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
socket$vsock_stream(0x28, 0x1, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8b19, &(0x7f0000000040)={'wlan1\x00', @random="01025673f188"})
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4040aea0, 0x0)
futex(0x0, 0x80, 0x1, 0x0, 0x0, 0x1)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000006}, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
keyctl$get_security(0x11, 0x0, &(0x7f0000000880)=""/4096, 0x1000)
setsockopt$sock_int(0xffffffffffffffff, 0x28, 0x7, 0x0, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000140)={0x36, 0x2, 0x0, "d569e8000000fa44966262631e8ac11e00"})
shutdown(r0, 0x0)
recvmmsg(r0, &(0x7f00000066c0), 0xa0d, 0xfe, 0x0)

1.062666553s ago: executing program 7 (id=648):
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f00000001c0))
r0 = fanotify_init(0x200, 0x0)
writev(r0, &(0x7f00000005c0)=[{&(0x7f00000001c0)="84", 0x8}, {0x0}], 0x2)
r1 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@dev, 0x800, 0x0, 0x2, 0x9}, 0x20)

673.899961ms ago: executing program 7 (id=649):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x8, 0x101, 0x0, 0x0, {0x7}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x9}]}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x18b}, @CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0x10000}, @CTA_TIMEOUT_DCCP_CLOSEREQ={0x8, 0x5, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_DCCP_CLOSING={0x8, 0x6, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x400c880)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x109a42, 0x0)
prctl$PR_SET_MM(0x23, 0xe, &(0x7f0000ffb000/0x4000)=nil)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000040)=r1)
writev(r2, &(0x7f0000000500)=[{&(0x7f0000000240)="6f1370778bd6098553d3ec8b6fb427a47d48", 0x12}], 0x1)

598.294139ms ago: executing program 36 (id=649):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000000c0)={{0xeb9f, 0x1, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x28)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x54, 0x0, 0x8, 0x101, 0x0, 0x0, {0x7}, [@CTA_TIMEOUT_DATA={0x14, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_UNREPLIED={0x8, 0x1, 0x1, 0x0, 0x3}, @CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x9}]}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_REQUEST={0x8, 0x1, 0x1, 0x0, 0x18b}, @CTA_TIMEOUT_DCCP_TIMEWAIT={0x8, 0x7, 0x1, 0x0, 0x10000}, @CTA_TIMEOUT_DCCP_CLOSEREQ={0x8, 0x5, 0x1, 0x0, 0x2}, @CTA_TIMEOUT_DCCP_CLOSING={0x8, 0x6, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x800}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x400c880)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x109a42, 0x0)
prctl$PR_SET_MM(0x23, 0xe, &(0x7f0000ffb000/0x4000)=nil)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r3, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
ioctl$TUNSETSTEERINGEBPF(r2, 0x800454e0, &(0x7f0000000040)=r1)
writev(r2, &(0x7f0000000500)=[{&(0x7f0000000240)="6f1370778bd6098553d3ec8b6fb427a47d48", 0x12}], 0x1)

588.306336ms ago: executing program 1 (id=651):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) (async)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000006c0)=ANY=[], 0x0) (async)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="00a6d518c800"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES8=0x0], 0x48) (async, rerun: 64)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) (async, rerun: 64)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000000000000010000008500000053000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b0000029500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0xfffffffffffffefd}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xaa, &(0x7f0000000140)=""/170, 0x41000, 0x4b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 32)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f00000000c0)='%(:2', 0x0) (rerun: 32)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) (async)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) (async)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) (async, rerun: 32)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) (async, rerun: 32)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3c, 0x0, 0x0) (async, rerun: 32)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0) (rerun: 32)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_procfs(0x0, &(0x7f0000000240)='fd/3\x00') (async, rerun: 64)
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) (async, rerun: 64)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000500)=ANY=[]) (async)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0) (async, rerun: 64)
madvise(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0xd) (async, rerun: 64)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000047000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a876d839240d29c035055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7e8dc34f17e3946ef3bb622e03b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bb44b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334583239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd713089856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bf4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff22dc508afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd360000000000000000ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae526aca54183fb01c73f979ca9857399537f5831808b0dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c97a088a22e8b15c3e233db00002e30d46a0024d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e4845535a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c29c5c0ed5bcdf510c3c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9003f07000099d4894ee7f8249dc1e3428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ced92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f68fa8d7c2dfb28e1f05e46b0933c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d588afd80e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda6900002a070886df42b27098773b45198b4a34ac97febd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d63521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a8639034a75f4c7df3ea8fc2018d07afef12ef060cd4403a099f32468f658000b4082d43e12186195cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea209b53b230ef0f2ab85cbdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bd3339403004b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab900000000000000000000d71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdbf24a0c5441ce046078492b53467cfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89cb349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce1d9bc7ef3e3f40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb15f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c00c57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137df47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b558982016b0679b5d6fccbecfae5553d9950d48c774eaa35b24fce69a20d8b49e3d0168bf7eac90529cd6af061c9e53addddc620ce73c5d177e3d097159f2768636fc10276c6a0adc57483b3f7083f66b87ef296ee85a3009a5d30f479e293a3302e11350ea857b37e76ca3f50378e4092ce2c574ad278b9b7b717c571afb2077b019fd9d89efd59b41f051ec5a8ff87ecc8df917a1e386d849fcd10e2f9ca52e02339c2f4666b0c8ffe0d508dcee3070e8b42ac38545e25f1cd62421c28d25994be0cff7271a0dee38d7ac4ac736b090e1d29f98117919472b61b20026d7e646174b55d251f7f8ca5ccc22a5efb33b217eff5597a3c3a5f3a9bb54abb40e54593e1a7ce4cfa17b3c3fe91c06363496341eae20dcc59b6179b32ddddef5c34000096a54c0c571a91878f61f74912e2299e5501d4d6943bfd74c856511726f0ac8f7d17f1c6b4451c1bcdc6b6e1700e4cd87709d97afc5423c96fa981873d4369b04bbf1fb9f68f17991540868e408201ad1a74179e489aa61f021a437a3fa935588be2068f7ff9b253106326fde795e530b93626cc68e06e602198724249b4444e69902e4d8f5da4e94cc36794258fd4032de7ab36bc24000000000000000000000000000000000000cd3211b3842b68a4eddca2eae28529e97a98d7ec3fd902df1ba8fc2ad2377e72d4e7aeacbbccef5614cd965511558f40720025c022bc9c213e407f6bc4b673c55aa8e729299a37fd6339acd906ac861ba56c9fa9b8b12b5e68a3cdadb906355e1f1d336a243172affe50d0fb36c3718a7498eed3d398f405a34d494414e87ef1ce1845510d43d00171d6b4b762f89564c22d542a119878709cd6822c3a3eb47a849b0737929fe9e1eecd1bff5a2b9880e2a6d8a3b3b7e88a673c96cda4455eff1c530db0e6598a2686aa09aeaf0f1aed95aeb8b0a2cc5ca31c0f56285cc05f7090a0e0583cf540d18cd8817e685c7b4ff176178ac1234f23e54445ec20b2689832d78409897a0307e89ebcd5f4ba042a3d10237a5a8a9a6eda36d2f337dc54537b80e8433341b135b4c5bb0173ffde46ccd260e1d4f2c51e8b07bb256f1317912cb1fc9e491e0bb9109e475cc795c23ad9f4f0042c5e9c655a4d865bc4a266e6a1d3d2b7ee53be9efb33a98933b5ba74ee3ac8d34b6af8c1fdbffade3abc80842b74354162f5b994ab5254cb068bc5e2ae242a1d37d0d49947c9317fa1a46c9e259ce0e1f9db992c53f7830a5e8f4fac6b187eb9f15ba61f730f86d7d7b63bbc7a1d9ff37e87a90a14e0655304da069f9009b62717649b6c6af94fcba713f8ee6fcce25aef44d009966614b61be9369ffc589a79051b0a0000000000000003ebd34c41afe268c33c9322c3a783772aec998f51a6e70fb932a8019e72ef5ab127bb30c79ebfd867441083546305fb39449c40a166ea389a6b77b7c87f66e8bf5806726b8fc50b943627314803a12c33312dce0a10f852da3e000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r3, 0x18000000000002a0, 0x1c, 0x0, &(0x7f0000000100)="b9ffddc1ddcccdde75537d5326a4dfff70bf2dfe443b1b5e2a9080f3", 0x0, 0x600, 0x60000009, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x2}, 0x4c) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee1, 0x8031, 0xffffffffffffffff, 0x44121000)

494.02258ms ago: executing program 1 (id=652):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
write$dsp(r0, 0x0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000140))
r2 = syz_open_dev$sndpcmp(&(0x7f00000001c0), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0684113, &(0x7f0000000080)={0x0, 0x8, 0x7fffffff, 0x3e, 0x7, 0x0, 0x0, 0x8, 0x40000000, 0xe5, 0x4a1})

493.615529ms ago: executing program 1 (id=653):
prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c)
epoll_create(0xd7)
syz_usbip_server_init(0x4)
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
prctl$PR_MPX_DISABLE_MANAGEMENT(0x2c)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000300)={0x5, 0x0, [{0x0, 0x7b, &(0x7f0000000000)=""/123}, {0x40000, 0x40, &(0x7f0000000080)=""/64}, {0xfec00000, 0x5a, &(0x7f00000000c0)=""/90}, {0x40000, 0x69, &(0x7f00000001c0)=""/105}, {0x4, 0x99, &(0x7f0000000240)=""/153}]})
syz_emit_ethernet(0xfc2, &(0x7f0000002900)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff"], 0x0)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
recvmmsg(r1, &(0x7f0000001d00)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000001d40)=""/4078, 0xfee}, {&(0x7f0000000340)=""/141, 0x8d}, {&(0x7f0000002d40)=""/4099, 0x1003}, {&(0x7f0000000f00)=""/6, 0x6}, {&(0x7f0000000440)=""/231, 0xe7}], 0x5}}], 0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/cpuinfo\x00', 0x0, 0x0)
preadv(r3, &(0x7f00000001c0)=[{&(0x7f0000000400)=""/184, 0xb8}], 0x1, 0xc6, 0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$unix(r7, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001080)=ANY=[@ANYBLOB="10c8c3eccddbb564f0fddb648821f2d51b0000000100000001000000", @ANYRES32=r6], 0x10}, 0x0)
recvmmsg$unix(r4, &(0x7f0000000f40)=[{{&(0x7f00000000c0)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000180)=""/146, 0x92}], 0x1, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @cred={{0x18}}, @rights={{0xc}}], 0xb0}}, {{&(0x7f0000000340), 0x6e, &(0x7f0000000440)=[{&(0x7f00000003c0)=""/111, 0x6f}], 0x1, &(0x7f00000011c0)=[@rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0x10, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}, @rights={{0xc}}], 0x130}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/18, 0x12}], 0x2, &(0x7f0000000700)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0xc}}, @cred={{0x18}}], 0x68}}, {{&(0x7f0000000e80), 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000800)=""/190, 0xbe}, {&(0x7f0000000780)=""/77, 0x4d}, {&(0x7f0000000900)=""/99, 0x63}, {&(0x7f0000000980)=""/207, 0xcf}, {&(0x7f0000000a80)=""/224, 0xe0}, {&(0x7f0000000b80)=""/4, 0x4}, {&(0x7f0000000bc0)=""/237, 0xed}, {&(0x7f0000000cc0)=""/60, 0x3c}, {&(0x7f0000000d00)=""/226, 0xe2}], 0x9, &(0x7f0000000fc0)=[@cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0xa4}}], 0x4, 0x2, 0x0)
dup(0xffffffffffffffff)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, 0x0)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, 0x0)

0s ago: executing program 5 (id=654):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_test', 0x141a82, 0x0)
sendfile(r1, r2, 0x0, 0x4)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
r4 = add_key$user(&(0x7f0000000100), &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)="ed", 0x1, 0xffffffffffffffff)
keyctl$set_timeout(0xf, r4, 0x1000)
read$FUSE(r3, &(0x7f0000001580)={0x2020}, 0x2020)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='mm_migrate_pages\x00', r5, 0x0, 0x5}, 0x18)
mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:36555' (ED25519) to the list of known hosts.
[   48.730758][ T5884] cgroup: Unknown subsys name 'net'
[   48.879397][ T5884] cgroup: Unknown subsys name 'cpuset'
[   48.884251][ T5884] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   49.878674][ T5884] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   53.620701][   T65] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   53.626945][   T65] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   53.633655][ T5940] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   53.636757][ T5950] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   53.639821][ T5950] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   53.642556][ T5950] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   53.643968][ T5952] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   53.646061][ T5950] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   53.647935][ T5952] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   53.651695][ T5950] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   53.652452][ T5952] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   53.656170][ T5954] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   53.656215][ T5953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   53.657039][ T5953] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   53.658508][   T65] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   53.660869][ T5953] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   53.661495][ T5954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   53.662002][ T5954] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   53.676545][ T5953] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   53.679197][ T5953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   53.979980][ T5943] chnl_net:caif_netlink_parms(): no params data found
[   54.009856][ T5942] chnl_net:caif_netlink_parms(): no params data found
[   54.030083][ T5938] chnl_net:caif_netlink_parms(): no params data found
[   54.157117][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   54.199480][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.202391][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.204921][ T5943] bridge_slave_0: entered allmulticast mode
[   54.208288][ T5943] bridge_slave_0: entered promiscuous mode
[   54.218945][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.221298][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.223726][ T5943] bridge_slave_1: entered allmulticast mode
[   54.226522][ T5943] bridge_slave_1: entered promiscuous mode
[   54.349535][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.352138][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.354793][ T5938] bridge_slave_0: entered allmulticast mode
[   54.358385][ T5938] bridge_slave_0: entered promiscuous mode
[   54.368228][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.370585][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.373014][ T5938] bridge_slave_1: entered allmulticast mode
[   54.375804][ T5938] bridge_slave_1: entered promiscuous mode
[   54.381245][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.392475][ T5942] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.395545][ T5942] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.398982][ T5942] bridge_slave_0: entered allmulticast mode
[   54.402996][ T5942] bridge_slave_0: entered promiscuous mode
[   54.407798][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   54.410851][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   54.413820][ T5944] bridge_slave_0: entered allmulticast mode
[   54.417607][ T5944] bridge_slave_0: entered promiscuous mode
[   54.422089][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.434739][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.437264][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.439664][ T5944] bridge_slave_1: entered allmulticast mode
[   54.443208][ T5944] bridge_slave_1: entered promiscuous mode
[   54.446797][ T5942] bridge0: port 2(bridge_slave_1) entered blocking state
[   54.449901][ T5942] bridge0: port 2(bridge_slave_1) entered disabled state
[   54.452980][ T5942] bridge_slave_1: entered allmulticast mode
[   54.457382][ T5942] bridge_slave_1: entered promiscuous mode
[   54.462361][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.479504][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.523904][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.556803][ T5943] team0: Port device team_slave_0 added
[   54.561997][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.567127][ T5938] team0: Port device team_slave_0 added
[   54.571748][ T5942] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   54.578116][ T5943] team0: Port device team_slave_1 added
[   54.588065][ T5938] team0: Port device team_slave_1 added
[   54.605128][ T5942] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   54.639446][ T5942] team0: Port device team_slave_0 added
[   54.648136][ T5944] team0: Port device team_slave_0 added
[   54.650580][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.653034][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.661795][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.668175][ T5942] team0: Port device team_slave_1 added
[   54.671822][ T5944] team0: Port device team_slave_1 added
[   54.674095][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.676639][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.686911][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.691236][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.693721][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.702853][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.720587][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.723060][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.732395][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.762027][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.764561][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.775481][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.781401][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_0
[   54.784330][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.795321][ T5942] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   54.809010][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.812110][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.820875][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.825020][ T5942] batman_adv: batadv0: Adding interface: batadv_slave_1
[   54.828054][ T5942] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   54.838930][ T5942] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   54.882880][ T5943] hsr_slave_0: entered promiscuous mode
[   54.886545][ T5943] hsr_slave_1: entered promiscuous mode
[   54.895990][ T5938] hsr_slave_0: entered promiscuous mode
[   54.899015][ T5938] hsr_slave_1: entered promiscuous mode
[   54.901652][ T5938] debugfs: 'hsr0' already exists in 'hsr'
[   54.903904][ T5938] Cannot create hsr debugfs directory
[   54.936055][ T5944] hsr_slave_0: entered promiscuous mode
[   54.938549][ T5944] hsr_slave_1: entered promiscuous mode
[   54.941738][ T5944] debugfs: 'hsr0' already exists in 'hsr'
[   54.944319][ T5944] Cannot create hsr debugfs directory
[   55.014087][ T5942] hsr_slave_0: entered promiscuous mode
[   55.020026][ T5942] hsr_slave_1: entered promiscuous mode
[   55.022610][ T5942] debugfs: 'hsr0' already exists in 'hsr'
[   55.024703][ T5942] Cannot create hsr debugfs directory
[   55.269326][ T5938] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   55.281248][ T5938] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   55.289906][ T5938] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   55.300697][ T5938] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   55.379292][ T5943] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   55.386570][ T5943] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   55.393867][ T5943] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   55.401821][ T5943] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   55.478790][ T5942] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   55.489545][ T5942] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   55.518643][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.522151][ T5942] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   55.531661][ T5942] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   55.590686][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   55.602528][ T5944] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   55.621447][ T5944] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   55.630110][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.632643][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.642762][ T5944] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   55.650939][ T5944] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   55.659947][ T1058] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.662867][ T1058] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.687968][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.733185][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   55.737035][ T5953] Bluetooth: hci1: command tx timeout
[   55.746701][ T5953] Bluetooth: hci0: command tx timeout
[   55.746769][ T5940] Bluetooth: hci2: command tx timeout
[   55.746807][ T5952] Bluetooth: hci3: command tx timeout
[   55.759605][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.762466][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.778450][   T91] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.781603][   T91] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.888690][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.912139][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   55.923853][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   55.932994][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   55.945445][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.948758][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.956527][   T91] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.959786][   T91] bridge0: port 1(bridge_slave_0) entered forwarding state
[   55.972619][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.975907][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   55.990146][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.993353][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   56.052971][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.067268][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.165565][ T5943] veth0_vlan: entered promiscuous mode
[   56.169872][ T5938] veth0_vlan: entered promiscuous mode
[   56.180352][ T5943] veth1_vlan: entered promiscuous mode
[   56.192406][ T5938] veth1_vlan: entered promiscuous mode
[   56.209822][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.227336][ T5943] veth0_macvtap: entered promiscuous mode
[   56.232447][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   56.239016][ T5943] veth1_macvtap: entered promiscuous mode
[   56.253993][ T5938] veth0_macvtap: entered promiscuous mode
[   56.263832][ T5938] veth1_macvtap: entered promiscuous mode
[   56.280704][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.285164][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.299770][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.307225][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.312218][ T5944] veth0_vlan: entered promiscuous mode
[   56.322984][   T93] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.328626][   T93] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.338124][   T93] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.341582][   T93] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.349889][   T93] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.353334][   T93] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.357830][ T5942] veth0_vlan: entered promiscuous mode
[   56.360793][ T5944] veth1_vlan: entered promiscuous mode
[   56.369170][   T93] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.372625][   T93] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.399244][ T5942] veth1_vlan: entered promiscuous mode
[   56.452720][ T1058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.455410][ T1058] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.459452][ T5944] veth0_macvtap: entered promiscuous mode
[   56.480282][ T5944] veth1_macvtap: entered promiscuous mode
[   56.493121][ T5942] veth0_macvtap: entered promiscuous mode
[   56.497864][ T1058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.504280][ T1058] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.512588][ T5942] veth1_macvtap: entered promiscuous mode
[   56.528844][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.532964][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.536756][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.541837][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.545264][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.545325][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.574693][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   56.578588][ T5067] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.583818][ T5067] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.589432][ T5067] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.592682][ T5067] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.602267][ T5938] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   56.605014][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   56.620437][   T93] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   56.624192][   T93] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   56.635004][   T93] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   56.640272][   T93] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   56.768761][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.771630][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.782865][ T1058] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.787294][ T1058] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.795629][ T1058] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.798422][ T1058] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.834479][   T93] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   56.848444][   T93] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   56.905039][ T6036] netlink: 48 bytes leftover after parsing attributes in process `syz.2.3'.
[   57.167677][   T40] audit: type=1326 audit(1766923045.058:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6037 comm="syz.3.4" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[   57.360230][ T6048] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[   57.363453][ T6048] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   57.368316][ T6048] vhci_hcd vhci_hcd.0: Device attached
[   57.487633][ T6048] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'.
[   57.638478][ T6034] usb 38-1: SetAddress Request (2) to port 0
[   57.641328][ T6034] usb 38-1: new SuperSpeed USB device number 2 using vhci_hcd
[   57.740559][ T6049] vhci_hcd: connection reset by peer
[   57.744678][   T12] vhci_hcd vhci_hcd.0: stop threads
[   57.746825][   T12] vhci_hcd vhci_hcd.0: release socket
[   57.756111][   T12] vhci_hcd vhci_hcd.0: disconnect device
[   57.818872][ T5940] Bluetooth: hci3: command tx timeout
[   57.818933][ T5953] Bluetooth: hci1: command tx timeout
[   57.819318][ T5952] Bluetooth: hci0: command tx timeout
[   57.819335][   T65] Bluetooth: hci2: command tx timeout
[   58.016400][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.233507][ T6059] netlink: 'syz.2.7': attribute type 5 has an invalid length.
[   58.257626][ T6054] infiniband syz1: set active
[   58.259311][ T6054] infiniband syz1: added syz_tun
[   58.447945][ T6054] RDS/IB: syz1: added
[   58.578116][ T6054] smc: adding ib device syz1 with port count 1
[   58.581382][ T6054] smc:    ib device syz1 port 1 has no pnetid
[   58.586519][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.589555][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.592590][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.595769][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.599093][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.643620][ T6065] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.705965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.724050][ T6055] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5'.
[   58.808337][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   59.660222][ T6065] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.787103][ T6065] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.878753][ T6065] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   59.896803][ T5953] Bluetooth: hci2: command tx timeout
[   59.896864][ T5940] Bluetooth: hci0: command tx timeout
[   59.906031][ T5953] Bluetooth: hci1: command tx timeout
[   59.906052][ T5953] Bluetooth: hci3: command tx timeout
[   60.047177][   T40] audit: type=1326 audit(1766923047.938:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6086 comm="syz.2.12" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[   60.066101][ T6092] batman_adv: batadv0: Adding interface: gretap1
[   60.069052][ T6092] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   60.080687][ T6092] batman_adv: batadv0: Interface activated: gretap1
[   60.129214][ T5067] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.149007][   T63] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.171719][   T63] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.203000][   T63] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.307739][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   60.326245][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   61.015437][   T40] audit: type=1326 audit(1766923048.898:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6102 comm="syz.3.16" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[   61.976394][ T5940] Bluetooth: hci1: command tx timeout
[   61.976449][ T5953] Bluetooth: hci3: command tx timeout
[   61.976480][ T5952] Bluetooth: hci0: command tx timeout
[   61.976503][ T5952] Bluetooth: hci2: command tx timeout
[   62.696242][ T6034] usb 38-1: device descriptor read/8, error -110
[   62.915194][ T6135] ALSA: mixer_oss: invalid OSS volume ''
[   62.931007][ T6134] bridge0: port 3(erspan0) entered blocking state
[   62.933331][ T6134] bridge0: port 3(erspan0) entered disabled state
[   62.936538][ T6134] erspan0: entered allmulticast mode
[   62.942978][ T6134] erspan0: entered promiscuous mode
[   62.946034][ T6134] bridge0: port 3(erspan0) entered blocking state
[   62.948385][ T6134] bridge0: port 3(erspan0) entered forwarding state
[   63.021720][ T6135] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10)
[   63.023951][ T6135] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   63.027889][ T6135] vhci_hcd vhci_hcd.0: Device attached
[   63.086478][ T6034] usb usb38-port1: attempt power cycle
[   63.315989][   T74] vhci_hcd vhci_hcd.2: vhci_device speed not set
[   63.386021][   T74] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[   63.479373][ T6138] vhci_hcd: connection reset by peer
[   63.482325][ T1141] vhci_hcd vhci_hcd.2: stop threads
[   63.484132][ T1141] vhci_hcd vhci_hcd.2: release socket
[   63.487039][ T1141] vhci_hcd vhci_hcd.2: disconnect device
[   63.647254][ T6034] usb usb38-port1: unable to enumerate USB device
[   64.246878][ T6157] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26'.
[   64.445345][   T40] audit: type=1326 audit(1766923052.328:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6154 comm="syz.1.25" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[   65.461691][ T6182] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.29'.
[   65.534834][ T6186] warning: `syz.0.30' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   66.742094][ T6208] syz.2.33 uses obsolete (PF_INET,SOCK_PACKET)
[   66.745531][ T6208] syzkaller1: entered promiscuous mode
[   66.748159][ T6208] syzkaller1: entered allmulticast mode
[   66.778170][ T6209] process 'syz.3.31' launched './file0' with NULL argv: empty string added
[   67.384195][ T6218] netlink: 12 bytes leftover after parsing attributes in process `syz.2.36'.
[   67.500946][ T6225] netlink: 'syz.2.36': attribute type 4 has an invalid length.
[   67.503516][ T6225] netlink: 152 bytes leftover after parsing attributes in process `syz.2.36'.
[   67.519066][ T6225] .`: renamed from bond0 (while UP)
[   68.536000][   T74] vhci_hcd vhci_hcd.2: vhci_device speed not set
[   68.642996][ T6242] ip6_tunnel: non-ECT from fc00:0001:0000:0000:0000:0000:0000:0000 with DS=0x5
[   70.606150][ T6270] netlink: 212368 bytes leftover after parsing attributes in process `syz.1.47'.
[   72.029272][   T40] audit: type=1326 audit(1766923059.918:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6291 comm="syz.2.50" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[   73.852915][ T6313] No control pipe specified
[   73.933038][ T6315] No control pipe specified
[   74.508472][ T6306] bridge0: port 3(erspan0) entered blocking state
[   74.511272][ T6306] bridge0: port 3(erspan0) entered disabled state
[   74.514084][ T6306] erspan0: entered allmulticast mode
[   74.531913][ T6306] erspan0: entered promiscuous mode
[   74.539233][ T6306] bridge0: port 3(erspan0) entered blocking state
[   74.541378][ T6306] bridge0: port 3(erspan0) entered forwarding state
[   74.959369][ T6327] ip6_tunnel: non-ECT from fc00:0001:0000:0000:0000:0000:0000:0000 with DS=0x5
[   75.271415][   T40] audit: type=1326 audit(1766923063.158:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6331 comm="syz.1.60" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[   76.146479][ T1413] ieee802154 phy0 wpan0: encryption failed: -22
[   76.148773][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[   77.363708][ T6353] No control pipe specified
[   77.740214][   T40] audit: type=1326 audit(1766923065.628:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6359 comm="syz.2.69" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[   78.735997][   T40] audit: type=1326 audit(1766923066.618:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6368 comm="syz.3.72" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[   80.263454][ T6381] bridge0: port 3(erspan0) entered blocking state
[   80.266312][ T6381] bridge0: port 3(erspan0) entered disabled state
[   80.269562][ T6381] erspan0: entered allmulticast mode
[   80.302695][ T6381] erspan0: entered promiscuous mode
[   80.307863][ T6381] bridge0: port 3(erspan0) entered blocking state
[   80.310052][ T6381] bridge0: port 3(erspan0) entered forwarding state
[   81.826617][ T6398] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   81.998895][ T6405] netlink: 48 bytes leftover after parsing attributes in process `syz.3.77'.
[   82.952944][ T6421] can: request_module (can-proto-0) failed.
[   84.363394][   T40] audit: type=1326 audit(1766923072.248:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6429 comm="syz.2.81" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[   85.575742][ T6455] netlink: 48 bytes leftover after parsing attributes in process `syz.2.89'.
[   86.271546][ T6466] Invalid argument reading file caps for ./file0
[   86.392336][    T9] cfg80211: failed to load regulatory.db
[   87.333901][   T40] audit: type=1326 audit(1766923075.218:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6481 comm="syz.0.97" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[   87.597478][ T6492] netlink: 'syz.3.100': attribute type 2 has an invalid length.
[   87.600565][ T6492] netlink: 244 bytes leftover after parsing attributes in process `syz.3.100'.
[   88.488928][ T6497] IPVS: set_ctl: invalid protocol: 33 224.0.0.2:65535
[   88.495693][ T6500] mmap: syz.2.109 (6500) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   88.713934][ T6506] netlink: 4 bytes leftover after parsing attributes in process `syz.2.111'.
[   89.216030][   T40] audit: type=1326 audit(1766923077.098:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6503 comm="syz.3.102" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[   92.350082][ T6561] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[   92.352813][ T6561] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   92.357181][ T6561] vhci_hcd vhci_hcd.0: Device attached
[   92.580871][ T6557] fuse: Unknown parameter 'max_r'
[   92.595886][ T6001] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[   92.603157][ T6562] vhci_hcd: connection reset by peer
[   92.606222][ T6169] vhci_hcd vhci_hcd.3: stop threads
[   92.608036][ T6169] vhci_hcd vhci_hcd.3: release socket
[   92.615189][ T6169] vhci_hcd vhci_hcd.3: disconnect device
[   92.874678][ T6565] netlink: 168 bytes leftover after parsing attributes in process `syz.2.114'.
[   92.878625][ T6565] FAULT_INJECTION: forcing a failure.
[   92.878625][ T6565] name failslab, interval 1, probability 0, space 0, times 1
[   92.886176][ T6565] CPU: 2 UID: 0 PID: 6565 Comm: syz.2.114 Not tainted syzkaller #0 PREEMPT(full) 
[   92.886195][ T6565] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   92.886202][ T6565] Call Trace:
[   92.886209][ T6565]  <TASK>
[   92.886214][ T6565]  dump_stack_lvl+0x16c/0x1f0
[   92.886239][ T6565]  should_fail_ex+0x512/0x640
[   92.886253][ T6565]  ? __kmalloc_node_noprof+0xcd/0x930
[   92.886271][ T6565]  should_failslab+0xc2/0x120
[   92.886291][ T6565]  __kmalloc_node_noprof+0xee/0x930
[   92.886306][ T6565]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[   92.886331][ T6565]  ? __pfx_crypto_alg_extsize+0x10/0x10
[   92.886354][ T6565]  ? crypto_alloc_tfmmem.isra.0+0x38/0x110
[   92.886367][ T6565]  crypto_alloc_tfmmem.isra.0+0x38/0x110
[   92.886381][ T6565]  crypto_create_tfm_node+0x85/0x350
[   92.886397][ T6565]  crypto_alloc_tfm_node+0x102/0x260
[   92.886410][ T6565]  ? kasan_save_track+0x14/0x30
[   92.886427][ T6565]  mac802154_llsec_key_add+0x7ad/0xd50
[   92.886449][ T6565]  ? __pfx_mac802154_llsec_key_add+0x10/0x10
[   92.886469][ T6565]  ieee802154_add_llsec_key+0x5a/0x80
[   92.886488][ T6565]  nl802154_add_llsec_key+0x457/0x5e0
[   92.886504][ T6565]  ? __pfx_nl802154_add_llsec_key+0x10/0x10
[   92.886525][ T6565]  ? nl802154_pre_doit+0xf2/0xcf0
[   92.886542][ T6565]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   92.886563][ T6565]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   92.886585][ T6565]  genl_family_rcv_msg_doit+0x209/0x2f0
[   92.886604][ T6565]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   92.886622][ T6565]  ? genl_get_cmd+0x194/0x580
[   92.886641][ T6565]  ? bpf_lsm_capable+0x9/0x10
[   92.886657][ T6565]  ? security_capable+0x7e/0x260
[   92.886679][ T6565]  genl_rcv_msg+0x55c/0x800
[   92.886696][ T6565]  ? __pfx_genl_rcv_msg+0x10/0x10
[   92.886709][ T6565]  ? __pfx_nl802154_pre_doit+0x10/0x10
[   92.886727][ T6565]  ? __pfx_nl802154_add_llsec_key+0x10/0x10
[   92.886743][ T6565]  ? __pfx_nl802154_post_doit+0x10/0x10
[   92.886761][ T6565]  ? __lock_acquire+0x436/0x2890
[   92.886790][ T6565]  netlink_rcv_skb+0x158/0x420
[   92.886812][ T6565]  ? __pfx_genl_rcv_msg+0x10/0x10
[   92.886831][ T6565]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   92.886941][ T6565]  ? netlink_deliver_tap+0x1ae/0xd30
[   92.886963][ T6565]  genl_rcv+0x28/0x40
[   92.886986][ T6565]  netlink_unicast+0x5aa/0x870
[   92.887012][ T6565]  ? __pfx_netlink_unicast+0x10/0x10
[   92.887041][ T6565]  netlink_sendmsg+0x8c8/0xdd0
[   92.887066][ T6565]  ? __pfx_netlink_sendmsg+0x10/0x10
[   92.887091][ T6565]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[   92.887121][ T6565]  ____sys_sendmsg+0xa5d/0xc30
[   92.887148][ T6565]  ? __pfx_____sys_sendmsg+0x10/0x10
[   92.887170][ T6565]  ? get_compat_msghdr+0x11a/0x170
[   92.887199][ T6565]  ___sys_sendmsg+0x134/0x1d0
[   92.887220][ T6565]  ? __pfx____sys_sendmsg+0x10/0x10
[   92.887257][ T6565]  ? find_held_lock+0x2b/0x80
[   92.887293][ T6565]  __sys_sendmsg+0x16d/0x220
[   92.887314][ T6565]  ? __pfx___sys_sendmsg+0x10/0x10
[   92.887344][ T6565]  __do_fast_syscall_32+0xe8/0x680
[   92.887371][ T6565]  do_fast_syscall_32+0x32/0x80
[   92.887385][ T6565]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   92.887404][ T6565] RIP: 0023:0xf7ff6579
[   92.887418][ T6565] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   92.887433][ T6565] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   92.887449][ T6565] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800010c0
[   92.887459][ T6565] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   92.887468][ T6565] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   92.887478][ T6565] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   92.887487][ T6565] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   92.887510][ T6565]  </TASK>
[   93.888919][ T6592] fuse: Unknown parameter 'user[id'
[   94.650010][   T40] audit: type=1326 audit(1766923082.538:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6606 comm="syz.3.126" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[   95.870321][ T6615] openvswitch: netlink: IP tunnel dst address not specified
[   95.983361][ T6620] FAULT_INJECTION: forcing a failure.
[   95.983361][ T6620] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   95.988996][ T6620] CPU: 1 UID: 0 PID: 6620 Comm: syz.2.128 Not tainted syzkaller #0 PREEMPT(full) 
[   95.989019][ T6620] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.989029][ T6620] Call Trace:
[   95.989034][ T6620]  <TASK>
[   95.989041][ T6620]  dump_stack_lvl+0x16c/0x1f0
[   95.989071][ T6620]  should_fail_ex+0x512/0x640
[   95.989094][ T6620]  _copy_from_iter+0x2a4/0x16c0
[   95.989116][ T6620]  ? _copy_from_iter+0x161/0x16c0
[   95.989134][ T6620]  ? __pfx__copy_from_iter+0x10/0x10
[   95.989154][ T6620]  ? __pfx__copy_from_iter+0x10/0x10
[   95.989173][ T6620]  ? _copy_from_iter+0x161/0x16c0
[   95.989194][ T6620]  copy_page_from_iter+0xde/0x180
[   95.989215][ T6620]  skb_copy_datagram_from_iter+0x2a0/0x740
[   95.989243][ T6620]  tun_get_user+0x1850/0x3cc0
[   95.989271][ T6620]  ? __pfx_tun_get_user+0x10/0x10
[   95.989291][ T6620]  ? __pfx_ref_tracker_alloc+0x10/0x10
[   95.989317][ T6620]  ? find_held_lock+0x2b/0x80
[   95.989340][ T6620]  ? tun_get+0x191/0x370
[   95.989360][ T6620]  tun_chr_write_iter+0xdc/0x210
[   95.989379][ T6620]  vfs_write+0x7d3/0x11d0
[   95.989403][ T6620]  ? __pfx_tun_chr_write_iter+0x10/0x10
[   95.989423][ T6620]  ? __pfx_vfs_write+0x10/0x10
[   95.989444][ T6620]  ? find_held_lock+0x2b/0x80
[   95.989477][ T6620]  ksys_write+0x12a/0x250
[   95.989499][ T6620]  ? __pfx_ksys_write+0x10/0x10
[   95.989522][ T6620]  ? do_user_addr_fault+0x843/0x1370
[   95.989547][ T6620]  __do_fast_syscall_32+0xe8/0x680
[   95.989575][ T6620]  do_fast_syscall_32+0x32/0x80
[   95.989591][ T6620]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.989611][ T6620] RIP: 0023:0xf7ff6579
[   95.989625][ T6620] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.989640][ T6620] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   95.989657][ T6620] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000300
[   95.989667][ T6620] RDX: 000000000000340a RSI: 0000000000000000 RDI: 0000000000000000
[   95.989677][ T6620] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.989686][ T6620] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.989695][ T6620] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.989715][ T6620]  </TASK>
[   96.311926][ T6632] netlink: 48 bytes leftover after parsing attributes in process `syz.2.131'.
[   97.727199][ T6001] vhci_hcd vhci_hcd.3: vhci_device speed not set
[   98.865758][ T6678] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[   98.868253][ T6678] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[   98.872132][ T6678] vhci_hcd vhci_hcd.0: Device attached
[   99.043668][ T6684] Cannot find set identified by id 0 to match
[   99.146450][ T6001] usb 40-1: SetAddress Request (2) to port 0
[   99.149528][ T6001] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd
[   99.530484][ T6679] vhci_hcd: connection reset by peer
[   99.533402][ T1142] vhci_hcd vhci_hcd.1: stop threads
[   99.535611][ T1142] vhci_hcd vhci_hcd.1: release socket
[   99.539336][ T1142] vhci_hcd vhci_hcd.1: disconnect device
[   99.725469][ T6699] Bluetooth: MGMT ver 1.23
[  102.045200][   T40] audit: type=1326 audit(1766923089.928:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6723 comm="syz.2.154" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[  103.473506][ T6756] Cannot find add_set index 0 as target
[  103.558535][ T6750] netlink: 'syz.2.160': attribute type 1 has an invalid length.
[  103.635376][ T6750] bond0: entered promiscuous mode
[  103.669773][ T6750] bond0: entered allmulticast mode
[  103.672378][ T6750] 8021q: adding VLAN 0 to HW filter on device bond0
[  103.841414][ T6767] netlink: 48 bytes leftover after parsing attributes in process `syz.3.167'.
[  104.215994][ T6001] usb 40-1: device descriptor read/8, error -110
[  104.619420][ T6001] usb usb40-port1: attempt power cycle
[  104.945727][   T40] audit: type=1326 audit(1766923092.828:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6773 comm="syz.0.168" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  105.196936][ T6001] usb usb40-port1: unable to enumerate USB device
[  107.032214][ T6818] netlink: 48 bytes leftover after parsing attributes in process `syz.1.179'.
[  107.078074][ T6817] netlink: 'syz.3.178': attribute type 1 has an invalid length.
[  107.081474][ T6817] netlink: 224 bytes leftover after parsing attributes in process `syz.3.178'.
[  107.838433][ T6833] autofs: Unknown parameter '0x0000000000000000'
[  108.047820][ T6838] dlm: no local IP address has been set
[  108.049761][ T6838] dlm: cannot start dlm midcomms -107
[  108.059778][ T6838] binder: BINDER_SET_CONTEXT_MGR already set
[  108.063680][ T6838] binder: 6837:6838 ioctl 4018620d 80000180 returned -16
[  108.066875][ T6838] binder: 6837:6838 ioctl c0306201 80000cc0 returned -14
[  108.306527][   T40] audit: type=1326 audit(1766923096.198:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6839 comm="syz.3.185" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc2579 code=0x0
[  109.802308][ T6855] binder: 6854:6855 ioctl c020aa08 80000080 returned -22
[  110.319494][ T6869] Zero length message leads to an empty skb
[  111.026194][   T60] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  111.895975][   T60] usb 8-1: Using ep0 maxpacket: 8
[  111.918307][   T60] usb 8-1: config 0 interface 0 has no altsetting 0
[  111.920747][   T60] usb 8-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  111.924048][   T60] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.983037][   T60] usb 8-1: config 0 descriptor??
[  112.565366][   T40] audit: type=1326 audit(1766923100.448:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.1.197" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[  112.605748][ T6853] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  112.611778][ T6853] program syz.3.189 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.631014][   T60] usbhid 8-1:0.0: can't add hid device: -71
[  112.633339][   T60] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  112.644595][   T60] usb 8-1: USB disconnect, device number 2
[  113.473542][ T6893] netlink: 48 bytes leftover after parsing attributes in process `syz.3.200'.
[  114.015031][ T6900] autofs: Unknown parameter '0x0000000000000000'
[  114.979483][   T40] audit: type=1326 audit(1766923102.868:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6919 comm="syz.0.209" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  115.612922][ T6931] netlink: 44 bytes leftover after parsing attributes in process `syz.1.211'.
[  115.664017][ T6933] autofs: Unknown parameter '0x0000000000000000'
[  115.895308][ T6938] netlink: 48 bytes leftover after parsing attributes in process `syz.3.214'.
[  117.277369][ T6951] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  117.280247][ T6951] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  117.285721][ T6951] vhci_hcd vhci_hcd.0: Device attached
[  117.550842][ T6955] vhci_hcd: connection closed
[  117.551300][   T93] vhci_hcd vhci_hcd.2: stop threads
[  117.559215][   T93] vhci_hcd vhci_hcd.2: release socket
[  117.566010][ T6239] usb 42-1: SetAddress Request (2) to port 0
[  117.567300][ T6959] syzkaller0: entered promiscuous mode
[  117.568447][ T6239] usb 42-1: new SuperSpeed USB device number 2 using vhci_hcd
[  117.570065][ T6959] syzkaller0: entered allmulticast mode
[  117.585412][   T93] vhci_hcd vhci_hcd.2: disconnect device
[  117.606224][ T6239] usb 42-1: enqueue for inactive port 0
[  117.851146][ T6967] autofs: Unknown parameter 'fd0x0000000000000000'
[  117.937869][ T6972] FAULT_INJECTION: forcing a failure.
[  117.937869][ T6972] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  117.942656][ T6972] CPU: 0 UID: 0 PID: 6972 Comm: syz.2.222 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  117.942695][ T6972] Tainted: [L]=SOFTLOCKUP
[  117.942699][ T6972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  117.942706][ T6972] Call Trace:
[  117.942710][ T6972]  <TASK>
[  117.942714][ T6972]  dump_stack_lvl+0x16c/0x1f0
[  117.942735][ T6972]  should_fail_ex+0x512/0x640
[  117.942750][ T6972]  _copy_from_iter+0x2a4/0x16c0
[  117.942764][ T6972]  ? __alloc_skb+0x220/0x410
[  117.942775][ T6972]  ? __alloc_skb+0x35d/0x410
[  117.942786][ T6972]  ? __pfx__copy_from_iter+0x10/0x10
[  117.942798][ T6972]  ? unwind_get_return_address+0x59/0xa0
[  117.942818][ T6972]  ? __pfx___might_resched+0x10/0x10
[  117.942838][ T6972]  netlink_sendmsg+0x820/0xdd0
[  117.942857][ T6972]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.942874][ T6972]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  117.942894][ T6972]  ____sys_sendmsg+0xa5d/0xc30
[  117.942913][ T6972]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.942929][ T6972]  ? get_compat_msghdr+0x11a/0x170
[  117.942949][ T6972]  ___sys_sendmsg+0x134/0x1d0
[  117.942963][ T6972]  ? __pfx____sys_sendmsg+0x10/0x10
[  117.942983][ T6972]  ? find_held_lock+0x2b/0x80
[  117.943005][ T6972]  __sys_sendmsg+0x16d/0x220
[  117.943019][ T6972]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.943041][ T6972]  __do_fast_syscall_32+0xe8/0x680
[  117.943062][ T6972]  do_fast_syscall_32+0x32/0x80
[  117.943071][ T6972]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  117.943085][ T6972] RIP: 0023:0xf7ff6579
[  117.943093][ T6972] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  117.943104][ T6972] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  117.943114][ T6972] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800004c0
[  117.943121][ T6972] RDX: 0000000000044000 RSI: 0000000000000000 RDI: 0000000000000000
[  117.943127][ T6972] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  117.943133][ T6972] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  117.943139][ T6972] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  117.943152][ T6972]  </TASK>
[  118.019903][ T6239] usb usb42-port1: attempt power cycle
[  119.014191][ T6239] usb usb42-port1: unable to enumerate USB device
[  120.253057][   T40] audit: type=1326 audit(1766923108.138:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6994 comm="syz.3.230" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7fc00000
[  120.690077][ T7002] autofs: Unknown parameter 'fd0x0000000000000000'
[  120.951291][   T40] audit: type=1326 audit(1766923108.838:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6994 comm="syz.3.230" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc2579 code=0x7fc00000
[  123.101189][ T7037] autofs: Unknown parameter 'fd0x0000000000000000'
[  124.814591][ T7052] netlink: 48 bytes leftover after parsing attributes in process `syz.2.245'.
[  124.961631][   T40] audit: type=1326 audit(1766923112.848:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7043 comm="syz.0.243" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  126.364572][   T40] audit: type=1326 audit(1766923114.248:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.2.251" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[  127.709229][ T7104] netlink: 48 bytes leftover after parsing attributes in process `syz.2.258'.
[  128.784519][ T7113] Unsupported ieee802154 address type: 0
[  129.022779][ T7122] batman_adv: batadv0: Adding interface: gretap1
[  129.024845][ T7122] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  129.032855][ T7122] batman_adv: batadv0: Interface activated: gretap1
[  129.061780][ T7124] netlink: 360 bytes leftover after parsing attributes in process `syz.0.264'.
[  129.177644][   T40] audit: type=1326 audit(1766923117.068:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7117 comm="syz.2.262" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7ff6579 code=0x0
[  129.678614][ T7131] /dev/sr0: Can't open blockdev
[  130.831861][ T7169] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(12)
[  130.834117][ T7169] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  130.839281][ T7169] vhci_hcd vhci_hcd.0: Device attached
[  131.125954][ T6239] usb 44-1: SetAddress Request (2) to port 0
[  131.128488][ T6239] usb 44-1: new SuperSpeed USB device number 2 using vhci_hcd
[  131.497607][ T7170] vhci_hcd: connection reset by peer
[  131.502812][   T46] vhci_hcd vhci_hcd.3: stop threads
[  131.504705][   T46] vhci_hcd vhci_hcd.3: release socket
[  131.507118][   T46] vhci_hcd vhci_hcd.3: disconnect device
[  132.744014][ T7195] netlink: 24 bytes leftover after parsing attributes in process `syz.0.286'.
[  132.831398][ T7207] netlink: 48 bytes leftover after parsing attributes in process `syz.2.288'.
[  132.989320][ T7213] netlink: 'syz.3.283': attribute type 4 has an invalid length.
[  132.995366][ T7213] netlink: 'syz.3.283': attribute type 4 has an invalid length.
[  136.216017][ T6239] usb 44-1: device descriptor read/8, error -110
[  136.637453][ T6239] usb usb44-port1: attempt power cycle
[  137.603151][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  137.878059][ T7277] netlink: 360 bytes leftover after parsing attributes in process `syz.3.307'.
[  137.899012][ T6239] usb usb44-port1: unable to enumerate USB device
[  140.950703][ T7326] netlink: 48 bytes leftover after parsing attributes in process `syz.3.319'.
[  141.597570][ T7343] netlink: 48 bytes leftover after parsing attributes in process `syz.0.322'.
[  142.172292][ T7351] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  142.174892][ T7351] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  142.192086][ T7351] vhci_hcd vhci_hcd.0: Device attached
[  142.599223][ T7363] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.602967][ T7363] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.626930][   T29] usb 44-1: SetAddress Request (6) to port 0
[  142.635616][   T29] usb 44-1: new SuperSpeed USB device number 6 using vhci_hcd
[  142.960033][ T7352] vhci_hcd: connection reset by peer
[  142.966399][   T63] vhci_hcd vhci_hcd.3: stop threads
[  142.970942][   T63] vhci_hcd vhci_hcd.3: release socket
[  142.974691][   T63] vhci_hcd vhci_hcd.3: disconnect device
[  143.606583][ T7369] netlink: 48 bytes leftover after parsing attributes in process `syz.0.330'.
[  143.682419][ T7372] netlink: 48 bytes leftover after parsing attributes in process `syz.3.331'.
[  144.554705][ T7394] syzkaller1: entered promiscuous mode
[  144.558150][ T7394] syzkaller1: entered allmulticast mode
[  144.907396][ T7403] No control pipe specified
[  144.922838][ T7405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.340'.
[  146.080362][ T7419] netlink: 48 bytes leftover after parsing attributes in process `syz.0.343'.
[  146.759225][   T40] audit: type=1326 audit(1766923134.648:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7424 comm="syz.2.345" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6579 code=0x7fc00000
[  147.072609][ T7433] syzkaller0: entered promiscuous mode
[  147.075257][ T7433] syzkaller0: entered allmulticast mode
[  147.387968][ T7436] ebtables: wrong size: *len 264, entries_size 144, replsz 144
[  147.487356][   T40] audit: type=1326 audit(1766923135.348:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7424 comm="syz.2.345" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7ff6598 code=0x7fc00000
[  147.736080][   T29] usb 44-1: device descriptor read/8, error -110
[  148.146878][   T29] usb usb44-port1: attempt power cycle
[  148.717833][   T29] usb usb44-port1: unable to enumerate USB device
[  148.874072][   T40] audit: type=1326 audit(1766923136.758:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7458 comm="syz.1.354" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[  148.996319][ T6239] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  149.256964][ T6239] usb 5-1: Using ep0 maxpacket: 32
[  149.262273][ T6239] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  149.267059][ T6239] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  149.271187][ T6239] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[  149.286147][ T6239] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  149.297612][ T6239] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  149.301398][ T6239] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.304780][ T6239] usb 5-1: Product: syz
[  149.316549][ T6239] usb 5-1: Manufacturer: syz
[  149.319224][ T6239] usb 5-1: SerialNumber: syz
[  149.326416][ T6239] usb 5-1: config 0 descriptor??
[  149.346102][ T6239] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/input/input8
[  149.373388][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.387026][    C3] xpad 5-1:0.0: xpad_irq_in - usb_submit_urb failed with result -1
[  149.399129][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.414130][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.421935][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.504987][ T5956] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.515231][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.545276][ T7461] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  149.581772][ T7461] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.590005][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.608629][ T5335] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  149.611066][   T74] usb 5-1: USB disconnect, device number 2
[  149.612141][    C0] xpad 5-1:0.0: xpad_irq_in - usb_submit_urb failed with result -19
[  151.380409][ T7486] FAULT_INJECTION: forcing a failure.
[  151.380409][ T7486] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  151.386495][ T7486] CPU: 2 UID: 0 PID: 7486 Comm: syz.3.361 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  151.386525][ T7486] Tainted: [L]=SOFTLOCKUP
[  151.386532][ T7486] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.386542][ T7486] Call Trace:
[  151.386548][ T7486]  <TASK>
[  151.386556][ T7486]  dump_stack_lvl+0x16c/0x1f0
[  151.386591][ T7486]  should_fail_ex+0x512/0x640
[  151.386616][ T7486]  _copy_from_user+0x2e/0xd0
[  151.386638][ T7486]  kstrtouint_from_user+0xd6/0x1d0
[  151.386662][ T7486]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  151.386686][ T7486]  ? __lock_acquire+0x436/0x2890
[  151.386715][ T7486]  proc_fail_nth_write+0x83/0x220
[  151.386735][ T7486]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  151.386759][ T7486]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  151.386776][ T7486]  vfs_write+0x2a0/0x11d0
[  151.386805][ T7486]  ? __pfx___mutex_lock+0x10/0x10
[  151.386834][ T7486]  ? __pfx_vfs_write+0x10/0x10
[  151.386856][ T7486]  ? find_held_lock+0x2b/0x80
[  151.386886][ T7486]  ? __fget_files+0x20e/0x3c0
[  151.386920][ T7486]  ksys_write+0x12a/0x250
[  151.386945][ T7486]  ? __pfx_ksys_write+0x10/0x10
[  151.386977][ T7486]  __do_fast_syscall_32+0xe8/0x680
[  151.387006][ T7486]  do_fast_syscall_32+0x32/0x80
[  151.387023][ T7486]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.387043][ T7486] RIP: 0023:0xf7fc2579
[  151.387058][ T7486] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.387075][ T7486] RSP: 002b:00000000f54b6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  151.387094][ T7486] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f54b6620
[  151.387106][ T7486] RDX: 0000000000000001 RSI: 00000000f7456ff4 RDI: 0000000000000000
[  151.387117][ T7486] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  151.387128][ T7486] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.387138][ T7486] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.387163][ T7486]  </TASK>
[  151.629687][ T7496] netlink: 48 bytes leftover after parsing attributes in process `syz.1.365'.
[  151.642891][ T7494] macvtap1: entered promiscuous mode
[  151.645414][ T7494] macvtap1: entered allmulticast mode
[  151.647904][ T7494] veth1_vlan: entered allmulticast mode
[  151.658408][ T7494] macvtap2: entered promiscuous mode
[  151.660201][ T7494] macvtap2: entered allmulticast mode
[  152.433954][ T1141] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.635254][ T1141] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.723990][ T1141] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.724877][ T5940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  152.734677][ T5940] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  152.741361][ T5940] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  152.746475][ T5940] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  152.750346][ T5940] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  152.877561][ T1141] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.331292][ T7516] chnl_net:caif_netlink_parms(): no params data found
[  153.407407][ T7516] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.409814][ T7516] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.412194][ T7516] bridge_slave_0: entered allmulticast mode
[  153.414814][ T7516] bridge_slave_0: entered promiscuous mode
[  153.421136][ T7516] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.423641][ T7516] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.426472][ T7516] bridge_slave_1: entered allmulticast mode
[  153.431142][ T7516] bridge_slave_1: entered promiscuous mode
[  153.451886][ T7516] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.462315][ T7516] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.493289][ T7516] team0: Port device team_slave_0 added
[  153.498956][ T7516] team0: Port device team_slave_1 added
[  153.522845][ T7516] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.525226][ T7516] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  153.534222][ T7516] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.542008][ T7516] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.544383][ T7516] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  153.553492][ T7516] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.604215][ T7516] hsr_slave_0: entered promiscuous mode
[  153.607867][ T7516] hsr_slave_1: entered promiscuous mode
[  153.612450][ T7516] debugfs: 'hsr0' already exists in 'hsr'
[  153.614725][ T7516] Cannot create hsr debugfs directory
[  153.745222][ T7519] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  153.749890][ T7519] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  153.765145][ T7519] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  153.768555][ T7519] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  153.780413][ T7519] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  153.782848][ T7519] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[  153.932082][ T7516] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  153.979040][ T7516] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  153.993780][ T7516] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  154.004439][ T7519] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  154.004711][ T7516] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  154.007979][ T7519] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  154.056745][ T1141] erspan0: left allmulticast mode
[  154.059153][ T1141] erspan0: left promiscuous mode
[  154.062836][ T1141] bridge0: port 3(erspan0) entered disabled state
[  154.073669][ T1141] bridge_slave_1: left allmulticast mode
[  154.074292][ T7519] syz.1.373 (7519) used greatest stack depth: 17960 bytes left
[  154.084468][ T1141] bridge_slave_1: left promiscuous mode
[  154.102663][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.177267][ T1141] bridge_slave_0: left allmulticast mode
[  154.179879][ T1141] bridge_slave_0: left promiscuous mode
[  154.182319][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.196497][ T1141] batman_adv: batadv0: Interface deactivated: gretap1
[  154.288231][ T1141] batman_adv: batadv0: Removing interface: gretap1
[  154.418269][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  154.426302][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  154.430907][ T1141] bond0 (unregistering): Released all slaves
[  154.537210][ T7516] 8021q: adding VLAN 0 to HW filter on device bond0
[  154.561998][ T7516] 8021q: adding VLAN 0 to HW filter on device team0
[  154.582304][ T5067] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.585419][ T5067] bridge0: port 1(bridge_slave_0) entered forwarding state
[  154.686254][ T5067] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.689440][ T5067] bridge0: port 2(bridge_slave_1) entered forwarding state
[  154.742590][ T7571] netlink: 48 bytes leftover after parsing attributes in process `syz.0.375'.
[  155.087986][ T7516] 8021q: adding VLAN 0 to HW filter on device batadv0
[  155.468219][ T1141] hsr_slave_0: left promiscuous mode
[  155.471302][ T1141] hsr_slave_1: left promiscuous mode
[  155.474754][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.479580][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.483428][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.487203][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.507238][ T1141] veth1_vlan: left allmulticast mode
[  155.511286][ T1141] veth1_macvtap: left promiscuous mode
[  155.514697][ T1141] veth0_macvtap: left promiscuous mode
[  155.518003][ T1141] veth1_vlan: left promiscuous mode
[  155.521471][ T1141] veth0_vlan: left promiscuous mode
[  155.978367][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  156.004349][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  156.431324][ T7516] veth0_vlan: entered promiscuous mode
[  156.448350][ T7516] veth1_vlan: entered promiscuous mode
[  156.467870][ T7516] veth0_macvtap: entered promiscuous mode
[  156.472669][ T7516] veth1_macvtap: entered promiscuous mode
[  156.482759][ T7516] batman_adv: batadv0: Interface activated: batadv_slave_0
[  156.489355][ T7516] batman_adv: batadv0: Interface activated: batadv_slave_1
[  156.497957][ T6323] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  156.505979][ T6323] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  156.540262][ T6323] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  156.544040][ T6323] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  156.679591][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.683002][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.709679][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  156.713174][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  156.802108][ T5953] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  156.813998][ T5953] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  156.819150][ T5953] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  156.823471][ T5953] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  156.829758][ T5953] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  157.212457][ T1141] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.284744][ T1141] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.393108][ T1141] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.441960][ T7613] chnl_net:caif_netlink_parms(): no params data found
[  157.521277][ T1141] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  157.552162][ T7613] bridge0: port 1(bridge_slave_0) entered blocking state
[  157.555977][ T7613] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.560441][ T7613] bridge_slave_0: entered allmulticast mode
[  157.564090][ T7613] bridge_slave_0: entered promiscuous mode
[  157.571549][ T7613] bridge0: port 2(bridge_slave_1) entered blocking state
[  157.574581][ T7613] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.586141][ T7613] bridge_slave_1: entered allmulticast mode
[  157.595700][ T7613] bridge_slave_1: entered promiscuous mode
[  157.621376][ T7613] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  157.648848][ T7613] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  157.748259][ T7613] team0: Port device team_slave_0 added
[  157.751433][ T7613] team0: Port device team_slave_1 added
[  157.850530][ T7613] batman_adv: batadv0: Adding interface: batadv_slave_0
[  157.853727][ T7613] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  157.865542][ T7613] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  157.873656][ T1141] erspan0: left allmulticast mode
[  157.876903][ T1141] erspan0: left promiscuous mode
[  157.881675][ T1141] bridge0: port 3(erspan0) entered disabled state
[  157.898245][ T1141] bridge_slave_1: left allmulticast mode
[  157.901144][ T1141] bridge_slave_1: left promiscuous mode
[  157.904675][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.931234][ T1141] bridge_slave_0: left allmulticast mode
[  157.934167][ T1141] bridge_slave_0: left promiscuous mode
[  157.938140][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.089347][ T7645] netlink: 200 bytes leftover after parsing attributes in process `syz.1.384'.
[  158.093610][ T7645] netlink: 200 bytes leftover after parsing attributes in process `syz.1.384'.
[  158.110919][   T40] audit: type=1804 audit(1766923145.998:27): pid=7645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.384" name="/newroot/88/file0" dev="tmpfs" ino=485 res=1 errno=0
[  158.112191][ T7645] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: 1
[  158.124381][ T7645] ref_ctr increment failed for inode: 0x1e5 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801b330000
[  158.140349][ T7645] ref_ctr going negative. vaddr: 0x80ffd002, curr val: -2360, delta: -1
[  158.144193][ T7645] ref_ctr decrement failed for inode: 0x1e5 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801b330000
[  158.151342][ T7645] uprobe: syz.1.384:7645 failed to unregister, leaking uprobe
[  158.268578][ T1141] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[  158.273140][ T1141] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[  158.277907][ T1141] .` (unregistering): Released all slaves
[  158.347789][ T1141] bond0 (unregistering): Released all slaves
[  158.390259][ T7613] batman_adv: batadv0: Adding interface: batadv_slave_1
[  158.393551][ T7613] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  158.416017][ T7613] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  158.438225][ T7646] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[  158.856039][ T5940] Bluetooth: hci3: command tx timeout
[  159.484617][ T7613] hsr_slave_0: entered promiscuous mode
[  159.516107][ T7613] hsr_slave_1: entered promiscuous mode
[  159.519222][ T7613] debugfs: 'hsr0' already exists in 'hsr'
[  159.521751][ T7613] Cannot create hsr debugfs directory
[  159.807975][ T7613] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  159.812868][ T7613] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  159.828989][ T7613] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  159.850421][ T7613] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  159.911305][ T7613] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.919499][ T7613] 8021q: adding VLAN 0 to HW filter on device team0
[  159.939315][ T7613] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  159.942821][ T7613] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.998977][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.001987][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.008736][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.011703][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.166140][ T1141] hsr_slave_0: left promiscuous mode
[  160.173465][ T1141] hsr_slave_1: left promiscuous mode
[  160.176372][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.178897][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  160.181928][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  160.185019][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  160.272905][ T1141] veth1_macvtap: left promiscuous mode
[  160.275371][ T1141] veth0_macvtap: left promiscuous mode
[  160.308634][ T1141] veth1_vlan: left promiscuous mode
[  160.310531][ T1141] veth0_vlan: left promiscuous mode
[  160.552952][ T5953] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  160.564325][ T5953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  160.569280][ T5953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  160.573579][ T5953] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  160.580974][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  160.737486][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  160.768119][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  160.937779][ T5940] Bluetooth: hci3: command tx timeout
[  161.035479][ T7675] wireguard0: entered promiscuous mode
[  161.085746][ T7613] 8021q: adding VLAN 0 to HW filter on device batadv0
[  161.334254][ T7613] veth0_vlan: entered promiscuous mode
[  161.340851][ T7613] veth1_vlan: entered promiscuous mode
[  161.346546][ T7672] chnl_net:caif_netlink_parms(): no params data found
[  161.417841][ T7672] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.420230][ T7672] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.422618][ T7672] bridge_slave_0: entered allmulticast mode
[  161.439921][ T7672] bridge_slave_0: entered promiscuous mode
[  161.451614][ T7672] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.454279][ T7672] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.459618][ T7672] bridge_slave_1: entered allmulticast mode
[  161.462346][ T7672] bridge_slave_1: entered promiscuous mode
[  161.487058][ T7613] veth0_macvtap: entered promiscuous mode
[  161.519277][ T7672] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  161.524211][ T7672] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  161.535429][ T7613] veth1_macvtap: entered promiscuous mode
[  161.582482][ T1141] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.600651][ T7672] team0: Port device team_slave_0 added
[  161.632697][ T7672] team0: Port device team_slave_1 added
[  161.686336][ T7613] batman_adv: batadv0: Interface activated: batadv_slave_0
[  161.706083][ T7613] batman_adv: batadv0: Interface activated: batadv_slave_1
[  161.720742][ T1141] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.734034][ T7672] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.740530][ T7672] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  161.749643][ T7672] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.753808][ T6169] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.758891][ T6169] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.764824][ T7672] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.768508][ T7672] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  161.777642][ T7672] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.790310][ T6169] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.794036][ T6169] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.814211][ T1141] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.909464][ T7672] hsr_slave_0: entered promiscuous mode
[  161.912132][ T7672] hsr_slave_1: entered promiscuous mode
[  161.914668][ T7672] debugfs: 'hsr0' already exists in 'hsr'
[  161.917103][ T7672] Cannot create hsr debugfs directory
[  161.930182][ T1141] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.964297][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.970114][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  162.038988][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  162.046503][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  162.266527][ T1141] bridge_slave_1: left allmulticast mode
[  162.268904][ T1141] bridge_slave_1: left promiscuous mode
[  162.271328][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.288223][ T1141] bridge_slave_0: left allmulticast mode
[  162.290430][ T1141] bridge_slave_0: left promiscuous mode
[  162.294804][ T1141] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.616174][ T5940] Bluetooth: hci2: command tx timeout
[  162.637435][ T1141] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  162.644226][ T1141] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  162.650430][ T1141] bond0 (unregistering): Released all slaves
[  162.662222][ T7672] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  162.682825][ T7672] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  162.690174][ T7672] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  162.707858][ T7672] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  162.840157][ T7672] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.911848][ T7672] 8021q: adding VLAN 0 to HW filter on device team0
[  162.922679][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.925213][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.940801][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.944098][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.016057][ T5940] Bluetooth: hci3: command tx timeout
[  163.376962][ T1141] hsr_slave_0: left promiscuous mode
[  163.379410][ T1141] hsr_slave_1: left promiscuous mode
[  163.383401][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  163.387338][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  163.393977][ T1141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  163.398336][ T1141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  163.412725][ T1141] veth1_macvtap: left promiscuous mode
[  163.415370][ T1141] veth0_macvtap: left promiscuous mode
[  163.418283][ T1141] veth1_vlan: left promiscuous mode
[  163.420691][ T1141] veth0_vlan: left promiscuous mode
[  163.787176][ T1141] team0 (unregistering): Port device team_slave_1 removed
[  163.812520][ T1141] team0 (unregistering): Port device team_slave_0 removed
[  164.230177][ T7672] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.438451][ T7672] veth0_vlan: entered promiscuous mode
[  164.444948][ T7672] veth1_vlan: entered promiscuous mode
[  164.458699][ T7672] veth0_macvtap: entered promiscuous mode
[  164.474051][ T7672] veth1_macvtap: entered promiscuous mode
[  164.506997][ T7672] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.515358][ T7672] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.536633][ T6413] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.550173][ T6413] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.695940][ T5940] Bluetooth: hci2: command tx timeout
[  164.718318][ T6413] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.728312][ T6413] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.841658][ T6413] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.847330][ T7775] netlink: 12 bytes leftover after parsing attributes in process `syz.5.398'.
[  164.852263][ T6413] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.913964][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.917054][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.045468][ T7780] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(7)
[  165.048413][ T7780] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  165.073861][ T7780] vhci_hcd vhci_hcd.0: Device attached
[  165.095940][ T5940] Bluetooth: hci3: command tx timeout
[  165.131037][ T7780] Scaler: =================  START STATUS  =================
[  165.133720][ T7780] Scaler: ==================  END STATUS  ==================
[  165.198584][ T7780] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  165.202385][ T7780] block device autoloading is deprecated and will be removed.
[  165.336060][   T53] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[  165.344287][ T7793] dlm: no local IP address has been set
[  165.347738][ T7793] dlm: cannot start dlm midcomms -107
[  165.352706][ T7793] binder: BINDER_SET_CONTEXT_MGR already set
[  165.354862][ T7793] binder: 7792:7793 ioctl 4018620d 80000180 returned -16
[  165.358142][ T7793] binder: 7792:7793 ioctl c0306201 80000cc0 returned -14
[  165.964441][ T7782] vhci_hcd: connection reset by peer
[  165.998490][ T1141] vhci_hcd vhci_hcd.0: stop threads
[  166.002195][ T1141] vhci_hcd vhci_hcd.0: release socket
[  166.007354][ T1141] vhci_hcd vhci_hcd.0: disconnect device
[  166.775956][ T5940] Bluetooth: hci2: command tx timeout
[  166.944359][ T7825] tipc: Started in network mode
[  166.947242][ T7825] tipc: Node identity , cluster identity 4711
[  166.950062][ T7825] tipc: Failed to obtain node identity
[  166.952303][ T7825] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  167.130820][ T7827] syzkaller1: entered promiscuous mode
[  167.132686][ T7827] syzkaller1: entered allmulticast mode
[  168.855950][ T5940] Bluetooth: hci2: command tx timeout
[  169.140194][   T40] audit: type=1326 audit(1766923157.028:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.165999][   T40] audit: type=1326 audit(1766923157.028:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.175800][   T40] audit: type=1326 audit(1766923157.028:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.183813][   T40] audit: type=1326 audit(1766923157.028:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.191512][   T40] audit: type=1326 audit(1766923157.028:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.200185][   T40] audit: type=1326 audit(1766923157.028:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.207902][   T40] audit: type=1326 audit(1766923157.028:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.217688][   T40] audit: type=1326 audit(1766923157.028:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.227543][   T40] audit: type=1326 audit(1766923157.028:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.234833][   T40] audit: type=1326 audit(1766923157.028:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7839 comm="syz.0.408" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x7fc00000
[  169.395994][ T6001] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  169.526043][ T6001] usb 10-1: device descriptor read/64, error -71
[  169.714284][ T7878] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(7)
[  169.717099][ T7878] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  169.721198][ T7878] vhci_hcd vhci_hcd.0: Device attached
[  169.765955][ T6001] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  169.906047][ T6001] usb 10-1: device descriptor read/64, error -71
[  169.965950][   T74] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  169.996135][ T6051] usb 50-1: SetAddress Request (2) to port 0
[  169.998977][ T6051] usb 50-1: new SuperSpeed USB device number 2 using vhci_hcd
[  170.016861][ T6001] usb usb10-port1: attempt power cycle
[  170.081181][ T7891] binder: 7890:7891 unknown command 0
[  170.084211][ T7891] binder: 7890:7891 ioctl c0306201 80000080 returned -22
[  170.101161][ T7891] binder: 7890:7891 ioctl c0306201 800003c0 returned -14
[  170.146299][   T74] usb 11-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  170.150117][   T74] usb 11-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  170.154525][   T74] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 66
[  170.158720][   T74] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  170.165358][   T74] usb 11-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  170.173534][   T74] usb 11-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  170.177507][   T74] usb 11-1: Product: syz
[  170.179423][   T74] usb 11-1: Manufacturer: syz
[  170.192496][   T74] cdc_wdm 11-1:1.0: skipping garbage
[  170.194954][   T74] cdc_wdm 11-1:1.0: skipping garbage
[  170.204533][   T74] cdc_wdm 11-1:1.0: cdc-wdm0: USB WDM device
[  170.207357][   T74] cdc_wdm 11-1:1.0: Unknown control protocol
[  170.356079][ T6001] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  170.377622][ T6001] usb 10-1: device descriptor read/8, error -71
[  170.410584][ T6028] usb 11-1: USB disconnect, device number 2
[  170.435943][ T7886] vhci_hcd: connection reset by peer
[  170.439244][   T13] vhci_hcd vhci_hcd.6: stop threads
[  170.441611][   T13] vhci_hcd vhci_hcd.6: release socket
[  170.445375][   T13] vhci_hcd vhci_hcd.6: disconnect device
[  170.448909][   T53] vhci_hcd vhci_hcd.0: vhci_device speed not set
[  170.625942][ T6001] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  170.646521][ T6001] usb 10-1: device descriptor read/8, error -71
[  170.756731][ T6001] usb usb10-port1: unable to enumerate USB device
[  172.716155][ T7930] =======================================================
[  172.716155][ T7930] WARNING: The mand mount option has been deprecated and
[  172.716155][ T7930]          and is ignored by this kernel. Remove the mand
[  172.716155][ T7930]          option from the mount to silence this warning.
[  172.716155][ T7930] =======================================================
[  172.749032][ T7930] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  174.423186][   T40] kauditd_printk_skb: 59 callbacks suppressed
[  174.423202][   T40] audit: type=1326 audit(1766923162.308:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.446732][   T40] audit: type=1326 audit(1766923162.308:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.466182][   T40] audit: type=1326 audit(1766923162.308:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.482974][   T40] audit: type=1326 audit(1766923162.308:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.505909][   T40] audit: type=1326 audit(1766923162.318:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.514945][   T40] audit: type=1326 audit(1766923162.318:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.514990][   T40] audit: type=1326 audit(1766923162.318:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.515029][   T40] audit: type=1326 audit(1766923162.318:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.543460][   T40] audit: type=1326 audit(1766923162.318:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.553337][   T40] audit: type=1326 audit(1766923162.318:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7951 comm="syz.5.428" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff1579 code=0x7ffc0000
[  174.840112][ T7962] input: syz0 as /devices/virtual/input/input9
[  175.096031][ T6051] usb 50-1: device descriptor read/8, error -110
[  175.497218][ T6051] usb usb50-port1: attempt power cycle
[  176.066971][ T6051] usb usb50-port1: unable to enumerate USB device
[  176.923329][ T7983] lo speed is unknown, defaulting to 1000
[  176.923382][ T7983] lo speed is unknown, defaulting to 1000
[  176.924054][ T7983] lo speed is unknown, defaulting to 1000
[  176.926734][ T7983] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  176.932659][ T7983] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  176.946988][ T7983] lo speed is unknown, defaulting to 1000
[  176.947754][ T7983] lo speed is unknown, defaulting to 1000
[  176.948411][ T7983] lo speed is unknown, defaulting to 1000
[  176.958130][ T7983] lo speed is unknown, defaulting to 1000
[  177.020390][ T7983] smc: removing ib device syz1
[  177.563076][ T7993] netlink: 12 bytes leftover after parsing attributes in process `syz.1.437'.
[  177.575353][ T7993] 8021q: adding VLAN 0 to HW filter on device bond1
[  177.583599][ T7993] netlink: 28 bytes leftover after parsing attributes in process `syz.1.437'.
[  177.587503][ T7993] bond1: entered promiscuous mode
[  177.589963][ T7993] bond1: entered allmulticast mode
[  177.600947][ T7993] dummy0: entered promiscuous mode
[  177.603006][ T7993] dummy0: entered allmulticast mode
[  177.605086][ T7993] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  177.914177][ T8003] netlink: 20 bytes leftover after parsing attributes in process `syz.5.439'.
[  177.930352][ T8003] hfs: can't find a HFS filesystem on dev loop5
[  178.825515][ T8028] dlm: no local IP address has been set
[  178.827889][ T8028] dlm: cannot start dlm midcomms -107
[  178.837871][ T8028] binder: BINDER_SET_CONTEXT_MGR already set
[  178.840671][ T8028] binder: 8027:8028 ioctl 4018620d 80000180 returned -16
[  178.845326][ T8028] binder: 8027:8028 ioctl c0306201 80000cc0 returned -14
[  179.484494][ T8049] netlink: 24 bytes leftover after parsing attributes in process `syz.0.446'.
[  179.503845][ T8049] bond1: entered promiscuous mode
[  179.506949][ T8049] 8021q: adding VLAN 0 to HW filter on device bond1
[  180.963780][ T8087] dlm: no local IP address has been set
[  180.965682][ T8087] dlm: cannot start dlm midcomms -107
[  180.968140][ T8089] dlm: no local IP address has been set
[  180.970089][ T8089] dlm: cannot start dlm midcomms -107
[  180.975170][ T8089] binder: BINDER_SET_CONTEXT_MGR already set
[  180.977700][ T8089] binder: 8088:8089 ioctl 4018620d 80000180 returned -16
[  180.980908][ T8089] binder: 8088:8089 ioctl c0306201 80000cc0 returned -14
[  181.009393][ T8087] binder: BINDER_SET_CONTEXT_MGR already set
[  181.012036][ T8087] binder: 8086:8087 ioctl 4018620d 80000180 returned -16
[  181.026317][ T8087] binder: 8086:8087 ioctl c0306201 80000cc0 returned -14
[  182.627040][   T40] kauditd_printk_skb: 99 callbacks suppressed
[  182.627052][   T40] audit: type=1326 audit(1766923170.518:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8103 comm="syz.0.462" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf701d579 code=0x0
[  182.654754][ T8105] overlayfs: failed to resolve './file1': -2
[  183.451345][ T8121] Illegal XDP return value 4294967274 on prog  (id 61) dev syz_tun, expect packet loss!
[  184.047846][ T8115] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  186.676794][ T8149] binder: 8147:8149 ioctl 4010640d 80000040 returned -22
[  187.331444][ T8166] input: syz1 as /devices/virtual/input/input10
[  187.334178][ T8166] input: failed to attach handler leds to device input10, error: -6
[  189.161953][ T8186] loop6: detected capacity change from 0 to 2640
[  189.170712][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.174354][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.177917][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.181481][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.184900][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.188638][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.192128][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.195625][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.199131][ T8186] ldm_validate_partition_table(): Disk read failed.
[  189.202076][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.205516][ T8186] Buffer I/O error on dev loop6, logical block 0, async page read
[  189.209059][ T8186] Dev loop6: unable to read RDB block 0
[  189.211697][ T8186]  loop6: unable to read partition table
[  189.213860][ T8186] loop_reread_partitions: partition scan of loop6 (3Ÿ¾‚³˜) failed (rc=-5)
[  189.287248][ T8190] loop6: detected capacity change from 2640 to 524287984
[  189.527746][ T8200] xt_cgroup: path and classid specified
[  190.906305][ T8211] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  190.915055][ T8211] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  191.414587][ T8219] netlink: 76 bytes leftover after parsing attributes in process `syz.5.489'.
[  192.676311][ T8236] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8)
[  192.678505][ T8236] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  192.689509][ T8236] vhci_hcd vhci_hcd.0: Device attached
[  192.820206][ T8240] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(7)
[  192.822400][ T8240] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  192.825419][ T8240] vhci_hcd vhci_hcd.0: Device attached
[  192.965980][ T7772] usb 48-1: SetAddress Request (2) to port 0
[  192.973841][ T7772] usb 48-1: new SuperSpeed USB device number 2 using vhci_hcd
[  193.105894][ T8237] vhci_hcd: connection reset by peer
[  193.105990][   T10] usb 50-1: SetAddress Request (6) to port 0
[  193.109495][   T13] vhci_hcd vhci_hcd.5: stop threads
[  193.110385][   T10] usb 50-1: new SuperSpeed USB device number 6 using vhci_hcd
[  193.112470][   T13] vhci_hcd vhci_hcd.5: release socket
[  193.125989][   T13] vhci_hcd vhci_hcd.5: disconnect device
[  193.506865][ T8241] vhci_hcd: connection reset by peer
[  193.516288][ T6413] vhci_hcd vhci_hcd.6: stop threads
[  193.519381][ T6413] vhci_hcd vhci_hcd.6: release socket
[  193.526079][ T6413] vhci_hcd vhci_hcd.6: disconnect device
[  193.600807][ T8251] mkiss: ax0: crc mode is auto.
[  194.526087][ T8270] autofs: Bad value for 'fd'
[  194.582751][   T40] audit: type=1326 audit(1766923182.468:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8269 comm="syz.6.507" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70dd579 code=0x0
[  196.062136][ T8284] netlink: 8 bytes leftover after parsing attributes in process `syz.1.509'.
[  196.073667][ T8284] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.076208][ T8284] bridge0: port 2(bridge_slave_1) entered forwarding state
[  196.079474][ T8284] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.081868][ T8284] bridge0: port 1(bridge_slave_0) entered forwarding state
[  196.087940][ T8284] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  198.141392][ T7772] usb 48-1: device descriptor read/8, error -110
[  198.145956][   T10] usb 50-1: device descriptor read/8, error -110
[  198.505405][ T8305] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.508860][ T8305] bridge0: port 1(bridge_slave_0) entered disabled state
[  198.526631][ T7772] usb usb48-port1: attempt power cycle
[  198.547299][   T10] usb usb50-port1: attempt power cycle
[  198.602978][ T8305] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  198.609981][ T8305] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  198.702269][ T8312] ip6_tunnel: non-ECT from fc00:0001:0000:0000:0000:0000:0000:0000 with DS=0x5
[  198.770313][ T8305] batman_adv: batadv0: Interface deactivated: gretap1
[  198.778284][ T8305] bond1: left promiscuous mode
[  198.780360][ T8305] dummy0: left promiscuous mode
[  198.782656][ T8305] bond1: left allmulticast mode
[  198.784679][ T8305] dummy0: left allmulticast mode
[  198.884120][   T13] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.887467][   T13] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.890324][   T13] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.894026][   T13] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  199.018903][ T1413] ieee802154 phy1 wpan1: encryption failed: -22
[  199.101990][ T8320] autofs: Bad value for 'fd'
[  199.118454][ T7772] usb usb48-port1: unable to enumerate USB device
[  199.122887][   T10] usb usb50-port1: unable to enumerate USB device
[  199.164345][   T40] audit: type=1326 audit(1766923187.048:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8319 comm="syz.0.519" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  199.219559][ T8324] dlm: no local IP address has been set
[  199.221726][ T8324] dlm: cannot start dlm midcomms -107
[  199.226041][ T8324] binder: BINDER_SET_CONTEXT_MGR already set
[  199.228075][ T8324] binder: 8323:8324 ioctl 4018620d 80000180 returned -16
[  199.231063][ T8324] binder_alloc: 8323: binder_alloc_buf, no vma
[  199.233732][ T8324] binder: 8323:8324 ioctl c0306201 80000cc0 returned -14
[  200.328350][ T8339] netlink: 4 bytes leftover after parsing attributes in process `syz.1.525'.
[  200.604160][ T8345] could not allocate digest TFM handle blake2b-512-generic
[  201.109101][ T8357] dlm: no local IP address has been set
[  201.109123][ T8357] dlm: cannot start dlm midcomms -107
[  201.110117][ T8357] binder: BINDER_SET_CONTEXT_MGR already set
[  201.115661][ T8357] binder: 8356:8357 ioctl 4018620d 80000180 returned -16
[  201.116949][ T8357] binder_alloc: 8356: binder_alloc_buf, no vma
[  201.121477][ T8357] binder: 8356:8357 ioctl c0306201 80000cc0 returned -14
[  202.159775][ T8372] netlink: 'syz.1.535': attribute type 30 has an invalid length.
[  202.328826][ T8377] netlink: 'syz.1.535': attribute type 30 has an invalid length.
[  202.932640][ T8388] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(7)
[  202.935400][ T8388] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  202.962247][ T8388] vhci_hcd vhci_hcd.0: Device attached
[  203.235986][ T7772] usb 48-1: SetAddress Request (6) to port 0
[  203.238469][ T7772] usb 48-1: new SuperSpeed USB device number 6 using vhci_hcd
[  203.536511][ T8389] vhci_hcd: connection reset by peer
[  203.539472][ T1141] vhci_hcd vhci_hcd.5: stop threads
[  203.541658][ T1141] vhci_hcd vhci_hcd.5: release socket
[  203.543355][ T1141] vhci_hcd vhci_hcd.5: disconnect device
[  205.638252][ T8429] autofs: Unknown parameter '00000000000000000000'
[  205.702082][   T40] audit: type=1326 audit(1766923193.588:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8428 comm="syz.0.550" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  206.538072][ T8433] x_tables: duplicate underflow at hook 1
[  206.629280][ T8438] binder: 8437:8438 ioctl 8004f50c 80000240 returned -22
[  206.726971][ T8443] evm: overlay not supported
[  207.129187][ T8457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.560'.
[  207.148750][   T13] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.301999][   T13] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.309567][ T8457] netlink: 16 bytes leftover after parsing attributes in process `syz.1.560'.
[  207.388881][   T13] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.423119][ T8467] Cannot find set identified by id 0 to match
[  207.458183][ T5953] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  207.462783][ T5953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  207.467390][ T5953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  207.473523][ T5953] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  207.476552][ T8469] autofs: Unknown parameter '00000000000000000000'
[  207.487327][ T5953] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  207.498768][   T13] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.535026][   T40] audit: type=1326 audit(1766923195.418:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8468 comm="syz.1.565" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6ffd579 code=0x0
[  207.564969][ T8463] lo speed is unknown, defaulting to 1000
[  207.725771][   T13] bridge_slave_1: left allmulticast mode
[  207.729830][   T13] bridge_slave_1: left promiscuous mode
[  207.732549][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.741875][   T13] bridge_slave_0: left allmulticast mode
[  207.744017][   T13] bridge_slave_0: left promiscuous mode
[  207.749111][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.170097][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  208.176563][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  208.182323][   T13] bond0 (unregistering): Released all slaves
[  208.283210][ T8463] chnl_net:caif_netlink_parms(): no params data found
[  208.296052][ T7772] usb 48-1: device descriptor read/8, error -110
[  208.608334][ T8463] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.611089][ T8463] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.613821][ T8463] bridge_slave_0: entered allmulticast mode
[  208.618673][ T8463] bridge_slave_0: entered promiscuous mode
[  208.624357][ T8463] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.630875][ T8463] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.634389][ T8463] bridge_slave_1: entered allmulticast mode
[  208.637949][ T8463] bridge_slave_1: entered promiscuous mode
[  208.677044][ T8463] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.690380][   T13] hsr_slave_0: left promiscuous mode
[  208.693639][   T13] hsr_slave_1: left promiscuous mode
[  208.698274][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  208.701437][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[  208.738920][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  208.742066][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[  208.753864][   T13] veth1_macvtap: left promiscuous mode
[  208.756083][   T13] veth0_macvtap: left promiscuous mode
[  208.758129][   T13] veth1_vlan: left promiscuous mode
[  208.760078][   T13] veth0_vlan: left promiscuous mode
[  209.046099][ T7772] usb usb48-port1: attempt power cycle
[  209.531109][   T13] team0 (unregistering): Port device team_slave_1 removed
[  209.575987][ T5953] Bluetooth: hci2: command tx timeout
[  209.644073][   T13] team0 (unregistering): Port device team_slave_0 removed
[  209.666518][ T7772] usb usb48-port1: unable to enumerate USB device
[  209.731157][ T8504] qrtr: Invalid version 0
[  210.145572][ T8463] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  210.156723][ T6014] lo speed is unknown, defaulting to 1000
[  210.164550][ T6014] infiniband syz2: ib_query_port failed (-19)
[  210.216176][ T8507] netlink: 168 bytes leftover after parsing attributes in process `syz.5.571'.
[  210.233688][ T8463] team0: Port device team_slave_0 added
[  210.244897][ T8463] team0: Port device team_slave_1 added
[  210.279585][ T8463] batman_adv: batadv0: Adding interface: batadv_slave_0
[  210.281910][ T8463] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  210.291915][ T8463] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  210.297120][ T8463] batman_adv: batadv0: Adding interface: batadv_slave_1
[  210.299571][ T8463] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  210.309228][ T8463] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  210.342427][ T8463] hsr_slave_0: entered promiscuous mode
[  210.344726][ T8463] hsr_slave_1: entered promiscuous mode
[  210.346988][ T8463] debugfs: 'hsr0' already exists in 'hsr'
[  210.348816][ T8463] Cannot create hsr debugfs directory
[  210.435260][ T8463] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  210.440026][ T8463] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  210.453356][ T8463] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  210.467336][ T8463] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  210.537258][ T8463] 8021q: adding VLAN 0 to HW filter on device bond0
[  210.558300][ T8463] 8021q: adding VLAN 0 to HW filter on device team0
[  210.571618][ T6413] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.573800][ T6413] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.583549][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.586393][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.695914][   T74] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[  210.725034][ T8463] 8021q: adding VLAN 0 to HW filter on device batadv0
[  210.867060][ T8463] veth0_vlan: entered promiscuous mode
[  210.867128][   T74] usb 5-1: config 0 has no interfaces?
[  210.871364][   T74] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  210.874311][   T74] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.875244][ T8463] veth1_vlan: entered promiscuous mode
[  210.878381][   T74] usb 5-1: config 0 descriptor??
[  210.901784][ T8463] veth0_macvtap: entered promiscuous mode
[  210.910172][ T8463] veth1_macvtap: entered promiscuous mode
[  210.927297][ T8463] batman_adv: batadv0: Interface activated: batadv_slave_0
[  210.937766][ T8463] batman_adv: batadv0: Interface activated: batadv_slave_1
[  210.945725][   T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.949803][   T12] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.953959][   T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.959310][   T12] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.008345][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.011343][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.028286][ T6413] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  211.031292][ T6413] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  211.093134][ T8517] : entered promiscuous mode
[  211.656053][ T5953] Bluetooth: hci2: command tx timeout
[  212.066450][ T8580] netlink: 44 bytes leftover after parsing attributes in process `syz.7.580'.
[  212.140427][ T8583] syzkaller0: entered promiscuous mode
[  212.143201][ T8583] syzkaller0: entered allmulticast mode
[  212.267262][ T8585] FAULT_INJECTION: forcing a failure.
[  212.267262][ T8585] name failslab, interval 1, probability 0, space 0, times 0
[  212.272885][ T8585] CPU: 0 UID: 0 PID: 8585 Comm: syz.1.582 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  212.272936][ T8585] Tainted: [L]=SOFTLOCKUP
[  212.272943][ T8585] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  212.272953][ T8585] Call Trace:
[  212.272960][ T8585]  <TASK>
[  212.272966][ T8585]  dump_stack_lvl+0x16c/0x1f0
[  212.272997][ T8585]  should_fail_ex+0x512/0x640
[  212.273016][ T8585]  ? __kmalloc_noprof+0xca/0x910
[  212.273037][ T8585]  should_failslab+0xc2/0x120
[  212.273065][ T8585]  __kmalloc_noprof+0xeb/0x910
[  212.273083][ T8585]  ? arch_stack_walk+0xa6/0x100
[  212.273102][ T8585]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  212.273137][ T8585]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  212.273166][ T8585]  genl_family_rcv_msg_attrs_parse.constprop.0+0xc8/0x290
[  212.273209][ T8585]  genl_family_rcv_msg_doit+0xbf/0x2f0
[  212.273240][ T8585]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  212.273268][ T8585]  ? genl_get_cmd+0x194/0x580
[  212.273300][ T8585]  ? bpf_lsm_capable+0x9/0x10
[  212.273323][ T8585]  ? security_capable+0x7e/0x260
[  212.273353][ T8585]  ? ns_capable+0xd7/0x110
[  212.273379][ T8585]  genl_rcv_msg+0x55c/0x800
[  212.273399][ T8585]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.273416][ T8585]  ? __pfx_nl80211_pre_doit+0x10/0x10
[  212.273439][ T8585]  ? __pfx_nl80211_set_station+0x10/0x10
[  212.273464][ T8585]  ? __pfx_nl80211_post_doit+0x10/0x10
[  212.273490][ T8585]  ? __lock_acquire+0x436/0x2890
[  212.273511][ T8585]  netlink_rcv_skb+0x158/0x420
[  212.273537][ T8585]  ? __pfx_genl_rcv_msg+0x10/0x10
[  212.273555][ T8585]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  212.273593][ T8585]  ? netlink_deliver_tap+0x1ae/0xd30
[  212.273622][ T8585]  genl_rcv+0x28/0x40
[  212.273647][ T8585]  netlink_unicast+0x5aa/0x870
[  212.273677][ T8585]  ? __pfx_netlink_unicast+0x10/0x10
[  212.273701][ T8585]  ? __pfx___might_resched+0x10/0x10
[  212.273735][ T8585]  netlink_sendmsg+0x8c8/0xdd0
[  212.273763][ T8585]  ? __pfx_netlink_sendmsg+0x10/0x10
[  212.273792][ T8585]  ? aa_sock_msg_perm.constprop.0+0x100/0x1b0
[  212.273823][ T8585]  ____sys_sendmsg+0xa5d/0xc30
[  212.273853][ T8585]  ? __pfx_____sys_sendmsg+0x10/0x10
[  212.273895][ T8585]  ? get_compat_msghdr+0x11a/0x170
[  212.273927][ T8585]  ___sys_sendmsg+0x134/0x1d0
[  212.273951][ T8585]  ? __pfx____sys_sendmsg+0x10/0x10
[  212.273983][ T8585]  ? find_held_lock+0x2b/0x80
[  212.274021][ T8585]  __sys_sendmsg+0x16d/0x220
[  212.274043][ T8585]  ? __pfx___sys_sendmsg+0x10/0x10
[  212.274074][ T8585]  ? __pfx_do_sync_core+0x10/0x10
[  212.274094][ T8585]  ? rcu_is_watching+0x12/0xc0
[  212.274118][ T8585]  ? __pfx_do_sync_core+0x10/0x10
[  212.274142][ T8585]  __do_fast_syscall_32+0xe8/0x680
[  212.274173][ T8585]  do_fast_syscall_32+0x32/0x80
[  212.274188][ T8585]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  212.274215][ T8585] RIP: 0023:0xf6ffd579
[  212.274229][ T8585] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  212.274247][ T8585] RSP: 002b:00000000f53ed55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  212.274264][ T8585] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800004c0
[  212.274274][ T8585] RDX: 0000000000044000 RSI: 0000000000000000 RDI: 0000000000000000
[  212.274285][ T8585] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  212.274295][ T8585] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  212.274305][ T8585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  212.274329][ T8585]  </TASK>
[  213.227398][ T8596] netlink: 'syz.1.585': attribute type 1 has an invalid length.
[  213.230937][ T8596] netlink: 224 bytes leftover after parsing attributes in process `syz.1.585'.
[  213.301383][ T6239] usb 5-1: USB disconnect, device number 3
[  213.735899][ T5953] Bluetooth: hci2: command tx timeout
[  214.093450][ T8613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.591'.
[  214.097582][ T8613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.591'.
[  214.101393][ T8613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.591'.
[  214.618649][ T8628] netlink: 'syz.5.596': attribute type 2 has an invalid length.
[  214.672124][ T8630] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  215.855965][ T5953] Bluetooth: hci2: command tx timeout
[  218.014704][ T8690] autofs: Unknown parameter '00000000000000000000'
[  218.027041][   T40] audit: type=1326 audit(1766923205.918:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.036606][   T40] audit: type=1326 audit(1766923205.918:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.044155][   T40] audit: type=1326 audit(1766923205.918:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.053760][   T40] audit: type=1326 audit(1766923205.918:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.064528][   T40] audit: type=1326 audit(1766923205.918:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.076352][   T40] audit: type=1326 audit(1766923205.918:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.084104][   T40] audit: type=1326 audit(1766923205.918:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.093859][   T40] audit: type=1326 audit(1766923205.918:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.102953][   T40] audit: type=1326 audit(1766923205.918:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.111852][   T40] audit: type=1326 audit(1766923205.918:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8676 comm="syz.1.614" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6ffd579 code=0x7fc00000
[  218.541306][ T8702] netlink: 'syz.1.618': attribute type 4 has an invalid length.
[  218.577308][ T8702] netlink: 'syz.1.618': attribute type 4 has an invalid length.
[  219.862068][ T5953] Bluetooth: hci3: Malformed Event: 0x13
[  220.726790][ T8744] netlink: 'syz.7.627': attribute type 1 has an invalid length.
[  220.997809][ T8751] netlink: 8 bytes leftover after parsing attributes in process `syz.1.629'.
[  221.009152][ T8753] FAULT_INJECTION: forcing a failure.
[  221.009152][ T8753] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  221.013938][ T8753] CPU: 3 UID: 0 PID: 8753 Comm: syz.5.630 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  221.013959][ T8753] Tainted: [L]=SOFTLOCKUP
[  221.013964][ T8753] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  221.013970][ T8753] Call Trace:
[  221.013975][ T8753]  <TASK>
[  221.013980][ T8753]  dump_stack_lvl+0x16c/0x1f0
[  221.014001][ T8753]  should_fail_ex+0x512/0x640
[  221.014016][ T8753]  _copy_from_user+0x2e/0xd0
[  221.014028][ T8753]  get_compat_msghdr+0xa7/0x170
[  221.014043][ T8753]  ? __pfx_get_compat_msghdr+0x10/0x10
[  221.014058][ T8753]  ? __lock_acquire+0x436/0x2890
[  221.014071][ T8753]  ___sys_recvmsg+0x191/0x1a0
[  221.014085][ T8753]  ? __pfx____sys_recvmsg+0x10/0x10
[  221.014101][ T8753]  ? find_held_lock+0x2b/0x80
[  221.014122][ T8753]  do_recvmmsg+0x55d/0x750
[  221.014138][ T8753]  ? __pfx_do_recvmmsg+0x10/0x10
[  221.014160][ T8753]  ? __fget_files+0x20e/0x3c0
[  221.014177][ T8753]  __sys_recvmmsg+0x21c/0x280
[  221.014192][ T8753]  ? __pfx___sys_recvmmsg+0x10/0x10
[  221.014207][ T8753]  ? __pfx_ksys_write+0x10/0x10
[  221.014225][ T8753]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  221.014240][ T8753]  ? __do_fast_syscall_32+0x9a/0x680
[  221.014258][ T8753]  ? lockdep_hardirqs_on+0x7c/0x110
[  221.014274][ T8753]  __do_fast_syscall_32+0xe8/0x680
[  221.014292][ T8753]  do_fast_syscall_32+0x32/0x80
[  221.014301][ T8753]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  221.014315][ T8753] RIP: 0023:0xf7ff1579
[  221.014324][ T8753] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  221.014335][ T8753] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  221.014346][ T8753] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080002440
[  221.014353][ T8753] RDX: 00000000ffffff67 RSI: 0000000000000000 RDI: 0000000000000000
[  221.014359][ T8753] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  221.014365][ T8753] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  221.014371][ T8753] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  221.014384][ T8753]  </TASK>
[  225.414073][ T8824] autofs: Unknown parameter 'fd00000000000000000000'
[  225.566229][   T40] kauditd_printk_skb: 684 callbacks suppressed
[  225.566553][   T40] audit: type=1326 audit(1766923213.448:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8823 comm="syz.0.643" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf701d579 code=0x0
[  225.766423][ T8835] FAULT_INJECTION: forcing a failure.
[  225.766423][ T8835] name failslab, interval 1, probability 0, space 0, times 0
[  225.771942][ T8835] CPU: 2 UID: 0 PID: 8835 Comm: syz.7.646 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  225.771984][ T8835] Tainted: [L]=SOFTLOCKUP
[  225.771989][ T8835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  225.771999][ T8835] Call Trace:
[  225.772005][ T8835]  <TASK>
[  225.772017][ T8835]  dump_stack_lvl+0x16c/0x1f0
[  225.772049][ T8835]  should_fail_ex+0x512/0x640
[  225.772067][ T8835]  ? kmem_cache_alloc_noprof+0x62/0x770
[  225.772089][ T8835]  should_failslab+0xc2/0x120
[  225.772117][ T8835]  kmem_cache_alloc_noprof+0x83/0x770
[  225.772139][ T8835]  ? __mutex_unlock_slowpath+0x161/0x790
[  225.772168][ T8835]  ? getname_flags.part.0+0x4c/0x550
[  225.772194][ T8835]  ? getname_flags.part.0+0x4c/0x550
[  225.772214][ T8835]  getname_flags.part.0+0x4c/0x550
[  225.772236][ T8835]  getname_flags+0x93/0xf0
[  225.772262][ T8835]  user_path_at+0x24/0x60
[  225.772289][ T8835]  __ia32_sys_mount+0x1fa/0x310
[  225.772307][ T8835]  ? __pfx___ia32_sys_mount+0x10/0x10
[  225.772324][ T8835]  ? do_user_addr_fault+0x843/0x1370
[  225.772351][ T8835]  __do_fast_syscall_32+0xe8/0x680
[  225.772382][ T8835]  do_fast_syscall_32+0x32/0x80
[  225.772399][ T8835]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  225.772423][ T8835] RIP: 0023:0xf70cd579
[  225.772437][ T8835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  225.772453][ T8835] RSP: 002b:00000000f54bd55c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  225.772474][ T8835] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000800006c0
[  225.772484][ T8835] RDX: 0000000000000000 RSI: 0000000001000810 RDI: 0000000000000000
[  225.772496][ T8835] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  225.772507][ T8835] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  225.772518][ T8835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  225.772541][ T8835]  </TASK>
[  226.289230][ T5067] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.367298][ T5067] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.442520][ T5067] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.454987][ T5940] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  226.460968][ T5940] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  226.463992][ T5940] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  226.469071][ T5940] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  226.472248][ T5940] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  226.538767][ T8853] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  226.540207][ T5067] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  226.541113][ T8853] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  226.541269][ T8853] vhci_hcd vhci_hcd.0: Device attached
[  226.704241][ T8848] chnl_net:caif_netlink_parms(): no params data found
[  227.001180][   T59] vhci_hcd vhci_hcd.1: vhci_device speed not set
[  227.029511][ T8865] 
[  227.030377][ T8865] ======================================================
[  227.032679][ T8865] WARNING: possible circular locking dependency detected
[  227.035044][ T8865] syzkaller #0 Tainted: G             L     
[  227.037144][ T8865] ------------------------------------------------------
[  227.039437][ T8865] syz.5.654/8865 is trying to acquire lock:
[  227.041411][ T8865] ffff8880287d6888 (&of->mutex){+.+.}-{4:4}, at: kernfs_seq_start+0x4f/0x2a0
[  227.044303][ T8865] 
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  227.044303][ T8865] but task is already holding lock:
[  227.047009][ T8865] ffff8880288fcc30 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[  227.049969][ T8865] 
[  227.049969][ T8865] which lock already depends on the new lock.
[  227.049969][ T8865] 
[  227.053388][ T8865] 
[  227.053388][ T8865] the existing dependency chain (in reverse order) is:
[  227.056344][ T8865] 
[  227.056344][ T8865] -> #3 (&p->lock){+.+.}-{4:4}:
[  227.058672][ T8865]        __mutex_lock+0x1aa/0x1ca0
[  227.060380][ T8865]        seq_read_iter+0xe1/0x12d0
[  227.062129][ T8865]        kernfs_fop_read_iter+0x46c/0x610
[  227.064039][ T8865]        copy_splice_read+0x618/0xc20
[  227.065874][ T8865]        do_splice_read+0x285/0x370
[  227.066031][   T59] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  227.067601][ T8865]        splice_file_to_pipe+0x109/0x120
[  227.072755][ T8865]        do_sendfile+0x400/0xe50
[  227.074443][ T8865]        __ia32_compat_sys_sendfile+0x1e5/0x220
[  227.076559][ T8865]        __do_fast_syscall_32+0xe8/0x680
[  227.078449][ T8865]        do_fast_syscall_32+0x32/0x80
[  227.080259][ T8865]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.082635][ T8865] 
[  227.082635][ T8865] -> #2 (&pipe->mutex){+.+.}-{4:4}:
[  227.085239][ T8865]        __mutex_lock+0x1aa/0x1ca0
[  227.086954][ T8865]        anon_pipe_write+0x15d/0x1bd0
[  227.088728][ T8865]        __kernel_write_iter+0x720/0xb10
[  227.090593][ T8865]        __kernel_write+0xf5/0x140
[  227.092293][ T8865]        autofs_notify_daemon+0x4db/0xd60
[  227.094353][ T8865]        autofs_wait+0x10f3/0x1ac0
[  227.096235][ T8865]        autofs_mount_wait+0x132/0x3c0
[  227.098062][ T8865]        autofs_d_automount+0x4b2/0x960
[  227.099898][ T8865]        __traverse_mounts+0x1b9/0x830
[  227.101824][ T8865]        step_into_slowpath+0x772/0xf50
[  227.103656][ T8865]        path_lookupat+0x627/0xc40
[  227.105369][ T8865]        filename_lookup+0x224/0x5f0
[  227.107152][ T8865]        kern_path+0x35/0x50
[  227.108693][ T8865]        lookup_bdev+0xd8/0x280
[  227.110327][ T8865]        resume_store+0x1d6/0x490
[  227.112013][ T8865]        kobj_attr_store+0x58/0x80
[  227.113736][ T8865]        sysfs_kf_write+0xf2/0x150
[  227.115436][ T8865]        kernfs_fop_write_iter+0x3af/0x570
[  227.117405][ T8865]        vfs_write+0x7d3/0x11d0
[  227.119032][ T8865]        ksys_write+0x12a/0x250
[  227.120671][ T8865]        __do_fast_syscall_32+0xe8/0x680
[  227.122549][ T8865]        do_fast_syscall_32+0x32/0x80
[  227.124327][ T8865]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.126617][ T8865] 
[  227.126617][ T8865] -> #1 (&sbi->pipe_mutex){+.+.}-{4:4}:
[  227.129198][ T8865]        __mutex_lock+0x1aa/0x1ca0
[  227.130920][ T8865]        autofs_notify_daemon+0x4a6/0xd60
[  227.132786][ T8865]        autofs_wait+0x10f3/0x1ac0
[  227.134475][ T8865]        autofs_mount_wait+0x132/0x3c0
[  227.136304][ T8865]        autofs_d_automount+0x4b2/0x960
[  227.138134][ T8865]        __traverse_mounts+0x1b9/0x830
[  227.139923][ T8865]        step_into_slowpath+0x772/0xf50
[  227.141794][ T8865]        path_lookupat+0x627/0xc40
[  227.143484][ T8865]        filename_lookup+0x224/0x5f0
[  227.145257][ T8865]        kern_path+0x35/0x50
[  227.146824][ T8865]        lookup_bdev+0xd8/0x280
[  227.148432][ T8865]        resume_store+0x1d6/0x490
[  227.150107][ T8865]        kobj_attr_store+0x58/0x80
[  227.151823][ T8865]        sysfs_kf_write+0xf2/0x150
[  227.153531][ T8865]        kernfs_fop_write_iter+0x3af/0x570
[  227.155459][ T8865]        vfs_write+0x7d3/0x11d0
[  227.157102][ T8865]        ksys_write+0x12a/0x250
[  227.158717][ T8865]        __do_fast_syscall_32+0xe8/0x680
[  227.160573][ T8865]        do_fast_syscall_32+0x32/0x80
[  227.162495][ T8865]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.164859][ T8865] 
[  227.164859][ T8865] -> #0 (&of->mutex){+.+.}-{4:4}:
[  227.167245][ T8865]        __lock_acquire+0x1669/0x2890
[  227.169019][ T8865]        lock_acquire+0x179/0x330
[  227.170686][ T8865]        __mutex_lock+0x1aa/0x1ca0
[  227.172372][ T8865]        kernfs_seq_start+0x4f/0x2a0
[  227.174110][ T8865]        seq_read_iter+0x2c1/0x12d0
[  227.175848][ T8865]        kernfs_fop_read_iter+0x46c/0x610
[  227.177707][ T8865]        copy_splice_read+0x618/0xc20
[  227.179463][ T8865]        do_splice_read+0x285/0x370
[  227.181197][ T8865]        splice_file_to_pipe+0x109/0x120
[  227.183033][ T8865]        do_sendfile+0x400/0xe50
[  227.184657][ T8865]        __ia32_compat_sys_sendfile+0x1e5/0x220
[  227.186727][ T8865]        __do_fast_syscall_32+0xe8/0x680
[  227.188565][ T8865]        do_fast_syscall_32+0x32/0x80
[  227.190336][ T8865]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.192535][ T8865] 
[  227.192535][ T8865] other info that might help us debug this:
[  227.192535][ T8865] 
[  227.195871][ T8865] Chain exists of:
[  227.195871][ T8865]   &of->mutex --> &pipe->mutex --> &p->lock
[  227.195871][ T8865] 
[  227.199789][ T8865]  Possible unsafe locking scenario:
[  227.199789][ T8865] 
[  227.202252][ T8865]        CPU0                    CPU1
[  227.204008][ T8865]        ----                    ----
[  227.205796][ T8865]   lock(&p->lock);
[  227.207080][ T8865]                                lock(&pipe->mutex);
[  227.209392][ T8865]                                lock(&p->lock);
[  227.211631][ T8865]   lock(&of->mutex);
[  227.213026][ T8865] 
[  227.213026][ T8865]  *** DEADLOCK ***
[  227.213026][ T8865] 
[  227.215702][ T8865] 2 locks held by syz.5.654/8865:
[  227.217414][ T8865]  #0: ffff888051358068 (&pipe->mutex){+.+.}-{4:4}, at: pipe_lock+0x64/0x80
[  227.220255][ T8865]  #1: ffff8880288fcc30 (&p->lock){+.+.}-{4:4}, at: seq_read_iter+0xe1/0x12d0
[  227.223206][ T8865] 
[  227.223206][ T8865] stack backtrace:
[  227.225168][ T8865] CPU: 1 UID: 0 PID: 8865 Comm: syz.5.654 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  227.225185][ T8865] Tainted: [L]=SOFTLOCKUP
[  227.225189][ T8865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  227.225197][ T8865] Call Trace:
[  227.225202][ T8865]  <TASK>
[  227.225208][ T8865]  dump_stack_lvl+0x116/0x1f0
[  227.225227][ T8865]  print_circular_bug+0x275/0x340
[  227.225247][ T8865]  check_noncircular+0x146/0x160
[  227.225266][ T8865]  __lock_acquire+0x1669/0x2890
[  227.225278][ T8865]  ? __kvmalloc_node_noprof+0x3ac/0xa40
[  227.225293][ T8865]  ? kernfs_fop_read_iter+0x46c/0x610
[  227.225311][ T8865]  lock_acquire+0x179/0x330
[  227.225321][ T8865]  ? kernfs_seq_start+0x4f/0x2a0
[  227.225337][ T8865]  ? __pfx___might_resched+0x10/0x10
[  227.225355][ T8865]  __mutex_lock+0x1aa/0x1ca0
[  227.225371][ T8865]  ? kernfs_seq_start+0x4f/0x2a0
[  227.225387][ T8865]  ? kernfs_seq_start+0x4f/0x2a0
[  227.225403][ T8865]  ? __pfx___mutex_lock+0x10/0x10
[  227.225422][ T8865]  ? rcu_is_watching+0x12/0xc0
[  227.225437][ T8865]  ? trace_kmalloc+0x2b/0xb0
[  227.225452][ T8865]  ? __kvmalloc_node_noprof+0x3c9/0xa40
[  227.225468][ T8865]  ? kernfs_seq_start+0x4f/0x2a0
[  227.225483][ T8865]  kernfs_seq_start+0x4f/0x2a0
[  227.225500][ T8865]  seq_read_iter+0x2c1/0x12d0
[  227.225515][ T8865]  ? __pfx_alloc_pages_bulk_noprof+0x10/0x10
[  227.225531][ T8865]  kernfs_fop_read_iter+0x46c/0x610
[  227.225550][ T8865]  copy_splice_read+0x618/0xc20
[  227.225568][ T8865]  ? __pfx_aa_file_perm+0x10/0x10
[  227.225584][ T8865]  ? __pfx_copy_splice_read+0x10/0x10
[  227.225602][ T8865]  ? __fget_files+0x204/0x3c0
[  227.225618][ T8865]  ? __pfx_copy_splice_read+0x10/0x10
[  227.225633][ T8865]  do_splice_read+0x285/0x370
[  227.225649][ T8865]  splice_file_to_pipe+0x109/0x120
[  227.225667][ T8865]  do_sendfile+0x400/0xe50
[  227.225683][ T8865]  ? __pfx_do_sendfile+0x10/0x10
[  227.225698][ T8865]  ? __pfx___seccomp_filter+0x10/0x10
[  227.225712][ T8865]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  227.225723][ T8865]  ? xfd_validate_state+0x61/0x180
[  227.225733][ T8865]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  227.225745][ T8865]  ? __secure_computing+0x21c/0x320
[  227.225758][ T8865]  __do_fast_syscall_32+0xe8/0x680
[  227.225777][ T8865]  do_fast_syscall_32+0x32/0x80
[  227.225787][ T8865]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  227.225801][ T8865] RIP: 0023:0xf7ff1579
[  227.225816][ T8865] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  227.225827][ T8865] RSP: 002b:00000000f54e655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  227.225839][ T8865] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000004
[  227.225845][ T8865] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000
[  227.225852][ T8865] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  227.225858][ T8865] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  227.225865][ T8865] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  227.225874][ T8865]  </TASK>
[  227.350961][ T8848] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.355692][ T8848] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.358407][ T8848] bridge_slave_0: entered allmulticast mode
[  227.360882][ T8848] bridge_slave_0: entered promiscuous mode
[  227.389335][ T5067] bridge_slave_1: left allmulticast mode
[  227.393186][ T5067] bridge_slave_1: left promiscuous mode
[  227.395347][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.413832][ T5067] bridge_slave_0: left allmulticast mode
[  227.422224][ T5067] bridge_slave_0: left promiscuous mode
[  227.424196][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.659819][ T5067] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  227.663949][ T5067] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  227.668578][ T5067] bond0 (unregistering): Released all slaves
[  227.776897][ T8854] vhci_hcd: connection reset by peer
[  227.797372][   T12] vhci_hcd vhci_hcd.1: stop threads
[  227.799429][   T12] vhci_hcd vhci_hcd.1: release socket
[  227.801595][   T12] vhci_hcd vhci_hcd.1: disconnect device
[  227.979593][ T5067] hsr_slave_0: left promiscuous mode
[  227.982420][ T5067] hsr_slave_1: left promiscuous mode
[  227.985105][ T5067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  227.988746][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  227.992562][ T5067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  227.997476][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.002884][ T5067] veth1_macvtap: left promiscuous mode
[  228.005050][ T5067] veth0_macvtap: left promiscuous mode
[  228.008570][ T5067] veth1_vlan: left promiscuous mode
[  228.010397][ T5067] veth0_vlan: left promiscuous mode
[  228.150933][ T5067] team0 (unregistering): Port device team_slave_1 removed
[  228.168667][ T5067] team0 (unregistering): Port device team_slave_0 removed
[  228.783082][ T5067] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.858574][ T5067] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.929278][ T5067] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  228.979637][ T5067] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  229.325000][ T5067] erspan0: left allmulticast mode
[  229.327927][ T5067] erspan0: left promiscuous mode
[  229.330359][ T5067] bridge0: port 3(erspan0) entered disabled state
[  229.336805][ T5067] bridge_slave_1: left allmulticast mode
[  229.339269][ T5067] bridge_slave_1: left promiscuous mode
[  229.341843][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.348247][ T5067] bridge_slave_0: left allmulticast mode
[  229.350615][ T5067] bridge_slave_0: left promiscuous mode
[  229.353068][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.359644][ T5067] bridge_slave_1: left allmulticast mode
[  229.363901][ T5067] bridge_slave_1: left promiscuous mode
[  229.367020][ T5067] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.371202][ T5067] bridge_slave_0: left allmulticast mode
[  229.373268][ T5067] bridge_slave_0: left promiscuous mode
[  229.375305][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.384360][ T5067] bridge_slave_0: left allmulticast mode
[  229.387738][ T5067] bridge_slave_0: left promiscuous mode
[  229.389955][ T5067] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.571683][ T5067] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  229.578034][ T5067] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  229.581516][ T5067] bond0 (unregistering): Released all slaves
[  229.638265][ T5067] bond1 (unregistering): Released all slaves
[  229.703342][ T5067] batman_adv: batadv0: Removing interface: gretap1
[  229.986229][ T5067] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  229.989795][ T5067] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  229.993058][ T5067] bond0 (unregistering): Released all slaves
[  230.068934][ T5067] bond1 (unregistering): (slave dummy0): Releasing backup interface
[  230.072985][ T5067] bond1 (unregistering): Released all slaves
[  230.160403][ T5067] bond0 (unregistering): Released all slaves
[  230.221434][ T5067] : left promiscuous mode
[  230.988065][ T5067] hsr_slave_0: left promiscuous mode
[  230.990885][ T5067] hsr_slave_1: left promiscuous mode
[  230.994027][ T5067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  231.000457][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.003907][ T5067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  231.009397][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.015107][ T5067] hsr_slave_0: left promiscuous mode
[  231.017824][ T5067] hsr_slave_1: left promiscuous mode
[  231.020449][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  231.023788][ T5067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  231.029856][ T5067] veth1_macvtap: left promiscuous mode
[  231.032233][ T5067] veth0_macvtap: left promiscuous mode
[  231.034622][ T5067] veth1_vlan: left promiscuous mode
[  231.037040][ T5067] veth0_vlan: left promiscuous mode
[  231.186045][ T5067] team0 (unregistering): Port device team_slave_1 removed
[  231.202356][ T5067] team0 (unregistering): Port device team_slave_0 removed
[  231.539539][ T5067] team0 (unregistering): Port device team_slave_1 removed
[  231.569324][ T5067] team0 (unregistering): Port device team_slave_0 removed
[  232.206168][   T59] vhci_hcd vhci_hcd.1: vhci_device speed not set