last executing test programs:

9.748546962s ago: executing program 1 (id=2):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x218}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYRES32=r4, @ANYBLOB="14000500fe800099"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c0000001800010045f40000000000000a00000000000000000000000c00090008000000", @ANYRES32=r4, @ANYBLOB="14000500fe80"], 0x3c}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x4)
r5 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0)
io_submit(0x0, 0x0, 0x0)
modify_ldt$read_default(0x2, 0x0, 0x17)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c0000001900010000000000000000000218000000000e010000000008000100ac1414"], 0x2c}}, 0x0)
ioctl$SNDCTL_DSP_STEREO(r5, 0xc0045003, &(0x7f0000000200))
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f00000015c0)=ANY=[@ANYBLOB="9feb010018000000000000006c0000006c00000006c000000000000008000085060000000e00000000000000050000000c00000005000000070000001000007c892c35000200000005000000010000000100000010000000050000009f005efb42e994355a64c12cb0e5000001000000dd0000000f0000000000000007000000080000000500000001000000005f2e612e00"], &(0x7f00000005c0)=""/4096, 0x8a, 0x1000, 0x0, 0xfffffff7, 0x0, @void, @value}, 0x20)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000480)=@o_path={&(0x7f0000000440)='.\x02/file1\x00', 0x0, 0x4000, r6}, 0x18)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x1, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000540)={0x1}, 0x4)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xc, 0x800, 0x105, 0x8, 0x20e9, 0x1, 0x7e, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.kill\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x22111, r7, 0x0)
socket$inet6(0xa, 0x3, 0xfffffffa)
socket$inet6_tcp(0xa, 0x1, 0x0)

9.536687084s ago: executing program 4 (id=5):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'erspan0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x2d, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x5, 0x0, 0x8]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private, 0xffffff14}, {@remote}, {@dev, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}, {@private}]}, @timestamp_prespec={0x44, 0x2c, 0x2c, 0x3, 0x0, [{@dev}, {@multicast2}, {@private=0x20000000}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}]}, @noop, @lsrr={0x83, 0x7, 0x0, [@multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @local, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

9.413830517s ago: executing program 1 (id=7):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x33, 0x4, 0x0, 0x0, 0xcc, 0x64, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x9, 0x0, 0x5, 0x0]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@dev, 0x65c}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x8, [{@dev}, {@remote, 0x1}, {@multicast2}, {@private=0xa0100fe}, {@rand_addr=0x64010100}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x13, 0x0, [@remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

9.413162475s ago: executing program 3 (id=4):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d621ffbc9a4fd39b0631f6dde53a9a53608c10556e5734eb84049761471ce540c772e2d9f8004e26f7fcc059c062234d5595f6dba87b81d0806fb0289ce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd8048a967d9b912ef9f1dcc4ff8546fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30816127f46a1aae33d4d63d716c0975e1ce4a655362e7062ff6ab3934555c0184021b829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47910000118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f80492461d273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c528df8000000d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b1e152ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d1bfa928e2ba458ecd989cb3581a3f270ad48255ac0dad4923e3e36629589ff6b0ceb3438e4b432dd454c04be2d538aaf60c9f7a7281d32142f2fdbc3d37e5a072b5d7f0a349f1a75f01b5c203d4bdde6ff12de9a37f7fb9a16059ad97e2edefb5e0b0326bd25f6fd1d108efa9d30a9883815654486fe42cf2f676cdbb91f7582ab314be"], &(0x7f0000000100)='GPL\x00', 0xfffffff7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000008c0)=r1, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000900)={0x0, @in6={{0xa, 0x4e24, 0x7, @mcast1, 0x48756998}}, 0x3d8, 0x8, 0xd6, 0x1, 0x32, 0x1ff}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x80000000000001, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x1000000000010001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000006c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000e80)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="25003300d0000000080211000001080211000000505050505050000003010000000100da0f000000"], 0x44}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_udp_int(r6, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendto$inet(r6, 0x0, 0x0, 0x2004c890, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r8 = syz_io_uring_setup(0x7279, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
r11 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000000200)={0x43, 0x18000000}, 0x10)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r12, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r13, 0x1, 0x0, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x0, 0x0, 0xc1}}}}, 0x30}}, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r8, 0x2def, 0x0, 0x0, 0x0, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

9.146219417s ago: executing program 0 (id=1):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'erspan0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x2d, 0x4, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x401, 0x1000, 0x5, 0x0, 0x3f]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private, 0xffffff14}, {@remote}, {@dev, 0x659}, {@broadcast, 0x8000}, {@empty}, {@multicast1, 0xffd200}, {@private}]}, @timestamp_prespec={0x44, 0x2c, 0x2c, 0x3, 0x0, [{@dev}, {@multicast2}, {@private=0x20000000}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}]}, @noop, @lsrr={0x83, 0x7, 0x0, [@multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @local, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

9.05905232s ago: executing program 2 (id=8):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)=[<r1=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r0, 0xc05064a7, &(0x7f0000000040)={&(0x7f0000002200)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, r1})
dup(r0)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r2, 0x10d, 0x88, &(0x7f0000000000), &(0x7f0000000080)=0x4)

8.941416309s ago: executing program 1 (id=9):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'ip6gretap0\x00', <r4=>0x0})
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCADDRT(r5, 0x890b, &(0x7f0000000080)={@dev, @empty, @private1, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x80640087, r4})
r6 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r7=>0x0})
r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0}, 0x20)
r9 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r10 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0xbd, 0x1, r9, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0xffffffffffffffff)
bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000300)={r10, &(0x7f0000000240), 0x0}, 0x20)
ioctl$sock_inet6_SIOCADDRT(r8, 0x890b, &(0x7f0000000640)={@private0, @local, @private2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80600087, r7})
r11 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r12=>0x0})
ioctl$sock_inet6_SIOCADDRT(r11, 0x890b, &(0x7f0000000080)={@mcast2, @ipv4, @dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80600087, r12})
r13 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r13, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-ssse3\x00'}, 0x58)
r14 = accept4(r13, 0x0, 0x0, 0x0)
recvmmsg$unix(r14, &(0x7f0000003700)=[{{0x0, 0x700, 0x0, 0x0, 0x0, 0x500}}], 0x600, 0x0, 0x0)
r15 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet_SIOCSIFFLAGS(r15, 0x8914, &(0x7f0000000140)={'batadv_slave_0\x00'})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@remote, 0x8000000, 0x0, 0xff, 0x1, 0x66}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x8000000, 0x2, 0xff, 0x0, 0x8, 0xd}, 0x20)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)

8.834827453s ago: executing program 2 (id=10):
r0 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r0, 0xc0984124, 0x0)
socket(0x15, 0x5, 0x0)
fcntl$F_GET_FILE_RW_HINT(0xffffffffffffffff, 0x40d, &(0x7f0000000040))
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = dup(r1)
write$UHID_INPUT(r2, &(0x7f0000001040)={0x9, {"a2e3ad21ed0d09f90e3d090987f70e06d038e7ff7fc6e5539b0d5b0e8b099b3f36006e090890e0878f0e1ac6e7f89b334d959b4a9a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070d074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0a6193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927eff7f3aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f05004b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee6157eb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de225727aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d78749a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8870b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae8489d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60299473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b00f1000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90d5943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)
ioctl$DRM_IOCTL_RES_CTX(0xffffffffffffffff, 0xc0106426, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{}, {}, {<r3=>0x0}]})
ioctl$DRM_IOCTL_LOCK(r2, 0x4008642a, &(0x7f0000000100)={r3, 0x5})
syz_usb_connect(0x0, 0x48, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000022546940fa0ae803d0990102030109023600010000000009047500038cbb2a0009050a001000010000090588"], 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000010000008000"/20, @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140)={<r4=>0xffffffffffffffff})
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009b23fd406d04c1088dee000000010902240001000000000904000000ff0100000724", @ANYRES16=r4], 0x0)
r5 = open(&(0x7f00009e1000)='./file0\x00', 0x6a841, 0x0)
r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r6, 0x40085112, &(0x7f0000000080)=@s={0x5, @generic=0xff, 0x1e})
fcntl$setlease(r5, 0x400, 0x0)
r7 = socket(0x2b, 0x1, 0x1)
setsockopt$inet6_IPV6_RTHDR(r7, 0x29, 0x39, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1}, 0x8)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r5, 0x89f0, &(0x7f0000000280)={'ip6tnl0\x00', &(0x7f00000003c0)={'ip6gre0\x00', 0x0, 0x29, 0x9, 0xa, 0x1, 0x4, @mcast1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x10, 0x0, 0xa, 0x1ff}})
getsockopt$IP6T_SO_GET_REVISION_MATCH(r7, 0x29, 0x44, 0x0, &(0x7f0000000240))

8.396316311s ago: executing program 4 (id=11):
socket$inet(0x2, 0x2000000080002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
futex_waitv(0x0, 0x0, 0x2, 0x0, 0x0)
getpgid(0xffffffffffffffff)
write$P9_RGETLOCK(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="290000003702eb0004000000000000005e00000000000000cff87298232a0f9280dc2463dbdd3a3f9970d17ed2240848a5d27361658c11c622bc96f406aaf92c3cfadced546de03909b39420158800506899ae65c643f8e79e8992fb3ae5001a6cb10e54d8522f6b3a", @ANYRESHEX=r0, @ANYBLOB='\v\x00/dev/hwrng\x00'], 0x29)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x44, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'})
sendmsg$can_raw(r1, 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x10, &(0x7f0000000200)=0x1c, 0x4)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
listen(r2, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r3, &(0x7f0000000400)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
execveat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x1000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000002100), 0x80c, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/anycast6\x00')
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x4100, 0x0)
ioctl$FBIO_WAITFORVSYNC(r5, 0x4605, 0x20000000)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x2201, 0x10a)
write$cgroup_int(r6, &(0x7f0000000300)=0x710, 0x12)

8.27466868s ago: executing program 1 (id=12):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, 0x0, 0x2c00)

7.837460593s ago: executing program 1 (id=13):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe5000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f00000001c0)=ANY=[@ANYBLOB="02000000050000f58e04"])
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x82000, 0x0)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000080)={'team0\x00', <r6=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x1ff, 0x81, 0x5, 0x40000, r5, 0x0, '\x00', r6, r3, 0x1, 0x3, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$FBIOPUT_VSCREENINFO(r4, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x690, 0x384, 0x0, 0x0, 0x0, 0x0, {}, {}, {0x0, 0x4}, {0x0, 0x0, 0x8}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x3, 0x0, 0x2, 0x0, 0xc})

7.554631544s ago: executing program 0 (id=14):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x84, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @empty, 0xfffffffd}}, 0x0, 0x3, 0x0, 0x3274, 0x29, 0xffffffff}, &(0x7f0000000040)=0x9c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000640)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x4}}}}}}, 0x0)

7.209488607s ago: executing program 4 (id=15):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000580)=ANY=[@ANYRES16], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
readv(r0, &(0x7f0000000200)=[{&(0x7f0000000040)=""/39, 0x27}, {&(0x7f0000000340)=""/244, 0xf4}, {&(0x7f0000000100)=""/102, 0x66}, {&(0x7f0000000080)=""/55, 0x37}], 0x4)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f080003400000000714000000020a0102000000000000000000000000140000001000010000000000000000000000000a"], 0xa0}, 0x1, 0x0, 0x0, 0x14048040}, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = socket$kcm(0x21, 0x2, 0x2)
accept4(r3, 0x0, 0x0, 0x0)
r4 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/116, 0x0})
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r4)
poll(&(0x7f0000000180)=[{r4}], 0x1, 0x800)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000200)={0x1, r4})
r5 = syz_usb_connect(0x6, 0x2d, &(0x7f0000000540)=ANY=[@ANYRESHEX=r3, @ANYRES64=r2], 0x0)
syz_usb_control_io$cdc_ecm(r5, 0x0, &(0x7f0000000340)={0x1c, &(0x7f00000001c0)=ANY=[@ANYBLOB="0017c8000000b8"], 0x0, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000500))
syz_usb_connect(0x3, 0x604, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000c80)={0xa, &(0x7f0000000b80)={0xa, 0x6, 0x110, 0x81, 0x4, 0x81, 0x20}, 0x16, &(0x7f0000000bc0)=ANY=[@ANYBLOB="050f1600030000000000000000080007100218360200"], 0x1, [{0x60, &(0x7f0000000c00)=ANY=[@ANYRESHEX=r4]}]})
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r7, 0x8933, &(0x7f0000000300)={'batadv_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="340000001a40010000000000964ee1ff01000000000000000001000002000100e00000018800030009a317c8ab7fc360f1a6cc7fe3f05419a1bcb98c7725c8fd5eb90197cbfd64ae6f332d956d82", @ANYRES32=r8, @ANYBLOB="08000200ac1414aa"], 0x34}}, 0x2000c044)
r9 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_ifreq(r9, 0x8927, &(0x7f0000000100)={'wg1\x00', @ifru_addrs=@sco={0x1f, @none}})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/72, &(0x7f0000000480)=""/74})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f0000000000)=0x20000)
ioctl$VHOST_SET_VRING_ERR(r2, 0x4008af22, &(0x7f0000000140)={0x1, r4})

7.089331206s ago: executing program 0 (id=16):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40), 0xffffffffffffffff)
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, 0x0, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x2200c851, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bind$vsock_stream(r2, &(0x7f0000000000)={0x10}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000240)='net/netlink\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r3, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
pipe2(&(0x7f0000000000)={0x0, <r4=>0x0}, 0x0)
pipe2$watch_queue(&(0x7f0000000240)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
r6 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000080)={'fscrypt:', @auto=[0x35, 0x61, 0x34, 0x37, 0x61, 0x65, 0x35, 0x66, 0x32, 0x37, 0x63, 0x35, 0x35, 0x62, 0x63, 0x62]}, &(0x7f0000000280)={0x0, "4a8d48a665491adf0fbc0b54d9391fec4647e0a1c2934c04e8e80d7f6e591e6a32084748ff49c73c03d81eca24cd27189b63760375c5831a0866ee64818b4000"}, 0x48, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f0000000140)={<r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r5, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r7, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)

6.932412607s ago: executing program 4 (id=17):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0xfffffff7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000008c0)=r1, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000900)={0x0, @in6={{0xa, 0x4e24, 0x7, @mcast1, 0x48756998}}, 0x3d8, 0x8, 0xd6, 0x1, 0x32, 0x1ff}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x80000000000001, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x1000000000010001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000006c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000e80)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="25003300d0000000080211000001080211000000505050505050000003010000000100da0f000000"], 0x44}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, 0x0, 0x0)
setsockopt$inet_udp_int(r6, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendto$inet(r6, &(0x7f0000001440)="8689d46205a34100bf2bbe11a5ce7839edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9ecda75e2a7d49d5cbcb370c4d789390a328ba42c9c60cf2154d1b659aa709e8980a522cfb72f23ad87fb7019706ccae98cfe7c4fd23e8297b8cabc46ede1ac3da78f1b488c6357e7edfcd417df6660af20a54ecdcb02f689ae15ee655d4b7b1ea733e88ee9f53669388dff487c1c49953f3bc142112bd4b582b29b35d43962ed245c2cd5d5df40a3e0ed6beaf3b641e84b0f0dfa121a9efe05269f9f4a0e9bcbf43c7a90a711f453668c730c3badedca687b71a9c27bab9e724cc4a4918713031596ea6fd01124f973f257ccd9665aee7df4a9d64f079d176abc00000000d7af3e2dd4396f72373fb0a787a6129ca41181f5087fb843212550b58e3707d5a0399de36c2503836cbe2133de4f574e9e05c96788b0de1bd13e390445433d96737b964fa8af2ac4b2f0f9390ca93d8d3d810044d024359e067c4553230ab748947d33f8fc115ce9a49e6571c45a05d786cbd49342c236537dbbeec666b07baab917252113a5b9a77283189b518f356debe42d80cf2d0687b9c64d0053a6a09286fded6e4f8557b8fb4f25ca4fb138af8945c74bbc98748eaaa030be5317646f195e6e085ac6ddb29542e3581961250c00241f7e7061526a7afec8962e74215fea43703a4e543ee9d1a3c3f5f2a41977ece8fdadcf89ce331ce59bebae5f53513d0e10485d7ddbda60513bf339602510b3a23ea29a0d5d03a61e34d12942ea4a847c884b27b5344a456d02a55f8929cc567e7c792c01fab7a7b32780a14c361000609b817dd91507b04d875279527946fdb8fb92a512485e234d092c28f1d0a0498731ccc0eb10515d510e8945839307b46512ceca6f495fdd2c6ae5eb2ef3b2a40ebdc7edf0048e3fb5e3d97a9ea5113a6b70d20ad5c43f0df95d88c0f121a1884da21a21f0ba47420f8391a97921cc51871dbb272e43710fe71d5e342c3afd10608a8b02f00e8fbd8d570b6faace86c494ecea8913233391e7b7cec3d571bb3032181ed58e1b513e511f79ee562c8cde9b3b74c2e95dcde7fadb5a666bdc0c1684794620ce8cf0c0aee8e90b3ef6e7160d3f055cb4d1ced32e4edc15e7d102952d3237e6c02c591a95a182bf190c0124abc7f1225332ff1c5e1b94e4e9bf02c1a18bd7bfce20707f7298da322560bc1a4cf298d46f5bf8ff41da21e25aa17f65f9ee43ca890b5ef6a3ccf3efedf3ca60a9acef1352ad0c43e6cf375108cf0974ce89a99adba7e6a3f8949dc573440fafe0e3abdd0066057a2d868e8386080f18a421568d8e7a89536a4173861bd55245c8fcf7dcba18edce36d2e85b9630fbc218db9ebd16abb11ac06fdbf2bc3e6394d4c6c461e192c0a86310885aba7445c6e7ae71813d30772d487743a2856348fee09989ce03331e7848770fc91e62191c20fe5f4a73c5dae467dd612b7b4a272d1820bcd04bdb63b1e50921d38201005d7412103d5a6214d6d534d1d530b9169f882b6926bbd338f0282a8bd9a44603934e5249e83f1d0947b39f82a7843d2b6f796d8abf7ff3e66cfd4519324d71cebbf6580dffc10d555e479e9acaa12c3c59e3732c181aa4223d0fcdac514e9d7c7963c2634964520286b028f60a4ae612b8e6049315139e884cbffd6836253094ad023329183496cf663366ad4d7f7f5f1bd2db9b0d33f106c041fba4494c7da404d45d8955e5459ca4a62862721ec1fa534fd95e262c5814426816e60000000000000000001aa4fb6f40ec24f42f6949cc28d2a0d4eb61cb1664627582d962523586539445b879cec6ecda7f6dbc029abc77402350a6fdcb3ed66b34e218ab8c1b765c9a343933b0f944b7d9b2bde8583721cbe16c7da6f9e4824dfb95f3640839061406140cce0fdecdf4c9d168868cfb834a1ee328db036761d49529fc44af51ed9d301a26b01ddcbd1e06cc647affba57b85198b663054d60f49f4d9a13e85642255b3a445303fa339f728f07c8a6a7ff8d9412988b0407bdcc7fdb422b29e8a3909605d200702bebb0f0dc2bf6fdd8a400436dcdc0fcbb1bae069778675586b60a3a6216ca2d11154a853151a816239d0a492b1fafbb90fbdaa947325fab3b093a55f6cf820bd71e82ac721774fab8bf0b70aacf2c0af39ec446d37d474746f1b6091bcb5dd329236405c268626c52dd7ab93b16f39b7ce7217b12edf3479d34270699aa9dee038830657e4bbc9a9e6df0eda172c1b9c0553c715c588c52931f99bfc94cf18bf3274af340bfdbb480092b2a4779bb48b9bbfeee9214ca3d2bf9c8126643b3854827d39b8dafd707b18c1fad86f49c62bb920f6c13d3c51c2dae4996746e0ef7baba0fef836a359f29a9b4ef3db9607f66cda2c5c94988c8c787dec6b4b1b4b097c79630a430f6c9357c80ee5d874ece2775a7aac08c2247ab0b7478cfe323391c5cad8e046da7e2721ddc7620b0d85338ed98f7585c4393ff488369f08f0fba12cb0a4c0c7abb6c03cfdf6428a164540e65af30a1372600d15f45ce50adc0bb18c524ed4ef199875c364f999b7ea081c41e6404ac42d74fd4da5edd8a162104576248444a9520a693e6e56cabbab21a31c86c49919e278333019851ebc651238989baae628ac88d513178c6bf52df02ca60fdc17671f8494e7bed778687902732d0abc05658a1566246", 0x782, 0x2004c890, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r8 = syz_io_uring_setup(0x7279, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
r11 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000000200)={0x43, 0x18000000}, 0x10)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r12, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r13, 0x1, 0x0, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x0, 0x0, 0xc1}}}}, 0x30}}, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r8, 0x2def, 0x0, 0x0, 0x0, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

6.848301597s ago: executing program 0 (id=18):
socket$inet(0x2, 0x2000000080002, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
futex_waitv(0x0, 0x0, 0x2, 0x0, 0x0)
getpgid(0xffffffffffffffff)
write$P9_RGETLOCK(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="290000003702eb0004000000000000005e00000000000000cff87298232a0f9280dc2463dbdd3a3f9970d17ed2240848a5d27361658c11c622bc96f406aaf92c3cfadced546de03909b39420158800506899ae65c643f8e79e8992fb3ae5001a6cb10e54d8522f6b3a", @ANYRESHEX=r0, @ANYBLOB='\v\x00/dev/hwrng\x00'], 0x29)
syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x44, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f00000000c0)={'vxcan1\x00'})
sendmsg$can_raw(r1, 0x0, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x10, &(0x7f0000000200)=0x1c, 0x4)
bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
listen(r2, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
connect$unix(r3, &(0x7f0000000400)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
execveat(0xffffffffffffffff, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x1000)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(0x0, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000002100), 0x80c, &(0x7f0000000180)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r4, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/anycast6\x00')
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000280), 0x4100, 0x0)
ioctl$FBIO_WAITFORVSYNC(r5, 0x4605, 0x20000000)
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x2201, 0x10a)
write$cgroup_int(r6, &(0x7f0000000300)=0x710, 0x12)

4.349044952s ago: executing program 0 (id=20):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1400070010000100004000701b808f5e8197ac00000000000000000a140000001101000000000000000000000000010a"], 0x28}}, 0x0)
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
read$FUSE(r1, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
socket$nl_audit(0x10, 0x3, 0x9)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_mtu(r3, 0x29, 0x17, &(0x7f0000000080)=0x5, 0x4)
sendmmsg$inet6(r3, &(0x7f0000000c80)=[{{&(0x7f0000000580)={0xa, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x40000cc, 0xc000)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x82)
writev(r4, &(0x7f00000017c0)=[{&(0x7f0000000040)="273eebfecb7c0e923301b61c42cb1d11f41d00bdab2a3d983b065a56", 0x1c}, {&(0x7f0000000000)="fe", 0x1}], 0x2)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000e3ddef20501da1604fa10102030109021800010000000009040000009d144e00"], 0x0)
landlock_restrict_self(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000000), 0x208e24b)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

4.319717473s ago: executing program 1 (id=21):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0fff8ffff1971a4f0ff00000000b7060000080000001e6400000000000045040400010000001704000001000a00b7040000000100006a0af2fe00000000850000001a000000b7000000000000009500000000000000455781a5feee5e1ce784909b849d5550adf200000000000000b61d69f2ffdaa10350e11cb97c8ad51bcda0c4ee6d9674c77404ceb9971e43405d621ffbc9a4fd39b0631f6dde53a9a53608c10556e5734eb84049761471ce540c772e2d9f8004e26f7fcc059c062234d5595f6dba87b81d0806fb0289ce67a66afd9ac3d09e29a9d542ca9d85a5c9c88474895d679838def0a83a733dc6a39b63a5ed69d32394c53361d7480884bd8048a967d9b912ef9f1dcc4ff8546fee53f5b2e7b91c61ced1ebad000000000000e8122a793c080a882add4e1179bd4a44f231b6d753a7be428ba953df4aece69311687f4122073a236c3ad198e3f3a532efa04137d452ff47d2638da3261c8362bb7c7824be6195a66d2e17e122040e11e3bd4a69fc6e8d9f7043e09b9e10dc7777bfae5884e4ba1e9cc4a2bbe99e30816127f46a1aae33d4d63d716c0975e1ce4a655362e7062ff6ab3934555c0184021b829472adefa06d3482c7b2711b98eabdca89b77efd13e6dba4a431ce47910000118093b6cabaa17a57727474e1785ee234835088445aa4a9b677d3d342640e328504aea02a2d727e62b7f097a02dbf8fe1d704765de7482040b2fc3000000000000000008947baeaaf954aff687deaa2f80492461d273ee26d8115cbca081a14cba24788779291745083fccdddc90d7af35c528df8000000d8d79c79ddca066da478c197d4a550470557bc99cca336bd88cd28a5ee651627e3a6fbf6ea53b95ddb64c69c7d8d2f4baddc239828760459564124bad68209d2a1d16ad085886c017679cfcda8b1e152ac1e2bcc5ede5b5687aa418abfa29acd7339e73b2cd185c9eb5fb34fccd20ffa155b16c0c309ed6f6663677df37de0ec0d0f548b273940be5d1fe0bae14d1a76bf741330dacd9cc19c0163bcc93059e8d2d1bfa928e2ba458ecd989cb3581a3f270ad48255ac0dad4923e3e36629589ff6b0ceb3438e4b432dd454c04be2d538aaf60c9f7a7281d32142f2fdbc3d37e5a072b5d7f0a349f1a75f01b5c203d4bdde6ff12de9a37f7fb9a16059ad97e2edefb5e0b0326bd25f6fd1d108efa9d30a9883815654486fe42cf2f676cdbb91f7582ab314be"], &(0x7f0000000100)='GPL\x00', 0xfffffff7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000008c0)=r1, 0x4)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000900)={0x0, @in6={{0xa, 0x4e24, 0x7, @mcast1, 0x48756998}}, 0x3d8, 0x8, 0xd6, 0x1, 0x32, 0x1ff}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x80000000000001, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x1000000000010001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000006c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000e80)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r5, @ANYBLOB="25003300d0000000080211000001080211000000505050505050000003010000000100da0f000000"], 0x44}}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x0, @dev}, 0x10)
setsockopt$inet_udp_int(r6, 0x11, 0x67, &(0x7f0000000000)=0x507, 0x4)
sendto$inet(r6, 0x0, 0x0, 0x2004c890, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
r8 = syz_io_uring_setup(0x7279, &(0x7f0000000080)={0x0, 0x0, 0x13100}, &(0x7f0000000180)=<r9=>0x0, &(0x7f00000001c0)=<r10=>0x0)
r11 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r11, 0x10f, 0x87, &(0x7f0000000200)={0x43, 0x18000000}, 0x10)
r12 = socket$nl_generic(0x10, 0x3, 0x10)
r13 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r12, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r13, 0x1, 0x0, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x0, 0x0, 0xc1}}}}, 0x30}}, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r8, 0x2def, 0x0, 0x0, 0x0, 0x0)
write$rfkill(r7, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8)

4.319235412s ago: executing program 2 (id=22):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x8e, &(0x7f0000000000), 0x0)

4.086362594s ago: executing program 3 (id=23):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b00011100000009040000019569", @ANYRES32], 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000200)='/sys/fs/bpf', 0x0, 0x0)
openat$cgroup_ro(r1, &(0x7f0000000040)='io.stat\x00', 0x275a, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="380000001000"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800c0001006d6163766c616e001800028004000580ae442be9ec0f27fe30f5acf9cfef54d568e76d01db82bfef6965e45bebab74f55027d960580f75c8515cde379a77b3b1f749cbdbd06724850afbc10b84da03a43c86285b12e9d661b278a3aea1e05d4d2e3b24a51c79b5b283612c606f06b22da5c3497833f165c5dc34edfb778c3e56f2e6b3f666a3497107fd4a7113e1"], 0x38}}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)={0x70, 0x0, 0x0, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_DATA_SEQ={0x5}, @L2TP_ATTR_VLAN_ID={0x6}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_VLAN_ID={0x6, 0xe, 0xfffa}, @L2TP_ATTR_PROTO_VERSION={0x5, 0x7, 0x3}, @L2TP_ATTR_L2SPEC_TYPE={0x5, 0x5, 0x1}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @broadcast}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'veth0_vlan\x00'}, @L2TP_ATTR_UDP_DPORT={0x6, 0x1b, 0x4e20}]}, 0x70}}, 0x0)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6394f90224fc60100005000a000200053582c137153e37000c0180fc0b10000600", 0x33fe0}], 0x1}, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x5, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a24000000000a01010000000000000000050000000900010073797a30000000000400060070000000030a01030000000000000000050000000900010073797a30000000001c0008800c00024000000000000000000c00014000000000000000000900030073797a3200000000280004800800024000000000080001400000000014000300766c616e3000"/167], 0xd0}}, 0x0)
r8 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x7, 0xc2, 0x0, 0x0, 0x0, {[@mss={0x2, 0x0, 0xa005}, @sack_perm]}}}}}}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)

4.042435646s ago: executing program 2 (id=24):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELFLOWTABLE={0x38, 0x16, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0xa}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x4}, @NFTA_FLOWTABLE_FLAGS={0x8, 0x7, 0x1, 0x0, 0x6}]}], {0x14, 0x10}}, 0x80}}, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES16=0x0], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)={0x28, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_SCAN_SUPP_RATES={0xc, 0x7d, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x6, 0x1, "48ef"}]}]}, 0x28}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000002c0)={0x54, r4, 0x4, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x8, 0x69}}}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x30}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x1}, @NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_TTL={0x5, 0x6, 0x3}, @NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR={0x8, 0x15, 0x13}, @NL80211_MESHCONF_POWER_MODE={0x8, 0x1a, 0x2}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4000}, 0x800)
syz_usb_connect(0x1, 0x34, &(0x7f0000000000)=ANY=[@ANYRES8=r0, @ANYRES8=r0, @ANYRES8=r0, @ANYRES8=r0, @ANYRES16=r1, @ANYRESOCT=r1, @ANYRESOCT=r1, @ANYRES8=r1], 0x0)
write$binfmt_aout(0xffffffffffffffff, 0x0, 0xc1)

726.031459ms ago: executing program 2 (id=25):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001040)=@filter={'filter\x00', 0x42, 0x4, 0x260, 0xffffffff, 0x130, 0x98, 0x0, 0xffffffff, 0xffffffff, 0x1f0, 0x1f0, 0x1f0, 0xffffffff, 0x8000000, 0x0, {[{{@ip={@local, @loopback, 0x0, 0x0, 'team_slave_0\x00', 'veth1_to_bond\x00', {}, {}, 0x0, 0x1}, 0x0, 0x70, 0x98, 0x0, {0x100000000000000, 0x600000000000000}}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@ip={@multicast1, @loopback, 0x0, 0x0, 'batadv_slave_0\x00', 'geneve1\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x98}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)

587.952217ms ago: executing program 2 (id=26):
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000280)={@ifindex, 0xffffffffffffffff, 0x32, 0x2010, 0x0, @value}, 0x20)
r0 = socket(0x15, 0x5, 0x0)
getsockopt(r0, 0x200000000114, 0x271c, &(0x7f0000000580)=""/102393, &(0x7f0000000000)=0x18ff9)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000000)=0x2)
ioctl$PPPIOCSPASS(r1, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000000100)=[{0x6}]})
ioctl$PPPIOCSDEBUG(r1, 0x40047440, &(0x7f00000000c0)=0xfff)
write$ppp(r1, &(0x7f00000010c0)="1e00", 0x2)

0s ago: executing program 3 (id=27):
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0xe800, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, 0x0) (async)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2) (async)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) (async)
read$qrtrtun(r1, &(0x7f0000000340)=""/240, 0xf0) (async)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040), 0xc) (async)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
recvmmsg(r2, &(0x7f0000001080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) (async)
connect$qrtr(r3, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)
ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, 0x0) (async)
writev(r3, &(0x7f0000000340)=[{&(0x7f0000000080)='~', 0x1}], 0x1) (async)
io_submit(0x0, 0x11, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0}) (async)
gettid()
timer_create(0x2, 0x0, &(0x7f0000bbdffc)) (async)
timer_settime(0x0, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) (async)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x0, 0x989680}, 0x0) (async)
syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000002c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x38e38e38e38e5e9, [{{0x9, 0x2, 0x48}}]}}, 0x0) (async)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19) (async)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x40b80, 0x0) (async)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x100000f, 0xffffffeffffffffa, 0x40) (async)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000001300)=ANY=[], 0x630}, 0x1, 0x0, 0x0, 0x4042020}, 0x1) (async)
socket$nl_netfilter(0x10, 0x3, 0xc) (async)
open(0x0, 0x20403, 0x0) (async)
write$dsp(r0, &(0x7f0000000440), 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.135' (ED25519) to the list of known hosts.
[   66.185903][ T5212] cgroup: Unknown subsys name 'net'
[   66.318000][ T5212] cgroup: Unknown subsys name 'cpuset'
[   66.326457][ T5212] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   67.858847][ T5212] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.205034][ T5232] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   71.210495][ T5233] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   71.220874][ T5232] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   71.230202][ T5232] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   71.232002][ T5237] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   71.244486][ T5232] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   71.245027][ T5232] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   71.259470][ T5234] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   71.267036][ T5238] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   71.268291][ T5234] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   71.282410][ T5232] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   71.290375][ T5238] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   71.290538][ T5232] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   71.304751][ T5238] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   71.305982][ T5234] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   71.319317][ T5232] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   71.324031][ T5236] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   71.327109][ T5234] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   71.334151][ T5238] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   71.342016][ T5232] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   71.351721][ T5238] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   71.355458][ T5234] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   71.364491][ T5238] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   71.369248][ T5234] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   71.392456][ T5238] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   71.393739][ T5234] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   71.399754][ T5238] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   71.417940][ T5238] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   71.425218][ T5238] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   71.435234][ T5234] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   71.499463][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[   71.506030][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[   71.919828][ T5244] chnl_net:caif_netlink_parms(): no params data found
[   71.956875][ T5241] chnl_net:caif_netlink_parms(): no params data found
[   71.978251][ T5242] chnl_net:caif_netlink_parms(): no params data found
[   72.019451][ T5245] chnl_net:caif_netlink_parms(): no params data found
[   72.080073][ T5243] chnl_net:caif_netlink_parms(): no params data found
[   72.227991][ T5244] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.237584][ T5244] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.245554][ T5244] bridge_slave_0: entered allmulticast mode
[   72.252339][ T5244] bridge_slave_0: entered promiscuous mode
[   72.260530][ T5241] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.268099][ T5241] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.275434][ T5241] bridge_slave_0: entered allmulticast mode
[   72.282060][ T5241] bridge_slave_0: entered promiscuous mode
[   72.306762][ T5244] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.314033][ T5244] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.321318][ T5244] bridge_slave_1: entered allmulticast mode
[   72.328096][ T5244] bridge_slave_1: entered promiscuous mode
[   72.335433][ T5241] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.342532][ T5241] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.352655][ T5241] bridge_slave_1: entered allmulticast mode
[   72.359685][ T5241] bridge_slave_1: entered promiscuous mode
[   72.418288][ T5241] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.428364][ T5242] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.436748][ T5242] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.443918][ T5242] bridge_slave_0: entered allmulticast mode
[   72.451855][ T5242] bridge_slave_0: entered promiscuous mode
[   72.484713][ T5241] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.494023][ T5242] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.501857][ T5242] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.509495][ T5242] bridge_slave_1: entered allmulticast mode
[   72.516816][ T5242] bridge_slave_1: entered promiscuous mode
[   72.523294][ T5243] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.530631][ T5243] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.538137][ T5243] bridge_slave_0: entered allmulticast mode
[   72.545465][ T5243] bridge_slave_0: entered promiscuous mode
[   72.552323][ T5245] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.561168][ T5245] bridge0: port 1(bridge_slave_0) entered disabled state
[   72.568677][ T5245] bridge_slave_0: entered allmulticast mode
[   72.575864][ T5245] bridge_slave_0: entered promiscuous mode
[   72.585428][ T5244] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.612313][ T5243] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.619496][ T5243] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.627055][ T5243] bridge_slave_1: entered allmulticast mode
[   72.634710][ T5243] bridge_slave_1: entered promiscuous mode
[   72.641167][ T5245] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.648493][ T5245] bridge0: port 2(bridge_slave_1) entered disabled state
[   72.656022][ T5245] bridge_slave_1: entered allmulticast mode
[   72.662711][ T5245] bridge_slave_1: entered promiscuous mode
[   72.671058][ T5244] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.699004][ T5241] team0: Port device team_slave_0 added
[   72.713488][ T5242] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.748448][ T5241] team0: Port device team_slave_1 added
[   72.764026][ T5242] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.784713][ T5244] team0: Port device team_slave_0 added
[   72.802746][ T5243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.815095][ T5243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.833429][ T5245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   72.852749][ T5244] team0: Port device team_slave_1 added
[   72.876053][ T5245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   72.896003][ T5242] team0: Port device team_slave_0 added
[   72.910814][ T5241] batman_adv: batadv0: Adding interface: batadv_slave_0
[   72.918044][ T5241] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   72.944288][ T5241] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   72.973386][ T5242] team0: Port device team_slave_1 added
[   72.986562][ T5241] batman_adv: batadv0: Adding interface: batadv_slave_1
[   72.993657][ T5241] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.023875][ T5241] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.041136][ T5243] team0: Port device team_slave_0 added
[   73.070751][ T5244] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.082046][ T5244] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.117050][ T5244] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.129814][ T5244] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.136900][ T5244] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.162915][ T5244] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.182306][ T5243] team0: Port device team_slave_1 added
[   73.190734][ T5245] team0: Port device team_slave_0 added
[   73.199585][ T5245] team0: Port device team_slave_1 added
[   73.206026][ T5242] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.213001][ T5242] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.239259][ T5242] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.281383][ T5242] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.288916][ T5242] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.315190][ T5242] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.379744][ T5244] hsr_slave_0: entered promiscuous mode
[   73.389376][ T5244] hsr_slave_1: entered promiscuous mode
[   73.397051][ T5243] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.404725][ T5243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.415815][ T5233] Bluetooth: hci0: command tx timeout
[   73.430831][ T5243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.436815][ T5234] Bluetooth: hci1: command tx timeout
[   73.449035][ T5243] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.459648][ T5243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.486325][ T5243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.497360][ T5233] Bluetooth: hci2: command tx timeout
[   73.504591][ T5233] Bluetooth: hci4: command tx timeout
[   73.510179][ T5233] Bluetooth: hci3: command tx timeout
[   73.516808][ T5245] batman_adv: batadv0: Adding interface: batadv_slave_0
[   73.523773][ T5245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.549857][ T5245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   73.562227][ T5245] batman_adv: batadv0: Adding interface: batadv_slave_1
[   73.569282][ T5245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   73.595383][ T5245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   73.610872][ T5241] hsr_slave_0: entered promiscuous mode
[   73.617530][ T5241] hsr_slave_1: entered promiscuous mode
[   73.623703][ T5241] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.632049][ T5241] Cannot create hsr debugfs directory
[   73.715349][ T5242] hsr_slave_0: entered promiscuous mode
[   73.722029][ T5242] hsr_slave_1: entered promiscuous mode
[   73.728622][ T5242] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.736509][ T5242] Cannot create hsr debugfs directory
[   73.751452][ T5245] hsr_slave_0: entered promiscuous mode
[   73.757904][ T5245] hsr_slave_1: entered promiscuous mode
[   73.763962][ T5245] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.771650][ T5245] Cannot create hsr debugfs directory
[   73.826736][ T5243] hsr_slave_0: entered promiscuous mode
[   73.833278][ T5243] hsr_slave_1: entered promiscuous mode
[   73.840066][ T5243] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   73.847852][ T5243] Cannot create hsr debugfs directory
[   74.160375][ T5244] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   74.170854][ T5244] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   74.188327][ T5244] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   74.200820][ T5244] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   74.243280][ T5241] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   74.253674][ T5241] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   74.267977][ T5241] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   74.279660][ T5241] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   74.343106][ T5245] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   74.361744][ T5245] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   74.375285][ T5245] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   74.390377][ T5245] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   74.457246][ T5243] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   74.483735][ T5243] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   74.500616][ T5243] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   74.512924][ T5243] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   74.585578][ T5242] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   74.602138][ T5242] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   74.613526][ T5242] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   74.638359][ T5242] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   74.677440][ T5244] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.712355][ T5245] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.739161][ T5241] 8021q: adding VLAN 0 to HW filter on device bond0
[   74.756322][ T5244] 8021q: adding VLAN 0 to HW filter on device team0
[   74.777776][ T5245] 8021q: adding VLAN 0 to HW filter on device team0
[   74.802002][ T5241] 8021q: adding VLAN 0 to HW filter on device team0
[   74.814384][  T190] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.821766][  T190] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.841509][ T1123] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.848677][ T1123] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.870984][ T1123] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.878176][ T1123] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.929899][ T1123] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.937267][ T1123] bridge0: port 1(bridge_slave_0) entered forwarding state
[   74.950055][ T1123] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.957261][ T1123] bridge0: port 2(bridge_slave_1) entered forwarding state
[   74.990532][   T35] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.997703][   T35] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.039860][ T5242] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.128238][ T5243] 8021q: adding VLAN 0 to HW filter on device bond0
[   75.149832][ T5242] 8021q: adding VLAN 0 to HW filter on device team0
[   75.181876][ T1123] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.189042][ T1123] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.211201][ T1123] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.218518][ T1123] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.232001][ T5243] 8021q: adding VLAN 0 to HW filter on device team0
[   75.263338][ T5241] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.293268][ T5244] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.311151][  T190] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.318299][  T190] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.339633][ T5245] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.382342][  T190] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.389539][  T190] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.448186][ T5241] veth0_vlan: entered promiscuous mode
[   75.462365][ T5242] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.494471][ T5233] Bluetooth: hci0: command tx timeout
[   75.499951][ T5233] Bluetooth: hci1: command tx timeout
[   75.502537][ T5241] veth1_vlan: entered promiscuous mode
[   75.532280][ T5243] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   75.575992][ T5233] Bluetooth: hci3: command tx timeout
[   75.576010][ T5234] Bluetooth: hci4: command tx timeout
[   75.581415][ T5233] Bluetooth: hci2: command tx timeout
[   75.594404][ T5245] veth0_vlan: entered promiscuous mode
[   75.618214][ T5245] veth1_vlan: entered promiscuous mode
[   75.663643][ T5243] 8021q: adding VLAN 0 to HW filter on device batadv0
[   75.677252][ T5241] veth0_macvtap: entered promiscuous mode
[   75.698913][ T5244] veth0_vlan: entered promiscuous mode
[   75.714812][ T5242] veth0_vlan: entered promiscuous mode
[   75.730312][ T5241] veth1_macvtap: entered promiscuous mode
[   75.766598][ T5244] veth1_vlan: entered promiscuous mode
[   75.773285][ T5242] veth1_vlan: entered promiscuous mode
[   75.799392][ T5241] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.809337][ T5245] veth0_macvtap: entered promiscuous mode
[   75.819648][ T5245] veth1_macvtap: entered promiscuous mode
[   75.844020][ T5241] batman_adv: batadv0: Interface activated: batadv_slave_1
[   75.871156][ T5242] veth0_macvtap: entered promiscuous mode
[   75.882172][ T5241] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.892760][ T5241] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.902168][ T5241] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.911473][ T5241] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.941317][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.952520][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.965226][ T5245] batman_adv: batadv0: Interface activated: batadv_slave_0
[   75.991654][ T5242] veth1_macvtap: entered promiscuous mode
[   76.006911][ T5245] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.019852][ T5245] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.031250][ T5245] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.058871][ T5243] veth0_vlan: entered promiscuous mode
[   76.072731][ T5245] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.082101][ T5245] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.091471][ T5245] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.101064][ T5245] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.119751][ T5244] veth0_macvtap: entered promiscuous mode
[   76.128909][ T5243] veth1_vlan: entered promiscuous mode
[   76.148005][ T5244] veth1_macvtap: entered promiscuous mode
[   76.208734][ T5244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.229823][ T5244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.240125][ T5244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.251962][ T5244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.263655][ T5244] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.279044][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.289705][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.301441][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.312087][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.322037][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.333480][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.345660][ T5242] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.360538][  T190] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.370798][ T5244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.374847][  T190] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.388046][ T5244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.398526][ T5244] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.409077][ T5244] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.420222][ T5244] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.433356][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.449234][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.460255][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.471976][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.481868][ T5242] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.492521][ T5242] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.503550][ T5242] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.530268][ T5242] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.540503][ T5242] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.549930][ T5242] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.559460][ T5242] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.573038][ T5244] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.585831][ T5244] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.594830][ T5244] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.603765][ T5244] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.640496][ T1123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.651918][ T1123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.679617][ T5243] veth0_macvtap: entered promiscuous mode
[   76.728507][ T5243] veth1_macvtap: entered promiscuous mode
[   76.759030][ T5241] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   76.791999][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.811801][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.915301][ T5284] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   76.916628][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.949139][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.959844][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.970774][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.980874][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.992103][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.015968][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   77.034462][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.049615][ T5243] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.071719][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.085567][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.096705][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.107909][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.117854][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.145204][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.158462][ T5243] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   77.169229][ T5243] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   77.181452][ T5243] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.210251][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.222774][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.248943][ T5243] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.261300][ T5243] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.271674][ T5243] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.281372][ T5243] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.293323][  T190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.302392][  T190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.318406][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.328366][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.400344][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.426172][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.523969][  T190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.542727][ T5289] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.550155][ T5289] IPv6: NLM_F_CREATE should be set when creating new route
[   77.562468][  T190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.584644][ T5233] Bluetooth: hci0: command tx timeout
[   77.584784][ T5234] Bluetooth: hci1: command tx timeout
[   77.597679][ T4545] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.614972][ T4545] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.629356][ T5291] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6'.
[   77.654546][ T5234] Bluetooth: hci4: command tx timeout
[   77.658663][ T5233] Bluetooth: hci3: command tx timeout
[   77.660132][ T5226] Bluetooth: hci2: command tx timeout
[   77.716135][ T5289] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'.
[   77.774199][ T5291] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   77.781521][ T5291] IPv6: NLM_F_CREATE should be set when creating new route
[   77.867861][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.884292][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.136107][ T5295] kvm: emulating exchange as write
[   78.217142][ T5223] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   78.410278][ T5223] usb 4-1: Using ep0 maxpacket: 32
[   78.436479][ T5223] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.477249][ T5314] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.492030][ T5223] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.492092][ T5223] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   78.492119][ T5223] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.510977][ T5223] usb 4-1: config 0 descriptor??
[   78.527695][ T5223] hub 4-1:0.0: USB hub found
[   78.874455][ T2633] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   79.068789][ T2633] usb 3-1: config 0 has an invalid interface number: 117 but max is 0
[   79.104290][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.154268][ T2633] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   79.263366][ T2633] usb 3-1: config 0 has no interface number 0
[   79.305002][ T2633] usb 3-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[   79.324151][ T2633] usb 3-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   79.479617][ T5324] block device autoloading is deprecated and will be removed.
[   79.495122][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.504788][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.542368][ T5324] syz.4.11: attempt to access beyond end of device
[   79.542368][ T5324] loop16: rw=2048, sector=0, nr_sectors = 8 limit=0
[   79.563560][ T2633] usb 3-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[   79.572741][ T2633] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   79.581242][ T2633] usb 3-1: Product: syz
[   79.585928][ T2633] usb 3-1: Manufacturer: syz
[   79.591370][ T2633] usb 3-1: SerialNumber: syz
[   79.597965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   79.618119][ T2633] usb 3-1: config 0 descriptor??
[   79.657259][ T5234] Bluetooth: hci1: command tx timeout
[   79.657303][ T5234] Bluetooth: hci0: command tx timeout
[   79.735955][ T5226] Bluetooth: hci4: command tx timeout
[   79.736000][ T5226] Bluetooth: hci3: command tx timeout
[   79.736064][ T5226] Bluetooth: hci2: command tx timeout
[   79.847237][ T5313] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   79.869196][ T5313] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   79.956034][ T2633] usbtouchscreen 3-1:0.117: probe with driver usbtouchscreen failed with error -71
[   79.964533][ T2633] usb 3-1: USB disconnect, device number 2
[   80.114314][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.404436][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.414290][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   80.424522][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.616369][   T52] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.694581][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.723779][ T5347] syz.0.18: attempt to access beyond end of device
[   80.723779][ T5347] loop16: rw=2048, sector=0, nr_sectors = 8 limit=0
[   80.764925][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   80.868897][ T5317] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   80.884792][ T5317] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[   80.926610][   T52] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.999007][ T5317] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   81.014728][ T5317] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[   81.062260][ T5317] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   81.074512][   T52] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.096884][ T5317] Bluetooth: hci3: Error when powering off device on rfkill (-4)
[   81.140141][ T5317] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   81.162140][ T5317] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[   81.261698][   T52] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.741796][    T8] cfg80211: failed to load regulatory.db
[   82.061843][   T52] bridge_slave_1: left allmulticast mode
[   82.098783][   T52] bridge_slave_1: left promiscuous mode
[   82.114768][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.147959][   T52] bridge_slave_0: left allmulticast mode
[   82.153666][   T52] bridge_slave_0: left promiscuous mode
[   82.174692][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.742521][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.760510][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.773047][   T52] bond0 (unregistering): Released all slaves
[   83.124381][ T5223] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[   83.194222][ T5223] usbhid 4-1:0.0: can't add hid device: -71
[   83.200287][ T5223] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[   83.394178][ T5276] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   83.440075][ T5223] usb 4-1: reset high-speed USB device number 2 using dummy_hcd
[   83.448091][   T52] hsr_slave_0: left promiscuous mode
[   83.463473][ T5226] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.476777][ T5226] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.488432][ T5226] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.491167][ T5223] usb 4-1: device reset changed ep0 maxpacket size!
[   83.502926][   T52] hsr_slave_1: left promiscuous mode
[   83.512198][ T5226] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.520297][ T5223] usb 4-1: USB disconnect, device number 2
[   83.527165][ T5226] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   83.535503][ T5226] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   83.556174][ T5234] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.563518][ T5234] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.574239][ T5276] usb 2-1: Using ep0 maxpacket: 32
[   83.581799][ T5276] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   83.601386][ T5238] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   83.603401][ T5276] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   83.614267][ T5280] usb 3-1: new low-speed USB device number 3 using dummy_hcd
[   83.629759][ T5238] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.637190][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   83.638045][ T5238] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   83.660462][ T5234] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   83.661454][ T5238] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   83.669481][ T5234] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   83.678082][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[   83.682986][ T5234] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   83.697822][ T5276] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   83.698798][ T5238] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   83.707520][ T5276] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.725470][ T5238] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   83.733822][ T5276] usb 2-1: config 0 descriptor??
[   83.735507][ T5238] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   83.785322][ T5276] hub 2-1:0.0: USB hub found
[   83.805655][ T5280] usb 3-1: device descriptor read/64, error -71
[   83.806622][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   83.853612][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.894406][ T5223] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   83.914058][   T52] veth1_macvtap: left promiscuous mode
[   83.924389][   T52] veth0_macvtap: left promiscuous mode
[   83.930230][   T52] veth1_vlan: left promiscuous mode
[   83.942332][   T52] veth0_vlan: left promiscuous mode
[   84.044524][ T5280] usb 3-1: new low-speed USB device number 4 using dummy_hcd
[   84.056427][ T5223] usb 4-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config
[   84.079853][ T5223] usb 4-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   84.118274][ T5223] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[   84.140240][ T5223] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.214462][ T5280] usb 3-1: device descriptor read/64, error -71
[   84.329652][ T5280] usb usb3-port1: attempt power cycle
[   84.452042][ T5387] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.23'.
[   84.486952][ T5387] openvswitch: netlink: Tunnel attr 0 has unexpected len 2 expected 8
[   86.192264][ T5238] Bluetooth: hci2: command tx timeout
[   86.198399][ T5238] Bluetooth: hci4: command tx timeout
[   86.224356][ T5280] usb 3-1: new low-speed USB device number 5 using dummy_hcd
[   86.373203][ T5280] usb 3-1: device descriptor read/8, error -71
[   86.576556][ T5223] usb 4-1: string descriptor 0 read error: -71
[   86.608007][ T5223] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1
[   86.687546][ T5223] usb 4-1: USB disconnect, device number 3
[   86.994810][   T52] team0 (unregistering): Port device team_slave_1 removed
[   87.105598][   T52] team0 (unregistering): Port device team_slave_0 removed
[   88.214300][ T5238] Bluetooth: hci2: command tx timeout
[   88.219989][ T5226] Bluetooth: hci4: command tx timeout
[   88.343234][ T5406] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   88.382262][ T5406] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[   90.294256][ T5226] Bluetooth: hci4: command tx timeout
[   90.299744][ T5226] Bluetooth: hci2: command tx timeout
[   92.374229][ T5226] Bluetooth: hci4: command tx timeout
[   95.066814][   T24] sched: DL replenish lagged too much
[   95.704970][ T5406] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   95.710940][ T5406] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[   96.487482][ T5238] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.498587][ T5238] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.507746][ T5238] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.516218][ T5238] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   96.530646][ T5238] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   96.538983][ T5238] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   96.552068][ T5226] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   96.567035][ T5226] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   96.576278][ T5226] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   96.584823][ T5226] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   96.592488][ T5226] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   96.600268][ T5226] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.300025][ T5226] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   97.314657][ T5226] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   97.322394][ T5226] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   97.335374][ T5226] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   97.349963][ T5226] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[   97.357546][ T5226] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   97.686241][ T5238] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[   97.695402][ T5238] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[   97.703069][ T5238] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[   97.711419][ T5238] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[   97.721325][ T5238] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[   97.731662][ T5238] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[   98.615106][ T5238] Bluetooth: hci0: command tx timeout
[   99.416633][ T5238] Bluetooth: hci5: command tx timeout
[   99.814297][ T5238] Bluetooth: hci6: command tx timeout
[  100.695149][ T5238] Bluetooth: hci0: command tx timeout
[  101.496687][ T5238] Bluetooth: hci5: command tx timeout
[  101.894365][ T5238] Bluetooth: hci6: command tx timeout
[  102.776061][ T5238] Bluetooth: hci0: command tx timeout
[  103.574291][ T5238] Bluetooth: hci5: command tx timeout
[  103.974463][ T5238] Bluetooth: hci6: command tx timeout
[  104.854231][ T5238] Bluetooth: hci0: command tx timeout
[  105.654302][ T5238] Bluetooth: hci5: command tx timeout
[  106.057565][ T5238] Bluetooth: hci6: command tx timeout
[  132.939193][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  132.947696][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  145.859059][ T5226] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  145.867975][ T5226] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  145.880621][ T5226] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  145.890439][ T5226] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  145.898775][ T5226] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  145.906415][ T5226] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  146.079050][ T5238] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  146.092085][ T5238] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  146.100212][ T5238] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  146.108496][ T5238] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  146.116514][ T5238] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  146.124430][ T5238] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  147.974462][ T5226] Bluetooth: hci7: command tx timeout
[  148.214315][ T5226] Bluetooth: hci8: command tx timeout
[  150.054275][ T5226] Bluetooth: hci7: command tx timeout
[  150.294278][ T5226] Bluetooth: hci8: command tx timeout
[  152.134307][ T5226] Bluetooth: hci7: command tx timeout
[  152.374236][ T5226] Bluetooth: hci8: command tx timeout
[  154.214251][ T5226] Bluetooth: hci7: command tx timeout
[  154.454218][ T5226] Bluetooth: hci8: command tx timeout
[  156.784707][ T5238] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  156.793251][ T5238] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  156.801441][ T5238] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  156.812789][ T5238] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  156.820490][ T5238] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  156.831053][ T5238] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  158.064969][ T5226] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  158.073397][ T5226] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  158.081879][ T5226] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  158.090019][ T5226] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  158.105374][ T5226] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  158.120142][ T5226] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  158.134541][ T5226] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  158.145694][ T5226] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  158.168609][ T5233] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  158.178766][ T5233] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  158.187109][ T5233] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  158.197592][ T5233] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  158.854295][ T5233] Bluetooth: hci9: command tx timeout
[  160.215406][ T5233] Bluetooth: hci11: command tx timeout
[  160.300129][ T5233] Bluetooth: hci10: command tx timeout
[  160.934312][ T5233] Bluetooth: hci9: command tx timeout
[  162.294375][ T5233] Bluetooth: hci11: command tx timeout
[  162.374381][ T5233] Bluetooth: hci10: command tx timeout
[  163.014451][ T5233] Bluetooth: hci9: command tx timeout
[  164.374325][ T5233] Bluetooth: hci11: command tx timeout
[  164.454533][ T5233] Bluetooth: hci10: command tx timeout
[  165.094252][ T5233] Bluetooth: hci9: command tx timeout
[  166.454238][ T5233] Bluetooth: hci11: command tx timeout
[  166.534462][ T5233] Bluetooth: hci10: command tx timeout
[  194.382115][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  194.391744][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  206.219202][ T5238] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  206.228078][ T5238] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  206.235892][ T5238] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  206.249474][ T5238] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  206.264312][ T5238] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  206.271892][ T5238] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  206.605543][ T5233] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  206.615490][ T5233] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  206.623548][ T5233] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  206.632201][ T5233] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  206.644246][ T5233] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  206.654862][ T5233] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  208.374323][ T5238] Bluetooth: hci12: command tx timeout
[  208.696677][ T5238] Bluetooth: hci13: command tx timeout
[  210.454225][ T5238] Bluetooth: hci12: command tx timeout
[  210.774186][ T5238] Bluetooth: hci13: command tx timeout
[  212.534227][ T5238] Bluetooth: hci12: command tx timeout
[  212.854339][ T5238] Bluetooth: hci13: command tx timeout
[  214.614213][ T5238] Bluetooth: hci12: command tx timeout
[  214.934171][ T5238] Bluetooth: hci13: command tx timeout
[  217.114515][ T5233] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  217.122969][ T5233] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  217.130951][ T5233] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  217.139122][ T5233] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  217.153020][ T5233] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  217.164114][ T5233] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  218.411804][ T5238] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  218.420904][ T5238] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  218.429198][ T5238] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  218.439962][ T5238] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  218.448680][ T5238] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  218.456254][ T5238] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  218.533369][ T5233] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  218.544713][ T5233] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  218.552703][ T5233] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  218.562632][ T5233] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  218.570606][ T5233] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  218.584269][ T5233] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  219.254259][ T5233] Bluetooth: hci14: command tx timeout
[  220.534196][ T5234] Bluetooth: hci15: command tx timeout
[  220.695032][ T5234] Bluetooth: hci16: command tx timeout
[  221.334175][ T5234] Bluetooth: hci14: command tx timeout
[  222.063054][ T5228] Bluetooth: hci0: command 0x0406 tx timeout
[  222.069332][ T5232] Bluetooth: hci5: command 0x0406 tx timeout
[  222.085433][ T5234] Bluetooth: hci6: command 0x0406 tx timeout
[  222.614259][ T5233] Bluetooth: hci15: command tx timeout
[  222.774658][ T5233] Bluetooth: hci16: command tx timeout
[  223.414228][ T5233] Bluetooth: hci14: command tx timeout
[  224.694251][ T5233] Bluetooth: hci15: command tx timeout
[  224.854575][ T5233] Bluetooth: hci16: command tx timeout
[  225.494301][ T5233] Bluetooth: hci14: command tx timeout
[  226.774387][ T5233] Bluetooth: hci15: command tx timeout
[  226.934551][ T5233] Bluetooth: hci16: command tx timeout
[  250.063913][   T30] INFO: task kworker/u8:3:52 blocked for more than 143 seconds.
[  250.077756][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  250.100089][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  250.144098][   T30] task:kworker/u8:3    state:D stack:22928 pid:52    tgid:52    ppid:2      flags:0x00004000
[  250.180031][   T30] Workqueue: netns cleanup_net
[  250.209240][   T30] Call Trace:
[  250.212673][   T30]  <TASK>
[  250.294158][   T30]  __schedule+0x1895/0x4b30
[  250.298777][   T30]  ? __pfx___schedule+0x10/0x10
[  250.303677][   T30]  ? __pfx_lock_release+0x10/0x10
[  250.384178][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  250.389723][   T30]  ? kthread_data+0x52/0xd0
[  250.424564][   T30]  ? schedule+0x90/0x320
[  250.428887][   T30]  ? wq_worker_sleeping+0x66/0x240
[  250.469084][   T30]  ? schedule+0x90/0x320
[  250.473396][   T30]  schedule+0x14b/0x320
[  250.534185][   T30]  schedule_preempt_disabled+0x13/0x30
[  250.539728][   T30]  __mutex_lock+0x6a7/0xd70
[  250.594141][   T30]  ? __mutex_lock+0x52a/0xd70
[  250.598903][   T30]  ? wg_destruct+0x25/0x2e0
[  250.603481][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  250.660489][   T30]  ? __pfx_free_percpu+0x10/0x10
[  250.694748][   T30]  ? kobject_put+0x272/0x480
[  250.699417][   T30]  ? __pfx_wg_destruct+0x10/0x10
[  250.744156][   T30]  wg_destruct+0x25/0x2e0
[  250.748568][   T30]  ? __pfx_wg_destruct+0x10/0x10
[  250.753562][   T30]  netdev_run_todo+0xe1a/0x1000
[  250.804198][   T30]  ? __pfx_netdev_run_todo+0x10/0x10
[  250.809573][   T30]  ? unregister_netdevice_queue+0x26b/0x370
[  250.847981][   T30]  ? batadv_softif_destroy_netlink+0x1e3/0x270
[  250.874112][   T30]  default_device_exit_batch+0xa24/0xaa0
[  250.879834][   T30]  ? __pfx___might_resched+0x10/0x10
[  250.908961][   T30]  ? __pfx_default_device_exit_batch+0x10/0x10
[  250.934199][   T30]  ? __pfx_rdma_dev_exit_net+0x10/0x10
[  250.939732][   T30]  ? cfg802154_pernet_exit+0xc3/0xe0
[  250.978603][   T30]  ? __pfx_default_device_exit_batch+0x10/0x10
[  251.004049][   T30]  cleanup_net+0x89d/0xcc0
[  251.008546][   T30]  ? __pfx_cleanup_net+0x10/0x10
[  251.013530][   T30]  ? process_scheduled_works+0x976/0x1850
[  251.069941][   T30]  process_scheduled_works+0xa63/0x1850
[  251.102358][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  251.124139][   T30]  ? assign_work+0x364/0x3d0
[  251.128811][   T30]  worker_thread+0x870/0xd30
[  251.133464][   T30]  ? __kthread_parkme+0x169/0x1d0
[  251.179851][   T30]  ? __pfx_worker_thread+0x10/0x10
[  251.194195][   T30]  kthread+0x2f0/0x390
[  251.198325][   T30]  ? __pfx_worker_thread+0x10/0x10
[  251.203474][   T30]  ? __pfx_kthread+0x10/0x10
[  251.259246][   T30]  ret_from_fork+0x4b/0x80
[  251.263745][   T30]  ? __pfx_kthread+0x10/0x10
[  251.284235][   T30]  ret_from_fork_asm+0x1a/0x30
[  251.289093][   T30]  </TASK>
[  251.322234][   T30] INFO: task jbd2/sda1-8:4643 blocked for more than 144 seconds.
[  251.364197][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  251.371538][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  251.426607][   T30] task:jbd2/sda1-8     state:D stack:24912 pid:4643  tgid:4643  ppid:2      flags:0x00004000
[  251.459556][   T30] Call Trace:
[  251.462899][   T30]  <TASK>
[  251.474275][   T30]  __schedule+0x1895/0x4b30
[  251.478870][   T30]  ? __pfx___schedule+0x10/0x10
[  251.483761][   T30]  ? __pfx_lock_release+0x10/0x10
[  251.544265][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  251.550366][   T30]  ? schedule+0x90/0x320
[  251.568404][   T30]  schedule+0x14b/0x320
[  251.572642][   T30]  io_schedule+0x8d/0x110
[  251.589404][   T30]  bit_wait_io+0x12/0xd0
[  251.593725][   T30]  __wait_on_bit+0xb0/0x2f0
[  251.614218][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  251.619242][   T30]  out_of_line_wait_on_bit+0x1d5/0x260
[  251.650295][   T30]  ? __pfx_bit_wait_io+0x10/0x10
[  251.658543][   T30]  ? __pfx_out_of_line_wait_on_bit+0x10/0x10
[  251.679769][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  251.686449][   T30]  jbd2_journal_commit_transaction+0x3df6/0x67e0
[  251.692896][   T30]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[  251.724199][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  251.729478][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  251.748925][   T30]  ? __try_to_del_timer_sync+0x2ad/0x340
[  251.765432][   T30]  ? __timer_delete_sync+0x15c/0x310
[  251.770926][   T30]  ? __timer_delete_sync+0x25d/0x310
[  251.794108][   T30]  ? __pfx___timer_delete_sync+0x10/0x10
[  251.799803][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  251.824243][   T30]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  251.830648][   T30]  ? prepare_to_wait+0x186/0x210
[  251.860281][   T30]  ? finish_wait+0xd4/0x1e0
[  251.871851][   T30]  kjournald2+0x41c/0x7b0
[  251.884149][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  251.890565][   T30]  ? __pfx_kjournald2+0x10/0x10
[  251.914226][   T30]  ? __pfx_autoremove_wake_function+0x10/0x10
[  251.920402][   T30]  ? __kthread_parkme+0x169/0x1d0
[  251.944290][   T30]  ? __pfx_kjournald2+0x10/0x10
[  251.949219][   T30]  kthread+0x2f0/0x390
[  251.953321][   T30]  ? __pfx_kjournald2+0x10/0x10
[  251.980984][   T30]  ? __pfx_kthread+0x10/0x10
[  251.991320][   T30]  ret_from_fork+0x4b/0x80
[  252.007815][   T30]  ? __pfx_kthread+0x10/0x10
[  252.012467][   T30]  ret_from_fork_asm+0x1a/0x30
[  252.034062][   T30]  </TASK>
[  252.039366][   T30] INFO: task dhcpcd:4894 blocked for more than 145 seconds.
[  252.071416][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  252.082678][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  252.110408][   T30] task:dhcpcd          state:D stack:20608 pid:4894  tgid:4894  ppid:4893   flags:0x00000002
[  252.131128][   T30] Call Trace:
[  252.142837][   T30]  <TASK>
[  252.152057][   T30]  __schedule+0x1895/0x4b30
[  252.156988][   T30]  ? __pfx___schedule+0x10/0x10
[  252.161904][   T30]  ? __pfx_lock_release+0x10/0x10
[  252.173271][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  252.179556][   T30]  ? schedule+0x90/0x320
[  252.189721][   T30]  schedule+0x14b/0x320
[  252.193958][   T30]  schedule_preempt_disabled+0x13/0x30
[  252.202210][   T30]  __mutex_lock+0x6a7/0xd70
[  252.212704][   T30]  ? __mutex_lock+0x52a/0xd70
[  252.217779][   T30]  ? rtnl_dumpit+0x99/0x200
[  252.222328][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  252.233752][   T30]  ? __alloc_skb+0x28f/0x440
[  252.238775][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  252.243857][   T30]  ? __pfx___alloc_skb+0x10/0x10
[  252.254100][   T30]  ? __pfx_rtnl_dump_ifinfo+0x10/0x10
[  252.259535][   T30]  rtnl_dumpit+0x99/0x200
[  252.263910][   T30]  netlink_dump+0x647/0xd80
[  252.274400][   T30]  ? __pfx_netlink_dump+0x10/0x10
[  252.279501][   T30]  ? netlink_recvmsg+0x60a/0x11d0
[  252.292386][   T30]  ? kmem_cache_free+0x1a2/0x420
[  252.298187][   T30]  ? netlink_recvmsg+0x60a/0x11d0
[  252.303301][   T30]  netlink_recvmsg+0x6bb/0x11d0
[  252.314142][   T30]  ? __pfx_netlink_recvmsg+0x10/0x10
[  252.319493][   T30]  ? __pfx_aa_sk_perm+0x10/0x10
[  252.329976][   T30]  ? __pfx___might_resched+0x10/0x10
[  252.335675][   T30]  ? aa_sock_msg_perm+0x91/0x160
[  252.340671][   T30]  ? bpf_lsm_socket_recvmsg+0x9/0x10
[  252.352077][   T30]  ? __pfx_netlink_recvmsg+0x10/0x10
[  252.359200][   T30]  sock_recvmsg+0x22f/0x280
[  252.363853][   T30]  ____sys_recvmsg+0x1c6/0x480
[  252.374202][   T30]  ? __pfx_____sys_recvmsg+0x10/0x10
[  252.379562][   T30]  __sys_recvmsg+0x2ea/0x3d0
[  252.390157][   T30]  ? __pfx_lock_release+0x10/0x10
[  252.395568][   T30]  ? __pfx___sys_recvmsg+0x10/0x10
[  252.400762][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  252.413207][   T30]  ? do_syscall_64+0x100/0x230
[  252.418652][   T30]  ? do_syscall_64+0xb6/0x230
[  252.423637][   T30]  do_syscall_64+0xf3/0x230
[  252.434125][   T30]  ? clear_bhb_loop+0x35/0x90
[  252.438861][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.452278][   T30] RIP: 0033:0x7ff70a6b691e
[  252.457198][   T30] RSP: 002b:00007ffe31d7c178 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  252.469517][   T30] RAX: ffffffffffffffda RBX: 00007ffe31d7d2a0 RCX: 00007ff70a6b691e
[  252.480123][   T30] RDX: 0000000000000000 RSI: 00007ffe31d7d1c0 RDI: 000000000000000e
[  252.491953][   T30] RBP: 00007ffe31d7d230 R08: 0000000000000000 R09: 0000000000020000
[  252.507894][   T30] R10: 0000000000000100 R11: 0000000000000246 R12: 0000000000000ef0
[  252.519356][   T30] R13: 00007ffe31d7d1a4 R14: 00007ffe31d7d1c0 R15: 00007ffe31d7d1b0
[  252.532627][   T30]  </TASK>
[  252.536152][   T30] INFO: task kworker/0:5:5280 blocked for more than 145 seconds.
[  252.543905][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  252.557591][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  252.568968][   T30] task:kworker/0:5     state:D stack:23544 pid:5280  tgid:5280  ppid:2      flags:0x00004000
[  252.583106][   T30] Workqueue: events_power_efficient crda_timeout_work
[  252.598689][   T30] Call Trace:
[  252.602016][   T30]  <TASK>
[  252.607790][   T30]  __schedule+0x1895/0x4b30
[  252.612379][   T30]  ? __pfx___schedule+0x10/0x10
[  252.621117][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  252.629792][   T30]  ? __pfx_lock_release+0x10/0x10
[  252.639123][   T30]  ? kick_pool+0x45c/0x620
[  252.643621][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  252.651543][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  252.660644][   T30]  ? schedule+0x90/0x320
[  252.667782][   T30]  schedule+0x14b/0x320
[  252.671994][   T30]  schedule_preempt_disabled+0x13/0x30
[  252.682964][   T30]  __mutex_lock+0x6a7/0xd70
[  252.690116][   T30]  ? __mutex_lock+0x52a/0xd70
[  252.698472][   T30]  ? crda_timeout_work+0x15/0x50
[  252.703461][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  252.711123][   T30]  ? process_scheduled_works+0x976/0x1850
[  252.720343][   T30]  crda_timeout_work+0x15/0x50
[  252.727746][   T30]  process_scheduled_works+0xa63/0x1850
[  252.733378][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[  252.743052][   T30]  ? assign_work+0x364/0x3d0
[  252.751966][   T30]  worker_thread+0x870/0xd30
[  252.760414][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  252.769067][   T30]  ? __kthread_parkme+0x169/0x1d0
[  252.778445][   T30]  ? __pfx_worker_thread+0x10/0x10
[  252.783638][   T30]  kthread+0x2f0/0x390
[  252.790280][   T30]  ? __pfx_worker_thread+0x10/0x10
[  252.799017][   T30]  ? __pfx_kthread+0x10/0x10
[  252.803662][   T30]  ret_from_fork+0x4b/0x80
[  252.810683][   T30]  ? __pfx_kthread+0x10/0x10
[  252.818853][   T30]  ret_from_fork_asm+0x1a/0x30
[  252.823775][   T30]  </TASK>
[  252.831752][   T30] INFO: task syz.1.21:5406 blocked for more than 146 seconds.
[  252.842994][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  252.852954][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  252.864682][   T30] task:syz.1.21        state:D stack:24032 pid:5406  tgid:5381  ppid:5245   flags:0x00004006
[  252.879877][   T30] Call Trace:
[  252.883208][   T30]  <TASK>
[  252.886484][   T30]  __schedule+0x1895/0x4b30
[  252.891051][   T30]  ? __pfx___schedule+0x10/0x10
[  252.902343][   T30]  ? __pfx_lock_release+0x10/0x10
[  252.909620][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  252.920849][   T30]  ? schedule+0x90/0x320
[  252.925522][   T30]  schedule+0x14b/0x320
[  252.929726][   T30]  schedule_preempt_disabled+0x13/0x30
[  252.944108][   T30]  __mutex_lock+0x6a7/0xd70
[  252.948685][   T30]  ? __mutex_lock+0x52a/0xd70
[  252.953417][   T30]  ? tun_chr_close+0x3b/0x1b0
[  252.963986][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  252.970005][   T30]  ? __pfx_call_rcu+0x10/0x10
[  252.980717][   T30]  tun_chr_close+0x3b/0x1b0
[  252.987874][   T30]  ? __pfx_tun_chr_close+0x10/0x10
[  252.993043][   T30]  __fput+0x23f/0x880
[  253.003269][   T30]  task_work_run+0x24f/0x310
[  253.008069][   T30]  ? kasan_quarantine_put+0xdc/0x230
[  253.013411][   T30]  ? __pfx_task_work_run+0x10/0x10
[  253.027212][   T30]  ? do_exit+0xa2a/0x28e0
[  253.031676][   T30]  ? kmem_cache_free+0x1a2/0x420
[  253.039534][   T30]  ? do_exit+0xa2a/0x28e0
[  253.043918][   T30]  do_exit+0xa2f/0x28e0
[  253.051983][   T30]  ? __pfx_do_exit+0x10/0x10
[  253.059231][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  253.070178][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.078980][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  253.089386][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  253.100092][   T30]  do_group_exit+0x207/0x2c0
[  253.108665][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  253.116600][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  253.121852][   T30]  get_signal+0x176f/0x1810
[  253.130275][   T30]  ? __pfx_get_signal+0x10/0x10
[  253.137862][   T30]  ? do_futex+0x33b/0x560
[  253.142244][   T30]  ? __fget_files+0x29/0x470
[  253.152812][   T30]  arch_do_signal_or_restart+0x96/0x860
[  253.161008][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  253.171059][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.191498][   T30]  ? syscall_exit_to_user_mode+0xa3/0x370
[  253.197926][   T30]  syscall_exit_to_user_mode+0xc9/0x370
[  253.203811][   T30]  do_syscall_64+0x100/0x230
[  253.209025][   T30]  ? clear_bhb_loop+0x35/0x90
[  253.213839][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.225833][   T30] RIP: 0033:0x7fc8f2b7def9
[  253.230295][   T30] RSP: 002b:00007fc8f3939038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  253.246523][   T30] RAX: 0000000000000008 RBX: 00007fc8f2d36058 RCX: 00007fc8f2b7def9
[  253.258628][   T30] RDX: 0000000000000008 RSI: 0000000020000080 RDI: 0000000000000009
[  253.269380][   T30] RBP: 00007fc8f2bf0b76 R08: 0000000000000000 R09: 0000000000000000
[  253.281256][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  253.291947][   T30] R13: 0000000000000000 R14: 00007fc8f2d36058 R15: 00007fc8f2e5fa28
[  253.303858][   T30]  </TASK>
[  253.310231][   T30] INFO: task syz-executor:5396 blocked for more than 146 seconds.
[  253.323498][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  253.333720][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  253.348608][   T30] task:syz-executor    state:D stack:26048 pid:5396  tgid:5396  ppid:1      flags:0x00004006
[  253.360178][   T30] Call Trace:
[  253.363492][   T30]  <TASK>
[  253.371535][   T30]  __schedule+0x1895/0x4b30
[  253.377593][   T30]  ? __pfx___schedule+0x10/0x10
[  253.382499][   T30]  ? __pfx_lock_release+0x10/0x10
[  253.392764][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  253.401844][   T30]  ? schedule+0x90/0x320
[  253.411215][   T30]  schedule+0x14b/0x320
[  253.417154][   T30]  schedule_preempt_disabled+0x13/0x30
[  253.422652][   T30]  __mutex_lock+0x6a7/0xd70
[  253.432186][   T30]  ? __mutex_lock+0x52a/0xd70
[  253.438432][   T30]  ? ip_tunnel_init_net+0x20e/0x720
[  253.443687][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  253.454003][   T30]  ? read_word_at_a_time+0xe/0x20
[  253.459170][   T30]  ? sized_strscpy+0x8d/0x220
[  253.463889][   T30]  ip_tunnel_init_net+0x20e/0x720
[  253.475541][   T30]  ? __pfx_ip_tunnel_init_net+0x10/0x10
[  253.481410][   T30]  vti_init_net+0x2e/0xf0
[  253.492018][   T30]  ops_init+0x31e/0x590
[  253.499126][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  253.508572][   T30]  setup_net+0x287/0x9e0
[  253.512864][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  253.521279][   T30]  ? __pfx_setup_net+0x10/0x10
[  253.530380][   T30]  copy_net_ns+0x33f/0x570
[  253.537330][   T30]  create_new_namespaces+0x425/0x7b0
[  253.542684][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  253.552214][   T30]  ksys_unshare+0x619/0xc10
[  253.561576][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  253.570516][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.578954][   T30]  ? do_syscall_64+0x100/0x230
[  253.583777][   T30]  __x64_sys_unshare+0x38/0x40
[  253.592325][   T30]  do_syscall_64+0xf3/0x230
[  253.599458][   T30]  ? clear_bhb_loop+0x35/0x90
[  253.608067][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.616614][   T30] RIP: 0033:0x7fe1fbf7f6f7
[  253.621082][   T30] RSP: 002b:00007fe1fc25ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[  253.637384][   T30] RAX: ffffffffffffffda RBX: 00007fe1fbff22ec RCX: 00007fe1fbf7f6f7
[  253.647701][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  253.659528][   T30] RBP: 0000000000000000 R08: 00007fe1fcc67d60 R09: 0000000000000000
[  253.670284][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c
[  253.682029][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  253.692728][   T30]  </TASK>
[  253.699551][   T30] INFO: task syz.2.26:5413 blocked for more than 147 seconds.
[  253.709610][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  253.722444][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  253.733810][   T30] task:syz.2.26        state:D stack:26840 pid:5413  tgid:5410  ppid:5241   flags:0x00004006
[  253.750229][   T30] Call Trace:
[  253.753643][   T30]  <TASK>
[  253.757467][   T30]  __schedule+0x1895/0x4b30
[  253.762046][   T30]  ? __pfx___schedule+0x10/0x10
[  253.773120][   T30]  ? __pfx_lock_release+0x10/0x10
[  253.778587][   T30]  ? schedule+0x90/0x320
[  253.782872][   T30]  schedule+0x14b/0x320
[  253.793055][   T30]  schedule_timeout+0xb0/0x310
[  253.799795][   T30]  ? __pfx_schedule_timeout+0x10/0x10
[  253.811320][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  253.817683][   T30]  ? wait_for_completion+0x2fe/0x620
[  253.823012][   T30]  ? wait_for_completion+0x2fe/0x620
[  253.834077][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  253.839334][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  253.850336][   T30]  ? wait_for_completion+0x2fe/0x620
[  253.855974][   T30]  wait_for_completion+0x355/0x620
[  253.861159][   T30]  ? __pfx_wait_for_completion+0x10/0x10
[  253.873793][   T30]  ? __flush_work+0xe7/0xc50
[  253.880395][   T30]  __flush_work+0xa37/0xc50
[  253.891004][   T30]  ? __flush_work+0xe7/0xc50
[  253.896167][   T30]  ? __pfx___flush_work+0x10/0x10
[  253.901250][   T30]  ? __pfx_wq_barrier_func+0x10/0x10
[  253.912898][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  253.919963][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  253.931201][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  253.936717][   T30]  unregister_netdevice_many_notify+0x87b/0x1da0
[  253.943102][   T30]  ? __mutex_lock+0x9a1/0xd70
[  253.953789][   T30]  ? do_raw_spin_lock+0x14f/0x370
[  253.960710][   T30]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  253.973463][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  253.982929][   T30]  ? __mutex_lock+0x9ab/0xd70
[  253.991853][   T30]  ? __mutex_lock+0x52a/0xd70
[  253.998625][   T30]  unregister_netdevice_queue+0x303/0x370
[  254.008256][   T30]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  254.017135][   T30]  ppp_release+0xed/0x1f0
[  254.021600][   T30]  ? __pfx_ppp_release+0x10/0x10
[  254.030359][   T30]  __fput+0x23f/0x880
[  254.038819][   T30]  task_work_run+0x24f/0x310
[  254.043462][   T30]  ? __se_sys_ioctl+0x158/0x170
[  254.052520][   T30]  ? do_syscall_64+0xf3/0x230
[  254.060692][   T30]  ? __pfx_task_work_run+0x10/0x10
[  254.070261][   T30]  get_signal+0x16ad/0x1810
[  254.077309][   T30]  ? __pfx_get_signal+0x10/0x10
[  254.082229][   T30]  arch_do_signal_or_restart+0x96/0x860
[  254.092155][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  254.100965][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  254.112704][   T30]  ? syscall_exit_to_user_mode+0xa3/0x370
[  254.121181][   T30]  syscall_exit_to_user_mode+0xc9/0x370
[  254.130522][   T30]  do_syscall_64+0x100/0x230
[  254.140765][   T30]  ? clear_bhb_loop+0x35/0x90
[  254.151643][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.160134][   T30] RIP: 0033:0x7f9e0697def9
[  254.168463][   T30] RSP: 002b:00007f9e07704038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  254.179524][   T30] RAX: 0000000000000000 RBX: 00007f9e06b36130 RCX: 00007f9e0697def9
[  254.193357][   T30] RDX: 00000000200000c0 RSI: 0000000040047440 RDI: 0000000000000004
[  254.207973][   T30] RBP: 00007f9e069f0b76 R08: 0000000000000000 R09: 0000000000000000
[  254.229848][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  254.238365][   T30] R13: 0000000000000001 R14: 00007f9e06b36130 R15: 00007f9e06c5fa28
[  254.252548][   T30]  </TASK>
[  254.255745][   T30] INFO: task syz-executor:5422 blocked for more than 147 seconds.
[  254.263754][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  254.279200][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  254.288296][   T30] task:syz-executor    state:D stack:26592 pid:5422  tgid:5422  ppid:1      flags:0x00004004
[  254.304883][   T30] Call Trace:
[  254.308202][   T30]  <TASK>
[  254.311174][   T30]  __schedule+0x1895/0x4b30
[  254.321486][   T30]  ? __pfx___schedule+0x10/0x10
[  254.326752][   T30]  ? __pfx_lock_release+0x10/0x10
[  254.331838][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  254.345348][   T30]  ? schedule+0x90/0x320
[  254.349638][   T30]  schedule+0x14b/0x320
[  254.353850][   T30]  schedule_preempt_disabled+0x13/0x30
[  254.364102][   T30]  __mutex_lock+0x6a7/0xd70
[  254.368668][   T30]  ? __mutex_lock+0x52a/0xd70
[  254.373388][   T30]  ? register_nexthop_notifier+0x84/0x290
[  254.385096][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  254.390189][   T30]  ? __asan_memset+0x23/0x50
[  254.400002][   T30]  register_nexthop_notifier+0x84/0x290
[  254.407356][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  254.413222][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  254.428564][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[  254.436315][   T30]  ? __asan_memset+0x23/0x50
[  254.440971][   T30]  ops_init+0x31e/0x590
[  254.450325][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  254.457332][   T30]  setup_net+0x287/0x9e0
[  254.461622][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  254.472129][   T30]  ? __pfx_setup_net+0x10/0x10
[  254.478659][   T30]  copy_net_ns+0x33f/0x570
[  254.483165][   T30]  create_new_namespaces+0x425/0x7b0
[  254.494628][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  254.500410][   T30]  ksys_unshare+0x619/0xc10
[  254.510239][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  254.515636][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  254.521673][   T30]  ? do_syscall_64+0x100/0x230
[  254.533026][   T30]  __x64_sys_unshare+0x38/0x40
[  254.538964][   T30]  do_syscall_64+0xf3/0x230
[  254.543563][   T30]  ? clear_bhb_loop+0x35/0x90
[  254.554542][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.560491][   T30] RIP: 0033:0x7fa70837f6f7
[  254.571559][   T30] RSP: 002b:00007fa70865ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[  254.581654][   T30] RAX: ffffffffffffffda RBX: 00007fa7083f22ec RCX: 00007fa70837f6f7
[  254.594354][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  254.602381][   T30] RBP: 0000000000000000 R08: 00007fa709067d60 R09: 0000000000000000
[  254.615775][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c
[  254.623794][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  254.638673][   T30]  </TASK>
[  254.641868][   T30] INFO: task syz-executor:5426 blocked for more than 147 seconds.
[  254.652927][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  254.666292][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  254.678805][   T30] task:syz-executor    state:D stack:25784 pid:5426  tgid:5426  ppid:1      flags:0x00004004
[  254.691503][   T30] Call Trace:
[  254.698526][   T30]  <TASK>
[  254.701632][   T30]  __schedule+0x1895/0x4b30
[  254.708980][   T30]  ? __pfx___schedule+0x10/0x10
[  254.713887][   T30]  ? __pfx_lock_release+0x10/0x10
[  254.722790][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  254.730868][   T30]  ? schedule+0x90/0x320
[  254.741132][   T30]  schedule+0x14b/0x320
[  254.748448][   T30]  schedule_preempt_disabled+0x13/0x30
[  254.753968][   T30]  __mutex_lock+0x6a7/0xd70
[  254.762686][   T30]  ? __mutex_lock+0x52a/0xd70
[  254.770103][   T30]  ? register_nexthop_notifier+0x84/0x290
[  254.780231][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  254.787997][   T30]  ? __asan_memset+0x23/0x50
[  254.792666][   T30]  register_nexthop_notifier+0x84/0x290
[  254.802044][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  254.810663][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  254.823022][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[  254.831988][   T30]  ? __asan_memset+0x23/0x50
[  254.840412][   T30]  ops_init+0x31e/0x590
[  254.847378][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  254.852826][   T30]  setup_net+0x287/0x9e0
[  254.861500][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  254.869659][   T30]  ? __pfx_setup_net+0x10/0x10
[  254.878369][   T30]  copy_net_ns+0x33f/0x570
[  254.882970][   T30]  create_new_namespaces+0x425/0x7b0
[  254.891258][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  254.901021][   T30]  ksys_unshare+0x619/0xc10
[  254.910304][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  254.919022][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  254.927959][   T30]  ? do_syscall_64+0x100/0x230
[  254.932883][   T30]  __x64_sys_unshare+0x38/0x40
[  254.942129][   T30]  do_syscall_64+0xf3/0x230
[  254.949416][   T30]  ? clear_bhb_loop+0x35/0x90
[  254.957777][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.963813][   T30] RIP: 0033:0x7f8e5b97f6f7
[  254.971407][   T30] RSP: 002b:00007f8e5bc5ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[  254.983832][   T30] RAX: ffffffffffffffda RBX: 00007f8e5b9f22ec RCX: 00007f8e5b97f6f7
[  254.999851][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  255.008199][   T30] RBP: 0000000000000000 R08: 00007f8e5c667d60 R09: 0000000000000000
[  255.024078][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c
[  255.032180][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  255.045889][   T30]  </TASK>
[  255.049043][   T30] INFO: task syz-executor:5428 blocked for more than 148 seconds.
[  255.060856][   T30]       Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  255.070837][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  255.087578][   T30] task:syz-executor    state:D stack:26736 pid:5428  tgid:5428  ppid:1      flags:0x00004004
[  255.101334][   T30] Call Trace:
[  255.109633][   T30]  <TASK>
[  255.112704][   T30]  __schedule+0x1895/0x4b30
[  255.118757][   T30]  ? __pfx___schedule+0x10/0x10
[  255.123685][   T30]  ? __pfx_lock_release+0x10/0x10
[  255.134038][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  255.139569][   T30]  ? schedule+0x90/0x320
[  255.143865][   T30]  schedule+0x14b/0x320
[  255.154551][   T30]  schedule_preempt_disabled+0x13/0x30
[  255.160129][   T30]  __mutex_lock+0x6a7/0xd70
[  255.172033][   T30]  ? __mutex_lock+0x52a/0xd70
[  255.181728][   T30]  ? register_nexthop_notifier+0x84/0x290
[  255.192701][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  255.199220][   T30]  ? __asan_memset+0x23/0x50
[  255.203866][   T30]  register_nexthop_notifier+0x84/0x290
[  255.214545][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  255.220415][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[  255.231818][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[  255.238353][   T30]  ? __asan_memset+0x23/0x50
[  255.243171][   T30]  ops_init+0x31e/0x590
[  255.253418][   T30]  ? lockdep_init_map_type+0xa1/0x910
[  255.274183][   T30]  setup_net+0x287/0x9e0
[  255.278494][   T30]  ? __pfx_down_read_killable+0x10/0x10
[  255.289923][   T30]  ? __pfx_setup_net+0x10/0x10
[  255.295577][   T30]  copy_net_ns+0x33f/0x570
[  255.300055][   T30]  create_new_namespaces+0x425/0x7b0
[  255.311656][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[  255.317801][   T30]  ksys_unshare+0x619/0xc10
[  255.322367][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[  255.333511][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  255.341557][   T30]  ? do_syscall_64+0x100/0x230
[  255.352153][   T30]  __x64_sys_unshare+0x38/0x40
[  255.357353][   T30]  do_syscall_64+0xf3/0x230
[  255.361906][   T30]  ? clear_bhb_loop+0x35/0x90
[  255.372921][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  255.379235][   T30] RIP: 0033:0x7eff1477f6f7
[  255.383697][   T30] RSP: 002b:00007eff14a5ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[  255.398531][   T30] RAX: ffffffffffffffda RBX: 00007eff147f22ec RCX: 00007eff1477f6f7
[  255.407618][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  255.423965][   T30] RBP: 0000000000000000 R08: 00007eff15467d60 R09: 0000000000000000
[  255.432171][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c
[  255.447046][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[  255.457866][   T30]  </TASK>
[  255.460937][   T30] Future hung task reports are suppressed, see sysctl kernel.hung_task_warnings
[  255.476643][   T30] 
[  255.476643][   T30] Showing all locks held in the system:
[  255.487157][   T30] 3 locks held by kworker/0:0/8:
[  255.492230][   T30]  #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  255.513111][   T30]  #1: ffffc900000d7d00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  255.530894][   T30]  #2: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0
[  255.541074][   T30] 3 locks held by kworker/u8:1/12:
[  255.552083][   T30]  #0: ffff88814bc0c148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  255.570175][   T30]  #1: ffffc90000117d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  255.590799][   T30]  #2: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  255.602449][   T30] 1 lock held by khungtaskd/30:
[  255.613672][   T30]  #0: ffffffff8e937ee0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  255.624067][   T30] 4 locks held by kworker/u8:3/52:
[  255.629223][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  255.644073][   T30]  #1: ffffc90000bd7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  255.660578][   T30]  #2: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  255.670441][   T30]  #3: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: wg_destruct+0x25/0x2e0
[  255.684061][   T30] 2 locks held by kworker/u8:4/62:
[  255.689243][   T30] 4 locks held by kworker/1:2/2633:
[  255.702131][   T30] 2 locks held by dhcpcd/4894:
[  255.707227][   T30]  #0: ffff88802e7fd6c8 (nlk_cb_mutex-ROUTE){+.+.}-{3:3}, at: netlink_dump+0xcb/0xd80
[  255.723244][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_dumpit+0x99/0x200
[  255.732451][   T30] 2 locks held by getty/4981:
[  255.743407][   T30]  #0: ffff88814bd9a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  255.759933][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[  255.770434][   T30] 5 locks held by kworker/1:3/5276:
[  255.784372][   T30] 3 locks held by kworker/0:5/5280:
[  255.789621][   T30]  #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  255.808517][   T30]  #1: ffffc9000406fd00 ((crda_timeout).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  255.821766][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[  255.828223][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[  255.842007][   T30]  #2: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: crda_timeout_work+0x15/0x50
[  255.851730][   T30] 1 lock held by syz.1.21/5406:
[  255.864125][   T30]  #0: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[  255.873207][   T30] 2 locks held by syz-executor/5396:
[  255.884193][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  255.893705][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x720
[  255.909809][   T30] 2 locks held by syz-executor/5401:
[  255.915551][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  255.931048][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0
[  255.942750][   T30] 2 locks held by syz.2.26/5413:
[  255.953339][   T30]  #0: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: ppp_release+0x87/0x1f0
[  255.963000][   T30]  #1: ffffffff8e7d1dd0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0
[  255.980714][   T30] 2 locks held by syz-executor/5422:
[  255.986852][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.003975][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.021441][   T30] 2 locks held by syz-executor/5426:
[  256.027116][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.042524][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.053024][   T30] 2 locks held by syz-executor/5428:
[  256.064054][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.073566][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.091111][   T30] 2 locks held by syz-executor/5434:
[  256.097245][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.112859][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.123294][   T30] 2 locks held by syz-executor/5437:
[  256.134442][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.151188][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.163437][   T30] 2 locks held by syz-executor/5442:
[  256.174081][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.183591][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.199339][   T30] 2 locks held by syz-executor/5449:
[  256.205420][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.223330][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.241293][   T30] 2 locks held by syz-executor/5450:
[  256.247029][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.262620][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.273143][   T30] 2 locks held by syz-executor/5456:
[  256.284126][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.293715][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.320796][   T30] 2 locks held by syz-executor/5458:
[  256.332104][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.341917][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.358315][   T30] 2 locks held by syz-executor/5463:
[  256.363651][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.380738][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.391337][   T30] 2 locks held by syz-executor/5467:
[  256.402246][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.412083][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.428836][   T30] 2 locks held by syz-executor/5469:
[  256.435621][   T30]  #0: ffffffff8fcbf1d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  256.449868][   T30]  #1: ffffffff8fccbcc8 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[  256.473254][   T30] 
[  256.475940][   T30] =============================================
[  256.475940][   T30] 
[  256.490441][   T30] NMI backtrace for cpu 0
[  256.494816][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  256.505374][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  256.515457][   T30] Call Trace:
[  256.518760][   T30]  <TASK>
[  256.521718][   T30]  dump_stack_lvl+0x241/0x360
[  256.526441][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  256.531708][   T30]  ? __pfx__printk+0x10/0x10
[  256.536338][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  256.541314][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  256.546811][   T30]  ? _printk+0xd5/0x120
[  256.551005][   T30]  ? __pfx__printk+0x10/0x10
[  256.555648][   T30]  ? __wake_up_klogd+0xcc/0x110
[  256.560535][   T30]  ? __pfx__printk+0x10/0x10
[  256.565152][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  256.570212][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  256.576231][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  256.582271][   T30]  watchdog+0xff4/0x1040
[  256.586581][   T30]  ? watchdog+0x1ea/0x1040
[  256.591039][   T30]  ? __pfx_watchdog+0x10/0x10
[  256.595764][   T30]  kthread+0x2f0/0x390
[  256.599867][   T30]  ? __pfx_watchdog+0x10/0x10
[  256.604579][   T30]  ? __pfx_kthread+0x10/0x10
[  256.609220][   T30]  ret_from_fork+0x4b/0x80
[  256.613684][   T30]  ? __pfx_kthread+0x10/0x10
[  256.618311][   T30]  ret_from_fork_asm+0x1a/0x30
[  256.623121][   T30]  </TASK>
[  256.626569][   T30] Sending NMI from CPU 0 to CPUs 1:
[  256.631823][    C1] NMI backtrace for cpu 1
[  256.631836][    C1] CPU: 1 UID: 0 PID: 2633 Comm: kworker/1:2 Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  256.631860][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  256.631871][    C1] Workqueue: events nsim_dev_trap_report_work
[  256.631901][    C1] RIP: 0010:nf_conntrack_in+0xc9/0x1890
[  256.631927][    C1] Code: f2 f2 f2 04 f2 01 4a 89 44 29 19 66 42 c7 44 29 21 f3 f3 48 89 8c 24 d8 00 00 00 42 c6 44 29 23 f3 e8 2b be ba f7 49 c1 ef 03 <4c> 89 bc 24 a8 00 00 00 43 0f b6 04 2f 84 c0 0f 85 39 16 00 00 4c
[  256.631947][    C1] RSP: 0018:ffffc90000a17b40 EFLAGS: 00000a02
[  256.631962][    C1] RAX: ffffffff89d9fb85 RBX: ffff888046d5b000 RCX: ffff88802dcd5a00
[  256.631976][    C1] RDX: 0000000000000100 RSI: ffffc90000a17e60 RDI: ffff888046d5b000
[  256.631988][    C1] RBP: ffffc90000a17da8 R08: ffffffff89db67dd R09: ffffffff89d70cb7
[  256.632001][    C1] R10: 0000000000000004 R11: ffffffff89db6750 R12: ffffc90000a17e60
[  256.632013][    C1] R13: dffffc0000000000 R14: ffffc90000a17e60 R15: 1ffff92000142fa8
[  256.632027][    C1] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  256.632042][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  256.632054][    C1] CR2: 0000001b32600ff8 CR3: 0000000030fde000 CR4: 00000000003506f0
[  256.632069][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  256.632080][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  256.632091][    C1] Call Trace:
[  256.632097][    C1]  <NMI>
[  256.632104][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  256.632131][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  256.632158][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  256.632195][    C1]  ? nmi_handle+0x2a/0x5a0
[  256.632218][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  256.632239][    C1]  ? nmi_handle+0x14f/0x5a0
[  256.632254][    C1]  ? nmi_handle+0x2a/0x5a0
[  256.632270][    C1]  ? nf_conntrack_in+0xc9/0x1890
[  256.632290][    C1]  ? default_do_nmi+0x63/0x160
[  256.632306][    C1]  ? exc_nmi+0x123/0x1f0
[  256.632321][    C1]  ? end_repeat_nmi+0xf/0x53
[  256.632342][    C1]  ? __pfx_ipv4_conntrack_local+0x10/0x10
[  256.632360][    C1]  ? nf_hook_slow+0xd7/0x220
[  256.632375][    C1]  ? ipv4_conntrack_local+0x8d/0x200
[  256.632392][    C1]  ? nf_conntrack_in+0xc5/0x1890
[  256.632412][    C1]  ? nf_conntrack_in+0xc9/0x1890
[  256.632432][    C1]  ? nf_conntrack_in+0xc9/0x1890
[  256.632452][    C1]  ? nf_conntrack_in+0xc9/0x1890
[  256.632472][    C1]  </NMI>
[  256.632477][    C1]  <IRQ>
[  256.632487][    C1]  ? ipt_do_table+0x157a/0x1860
[  256.632521][    C1]  ? __pfx_nf_conntrack_in+0x10/0x10
[  256.632544][    C1]  ? ipt_do_table+0x312/0x1860
[  256.632562][    C1]  ? __pfx_ipt_do_table+0x10/0x10
[  256.632581][    C1]  ? ip_route_me_harder+0xc98/0x1300
[  256.632595][    C1]  ? ipv4_conntrack_defrag+0x2a2/0x5a0
[  256.632610][    C1]  ? ipv4_conntrack_local+0x120/0x200
[  256.632627][    C1]  ? __pfx_ipv4_conntrack_local+0x10/0x10
[  256.632649][    C1]  nf_hook_slow+0xc3/0x220
[  256.632664][    C1]  ? __pfx_dst_output+0x10/0x10
[  256.632681][    C1]  nf_hook+0x2c4/0x450
[  256.632698][    C1]  ? nf_hook+0x9e/0x450
[  256.632712][    C1]  ? __pfx_nf_hook+0x10/0x10
[  256.632728][    C1]  ? __pfx_dst_output+0x10/0x10
[  256.632747][    C1]  ? ip_fast_csum+0x1f0/0x2b0
[  256.632766][    C1]  __ip_local_out+0x3d9/0x4e0
[  256.632781][    C1]  ? __pfx_dst_output+0x10/0x10
[  256.632799][    C1]  ip_local_out+0x26/0x70
[  256.632816][    C1]  synproxy_send_client_synack+0x8b8/0xf30
[  256.632839][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[  256.632857][    C1]  ? synproxy_pernet+0x45/0x270
[  256.632877][    C1]  nft_synproxy_eval_v4+0x3ca/0x610
[  256.632898][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[  256.632918][    C1]  ? nf_ip_checksum+0x13a/0x500
[  256.632938][    C1]  nft_synproxy_do_eval+0x362/0xa60
[  256.632958][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  256.632979][    C1]  ? __pfx_validate_chain+0x10/0x10
[  256.632994][    C1]  ? seqcount_lockdep_reader_access+0x1c1/0x220
[  256.633016][    C1]  nft_do_chain+0x4ad/0x1da0
[  256.633040][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  256.633057][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  256.633088][    C1]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[  256.633111][    C1]  nft_do_chain_inet+0x418/0x6b0
[  256.633130][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  256.633147][    C1]  ? ipt_do_table+0x312/0x1860
[  256.633171][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  256.633188][    C1]  nf_hook_slow+0xc3/0x220
[  256.633204][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  256.633226][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  256.633249][    C1]  NF_HOOK+0x29e/0x450
[  256.633271][    C1]  ? NF_HOOK+0x9a/0x450
[  256.633291][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  256.633314][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  256.633338][    C1]  ? ip_rcv_finish+0x406/0x560
[  256.633361][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  256.633382][    C1]  NF_HOOK+0x3a4/0x450
[  256.633402][    C1]  ? __lock_acquire+0x1384/0x2050
[  256.633425][    C1]  ? NF_HOOK+0x9a/0x450
[  256.633445][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  256.633465][    C1]  ? ip_rcv_core+0x801/0xd10
[  256.633487][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  256.633533][    C1]  ? __pfx_ip_rcv+0x10/0x10
[  256.633556][    C1]  __netif_receive_skb+0x2bf/0x650
[  256.633573][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  256.633615][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[  256.633642][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  256.633668][    C1]  ? __pfx_lock_release+0x10/0x10
[  256.633694][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  256.633719][    C1]  process_backlog+0x662/0x15b0
[  256.633740][    C1]  ? process_backlog+0x33b/0x15b0
[  256.633762][    C1]  ? __pfx_process_backlog+0x10/0x10
[  256.633780][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  256.633807][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  256.633835][    C1]  __napi_poll+0xcb/0x490
[  256.633853][    C1]  net_rx_action+0x89b/0x1240
[  256.633881][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  256.633901][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  256.633942][    C1]  handle_softirqs+0x2c5/0x980
[  256.633967][    C1]  ? __irq_exit_rcu+0xf4/0x1c0
[  256.633992][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  256.634019][    C1]  ? irqtime_account_irq+0xd4/0x1e0
[  256.634049][    C1]  __irq_exit_rcu+0xf4/0x1c0
[  256.634071][    C1]  ? __pfx___irq_exit_rcu+0x10/0x10
[  256.634099][    C1]  irq_exit_rcu+0x9/0x30
[  256.634120][    C1]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  256.634141][    C1]  </IRQ>
[  256.634147][    C1]  <TASK>
[  256.634153][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  256.634176][    C1] RIP: 0010:crng_make_state+0x5dc/0xa80
[  256.634196][    C1] Code: 1a c3 81 06 e9 01 fd ff ff e8 40 8d 4a fc e8 db 07 78 06 48 83 7c 24 28 00 74 87 e8 2e 8d 4a fc fb 48 c7 44 24 40 0e 36 e0 45 <48> b8 00 00 00 00 00 fc ff df 48 8b 4c 24 38 c7 04 08 00 00 00 00
[  256.634210][    C1] RSP: 0018:ffffc90009f3f7c0 EFLAGS: 00000293
[  256.634225][    C1] RAX: ffffffff854a2c82 RBX: 0000000000000000 RCX: ffff88802dcd5a00
[  256.634238][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  256.634248][    C1] RBP: ffffc90009f3f970 R08: ffffffff854a2bf2 R09: 1ffffffff284b315
[  256.634262][    C1] R10: dffffc0000000000 R11: fffffbfff284b316 R12: 000000000000000f
[  256.634274][    C1] R13: 1ffff110170e7596 R14: 0000000000000046 R15: ffff8880b873acb8
[  256.634291][    C1]  ? crng_make_state+0x542/0xa80
[  256.634308][    C1]  ? crng_make_state+0x5d2/0xa80
[  256.634332][    C1]  ? crng_make_state+0x196/0xa80
[  256.634351][    C1]  ? __pfx_crng_make_state+0x10/0x10
[  256.634384][    C1]  _get_random_bytes+0xd7/0x2c0
[  256.634403][    C1]  ? __pfx__get_random_bytes+0x10/0x10
[  256.634424][    C1]  ? kasan_quarantine_put+0xdc/0x230
[  256.634456][    C1]  ? skb_put+0x114/0x1f0
[  256.634481][    C1]  nsim_dev_trap_report_work+0x622/0xaa0
[  256.634514][    C1]  ? process_scheduled_works+0x976/0x1850
[  256.634539][    C1]  process_scheduled_works+0xa63/0x1850
[  256.634575][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  256.634603][    C1]  ? assign_work+0x364/0x3d0
[  256.634628][    C1]  worker_thread+0x870/0xd30
[  256.634664][    C1]  ? __kthread_parkme+0x169/0x1d0
[  256.634691][    C1]  ? __pfx_worker_thread+0x10/0x10
[  256.634715][    C1]  kthread+0x2f0/0x390
[  256.634730][    C1]  ? __pfx_worker_thread+0x10/0x10
[  256.634754][    C1]  ? __pfx_kthread+0x10/0x10
[  256.634770][    C1]  ret_from_fork+0x4b/0x80
[  256.634806][    C1]  ? __pfx_kthread+0x10/0x10
[  256.634822][    C1]  ret_from_fork_asm+0x1a/0x30
[  256.634854][    C1]  </TASK>
[  257.493506][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  257.500417][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-08833-gde5cb0dcb74c #0
[  257.510630][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  257.520801][   T30] Call Trace:
[  257.524109][   T30]  <TASK>
[  257.527066][   T30]  dump_stack_lvl+0x241/0x360
[  257.531790][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  257.537023][   T30]  ? __pfx__printk+0x10/0x10
[  257.541649][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  257.547682][   T30]  ? vscnprintf+0x5d/0x90
[  257.552057][   T30]  panic+0x349/0x880
[  257.556004][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  257.562199][   T30]  ? __pfx_panic+0x10/0x10
[  257.566652][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  257.572232][   T30]  ? __irq_work_queue_local+0x137/0x410
[  257.577816][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  257.583221][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  257.589418][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  257.595618][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  257.601818][   T30]  watchdog+0x1033/0x1040
[  257.606186][   T30]  ? watchdog+0x1ea/0x1040
[  257.610644][   T30]  ? __pfx_watchdog+0x10/0x10
[  257.615357][   T30]  kthread+0x2f0/0x390
[  257.619540][   T30]  ? __pfx_watchdog+0x10/0x10
[  257.624249][   T30]  ? __pfx_kthread+0x10/0x10
[  257.628871][   T30]  ret_from_fork+0x4b/0x80
[  257.633327][   T30]  ? __pfx_kthread+0x10/0x10
[  257.637947][   T30]  ret_from_fork_asm+0x1a/0x30
[  257.642768][   T30]  </TASK>
[  257.647174][   T30] Kernel Offset: disabled
[  257.651509][   T30] Rebooting in 86400 seconds..