last executing test programs:

1m14.664610797s ago: executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4048aecb, 0x0)

1m14.023371285s ago: executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYRESDEC=r1], 0x24}}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_emit_ethernet(0x36, &(0x7f0000001800)=ANY=[@ANYBLOB], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
r4 = socket(0x8000000010, 0x2, 0x0)
write(r4, &(0x7f00000002c0)="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", 0xfc)
r5 = socket(0x840000000002, 0x3, 0x100)
lseek(r3, 0x3, 0x3)
connect$inet(r5, &(0x7f00000005c0)={0x2, 0x4e24, @loopback}, 0x10)
r6 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSARP(r6, 0x8955, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x20000010304, @dev}, 0x4, {0x2, 0x0, @multicast1=0xe000cc02}})
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0)
r7 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000280), 0x40000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r7, 0x1, &(0x7f00000003c0), 0x0)
r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_NESTED_STATE(r8, 0x4080aebf, &(0x7f0000003680)={{0x0, 0x0, 0xffffffffffffff40}, "cb31455c9ea4288a70a2a6bb8068fd95dd041cf5b177a3bffe992dfbbdf959487337b92336ce1de32e7695c411c0bf9f852d2d71192f33001fd51f5b396a55cb98699a09d21648c4cb30d9d7e3e397c7a3c041c76c72385a46c48c5302848c3696facce956952c2a85822ddf20434ccee5806294ed563ff3a972cddf6ef16ddace933d8a5adea40cd3ad40c9873c29368838e815ff59723519154856b2d5cd9cd79a97dc2fa08dada1175817886e5f9e7aa3dca783a44c667a4806826570ec6acb57d65efc313a384e11fb633dee17ee600145f2cb3103384606140021be766fcb7fa029f0513bbb466177ca1068192550bbf4e6f5694aec747a16e27688a988fa595bca1761b8e88a7dbcaeaf97a8b7b53058b1faf880dd6f1b6eb4c7beb0582b4007f1a67db1352407adbe1456bf762c94fd825b9419d74f63cdeb6c6976de1890d773f0c8088d2bd48a838cf5b87f5ddf926352960fb978874b0f175acfa55ddfe84de3fc9f75b58bf7a35f33d3c43ed5e3224e92751fa1b43f94f64b681163ef1360a3f3bb7403afc67a188b2104b45c5814aaa9e218552498bf85f4b221d9acc32a331f5f8c109cc9f335ff4e418ab30b54b99d5376cd928c431fc8211fcbaf64716afdc4b6d0417e04d5723e4675d282b36bef3a3a19e855029ec7c33830a6df19332b63e9d8a0f22d96ac230c67657a4e7f7afab91dc0ce751b68980e5a4f6d9d6d9b98802ba9d8576640eea61b8c308a1745df61560e56108bececa3016d93246fdc8b768634e8319b1ffde103c07378f8f4927baba05e992a4b5af0958a7e495e7ce53f7917451d15a963ca14f5cdc4563775688b6533a4b97e0f84b0a33c30077b20805c1f42cc7815efada97ad59ac486bc9e0ee386b49cb97b47fbf8f919f06c75a49636795054b5ebee3e91602c90d7f4db49220affe56d56b96e4f662b2bf36dae482ffc7ba21cbc55e21b73309d6b7aa5509defcb77c236e43b579c61eae5c8d8f8fa71ad876b96069f2e4352c8aaf16e299d21edf5434c0cd9b25cdc9210fb0de759b1dd3fc7fe4c7118bbde72a5617dff21f7a5036448fba7fe41aaee0c289cd076d757e47b0713b236f6f141ba0112c9312b3ec853aabafdf1eb2cbb517d2d7352725f557214d27d9a340af0128fc960a4ea64c933b0d8dd226b6e024471aaac8a7074b2a8695ab990fabba5bf315d246fbfe4260f1fffe54814e33b6235c5b4095437298858909bcbd40a8a286d1bedb06b7b1775bce0a5bca19b0a5c2fa8dbf87b55ae0a43c5086422e5bacb94047e150451f5996420b0d4a697f59decb49900b2b9c13aade536933e14d672c21a35cb68572c3de02f3147414eff4b8674b91f7aebf35f056a8d388f67f8ef7cfaf6b28fe745831ef41def1839791647016932c70685752851327f1837d2f1e9d8f93443eefed2317119c8152ca451a5d3aeb253fb484283f52e5db9f61f059ad3c217a860ee0571d254483501b00699208c7fa5571cf58b9715c954115bc2db0af28361938bb95ced7370c8cbb6141ef62fdbf369dfc4eccd98ab9886d79a52cbf91a27dd0f4b29940492e860fb94654dea54fad6290570760e3b59a0cf28053732472dc313b5fedfc583fc702a880971dc61286370aaf167810455cce7654dc4325a41d9d1944abcdc4d81378f1e96a8f94cd95b886a01f086e379601504219d57d531ba34e1ba0905785fb629c61f6b940a652cdee9dbef12b7fcde087b92816db3386a5769049ba00788e31de4ddbb8b56de1fbe3a5e671728effda7cfd0b650cf5df2faf22470812efbbb548e47cbf36c64e05a7877820f08948ceedb35e12a4a143ee0101a7bf0a00a4062b50c39020669700adf739a6f75352a45fd1373d3e85c3867170373f0c7a794d8590f4c22ae62d438ec365b0f6a15cb2ffe0fc6f57185e1760761bd4370027c01dfad0502f00b6898115df3c530d0b0b4a64e623fd580b528a733e4c881cf5843a975a97f92a7833527887c79fa8eec82b9526a15c6c5f2972083ce8aec735810580ffa4ea2cef4823aee044dd70927f7c07bba18b930006aa86ae7399ac6b4c24bc9d6a6ab0c5b428d7255d4d983eadf97e10c1b00867da29ac981acb453073a37236e7ae808e7759b2e0cffc3ec43afb1e95cd090a7d4b9225a0e3cbebfe49b93846ab603891e2da7d85a04bf42d12d16a97c965bc4911d3ba7a9ca505794d8744fef00a436089de67aa8b480070230dfb002eb91edaff428d4908a87afae418dff7ca59aefe1ad8f6935f309fe7985c2310881659c60a66a5e50242497ba1cd5d2bd79496ccd23f9fd901afc6622829cb3701caa50f96e09e3b23bfa3181b74ec7dae2e42c9caab43e49ae1d922a1a1eb3682de026323d9215fcec42c54401a1af81450830a4b784ed1c7922734bf3632409147680dd3fabcef296353705bb5c0e650e12905a05db1e7923923a96ddc783fc1ed46e2010416c37d9d149ad73e808bd6e4464f62893024a8501803b6c88fc55c8bbc1da7cbf580b5a81fb7c61455ae3a8aaec303fba12e0f2b51ed5e8bd31db40e8bdbd00e7b1ddd364766c974d813d86fc88a27bf82bba60c62e5f0f6af6bda3390f8e72a2811baf3d6325e70d9a3b59cab1abe95290ecb87985567e1243504c038de9d4d100ea64eec45208cd8d2474e646f7d81eed6d59b8b0859552b6fc088d874cde3e75ee30243dc9d88ed5b577851a5bd9e2a453287025777fcac19ac33e1c94b4ad272f1055b16b842a6bd6168fb45f1f74ed2467020df5431068a5f2cbeaa6ac1841308c7c9f752aa06927f91fdf18ef9d9e942367e5ecac0abf4d3b8fc7b80238c0e7faf2ea7d3f5271028fc558a44799bde63168becc67c5531e843336fb16ab618d37f95a91937b824bf896b044146bc3a5e264a8f23ddd00729cd9aa56d9a9a24b7ab96ae021b193d8874d43ff4b723d86b7564e550378599c3e0c7a2b3d447ad76eb4cd699733d970a5ab218429a1af81df9c8013d6d16a6bcb019f6ace4461cdaa785d20ea027cfa53d521bb91ad2c04aaa6c0f268b14924803977633280c7b7beb14c88fae542b7a13e96253259e7296e37276da88891c14664340e84ae732edbd71e67047e476735b220ca231de31a380ece372db632ec3cb3ef5ac97ec41148febd2acb15cde1ee5e990ea0aaa95c2df39e2111dd1185d14a194e22d34fda8f54e99d3a73e5a231682c726d40816e048c1d059bf3bb9ee2b5f895365d95aa28f6adbf6e16469926b4d8ee7f04c7dbafaa444df5b88596c17874f0efe35e5ada1a69634f4b430f852d33b032f823c5deb54f47a7a4adb1adf56d5440b7a917580004c13e0b36c8e0a203a2be3f8fffd9efef3af19389a12c67859d4381ac0a02da18e25931b41216b731de25e1245482c84d45de1cddbce2109322a3428bff692012573fe9efd02109dbf35c5d3a287dec105cf3f1a2e5f0b1cc08c7b4759766d25d0f7b42c3ea8bf8101e61159a2ba7602e9c7947cf936ac39bf59b24084709fd61d704bbdba7d282aac778b7ec1dcaf984527c8112d56e75ab774d1598d9816abc77b0e693880beca5f330c626774ab5cb6967fb0ea8e14efce120947092c3b6f8a22f07cad22e971418092481fcad36ecf0cfd6bc3864115b8507c13554584f1f6fee5ee07eb6a091638d8e7781c1c006166e0f987f9f4de535e9f3df1db8c9328e9a19a73c76059ab4edfe9eda7f16cc6b869229bafb179d194e20ccc6f9338183b673de8138ddab9a0907278f6eaacc55bf59a450ebc10e0b88c82d9f0deca86ff771f46509250fde94e0c94256b77616d099862ddc9b341838d634a9dc4b55a88fcc6248901135f6aa76365433e7e534e0e5ae8eec2a63df62c3e244a40481189ff54122698c7e2da2c829b2eec9efc9894ee05be04ae6dd48406eaace17827e38bf38b414059aded0343e0711a8d864ff41a8d9ed40fb2aa1a3f4014f691cd0e8af62445a021820ff03afa8a192ee255862f306851df1de96ce36cafb6a60b7069db7aa96fd1ffb2fb01e6247f770304dffe4b1c8d0eeb336dd6806d6ab5d418953b1cae7cbbf53766b61e4aad5cfce8255b78af26f9bd11283a9c7d12cd63b82cd2b506fd4061d1e16fc7c713d80763c3b0aa0faadcd9b7d676101aad80e1ca00369297e1f714003ab8d0b545c335014a522a25a767950963ef821425b79b521076166d0df3ef358c7d60d99cc85463c186e8faf16af79785680382e4cc93f6594f8c4461e0988c08717640df24a5f357db22432fcae21702dc792d201212fb3791e0164bb3d433a8268ec96df73766fdba42965e00e619246cba5d96eb853a7c22c34d2fe5e5d3f3ccf9c627d069517b743cd07f6f7b444074bb9a50269f2e03309c58930e56a9583eb00c37fbcdd391972261f41756c10c8899fcd036e2017e088ef9e6ec31f795d55b3bba214c53c98fc9318e4ade0e7e6fd259aa277fed54c27e5210787a5f6937f56fdbe1da5113f059061ca590ddf536a55cb91ac6ed41cb9c0418b115b29f5e823c1b0ee7c2b3982087763545b34e2c945d587ebce69bbe299a7f52b674f351977370fc700474bc15d7e6ef98c14258ecf401a4f3bba1a9aa76c5ab0b8819fe6efe3fba1899909e5e48554299150ee272451b56142d12ae2bb4942db430239701d494917f2c939a6fb9d98d4751a6f2c4537ec870342d223343a9bd7b8d8c99aff8cbfa298395551185f35dec120228073a1e496a58b59d9ac5986249a7c6db9398395cbf341c08ee910700e2daa042dba1846fef59c72ce872bba2046a14fcf9a47a5686d62bfba76309a9865c26e5fa41dd872fc749fdc57953105ace4978f9eb788c8d061c853ad0313e51e732c5d7bc05e752443c8e99b8e81c688befdb5b14c3cc2f96eb8ce8290303e483992fcbece1ff278d0dc036ad437b6cbc695c7741ba4556e242146d40843c73deaf8fceba40e4a4acd739b3031848b17a210a1ff0dc1908b77c4bb94543af52e1fe2a090c8f217428d02336303f7952c3ddefa7c81850676e7f4cc3d32c3937281fa5ab279c3fe39f92ba077dadb8c2c3df17cc511bd33c41cb161d24aea154f0f5902c94b56fe072d321a983668bd9f4838878e66ec44cb233d7d0ca908a794c844ff8b3ba4c57f6c5fc2f3a54db448b013f0c4998bbc6ed0409b3368391cb28c6df4a909fff90f308ff38c758ff7d8a2920bc221236d89b3b76de44e8ce649b32f5135a0217ba9036a8edddee97d7ba15f2c21fb7d3cae3eb6ef09dd03eed650489c83b5ba5dd9daf7a86cf0544fb8a58e46b860e3e42e10cd6f1c4f81179eb2c3ba611793a32abb4c0768db90e8bdd1694efaa9c2b45c89d203fdfb8b926b6a0d666d91b93065a83184fc2065961f2308056241b66f427c0f0aabc75852c90f0624cf036d537032ca8d73325d2ae2a79a7292c240c34584bb881fe5d468a051cbc0bde061f9eddfb758cd2dfba296eef549e5c4ede097111216a0ec60f90e8d6f5dd843c82e15f505f8c74e854ba9cd386249d552978eb8135a5f8c79c3ceb8dd5828b0218ffe40f375d6cf3ff2f47c276c8169ab98336582a852c1535018fb2306aca6b8c9f9e38d64c66a722762b76c69d4ca6c14bd6992549e4eec17287fce194467f972d9200c3d1ac4fd4a8f2620e2e4281d28c099946ed90789ba122705326390d3e058ceed24044e542efb36416272eadf6304f30efa0b7bc1ae5be92fe50e591ee6f725726e917ec113506920beb2aa53b39f1d76b31500", "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"})
socket$nl_netfilter(0x10, 0x3, 0xc)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

1m7.806272265s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00003f9000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
r3 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1000801, &(0x7f00000000c0)=ANY=[@ANYRES64=r3], 0x23, 0x203, &(0x7f0000000ec0)="$eJzsmT+IE0EUxr+Z3ducQQQbCxEsPDCit9ndqFxzhYKlIJx/GyF463G6d5FkhcuBRbCxsbQQbG0sLSxSWdjZ2WqhgmBhKrHUkZmdzU52k6BJlMC9H9zcN+/NvJn3MrxmQRDEnuXzpx8fH59fuXwKwH4soaTtX61sDTfWf3h6/+ST1QvPXr5//mb7wINuPh4DIMSfny9jv36RzYUY3L0E/BQJUiuugOOE1tfA4FrGZr07BMMNbb6jNFO6sU8bo5DdakTrtzej0JODL4dADjUgu4INoNdhWAewqI9gxv1a7d279QhoJiIKU7Eg0nMKrr8V4+qn7neOY9Uogazp9UcPO3LuarsH3q+fDw5f6xoY1rReQQmu62YlMfI/bGfxrUL+M0jyX4iDywXXTSsRQvwSk0dOs9eWq98H12RvbA6K8F+EzHa2kY+McMnaTnkEy1tY9lO22od63bfFXV/mo84TCdW4ABRc78pRdHGKyI5+54OuSjnXn5gNHDf6kw2776/GW/eqrfbu8uZWfSPcCLeDoHbWO+15Z4KqakTJOKb/Lar+VDbiL4xY6zAHO/U4bvo7QNz0+/MgGY2Ou/aq8U3t4ar/cVSOJTHkU1Fpl4afwfQfV/+lqlgjL08QBEEQBEEQBEEQBEEQBDEWJzc/Cgb9xYyl38SGEFxSq38HAAD//9jrahY=")
syz_emit_vhci(0x0, 0x7)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x0, 0x0}, 0x10)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r4, 0x4b52, &(0x7f0000000000))
syz_read_part_table(0x105b, &(0x7f0000001700)="$eJzsz8FNw0AQBdBvA17fKIEOqIQrZyoBuQP6iNJC6ooUJZrIdtxCksN7h5V2V/+PJjxWn1NVVb/dh+Uc87k9vCXnWuU11V5SUy0/XZJql6zZ3/ob0rf//eFnCSX5yNR9tXGuW0fN3o/jrbnL9+5uewIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAE7sGAAD//7aOGjo=")

1m7.767596343s ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0xe, &(0x7f0000000640)={[{@jqfmt_vfsv0}, {@user_xattr}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_continue}, {@noacl}, {@sysvgroups}]}, 0x3, 0x44b, &(0x7f00000001c0)="$eJzs28tvG8UfAPDv2k76Sx+/hKo8+gACBRHxSJq0lB64gEDiABISHMoxJGlV6jaoCRKtIggIlSOqxB1xROIv4AQXBJyQuMIdVapQLi2cjNbeTWzXzgs7Dvjzkbad2R1r5uvdWc/sZAPoW6PpP0nE/oj4NSKGa9nGAqO1/+6sLM38ubI0k0Sl8sYfSbXc7ZWlmbxo/rl9eaYUUfgkiaMt6l24eu3idLk8dyXLTyxeendi4eq1Zy5cmj4/d37u8tSZM6dOTj53eurZjsSZxnX7yAfzxw6/8taN12bO3nj7x6+TPP6mODpkdL2Dj1cqHa6utw7UpZPSxuU3U4buK9a6aQxU+/9wFGPtxAzHyx/3tHFAV1Uqlcp97Q8vV4D/sCR63QKgN/If+nT+m287NPTYFW69UJsApXHfybbakVIUsjIDTfPbThqNiLPLf32RbtGd5xAAAA2+Tcc/T7ca/xWi/rnQ/7M1lJGIuCciDkbE6Yg4FBH3RlTL3h8RD2yx/uZFkrvHP4Wb2wpsk9Lx3/PZ2lbj+C8f/cVIMcsdqMY/kJy7UJ47kX0nYzGwJ81PrlPHdy/98lm7Y/Xjv3RL68/Hglk7bpb2NH5mdnpx+p/EXO/WRxFHSq3iT1ZXApKIOBwRR7ZZx4UnvzrW7tjG8VcNtvxwB9aQKl9GPFE7/8vRFH8uWX99cuJ/UZ47MZFfFXf76efrr7ervyn+5Tbxd016/ve2vP5X4x9J6tdrF7Zex/XfPm07p9nu9T+YvNmw7/3pxcUrkxGDyau1Rtfvn6orN5QlsvJp/GPHW/f/g7H2TRyNiPQifjAiHoqIh7O2PxIRj0bE8XXi/+HFx95p2DG2fwvxd1ca/+yWzv9aYjCa97ROFC9+/01DpSOxhfjT83+qmhrL9mzm/reZdm3vagYAAIB/n0JE7I+kML6aLhTGx2t/w38o9hbK8wuLT52bf+/ybO0dgZEYKORPuobrnodOZtP6PD/VlD+ZPTf+vDhUzY/PzJdnex089Ll9bfp/6vdir1sHdJ13saB/6f/Qv/R/6F/6P/SvFv1/qBftAHZeq9//D3vQDmDnNfV/y37QR8z/oX/p/9C/9H/oSwtDsfFL8l1IlKIHlXYpkd8+d0t7diYRhV3RDIkuJXp8YwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiQvwMAAP//BF3gZg==")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @typedef={0x0, 0x0, 0x0, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@barrier}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x577, &(0x7f00000014c0)="$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")
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b60affff800080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x0, 0x0)
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {}, [], {0x2}, [], {0x2}, {0x2}}, 0x24, 0x0)

1m4.777856397s ago: executing program 2:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_INTERRUPT(r2, 0x4048aecb, 0x0)

1m1.357855219s ago: executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x1, 0x7}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
recvfrom$inet(0xffffffffffffffff, &(0x7f0000000040)=""/141, 0x8d, 0x40002000, 0x0, 0x0)
syz_open_dev$dri(0x0, 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x800000000f, &(0x7f0000000080), 0x4)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000200)={0x0, 0x0, 0x7})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
kexec_load(0x0, 0x1, &(0x7f0000000140)=[{0x0, 0x0, 0x0, 0x30a14000}], 0x0)
ioprio_set$pid(0x1, 0x0, 0x0)
io_setup(0x2, &(0x7f00000004c0))
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000280), 0xfea7)

58.879878754s ago: executing program 2:
r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r1 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r1)
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000080)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000200)={0x0, 0xffffff59, r3})
ioctl$DRM_IOCTL_MODE_GETFB2(r2, 0xc06864ce, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0]})
ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x80, 0x20203843, 0x3, [0x2, 0x0, r4], [0x80fffd]})

58.630558971s ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0xe, &(0x7f0000000640)={[{@jqfmt_vfsv0}, {@user_xattr}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@errors_continue}, {@noacl}, {@sysvgroups}]}, 0x3, 0x44b, &(0x7f00000001c0)="$eJzs28tvG8UfAPDv2k76Sx+/hKo8+gACBRHxSJq0lB64gEDiABISHMoxJGlV6jaoCRKtIggIlSOqxB1xROIv4AQXBJyQuMIdVapQLi2cjNbeTWzXzgs7Dvjzkbad2R1r5uvdWc/sZAPoW6PpP0nE/oj4NSKGa9nGAqO1/+6sLM38ubI0k0Sl8sYfSbXc7ZWlmbxo/rl9eaYUUfgkiaMt6l24eu3idLk8dyXLTyxeendi4eq1Zy5cmj4/d37u8tSZM6dOTj53eurZjsSZxnX7yAfzxw6/8taN12bO3nj7x6+TPP6mODpkdL2Dj1cqHa6utw7UpZPSxuU3U4buK9a6aQxU+/9wFGPtxAzHyx/3tHFAV1Uqlcp97Q8vV4D/sCR63QKgN/If+nT+m287NPTYFW69UJsApXHfybbakVIUsjIDTfPbThqNiLPLf32RbtGd5xAAAA2+Tcc/T7ca/xWi/rnQ/7M1lJGIuCciDkbE6Yg4FBH3RlTL3h8RD2yx/uZFkrvHP4Wb2wpsk9Lx3/PZ2lbj+C8f/cVIMcsdqMY/kJy7UJ47kX0nYzGwJ81PrlPHdy/98lm7Y/Xjv3RL68/Hglk7bpb2NH5mdnpx+p/EXO/WRxFHSq3iT1ZXApKIOBwRR7ZZx4UnvzrW7tjG8VcNtvxwB9aQKl9GPFE7/8vRFH8uWX99cuJ/UZ47MZFfFXf76efrr7ervyn+5Tbxd016/ve2vP5X4x9J6tdrF7Zex/XfPm07p9nu9T+YvNmw7/3pxcUrkxGDyau1Rtfvn6orN5QlsvJp/GPHW/f/g7H2TRyNiPQifjAiHoqIh7O2PxIRj0bE8XXi/+HFx95p2DG2fwvxd1ca/+yWzv9aYjCa97ROFC9+/01DpSOxhfjT83+qmhrL9mzm/reZdm3vagYAAIB/n0JE7I+kML6aLhTGx2t/w38o9hbK8wuLT52bf+/ybO0dgZEYKORPuobrnodOZtP6PD/VlD+ZPTf+vDhUzY/PzJdnex089Ll9bfp/6vdir1sHdJ13saB/6f/Qv/R/6F/6P/SvFv1/qBftAHZeq9//D3vQDmDnNfV/y37QR8z/oX/p/9C/9H/oSwtDsfFL8l1IlKIHlXYpkd8+d0t7diYRhV3RDIkuJXp8YwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiQvwMAAP//BF3gZg==")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x4}, @typedef={0x0, 0x0, 0x0, 0x4}, @volatile={0x0, 0x0, 0x0, 0xa}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@barrier}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x577, &(0x7f00000014c0)="$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")
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b60affff800080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000400000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x400000000010, 0x0, 0x0)
open(0x0, 0x0, 0x0)
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r4, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r5, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {}, [], {0x2}, [], {0x2}, {0x2}}, 0x24, 0x0)

55.820252866s ago: executing program 4:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0}, 0x20)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x200000, &(0x7f0000002880)={[{@user_xattr}, {@nombcache}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrjquota}, {@barrier}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@jqfmt_vfsold}, {@grpjquota}]}, 0xfe, 0x577, &(0x7f00000014c0)="$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")
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1803000000000000", @ANYBLOB="0000000000000000b702000014000000b60affff800080008500000083000000bf090000000000005509"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket(0x400000000010, 0x0, 0x0)
open(0x0, 0x0, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {0x0}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x5f}], 0x1, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
ioctl$LOOP_SET_STATUS64(0xffffffffffffffff, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f00000001c0)='.\x00', &(0x7f0000000080)='system.posix_acl_default\x00', &(0x7f0000000800)={{}, {}, [], {0x2}, [], {0x2}, {0x2}}, 0x24, 0x0)

53.890712514s ago: executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0xe0, 0x0, 0x0, 0x0, 0x62ea0000}}}}}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22}, 0x44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
fanotify_init(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file2\x00', &(0x7f0000000000), 0x0, &(0x7f0000000a80)={[{@workdir={'workdir', 0x3d, './file2'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}], [{@dont_appraise}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@permit_directio}, {@uid_lt}, {@pcr={'pcr', 0x3d, 0x3e}}, {@smackfshat={'smackfshat', 0x3d, '/dev/hwrng\x00'}}], 0x2c})
chdir(&(0x7f00000000c0)='./file2\x00')
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
dup2(r5, r4)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r6, &(0x7f0000000000)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @private1}, 0x55)

51.435506423s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f00003f9000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15)
r3 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x1000801, &(0x7f00000000c0)=ANY=[@ANYRES64=r3], 0x23, 0x203, &(0x7f0000000ec0)="$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")
syz_emit_vhci(0x0, 0x7)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040)={'#! ', './file0'}, 0xb)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r4, 0x4b52, &(0x7f0000000000))
syz_read_part_table(0x105b, &(0x7f0000001700)="$eJzsz8FNw0AQBdBvA17fKIEOqIQrZyoBuQP6iNJC6ooUJZrIdtxCksN7h5V2V/+PJjxWn1NVVb/dh+Uc87k9vCXnWuU11V5SUy0/XZJql6zZ3/ob0rf//eFnCSX5yNR9tXGuW0fN3o/jrbnL9+5uewIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAE7sGAAD//7aOGjo=")

51.199734322s ago: executing program 4:
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0xe0, 0x0, 0x0, 0x0, 0x62ea0000}}}}}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22}, 0x44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_pidfd_open(0x0, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000080), 0x1, 0x53a, &(0x7f0000000540)="$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")
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000120000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file2\x00', &(0x7f0000000000), 0x0, &(0x7f0000000a80)={[{@workdir={'workdir', 0x3d, './file2'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}], [{@dont_appraise}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@permit_directio}, {@uid_lt}, {@pcr={'pcr', 0x3d, 0x3e}}, {@smackfshat={'smackfshat', 0x3d, '/dev/hwrng\x00'}}], 0x2c})
chdir(&(0x7f00000000c0)='./file2\x00')
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r5 = fanotify_init(0x200, 0x0)
fanotify_mark(r5, 0x1, 0x4800003e, r4, 0x0)
dup2(r5, r4)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r6, &(0x7f0000000000)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @private1}, 0x55)

30.850509373s ago: executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x0, 0x4, 0x8, 0x82c3}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f00000001c0)='tasks\x00', 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r3}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
write$cgroup_pid(r2, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r1, &(0x7f0000000400)='FROZEN\x00', 0x7)
write$cgroup_freezer_state(r1, &(0x7f0000000080)='THAWED\x00', 0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='memory.events\x00', 0x7a05, 0x1700)

28.585141688s ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={0xffffffffffffffff, 0x0, &(0x7f0000001780)=""/4096}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='ext4_da_update_reserve_space\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x83000000}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10)
socketpair(0x0, 0x0, 0x0, 0x0)
write$cgroup_subtree(r5, 0x0, 0xe)
write$cgroup_subtree(r3, &(0x7f0000000280)=ANY=[], 0x7)
write$cgroup_int(r4, &(0x7f0000000200), 0x12)

28.130947532s ago: executing program 0:
syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000240), 0x3af4701e)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00"})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000240)={<r3=>0x0, ""/256, <r4=>0x0, <r5=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, <r6=>0x0})
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000000440)=ANY=[@ANYRES16=r5, @ANYRES8, @ANYRES8, @ANYRESOCT=r3, @ANYRESOCT=r5, @ANYRESOCT, @ANYRES64=r6, @ANYRES32=r3, @ANYRES8=r4, @ANYRES8=0x0], 0x1, 0x0, &(0x7f0000000000))

24.604571827s ago: executing program 0:
socket$kcm(0x2a, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040)={0x2a, 0x0, @empty=0x1000000}, 0xb, 0x0}, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1000000)
io_uring_setup(0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(0xffffffffffffffff, 0x800c5011, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'tunl0\x00', 0x0})
pselect6(0x40, &(0x7f0000000000)={0xfc}, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r3, &(0x7f0000000080), 0xc)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0x8, 0x1, 0x200, &(0x7f0000000880)="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"})

23.845762881s ago: executing program 0:
r0 = socket$inet6(0xa, 0x6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = syz_open_dev$cec(&(0x7f0000000180), 0x0, 0x0)
epoll_create(0x5)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f0000000000))
ioctl$SW_SYNC_IOC_INC(0xffffffffffffffff, 0xc0105702, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

23.617397438s ago: executing program 0:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12}, &(0x7f0000000140))
futex(&(0x7f0000000700)=0x2, 0x0, 0x2, 0x0, 0x0, 0x0)
rt_sigreturn()
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
syz_read_part_table(0x401f, &(0x7f0000000000)="$eJzs0DEOAUEUBuB/NqKgUbuERk2UjrKNTqLRuIrKMSQaB3EBJ9CMZElIVuv7mvlnMjMv741vp1WSMttu2l1eNJ28bJKSZF73Jf/nvedrsjgnGfX5pDvUtPcvNycfzveHGoZ96j4N6ro+Ti+/vAcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAe7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKO3AgAwAAACDM3zqP9gMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEsBAAD//4IoCls=")
r0 = eventfd(0x0)
write$binfmt_elf32(r0, &(0x7f0000004040)=ANY=[@ANYBLOB="7f454c46000000eb"], 0x58)
write$binfmt_misc(r0, &(0x7f00000000c0)={'syz0', "101ddcfe"}, 0x8)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

3.023910581s ago: executing program 1:
bind$inet(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socket$kcm(0x10, 0x0, 0x4)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0)
madvise(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x10)

1.702370122s ago: executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r1 = accept$alg(r0, 0x0, 0x0)
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', '', [{0x20, 'aegis128-generic\x00'}]}, 0x16)
recvmmsg(r1, &(0x7f000000ec00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000006a40)=[{&(0x7f0000000a80)=""/174, 0xae}], 0x1}}], 0x2, 0x0, 0x0)

1.559458532s ago: executing program 3:
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000001240), 0x0, 0x0)
ioctl$IOMMU_VFIO_CHECK_EXTENSION(r0, 0x3b65, 0x0)

1.358124428s ago: executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x38, 0xd, 0x6, 0x3, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x7}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x38}}, 0x0)

1.357221874s ago: executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000880)={0x8, 0x0, &(0x7f00000004c0)=[@decrefs], 0x0, 0xfeffff, 0x0})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r6=>0x0})
bind$xdp(0xffffffffffffffff, &(0x7f0000000040)={0x2c, 0xf, r6}, 0x10)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'syztnl2\x00', &(0x7f0000000280)={'ip6gre0\x00', <r7=>0x0, 0x4, 0xc1, 0x0, 0xfffffc01, 0x3, @mcast1, @dev={0xfe, 0x80, '\x00', 0x32}, 0x7800, 0x20, 0x1000}})
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f0000000500)=ANY=[@ANYBLOB="90c20546", @ANYRES16=0x0, @ANYBLOB="040025bd7000fcdbdf250100000008000100", @ANYRES32=0x0, @ANYBLOB="740102804c000100240001006c625f74785f6d6574686f640000000000000000000000000000000000000000050003000500000019000400686173685f746f5f706f72745f6d617070696e67000000003800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=0x0, @ANYBLOB="3800010024000100616374697665706f727400000000000000000000000000000000000000000000050003000300000008000400", @ANYRES32=r6, @ANYBLOB="3c00010024000100656e61626c65640000000000000000000000000000000000000000000000000005000300060000000400040008000600", @ANYRES32=r7, @ANYBLOB="40000100240001006d6f64650000000000000000000000000000000000000000000000000000000005000300050000000e00040062726f61646361737400000038000100240001006e6f746966795f70656572735f696e74657276616c000000000000000000000005000300030000000800040009000000"], 0x190}}, 0x801)
open(0x0, 0x81000, 0x80)
r8 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x141341)
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r8, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

1.11699811s ago: executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)={0x24, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_MEDIA={0x10, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}]}]}, 0x24}}, 0x0)

261.288672ms ago: executing program 3:
r0 = getpgid(0x0)
syz_pidfd_open(r0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000001840)={<r2=>0x0}, &(0x7f0000001880)=0xc)
syz_pidfd_open(r2, 0x0)

203.202161ms ago: executing program 3:
r0 = syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040), &(0x7f0000000240))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x6, 0x0, 0x0)

176.089339ms ago: executing program 1:
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x42, 0x0)
llistxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000540)=""/209, 0xd1)

100.187394ms ago: executing program 1:
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000001d80)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback}, 0x1c, 0x0}}, {{&(0x7f0000000540)={0xa, 0x4e21, 0x0, @local}, 0x1c, 0x0, 0x0, &(0x7f00000008c0)=[@tclass={{0x14, 0x29, 0x43, 0x100}}], 0x18}}], 0x2, 0x0)

46.057979ms ago: executing program 3:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_emit_ethernet(0xa6, &(0x7f0000000000)=ANY=[], 0x0)
socketpair(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
io_uring_setup(0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCSWINSZ(r0, 0x5414, &(0x7f0000000380))

0s ago: executing program 1:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
r1 = memfd_create(&(0x7f0000000300)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecj\x02\xc8\xc4\f\x04\x99\xf6\xfc', 0x3)
ftruncate(r1, 0xffff)
prlimit64(0x0, 0x7, &(0x7f0000000000), 0x0)
fcntl$addseals(r1, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f00000002c0)={r1, 0x0, 0x0, 0x1000})

kernel console output (not intermixed with test programs):

kb+0x1e3/0x430
[  200.985636][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  200.991185][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  200.996539][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  201.001817][    C1]  netlink_unicast+0x7ea/0x980
[  201.006687][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  201.012029][    C1]  ? __virt_addr_valid+0x183/0x520
[  201.017181][    C1]  ? __check_object_size+0x49c/0x900
[  201.022491][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  201.027634][    C1]  netlink_sendmsg+0x8db/0xcb0
[  201.032403][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.037707][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  201.042642][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  201.047941][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  201.053395][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  201.058689][    C1]  __sock_sendmsg+0x221/0x270
[  201.063358][    C1]  __sys_sendto+0x3a4/0x4f0
[  201.067872][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  201.072900][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  201.078926][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  201.085275][    C1]  __x64_sys_sendto+0xde/0x100
[  201.090048][    C1]  do_syscall_64+0xf3/0x230
[  201.094536][    C1]  ? clear_bhb_loop+0x35/0x90
[  201.099255][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  201.105170][    C1] RIP: 0033:0x7f72ff87eb9c
[  201.109620][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  201.118122][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  201.126102][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  201.134123][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  201.142108][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  201.150174][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  201.158187][    C1]  </TASK>
[  201.161191][    C1] DEBUG: waiting rtnl_mutex for 703 jiffies.
[  201.167164][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  201.177328][    C1] Workqueue: events linkwatch_event
[  201.182537][    C1] Call Trace:
[  201.185798][    C1]  <TASK>
[  201.188736][    C1]  __schedule+0x17e8/0x4a20
[  201.193238][    C1]  ? __pfx___schedule+0x10/0x10
[  201.198097][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  201.204112][    C1]  ? __pfx_lock_release+0x10/0x10
[  201.209173][    C1]  ? kick_pool+0x45c/0x620
[  201.213603][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  201.219007][    C1]  ? schedule+0x90/0x320
[  201.223243][    C1]  schedule+0x14b/0x320
[  201.227412][    C1]  schedule_preempt_disabled+0x13/0x30
[  201.232871][    C1]  __mutex_lock+0x6a4/0xd70
[  201.237408][    C1]  ? __mutex_lock+0x527/0xd70
[  201.242088][    C1]  ? linkwatch_event+0xe/0x60
[  201.246811][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  201.251855][    C1]  ? process_scheduled_works+0x945/0x1830
[  201.257604][    C1]  ? rtnl_lock+0xe7/0x130
[  201.261927][    C1]  ? process_scheduled_works+0x945/0x1830
[  201.267653][    C1]  linkwatch_event+0xe/0x60
[  201.272180][    C1]  process_scheduled_works+0xa2c/0x1830
[  201.277787][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  201.283786][    C1]  ? assign_work+0x364/0x3d0
[  201.288397][    C1]  worker_thread+0x86d/0xd50
[  201.292986][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  201.298916][    C1]  ? __kthread_parkme+0x169/0x1d0
[  201.303967][    C1]  ? __pfx_worker_thread+0x10/0x10
[  201.309177][    C1]  kthread+0x2f0/0x390
[  201.313237][    C1]  ? __pfx_worker_thread+0x10/0x10
[  201.318359][    C1]  ? __pfx_kthread+0x10/0x10
[  201.322940][    C1]  ret_from_fork+0x4b/0x80
[  201.327382][    C1]  ? __pfx_kthread+0x10/0x10
[  201.331960][    C1]  ret_from_fork_asm+0x1a/0x30
[  201.336758][    C1]  </TASK>
[  201.339792][    C1] 
[  201.339792][    C1] Showing all locks held in the system:
[  201.347510][    C1] 2 locks held by kworker/u8:0/11:
[  201.352602][    C1] 4 locks held by kworker/u8:1/12:
[  201.357714][    C1] 3 locks held by kworker/1:1/46:
[  201.362717][    C1] 4 locks held by kworker/u8:5/64:
[  201.367863][    C1] 3 locks held by kworker/u8:7/1106:
[  201.373126][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  201.384730][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  201.397523][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  201.406951][    C1] 2 locks held by kworker/u8:8/2458:
[  201.412214][    C1] 2 locks held by kworker/u8:9/2463:
[  201.417498][    C1] 2 locks held by getty/4850:
[  201.422171][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  201.432017][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  201.442121][    C1] 3 locks held by kworker/1:4/5164:
[  201.447324][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  201.458291][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  201.469273][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  201.478246][    C1] 1 lock held by udevd/5347:
[  201.482818][    C1] 2 locks held by syz-executor.2/5517:
[  201.488278][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  201.496444][    C1]  #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  201.506665][    C1] 1 lock held by syz-executor.2/6199:
[  201.512059][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  201.521672][    C1] 3 locks held by syz-executor.1/6245:
[  201.527150][    C1]  #0: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  201.537281][    C1]  #1: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  201.547123][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  201.557156][    C1] 4 locks held by kvm-nx-lpage-re/6246:
[  201.562769][    C1]  #0: ffffffff8e3635e8 (cgroup_mutex){+.+.}-{3:3}, at: cgroup_attach_task_all+0x27/0xe0
[  201.572614][    C1]  #1: ffffffff8e1cf750 (cpu_hotplug_lock){++++}-{0:0}, at: cgroup_attach_lock+0x11/0x40
[  201.582550][    C1]  #2: ffffffff8e3637d0 (cgroup_threadgroup_rwsem){++++}-{0:0}, at: cgroup_attach_task_all+0x31/0xe0
[  201.593432][    C1]  #3: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  201.604401][    C1] 
[  201.606823][    C1] =============================================
[  201.606823][    C1] 
[  202.267090][ T5111] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  202.277931][ T5111] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  202.294188][ T5111] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  202.318330][ T5111] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  202.328320][ T5111] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  202.335975][ T5111] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  202.676696][    C1] DEBUG: waiting rtnl_mutex for 938 jiffies.
[  202.682753][    C1] task:kworker/u8:7    state:D stack:23280 pid:1106  tgid:1106  ppid:2      flags:0x00004000
[  202.693008][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  202.699062][    C1] Call Trace:
[  202.702362][    C1]  <TASK>
[  202.705322][    C1]  __schedule+0x17e8/0x4a20
[  202.709935][    C1]  ? __pfx___schedule+0x10/0x10
[  202.714818][    C1]  ? __pfx_lock_release+0x10/0x10
[  202.719900][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  202.725403][    C1]  ? kthread_data+0x52/0xd0
[  202.729991][    C1]  ? schedule+0x90/0x320
[  202.734275][    C1]  ? wq_worker_sleeping+0x66/0x240
[  202.739498][    C1]  ? schedule+0x90/0x320
[  202.743777][    C1]  schedule+0x14b/0x320
[  202.748004][    C1]  schedule_preempt_disabled+0x13/0x30
[  202.753499][    C1]  __mutex_lock+0x6a4/0xd70
[  202.758162][    C1]  ? mark_lock+0x9a/0x360
[  202.762534][    C1]  ? __mutex_lock+0x527/0xd70
[  202.767283][    C1]  ? addrconf_dad_work+0xd0/0x16f0
[  202.772455][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  202.777558][    C1]  ? rtnl_lock+0xe7/0x130
[  202.781934][    C1]  addrconf_dad_work+0xd0/0x16f0
[  202.787045][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  202.792548][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  202.799080][    C1]  ? process_scheduled_works+0x945/0x1830
[  202.804831][    C1]  process_scheduled_works+0xa2c/0x1830
[  202.810490][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  202.816517][    C1]  ? assign_work+0x364/0x3d0
[  202.821193][    C1]  worker_thread+0x86d/0xd50
[  202.825832][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  202.831814][    C1]  ? __kthread_parkme+0x169/0x1d0
[  202.836913][    C1]  ? __pfx_worker_thread+0x10/0x10
[  202.842150][    C1]  kthread+0x2f0/0x390
[  202.846251][    C1]  ? __pfx_worker_thread+0x10/0x10
[  202.851442][    C1]  ? __pfx_kthread+0x10/0x10
[  202.856147][    C1]  ret_from_fork+0x4b/0x80
[  202.860631][    C1]  ? __pfx_kthread+0x10/0x10
[  202.865273][    C1]  ret_from_fork_asm+0x1a/0x30
[  202.870127][    C1]  </TASK>
[  202.873165][    C1] DEBUG: holding rtnl_mutex for 914 jiffies.
[  202.879185][    C1] task:kworker/u8:1    state:D stack:22040 pid:12    tgid:12    ppid:2      flags:0x00004000
[  202.889411][    C1] Workqueue: netns cleanup_net
[  202.894304][    C1] Call Trace:
[  202.897652][    C1]  <TASK>
[  202.900611][    C1]  __schedule+0x17e8/0x4a20
[  202.905176][    C1]  ? __pfx___schedule+0x10/0x10
[  202.910140][    C1]  ? __pfx_lock_release+0x10/0x10
[  202.915203][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  202.920836][    C1]  ? kthread_data+0x52/0xd0
[  202.925393][    C1]  ? schedule+0x90/0x320
[  202.929720][    C1]  ? wq_worker_sleeping+0x66/0x240
[  202.934871][    C1]  ? schedule+0x90/0x320
[  202.939196][    C1]  schedule+0x14b/0x320
[  202.943387][    C1]  schedule_preempt_disabled+0x13/0x30
[  202.948930][    C1]  __mutex_lock+0x6a4/0xd70
[  202.953471][    C1]  ? __mutex_lock+0x527/0xd70
[  202.958245][    C1]  ? synchronize_rcu_expedited+0x451/0x830
[  202.964090][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  202.969207][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  202.974450][    C1]  synchronize_rcu_expedited+0x451/0x830
[  202.980171][    C1]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  202.986410][    C1]  ? __pfx___might_resched+0x10/0x10
[  202.991898][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  202.998070][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  203.004449][    C1]  synchronize_rcu+0x11b/0x360
[  203.009314][    C1]  ? __pfx_synchronize_rcu+0x10/0x10
[  203.014665][    C1]  ? __phys_addr+0x105/0x170
[  203.019412][    C1]  lockdep_unregister_key+0x4b7/0x540
[  203.024911][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  203.031165][    C1]  ? rcu_is_watching+0x15/0xb0
[  203.036057][    C1]  ? qdisc_reset+0x3bb/0x5a0
[  203.040760][    C1]  __qdisc_destroy+0x165/0x410
[  203.045685][    C1]  dev_shutdown+0x357/0x440
[  203.050295][    C1]  unregister_netdevice_many_notify+0x977/0x16b0
[  203.056709][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  203.063572][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  203.069577][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  203.075956][    C1]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  203.082206][    C1]  default_device_exit_batch+0xa0f/0xa90
[  203.087931][    C1]  ? __pfx___might_resched+0x10/0x10
[  203.093415][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  203.099754][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  203.105096][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  203.111349][    C1]  cleanup_net+0x89d/0xcc0
[  203.115809][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  203.120845][    C1]  ? process_scheduled_works+0x945/0x1830
[  203.126611][    C1]  process_scheduled_works+0xa2c/0x1830
[  203.132283][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  203.138380][    C1]  ? assign_work+0x364/0x3d0
[  203.143006][    C1]  worker_thread+0x86d/0xd50
[  203.147690][    C1]  ? __kthread_parkme+0x169/0x1d0
[  203.152878][    C1]  ? __pfx_worker_thread+0x10/0x10
[  203.158138][    C1]  kthread+0x2f0/0x390
[  203.162253][    C1]  ? __pfx_worker_thread+0x10/0x10
[  203.167429][    C1]  ? __pfx_kthread+0x10/0x10
[  203.172069][    C1]  ret_from_fork+0x4b/0x80
[  203.176520][    C1]  ? __pfx_kthread+0x10/0x10
[  203.181199][    C1]  ret_from_fork_asm+0x1a/0x30
[  203.186018][    C1]  </TASK>
[  203.189117][    C1] DEBUG: waiting rtnl_mutex for 990 jiffies.
[  203.195124][    C1] task:syz-executor.2  state:D stack:21024 pid:6199  tgid:6199  ppid:6184   flags:0x00004002
[  203.205511][    C1] Call Trace:
[  203.208866][    C1]  <TASK>
[  203.211830][    C1]  __schedule+0x17e8/0x4a20
[  203.216439][    C1]  ? __pfx___schedule+0x10/0x10
[  203.221474][    C1]  ? __pfx_lock_release+0x10/0x10
[  203.226576][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  203.232326][    C1]  ? schedule+0x90/0x320
[  203.236611][    C1]  schedule+0x14b/0x320
[  203.240879][    C1]  schedule_preempt_disabled+0x13/0x30
[  203.246395][    C1]  __mutex_lock+0x6a4/0xd70
[  203.251001][    C1]  ? __mutex_lock+0x527/0xd70
[  203.255729][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  203.261029][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  203.266118][    C1]  ? rtnl_lock+0xe7/0x130
[  203.270529][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  203.275617][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  203.280912][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  203.286419][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  203.291774][    C1]  ? __pfx_validate_chain+0x10/0x10
[  203.297037][    C1]  ? __pfx_validate_chain+0x10/0x10
[  203.302297][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  203.307373][    C1]  ? mark_lock+0x9a/0x360
[  203.311768][    C1]  ? __pfx_validate_chain+0x10/0x10
[  203.317027][    C1]  ? __lock_acquire+0x1359/0x2000
[  203.322093][    C1]  ? mark_lock+0x9a/0x360
[  203.326593][    C1]  ? __lock_acquire+0x1359/0x2000
[  203.331709][    C1]  netlink_rcv_skb+0x1e3/0x430
[  203.336512][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  203.342128][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  203.347500][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  203.352750][    C1]  netlink_unicast+0x7ea/0x980
[  203.357593][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  203.362913][    C1]  ? __virt_addr_valid+0x183/0x520
[  203.367881][ T6266] loop1: detected capacity change from 0 to 32768
[  203.368070][    C1]  ? __check_object_size+0x49c/0x900
[  203.379782][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  203.384927][    C1]  netlink_sendmsg+0x8db/0xcb0
[  203.389768][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.395090][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  203.400101][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  203.405419][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  203.410944][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  203.416261][    C1]  __sock_sendmsg+0x221/0x270
[  203.421030][    C1]  __sys_sendto+0x3a4/0x4f0
[  203.425572][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  203.430699][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  203.436736][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  203.443107][    C1]  __x64_sys_sendto+0xde/0x100
[  203.447944][    C1]  do_syscall_64+0xf3/0x230
[  203.452484][    C1]  ? clear_bhb_loop+0x35/0x90
[  203.457464][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.463390][    C1] RIP: 0033:0x7f72ff87eb9c
[  203.467883][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  203.476321][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  203.484364][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  203.492402][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  203.500450][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  203.508564][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  203.511121][ T6266] MetaData crosses page boundary!!
[  203.516563][    C1]  </TASK>
[  203.516578][    C1] DEBUG: waiting rtnl_mutex for 938 jiffies.
[  203.516593][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  203.541104][    C1] Workqueue: events linkwatch_event
[  203.546338][    C1] Call Trace:
[  203.546906][ T6266] lblock = 621300, size  = 28672
[  203.549643][    C1]  <TASK>
[  203.557566][    C1]  __schedule+0x17e8/0x4a20
[  203.562131][    C1]  ? __pfx___schedule+0x10/0x10
[  203.566853][ T6266] CPU: 0 PID: 6266 Comm: syz-executor.1 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0
[  203.567021][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  203.577129][ T6266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  203.577152][ T6266] Call Trace:
[  203.577164][ T6266]  <TASK>
[  203.577173][ T6266]  dump_stack_lvl+0x241/0x360
[  203.577204][ T6266]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.583167][    C1]  ? __pfx_lock_release+0x10/0x10
[  203.593218][ T6266]  ? __pfx__printk+0x10/0x10
[  203.593259][ T6266]  __get_metapage+0xa24/0xef0
[  203.596538][    C1]  ? kick_pool+0x45c/0x620
[  203.599480][ T6266]  dtSearch+0x582/0x2520
[  203.599542][ T6266]  jfs_lookup+0x17f/0x410
[  203.604171][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  203.609347][ T6266]  ? __pfx_jfs_lookup+0x10/0x10
[  203.609371][ T6266]  ? d_alloc_parallel+0x14ab/0x1600
[  203.614380][    C1]  ? schedule+0x90/0x320
[  203.618956][ T6266]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  203.618984][ T6266]  ? __pfx_d_alloc_parallel+0x10/0x10
[  203.623647][    C1]  schedule+0x14b/0x320
[  203.628057][ T6266]  ? __init_waitqueue_head+0xae/0x150
[  203.628089][ T6266]  __lookup_slow+0x28c/0x3f0
[  203.632419][    C1]  schedule_preempt_disabled+0x13/0x30
[  203.636724][ T6266]  ? __pfx___lookup_slow+0x10/0x10
[  203.636774][ T6266]  lookup_slow+0x53/0x70
[  203.642273][    C1]  __mutex_lock+0x6a4/0xd70
[  203.647104][ T6266]  link_path_walk+0x9ea/0xea0
[  203.647133][ T6266]  ? link_path_walk+0x461/0xea0
[  203.652310][    C1]  ? __mutex_lock+0x527/0xd70
[  203.656540][ T6266]  ? __pfx_link_path_walk+0x10/0x10
[  203.662432][    C1]  ? linkwatch_event+0xe/0x60
[  203.667766][ T6266]  __filename_parentat+0x263/0x6f0
[  203.667805][ T6266]  ? __pfx___filename_parentat+0x10/0x10
[  203.671932][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  203.677302][ T6266]  ? __virt_addr_valid+0x183/0x520
[  203.681895][    C1]  ? process_scheduled_works+0x945/0x1830
[  203.687336][ T6266]  filename_create+0xf6/0x540
[  203.687371][ T6266]  ? __pfx_filename_create+0x10/0x10
[  203.692473][    C1]  ? rtnl_lock+0xe7/0x130
[  203.696701][ T6266]  ? __pfx_lock_release+0x10/0x10
[  203.696740][ T6266]  do_mkdirat+0xbd/0x3a0
[  203.701213][    C1]  ? process_scheduled_works+0x945/0x1830
[  203.705862][ T6266]  ? __check_object_size+0x49c/0x900
[  203.710714][    C1]  linkwatch_event+0xe/0x60
[  203.715336][ T6266]  ? __might_fault+0xc6/0x120
[  203.720551][    C1]  process_scheduled_works+0xa2c/0x1830
[  203.725253][ T6266]  ? __pfx_do_mkdirat+0x10/0x10
[  203.730397][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  203.735949][ T6266]  ? getname_flags+0x1e3/0x540
[  203.740996][    C1]  ? assign_work+0x364/0x3d0
[  203.746072][ T6266]  __x64_sys_mkdirat+0x87/0xa0
[  203.751803][    C1]  worker_thread+0x86d/0xd50
[  203.756422][ T6266]  do_syscall_64+0xf3/0x230
[  203.761713][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  203.765980][ T6266]  ? clear_bhb_loop+0x35/0x90
[  203.771055][    C1]  ? __kthread_parkme+0x169/0x1d0
[  203.775213][ T6266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.780952][    C1]  ? __pfx_worker_thread+0x10/0x10
[  203.786189][ T6266] RIP: 0033:0x7effd167cea9
[  203.790734][    C1]  kthread+0x2f0/0x390
[  203.795332][ T6266] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  203.800882][    C1]  ? __pfx_worker_thread+0x10/0x10
[  203.805679][ T6266] RSP: 002b:00007effd11ff0c8 EFLAGS: 00000246
[  203.811676][    C1]  ? __pfx_kthread+0x10/0x10
[  203.816388][ T6266]  ORIG_RAX: 0000000000000102
[  203.821084][    C1]  ret_from_fork+0x4b/0x80
[  203.825776][ T6266] RAX: ffffffffffffffda RBX: 00007effd17b3f80 RCX: 00007effd167cea9
[  203.830476][    C1]  ? __pfx_kthread+0x10/0x10
[  203.834931][ T6266] RDX: 00000000000001ff RSI: 0000000020000040 RDI: ffffffffffffff9c
[  203.840836][    C1]  ret_from_fork_asm+0x1a/0x30
[  203.845460][ T6266] RBP: 00007effd16ebff4 R08: 0000000000000000 R09: 0000000000000000
[  203.850498][    C1]  </TASK>
[  203.856408][ T6266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  203.861526][    C1] 
[  203.861526][    C1] Showing all locks held in the system:
[  203.865880][ T6266] R13: 000000000000000b R14: 00007effd17b3f80 R15: 00007ffc8bfde378
[  203.870052][    C1] 5 locks held by kworker/u8:1/12:
[  203.889614][ T6266]  </TASK>
[  203.983718][    C1]  #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  203.994705][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  204.005577][    C1]  #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  204.015105][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  204.025425][    C1]  #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  204.036723][    C1] 3 locks held by kworker/1:2/786:
[  204.041891][    C1] 3 locks held by kworker/u8:7/1106:
[  204.047224][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  204.058874][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  204.071790][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  204.081581][    C1] 3 locks held by udevd/4547:
[  204.086277][    C1]  #0: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  204.096494][    C1]  #1: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  204.106369][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  204.112414][ T6266] bread failed!
[  204.116325][    C1] 2 locks held by getty/4850:
[  204.121117][ T6266] jfs_lookup: dtSearch returned -5
[  204.124577][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  204.137035][ T6276] MetaData crosses page boundary!!
[  204.139796][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  204.146427][ T6276] lblock = 621300, size  = 28672
[  204.155362][    C1] 3 locks held by kworker/1:4/5164:
[  204.155387][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  204.155451][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  204.155507][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  204.155571][    C1] 2 locks held by syz-executor.2/5517:
[  204.155585][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  204.155640][    C1]  #1: ffffffff8e604cc8
[  204.182503][ T6266] MetaData crosses page boundary!!
[  204.187967][    C1]  (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  204.188036][    C1] 1 lock held by syz-executor.2/6199:
[  204.188050][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  204.188123][    C1] 1 lock held by syz-executor.4/6259:
[  204.188137][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  204.188200][    C1] 2 locks held by syz-executor.1/6266:
[  204.188212][    C1] 1 lock held by syz-executor.1/6276:
[  204.188226][    C1] 4 locks held by kvm-nx-lpage-re/6271:
[  204.188241][    C1]  #0: 
[  204.234978][ T6278] MetaData crosses page boundary!!
[  204.243373][    C1] ffffffff8e3635e8 (cgroup_mutex){+.+.}-{3:3}, at: cgroup_attach_task_all+0x27/0xe0
[  204.243443][    C1]  #1: ffffffff8e1cf750 (cpu_hotplug_lock){++++}-{0:0}, at: cgroup_attach_lock+0x11/0x40
[  204.243502][    C1]  #2: ffffffff8e3637d0 (cgroup_threadgroup_rwsem){++++}-{0:0}, at: cgroup_attach_task_all+0x31/0xe0
[  204.243563][    C1]  #3: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  204.255768][ T6276] CPU: 0 PID: 6276 Comm: syz-executor.1 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0
[  204.258475][    C1] 
[  204.263965][ T6276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  204.269383][    C1] =============================================
[  204.269383][    C1] 
[  204.274927][ T6276] Call Trace:
[  204.274942][ T6276]  <TASK>
[  204.362348][ T6276]  dump_stack_lvl+0x241/0x360
[  204.367057][ T6276]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.372276][ T6276]  ? __pfx__printk+0x10/0x10
[  204.376922][ T6276]  __get_metapage+0xa24/0xef0
[  204.381634][ T6276]  dtSearch+0x582/0x2520
[  204.385930][ T6276]  jfs_lookup+0x17f/0x410
[  204.390282][ T6276]  ? __pfx_jfs_lookup+0x10/0x10
[  204.395144][ T6276]  ? d_alloc_parallel+0x14ab/0x1600
[  204.400387][ T6276]  ? __pfx_d_alloc_parallel+0x10/0x10
[  204.405787][ T6276]  ? __init_waitqueue_head+0xae/0x150
[  204.411178][ T6276]  __lookup_slow+0x28c/0x3f0
[  204.415789][ T6276]  ? __pfx___lookup_slow+0x10/0x10
[  204.420938][ T6276]  lookup_slow+0x53/0x70
[  204.425200][ T6276]  link_path_walk+0x9ea/0xea0
[  204.429901][ T6276]  ? link_path_walk+0x461/0xea0
[  204.434781][ T6276]  ? __pfx_link_path_walk+0x10/0x10
[  204.440008][ T6276]  path_lookupat+0xa9/0x450
[  204.444544][ T6276]  do_o_path+0x95/0x230
[  204.448726][ T6276]  ? __pfx_do_o_path+0x10/0x10
[  204.453520][ T6276]  path_openat+0x2adf/0x3280
[  204.458137][ T6276]  ? mark_lock+0x9a/0x360
[  204.462489][ T6276]  ? __lock_acquire+0x1359/0x2000
[  204.467538][ T6276]  ? mark_lock+0x9a/0x360
[  204.471886][ T6276]  ? __lock_acquire+0x1359/0x2000
[  204.476931][ T6276]  ? __pfx_path_openat+0x10/0x10
[  204.481911][ T6276]  do_filp_open+0x235/0x490
[  204.486435][ T6276]  ? __pfx_do_filp_open+0x10/0x10
[  204.491510][ T6276]  ? _raw_spin_unlock+0x28/0x50
[  204.496381][ T6276]  ? alloc_fd+0x5a1/0x640
[  204.500733][ T6276]  do_sys_openat2+0x13e/0x1d0
[  204.505428][ T6276]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  204.511774][ T6276]  ? __pfx_do_sys_openat2+0x10/0x10
[  204.516994][ T6276]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  204.522988][ T6276]  ? lockdep_hardirqs_on+0x99/0x150
[  204.528210][ T6276]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  204.534129][ T6276]  __x64_sys_openat+0x247/0x2a0
[  204.538999][ T6276]  ? __pfx___x64_sys_openat+0x10/0x10
[  204.544391][ T6276]  ? do_syscall_64+0x100/0x230
[  204.549168][ T6276]  ? do_syscall_64+0xb6/0x230
[  204.553872][ T6276]  do_syscall_64+0xf3/0x230
[  204.558405][ T6276]  ? clear_bhb_loop+0x35/0x90
[  204.563108][ T6276]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.569027][ T6276] RIP: 0033:0x7effd167cea9
[  204.573461][ T6276] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  204.593092][ T6276] RSP: 002b:00007effd11de0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  204.601538][ T6276] RAX: ffffffffffffffda RBX: 00007effd17b4050 RCX: 00007effd167cea9
[  204.609528][ T6276] RDX: 0000000000200002 RSI: 0000000020000040 RDI: ffffffffffffff9c
[  204.617526][ T6276] RBP: 00007effd16ebff4 R08: 0000000000000000 R09: 0000000000000000
[  204.625514][ T6276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  204.633517][ T6276] R13: 000000000000006e R14: 00007effd17b4050 R15: 00007ffc8bfde378
[  204.641533][ T6276]  </TASK>
[  204.786840][ T5115] Bluetooth: hci2: command tx timeout
[  204.809175][ T6266] lblock = 621300, size  = 28672
[  204.814174][ T6266] CPU: 1 PID: 6266 Comm: syz-executor.1 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0
[  204.824081][ T6266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  204.834149][ T6266] Call Trace:
[  204.837483][ T6266]  <TASK>
[  204.840424][ T6266]  dump_stack_lvl+0x241/0x360
[  204.845123][ T6266]  ? __pfx_dump_stack_lvl+0x10/0x10
[  204.850466][ T6266]  ? __pfx__printk+0x10/0x10
[  204.855193][ T6266]  __get_metapage+0xa24/0xef0
[  204.859906][ T6266]  dtSearch+0x582/0x2520
[  204.864179][ T6266]  jfs_lookup+0x17f/0x410
[  204.868512][ T6266]  ? __pfx_jfs_lookup+0x10/0x10
[  204.873826][ T6266]  ? d_alloc_parallel+0x14ab/0x1600
[  204.879066][ T6266]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  204.884906][ T6266]  ? __pfx_d_alloc_parallel+0x10/0x10
[  204.890305][ T6266]  ? __init_waitqueue_head+0xae/0x150
[  204.895697][ T6266]  __lookup_slow+0x28c/0x3f0
[  204.900568][ T6266]  ? __pfx___lookup_slow+0x10/0x10
[  204.905693][ T6266]  ? try_to_unlazy+0x35c/0x5b0
[  204.910471][ T6266]  lookup_slow+0x53/0x70
[  204.914720][ T6266]  walk_component+0x2e1/0x410
[  204.919438][ T6266]  path_lookupat+0x16f/0x450
[  204.924037][ T6266]  filename_lookup+0x256/0x610
[  204.928807][ T6266]  ? __pfx_filename_lookup+0x10/0x10
[  204.934108][ T6266]  ? strncpy_from_user+0x1a4/0x2f0
[  204.939248][ T6266]  ? getname_flags+0x1e3/0x540
[  204.944019][ T6266]  user_path_at+0x3a/0x60
[  204.948351][ T6266]  __se_sys_mount+0x297/0x3c0
[  204.953029][ T6266]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  204.959120][ T6266]  ? __pfx___se_sys_mount+0x10/0x10
[  204.964323][ T6266]  ? do_syscall_64+0x100/0x230
[  204.969084][ T6266]  ? __x64_sys_mount+0x20/0xc0
[  204.973838][ T6266]  do_syscall_64+0xf3/0x230
[  204.978341][ T6266]  ? clear_bhb_loop+0x35/0x90
[  204.983021][ T6266]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.988948][ T6266] RIP: 0033:0x7effd167cea9
[  204.993382][ T6266] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  205.013444][ T6266] RSP: 002b:00007effd11ff0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  205.021885][ T6266] RAX: ffffffffffffffda RBX: 00007effd17b3f80 RCX: 00007effd167cea9
[  205.029874][ T6266] RDX: 0000000000000000 RSI: 0000000020000240 RDI: 0000000000000000
[  205.037846][ T6266] RBP: 00007effd16ebff4 R08: 0000000000000000 R09: 0000000000000000
[  205.046090][ T6266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.054137][ T6266] R13: 000000000000000b R14: 00007effd17b3f80 R15: 00007ffc8bfde378
[  205.062117][ T6266]  </TASK>
[  205.081030][ T6282] loop3: detected capacity change from 0 to 1024
[  205.162308][ T6266] bread failed!
[  205.166285][ T6276] bread failed!
[  205.174107][ T6266] jfs_lookup: dtSearch returned -5
[  205.182981][ T6276] jfs_lookup: dtSearch returned -5
[  205.188289][ T6278] lblock = 621300, size  = 28672
[  205.203258][ T6278] CPU: 0 PID: 6278 Comm: syz-executor.1 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0
[  205.213223][ T6278] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  205.223296][ T6278] Call Trace:
[  205.226586][ T6278]  <TASK>
[  205.229527][ T6278]  dump_stack_lvl+0x241/0x360
[  205.234233][ T6278]  ? __pfx_dump_stack_lvl+0x10/0x10
[  205.239461][ T6278]  ? __pfx__printk+0x10/0x10
[  205.244086][ T6278]  __get_metapage+0xa24/0xef0
[  205.248792][ T6278]  dtSearch+0x582/0x2520
[  205.253089][ T6278]  jfs_lookup+0x17f/0x410
[  205.257441][ T6278]  ? __pfx_jfs_lookup+0x10/0x10
[  205.262309][ T6278]  ? d_alloc_parallel+0x14ab/0x1600
[  205.267551][ T6278]  ? __d_lookup+0x85/0x7e0
[  205.271972][ T6278]  ? __pfx_d_alloc_parallel+0x10/0x10
[  205.277357][ T6278]  ? __d_lookup+0x727/0x7e0
[  205.281877][ T6278]  ? try_to_unlazy+0x35c/0x5b0
[  205.286665][ T6278]  ? __pfx_jfs_lookup+0x10/0x10
[  205.291543][ T6278]  path_openat+0x1033/0x3280
[  205.296198][ T6278]  ? __pfx_path_openat+0x10/0x10
[  205.301191][ T6278]  do_filp_open+0x235/0x490
[  205.305739][ T6278]  ? __pfx_do_filp_open+0x10/0x10
[  205.310817][ T6278]  ? _raw_spin_unlock+0x28/0x50
[  205.315682][ T6278]  ? alloc_fd+0x5a1/0x640
[  205.320039][ T6278]  do_sys_openat2+0x13e/0x1d0
[  205.324737][ T6278]  ? __might_fault+0xaa/0x120
[  205.329440][ T6278]  ? __pfx_do_sys_openat2+0x10/0x10
[  205.334649][ T6278]  ? rcu_is_watching+0x15/0xb0
[  205.339442][ T6278]  ? __rseq_handle_notify_resume+0x353/0x14e0
[  205.345547][ T6278]  __x64_sys_openat+0x247/0x2a0
[  205.350425][ T6278]  ? __pfx___x64_sys_openat+0x10/0x10
[  205.355822][ T6278]  ? do_syscall_64+0x100/0x230
[  205.357004][    C1] DEBUG: waiting rtnl_mutex for 1206 jiffies.
[  205.360593][ T6278]  ? do_syscall_64+0xb6/0x230
[  205.366680][    C1] task:kworker/u8:7    state:D
[  205.371305][ T6278]  do_syscall_64+0xf3/0x230
[  205.376065][    C1]  stack:23280 pid:1106  tgid:1106  ppid:2      flags:0x00004000
[  205.380568][ T6278]  ? clear_bhb_loop+0x35/0x90
[  205.380596][ T6278]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  205.388329][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  205.392956][ T6278] RIP: 0033:0x7effd167cea9
[  205.398896][    C1] 
[  205.404830][ T6278] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  205.409276][    C1] Call Trace:
[  205.411548][ T6278] RSP: 002b:00007effd11bd0c8 EFLAGS: 00000246
[  205.431194][    C1]  <TASK>
[  205.434423][ T6278]  ORIG_RAX: 0000000000000101
[  205.434436][ T6278] RAX: ffffffffffffffda RBX: 00007effd17b4120 RCX: 00007effd167cea9
[  205.440519][    C1]  __schedule+0x17e8/0x4a20
[  205.443399][ T6278] RDX: 0000000000000000 RSI: 0000000020000100 RDI: ffffffffffffff9c
[  205.448098][    C1]  ? __pfx___schedule+0x10/0x10
[  205.456000][ T6278] RBP: 00007effd16ebff4 R08: 0000000000000000 R09: 0000000000000000
[  205.456014][ T6278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  205.456028][ T6278] R13: 000000000000006e R14: 00007effd17b4120 R15: 00007ffc8bfde378
[  205.460528][    C1]  ? __pfx_lock_release+0x10/0x10
[  205.468459][ T6278]  </TASK>
[  205.505611][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  205.511151][    C1]  ? kthread_data+0x52/0xd0
[  205.515696][    C1]  ? schedule+0x90/0x320
[  205.520011][    C1]  ? wq_worker_sleeping+0x66/0x240
[  205.525162][    C1]  ? schedule+0x90/0x320
[  205.529479][    C1]  schedule+0x14b/0x320
[  205.533675][    C1]  schedule_preempt_disabled+0x13/0x30
[  205.539196][    C1]  __mutex_lock+0x6a4/0xd70
[  205.543725][    C1]  ? mark_lock+0x9a/0x360
[  205.548122][    C1]  ? __mutex_lock+0x527/0xd70
[  205.552838][    C1]  ? addrconf_dad_work+0xd0/0x16f0
[  205.558109][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  205.563211][    C1]  ? rtnl_lock+0xe7/0x130
[  205.567598][    C1]  addrconf_dad_work+0xd0/0x16f0
[  205.572587][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  205.578116][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  205.584495][    C1]  ? process_scheduled_works+0x945/0x1830
[  205.590290][    C1]  process_scheduled_works+0xa2c/0x1830
[  205.595905][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  205.601963][    C1]  ? assign_work+0x364/0x3d0
[  205.606599][    C1]  worker_thread+0x86d/0xd50
[  205.611268][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  205.617214][    C1]  ? __kthread_parkme+0x169/0x1d0
[  205.622371][    C1]  ? __pfx_worker_thread+0x10/0x10
[  205.627559][    C1]  kthread+0x2f0/0x390
[  205.631674][    C1]  ? __pfx_worker_thread+0x10/0x10
[  205.636860][    C1]  ? __pfx_kthread+0x10/0x10
[  205.641488][    C1]  ret_from_fork+0x4b/0x80
[  205.645940][    C1]  ? __pfx_kthread+0x10/0x10
[  205.650892][    C1]  ret_from_fork_asm+0x1a/0x30
[  205.655723][    C1]  </TASK>
[  205.658825][    C1] DEBUG: holding rtnl_mutex for 1193 jiffies.
[  205.664913][    C1] task:kworker/u8:1    state:D stack:22040 pid:12    tgid:12    ppid:2      flags:0x00004000
[  205.675176][    C1] Workqueue: netns cleanup_net
[  205.680014][    C1] Call Trace:
[  205.683319][    C1]  <TASK>
[  205.686280][    C1]  __schedule+0x17e8/0x4a20
[  205.690888][    C1]  ? __pfx___schedule+0x10/0x10
[  205.695780][    C1]  ? __pfx_lock_release+0x10/0x10
[  205.700890][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  205.706378][    C1]  ? kthread_data+0x52/0xd0
[  205.710977][    C1]  ? schedule+0x90/0x320
[  205.714700][ T6278] bread failed!
[  205.715223][    C1]  ? wq_worker_sleeping+0x66/0x240
[  205.723841][    C1]  ? schedule+0x90/0x320
[  205.724201][ T6278] jfs_lookup: dtSearch returned -5
[  205.728135][    C1]  schedule+0x14b/0x320
[  205.728170][    C1]  schedule_preempt_disabled+0x13/0x30
[  205.728195][    C1]  __mutex_lock+0x6a4/0xd70
[  205.728227][    C1]  ? __mutex_lock+0x527/0xd70
[  205.752202][    C1]  ? synchronize_rcu_expedited+0x451/0x830
[  205.758079][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  205.763407][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  205.768692][    C1]  synchronize_rcu_expedited+0x451/0x830
[  205.774396][    C1]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  205.780731][    C1]  ? __pfx___might_resched+0x10/0x10
[  205.786035][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  205.792069][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  205.798492][    C1]  synchronize_rcu+0x11b/0x360
[  205.803294][    C1]  ? __pfx_synchronize_rcu+0x10/0x10
[  205.808678][    C1]  ? __phys_addr+0x105/0x170
[  205.813349][    C1]  lockdep_unregister_key+0x4b7/0x540
[  205.818783][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  205.824694][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  205.829959][    C1]  ? __qdisc_destroy+0x150/0x410
[  205.834930][    C1]  ? kfree+0x149/0x360
[  205.839077][    C1]  ? __pfx_pfifo_fast_destroy+0x10/0x10
[  205.844657][    C1]  __qdisc_destroy+0x165/0x410
[  205.849477][    C1]  dev_shutdown+0x357/0x440
[  205.854007][    C1]  unregister_netdevice_many_notify+0x977/0x16b0
[  205.860735][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  205.867549][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  205.873437][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  205.879742][    C1]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  205.885920][    C1]  default_device_exit_batch+0xa0f/0xa90
[  205.891705][    C1]  ? __pfx___might_resched+0x10/0x10
[  205.897073][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  205.903273][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  205.908615][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  205.914797][    C1]  cleanup_net+0x89d/0xcc0
[  205.919294][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  205.924284][    C1]  ? process_scheduled_works+0x945/0x1830
[  205.930120][    C1]  process_scheduled_works+0xa2c/0x1830
[  205.935711][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  205.941766][    C1]  ? assign_work+0x364/0x3d0
[  205.946377][    C1]  worker_thread+0x86d/0xd50
[  205.951049][    C1]  ? __kthread_parkme+0x169/0x1d0
[  205.956105][    C1]  ? __pfx_worker_thread+0x10/0x10
[  205.961275][    C1]  kthread+0x2f0/0x390
[  205.965397][    C1]  ? __pfx_worker_thread+0x10/0x10
[  205.970583][    C1]  ? __pfx_kthread+0x10/0x10
[  205.975198][    C1]  ret_from_fork+0x4b/0x80
[  205.979931][    C1]  ? __pfx_kthread+0x10/0x10
[  205.984620][    C1]  ret_from_fork_asm+0x1a/0x30
[  205.989579][    C1]  </TASK>
[  205.992713][    C1] DEBUG: waiting rtnl_mutex for 1270 jiffies.
[  205.998812][    C1] task:syz-executor.2  state:D stack:21024 pid:6199  tgid:6199  ppid:6184   flags:0x00004002
[  206.009336][    C1] Call Trace:
[  206.012713][    C1]  <TASK>
[  206.015666][    C1]  __schedule+0x17e8/0x4a20
[  206.020460][    C1]  ? __pfx___schedule+0x10/0x10
[  206.025458][    C1]  ? __pfx_lock_release+0x10/0x10
[  206.030649][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  206.036248][    C1]  ? schedule+0x90/0x320
[  206.040612][    C1]  schedule+0x14b/0x320
[  206.044897][    C1]  schedule_preempt_disabled+0x13/0x30
[  206.050458][    C1]  __mutex_lock+0x6a4/0xd70
[  206.055007][    C1]  ? __mutex_lock+0x527/0xd70
[  206.059804][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  206.065049][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  206.070161][    C1]  ? rtnl_lock+0xe7/0x130
[  206.074531][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  206.079832][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  206.085068][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  206.090641][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  206.095968][    C1]  ? __pfx_validate_chain+0x10/0x10
[  206.101236][    C1]  ? __pfx_validate_chain+0x10/0x10
[  206.106460][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  206.111472][    C1]  ? mark_lock+0x9a/0x360
[  206.115825][    C1]  ? __pfx_validate_chain+0x10/0x10
[  206.121108][    C1]  ? __lock_acquire+0x1359/0x2000
[  206.126163][    C1]  ? mark_lock+0x9a/0x360
[  206.130561][    C1]  ? __lock_acquire+0x1359/0x2000
[  206.135619][    C1]  netlink_rcv_skb+0x1e3/0x430
[  206.140431][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  206.145919][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  206.151289][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  206.156622][    C1]  netlink_unicast+0x7ea/0x980
[  206.161470][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  206.166804][    C1]  ? __virt_addr_valid+0x183/0x520
[  206.171946][    C1]  ? __check_object_size+0x49c/0x900
[  206.177392][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  206.182526][    C1]  netlink_sendmsg+0x8db/0xcb0
[  206.187444][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.192757][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  206.197732][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  206.203027][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  206.208533][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  206.213837][    C1]  __sock_sendmsg+0x221/0x270
[  206.218572][    C1]  __sys_sendto+0x3a4/0x4f0
[  206.223125][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  206.228227][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  206.234235][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  206.240632][    C1]  __x64_sys_sendto+0xde/0x100
[  206.245428][    C1]  do_syscall_64+0xf3/0x230
[  206.249996][    C1]  ? clear_bhb_loop+0x35/0x90
[  206.254701][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  206.260636][    C1] RIP: 0033:0x7f72ff87eb9c
[  206.265082][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  206.273642][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  206.281680][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  206.289725][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  206.297795][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  206.305797][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  206.313850][    C1]  </TASK>
[  206.316911][    C1] DEBUG: waiting rtnl_mutex for 1219 jiffies.
[  206.322975][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  206.333194][    C1] Workqueue: events linkwatch_event
[  206.338459][    C1] Call Trace:
[  206.341729][    C1]  <TASK>
[  206.344651][    C1]  __schedule+0x17e8/0x4a20
[  206.349235][    C1]  ? __pfx___schedule+0x10/0x10
[  206.354101][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  206.360164][    C1]  ? __pfx_lock_release+0x10/0x10
[  206.365207][    C1]  ? kick_pool+0x45c/0x620
[  206.369683][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  206.375074][    C1]  ? schedule+0x90/0x320
[  206.379355][    C1]  schedule+0x14b/0x320
[  206.383630][    C1]  schedule_preempt_disabled+0x13/0x30
[  206.389157][    C1]  __mutex_lock+0x6a4/0xd70
[  206.393680][    C1]  ? __mutex_lock+0x527/0xd70
[  206.398402][    C1]  ? linkwatch_event+0xe/0x60
[  206.403112][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  206.408211][    C1]  ? process_scheduled_works+0x945/0x1830
[  206.413962][    C1]  ? rtnl_lock+0xe7/0x130
[  206.418337][    C1]  ? process_scheduled_works+0x945/0x1830
[  206.424100][    C1]  linkwatch_event+0xe/0x60
[  206.428670][    C1]  process_scheduled_works+0xa2c/0x1830
[  206.434252][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  206.440310][    C1]  ? assign_work+0x364/0x3d0
[  206.444917][    C1]  worker_thread+0x86d/0xd50
[  206.449550][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  206.455460][    C1]  ? __kthread_parkme+0x169/0x1d0
[  206.460543][    C1]  ? __pfx_worker_thread+0x10/0x10
[  206.465700][    C1]  kthread+0x2f0/0x390
[  206.469815][    C1]  ? __pfx_worker_thread+0x10/0x10
[  206.474963][    C1]  ? __pfx_kthread+0x10/0x10
[  206.479621][    C1]  ret_from_fork+0x4b/0x80
[  206.484065][    C1]  ? __pfx_kthread+0x10/0x10
[  206.488693][    C1]  ret_from_fork_asm+0x1a/0x30
[  206.493487][    C1]  </TASK>
[  206.496526][    C1] 
[  206.496526][    C1] Showing all locks held in the system:
[  206.504289][    C1] 5 locks held by kworker/u8:1/12:
[  206.509450][    C1]  #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  206.520406][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  206.530999][    C1]  #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  206.540478][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  206.550586][    C1]  #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  206.561578][    C1] 4 locks held by kworker/u8:2/35:
[  206.566724][    C1] 6 locks held by kworker/1:1/46:
[  206.571760][    C1]  #0: ffff888015081948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  206.584238][    C1]  #1: ffffc90000b67d00 ((work_completion)(&(&gc_work->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  206.597197][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: gc_worker+0x26b/0x1530
[  206.606286][    C1]  #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  206.616550][    C1]  #4: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  206.626379][    C1]  #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  206.636288][    C1] 3 locks held by kworker/u8:7/1106:
[  206.641629][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  206.653292][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  206.666301][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  206.675790][    C1] 1 lock held by dhcpcd/4761:
[  206.680515][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  206.689721][    C1] 2 locks held by getty/4850:
[  206.694385][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  206.704180][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  206.714384][    C1] 3 locks held by kworker/1:4/5164:
[  206.719652][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  206.730774][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  206.741824][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  206.750889][    C1] 2 locks held by syz-executor.2/5517:
[  206.756355][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  206.764578][    C1]  #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  206.774918][    C1] 1 lock held by syz-executor.2/6199:
[  206.780350][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  206.789908][    C1] 1 lock held by syz-executor.4/6259:
[  206.795258][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  206.804793][    C1] 3 locks held by syz-executor.0/6268:
[  206.810278][    C1]  #0: ffff888025675158 (&mousedev->mutex#2){+.+.}-{3:3}, at: mousedev_close_device+0x2e/0xe0
[  206.820639][    C1]  #1: ffff888024ece2c0 (&dev->mutex#2){+.+.}-{3:3}, at: input_close_device+0x4e/0x1d0
[  206.830375][    C1]  #2: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  206.841331][    C1] 
[  206.843663][    C1] =============================================
[  206.843663][    C1] 
[  206.870394][ T5115] Bluetooth: hci2: command tx timeout
[  207.887098][    C1] DEBUG: waiting rtnl_mutex for 1459 jiffies.
[  207.893309][    C1] task:kworker/u8:7    state:D stack:23280 pid:1106  tgid:1106  ppid:2      flags:0x00004000
[  207.903785][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  207.909847][    C1] Call Trace:
[  207.913149][    C1]  <TASK>
[  207.916133][    C1]  __schedule+0x17e8/0x4a20
[  207.920750][    C1]  ? __pfx___schedule+0x10/0x10
[  207.925639][    C1]  ? __pfx_lock_release+0x10/0x10
[  207.930747][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  207.936360][    C1]  ? kthread_data+0x52/0xd0
[  207.940976][    C1]  ? schedule+0x90/0x320
[  207.945243][    C1]  ? wq_worker_sleeping+0x66/0x240
[  207.950422][    C1]  ? schedule+0x90/0x320
[  207.954700][    C1]  schedule+0x14b/0x320
[  207.958967][    C1]  schedule_preempt_disabled+0x13/0x30
[  207.964472][    C1]  __mutex_lock+0x6a4/0xd70
[  207.969054][    C1]  ? mark_lock+0x9a/0x360
[  207.973419][    C1]  ? __mutex_lock+0x527/0xd70
[  207.978177][    C1]  ? addrconf_dad_work+0xd0/0x16f0
[  207.983358][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  207.988490][    C1]  ? rtnl_lock+0xe7/0x130
[  207.992848][    C1]  addrconf_dad_work+0xd0/0x16f0
[  207.997898][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  208.003410][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  208.009835][    C1]  ? process_scheduled_works+0x945/0x1830
[  208.015590][    C1]  process_scheduled_works+0xa2c/0x1830
[  208.021228][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  208.027293][    C1]  ? assign_work+0x364/0x3d0
[  208.031947][    C1]  worker_thread+0x86d/0xd50
[  208.036567][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  208.042524][    C1]  ? __kthread_parkme+0x169/0x1d0
[  208.047628][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.052769][    C1]  kthread+0x2f0/0x390
[  208.056917][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.062063][    C1]  ? __pfx_kthread+0x10/0x10
[  208.066733][    C1]  ret_from_fork+0x4b/0x80
[  208.071183][    C1]  ? __pfx_kthread+0x10/0x10
[  208.075892][    C1]  ret_from_fork_asm+0x1a/0x30
[  208.080754][    C1]  </TASK>
[  208.083792][    C1] DEBUG: holding rtnl_mutex for 1435 jiffies.
[  208.089900][    C1] task:kworker/u8:1    state:R  running task     stack:22040 pid:12    tgid:12    ppid:2      flags:0x00004000
[  208.101702][    C1] Workqueue: netns cleanup_net
[  208.106506][    C1] Call Trace:
[  208.109855][    C1]  <TASK>
[  208.112809][    C1]  __schedule+0x17e8/0x4a20
[  208.117416][    C1]  ? mark_lock+0x9a/0x360
[  208.121780][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  208.127834][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  208.134191][    C1]  ? stack_depot_save_flags+0x29/0x830
[  208.139718][    C1]  ? __pfx___schedule+0x10/0x10
[  208.144598][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  208.149882][    C1]  ? mark_lock+0x9a/0x360
[  208.154273][    C1]  preempt_schedule_irq+0xfb/0x1c0
[  208.159460][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  208.165228][    C1]  irqentry_exit+0x5e/0x90
[  208.169748][    C1]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  208.175236][    C1] RIP: 0010:synchronize_rcu+0x0/0x360
[  208.180665][    C1] Code: e1 07 80 c1 03 38 c1 0f 8c 97 fe ff ff 4c 89 f7 e8 05 b8 7f 00 e9 8a fe ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 <f3> 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48
[  208.200333][    C1] RSP: 0018:ffffc90000117678 EFLAGS: 00000206
[  208.206432][    C1] RAX: dffffc0000000000 RBX: 1ffff92000022ed8 RCX: ffffffff947c3803
[  208.214476][    C1] RDX: 0000000000000001 RSI: ffffffff8bcace80 RDI: ffffffff8c200760
[  208.222537][    C1] RBP: ffffc90000117758 R08: ffffffff947b0197 R09: 1ffffffff28f6032
[  208.230606][    C1] R10: dffffc0000000000 R11: fffffbfff28f6033 R12: ffffffff947aedf8
[  208.238650][    C1] R13: 1ffff92000022ed4 R14: 0000000000000203 R15: ffffc900001176c0
[  208.246806][    C1]  lockdep_unregister_key+0x4b7/0x540
[  208.252314][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  208.258330][    C1]  ? rcu_is_watching+0x15/0xb0
[  208.263147][    C1]  ? qdisc_reset+0x3bb/0x5a0
[  208.267838][    C1]  __qdisc_destroy+0x165/0x410
[  208.272653][    C1]  dev_shutdown+0x357/0x440
[  208.277274][    C1]  unregister_netdevice_many_notify+0x977/0x16b0
[  208.283753][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  208.290664][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  208.296719][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  208.303003][    C1]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  208.309253][    C1]  default_device_exit_batch+0xa0f/0xa90
[  208.314966][    C1]  ? __pfx___might_resched+0x10/0x10
[  208.320346][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  208.326668][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  208.332511][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  208.338757][    C1]  cleanup_net+0x89d/0xcc0
[  208.343210][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  208.348229][    C1]  ? process_scheduled_works+0x945/0x1830
[  208.353979][    C1]  process_scheduled_works+0xa2c/0x1830
[  208.359608][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  208.365638][    C1]  ? assign_work+0x364/0x3d0
[  208.370303][    C1]  worker_thread+0x86d/0xd50
[  208.374947][    C1]  ? __kthread_parkme+0x169/0x1d0
[  208.380125][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.385302][    C1]  kthread+0x2f0/0x390
[  208.389527][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.394669][    C1]  ? __pfx_kthread+0x10/0x10
[  208.399327][    C1]  ret_from_fork+0x4b/0x80
[  208.403950][    C1]  ? __pfx_kthread+0x10/0x10
[  208.408606][    C1]  ret_from_fork_asm+0x1a/0x30
[  208.413414][    C1]  </TASK>
[  208.416457][    C1] DEBUG: waiting rtnl_mutex for 1512 jiffies.
[  208.422573][    C1] task:syz-executor.2  state:D stack:21024 pid:6199  tgid:6199  ppid:6184   flags:0x00004002
[  208.432905][    C1] Call Trace:
[  208.436208][    C1]  <TASK>
[  208.439193][    C1]  __schedule+0x17e8/0x4a20
[  208.443759][    C1]  ? __pfx___schedule+0x10/0x10
[  208.448667][    C1]  ? __pfx_lock_release+0x10/0x10
[  208.453722][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  208.459259][    C1]  ? schedule+0x90/0x320
[  208.463551][    C1]  schedule+0x14b/0x320
[  208.467787][    C1]  schedule_preempt_disabled+0x13/0x30
[  208.473376][    C1]  __mutex_lock+0x6a4/0xd70
[  208.477989][    C1]  ? __mutex_lock+0x527/0xd70
[  208.482705][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  208.487984][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  208.493066][    C1]  ? rtnl_lock+0xe7/0x130
[  208.497474][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  208.502887][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  208.508165][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  208.513690][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  208.519045][    C1]  ? __pfx_validate_chain+0x10/0x10
[  208.524293][    C1]  ? __pfx_validate_chain+0x10/0x10
[  208.529571][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  208.534561][    C1]  ? mark_lock+0x9a/0x360
[  208.538963][    C1]  ? __pfx_validate_chain+0x10/0x10
[  208.544198][    C1]  ? __lock_acquire+0x1359/0x2000
[  208.549286][    C1]  ? mark_lock+0x9a/0x360
[  208.553664][    C1]  ? __lock_acquire+0x1359/0x2000
[  208.558780][    C1]  netlink_rcv_skb+0x1e3/0x430
[  208.563578][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  208.569113][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  208.574461][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  208.579719][    C1]  netlink_unicast+0x7ea/0x980
[  208.584519][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  208.589845][    C1]  ? __virt_addr_valid+0x183/0x520
[  208.595079][    C1]  ? __check_object_size+0x49c/0x900
[  208.600420][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  208.605555][    C1]  netlink_sendmsg+0x8db/0xcb0
[  208.610389][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.615722][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  208.620727][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  208.626041][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  208.631570][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  208.636904][    C1]  __sock_sendmsg+0x221/0x270
[  208.641709][    C1]  __sys_sendto+0x3a4/0x4f0
[  208.646244][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  208.651360][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  208.657406][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  208.663763][    C1]  __x64_sys_sendto+0xde/0x100
[  208.668602][    C1]  do_syscall_64+0xf3/0x230
[  208.673131][    C1]  ? clear_bhb_loop+0x35/0x90
[  208.677859][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.683864][    C1] RIP: 0033:0x7f72ff87eb9c
[  208.688411][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  208.696965][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  208.704952][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  208.712971][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  208.721075][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  208.729085][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  208.737132][    C1]  </TASK>
[  208.740165][    C1] DEBUG: waiting rtnl_mutex for 1461 jiffies.
[  208.746237][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  208.756466][    C1] Workqueue: events linkwatch_event
[  208.762014][    C1] Call Trace:
[  208.765308][    C1]  <TASK>
[  208.768280][    C1]  __schedule+0x17e8/0x4a20
[  208.772844][    C1]  ? __pfx___schedule+0x10/0x10
[  208.777752][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  208.783776][    C1]  ? __pfx_lock_release+0x10/0x10
[  208.788867][    C1]  ? kick_pool+0x45c/0x620
[  208.793310][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  208.798734][    C1]  ? schedule+0x90/0x320
[  208.803015][    C1]  schedule+0x14b/0x320
[  208.807235][    C1]  schedule_preempt_disabled+0x13/0x30
[  208.812720][    C1]  __mutex_lock+0x6a4/0xd70
[  208.817365][    C1]  ? __mutex_lock+0x527/0xd70
[  208.822089][    C1]  ? linkwatch_event+0xe/0x60
[  208.826822][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  208.831878][    C1]  ? process_scheduled_works+0x945/0x1830
[  208.837647][    C1]  ? rtnl_lock+0xe7/0x130
[  208.842006][    C1]  ? process_scheduled_works+0x945/0x1830
[  208.847771][    C1]  linkwatch_event+0xe/0x60
[  208.852288][    C1]  process_scheduled_works+0xa2c/0x1830
[  208.857907][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  208.863952][    C1]  ? assign_work+0x364/0x3d0
[  208.868616][    C1]  worker_thread+0x86d/0xd50
[  208.873265][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  208.879329][    C1]  ? __kthread_parkme+0x169/0x1d0
[  208.884386][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.889555][    C1]  kthread+0x2f0/0x390
[  208.893681][    C1]  ? __pfx_worker_thread+0x10/0x10
[  208.898854][    C1]  ? __pfx_kthread+0x10/0x10
[  208.903468][    C1]  ret_from_fork+0x4b/0x80
[  208.907936][    C1]  ? __pfx_kthread+0x10/0x10
[  208.912589][    C1]  ret_from_fork_asm+0x1a/0x30
[  208.917506][    C1]  </TASK>
[  208.920647][    C1] DEBUG: waiting rtnl_mutex for 656 jiffies.
[  208.926671][    C1] task:syz-executor.4  state:D stack:24992 pid:6259  tgid:6259  ppid:6238   flags:0x00000002
[  208.936894][    C1] Call Trace:
[  208.940197][    C1]  <TASK>
[  208.943146][    C1]  __schedule+0x17e8/0x4a20
[  208.947740][    C1]  ? __pfx___schedule+0x10/0x10
[  208.952618][    C1]  ? __pfx_lock_release+0x10/0x10
[  208.957693][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  208.963207][    C1]  ? schedule+0x90/0x320
[  208.967501][    C1]  schedule+0x14b/0x320
[  208.971689][    C1]  schedule_preempt_disabled+0x13/0x30
[  208.977196][    C1]  __mutex_lock+0x6a4/0xd70
[  208.981738][    C1]  ? __mutex_lock+0x527/0xd70
[  208.986449][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  208.991707][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  208.996792][    C1]  ? rtnl_lock+0xe7/0x130
[  209.001142][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  209.006210][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  209.011464][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.016974][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  209.022286][    C1]  ? __pfx_validate_chain+0x10/0x10
[  209.027564][    C1]  ? __pfx_validate_chain+0x10/0x10
[  209.032782][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  209.037793][    C1]  ? mark_lock+0x9a/0x360
[  209.042156][    C1]  ? __pfx_validate_chain+0x10/0x10
[  209.047416][    C1]  ? __lock_acquire+0x1359/0x2000
[  209.052482][    C1]  ? mark_lock+0x9a/0x360
[  209.056910][    C1]  ? __lock_acquire+0x1359/0x2000
[  209.062173][    C1]  netlink_rcv_skb+0x1e3/0x430
[  209.067004][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  209.072516][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  209.077891][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  209.083136][    C1]  netlink_unicast+0x7ea/0x980
[  209.087977][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  209.093294][    C1]  ? __virt_addr_valid+0x183/0x520
[  209.098496][    C1]  ? __check_object_size+0x49c/0x900
[  209.103818][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  209.109005][    C1]  netlink_sendmsg+0x8db/0xcb0
[  209.113822][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.119203][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  209.124177][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  209.129518][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  209.135030][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.140468][    C1]  __sock_sendmsg+0x221/0x270
[  209.145182][    C1]  __sys_sendto+0x3a4/0x4f0
[  209.149834][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  209.154913][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  209.161037][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  209.167438][    C1]  ? exc_page_fault+0x590/0x8c0
[  209.172325][    C1]  __x64_sys_sendto+0xde/0x100
[  209.177138][    C1]  do_syscall_64+0xf3/0x230
[  209.181750][    C1]  ? clear_bhb_loop+0x35/0x90
[  209.186446][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.192453][    C1] RIP: 0033:0x7f50c127eb9c
[  209.196934][    C1] RSP: 002b:00007ffdb6508c60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  209.205488][    C1] RAX: ffffffffffffffda RBX: 00007f50c1ee4620 RCX: 00007f50c127eb9c
[  209.214048][    C1] RDX: 0000000000000028 RSI: 00007f50c1ee4670 RDI: 0000000000000003
[  209.224033][    C1] RBP: 0000000000000000 R08: 00007ffdb6508cb4 R09: 000000000000000c
[  209.233537][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  209.243733][    C1] R13: 0000000000000000 R14: 00007f50c1ee4670 R15: 0000000000000000
[  209.253809][    C1]  </TASK>
[  209.257345][    C1] 
[  209.257345][    C1] Showing all locks held in the system:
[  209.266756][    C1] 4 locks held by kworker/u8:1/12:
[  209.273008][    C1]  #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  209.286253][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  209.297814][    C1]  #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  209.307297][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  209.318883][    C1] 5 locks held by kworker/u8:2/35:
[  209.324640][    C1] 3 locks held by kworker/u8:7/1106:
[  209.331101][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  209.344835][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  209.360567][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  209.371457][    C1] 1 lock held by dhcpcd/4761:
[  209.376788][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  209.387318][    C1] 2 locks held by getty/4850:
[  209.392873][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  209.405325][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  209.418273][    C1] 3 locks held by kworker/1:4/5164:
[  209.424815][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  209.437449][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  209.450493][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  209.459898][    C1] 2 locks held by syz-executor.2/5517:
[  209.465369][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  209.474706][    C1]  #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  209.486886][    C1] 1 lock held by syz-executor.2/6199:
[  209.493381][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  209.504361][    C1] 1 lock held by syz-executor.4/6259:
[  209.510736][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  209.522133][    C1] 2 locks held by syz-executor.3/6285:
[  209.528489][    C1]  #0: ffff88805b42d608 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  209.540423][    C1]  #1: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  209.551413][    C1] 3 locks held by syz-executor.3/6287:
[  209.556936][    C1]  #0: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  209.567132][    C1]  #1: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  209.576961][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  209.586900][    C1] 1 lock held by syz-executor.3/6289:
[  209.592311][    C1] 1 lock held by syz-executor.0/6301:
[  209.597721][    C1] 4 locks held by kvm-nx-lpage-re/6307:
[  209.603281][    C1]  #0: ffffffff8e3635e8 (cgroup_mutex){+.+.}-{3:3}, at: cgroup_attach_task_all+0x27/0xe0
[  209.613228][    C1]  #1: ffffffff8e1cf750 (cpu_hotplug_lock){++++}-{0:0}, at: cgroup_attach_lock+0x11/0x40
[  209.623166][    C1]  #2: ffffffff8e3637d0 (cgroup_threadgroup_rwsem){++++}-{0:0}, at: cgroup_attach_task_all+0x31/0xe0
[  209.634171][    C1]  #3: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  209.645154][    C1] 
[  209.647555][    C1] =============================================
[  209.647555][    C1] 
[  209.661601][ T5111] Bluetooth: hci2: command tx timeout
[  209.764951][ T6310] syz-executor.0[6310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.765107][ T6310] syz-executor.0[6310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.765846][   T12] team0 (unregistering): Port device team_slave_1 removed
[  209.907622][   T12] team0 (unregistering): Port device team_slave_0 removed
[  210.379147][ T6317] loop1: detected capacity change from 0 to 1024
[  210.687677][    C1] DEBUG: waiting rtnl_mutex for 1739 jiffies.
[  210.693859][    C1] task:kworker/u8:7    state:D stack:23280 pid:1106  tgid:1106  ppid:2      flags:0x00004000
[  210.704120][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  210.710172][    C1] Call Trace:
[  210.713475][    C1]  <TASK>
[  210.716432][    C1]  __schedule+0x17e8/0x4a20
[  210.721018][    C1]  ? __pfx___schedule+0x10/0x10
[  210.725921][    C1]  ? __pfx_lock_release+0x10/0x10
[  210.731017][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  210.736518][    C1]  ? kthread_data+0x52/0xd0
[  210.741068][    C1]  ? schedule+0x90/0x320
[  210.745427][    C1]  ? wq_worker_sleeping+0x66/0x240
[  210.750583][    C1]  ? schedule+0x90/0x320
[  210.754843][    C1]  schedule+0x14b/0x320
[  210.759058][    C1]  schedule_preempt_disabled+0x13/0x30
[  210.764540][    C1]  __mutex_lock+0x6a4/0xd70
[  210.769091][    C1]  ? mark_lock+0x9a/0x360
[  210.773454][    C1]  ? __mutex_lock+0x527/0xd70
[  210.778179][    C1]  ? addrconf_dad_work+0xd0/0x16f0
[  210.783320][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  210.788406][    C1]  ? rtnl_lock+0xe7/0x130
[  210.792757][    C1]  addrconf_dad_work+0xd0/0x16f0
[  210.797809][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  210.803308][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  210.809915][    C1]  ? process_scheduled_works+0x945/0x1830
[  210.815673][    C1]  process_scheduled_works+0xa2c/0x1830
[  210.821331][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  210.827390][    C1]  ? assign_work+0x364/0x3d0
[  210.832020][    C1]  worker_thread+0x86d/0xd50
[  210.836675][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  210.842606][    C1]  ? __kthread_parkme+0x169/0x1d0
[  210.847702][    C1]  ? __pfx_worker_thread+0x10/0x10
[  210.852853][    C1]  kthread+0x2f0/0x390
[  210.857002][    C1]  ? __pfx_worker_thread+0x10/0x10
[  210.862145][    C1]  ? __pfx_kthread+0x10/0x10
[  210.866807][    C1]  ret_from_fork+0x4b/0x80
[  210.871267][    C1]  ? __pfx_kthread+0x10/0x10
[  210.875888][    C1]  ret_from_fork_asm+0x1a/0x30
[  210.880754][    C1]  </TASK>
[  210.883798][    C1] DEBUG: holding rtnl_mutex for 1715 jiffies.
[  210.889931][    C1] task:kworker/u8:1    state:D stack:22040 pid:12    tgid:12    ppid:2      flags:0x00004000
[  210.900169][    C1] Workqueue: netns cleanup_net
[  210.904974][    C1] Call Trace:
[  210.908316][    C1]  <TASK>
[  210.911273][    C1]  __schedule+0x17e8/0x4a20
[  210.915846][    C1]  ? __pfx___schedule+0x10/0x10
[  210.920783][    C1]  ? __pfx_lock_release+0x10/0x10
[  210.925834][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  210.931789][    C1]  ? kthread_data+0x52/0xd0
[  210.936329][    C1]  ? wq_worker_sleeping+0x66/0x240
[  210.941520][    C1]  ? schedule+0x90/0x320
[  210.945790][    C1]  schedule+0x14b/0x320
[  210.950015][    C1]  synchronize_rcu_expedited+0x684/0x830
[  210.955693][    C1]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  210.961966][    C1]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  210.967315][    C1]  ? __pfx___might_resched+0x10/0x10
[  210.972639][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  210.978697][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  210.984806][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  210.991234][    C1]  synchronize_rcu+0x11b/0x360
[  210.996029][    C1]  ? __pfx_synchronize_rcu+0x10/0x10
[  211.001401][    C1]  ? __phys_addr+0x105/0x170
[  211.006031][    C1]  lockdep_unregister_key+0x4b7/0x540
[  211.011489][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  211.017450][    C1]  ? rcu_is_watching+0x15/0xb0
[  211.022263][    C1]  ? qdisc_reset+0x3bb/0x5a0
[  211.027035][    C1]  __qdisc_destroy+0x165/0x410
[  211.031843][    C1]  dev_shutdown+0x9b/0x440
[  211.036306][    C1]  unregister_netdevice_many_notify+0x977/0x16b0
[  211.042755][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  211.049596][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  211.055532][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  211.061859][    C1]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  211.068097][    C1]  default_device_exit_batch+0xa0f/0xa90
[  211.073778][    C1]  ? __pfx___might_resched+0x10/0x10
[  211.079142][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  211.085337][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  211.090724][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  211.096953][    C1]  cleanup_net+0x89d/0xcc0
[  211.101422][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  211.106396][    C1]  ? process_scheduled_works+0x945/0x1830
[  211.112206][    C1]  process_scheduled_works+0xa2c/0x1830
[  211.117843][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  211.123867][    C1]  ? assign_work+0x364/0x3d0
[  211.128546][    C1]  worker_thread+0x86d/0xd50
[  211.133178][    C1]  ? __kthread_parkme+0x169/0x1d0
[  211.138265][    C1]  ? __pfx_worker_thread+0x10/0x10
[  211.143405][    C1]  kthread+0x2f0/0x390
[  211.147558][    C1]  ? __pfx_worker_thread+0x10/0x10
[  211.152694][    C1]  ? __pfx_kthread+0x10/0x10
[  211.157355][    C1]  ret_from_fork+0x4b/0x80
[  211.161857][    C1]  ? __pfx_kthread+0x10/0x10
[  211.166725][    C1]  ret_from_fork_asm+0x1a/0x30
[  211.171656][    C1]  </TASK>
[  211.174721][    C1] DEBUG: waiting rtnl_mutex for 1788 jiffies.
[  211.180842][    C1] task:syz-executor.2  state:D stack:21024 pid:6199  tgid:6199  ppid:6184   flags:0x00004002
[  211.191115][    C1] Call Trace:
[  211.194418][    C1]  <TASK>
[  211.197428][    C1]  __schedule+0x17e8/0x4a20
[  211.201998][    C1]  ? __pfx___schedule+0x10/0x10
[  211.206910][    C1]  ? __pfx_lock_release+0x10/0x10
[  211.211979][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  211.217549][    C1]  ? schedule+0x90/0x320
[  211.221825][    C1]  schedule+0x14b/0x320
[  211.226023][    C1]  schedule_preempt_disabled+0x13/0x30
[  211.231599][    C1]  __mutex_lock+0x6a4/0xd70
[  211.236154][    C1]  ? __mutex_lock+0x527/0xd70
[  211.240926][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  211.246166][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  211.251275][    C1]  ? rtnl_lock+0xe7/0x130
[  211.255643][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  211.260760][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  211.266003][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  211.271542][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  211.276905][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.282140][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.287422][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  211.292415][    C1]  ? mark_lock+0x9a/0x360
[  211.296849][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.302097][    C1]  ? __lock_acquire+0x1359/0x2000
[  211.307215][    C1]  ? mark_lock+0x9a/0x360
[  211.311682][    C1]  ? __lock_acquire+0x1359/0x2000
[  211.316810][    C1]  netlink_rcv_skb+0x1e3/0x430
[  211.321619][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  211.327179][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  211.332530][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  211.337095][ T6313] loop0: detected capacity change from 0 to 32768
[  211.337792][    C1]  netlink_unicast+0x7ea/0x980
[  211.337837][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  211.337863][    C1]  ? __virt_addr_valid+0x183/0x520
[  211.337894][    C1]  ? __check_object_size+0x49c/0x900
[  211.337922][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  211.337955][    C1]  netlink_sendmsg+0x8db/0xcb0
[  211.337998][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.338032][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  211.338063][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  211.338089][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  211.338122][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.338156][    C1]  __sock_sendmsg+0x221/0x270
[  211.338195][    C1]  __sys_sendto+0x3a4/0x4f0
[  211.338228][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  211.338281][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  211.338312][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  211.338347][    C1]  __x64_sys_sendto+0xde/0x100
[  211.338377][    C1]  do_syscall_64+0xf3/0x230
[  211.338404][    C1]  ? clear_bhb_loop+0x35/0x90
[  211.338437][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.338466][    C1] RIP: 0033:0x7f72ff87eb9c
[  211.338496][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  211.338524][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  211.338566][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  211.338589][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  211.338605][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  211.338620][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  211.338653][    C1]  </TASK>
[  211.338666][    C1] DEBUG: waiting rtnl_mutex for 1721 jiffies.
[  211.362965][ T6313] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6313)
[  211.365671][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  211.365724][    C1] Workqueue: events linkwatch_event
[  211.539149][    C1] Call Trace:
[  211.542434][    C1]  <TASK>
[  211.545375][    C1]  __schedule+0x17e8/0x4a20
[  211.549957][    C1]  ? __pfx___schedule+0x10/0x10
[  211.554820][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  211.560838][    C1]  ? __pfx_lock_release+0x10/0x10
[  211.565885][    C1]  ? kick_pool+0x45c/0x620
[  211.570360][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  211.575750][    C1]  ? schedule+0x90/0x320
[  211.580026][    C1]  schedule+0x14b/0x320
[  211.584200][    C1]  schedule_preempt_disabled+0x13/0x30
[  211.589720][    C1]  __mutex_lock+0x6a4/0xd70
[  211.594241][    C1]  ? __mutex_lock+0x527/0xd70
[  211.598951][    C1]  ? linkwatch_event+0xe/0x60
[  211.603642][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  211.608731][    C1]  ? process_scheduled_works+0x945/0x1830
[  211.614478][    C1]  ? rtnl_lock+0xe7/0x130
[  211.618840][    C1]  ? process_scheduled_works+0x945/0x1830
[  211.624580][    C1]  linkwatch_event+0xe/0x60
[  211.629132][    C1]  process_scheduled_works+0xa2c/0x1830
[  211.634719][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  211.640752][    C1]  ? assign_work+0x364/0x3d0
[  211.645386][    C1]  worker_thread+0x86d/0xd50
[  211.650068][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  211.656081][    C1]  ? __kthread_parkme+0x169/0x1d0
[  211.661147][    C1]  ? __pfx_worker_thread+0x10/0x10
[  211.666277][    C1]  kthread+0x2f0/0x390
[  211.670401][    C1]  ? __pfx_worker_thread+0x10/0x10
[  211.675568][    C1]  ? __pfx_kthread+0x10/0x10
[  211.680220][    C1]  ret_from_fork+0x4b/0x80
[  211.684675][    C1]  ? __pfx_kthread+0x10/0x10
[  211.689321][    C1]  ret_from_fork_asm+0x1a/0x30
[  211.694110][    C1]  </TASK>
[  211.697172][    C1] DEBUG: waiting rtnl_mutex for 934 jiffies.
[  211.703151][    C1] task:syz-executor.4  state:D stack:24992 pid:6259  tgid:6259  ppid:6238   flags:0x00000002
[  211.713344][    C1] Call Trace:
[  211.716630][    C1]  <TASK>
[  211.716796][ T5111] Bluetooth: hci2: command tx timeout
[  211.719597][    C1]  __schedule+0x17e8/0x4a20
[  211.729515][    C1]  ? __pfx___schedule+0x10/0x10
[  211.734378][    C1]  ? __pfx_lock_release+0x10/0x10
[  211.739436][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  211.744928][    C1]  ? schedule+0x90/0x320
[  211.749241][    C1]  schedule+0x14b/0x320
[  211.753419][    C1]  schedule_preempt_disabled+0x13/0x30
[  211.758908][    C1]  __mutex_lock+0x6a4/0xd70
[  211.763432][    C1]  ? __mutex_lock+0x527/0xd70
[  211.768171][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  211.773391][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  211.778460][    C1]  ? rtnl_lock+0xe7/0x130
[  211.782818][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  211.787895][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  211.793125][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  211.798628][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  211.803911][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.809163][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.814380][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  211.819359][    C1]  ? mark_lock+0x9a/0x360
[  211.823716][    C1]  ? __pfx_validate_chain+0x10/0x10
[  211.829001][    C1]  ? __lock_acquire+0x1359/0x2000
[  211.834049][    C1]  ? mark_lock+0x9a/0x360
[  211.838417][    C1]  ? __lock_acquire+0x1359/0x2000
[  211.843513][    C1]  netlink_rcv_skb+0x1e3/0x430
[  211.848348][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  211.853859][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  211.859230][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  211.864556][    C1]  netlink_unicast+0x7ea/0x980
[  211.869392][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  211.874738][    C1]  ? __virt_addr_valid+0x183/0x520
[  211.879913][    C1]  ? __check_object_size+0x49c/0x900
[  211.885244][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  211.890414][    C1]  netlink_sendmsg+0x8db/0xcb0
[  211.895232][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.900625][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  211.905586][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  211.910910][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  211.916418][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  211.921752][    C1]  __sock_sendmsg+0x221/0x270
[  211.926488][    C1]  __sys_sendto+0x3a4/0x4f0
[  211.931087][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  211.936180][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  211.942260][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  211.948760][    C1]  ? exc_page_fault+0x590/0x8c0
[  211.953664][    C1]  __x64_sys_sendto+0xde/0x100
[  211.958533][    C1]  do_syscall_64+0xf3/0x230
[  211.963075][    C1]  ? clear_bhb_loop+0x35/0x90
[  211.967828][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  211.973741][    C1] RIP: 0033:0x7f50c127eb9c
[  211.978195][    C1] RSP: 002b:00007ffdb6508c60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  211.986673][    C1] RAX: ffffffffffffffda RBX: 00007f50c1ee4620 RCX: 00007f50c127eb9c
[  211.994659][    C1] RDX: 0000000000000028 RSI: 00007f50c1ee4670 RDI: 0000000000000003
[  212.002670][    C1] RBP: 0000000000000000 R08: 00007ffdb6508cb4 R09: 000000000000000c
[  212.010731][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  212.018774][    C1] R13: 0000000000000000 R14: 00007f50c1ee4670 R15: 0000000000000000
[  212.026829][    C1]  </TASK>
[  212.029865][    C1] DEBUG: waiting rtnl_mutex for 643 jiffies.
[  212.035845][    C1] task:dhcpcd          state:D stack:20672 pid:4761  tgid:4761  ppid:4760   flags:0x00000002
[  212.046046][    C1] Call Trace:
[  212.049414][    C1]  <TASK>
[  212.052356][    C1]  __schedule+0x17e8/0x4a20
[  212.056939][    C1]  ? __pfx___schedule+0x10/0x10
[  212.061853][    C1]  ? __pfx_lock_release+0x10/0x10
[  212.066970][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  212.072459][    C1]  ? schedule+0x90/0x320
[  212.076760][    C1]  schedule+0x14b/0x320
[  212.080946][    C1]  schedule_preempt_disabled+0x13/0x30
[  212.086404][    C1]  __mutex_lock+0x6a4/0xd70
[  212.090960][    C1]  ? __mutex_lock+0x527/0xd70
[  212.095746][    C1]  ? devinet_ioctl+0x2ce/0x1bc0
[  212.100639][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  212.105697][    C1]  ? bpf_lsm_capable+0x9/0x10
[  212.110433][    C1]  ? security_capable+0x90/0xb0
[  212.115335][    C1]  ? rtnl_lock+0xe7/0x130
[  212.119723][    C1]  devinet_ioctl+0x2ce/0x1bc0
[  212.124440][    C1]  ? get_user_ifreq+0x1bb/0x200
[  212.129378][    C1]  inet_ioctl+0x3d7/0x4f0
[  212.133809][    C1]  ? __pfx_inet_ioctl+0x10/0x10
[  212.138725][    C1]  sock_do_ioctl+0x158/0x460
[  212.143340][    C1]  ? __pfx_sock_do_ioctl+0x10/0x10
[  212.148504][    C1]  ? __pfx_lock_release+0x10/0x10
[  212.153558][    C1]  sock_ioctl+0x629/0x8e0
[  212.157941][    C1]  ? __pfx_sock_ioctl+0x10/0x10
[  212.162820][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  212.168952][    C1]  ? bpf_lsm_file_ioctl+0x9/0x10
[  212.173921][    C1]  ? security_file_ioctl+0x87/0xb0
[  212.179086][    C1]  ? __pfx_sock_ioctl+0x10/0x10
[  212.184047][    C1]  __se_sys_ioctl+0xfc/0x170
[  212.188710][    C1]  do_syscall_64+0xf3/0x230
[  212.193236][    C1]  ? clear_bhb_loop+0x35/0x90
[  212.197979][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  212.203889][    C1] RIP: 0033:0x7f4addd88d49
[  212.208347][    C1] RSP: 002b:00007ffe0bebcd68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  212.216825][    C1] RAX: ffffffffffffffda RBX: 00007f4addcba6c0 RCX: 00007f4addd88d49
[  212.224810][    C1] RDX: 00007ffe0beccf58 RSI: 0000000000008914 RDI: 000000000000000f
[  212.232815][    C1] RBP: 00007ffe0bedd118 R08: 00007ffe0beccf18 R09: 00007ffe0beccec8
[  212.240827][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  212.248851][    C1] R13: 00007ffe0beccf58 R14: 0000000000000028 R15: 0000000000008914
[  212.256902][    C1]  </TASK>
[  212.259947][    C1] 
[  212.259947][    C1] Showing all locks held in the system:
[  212.267771][    C1] 5 locks held by kworker/u8:1/12:
[  212.272926][    C1]  #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  212.283873][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  212.294481][    C1]  #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  212.304099][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  212.314185][    C1]  #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  212.325329][    C1] 3 locks held by kworker/u8:7/1106:
[  212.330757][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  212.342495][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  212.355345][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  212.364862][    C1] 3 locks held by udevd/4547:
[  212.369596][    C1]  #0: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  212.379758][    C1]  #1: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  212.389564][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  212.399472][    C1] 1 lock held by dhcpcd/4761:
[  212.404134][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  212.413440][    C1] 2 locks held by getty/4850:
[  212.418142][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  212.427940][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  212.438108][    C1] 3 locks held by kworker/1:4/5164:
[  212.443299][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  212.454343][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  212.465394][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  212.474496][    C1] 2 locks held by syz-executor.2/5517:
[  212.480000][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  212.488233][    C1]  #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  212.498496][    C1] 1 lock held by syz-executor.2/6199:
[  212.503852][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  212.513374][    C1] 1 lock held by syz-executor.4/6259:
[  212.518798][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  212.528378][    C1] 2 locks held by syz-executor.0/6313:
[  212.533839][    C1]  #0: ffffffff8e8a79c8 (uuid_mutex){+.+.}-{3:3}, at: btrfs_get_tree+0x2dc/0x1920
[  212.543103][    C1]  #1: ffffffff8e3ee9a8 (lock#3){+.+.}-{3:3}, at: __lru_add_drain_all+0x66/0x560
[  212.552400][    C1] 2 locks held by syz-executor.3/6322:
[  212.557980][    C1]  #0: ffffffff8e382768 (tracepoints_mutex){+.+.}-{3:3}, at: tracepoint_probe_register_prio_may_exist+0xbb/0x190
[  212.569985][    C1]  #1: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  212.580953][    C1] 1 lock held by syz-executor.3/6323:
[  212.586334][    C1]  #0: ffffffff8e382768 (tracepoints_mutex){+.+.}-{3:3}, at: tracepoint_probe_register_prio_may_exist+0xbb/0x190
[  212.598315][    C1] 1 lock held by syz-executor.3/6324:
[  212.603711][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400
[  212.613120][    C1] 
[  212.615452][    C1] =============================================
[  212.615452][    C1] 
[  212.803543][ T6313] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  212.814481][ T6313] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  212.823491][ T6313] BTRFS info (device loop0): using free-space-tree
[  212.932053][ T6313] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  212.935203][ T6313] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  212.962963][ T6340] syz-executor.1[6340] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.006029][ T6340] syz-executor.1[6340] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.052730][ T6313] BTRFS error (device loop0): open_ctree failed
[  213.636974][    C1] DEBUG: waiting rtnl_mutex for 2034 jiffies.
[  213.643167][    C1] task:kworker/u8:7    state:D stack:23280 pid:1106  tgid:1106  ppid:2      flags:0x00004000
[  213.653441][    C1] Workqueue: ipv6_addrconf addrconf_dad_work
[  213.659513][    C1] Call Trace:
[  213.662825][    C1]  <TASK>
[  213.665778][    C1]  __schedule+0x17e8/0x4a20
[  213.670397][    C1]  ? __pfx___schedule+0x10/0x10
[  213.675314][    C1]  ? __pfx_lock_release+0x10/0x10
[  213.680405][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  213.685911][    C1]  ? kthread_data+0x52/0xd0
[  213.690540][    C1]  ? schedule+0x90/0x320
[  213.694921][    C1]  ? wq_worker_sleeping+0x66/0x240
[  213.700107][    C1]  ? schedule+0x90/0x320
[  213.704392][    C1]  schedule+0x14b/0x320
[  213.708620][    C1]  schedule_preempt_disabled+0x13/0x30
[  213.714125][    C1]  __mutex_lock+0x6a4/0xd70
[  213.714944][ T6357] loop1: detected capacity change from 0 to 1764
[  213.718696][    C1]  ? mark_lock+0x9a/0x360
[  213.718737][    C1]  ? __mutex_lock+0x527/0xd70
[  213.718769][    C1]  ? addrconf_dad_work+0xd0/0x16f0
[  213.718800][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  213.744380][    C1]  ? rtnl_lock+0xe7/0x130
[  213.748782][    C1]  addrconf_dad_work+0xd0/0x16f0
[  213.753891][    C1]  ? __pfx_addrconf_dad_work+0x10/0x10
[  213.759590][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  213.765945][    C1]  ? process_scheduled_works+0x945/0x1830
[  213.765977][    C1]  process_scheduled_works+0xa2c/0x1830
[  213.766033][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  213.783898][    C1]  ? assign_work+0x364/0x3d0
[  213.788577][    C1]  worker_thread+0x86d/0xd50
[  213.788622][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  213.799274][    C1]  ? __kthread_parkme+0x169/0x1d0
[  213.804340][    C1]  ? __pfx_worker_thread+0x10/0x10
[  213.809515][    C1]  kthread+0x2f0/0x390
[  213.813626][    C1]  ? __pfx_worker_thread+0x10/0x10
[  213.818813][    C1]  ? __pfx_kthread+0x10/0x10
[  213.823454][    C1]  ret_from_fork+0x4b/0x80
[  213.827939][    C1]  ? __pfx_kthread+0x10/0x10
[  213.832564][    C1]  ret_from_fork_asm+0x1a/0x30
[  213.837441][    C1]  </TASK>
[  213.840497][    C1] DEBUG: holding rtnl_mutex for 2011 jiffies.
[  213.846550][    C1] task:kworker/u8:1    state:D stack:22040 pid:12    tgid:12    ppid:2      flags:0x00004000
[  213.856770][    C1] Workqueue: netns cleanup_net
[  213.861560][    C1] Call Trace:
[  213.864827][    C1]  <TASK>
[  213.867772][    C1]  __schedule+0x17e8/0x4a20
[  213.872278][    C1]  ? __pfx___schedule+0x10/0x10
[  213.877166][    C1]  ? __pfx_lock_release+0x10/0x10
[  213.882218][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  213.888168][    C1]  ? kthread_data+0x52/0xd0
[  213.892691][    C1]  ? wq_worker_sleeping+0x66/0x240
[  213.897840][    C1]  ? schedule+0x90/0x320
[  213.902122][    C1]  schedule+0x14b/0x320
[  213.906273][    C1]  synchronize_rcu_expedited+0x684/0x830
[  213.911951][    C1]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  213.918251][    C1]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  213.923710][    C1]  ? __pfx___might_resched+0x10/0x10
[  213.929110][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  213.935103][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  213.941233][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  213.947638][    C1]  synchronize_rcu+0x11b/0x360
[  213.952435][    C1]  ? __pfx_synchronize_rcu+0x10/0x10
[  213.957789][    C1]  lockdep_unregister_key+0x4b7/0x540
[  213.963173][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  213.969093][    C1]  ? rcu_is_watching+0x15/0xb0
[  213.973886][    C1]  ? qdisc_reset+0x3bb/0x5a0
[  213.978493][    C1]  __qdisc_destroy+0x165/0x410
[  213.983251][    C1]  dev_shutdown+0x357/0x440
[  213.987767][    C1]  unregister_netdevice_many_notify+0x977/0x16b0
[  213.994093][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  214.000898][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  214.006869][    C1]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  214.013113][    C1]  ? batadv_softif_destroy_netlink+0x1e0/0x270
[  214.019305][    C1]  default_device_exit_batch+0xa0f/0xa90
[  214.024982][    C1]  ? __pfx___might_resched+0x10/0x10
[  214.030281][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  214.036442][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  214.041739][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  214.047909][    C1]  cleanup_net+0x89d/0xcc0
[  214.052325][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  214.057274][    C1]  ? process_scheduled_works+0x945/0x1830
[  214.062985][    C1]  process_scheduled_works+0xa2c/0x1830
[  214.068555][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  214.074522][    C1]  ? assign_work+0x364/0x3d0
[  214.079120][    C1]  worker_thread+0x86d/0xd50
[  214.083703][    C1]  ? __kthread_parkme+0x169/0x1d0
[  214.088735][    C1]  ? __pfx_worker_thread+0x10/0x10
[  214.093859][    C1]  kthread+0x2f0/0x390
[  214.097964][    C1]  ? __pfx_worker_thread+0x10/0x10
[  214.103091][    C1]  ? __pfx_kthread+0x10/0x10
[  214.107742][    C1]  ret_from_fork+0x4b/0x80
[  214.112160][    C1]  ? __pfx_kthread+0x10/0x10
[  214.116787][    C1]  ret_from_fork_asm+0x1a/0x30
[  214.121567][    C1]  </TASK>
[  214.124589][    C1] DEBUG: waiting rtnl_mutex for 2083 jiffies.
[  214.130687][    C1] task:syz-executor.2  state:D stack:21024 pid:6199  tgid:6199  ppid:6184   flags:0x00004002
[  214.140867][    C1] Call Trace:
[  214.144163][    C1]  <TASK>
[  214.147117][    C1]  __schedule+0x17e8/0x4a20
[  214.151631][    C1]  ? __pfx___schedule+0x10/0x10
[  214.156474][    C1]  ? __pfx_lock_release+0x10/0x10
[  214.161511][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  214.167074][    C1]  ? schedule+0x90/0x320
[  214.171416][    C1]  schedule+0x14b/0x320
[  214.175587][    C1]  schedule_preempt_disabled+0x13/0x30
[  214.181103][    C1]  __mutex_lock+0x6a4/0xd70
[  214.185605][    C1]  ? __mutex_lock+0x527/0xd70
[  214.190311][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  214.195502][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  214.200734][    C1]  ? rtnl_lock+0xe7/0x130
[  214.205094][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  214.210170][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  214.215386][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.220866][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  214.226155][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.231385][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.236800][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  214.241752][    C1]  ? mark_lock+0x9a/0x360
[  214.246087][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.251421][    C1]  ? __lock_acquire+0x1359/0x2000
[  214.256594][    C1]  ? mark_lock+0x9a/0x360
[  214.260964][    C1]  ? __lock_acquire+0x1359/0x2000
[  214.266172][    C1]  netlink_rcv_skb+0x1e3/0x430
[  214.270957][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.276414][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.281732][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  214.286953][    C1]  netlink_unicast+0x7ea/0x980
[  214.291731][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  214.297023][    C1]  ? __virt_addr_valid+0x183/0x520
[  214.302124][    C1]  ? __check_object_size+0x49c/0x900
[  214.307434][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  214.312572][    C1]  netlink_sendmsg+0x8db/0xcb0
[  214.317413][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.322699][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  214.327669][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  214.332951][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  214.338418][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.343779][    C1]  __sock_sendmsg+0x221/0x270
[  214.348483][    C1]  __sys_sendto+0x3a4/0x4f0
[  214.352980][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  214.358023][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  214.363989][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  214.370321][    C1]  __x64_sys_sendto+0xde/0x100
[  214.375075][    C1]  do_syscall_64+0xf3/0x230
[  214.379603][    C1]  ? clear_bhb_loop+0x35/0x90
[  214.384356][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.390264][    C1] RIP: 0033:0x7f72ff87eb9c
[  214.394666][    C1] RSP: 002b:00007ffd226d22a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  214.403085][    C1] RAX: ffffffffffffffda RBX: 00007f73004e4620 RCX: 00007f72ff87eb9c
[  214.411135][    C1] RDX: 0000000000000044 RSI: 00007f73004e4670 RDI: 0000000000000003
[  214.419131][    C1] RBP: 0000000000000000 R08: 00007ffd226d22f4 R09: 000000000000000c
[  214.427114][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  214.435085][    C1] R13: 0000000000000000 R14: 00007f73004e4670 R15: 0000000000000000
[  214.443092][    C1]  </TASK>
[  214.446152][    C1] DEBUG: waiting rtnl_mutex for 2031 jiffies.
[  214.452259][    C1] task:kworker/1:4     state:D stack:23312 pid:5164  tgid:5164  ppid:2      flags:0x00004000
[  214.462449][    C1] Workqueue: events linkwatch_event
[  214.467692][    C1] Call Trace:
[  214.470981][    C1]  <TASK>
[  214.473920][    C1]  __schedule+0x17e8/0x4a20
[  214.478553][    C1]  ? __pfx___schedule+0x10/0x10
[  214.483489][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  214.489502][    C1]  ? __pfx_lock_release+0x10/0x10
[  214.494529][    C1]  ? kick_pool+0x45c/0x620
[  214.498996][    C1]  ? preempt_schedule_thunk+0x1a/0x30
[  214.504382][    C1]  ? schedule+0x90/0x320
[  214.508682][    C1]  schedule+0x14b/0x320
[  214.512981][    C1]  schedule_preempt_disabled+0x13/0x30
[  214.518515][    C1]  __mutex_lock+0x6a4/0xd70
[  214.523054][    C1]  ? __mutex_lock+0x527/0xd70
[  214.527769][    C1]  ? linkwatch_event+0xe/0x60
[  214.532445][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  214.537510][    C1]  ? process_scheduled_works+0x945/0x1830
[  214.543228][    C1]  ? rtnl_lock+0xe7/0x130
[  214.547570][    C1]  ? process_scheduled_works+0x945/0x1830
[  214.553282][    C1]  linkwatch_event+0xe/0x60
[  214.557812][    C1]  process_scheduled_works+0xa2c/0x1830
[  214.563366][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  214.569364][    C1]  ? assign_work+0x364/0x3d0
[  214.574042][    C1]  worker_thread+0x86d/0xd50
[  214.578650][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  214.584536][    C1]  ? __kthread_parkme+0x169/0x1d0
[  214.589680][    C1]  ? __pfx_worker_thread+0x10/0x10
[  214.594795][    C1]  kthread+0x2f0/0x390
[  214.598877][    C1]  ? __pfx_worker_thread+0x10/0x10
[  214.604096][    C1]  ? __pfx_kthread+0x10/0x10
[  214.608735][    C1]  ret_from_fork+0x4b/0x80
[  214.613162][    C1]  ? __pfx_kthread+0x10/0x10
[  214.617781][    C1]  ret_from_fork_asm+0x1a/0x30
[  214.622555][    C1]  </TASK>
[  214.625562][    C1] DEBUG: waiting rtnl_mutex for 1226 jiffies.
[  214.631638][    C1] task:syz-executor.4  state:D stack:24992 pid:6259  tgid:6259  ppid:6238   flags:0x00000002
[  214.641817][    C1] Call Trace:
[  214.645085][    C1]  <TASK>
[  214.648024][    C1]  __schedule+0x17e8/0x4a20
[  214.652529][    C1]  ? __pfx___schedule+0x10/0x10
[  214.657390][    C1]  ? __pfx_lock_release+0x10/0x10
[  214.662404][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  214.667915][    C1]  ? schedule+0x90/0x320
[  214.672158][    C1]  schedule+0x14b/0x320
[  214.676303][    C1]  schedule_preempt_disabled+0x13/0x30
[  214.681784][    C1]  __mutex_lock+0x6a4/0xd70
[  214.686281][    C1]  ? __mutex_lock+0x527/0xd70
[  214.690985][    C1]  ? rtnetlink_rcv_msg+0x839/0x1170
[  214.696175][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  214.701220][    C1]  ? rtnl_lock+0xe7/0x130
[  214.705623][    C1]  rtnetlink_rcv_msg+0x839/0x1170
[  214.710676][    C1]  ? rtnetlink_rcv_msg+0x208/0x1170
[  214.715865][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.721345][    C1]  ? is_bpf_text_address+0x285/0x2a0
[  214.728332][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.733555][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.738760][    C1]  ? arch_stack_walk+0x16d/0x1b0
[  214.743719][    C1]  ? mark_lock+0x9a/0x360
[  214.748075][    C1]  ? __pfx_validate_chain+0x10/0x10
[  214.753283][    C1]  ? __lock_acquire+0x1359/0x2000
[  214.758322][    C1]  ? mark_lock+0x9a/0x360
[  214.762656][    C1]  ? __lock_acquire+0x1359/0x2000
[  214.767714][    C1]  netlink_rcv_skb+0x1e3/0x430
[  214.772469][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  214.777964][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  214.783250][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  214.788454][    C1]  netlink_unicast+0x7ea/0x980
[  214.793215][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  214.798511][    C1]  ? __virt_addr_valid+0x183/0x520
[  214.803615][    C1]  ? __check_object_size+0x49c/0x900
[  214.808940][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  214.814068][    C1]  netlink_sendmsg+0x8db/0xcb0
[  214.818973][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.824309][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  214.829264][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  214.834542][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  214.840014][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.845343][    C1]  __sock_sendmsg+0x221/0x270
[  214.850076][    C1]  __sys_sendto+0x3a4/0x4f0
[  214.854670][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  214.859743][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  214.865734][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  214.872091][    C1]  ? exc_page_fault+0x590/0x8c0
[  214.877050][    C1]  __x64_sys_sendto+0xde/0x100
[  214.881910][    C1]  do_syscall_64+0xf3/0x230
[  214.886400][    C1]  ? clear_bhb_loop+0x35/0x90
[  214.891128][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.897222][    C1] RIP: 0033:0x7f50c127eb9c
[  214.901643][    C1] RSP: 002b:00007ffdb6508c60 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  214.910351][    C1] RAX: ffffffffffffffda RBX: 00007f50c1ee4620 RCX: 00007f50c127eb9c
[  214.918416][    C1] RDX: 0000000000000028 RSI: 00007f50c1ee4670 RDI: 0000000000000003
[  214.926560][    C1] RBP: 0000000000000000 R08: 00007ffdb6508cb4 R09: 000000000000000c
[  214.934548][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  214.942658][    C1] R13: 0000000000000000 R14: 00007f50c1ee4670 R15: 0000000000000000
[  214.950663][    C1]  </TASK>
[  214.953671][    C1] DEBUG: waiting rtnl_mutex for 935 jiffies.
[  214.959655][    C1] task:dhcpcd          state:D stack:20672 pid:4761  tgid:4761  ppid:4760   flags:0x00000002
[  214.969924][    C1] Call Trace:
[  214.973245][    C1]  <TASK>
[  214.976184][    C1]  __schedule+0x17e8/0x4a20
[  214.980844][    C1]  ? __pfx___schedule+0x10/0x10
[  214.985824][    C1]  ? __pfx_lock_release+0x10/0x10
[  214.991345][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  214.996884][    C1]  ? schedule+0x90/0x320
[  215.001241][    C1]  schedule+0x14b/0x320
[  215.005395][    C1]  schedule_preempt_disabled+0x13/0x30
[  215.010866][    C1]  __mutex_lock+0x6a4/0xd70
[  215.015364][    C1]  ? __mutex_lock+0x527/0xd70
[  215.020124][    C1]  ? devinet_ioctl+0x2ce/0x1bc0
[  215.024984][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  215.030075][    C1]  ? bpf_lsm_capable+0x9/0x10
[  215.034755][    C1]  ? security_capable+0x90/0xb0
[  215.039808][    C1]  ? rtnl_lock+0xe7/0x130
[  215.044133][    C1]  devinet_ioctl+0x2ce/0x1bc0
[  215.048847][    C1]  ? get_user_ifreq+0x1bb/0x200
[  215.053713][    C1]  inet_ioctl+0x3d7/0x4f0
[  215.058092][    C1]  ? __pfx_inet_ioctl+0x10/0x10
[  215.062966][    C1]  sock_do_ioctl+0x158/0x460
[  215.067570][    C1]  ? __pfx_sock_do_ioctl+0x10/0x10
[  215.072694][    C1]  ? __pfx_lock_release+0x10/0x10
[  215.077778][    C1]  sock_ioctl+0x629/0x8e0
[  215.082144][    C1]  ? __pfx_sock_ioctl+0x10/0x10
[  215.087050][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  215.093028][    C1]  ? bpf_lsm_file_ioctl+0x9/0x10
[  215.097977][    C1]  ? security_file_ioctl+0x87/0xb0
[  215.103099][    C1]  ? __pfx_sock_ioctl+0x10/0x10
[  215.107971][    C1]  __se_sys_ioctl+0xfc/0x170
[  215.112563][    C1]  do_syscall_64+0xf3/0x230
[  215.117074][    C1]  ? clear_bhb_loop+0x35/0x90
[  215.121834][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.127739][    C1] RIP: 0033:0x7f4addd88d49
[  215.132160][    C1] RSP: 002b:00007ffe0bebcd68 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  215.140583][    C1] RAX: ffffffffffffffda RBX: 00007f4addcba6c0 RCX: 00007f4addd88d49
[  215.148651][    C1] RDX: 00007ffe0beccf58 RSI: 0000000000008914 RDI: 000000000000000f
[  215.156612][    C1] RBP: 00007ffe0bedd118 R08: 00007ffe0beccf18 R09: 00007ffe0beccec8
[  215.164655][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  215.172688][    C1] R13: 00007ffe0beccf58 R14: 0000000000000028 R15: 0000000000008914
[  215.180699][    C1]  </TASK>
[  215.183731][    C1] 
[  215.183731][    C1] Showing all locks held in the system:
[  215.191508][    C1] 5 locks held by kworker/u8:0/11:
[  215.196667][    C1] 5 locks held by kworker/u8:1/12:
[  215.201884][    C1]  #0: ffff888015ed5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.213001][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.223707][    C1]  #2: ffffffff8f5e2c90 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  215.233186][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  215.243257][    C1]  #4: ffffffff8e33a878 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  215.254155][    C1] 2 locks held by kworker/u8:2/35:
[  215.259277][    C1]  #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.270945][    C1]  #1: ffffc90000ab7d00 ((reaper_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.281684][    C1] 2 locks held by kworker/u8:5/64:
[  215.286830][    C1]  #0: ffff888015089148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.298521][    C1]  #1: ffffc900020afd00 (connector_reaper_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.309510][    C1] 6 locks held by kworker/u8:6/147:
[  215.314881][    C1]  #0: ffff88802af79148 ((wq_completion)bat_events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.326363][    C1]  #1: ffffc90002d9fd00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.339822][    C1]  #2: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: batadv_nc_worker+0xcb/0x610
[  215.349349][    C1]  #3: ffffc90000a18c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  215.359458][    C1]  #4: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  215.369211][    C1]  #5: ffffffff8e3354a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  215.379082][    C1] 3 locks held by kworker/u8:7/1106:
[  215.384364][    C1]  #0: ffff88802a3c4148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.395940][    C1]  #1: ffffc90004a97d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.408754][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[  215.418199][    C1] 1 lock held by dhcpcd/4761:
[  215.422858][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  215.432106][    C1] 2 locks held by getty/4850:
[  215.436792][    C1]  #0: ffff88802e5900a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  215.446529][    C1]  #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  215.456656][    C1] 3 locks held by kworker/1:4/5164:
[  215.461871][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  215.472899][    C1]  #1: ffffc90004967d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  215.483898][    C1]  #2: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  215.492918][    C1] 2 locks held by syz-executor.2/5517:
[  215.498399][    C1]  #0: ffffffff8f655cd0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  215.507147][    C1]  #1: ffffffff8e604cc8 (nfsd_mutex){+.+.}-{3:3}, at: nfsd_nl_listener_set_doit+0x12d/0x1a90
[  215.517357][    C1] 1 lock held by syz-executor.2/6199:
[  215.522760][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  215.532412][    C1] 1 lock held by syz-executor.4/6259:
[  215.537800][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  215.547329][    C1] 1 lock held by syz-executor.3/6324:
[  215.552750][    C1]  #0: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48f/0x2400
[  215.562122][    C1] 4 locks held by syz-executor.0/6355:
[  215.567629][    C1]  #0: ffff8880228b4420 (sb_writers#11){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90
[  215.577055][    C1]  #1: ffff88805b4ae988 (&type->i_mutex_dir_key#7/1){+.+.}-{3:3}, at: filename_create+0x260/0x540
[  215.587890][    C1]  #2: ffffffff8e3635e8 (cgroup_mutex){+.+.}-{3:3}, at: cgroup_kn_lock_live+0xe6/0x290
[  215.597650][    C1]  #3: ffffffff8f5ef4c8 (rtnl_mutex){+.+.}-{3:3}, at: cgrp_css_online+0x90/0x2f0
[  215.606800][    C1] 1 lock held by syz-executor.0/6356:
[  215.612163][    C1]  #0: ffff88805b4ae988 (&type->i_mutex_dir_key#7){++++}-{3:3}, at: lookup_slow+0x45/0x70
[  215.622140][    C1] 
[  215.624501][    C1] =============================================
[  215.624501][    C1] 
[  216.200648][ T6199] chnl_net:caif_netlink_parms(): no params data found
[  217.020442][ T6199] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.047093][ T6199] bridge0: port 1(bridge_slave_0) entered disabled state
[  217.054406][ T6199] bridge_slave_0: entered allmulticast mode
[  217.111458][ T6199] bridge_slave_0: entered promiscuous mode
[  217.213640][ T6199] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.239966][ T6199] bridge0: port 2(bridge_slave_1) entered disabled state
[  217.259414][ T6199] bridge_slave_1: entered allmulticast mode
[  217.291917][ T6199] bridge_slave_1: entered promiscuous mode
[  217.314878][ T6372] loop0: detected capacity change from 0 to 32768
[  217.354769][ T6372] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6372)
[  217.429788][ T6372] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  217.463154][ T6372] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  217.492522][ T6372] BTRFS info (device loop0): using free-space-tree
[  218.061531][ T6199] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  218.077363][ T6429] loop0: detected capacity change from 32768 to 0
[  218.090608][ T1106] kworker/u8:7: attempt to access beyond end of device
[  218.090608][ T1106] loop0: rw=67108865, sector=10472, nr_sectors = 2320 limit=0
[  218.141305][ T1106] kworker/u8:7: attempt to access beyond end of device
[  218.141305][ T1106] loop0: rw=67108865, sector=10472, nr_sectors = 232 limit=0
[  218.168809][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.168809][   T64] loop0: rw=6145, sector=10440, nr_sectors = 8 limit=0
[  218.204387][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.204387][   T64] loop0: rw=6145, sector=10448, nr_sectors = 8 limit=0
[  218.233048][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.233048][   T64] loop0: rw=6145, sector=10456, nr_sectors = 8 limit=0
[  218.247298][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.247298][   T64] loop0: rw=6145, sector=10464, nr_sectors = 8 limit=0
[  218.250370][ T2463] BTRFS error (device loop0 state A): Transaction aborted (error -5)
[  218.267505][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.267505][   T64] loop0: rw=6145, sector=13440, nr_sectors = 8 limit=0
[  218.315215][ T6199] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  218.330268][   T64] kworker/u8:5: attempt to access beyond end of device
[  218.330268][   T64] loop0: rw=2049, sector=10472, nr_sectors = 2088 limit=0
[  218.349714][ T2463] BTRFS: error (device loop0 state A) in __btrfs_run_delayed_items:1174: errno=-5 IO failure
[  218.381107][ T2463] BTRFS info (device loop0 state EA): forced readonly
[  218.382854][ T6429] BTRFS error (device loop0 state EMA): remounting read-write after error is not allowed
[  218.933181][ T6444] input: syz0 as /devices/virtual/input/input5
[  219.045542][ T6199] team0: Port device team_slave_0 added
[  219.779690][ T6199] team0: Port device team_slave_1 added
[  219.923226][ T5944] BTRFS info (device loop0 state EA): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  220.021077][ T6199] batman_adv: batadv0: Adding interface: batadv_slave_0
[  220.031185][ T6199] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.063596][ T6199] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  220.171514][ T6259] chnl_net:caif_netlink_parms(): no params data found
[  220.198144][ T6199] batman_adv: batadv0: Adding interface: batadv_slave_1
[  220.205234][ T6199] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  220.238885][ T6199] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  220.598274][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.322004][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.357872][ T5115] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  221.367754][ T5115] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  221.378043][ T5115] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  221.386344][ T5115] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  221.400779][ T5115] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  221.416430][ T5115] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  221.570018][ T6480] input: syz0 as /devices/virtual/input/input6
[  222.271304][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.568050][ T6199] hsr_slave_0: entered promiscuous mode
[  222.598510][ T6199] hsr_slave_1: entered promiscuous mode
[  222.622925][ T6485] sd 0:0:1:0: device reset
[  222.691939][ T6259] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.713157][ T6259] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.724723][ T6259] bridge_slave_0: entered allmulticast mode
[  222.740773][ T6259] bridge_slave_0: entered promiscuous mode
[  222.769148][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.799665][ T6259] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.809488][ T6259] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.818618][ T6259] bridge_slave_1: entered allmulticast mode
[  222.836555][ T6259] bridge_slave_1: entered promiscuous mode
[  223.008606][ T6259] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  223.122591][ T6259] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  223.135414][ T6503] capability: warning: `syz-executor.1' uses deprecated v2 capabilities in a way that may be insecure
[  223.316419][ T6259] team0: Port device team_slave_0 added
[  223.328648][ T6259] team0: Port device team_slave_1 added
[  223.558383][ T5111] Bluetooth: hci3: command tx timeout
[  224.174883][ T6259] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.214676][ T6259] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.313760][ T6259] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.327407][ T6259] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.334444][ T6259] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  224.372253][ T6259] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  224.405076][ T6521] process 'syz-executor.1' launched './file1' with NULL argv: empty string added
[  224.779663][   T12] bridge_slave_1: left allmulticast mode
[  224.794993][   T12] bridge_slave_1: left promiscuous mode
[  224.806239][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.822617][   T12] bridge_slave_0: left allmulticast mode
[  224.835493][   T12] bridge_slave_0: left promiscuous mode
[  224.844434][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.617528][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.636889][ T5111] Bluetooth: hci3: command tx timeout
[  225.645995][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  225.692673][   T12] bond0 (unregistering): Released all slaves
[  225.822259][ T6259] hsr_slave_0: entered promiscuous mode
[  225.843245][ T6259] hsr_slave_1: entered promiscuous mode
[  225.873233][ T6259] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  225.896868][ T6259] Cannot create hsr debugfs directory
[  226.949674][   T12] hsr_slave_0: left promiscuous mode
[  226.963759][   T12] hsr_slave_1: left promiscuous mode
[  226.993260][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  227.004925][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  227.014432][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  227.022310][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  227.059968][   T12] veth1_macvtap: left promiscuous mode
[  227.065725][   T12] veth0_macvtap: left promiscuous mode
[  227.072104][   T12] veth1_vlan: left promiscuous mode
[  227.078491][   T12] veth0_vlan: left promiscuous mode
[  227.294744][ T6580] binder: 6579:6580 ioctl c018620c 20000100 returned -1
[  227.627652][ T6585] nbd: must specify an index to disconnect
[  227.719006][ T5111] Bluetooth: hci3: command tx timeout
[  228.916310][   T12] team0 (unregistering): Port device team_slave_1 removed
[  228.979309][ T6608] binder: 6606:6608 ioctl c018620c 20000100 returned -1
[  229.000629][   T12] team0 (unregistering): Port device team_slave_0 removed
[  229.231829][   T29] audit: type=1804 audit(1718456183.369:9): pid=6613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir1479086619/syzkaller.sCGPQB/48/bus" dev="sda1" ino=1952 res=1 errno=0
[  229.442320][ T6617] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  229.806941][ T5111] Bluetooth: hci3: command tx timeout
[  230.804105][ T6474] chnl_net:caif_netlink_parms(): no params data found
[  230.932726][   T29] audit: type=1804 audit(1718456185.069:10): pid=6639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir1796740211/syzkaller.uuv7aR/64/file1" dev="sda1" ino=1951 res=1 errno=0
[  231.032403][ T6643] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  231.191332][ T6474] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.211076][ T6474] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.235878][ T6474] bridge_slave_0: entered allmulticast mode
[  231.256951][ T6474] bridge_slave_0: entered promiscuous mode
[  231.286038][ T6199] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  231.374342][ T6655] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  232.427431][ T6474] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.545433][ T6474] bridge0: port 2(bridge_slave_1) entered disabled state
[  232.668031][ T6474] bridge_slave_1: entered allmulticast mode
[  232.800697][ T6474] bridge_slave_1: entered promiscuous mode
[  232.888826][ T6199] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  232.973002][ T6199] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  233.118534][ T6199] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  233.199742][ T6474] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  233.265612][ T6474] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  233.449650][ T6474] team0: Port device team_slave_0 added
[  233.625521][ T6474] team0: Port device team_slave_1 added
[  233.885519][ T6474] batman_adv: batadv0: Adding interface: batadv_slave_0
[  233.921308][ T6474] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  233.948121][ T6474] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  234.014470][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.055960][ T6474] batman_adv: batadv0: Adding interface: batadv_slave_1
[  234.076780][ T6474] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.106945][ T6474] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  234.182280][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.333429][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.507264][ T6698] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  234.540020][ T6474] hsr_slave_0: entered promiscuous mode
[  234.585522][ T6474] hsr_slave_1: entered promiscuous mode
[  234.636296][ T6474] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  234.673736][ T6474] Cannot create hsr debugfs directory
[  234.965311][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  235.300753][ T6259] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  235.350982][ T6259] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  235.444861][ T6259] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  235.512794][ T6259] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  235.542934][ T6709] sg_write: data in/out 3171656/65033 bytes for SCSI command 0x0-- guessing data in;
[  235.542934][ T6709]    program syz-executor.3 not setting count and/or reply_len properly
[  235.899879][   T12] bridge_slave_1: left allmulticast mode
[  235.909628][   T12] bridge_slave_1: left promiscuous mode
[  235.922847][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.950191][   T12] bridge_slave_0: left allmulticast mode
[  235.963752][   T12] bridge_slave_0: left promiscuous mode
[  235.975320][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.720011][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  236.734519][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  236.746600][   T12] bond0 (unregistering): Released all slaves
[  236.999195][ T6199] 8021q: adding VLAN 0 to HW filter on device bond0
[  237.205285][ T6730] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  237.983572][   T12] hsr_slave_0: left promiscuous mode
[  238.013286][   T12] hsr_slave_1: left promiscuous mode
[  238.024858][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  238.056169][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  238.077668][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  238.094872][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  238.166761][   T12] veth1_macvtap: left promiscuous mode
[  238.172422][   T12] veth0_macvtap: left promiscuous mode
[  238.187190][   T12] veth1_vlan: left promiscuous mode
[  238.192591][   T12] veth0_vlan: left promiscuous mode
[  239.042309][   T12] team0 (unregistering): Port device team_slave_1 removed
[  239.115660][   T12] team0 (unregistering): Port device team_slave_0 removed
[  239.759239][ T6199] 8021q: adding VLAN 0 to HW filter on device team0
[  239.912042][  T785] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.919261][  T785] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.073994][  T785] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.081331][  T785] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.310018][ T6474] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  240.401978][ T6474] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  240.437634][ T6474] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  240.481191][ T6474] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  240.615487][ T6780] random: crng reseeded on system resumption
[  240.649121][ T6259] 8021q: adding VLAN 0 to HW filter on device bond0
[  240.781265][ T6259] 8021q: adding VLAN 0 to HW filter on device team0
[  240.859130][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.866368][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.945782][  T785] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.953016][  T785] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.429447][ T6199] 8021q: adding VLAN 0 to HW filter on device batadv0
[  241.500660][ T6474] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.915941][ T6474] 8021q: adding VLAN 0 to HW filter on device team0
[  242.394777][  T786] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.402211][  T786] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.481078][ T6199] veth0_vlan: entered promiscuous mode
[  242.510726][  T786] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.518032][  T786] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.666138][ T6259] 8021q: adding VLAN 0 to HW filter on device batadv0
[  243.345455][ T6199] veth1_vlan: entered promiscuous mode
[  243.563822][ T6835] hub 9-0:1.0: USB hub found
[  243.572260][ T6835] hub 9-0:1.0: 8 ports detected
[  244.100075][ T6199] veth0_macvtap: entered promiscuous mode
[  244.125959][ T6199] veth1_macvtap: entered promiscuous mode
[  244.626848][ T6199] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.655921][ T6855] VFS: Close: file count is 0 (f_op=shmem_file_operations)
[  244.656097][ T6855] ------------[ cut here ]------------
[  244.669192][ T6855] kernel BUG at fs/open.c:1514!
2024/06/15 12:56:38 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  244.672269][ T6199] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.685119][ T6199] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.714831][ T6199] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.725646][ T6199] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  244.772036][ T6199] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.787738][ T6855] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  244.787767][ T6855] CPU: 1 PID: 6855 Comm: syz-executor.1 Not tainted 6.10.0-rc3-next-20240611-syzkaller #0
[  244.787785][ T6855] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  244.787798][ T6855] RIP: 0010:filp_flush+0x152/0x160
[  244.787826][ T6855] Code: e9 80 e1 07 80 c1 03 38 c1 7c a6 48 89 ef e8 75 00 f0 ff eb 9c e8 ce f1 89 ff 48 c7 c7 e0 63 d8 8b 48 89 ee e8 cf 55 7e 09 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90
[  244.787841][ T6855] RSP: 0018:ffffc9000304fda8 EFLAGS: 00010246
[  244.787858][ T6855] RAX: 0000000000000038 RBX: 0000000000000000 RCX: 443af11ebeac0600
[  244.787871][ T6855] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  244.787882][ T6855] RBP: ffffffff8bd43600 R08: ffffffff817376a9 R09: 1ffff92000609f50
[  244.787895][ T6855] R10: dffffc0000000000 R11: fffff52000609f51 R12: ffff888079d6d680
[  244.787908][ T6855] R13: dffffc0000000000 R14: ffff88802ef4b0c0 R15: 000000000000001e
[  244.787921][ T6855] FS:  0000555556f28480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  244.787937][ T6855] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  244.787949][ T6855] CR2: 00007f4b7f329270 CR3: 0000000023730000 CR4: 00000000003506f0
[  244.787964][ T6855] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  244.787975][ T6855] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  244.787987][ T6855] Call Trace:
[  244.787993][ T6855]  <TASK>
[  244.788000][ T6855]  ? __die_body+0x88/0xe0
[  244.788023][ T6855]  ? die+0xcf/0x110
[  244.788045][ T6855]  ? do_trap+0x15a/0x3a0
[  244.788092][ T6855]  ? filp_flush+0x152/0x160
[  244.788114][ T6855]  ? do_error_trap+0x1dc/0x2c0
[  244.788133][ T6855]  ? filp_flush+0x152/0x160
[  244.788157][ T6855]  ? __pfx_do_error_trap+0x10/0x10
[  244.788177][ T6855]  ? report_bug+0x3e8/0x500
[  244.788204][ T6855]  ? handle_invalid_op+0x34/0x40
[  244.788224][ T6855]  ? filp_flush+0x152/0x160
[  244.788243][ T6855]  ? exc_invalid_op+0x38/0x50
[  244.788261][ T6855]  ? asm_exc_invalid_op+0x1a/0x20
[  244.788282][ T6855]  ? __wake_up_klogd+0x109/0x140
[  244.788301][ T6855]  ? filp_flush+0x152/0x160
[  244.788321][ T6855]  ? filp_flush+0x151/0x160
[  244.788343][ T6855]  filp_close+0x1e/0x40
[  244.788364][ T6855]  __close_range+0x35e/0x940
[  244.788385][ T6855]  ? __pfx___close_range+0x10/0x10
[  244.788404][ T6855]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  244.788424][ T6855]  ? exc_page_fault+0x590/0x8c0
[  244.788450][ T6855]  __x64_sys_close_range+0x7a/0x90
[  244.788479][ T6855]  do_syscall_64+0xf3/0x230
[  244.788496][ T6855]  ? clear_bhb_loop+0x35/0x90
[  244.788515][ T6855]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  244.788534][ T6855] RIP: 0033:0x7effd167cea9
[  244.788548][ T6855] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  244.788562][ T6855] RSP: 002b:00007ffc8bfde458 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  244.788579][ T6855] RAX: ffffffffffffffda RBX: 000000000003bb58 RCX: 00007effd167cea9
[  244.788592][ T6855] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  244.788602][ T6855] RBP: ffffffffffffffff R08: 0000000000000001 R09: 0000000600000000
[  244.788613][ T6855] R10: 00007effd1600000 R11: 0000000000000246 R12: 00007effd17b3f80
[  244.788625][ T6855] R13: 00007effd17b3f8c R14: 0000000000000032 R15: 00007effd17b5980
[  244.788645][ T6855]  </TASK>
[  244.788651][ T6855] Modules linked in:
[  244.788670][ T6855] ---[ end trace 0000000000000000 ]---
[  244.798631][ T6199] batman_adv: batadv0: Interface activated: batadv_slave_0
[  244.893793][ T6855] RIP: 0010:filp_flush+0x152/0x160
[  245.154893][ T6855] Code: e9 80 e1 07 80 c1 03 38 c1 7c a6 48 89 ef e8 75 00 f0 ff eb 9c e8 ce f1 89 ff 48 c7 c7 e0 63 d8 8b 48 89 ee e8 cf 55 7e 09 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90
[  245.181173][ T6855] RSP: 0018:ffffc9000304fda8 EFLAGS: 00010246
[  245.188891][ T6855] RAX: 0000000000000038 RBX: 0000000000000000 RCX: 443af11ebeac0600
[  245.233677][ T6855] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[  245.250085][ T6855] RBP: ffffffff8bd43600 R08: ffffffff817376a9 R09: 1ffff92000609f50
[  245.288546][ T6855] R10: dffffc0000000000 R11: fffff52000609f51 R12: ffff888079d6d680
[  245.296571][ T6855] R13: dffffc0000000000 R14: ffff88802ef4b0c0 R15: 000000000000001e
[  245.356756][ T6855] FS:  0000555556f28480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  245.365754][ T6855] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  245.398965][ T6855] CR2: 00007f6f54a193b0 CR3: 0000000023730000 CR4: 00000000003506f0
[  245.426799][ T6855] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  245.434820][ T6855] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  245.541489][ T6855] Kernel panic - not syncing: Fatal exception
[  245.547825][ T6855] Kernel Offset: disabled
[  245.552145][ T6855] Rebooting in 86400 seconds..