last executing test programs:

9m21.038950092s ago: executing program 0 (id=1845):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x5, 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r0, 0x4008ae90, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000000000001000000000000000000000000000000001b0300ff"])
ioctl$KVM_RUN(r0, 0xae80, 0x0)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRES8])
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, &(0x7f0000000a80)={0x4000, 0xd, 0x0, "134600cea4dd512d97d4188cbf770637bc747721f37af54dd1dc03030096c337"})
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$ttys(0xc, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @mcast1}, 0x80, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce620300fe"], 0xfe1b)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001800599c6d0eab070004000523"], 0xfe33)
write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0xfe33)

9m20.742887349s ago: executing program 0 (id=1846):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = io_uring_setup(0x2471, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
openat$loop_ctrl(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getpid()
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x24}}, 0x0)
r3 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
r4 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc90\xb9voI\xa5/\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\x81\x00V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93\x9c5\xcf\t\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\x94\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5', 0x1)
pwritev(r4, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
sendfile(r3, r3, 0x0, 0x24002de8)
ioctl$LOOP_SET_STATUS(r3, 0x4c02, &(0x7f0000001480)={0x0, {}, 0x0, {}, 0x49, 0xa, 0xf, 0x10, "28f5c9ea1f1ae4be4911ab18d2da69bde58cd7af40fd150b70aac11c2816bd5bba76630300000081020000dd91b59c98d54b0000000000000200ca0f86240100", "07a9310978040a8bfe1406584a128d7469166f4f07b84839e7df4af14e1df82d", [0xa, 0x7]})
setns(0xffffffffffffffff, 0x24020000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'dummy0\x00'})
msgget$private(0x0, 0x0)
msgsnd(0x0, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0], 0x2000, 0x800)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.freeze\x00', 0x275a, 0x0)
lseek(r5, 0xfffffffffffffffc, 0x4)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r5, 0x40605346, &(0x7f0000000080)={0x9, 0x0, {0xfffffffffffffffc, 0x0, 0x8e4, 0x2, 0x7fffffff}, 0xa5f2})

9m18.428759315s ago: executing program 0 (id=1851):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$kcm(0x29, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_open_dev$radio(0x0, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000000c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8b04, &(0x7f0000000000)={'wlan1\x00', @random="0200"})
mount(0x0, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x200000, 0x0)
openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
io_setup(0x1, &(0x7f0000000380)=<r2=>0x0)
io_submit(r2, 0x0, &(0x7f00000002c0))
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xa43, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82)
syz_open_dev$sg(&(0x7f0000000100), 0x0, 0x109001)
close_range(r4, r5, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0x14)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000003c0)={0x40, r7, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x40}}, 0x0)
write$smackfs_netlabel(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x56)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

9m16.405890113s ago: executing program 0 (id=1856):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x0, 0x0, &(0x7f00000005c0)='syzkaller\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x11d8, @void, @value}, 0x94)
ptrace(0x8, r3)
wait4(0x0, 0x0, 0x0, 0x0)
set_mempolicy(0x6, 0x0, 0xe0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xa, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000d0ff0000000000000000000085674a000600010000000000", @ANYRES32, @ANYBLOB="000000000000000066080000000000001800000000000000000000000000800095000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
r5 = userfaultfd(0x0)
ioctl$UFFDIO_API(r5, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x294})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'xfrm0\x00'})
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c)
add_key$fscrypt_provisioning(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xfffffffffffffffe)

9m15.26109179s ago: executing program 0 (id=1858):
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
sendmmsg$inet(r0, 0x0, 0x0, 0xc0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x4084)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
open(0x0, 0x0, 0x0)
open(0x0, 0x0, 0x0)
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f00000040c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000100)={r3, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)

9m6.338688011s ago: executing program 0 (id=1875):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
getpeername$packet(r3, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r4, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r5, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)
mmap(&(0x7f0000894000/0x4000)=nil, 0x4000, 0x0, 0x40030, 0xffffffffffffffff, 0x0)

8m49.94438722s ago: executing program 32 (id=1875):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
r3 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
getpeername$packet(r3, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r4, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r4, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r5, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)
mmap(&(0x7f0000894000/0x4000)=nil, 0x4000, 0x0, 0x40030, 0xffffffffffffffff, 0x0)

2m54.461072979s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

2m24.328884636s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

1m44.134731894s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

1m9.91513378s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

36.546307494s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

15.834523908s ago: executing program 1 (id=3181):
mkdir(0x0, 0x10)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000000c0)=0xffffffffffffffff, 0x4)
r0 = syz_io_uring_setup(0x1104, &(0x7f0000000300)={0x0, 0x0, 0x80, 0x0, 0x21e}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0, 0x200, 0x0, 0x1})
io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r3, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1})
mount(0x0, 0x0, &(0x7f0000000040)='devpts\x00', 0x0, 0x0)
chroot(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, 0x0, 0x0)
r4 = openat$adsp1(0xffffffffffffff9c, 0x0, 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r4, 0xc004500a, 0x0)
r5 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
read$dsp(r5, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r4, &(0x7f00000012c0), 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0xa, 0x5, 0x2, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

12.928217049s ago: executing program 1 (id=3189):
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_connect$uac1(0x0, 0xc5, &(0x7f0000000580)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xb3, 0x3, 0x1, 0x0, 0x0, 0x7, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x5, 0x5}, [@processing_unit={0x7, 0x24, 0x7, 0x2, 0x2, 0x7}, @extension_unit={0x9, 0x24, 0x8, 0x2, 0x8, 0xf, "f752"}, @mixer_unit={0x9, 0x24, 0x4, 0x5, 0x6, "35966f7a"}, @extension_unit={0xb, 0x24, 0x8, 0x6, 0x7, 0x4, "6b236184"}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x400, 0x3, 0xcc, 0x2, {0x7, 0x25, 0x1, 0x2, 0x8, 0x7ff}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x2, 0x7, 0x9}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x80, 0x2, 0x1, 0x3, "6213", "f073"}, @format_type_i_continuous={0xb, 0x24, 0x2, 0x1, 0xa, 0x2, 0x1, 0x4, "da09fb"}, @as_header={0x7, 0x24, 0x1, 0x0, 0xdb, 0x1001}, @format_type_i_continuous={0x9, 0x24, 0x2, 0x1, 0x4, 0x81, 0x6, 0x2, "b1"}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x6, 0x3, 0xfd, {0x7, 0x25, 0x1, 0x1, 0x5, 0x5}}}}}}}]}}, &(0x7f00000009c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x310, 0x1, 0x0, 0x4, 0xc7, 0x9}, 0x0, 0x0, 0x9, [{0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x83e}}, {0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x812}}, {0x57, &(0x7f0000000740)=ANY=[@ANYBLOB]}, {0x0, 0x0}, {0x0, 0x0}, {0x8d, &(0x7f0000000800)=ANY=[@ANYBLOB="8d036c326506a6cba6c5762101bfa1105545cda710d63089a3d98c9861513c01e95ce2e3f3597ede8fc69565b7f2c9b30a0fa39e5dea5c9bc452ea541f967ef4fd1705dc7089ac9af8cf8f1db1af570fedc3b2fc1878b028edd49c0d18b85bc48ad49ced73bac965fa10393105e3b62e135216776c000000000000005653338212a0e2fd19594e2dec"]}, {0x36, &(0x7f00000008c0)=ANY=[]}, {0x58, &(0x7f0000000900)=@string={0x58, 0x3, "e7cbcbd9e3d5812bf68e5d828510525b9fd5e79ab29c353b300963de78a02f96e31c1f904d035ab054292baa5c7fc8bb78dc3d891c9f0cc918d73a13e52e4cbe8b9fcf0a576efb5aa8ea11438e14b1ecae8ea2ee11e1"}}, {0x0, 0x0}]})
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_sync_train_complete={{0x4f, 0x1}, {0x92}}}, 0x4)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
openat$random(0xffffffffffffff9c, 0x0, 0x109040, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x840000000002, 0x3, 0xfa)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=@getchain={0x2c, 0x11, 0x1, 0x2000000, 0xffffffff, {0x0, 0x0, 0x0, r2, {}, {}, {0xfff3}}, [{0x8, 0xb, 0x200}]}, 0x2c}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket(0x40000000015, 0x5, 0x0)
bind$inet(r7, 0x0, 0x0)
r8 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000240), 0x88002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r8, 0xc004500a, &(0x7f00000002c0)=0x7)

10.145107496s ago: executing program 3 (id=3198):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000880)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r1, &(0x7f0000000200)={0x0, 0x4b, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="030300000000000000000600000008000300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x2000c0c0)
r5 = semget$private(0x0, 0x5, 0x0)
semop(r5, &(0x7f0000000000)=[{0x3, 0xfff7, 0x1000}], 0x1)
semop(0x0, &(0x7f0000000340)=[{0x2, 0x2, 0x1000}], 0x1)
r6 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r6, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x7, 0x5, 0x5}, 0x3e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x0, 0x6, 0xf5, 0x9, 0x39, 0x747d5e13, 0x8, 0xfffffb9a, 0xfffffffc, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf252, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0x3ff, 0x3, 0xd, 0x3, 0xba55, 0x8da8, 0x2, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x40, 0x9, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x0, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c32, 0x3, 0x9, 0x10000, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x100, 0x3ff, 0x0, 0xfffffffe, 0x0, 0x1000001, 0x10, 0xfffffff9, 0x0, 0x5, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0xffff, 0x6, 0x96, 0xfffffff9, 0x101, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x9, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x3], [0x401, 0xc584, 0xffff, 0xcd4, 0x7, 0x20, 0x7, 0x4, 0x8, 0x10, 0x7, 0x9, 0xe8b, 0x5, 0x80000001, 0x8, 0xffffffff, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x10, 0x80000001, 0x4, 0x4, 0x5, 0x200003, 0x2, 0x5, 0x80, 0x9, 0x9, 0x47, 0x2, 0x3, 0x4, 0x7, 0x6d7e, 0x3, 0x8, 0x8001, 0xbf23, 0x6, 0x8, 0x95a, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x7, 0x4, 0xea, 0x9, 0x20000005, 0x6, 0xd9, 0x0, 0x7d, 0x401, 0x5], [0x108e, 0x7fff, 0x3, 0x3, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x3fa6, 0x4, 0x0, 0x5, 0x1e0, 0x4, 0xe47, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x2, 0x5, 0x800, 0xa80a, 0x65f413f9, 0x4, 0x8, 0x8a8, 0x2, 0x40, 0x409, 0x2, 0x4, 0x4, 0x10, 0x0, 0x0, 0x7fff, 0x2, 0xfffffff8, 0x401, 0x1, 0x200, 0x7, 0x4edf, 0xfffffffd, 0x7, 0xe, 0x2, 0xe, 0xf, 0x133, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r6, 0x5501)
readv(r6, &(0x7f0000001900)=[{0x0, 0xea}], 0x1)
write$input_event(r6, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000080)={'wlan1\x00'})
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)='ext2\x00', 0x8080, &(0x7f00000001c0)='discard')
r8 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r8, &(0x7f0000000000)='asymmetric\x00', &(0x7f0000000040)=@secondary)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)

9.060102507s ago: executing program 1 (id=3201):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r1=>0x0})
sched_setparam(r1, &(0x7f00000001c0)=0xd49a)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
syz_usb_connect$uac1(0x7, 0x71, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x0)
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d00000524060001082400a9b30d240f010a0000000300ff000606241a05001407240a050905580c240c00000000a90c0900030424020204240200042402024424"], 0x0)
syz_usb_connect(0x3, 0xf5, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000772aed408680070bb96c010203010902e30003dc2000000904003f000e01000505a40600010524007f000d240f0104000000080000000006241a03000a05240101070424020a1524120009a317a88b045e4f01a607c0ffcb7e392a09044c03003a92a2010a240109000102010205240401050c2402"], 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0xc, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
socket$qrtr(0x2a, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', <r4=>0x0})
bind$can_raw(r0, &(0x7f0000000080)={0x1d, r4}, 0x10)
bind$can_raw(r0, &(0x7f0000000100), 0x10)

8.926690773s ago: executing program 3 (id=3202):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.numa_stat\x00', 0x275a, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r0, 0x4010ae67, &(0x7f00000001c0)={0x8080000, 0x315000})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r1, &(0x7f0000001fc0)=""/184, 0x20002078)

8.835922392s ago: executing program 5 (id=3203):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r5}, 0x10)
syz_open_dev$I2C(0x0, 0x80, 0x14000)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback, 0x1}, 0x1c)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r7 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r7, 0x8933, &(0x7f00000004c0)={'vcan0\x00'})
r8 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCSIFDSTADDR(r8, 0x8918, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000700)="6b093db1947bc296cf697e335c7aa0e9afc07b5f0c819e3522eaad2a74224b7a5bed182fec91c96271033eec5d14ede20a6d1c36c3e7a445ccb5b158ffaec30b8b846de0d5b327a6b1d322a80d00b5c08428fb6ef0d6bdfef436fd9a0027a7cce11f65f633449199149e065a48b3f6bb51b5e305aa20ec347027ace732178271cb92f3e4bdda6732a10715efe7a7eae23413207a9cd1c24ea5ad8f333bfedf8e93e880fc51fb9051917d5488a13c22f1a575b1767424074c84444b29becb98de0e479ae50c12711cc5e26973d496458de4969e51dd5aee7ae9ca5da879f96737d626b447cdf675bc4af3e1ffec688c6945d0786b8ff146cab2e441e3438f3ddd28", 0xffffff08}], 0x1}}], 0x1, 0x40081)

8.411121202s ago: executing program 3 (id=3204):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r2}, 0x10)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
epoll_create1(0x99344c68e635bb3)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000280)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000580)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00))
ftruncate(0xffffffffffffffff, 0xfbff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
r7 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000000)={0xffffffffffffffff, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r7, 0x40086200, &(0x7f0000000440)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf20000000000000160005003f1b48013d030100000000009500000000000000bc26000000000000bf67000000000000070600000fff07006702000003000000360600000ee600f0bf052000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r8, 0x4b67, &(0x7f0000000040)={0x3ffffffffffffe96, &(0x7f0000000000)=[{0x2000, 0x5}]})
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x1c, 0x1, 0x1, 0x201, 0x0, 0x0, {0x7}, [@CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x4}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0xc044)

7.802555661s ago: executing program 5 (id=3205):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$MAP_CREATE(0x1800000000000000, &(0x7f0000000200)=@base={0x4, 0x4, 0x4, 0x20201, 0x800, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8010, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, './file0\x00'})
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x7ff, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[], 0x5b0}, 0x20008001)
unshare(0x62040200)
r3 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
accept(r3, &(0x7f0000000280)=@rc={0x1f, @fixed}, &(0x7f0000000100)=0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x10, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xffffffffffffffc2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

6.261592609s ago: executing program 3 (id=3206):
r0 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0xcc, &(0x7f0000000080)={{0xa, 0x4e20, 0x10000, @local, 0x8}, {0xa, 0xce24, 0xee, @remote, 0x4}, 0xfbff, {[0x3, 0x4970, 0xfffffffa, 0x2d, 0xb5dd, 0xfffffffc, 0x9, 0x3]}}, 0x5c)
syz_emit_ethernet(0x15, &(0x7f00000000c0)={@local, @empty, @void, {@generic={0x7, "c04cdb70112cb8"}}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f00000003c0)=ANY=[@ANYBLOB="120100009ac0b620110f211066865578ac0109029c000100000400090400bf900b64ea00090587033b"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x10000)
sendto(0xffffffffffffffff, &(0x7f0000000540)="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", 0x317, 0x0, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
syz_open_dev$loop(&(0x7f00000000c0), 0x9, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

5.894506143s ago: executing program 5 (id=3207):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r3, 0xc04064a0, &(0x7f0000000200)={0x0, &(0x7f0000000100), 0x0, 0x0})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4) (fail_nth: 2)

5.179471536s ago: executing program 5 (id=3209):
r0 = syz_open_procfs(0x0, &(0x7f0000002040)='net/protocols\x00')
r1 = syz_open_dev$sndpcmp(&(0x7f0000000000), 0x0, 0x0)
mmap$snddsp_control(&(0x7f0000ffc000/0x4000)=nil, 0x1002, 0xb, 0x8012, r1, 0x83000000)
read$FUSE(r0, &(0x7f0000000000)={0x2020}, 0x2020)
read$FUSE(r0, &(0x7f0000004440)={0x2020}, 0x2020)

4.986381648s ago: executing program 2 (id=3210):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x1000000, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x80}, 0x1c)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00000004c0)=ANY=[@ANYBLOB="01000000000000000a004e210000000000000000000000000000ffffac1414aa08000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000377bf900"/144], 0x90)
recvmmsg(r0, &(0x7f00000014c0)=[{{0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000004080)=""/4104, 0x1008}], 0x1}, 0x400}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/13, 0xd}, 0xfffffffc}], 0x2, 0x40010000, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4a, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$iommufd(0xffffffffffffff9c, 0x0, 0x244000, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(0xffffffffffffffff, 0x3b88, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0x3, &(0x7f0000000140)={0x8, 0x4}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
r5 = dup(0xffffffffffffffff)
write$FUSE_DIRENTPLUS(r5, &(0x7f0000000280)=ANY=[], 0x138)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000440), r1)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)={0x14, r6, 0xc8036ab6d6cbef07, 0x70bd28}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x45080)
syz_open_dev$evdev(&(0x7f0000000080), 0x2, 0x842)

4.809108649s ago: executing program 5 (id=3211):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd5e, 0x240000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4ca31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x9)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x0, 0x100}, &(0x7f0000000240)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CLOSE={0x13, 0x44, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x2c, 0x18, 0x209, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32}, @nested={0x10, 0x9, 0x0, 0x1, [@typed={0xb, 0x0, 0x0, 0x0, @str='{&(/(:\x00'}]}]}, 0x2c}}, 0x0)
poll(&(0x7f0000000040)=[{r0, 0xe5fdbacbe7631b88}, {r1, 0x10}, {r0, 0x400}, {r0, 0x4000}, {r5}, {r1, 0x10}, {r1, 0x180}], 0x7, 0x9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$inet6(0xa, 0x80002, 0x0)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x480000, 0x40)
mknodat$loop(r7, &(0x7f0000000380)='./file0\x00', 0xc000, 0x1)
r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='attr/current\x00')
writev(r8, &(0x7f00000000c0), 0x0)
r9 = socket$inet(0x2, 0x4000000000000001, 0x100)
listen(r9, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e27, 0x268, @loopback, 0xa}, 0x1c)
r10 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r10, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000250000031ebd7000ffdbdf2507563d007ab63a911c3750fb4041afcce734fb5d2d144151783853e55c2b9140b6912375a1f6707714fc71fa71e53fbdd5"], 0x14}}, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)
sendmmsg$inet6(r6, &(0x7f0000000400), 0x0, 0x4001c00)

3.891306716s ago: executing program 2 (id=3212):
socket$inet_udp(0x2, 0x2, 0x0)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbff, {{@in6=@dev={0xfe, 0x80, '\x00', 0x3b}, @in6=@remote, 0x0, 0x1ff, 0x1, 0x0, 0xa, 0x60, 0x30, 0x0, 0x0, 0xee01}, {0x0, 0x7f, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x937}, 0x0, 0x0, 0x1}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$inet6(0xa, 0x80002, 0x0)
sendmmsg$inet6(r1, &(0x7f0000001200)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x79e7, @local, 0x2}, 0x18, 0x0}}], 0x1, 0x4000000)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(r2, 0x1, 0x0, &(0x7f0000000100))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
ioctl$FS_IOC_GETVERSION(r5, 0x80087601, &(0x7f0000000180))
getitimer(0x0, &(0x7f0000000180))

3.71115028s ago: executing program 2 (id=3213):
ioctl$SIOCGSTAMP(0xffffffffffffffff, 0x8906, &(0x7f0000000000))
bpf$BPF_PROG_QUERY(0x9, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, 0x0, 0x0)
listen(r0, 0x3)
syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)

3.646619082s ago: executing program 5 (id=3214):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000040)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_ERSPAN={0xc, 0x3, 0x0, 0x1, @LWTUNNEL_IP_OPT_ERSPAN_INDEX={0x8, 0x2, 0x190}}}}]}, 0x38}}, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="f80000003e000701feffffff00000000017c0000040042800c00018006000600800a0000d1000280cb0014"], 0xf8}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r4 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r5}, 0x10)
syz_open_dev$I2C(0x0, 0x80, 0x14000)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
landlock_restrict_self(0xffffffffffffffff, 0x0)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000002c0)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000700)="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", 0xffffff08}], 0x1}}], 0x1, 0x40081)

3.580618443s ago: executing program 1 (id=3215):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r4, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12000000040000000400000012"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000ac0)=ANY=[@ANYRES32=r6, @ANYRES32=r5, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000048c0)={r6, &(0x7f00000047c0), &(0x7f0000004880)=@udp=r4}, 0x20)
recvmmsg(r4, &(0x7f0000000b80)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000c40)=""/158, 0x9e}], 0x1}, 0x2}], 0x1, 0x0, 0x0)
setsockopt$inet6_tcp_int(r4, 0x6, 0x19, &(0x7f0000000080), 0x4)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
r7 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_buf(r7, 0x107, 0xd, 0x0, &(0x7f0000000000))

3.516974097s ago: executing program 2 (id=3216):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
clock_gettime(0x0, &(0x7f00000003c0)={<r3=>0x0, <r4=>0x0})
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r5, 0x40305829, &(0x7f0000000040)={0x0, 0x3, 0xbffc, 0x6})
ioctl$VIDIOC_QUERYBUF_DMABUF(0xffffffffffffffff, 0xc0585609, &(0x7f0000000440)={0x1, 0x9, 0x4, 0x1, 0xc9, {r3, r4/1000+60000}, {0x5, 0xc, 0xff, 0xce, 0x6, 0xd, "c7579c7b"}, 0x80000001, 0x4, {}, 0x6, 0x0, r5})
sendmsg$kcm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="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", 0xfd}], 0x1, &(0x7f00000003c0)=[{0xf0, 0x119, 0x0, "4680227d146b1a72713fd4d3373358e8f97043e03e0d4dcc3a249df1bcf1cd0a9cda9f037d72b43c2ea00fe8a2a7e627b016a4e9868155dacf49547fd303b0fd8fba4d651cc0b12c8c3465f10ba223c081722cd7d3ddebd7519a21465d6291f594f740cff08470616484a79198d3e660364f3956231047442e03c677e03c999eeefc731fa23db0c4412fe3ae4a85af022f122de1d1ca927262c5a65f79c45ec4f732eb28476de453e31f3cf46834b5f01c07459f8120b2881e048d732c1ca5c4f2d27c4df23d51a0cf82f49ba6a1e80d4d098c2cb21efa7ea12418"}, {0xf0, 0x112, 0x8, "574e3d854bd5fb935c8b0d53ffd61a4064605b96c148a00ec61f18c2c0328a121bf56951bd6e25520b13aa6432ca1b75dbb18eb01eedfd7bf2f050ecd1f0deaca8b201aae03f791019824a78edcb43eb0d66c24f79f30d1d42d027ffa8f37d13d2856ea0ff44caef008d8cc0084889627dcf1d1dd009833ea4d84853654e71daed9778e5a05ff3ad557e1473ae0bcd96d1de5169938c76e31a3d2951b539d1a2a829e00fde0df6dab0e0c1d23d7ffa0ab19a06ede626c73e7d84978812bb55e613f4e01473a1b0563f22dbb8b97c5584830e7ab0863fda03588321"}], 0x1e0}, 0x0)
sendmsg$NL80211_CMD_TDLS_MGMT(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000980)={0x1c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8010)

2.820618623s ago: executing program 3 (id=3217):
r0 = socket(0x24, 0x4, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ppoll(0x0, 0x0, 0x0, &(0x7f0000000280)={[0x6]}, 0x8)
r2 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x10000000008)
ioctl$KVM_SET_MSRS(r2, 0x5000aea5, &(0x7f0000000080)=ANY=[])
getsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, 0x0, &(0x7f0000000140))

2.549953199s ago: executing program 2 (id=3218):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000002440)={'syztnl0\x00', &(0x7f00000023c0)={'syztnl2\x00', <r3=>0x0, 0x4, 0x9, 0x7, 0x401, 0x8, @dev={0xfe, 0x80, '\x00', 0x2b}, @private1, 0x8030, 0x7, 0xfffffffc, 0x3}})
sendmsg$nl_route_sched(r1, &(0x7f0000004500)={&(0x7f0000000f80)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000044c0)={&(0x7f0000002480)=@deltfilter={0x2c, 0x2d, 0x4, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0xffff, 0xb}, {0x5, 0xffe0}, {0x2, 0x7}}, [@TCA_RATE={0x6, 0x5, {0x3, 0x1}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x80)
r4 = syz_open_dev$dri(&(0x7f0000000340), 0xa1fc, 0x0)
r5 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x30, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_SYNPROXY={0x1c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ISN={0x8}, @CTA_SYNPROXY_ITS={0x8}, @CTA_SYNPROXY_ISN={0x8}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x804}, 0x40000)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000003e000701feffffff00000000017c0000040042800c00018006000600800a0000200002"], 0x44}, 0x1, 0x0, 0x0, 0x40040c0}, 0xc000)
prctl$PR_SET_IO_FLUSHER(0x39, 0x1)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r5, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r7=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r5, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[0x0], 0x0, 0x0, 0x1, 0x0, 0x0, r7})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f00000007c0)={&(0x7f0000000380)=[0x0, 0x0], &(0x7f0000000600)=[{}, {}, {}, {}, {}], &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000580)=[0x0, 0x0, 0x0, 0x0], 0x5, 0x5, 0x2, 0x0, r7})
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32=r8, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000005c0)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x0)
r9 = io_uring_setup(0x1ae9, &(0x7f0000000280)={0x0, 0x82e1, 0x400, 0x0, 0x2eb})
io_uring_enter(r9, 0x510b, 0xe545, 0x44, &(0x7f0000000200)={[0x80]}, 0x8)
r10 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r10, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-ssse3\x00'}, 0x58)
r11 = accept4(r10, 0x0, 0x0, 0x0)
sendmsg$inet(r11, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000020c0)="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", 0x1000}, {&(0x7f0000000300)="6cb178b83846", 0x6}], 0x2}, 0x4000001)
r12 = syz_usb_connect(0x3, 0x73, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000396d0940fd101315ce7e0102030109026100010000000009040001"], 0x0)
syz_usb_control_io$printer(r12, 0x0, 0x0)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0x6, 0x4, 0x8000, 0x5c, 0x1084, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
sendmmsg(r0, &(0x7f0000004180)=[{{&(0x7f0000000180)=@llc={0x1a, 0x0, 0x6, 0x6, 0xd, 0x5c, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x80, &(0x7f0000000700), 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="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"/299], 0x128}}, {{&(0x7f0000000a40)=@l2tp={0x2, 0x0, @empty, 0x2}, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000ac0)="6b023e72e924bc88b91678887159ef1b6fdb", 0x12}, {&(0x7f0000000b00)="b3d12c18782253d0bc0610e282f3ea6c470e1c0a5c818c90aa6e62dd2979bc06911435b9ca7f7bc679b6d8ee54374dcc7afffe2407cfd59911bb5ea52b67d6d0a178fffdc9cc941dda3c221253c508e2538b0f25544581284e8edafaf3ce1415e3b36e6ec41e11765c1c5b72f84b718f1615b7be28423ba93430f15779446fa99b41973aeb45f5a43fa159e52f166b3d0119c3e98090382cb105d1b0aa2963dde7f85296bd953121d329bb40d88e8c4f1a", 0xb1}, {&(0x7f0000000bc0)="f8e995171d0a7a223b388bb7bd84a61155ce84fec9d124010313f24658a0c265b0018c75c79a8aec4b481218c298567dd5dc253c98cefb4e91d62d55413622e62e85d135a8a55a4d3ba9f5bffec6528408ccf997f9955608e82660d3a7dff99fc5583b1ca42afc9b58ee0bcff26103c24a54380384926f4580d568bfe7669f0b739c7927011599d833c98eaaeac440", 0x8f}, {&(0x7f0000000c80)="2e418b92189e1469d77b148f020de63bec96be41244c95791b815938229c8e81269b2f5b7f61489b77019b86128c94505492f471a6e21eeb066d33824ca4ec6a0f4d455a8e910894e7df7d6f", 0x4c}], 0x4}}, {{0x0, 0x0, &(0x7f0000005580)=[{&(0x7f0000000d40)="b7e368315b8ac8856808385fab0b895e6e6b777c0f87d83d2fefbd717e81512d4b3be8cc11eec64ea650a4bd65897c36ea89b8bbfb346482ba6ce0f861295b62cbbf91a78ad37e4edbd3c55fdc37131a5a76300739740031b50df48f9dbaefa88e601b9228974514813ac5df210ef7bc2246ee547aa670edaa6f34601d2f0c2450c75432d932686d75f3a1c4cca8fab6ee6afa64f1fbce69b44dcabb23c16dd228255b0304e7", 0xa6}, {&(0x7f0000000e00)="e18fbc85761c6314809c17a6b2b367737e562429bd8730a601f484f61b8a4c41a87a2f3a0ca89dce23a73f80e5639075427e1e1b12d1099239a9db", 0x3b}, {&(0x7f0000000e40)="15d03fdd0b0f16ce48", 0x9}, {&(0x7f0000000e80)="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", 0xfa}, {&(0x7f0000000f80)}, {&(0x7f0000000fc0)="7e43c4886fb5dcb379843718e3e2a594c3a917a245adde47a0a2038fb321421323d05a79195a8a52efd4a45bb241145fb049ba971677311ddfa47c02b5989ab0fabd91c0f09e3932033115ea50136cdd1f3aacd58728aa51e2f64654183bba4997e40a223f90356ed7bcceac20e024e14a33dc4e3da04a23ff6122675784628731e043558be742bd490c11ecd9554c9b4b98e5c6594982cf9738f06f158bef007d5a45b31f6274b4262d3f7ec49ddbf9563ba36f66dcf63b80da", 0xba}, {&(0x7f0000001080)="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", 0x1000}, {&(0x7f0000002080)="458e06c2b430bd642379b5ca5de7a2da63aa53f1cba4a286aa0e1d8ec6badce6bb39de6be52b090348bb4ceefe1df01189895313787dce51ea29db3b3cc109db279a004cb95df8f5c09c107662dd921cd938d2a558ff99af17dcf9492f8f26d97d260c4196d897c306648fa6808ac363c2c2d7a803344f41b70b0130f0ca0cae14eca4bc1cba38c8b1ddda8de851208c1e20da36eccadc929b389ba78caac74fc17f1adef2a53cc5f91d250535ec35a0e925592448a3507f46e90d87a38e3086a265ea705289043adb08b39e01b8ddbabcb5cdc00effbd9f9dd3", 0xda}, {&(0x7f0000002180)="f103df2a2508d9607076ad1097fbdf42b8bf7798e7b17bc99a179c49ae3c4f17e907822d72324558a3e3dfd3e68fcb47531166a3d47f8ac60dc2160d80bdcedeec2c774c8582b6c22e7b2722b507b55cf4f7d8e3da0789de3931b264", 0x5c}, {&(0x7f0000002200)="aa2098b81f1475a44ce1a4ec2c1e3d9c38fe92346bbd00d0c7ef79ff88a577543eb3212152b95df86a758edbc259c3ee05b3a49388705c8ab12df7cf7339cf00ec85670a0875e6e099da9476d81c8ac1be3798cfcb1d071960c45c7725c7677ed542045e5f1dfe11674a72a431a3781c28bb8849fa5fff4d5ef6b271c0cba7f4e54ad70237c8c127b8f77661b19ebbd96424056acc680e69cfcd8ffdf0f5107046c7a424f6c48bf26f9bea6673007cc852c90538bd18167806125fc0f5b94d1451c0e2be522a3fd7843f52bdf0f144e89e8160c1eab4685bf9b463af6bd42f81bbbf22ca5d0491e9a2fef8b31f", 0xed}], 0xa, &(0x7f0000004300)=ANY=[@ANYBLOB="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"], 0xd0}}, {{0x0, 0x0, &(0x7f00000026c0)=[{&(0x7f00000024c0)="18c7b8d8f7081d43d758dd1abe83008661cce3ab4e887bd4bf99", 0x1a}, {&(0x7f0000002500)="e876cf070227d525bbe5feef3eb81e723039997ade7f2bc59fe85f9d9687e1049950c376620e1e49b9282e016c5896f476b5e53162c15775de03df0e6e5e3890861abf3e8ebb6d9d4d239a19950a45a93f49b6d27dab42fc46c1c49b611d360c4dc16859db0a4e5c6c5718341feef196457fa0ba7d3ad4f0", 0x78}, {&(0x7f0000002580)="6c952c02add2edb796b6050900d53f0253589edd4f90c515fc7f7e6a9c30b0f15842c28b897b7d7d89b096f42a2ccc9fdcbde3451af25b50e31e77cc9152c31dc42df2a6505fade6b2b50eabef099ff07e1049f6748de33d409e375e8b84f0817fbb084249583bc5c5b3e042e263c22ef05f29172bd0c4fb631327b72655ffd0b49724850fa4cdd7899994a5d30680f135713761d7dd0d7b39d46a353ef48875fcdf34c98fb8f7ddbd70a30b1d343bd3c6109603a9566255fc347b259650cc88eef626a5ab463797a3848c002ef91d569cff5fa3212f077a80294224c897028749846939c664ff", 0xe7}, {&(0x7f0000002680)="823d2c9e45ba78bb505a94cce5f9526f4b640714c0b3d9cf3322eebbff487a60774f3eb82da09769d69b32658e4e00", 0x2f}], 0x4, &(0x7f0000005640)=[{0x1010, 0x0, 0x8001, "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"}, {0x40, 0x101, 0x4, "7d07c65a3f08d5fb6430ec8b1ae081c8eeb86251a94e4c870f52c3490de941cd9c476ba2a7730ec3a249133271764dd3"}, {0x190, 0x6, 0xf6, "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"}, {0xc0, 0x110, 0x87, "4003aca0c6bb61c40589f2d9b73419f748a87f0bd93f049ca085b7af4b97d93eaabf129f4163a805ce73b04b54453fab76ed822f801aceb2ee2ee2553c5ae8877325347f39eb86204cceb780a4661e67639b5aba06b4a4b1e0ed92170bcc51904863b696f62109a635b3a2958a503cafa4281de9af75aebf8e2caed5dfd5988204bc9fbcb772a04c77de3bcd42f51201d877f55071d333191493e2dc6825071ded5d94d72a03483eaed862"}, {0x108, 0x111, 0x7, "2bfe4f1df0ec9f88645276ee1f1136b6d2b7a77b2a1531f49fe2fc7edfa5b5b01e45166606e3eccf3fc3047526b642f76ef4753c891193575057fa0bd9cc1357caf7bc958fceec1dd58774e2e9cf604a6b33c2ac876be5b22fd23b341ffa2116d662ed0525e6f93c79571d0070eaaf88e1065edca95ab3147c8365598b40db8ef9c5faae1cbf385aa60988b9602f50ccc8857059623ca6f8866e1bf8ea73071680659d811ee59d617f4d118a1557fdc4c34ba3d181726f9911e6724f3d90302462c874dccbde5e5955ca18c705b1cec5abe92c2501274d7d1b64b1a2638131311730e45df3b069f5fbc258e47c38375ca72e"}, {0x50, 0x114, 0x800, "e14590aca114d5f2788058c933e432c6e8c172a8064f654d6ee8a602a931239181280f02e68b06b2b9fad3cc0c9878d903517f3ad35b4f2572"}, {0x28, 0x3a, 0x8, "1c469c205f22d47639843a82461b4e1401"}, {0x58, 0x117, 0x71e, "96b3988dc6c25338a9393385b8397c495a6251f5ab9ec5040eaae1e0e38ec5cdbb4218c905f063f852b72b2ed4b347cd93eb4092cd3141cf83bc059dc55cadc089667a1030fe26"}], 0x1478}}, {{&(0x7f0000003b00)=@l2tp6={0xa, 0x0, 0x2, @mcast1, 0x0, 0x1}, 0x80, &(0x7f0000005540)=[{&(0x7f0000003b80)="5fec298931be077250913261ddd194cd6796e78c1632a3990141064a3532e8945dd75a085764a765a3d8d7d6e3ba1db7387cb2147454d0136226f33f373fec01580e1eb9fad03732601f0d756c30034f37e155b76a7dc8bd076e5c011b755e70313632fe3a2c4481280765d0df49f3c95c79c5c7d4f5ae0cd4a4838ec94bd784994f663d2b8d9795440cfdff799916ec50ca1eff4ee19ea23601f8afd639464d631eb2e526a99dd58d37ba2f912436fe3e2fc2a3f7b7f31ba6b8122a6eea9b8e70c957d8976d04c8", 0xc8}, {&(0x7f0000004540)="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", 0x1000}], 0x2}}, {{&(0x7f0000003cc0)=@nfc={0x27, 0x0, 0x1, 0x2}, 0x80, &(0x7f0000003e00)=[{&(0x7f0000003d40)="1756f79fef6c26a718f34c12017b16b05595eb66ce19c6a11025664a900d6d341729997706a4b9a91142273c95843c453a8ad7aa1c723c6bcb5ac716b3a7c471d8ad22baa1369a01fa6e04b73997ae", 0x4f}, {&(0x7f0000003dc0)="819cc34adef93b8255b99a98b2d6d41e25ed3b4b3c", 0x15}], 0x2, &(0x7f0000003e40)=ANY=[@ANYBLOB="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"], 0x340}}], 0x6, 0x3800)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r13, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="600000000206010300000000000000000000000005000400000000000900020073797a31000000000500010007000000050005000a000000140007800800114008000000050015000c00000012000300686173683a6e6574"], 0x60}}, 0x0)

2.423273905s ago: executing program 1 (id=3219):
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = syz_open_dev$vim2m(&(0x7f0000000240), 0x5, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000000)=0x1)
r1 = getpid()
getgid()
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000500)={{{@in6, @in=@multicast1}}, {{@in6=@private2}, 0x0, @in=@broadcast}}, &(0x7f0000000100)=0xe8)
statx(0xffffffffffffffff, &(0x7f0000000980)='./file0\x00', 0x4000, 0x400, &(0x7f0000002ac0))
r2 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
getgroups(0x1, &(0x7f0000000340)=[<r3=>0x0])
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000380)=<r4=>0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000280), 0x808, &(0x7f0000000ac0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=r3, @ANYBLOB="2c6d61785f726561643d3078303030303030303030303030303030372c616c6c6f775f6f746865722c626c6b73697a653d3078303030303030303030303030313030302c64656661756c745f7065726d697373696f6e732c626c6b73697a653d3078303030303030303030303030306330302c626c6b73697a653d3078303030303030303030303030313830302c6d61785f726561643d3078303030303030303030303030303030622c6d61785f726561643d3078303030303030303030303030303030392c6d61785f726561643d3078303030303030303130303030303030302c7365636c6162656c2c7365636c6162656c2c6673757569643d63346134346136652d610539642d656166692d643934662d34623236623731312c736d61636b66736861743d627066002c736d61636b66737472616e736d7574653d257b2c726f6f74636f6e746578743d757365725f752c736d61636b6673726f6f743d73797a6b616c6c6572002c666f776e65723e", @ANYRESDEC=r4, @ANYBLOB="2c61756469742c7375627a08f5c99b6df65f726fd494df57269a2bd345e5d3cb9d713955bed62a3b32f23aee8b571611714bb05bb1184906f90820c5ea46146ece0d9a4c55dbe5a4a733ab7963bf6dae9a65122437a0629c4696300a6e72b1171080477c7578fbd9ba1690f9f1cb21bc41c5673b414a1fc15f5ddbe6a16f73d074051c2a7078a72e93c090794404b8e5140e8c91e0"])
statx(0xffffffffffffffff, &(0x7f0000002bc0)='./file0\x00', 0x800, 0x80, &(0x7f0000002c00))
read$FUSE(0xffffffffffffffff, &(0x7f0000002e00)={0x2020}, 0x2020)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x4, 0x0, 0x7}}, 0x30)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg(r7, &(0x7f0000000a80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=ANY=[], 0xc}}], 0x1, 0x0)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r8}, 0x10)

1.204898199s ago: executing program 1 (id=3220):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x1)
sched_setaffinity(0x0, 0xfffffffffffffdc5, &(0x7f00000002c0)=0x800002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
fcntl$setownex(r0, 0xf, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$SO_BINDTODEVICE_wg(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000101, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000007480)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(0x0, r2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'veth0_macvtap\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@delqdisc={0x3c, 0x25, 0x400, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, r4, {0xffe0, 0x6}, {0xfff1, 0x8}, {0xf, 0x6}}, [@qdisc_kind_options=@q_atm={0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x7}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0xfffffff9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x80}, 0x4044001)
r5 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x1f7ff6, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f0000000040)={0x1, 0x2, 0x2})
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e23, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0xfffffff8}}, 0x0, 0x0, 0x9, 0x4, 0x1c4, 0x0, 0xfe}, 0x9c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xe1000, 0x280000b, 0x28011, r5, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil)
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171, 0x0, 0x0, 0x4000000}}], 0x400000000000172, 0x0)
syz_open_dev$usbmon(&(0x7f0000000040), 0x80000000000000, 0x98000)
syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp6\x00')

1.037833451s ago: executing program 3 (id=3221):
r0 = socket$tipc(0x1e, 0x5, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000100)={'gre0\x00', &(0x7f0000000040)={'syztnl2\x00', <r3=>0x0, 0x8, 0x700, 0x2, 0x9, {{0x1d, 0x4, 0x2, 0x2d, 0x74, 0x68, 0x0, 0x7, 0x2f, 0x0, @local, @private=0xa010101, {[@ssrr={0x89, 0x1f, 0x7, [@dev={0xac, 0x14, 0x14, 0x18}, @remote, @rand_addr=0x64010101, @local, @dev={0xac, 0x14, 0x14, 0x3a}, @dev={0xac, 0x14, 0x14, 0x8e}, @loopback]}, @end, @ssrr={0x89, 0xf, 0x4f, [@initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @broadcast]}, @timestamp_addr={0x44, 0xc, 0x4a, 0x1, 0x8, [{@local, 0xf}]}, @timestamp={0x44, 0x8, 0x12, 0x0, 0x3, [0x101]}, @ssrr={0x89, 0x1b, 0x67, [@local, @multicast1, @local, @multicast2, @broadcast, @broadcast]}]}}}}})
sendmsg$xdp(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x2c, 0x2, r3, 0x20}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000180)="25d3072424f1404919603d1870cf31fb93f2c6", 0x13}], 0x1, 0x0, 0x0, 0x804}, 0x8004)
setsockopt$inet_tcp_int(r1, 0x6, 0x8, &(0x7f0000000000)=0xfffffff8, 0x4)
r4 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
ioctl$FICLONERANGE(r5, 0x4020940d, &(0x7f0000000400)={{r5}, 0xa960, 0x2, 0x60})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r6 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r6, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r7, 0x40605346, &(0x7f0000000280)={0x0, 0x0, {0x3}})
bpf$BPF_TASK_FD_QUERY(0x14, 0x0, 0x0)
r8 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f0000000300)='source', &(0x7f00000000c0)='%(,:', 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$packet(0x11, 0x3, 0x300)
r10 = socket$kcm(0x29, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000140)={'geneve0\x00', <r11=>0x0})
sendto$packet(r9, &(0x7f0000000000)='h', 0x1, 0x4000004, &(0x7f0000000200)={0x11, 0xc, r11, 0x1, 0x1, 0x6, @local}, 0x14)
sendmsg$tipc(r0, &(0x7f0000000c80)={&(0x7f0000000980)=@id, 0x10, 0x0}, 0x0)

292.894605ms ago: executing program 2 (id=3222):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00"/14], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xf, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000009000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b70200000300000000950000000000000000000000000000000000000000000039f776aec297757da475b3c86d2b22b26a5ed18aa7c1ffeb91f0594495d965dca3faf33986f69fc86037ef9420731493d3ea7af349c1030c94c97ed1dc9fb06c757429178c55fd446c4c484b70d7ebc64891ddbcab1a75231e469c0492bd0eb35f93cb65380e32fa4f8fa7346cce2a223f5d7dad00b4906d6a4fbf1f927341b547e1e53423f6387698ac8b95695a5314"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000), 0x6000, 0x0)
syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x59fa, 0x400, 0x8, 0x2}, 0x0, &(0x7f0000000280))
r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
ioctl$FS_IOC_SETFLAGS(r6, 0x40086602, &(0x7f0000000000)=0x60)
ftruncate(r6, 0x7)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, r5, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
ioctl$KVM_KVMCLOCK_CTRL(r5, 0xaead)
r7 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r7, &(0x7f0000000080), 0xc)
read(r7, &(0x7f0000000040)=""/49, 0x31)
r8 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r8, &(0x7f0000000040)={0x2a, 0x1, 0x4000}, 0xc)
write$binfmt_script(r8, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x48940, 0x0)
acct(&(0x7f0000000040)='\xe9\x1fq\x89Y\x1e\x923aK\x00')
acct(0x0)

0s ago: executing program 4 (id=2201):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f006bbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount$9p_rdma(0x0, &(0x7f0000000400)='.\x00', 0x0, 0x0, &(0x7f00000005c0)={'trans=rdma,', {'port', 0x3d, 0x4e21}})
getpeername$packet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r3, 0x84, 0x7, &(0x7f0000000100)={0x3}, 0x4)
sendto$inet6(r3, &(0x7f0000000080)="b1", 0x1, 0x400c0d4, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, &(0x7f0000000340)={'ipvlan0\x00', @remote})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r4, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0xa00, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
ioctl$TIOCL_SETSEL(0xffffffffffffffff, 0x5410, 0x0)

kernel console output (not intermixed with test programs):

: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1116.990248][   T30] audit: type=1326 audit(1748105971.592:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1117.627948][   T30] audit: type=1326 audit(1748105971.592:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1117.717076][   T30] audit: type=1326 audit(1748105971.592:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1117.790044][   T30] audit: type=1326 audit(1748105971.602:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1117.869033][   T30] audit: type=1326 audit(1748105971.602:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1117.890703][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1117.951009][T15919] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1118.332860][   T30] audit: type=1326 audit(1748105971.602:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6a68b85927 code=0x7ffc0000
[ 1118.434743][   T30] audit: type=1326 audit(1748105971.602:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f6a68b2ab39 code=0x7ffc0000
[ 1118.522615][   T30] audit: type=1326 audit(1748105971.602:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15905 comm="syz.3.2522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1118.827937][T15565] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1121.192448][  T883] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1121.281153][T15954] dummy0: entered allmulticast mode
[ 1121.958385][  T883] usb 6-1: device descriptor read/64, error -71
[ 1122.432486][  T883] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[ 1122.564925][T15968] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1122.575046][  T883] usb 6-1: device descriptor read/64, error -71
[ 1122.694453][  T883] usb usb6-port1: attempt power cycle
[ 1122.798825][T15565] veth0_vlan: entered promiscuous mode
[ 1122.853840][T15565] veth1_vlan: entered promiscuous mode
[ 1123.052558][  T883] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1123.283903][  T883] usb 6-1: device not accepting address 16, error -71
[ 1123.299555][T15565] veth0_macvtap: entered promiscuous mode
[ 1123.329891][T15565] veth1_macvtap: entered promiscuous mode
[ 1123.396345][T15984] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2537'.
[ 1124.015388][T15565] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1124.071577][T15565] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1124.086652][T15986] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1124.187848][T15565] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.223927][T15565] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.254490][T15565] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1124.281667][T15565] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1125.140167][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.162456][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1125.382063][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1125.416103][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1126.705497][  T883] IPVS: starting estimator thread 0...
[ 1126.793004][T16020] IPVS: using max 26 ests per chain, 62400 per kthread
[ 1128.260035][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1128.416287][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1128.526873][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1128.644373][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1128.882908][   T36] bridge_slave_1: left allmulticast mode
[ 1128.888614][   T36] bridge_slave_1: left promiscuous mode
[ 1128.943618][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1128.993704][   T36] bridge_slave_0: left allmulticast mode
[ 1129.001131][T16040] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1129.011040][   T36] bridge_slave_0: left promiscuous mode
[ 1129.082782][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1130.106852][T16057] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2557'.
[ 1130.990669][ T5821] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1131.018732][ T5821] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1131.027456][ T5821] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1131.036272][ T5821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1131.044384][ T5821] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1131.744185][T16074] overlayfs: missing 'lowerdir'
[ 1131.976032][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1132.223561][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1132.453139][   T36] bond0 (unregistering): Released all slaves
[ 1133.102661][ T5821] Bluetooth: hci4: command tx timeout
[ 1133.111051][   T72] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1133.213757][T16089] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1134.882943][T13441] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1135.185071][ T5821] Bluetooth: hci4: command tx timeout
[ 1135.875476][   T36] hsr_slave_0: left promiscuous mode
[ 1135.881494][   T36] hsr_slave_1: left promiscuous mode
[ 1135.895836][   T30] kauditd_printk_skb: 58 callbacks suppressed
[ 1135.895852][   T30] audit: type=1326 audit(1748105992.842:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16110 comm="syz.3.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1135.945397][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1135.971989][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1136.005317][   T30] audit: type=1326 audit(1748105992.842:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16110 comm="syz.3.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1136.046460][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1136.078755][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1136.091595][   T30] audit: type=1326 audit(1748105992.872:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16110 comm="syz.3.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1136.114065][T16118] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2574'.
[ 1136.157939][   T30] audit: type=1326 audit(1748105992.872:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16110 comm="syz.3.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1136.256159][   T30] audit: type=1326 audit(1748105992.872:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16110 comm="syz.3.2572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6a68b8e969 code=0x7ffc0000
[ 1136.298098][   T36] veth1_macvtap: left promiscuous mode
[ 1136.371696][   T36] veth0_macvtap: left promiscuous mode
[ 1136.825659][ T5874] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1136.833864][   T36] veth1_vlan: left promiscuous mode
[ 1136.919385][T16129] /dev/nullb0: Can't open blockdev
[ 1137.007141][   T36] veth0_vlan: left promiscuous mode
[ 1137.265456][ T5821] Bluetooth: hci4: command tx timeout
[ 1137.882713][ T5874] usb 4-1: Using ep0 maxpacket: 32
[ 1137.932707][ T5874] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1137.958033][ T5874] usb 4-1: config 0 interface 0 has no altsetting 1
[ 1137.992868][ T5874] usb 4-1: New USB device found, idVendor=152d, idProduct=0539, bcdDevice=41.ab
[ 1138.002212][ T5874] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1138.022312][ T5874] usb 4-1: Product: syz
[ 1138.029752][ T5874] usb 4-1: Manufacturer: syz
[ 1138.034555][ T5874] usb 4-1: SerialNumber: syz
[ 1138.055531][ T5874] usb 4-1: config 0 descriptor??
[ 1138.068768][ T5874] usb-storage 4-1:0.0: USB Mass Storage device detected
[ 1138.100360][ T5874] usb-storage 4-1:0.0: Quirks match for vid 152d pid 0539: 4000000
[ 1139.272213][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1139.343892][ T5821] Bluetooth: hci4: command tx timeout
[ 1139.413880][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1140.501919][T16119] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2575'.
[ 1140.516494][T16119] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1140.708808][ T5810] usb 4-1: USB disconnect, device number 36
[ 1142.020266][T16065] chnl_net:caif_netlink_parms(): no params data found
[ 1144.467492][T13122] usb 2-1: new high-speed USB device number 53 using dummy_hcd
[ 1144.509584][T16179] EXT4-fs (loop7): VFS: Can't find ext4 filesystem
[ 1144.531543][T16182] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1144.652489][T13122] usb 2-1: Using ep0 maxpacket: 32
[ 1144.695870][T13122] usb 2-1: config 0 has an invalid interface number: 219 but max is 0
[ 1144.723392][T13122] usb 2-1: config 0 has no interface number 0
[ 1144.741389][T13122] usb 2-1: config 0 interface 219 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1144.773972][T13122] usb 2-1: config 0 interface 219 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B
[ 1144.808917][T13122] usb 2-1: config 0 interface 219 altsetting 0 endpoint 0x8B has invalid maxpacket 28739, setting to 1024
[ 1144.894525][T16065] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1144.927907][T16065] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1144.958849][T16065] bridge_slave_0: entered allmulticast mode
[ 1144.960234][T13122] usb 2-1: config 0 interface 219 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1144.987029][T16065] bridge_slave_0: entered promiscuous mode
[ 1145.039304][T16065] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1145.067965][T16065] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1145.068048][T13122] usb 2-1: config 0 interface 219 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1023
[ 1145.101982][T16065] bridge_slave_1: entered allmulticast mode
[ 1145.261204][T16065] bridge_slave_1: entered promiscuous mode
[ 1146.012434][T13122] usb 2-1: config 0 interface 219 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1146.073344][T13122] usb 2-1: string descriptor 0 read error: -71
[ 1146.079695][T13122] usb 2-1: New USB device found, idVendor=108c, idProduct=0169, bcdDevice=75.b9
[ 1146.187278][T13122] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1146.301233][T13122] usb 2-1: config 0 descriptor??
[ 1146.341501][T16065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1146.385776][T13122] usb 2-1: can't set config #0, error -71
[ 1146.397585][T16065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1146.424811][T16209] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[ 1146.479641][T13122] usb 2-1: USB disconnect, device number 53
[ 1146.606109][T16065] team0: Port device team_slave_0 added
[ 1146.645916][T16065] team0: Port device team_slave_1 added
[ 1146.788783][T16065] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1146.820673][T16065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1146.932855][T16065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1147.065470][T16065] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1147.102122][T16065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1147.417499][T16065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1147.549149][T16228] bond_slave_0: entered promiscuous mode
[ 1147.554945][T16228] bond_slave_1: entered promiscuous mode
[ 1147.592752][T16228] macvlan2: entered promiscuous mode
[ 1147.632993][T16228] bond0: entered promiscuous mode
[ 1147.658614][T16228] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1148.198342][T16065] hsr_slave_0: entered promiscuous mode
[ 1148.966122][T16065] hsr_slave_1: entered promiscuous mode
[ 1148.975583][T16065] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1148.993287][T16065] Cannot create hsr debugfs directory
[ 1149.303810][T16246] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1150.243857][T16249] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1150.632903][T16258] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2610'.
[ 1150.690710][T16259] mkiss: ax0: crc mode is auto.
[ 1150.709273][T16258] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2610'.
[ 1154.183572][T16282] netlink: 'syz.1.2616': attribute type 10 has an invalid length.
[ 1154.191437][T16282] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2616'.
[ 1155.154649][T16065] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1155.211749][T16065] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1155.281609][T16065] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1155.344180][T16065] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1155.982913][T16318] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2627'.
[ 1156.014035][T16320] input: syz0 as /devices/virtual/input/input85
[ 1156.113536][T16065] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1156.221011][T16320] macvlan2: entered promiscuous mode
[ 1156.256549][T16320] bond0: entered promiscuous mode
[ 1156.362976][T16320] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1156.416298][T16323] sctp: [Deprecated]: syz.1.2628 (pid 16323) Use of int in maxseg socket option.
[ 1156.416298][T16323] Use struct sctp_assoc_value instead
[ 1157.514136][T16065] 8021q: adding VLAN 0 to HW filter on device team0
[ 1157.600136][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1157.607357][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1157.692002][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.699175][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1158.110360][T16341] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[ 1160.710947][T16065] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1163.287499][T16408] syz.5.2647: attempt to access beyond end of device
[ 1163.287499][T16408] loop11: rw=4096, sector=2, nr_sectors = 2 limit=0
[ 1163.308601][T16408] EXT4-fs (loop11): unable to read superblock
[ 1163.464351][T16412] syz.1.2648: attempt to access beyond end of device
[ 1163.464351][T16412] loop3: rw=4096, sector=2, nr_sectors = 2 limit=0
[ 1163.542804][T16412] EXT4-fs (loop3): unable to read superblock
[ 1164.599554][T16065] veth0_vlan: entered promiscuous mode
[ 1164.636840][T16065] veth1_vlan: entered promiscuous mode
[ 1166.084486][T16065] veth0_macvtap: entered promiscuous mode
[ 1166.105613][T16065] veth1_macvtap: entered promiscuous mode
[ 1166.237358][T16065] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1166.322161][T16065] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1166.706082][T16065] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.732621][T16065] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.761923][T16065] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1166.810181][T16065] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1167.866972][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1167.917118][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1168.059958][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1168.095110][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1168.493516][T13122] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1168.693193][T13122] usb 4-1: Using ep0 maxpacket: 8
[ 1168.714070][T13122] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[ 1168.755667][T13122] usb 4-1: config 179 has no interface number 0
[ 1168.785798][T13122] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1168.854385][T13122] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1168.875671][ T6276] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1168.920609][T13122] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1168.953601][T13122] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1168.998502][T13122] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1169.047394][T13122] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1169.088005][T13122] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1169.143760][T16464] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1169.167477][ T6276] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.412978][T16464] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1169.439994][ T6276] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.456731][T16464] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1169.603353][ T6276] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1169.866429][T16464] xt_l2tp: v2 sid > 0xffff: 262144
[ 1169.883699][    C0] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1169.883702][   T24] usb 4-1: USB disconnect, device number 37
[ 1169.883838][    C0] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1170.114081][ T6276] bridge_slave_1: left allmulticast mode
[ 1170.130021][ T6276] bridge_slave_1: left promiscuous mode
[ 1170.136102][ T6276] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1170.157011][ T6276] bridge_slave_0: left allmulticast mode
[ 1170.172456][ T6276] bridge_slave_0: left promiscuous mode
[ 1170.185141][ T6276] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.212562][   T50] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1174.423395][   T50] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 178, changing to 11
[ 1174.460967][   T50] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1174.513525][   T50] usb 4-1: New USB device found, idVendor=0416, idProduct=c168, bcdDevice= 0.00
[ 1174.541731][   T50] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1175.393360][   T50] usb 4-1: config 0 descriptor??
[ 1175.448401][T16509] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1175.461211][T16509] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1175.490024][T16509] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1175.526084][T16509] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1175.538000][T16509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1175.899161][   T50] hid (null): nested delimiters
[ 1175.907684][   T50] hid-generic 0003:0416:C168.000D: nested delimiters
[ 1175.923906][   T50] hid-generic 0003:0416:C168.000D: item 0 1 2 10 parsing failed
[ 1175.943194][   T50] hid-generic 0003:0416:C168.000D: probe with driver hid-generic failed with error -22
[ 1176.112834][   T50] usb 4-1: USB disconnect, device number 38
[ 1176.151405][ T6276] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1176.180946][ T6276] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1176.204465][ T6276] bond0 (unregistering): Released all slaves
[ 1176.250119][T16484] lo speed is unknown, defaulting to 1000
[ 1176.250393][T16485] batadv_slave_0: mtu less than device minimum
[ 1176.262780][T16484] lo speed is unknown, defaulting to 1000
[ 1176.273912][T16486] pimreg: entered allmulticast mode
[ 1176.280037][T16484] lo speed is unknown, defaulting to 1000
[ 1176.292918][T16484] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1176.309891][T16484] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1176.401475][T16513] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[ 1176.467530][T16484] lo speed is unknown, defaulting to 1000
[ 1176.477207][T16484] lo speed is unknown, defaulting to 1000
[ 1176.484880][T16484] lo speed is unknown, defaulting to 1000
[ 1176.492471][T16484] lo speed is unknown, defaulting to 1000
[ 1176.500232][T16484] lo speed is unknown, defaulting to 1000
[ 1176.992096][   T30] audit: type=1326 audit(1748106033.932:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16519 comm="syz.2.2676" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ffa3f38e969 code=0x0
[ 1177.304894][T16508] lo speed is unknown, defaulting to 1000
[ 1177.662627][ T5821] Bluetooth: hci4: command tx timeout
[ 1178.115164][T16530] pimreg: entered allmulticast mode
[ 1178.161083][T16531] pimreg: left allmulticast mode
[ 1179.547760][T16543] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1179.850025][ T5821] Bluetooth: hci4: command tx timeout
[ 1180.097451][ T6276] hsr_slave_0: left promiscuous mode
[ 1180.125047][ T6276] hsr_slave_1: left promiscuous mode
[ 1180.131142][ T6276] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1180.238928][ T6276] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1180.294168][ T6276] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1180.342520][ T6276] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1180.572484][ T6276] veth1_macvtap: left promiscuous mode
[ 1180.588278][ T6276] veth0_macvtap: left promiscuous mode
[ 1180.622633][ T6276] veth1_vlan: left promiscuous mode
[ 1180.646749][ T6276] veth0_vlan: left promiscuous mode
[ 1180.904595][   T50] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1181.152450][   T50] usb 4-1: Using ep0 maxpacket: 8
[ 1181.160176][   T50] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1181.180646][   T50] usb 4-1: config index 0 descriptor too short (expected 2393, got 89)
[ 1181.221336][   T50] usb 4-1: config 4 contains an unexpected descriptor of type 0x1, skipping
[ 1181.262446][   T50] usb 4-1: config 4 contains an unexpected descriptor of type 0x2, skipping
[ 1181.322204][   T50] usb 4-1: config 4 has an invalid descriptor of length 35, skipping remainder of the config
[ 1181.378590][   T50] usb 4-1: config 4 has 0 interfaces, different from the descriptor's value: 9
[ 1181.463760][   T50] usb 4-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[ 1181.512805][   T50] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1181.520976][   T50] usb 4-1: Product: syz
[ 1181.562413][   T50] usb 4-1: Manufacturer: syz
[ 1181.569309][   T50] usb 4-1: SerialNumber: syz
[ 1181.791810][   T50] usb 4-1: USB disconnect, device number 39
[ 1181.902584][ T5821] Bluetooth: hci4: command tx timeout
[ 1182.660701][ T6276] team0 (unregistering): Port device team_slave_1 removed
[ 1182.808598][ T6276] team0 (unregistering): Port device team_slave_0 removed
[ 1183.982491][ T5821] Bluetooth: hci4: command tx timeout
[ 1185.214517][ T5810] usb 4-1: new high-speed USB device number 40 using dummy_hcd
[ 1185.382538][ T5810] usb 4-1: device descriptor read/64, error -71
[ 1186.082442][ T5810] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1186.222466][ T5810] usb 4-1: device descriptor read/64, error -71
[ 1186.478680][T16508] chnl_net:caif_netlink_parms(): no params data found
[ 1186.649530][ T5810] usb usb4-port1: attempt power cycle
[ 1186.674786][T16609] overlayfs: failed to clone upperpath
[ 1187.002469][ T5810] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1187.033152][ T5810] usb 4-1: device descriptor read/8, error -71
[ 1187.060839][T16508] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1187.086753][T16508] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1187.116300][T16508] bridge_slave_0: entered allmulticast mode
[ 1187.132732][T16508] bridge_slave_0: entered promiscuous mode
[ 1187.151978][T16508] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1187.170741][T16508] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1187.189471][T16508] bridge_slave_1: entered allmulticast mode
[ 1187.419173][T16508] bridge_slave_1: entered promiscuous mode
[ 1188.387486][T16508] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1189.167301][T16508] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1190.107530][T16508] team0: Port device team_slave_0 added
[ 1190.154179][T16508] team0: Port device team_slave_1 added
[ 1190.270012][T16508] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1190.292517][T16508] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.633584][T16508] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1190.735296][T16508] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1190.772421][T16508] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1191.185766][T16508] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1191.214646][T16666] netlink: 'syz.2.2710': attribute type 21 has an invalid length.
[ 1192.014425][T16679] overlayfs: failed to clone upperpath
[ 1192.143501][T16508] hsr_slave_0: entered promiscuous mode
[ 1192.165541][T16508] hsr_slave_1: entered promiscuous mode
[ 1192.181446][T16508] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1192.202535][ T5810] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 1192.217567][T16508] Cannot create hsr debugfs directory
[ 1192.372705][ T5810] usb 2-1: Using ep0 maxpacket: 32
[ 1192.421989][ T5810] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1192.683416][ T5810] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1192.706992][ T5810] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1192.783394][ T5810] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1192.820082][ T5810] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1192.880226][ T5810] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1193.066549][ T5810] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[ 1193.151944][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1193.214457][ T5810] usb 2-1: config 0 descriptor??
[ 1193.441545][ T5810] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 54 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[ 1193.704427][T16676] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1193.729844][T16676] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1193.788448][T16676] cgroup: noprefix used incorrectly
[ 1193.826592][ T5810] usb 2-1: USB disconnect, device number 54
[ 1193.856603][ T5810] usblp0: removed
[ 1195.156035][T16713] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1196.004571][T16508] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1196.046050][T16508] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1196.081501][T16508] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1196.090577][T16720] FAULT_INJECTION: forcing a failure.
[ 1196.090577][T16720] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1196.114264][T16720] CPU: 1 UID: 0 PID: 16720 Comm: syz.1.2727 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1196.114290][T16720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1196.114302][T16720] Call Trace:
[ 1196.114309][T16720]  <TASK>
[ 1196.114317][T16720]  dump_stack_lvl+0x189/0x250
[ 1196.114344][T16720]  ? __lock_acquire+0xaac/0xd20
[ 1196.114371][T16720]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1196.114394][T16720]  ? __pfx__printk+0x10/0x10
[ 1196.114422][T16720]  ? __might_fault+0xb0/0x130
[ 1196.114461][T16720]  should_fail_ex+0x414/0x560
[ 1196.114485][T16720]  _copy_from_iter+0x1db/0x15a0
[ 1196.114515][T16720]  ? trace_kmem_cache_alloc+0x1f/0xc0
[ 1196.114540][T16720]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[ 1196.114568][T16720]  ? __pfx__copy_from_iter+0x10/0x10
[ 1196.114593][T16720]  ? __build_skb_around+0x257/0x3e0
[ 1196.114619][T16720]  ? netlink_sendmsg+0x642/0xb30
[ 1196.114639][T16720]  ? skb_put+0x11b/0x210
[ 1196.114666][T16720]  netlink_sendmsg+0x6b2/0xb30
[ 1196.114693][T16720]  ? is_bpf_text_address+0x26/0x2b0
[ 1196.114745][T16720]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1196.114776][T16720]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1196.114797][T16720]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1196.114821][T16720]  __sock_sendmsg+0x219/0x270
[ 1196.114844][T16720]  ____sys_sendmsg+0x505/0x830
[ 1196.114876][T16720]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1196.114913][T16720]  ? import_iovec+0x74/0xa0
[ 1196.114945][T16720]  ___sys_sendmsg+0x21f/0x2a0
[ 1196.114974][T16720]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1196.115039][T16720]  ? __fget_files+0x2a/0x420
[ 1196.115057][T16720]  ? __fget_files+0x3a0/0x420
[ 1196.115086][T16720]  __x64_sys_sendmsg+0x19b/0x260
[ 1196.115116][T16720]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1196.115160][T16720]  ? do_syscall_64+0xba/0x210
[ 1196.115186][T16720]  do_syscall_64+0xf6/0x210
[ 1196.115209][T16720]  ? clear_bhb_loop+0x60/0xb0
[ 1196.115231][T16720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1196.115248][T16720] RIP: 0033:0x7ff9b5f8e969
[ 1196.115264][T16720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1196.115280][T16720] RSP: 002b:00007ff9b6e0a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1196.115301][T16720] RAX: ffffffffffffffda RBX: 00007ff9b61b5fa0 RCX: 00007ff9b5f8e969
[ 1196.115315][T16720] RDX: 0000000000000000 RSI: 00002000000000c0 RDI: 0000000000000005
[ 1196.115328][T16720] RBP: 00007ff9b6e0a090 R08: 0000000000000000 R09: 0000000000000000
[ 1196.115341][T16720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1196.115352][T16720] R13: 0000000000000000 R14: 00007ff9b61b5fa0 R15: 00007ffc539dc6d8
[ 1196.115384][T16720]  </TASK>
[ 1196.120900][T16508] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1196.175003][T16718] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1196.422485][T16718] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2725'.
[ 1196.683371][T16730] team_slave_0: entered promiscuous mode
[ 1196.689755][T16730] team_slave_1: entered promiscuous mode
[ 1196.696578][T16730] vlan2: entered promiscuous mode
[ 1196.734973][T16730] team0: entered promiscuous mode
[ 1196.785150][T16730] geneve0: entered promiscuous mode
[ 1197.608480][T16508] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1197.864056][T16508] 8021q: adding VLAN 0 to HW filter on device team0
[ 1197.994578][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1198.001767][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1198.010406][T16748] x_tables: ip_tables: icmp match: only valid for protocol 1
[ 1198.100197][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1198.107439][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1198.196809][T16748] netlink: 'syz.1.2734': attribute type 14 has an invalid length.
[ 1198.412788][T15998] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1198.469257][T16508] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1198.593616][T15998] usb 4-1: Using ep0 maxpacket: 16
[ 1198.601800][T15998] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1198.637191][T15998] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1198.666447][T15998] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1198.717332][T15998] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1198.752415][T15998] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1198.834077][T15998] usb 4-1: config 0 descriptor??
[ 1199.263968][T16751] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1199.284884][T16751] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1199.447893][T16508] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1199.680601][T15998] microsoft 0003:045E:07DA.000E: item 0 4 0 8 parsing failed
[ 1199.735281][T15998] microsoft 0003:045E:07DA.000E: parse failed
[ 1199.755948][T15998] microsoft 0003:045E:07DA.000E: probe with driver microsoft failed with error -22
[ 1201.744786][   T24] usb 4-1: USB disconnect, device number 44
[ 1202.104760][T16508] veth0_vlan: entered promiscuous mode
[ 1202.148852][T16508] veth1_vlan: entered promiscuous mode
[ 1202.331536][T16508] veth0_macvtap: entered promiscuous mode
[ 1202.386312][T16508] veth1_macvtap: entered promiscuous mode
[ 1202.505790][T16508] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1202.568830][T16508] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1202.639947][T16508] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.679715][T16508] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.722940][T16508] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.731693][T16508] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1202.853050][ T5810] usb 4-1: new high-speed USB device number 45 using dummy_hcd
[ 1203.020677][T10623] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1203.023072][ T5810] usb 4-1: Using ep0 maxpacket: 16
[ 1203.054071][T10623] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.061405][ T5810] usb 4-1: config 0 has an invalid interface number: 29 but max is 0
[ 1203.061432][ T5810] usb 4-1: config 0 has no interface number 0
[ 1203.248188][ T5810] usb 4-1: New USB device found, idVendor=050d, idProduct=2102, bcdDevice=70.d0
[ 1203.272429][ T5810] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1203.299781][ T5810] usb 4-1: Product: syz
[ 1203.311055][ T5810] usb 4-1: Manufacturer: syz
[ 1203.332700][ T1088] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1203.341254][ T5810] usb 4-1: SerialNumber: syz
[ 1203.374719][ T1088] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1203.385592][ T5810] usb 4-1: config 0 descriptor??
[ 1203.641561][T16806] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1203.687173][ T5921] usb 4-1: USB disconnect, device number 45
[ 1203.788941][T16824] netlink: 172 bytes leftover after parsing attributes in process `syz.2.2752'.
[ 1203.977032][ T1088] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.187464][ T1088] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.445200][ T1088] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.664440][ T1088] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.928024][ T1088] bridge_slave_1: left allmulticast mode
[ 1204.942364][ T1088] bridge_slave_1: left promiscuous mode
[ 1204.948190][ T1088] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1204.978194][ T1088] bridge_slave_0: left allmulticast mode
[ 1204.994814][ T1088] bridge_slave_0: left promiscuous mode
[ 1205.000608][ T1088] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1207.113524][T16509] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1207.129386][T16509] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1207.137451][T16509] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1207.146386][T16509] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1207.156324][T16509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1207.643067][ T1088] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1207.677211][ T1088] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1207.715858][ T1088] bond0 (unregistering): Released all slaves
[ 1208.235846][T16856] lo speed is unknown, defaulting to 1000
[ 1209.184126][ T5821] Bluetooth: hci4: command tx timeout
[ 1209.983418][T16887] overlayfs: failed to clone upperpath
[ 1210.419018][ T1088] hsr_slave_0: left promiscuous mode
[ 1210.465923][ T1088] hsr_slave_1: left promiscuous mode
[ 1210.497764][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1210.747000][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1210.789037][ T1088] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1210.960559][ T1088] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1211.066111][ T1088] veth1_macvtap: left promiscuous mode
[ 1211.071712][ T1088] veth0_macvtap: left promiscuous mode
[ 1211.095749][ T1088] veth1_vlan: left promiscuous mode
[ 1211.163931][T16900] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1211.563709][ T5821] Bluetooth: hci4: command tx timeout
[ 1211.604355][ T1088] veth0_vlan: left promiscuous mode
[ 1212.151643][T16907] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2773'.
[ 1212.290434][T16913] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1213.710146][ T5821] Bluetooth: hci4: command tx timeout
[ 1215.361674][ T1088] team0 (unregistering): Port device team_slave_1 removed
[ 1215.487406][ T1088] team0 (unregistering): Port device team_slave_0 removed
[ 1215.742816][ T5821] Bluetooth: hci4: command tx timeout
[ 1216.660822][T16890] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2769'.
[ 1217.971097][   T24] Process accounting resumed
[ 1219.236766][T16856] chnl_net:caif_netlink_parms(): no params data found
[ 1219.479412][T16974] overlayfs: failed to clone upperpath
[ 1219.947074][T16856] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1219.989398][T16856] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1220.025564][T16856] bridge_slave_0: entered allmulticast mode
[ 1220.051790][T16856] bridge_slave_0: entered promiscuous mode
[ 1220.109001][T16856] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1220.134896][T16856] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1220.194942][T16856] bridge_slave_1: entered allmulticast mode
[ 1220.241596][T16856] bridge_slave_1: entered promiscuous mode
[ 1220.458364][T16856] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1220.504006][T16856] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1221.290278][T16856] team0: Port device team_slave_0 added
[ 1221.390990][T16856] team0: Port device team_slave_1 added
[ 1222.561667][T16856] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1222.593038][T16856] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1222.665195][T16856] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1222.713822][T16856] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1222.738008][T16856] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1222.802571][T16856] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1223.018940][T16856] hsr_slave_0: entered promiscuous mode
[ 1223.062877][T16856] hsr_slave_1: entered promiscuous mode
[ 1223.089003][T16856] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1223.389202][T16856] Cannot create hsr debugfs directory
[ 1223.543799][T17008] syz.5.2797: attempt to access beyond end of device
[ 1223.543799][T17008] loop11: rw=4096, sector=2, nr_sectors = 2 limit=0
[ 1223.583428][T17008] EXT4-fs (loop11): unable to read superblock
[ 1227.224701][   T24] Process accounting resumed
[ 1228.104969][T17058] overlayfs: failed to clone upperpath
[ 1228.275751][T16856] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1228.422615][T16856] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1228.485454][T16856] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1228.547279][T16856] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1228.549658][T17066] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2811'.
[ 1229.127599][T16856] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1229.387066][T16856] 8021q: adding VLAN 0 to HW filter on device team0
[ 1229.416393][ T6276] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1229.423562][ T6276] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1229.463450][ T6276] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1229.470591][ T6276] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1230.383939][T16856] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1232.262549][T16856] veth0_vlan: entered promiscuous mode
[ 1232.406052][T16856] veth1_vlan: entered promiscuous mode
[ 1232.567710][T16856] veth0_macvtap: entered promiscuous mode
[ 1232.625318][T16856] veth1_macvtap: entered promiscuous mode
[ 1232.682951][T15998] usb 4-1: new high-speed USB device number 46 using dummy_hcd
[ 1232.741232][T16856] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1232.807130][T16856] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1232.852762][T15998] usb 4-1: Using ep0 maxpacket: 16
[ 1232.871938][T16856] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1232.877958][T15998] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1232.900727][T16856] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1232.932009][T16856] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1232.950615][T15998] usb 4-1: unable to read config index 0 descriptor/start: -71
[ 1232.956002][T16856] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1232.958418][T15998] usb 4-1: can't read configurations, error -71
[ 1233.328113][ T4452] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1233.363857][ T4452] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1233.479863][ T4452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1233.508568][ T4452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1233.522453][ T5872] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 1233.601050][T17118] overlayfs: failed to clone upperpath
[ 1233.685627][ T5872] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1233.722408][ T5872] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1233.765294][ T5872] usb 2-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[ 1233.797264][ T5872] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1233.829460][ T5872] usb 2-1: config 0 descriptor??
[ 1234.123668][   T36] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1234.259894][T17110] Invalid logical block size (-2)
[ 1234.270775][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.314242][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.327045][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.352683][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.383153][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.390263][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.408948][   T36] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1234.452559][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.471358][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.507840][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.532469][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.539564][ T5872] hid-rmi 0003:0461:4E72.000F: unknown main item tag 0x0
[ 1234.571955][ T5872] hid-rmi 0003:0461:4E72.000F: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.1-1/input0
[ 1234.646409][ T5872] usb 2-1: USB disconnect, device number 55
[ 1234.693719][   T36] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1234.840164][   T36] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1235.046867][   T36] bridge_slave_1: left allmulticast mode
[ 1235.062409][   T36] bridge_slave_1: left promiscuous mode
[ 1235.068221][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1235.095346][   T36] bridge_slave_0: left allmulticast mode
[ 1235.101041][   T36] bridge_slave_0: left promiscuous mode
[ 1235.122700][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1235.621401][T17125] syz.1.2826: attempt to access beyond end of device
[ 1235.621401][T17125] loop3: rw=4096, sector=2, nr_sectors = 2 limit=0
[ 1235.706595][T17125] EXT4-fs (loop3): unable to read superblock
[ 1236.639162][T16509] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1236.654317][T16509] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1236.683510][T16509] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1236.691744][T16509] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1236.699723][T16509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1237.892473][   T30] audit: type=1400 audit(1748106094.832:257): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17155 comm="syz.1.2834" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1238.782451][T16509] Bluetooth: hci4: command tx timeout
[ 1238.963401][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1239.015398][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1239.030335][T17167] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1239.055193][   T36] bond0 (unregistering): Released all slaves
[ 1239.196970][T17141] lo speed is unknown, defaulting to 1000
[ 1240.734545][   T36] hsr_slave_0: left promiscuous mode
[ 1240.815775][   T36] hsr_slave_1: left promiscuous mode
[ 1240.827513][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1240.862710][T16509] Bluetooth: hci4: command tx timeout
[ 1240.923206][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1241.003626][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1241.049734][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1241.227424][   T36] veth1_macvtap: left promiscuous mode
[ 1241.252633][   T36] veth0_macvtap: left promiscuous mode
[ 1241.271607][   T36] veth1_vlan: left promiscuous mode
[ 1241.286103][   T36] veth0_vlan: left promiscuous mode
[ 1242.341337][T13122] Process accounting resumed
[ 1242.942653][T16509] Bluetooth: hci4: command tx timeout
[ 1243.825485][   T36] team0 (unregistering): Port device team_slave_1 removed
[ 1244.061709][   T36] team0 (unregistering): Port device team_slave_0 removed
[ 1245.025211][T16509] Bluetooth: hci4: command tx timeout
[ 1246.772077][T17234] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1247.658113][T17195] lo speed is unknown, defaulting to 1000
[ 1247.814183][T17245] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1248.082768][T17141] chnl_net:caif_netlink_parms(): no params data found
[ 1249.338364][T17256] netlink: 4560 bytes leftover after parsing attributes in process `syz.5.2857'.
[ 1249.406831][T17256] netlink: 4560 bytes leftover after parsing attributes in process `syz.5.2857'.
[ 1249.442480][T17256] netlink: 69 bytes leftover after parsing attributes in process `syz.5.2857'.
[ 1249.518922][T17256] overlayfs: failed to clone upperpath
[ 1250.166458][T17265] netlink: 'syz.3.2858': attribute type 10 has an invalid length.
[ 1250.174874][T17265] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2858'.
[ 1251.348541][T17141] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1251.375913][T17141] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1251.544143][T17141] bridge_slave_0: entered allmulticast mode
[ 1251.575834][T17141] bridge_slave_0: entered promiscuous mode
[ 1252.228108][T17279] netlink: 'syz.5.2860': attribute type 21 has an invalid length.
[ 1252.422817][T17141] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1252.441983][T17141] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1252.465772][T17141] bridge_slave_1: entered allmulticast mode
[ 1252.485103][T17141] bridge_slave_1: entered promiscuous mode
[ 1252.694067][T17141] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1252.733470][T17141] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1252.896297][T17141] team0: Port device team_slave_0 added
[ 1252.933378][T17141] team0: Port device team_slave_1 added
[ 1252.975419][   T30] audit: type=1326 audit(1748106109.922:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1253.053729][   T30] audit: type=1326 audit(1748106109.942:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1253.082635][T17141] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1253.110600][T17141] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1253.140922][   T30] audit: type=1326 audit(1748106109.952:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1253.215918][   T30] audit: type=1326 audit(1748106109.952:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1253.383906][T17141] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1253.912478][   T30] audit: type=1326 audit(1748106109.952:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1253.942981][T17141] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1253.958999][T17141] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1254.032655][T17141] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1254.049486][   T30] audit: type=1326 audit(1748106109.952:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1254.170755][   T30] audit: type=1326 audit(1748106109.952:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1254.254925][   T30] audit: type=1326 audit(1748106109.952:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1254.332463][   T30] audit: type=1326 audit(1748106109.952:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1254.432395][   T30] audit: type=1326 audit(1748106109.952:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17290 comm="syz.1.2864" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1255.129880][T17141] hsr_slave_0: entered promiscuous mode
[ 1255.154690][T17141] hsr_slave_1: entered promiscuous mode
[ 1255.176747][T17141] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1255.215496][T17141] Cannot create hsr debugfs directory
[ 1256.994640][T17328] netlink: 'syz.3.2870': attribute type 10 has an invalid length.
[ 1257.002792][T17328] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2870'.
[ 1258.489876][T17333] netlink: 'syz.2.2873': attribute type 21 has an invalid length.
[ 1258.678644][T17342] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1259.598496][   T30] kauditd_printk_skb: 8 callbacks suppressed
[ 1259.598525][   T30] audit: type=1400 audit(1748106116.542:276): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17361 comm="syz.3.2881" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1259.663084][T17363] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2882'.
[ 1260.921664][T17141] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1260.984149][T17141] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1261.008605][T17141] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1261.052655][ T5921] usb 2-1: new full-speed USB device number 56 using dummy_hcd
[ 1261.060876][T17141] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1261.228654][ T5921] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1261.253097][ T5921] usb 2-1: not running at top speed; connect to a high speed hub
[ 1261.281622][ T5921] usb 2-1: config 4 has an invalid interface number: 147 but max is 0
[ 1261.292997][ T5921] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1261.612455][ T5921] usb 2-1: config 4 has no interface number 0
[ 1261.624463][ T5921] usb 2-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e
[ 1261.638567][ T5921] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1261.652498][ T5921] usb 2-1: Product: syz
[ 1261.656699][ T5921] usb 2-1: Manufacturer: syz
[ 1261.661322][ T5921] usb 2-1: SerialNumber: syz
[ 1261.736821][T17141] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1261.833212][T17141] 8021q: adding VLAN 0 to HW filter on device team0
[ 1261.875104][ T6276] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1261.882351][ T6276] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1262.176870][ T6276] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1262.184112][ T6276] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1263.160402][T17392] netlink: 'syz.5.2887': attribute type 21 has an invalid length.
[ 1263.795566][ T5921] usb 2-1: Found UVC 0.02 device syz (04f2:b746)
[ 1263.802036][ T5921] usb 2-1: No valid video chain found.
[ 1263.923081][ T5921] usb 2-1: USB disconnect, device number 56
[ 1264.115005][T17141] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1264.150289][T17403] FAULT_INJECTION: forcing a failure.
[ 1264.150289][T17403] name failslab, interval 1, probability 0, space 0, times 0
[ 1264.224431][T17403] CPU: 0 UID: 0 PID: 17403 Comm: syz.1.2890 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1264.224481][T17403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1264.224494][T17403] Call Trace:
[ 1264.224502][T17403]  <TASK>
[ 1264.224512][T17403]  dump_stack_lvl+0x189/0x250
[ 1264.224549][T17403]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1264.224577][T17403]  ? __pfx__printk+0x10/0x10
[ 1264.224612][T17403]  ? __pfx___might_resched+0x10/0x10
[ 1264.224642][T17403]  ? fs_reclaim_acquire+0x7d/0x100
[ 1264.224670][T17403]  should_fail_ex+0x414/0x560
[ 1264.224696][T17403]  should_failslab+0xa8/0x100
[ 1264.224717][T17403]  __kmalloc_noprof+0xcb/0x4f0
[ 1264.224747][T17403]  ? tomoyo_encode+0x28b/0x550
[ 1264.224779][T17403]  tomoyo_encode+0x28b/0x550
[ 1264.224813][T17403]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 1264.224853][T17403]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[ 1264.224886][T17403]  tomoyo_path_number_perm+0x1e8/0x5a0
[ 1264.224912][T17403]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1264.224954][T17403]  ? __lock_acquire+0xaac/0xd20
[ 1264.225003][T17403]  ? __fget_files+0x2a/0x420
[ 1264.225026][T17403]  ? __fget_files+0x3a0/0x420
[ 1264.225044][T17403]  ? __fget_files+0x2a/0x420
[ 1264.225067][T17403]  security_file_ioctl+0xcb/0x2d0
[ 1264.225095][T17403]  __se_sys_ioctl+0x47/0x170
[ 1264.225124][T17403]  do_syscall_64+0xf6/0x210
[ 1264.225151][T17403]  ? clear_bhb_loop+0x60/0xb0
[ 1264.225177][T17403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1264.225197][T17403] RIP: 0033:0x7ff9b5f8e969
[ 1264.225214][T17403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1264.225233][T17403] RSP: 002b:00007ff9b6e0a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1264.225255][T17403] RAX: ffffffffffffffda RBX: 00007ff9b61b5fa0 RCX: 00007ff9b5f8e969
[ 1264.225269][T17403] RDX: 0000200000000600 RSI: 0000000000003b87 RDI: 0000000000000003
[ 1264.225282][T17403] RBP: 00007ff9b6e0a090 R08: 0000000000000000 R09: 0000000000000000
[ 1264.225294][T17403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1264.225306][T17403] R13: 0000000000000000 R14: 00007ff9b61b5fa0 R15: 00007ffc539dc6d8
[ 1264.225339][T17403]  </TASK>
[ 1264.225360][T17403] ERROR: Out of memory at tomoyo_realpath_from_path.
[ 1264.504985][T17407] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1264.775078][T17419] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1265.461379][T17425] lo speed is unknown, defaulting to 1000
[ 1267.116983][T17141] veth0_vlan: entered promiscuous mode
[ 1267.292985][T17141] veth1_vlan: entered promiscuous mode
[ 1267.559286][T17141] veth0_macvtap: entered promiscuous mode
[ 1267.592196][T17141] veth1_macvtap: entered promiscuous mode
[ 1267.614946][T17425] netlink: 'syz.2.2895': attribute type 4 has an invalid length.
[ 1267.710931][T17141] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1267.869327][T17141] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1268.510168][T17141] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.562623][T17141] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.585940][T17453] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2903'.
[ 1268.615122][T17141] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1268.664287][T17141] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1269.008071][T17460] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2905'.
[ 1269.357331][ T6276] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1269.405126][ T6276] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1269.432939][ T5810] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1269.864649][T17475] FAULT_INJECTION: forcing a failure.
[ 1269.864649][T17475] name failslab, interval 1, probability 0, space 0, times 0
[ 1269.877943][T17475] CPU: 0 UID: 0 PID: 17475 Comm: syz.3.2908 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1269.877971][T17475] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1269.877983][T17475] Call Trace:
[ 1269.877991][T17475]  <TASK>
[ 1269.877998][T17475]  dump_stack_lvl+0x189/0x250
[ 1269.878032][T17475]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1269.878077][T17475]  ? __pfx__printk+0x10/0x10
[ 1269.878112][T17475]  ? lock_acquire+0x175/0x360
[ 1269.878149][T17475]  ? __pfx___might_resched+0x10/0x10
[ 1269.878183][T17475]  should_fail_ex+0x414/0x560
[ 1269.878208][T17475]  should_failslab+0xa8/0x100
[ 1269.878228][T17475]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[ 1269.878258][T17475]  ? __alloc_skb+0x112/0x2d0
[ 1269.878279][T17475]  ? __pfx_preempt_schedule+0x10/0x10
[ 1269.878305][T17475]  __alloc_skb+0x112/0x2d0
[ 1269.878332][T17475]  netlink_dump+0x245/0xe70
[ 1269.878364][T17475]  ? __mutex_lock+0x344/0xe80
[ 1269.878385][T17475]  ? rcu_is_watching+0x15/0xb0
[ 1269.878418][T17475]  ? __pfx_netlink_dump+0x10/0x10
[ 1269.878461][T17475]  ? __rcu_read_unlock+0x84/0xe0
[ 1269.878480][T17475]  ? netlink_lookup+0x30/0x200
[ 1269.878506][T17475]  __netlink_dump_start+0x5cb/0x7e0
[ 1269.878537][T17475]  rdma_nl_rcv+0x75d/0x9a0
[ 1269.878577][T17475]  ? __pfx_rdma_nl_rcv+0x10/0x10
[ 1269.878602][T17475]  ? __pfx_nldev_res_get_cq_raw_dumpit+0x10/0x10
[ 1269.878661][T17475]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1269.878683][T17475]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1269.878710][T17475]  netlink_unicast+0x758/0x8d0
[ 1269.878741][T17475]  netlink_sendmsg+0x805/0xb30
[ 1269.878762][T17475]  ? finish_task_switch+0x18b/0x950
[ 1269.878794][T17475]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1269.878825][T17475]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1269.878846][T17475]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1269.878870][T17475]  __sock_sendmsg+0x219/0x270
[ 1269.878892][T17475]  ____sys_sendmsg+0x505/0x830
[ 1269.878922][T17475]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1269.878957][T17475]  ? import_iovec+0x74/0xa0
[ 1269.878987][T17475]  ___sys_sendmsg+0x21f/0x2a0
[ 1269.879015][T17475]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1269.879085][T17475]  ? __x64_sys_sendmsg+0x180/0x260
[ 1269.879114][T17475]  __x64_sys_sendmsg+0x19b/0x260
[ 1269.879138][T17475]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1269.879182][T17475]  ? do_syscall_64+0xba/0x210
[ 1269.879210][T17475]  do_syscall_64+0xf6/0x210
[ 1269.879234][T17475]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[ 1269.879252][T17475]  ? clear_bhb_loop+0x60/0xb0
[ 1269.879275][T17475]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1269.879293][T17475] RIP: 0033:0x7f6a68b8e969
[ 1269.879310][T17475] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1269.879326][T17475] RSP: 002b:00007f6a69a0b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1269.879352][T17475] RAX: ffffffffffffffda RBX: 00007f6a68db6160 RCX: 00007f6a68b8e969
[ 1269.879366][T17475] RDX: 0000000004010010 RSI: 00002000000001c0 RDI: 000000000000000a
[ 1269.879378][T17475] RBP: 00007f6a69a0b090 R08: 0000000000000000 R09: 0000000000000000
[ 1269.879390][T17475] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1269.879400][T17475] R13: 0000000000000000 R14: 00007f6a68db6160 R15: 00007ffe55369898
[ 1269.879430][T17475]  </TASK>
[ 1270.579478][ T5810] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1270.617548][ T9855] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1270.693977][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1270.777967][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1270.788766][T17478] 9pnet_fd: Insufficient options for proto=fd
[ 1270.884908][T17478] netlink: 'syz.5.2909': attribute type 10 has an invalid length.
[ 1270.892900][T17478] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2909'.
[ 1270.988575][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.012898][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.035222][   T30] audit: type=1400 audit(1748106127.982:277): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17480 comm="syz.3.2910" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1273.422514][    C1] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1274.058496][T17520] 9pnet_fd: Insufficient options for proto=fd
[ 1274.112369][T17520] netlink: 'syz.2.2923': attribute type 10 has an invalid length.
[ 1274.120208][T17520] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2923'.
[ 1274.263782][T17524] fuse: Bad value for 'fd'
[ 1274.389776][T15156] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.616678][T15156] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.795797][T15156] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.918621][T15156] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1275.140676][T15156] bridge_slave_1: left allmulticast mode
[ 1275.157242][T15156] bridge_slave_1: left promiscuous mode
[ 1275.170683][T15156] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1275.198844][T15156] bridge_slave_0: left allmulticast mode
[ 1275.215098][T15156] bridge_slave_0: left promiscuous mode
[ 1275.220884][T15156] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1276.467791][ T5821] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1276.478879][ T5821] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1276.489112][ T5821] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1276.497936][ T5821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1276.515304][ T5821] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1277.285575][T15156] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1277.306477][T15156] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1277.340128][T15156] bond0 (unregistering): Released all slaves
[ 1277.612436][T17543] lo speed is unknown, defaulting to 1000
[ 1277.725232][T17555] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2936'.
[ 1278.848399][ T5821] Bluetooth: hci4: command tx timeout
[ 1278.908590][T17565] 9pnet_fd: Insufficient options for proto=fd
[ 1279.104822][T17565] netlink: 'syz.2.2935': attribute type 10 has an invalid length.
[ 1279.112874][T17565] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2935'.
[ 1279.123929][T17572] fuse: Bad value for 'fd'
[ 1279.550604][T17589] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2944'.
[ 1279.694853][T15156] hsr_slave_0: left promiscuous mode
[ 1279.737154][T15156] hsr_slave_1: left promiscuous mode
[ 1279.760864][T15156] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1279.789289][T15156] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1280.036696][T15156] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1280.055619][T15156] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1280.237472][  T883] IPVS: starting estimator thread 0...
[ 1280.442794][T17601] IPVS: using max 25 ests per chain, 60000 per kthread
[ 1280.552980][T15156] veth1_macvtap: left promiscuous mode
[ 1280.682654][T15998] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 1280.763897][T15156] veth0_macvtap: left promiscuous mode
[ 1280.769664][T15156] veth1_vlan: left promiscuous mode
[ 1280.785184][T15156] veth0_vlan: left promiscuous mode
[ 1280.862422][ T5821] Bluetooth: hci4: command tx timeout
[ 1280.864354][T15998] usb 4-1: config 0 has no interfaces?
[ 1280.894194][T17606] overlayfs: missing 'lowerdir'
[ 1280.895802][T15998] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1280.935337][T15998] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1280.963408][T15998] usb 4-1: SerialNumber: syz
[ 1280.990238][T15998] usb 4-1: config 0 descriptor??
[ 1281.031410][T17609] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2949'.
[ 1281.284954][ T5872] usb 4-1: USB disconnect, device number 48
[ 1281.582485][    C1] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1282.104792][T17616] fuse: Bad value for 'fd'
[ 1282.376739][T17623] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2950'.
[ 1282.429883][T17624] netlink: zone id is out of range
[ 1282.442732][T17624] netlink: zone id is out of range
[ 1282.475645][T17624] netlink: zone id is out of range
[ 1282.499567][T17624] netlink: zone id is out of range
[ 1282.515330][T17624] netlink: zone id is out of range
[ 1282.520526][T17624] netlink: zone id is out of range
[ 1282.545962][T17624] netlink: zone id is out of range
[ 1282.547542][T15156] team0 (unregistering): Port device team_slave_1 removed
[ 1282.561373][T17624] netlink: zone id is out of range
[ 1282.571500][T17624] netlink: zone id is out of range
[ 1282.591772][T17624] netlink: zone id is out of range
[ 1282.738451][T15156] team0 (unregistering): Port device team_slave_0 removed
[ 1282.965013][ T5821] Bluetooth: hci4: command tx timeout
[ 1284.284980][T17617] vlan4: entered promiscuous mode
[ 1284.317623][T17617] vlan4: entered allmulticast mode
[ 1284.367683][T17617] hsr_slave_1: entered allmulticast mode
[ 1285.146758][ T5821] Bluetooth: hci4: command tx timeout
[ 1285.969470][T17543] chnl_net:caif_netlink_parms(): no params data found
[ 1286.272443][ T5810] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 1286.454398][ T5810] usb 2-1: Using ep0 maxpacket: 8
[ 1286.477052][ T5810] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1286.509594][ T5810] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1286.570158][ T5810] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1286.636782][ T5810] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1286.647531][T17667] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2964'.
[ 1286.677622][ T5810] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1286.714664][ T5810] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1286.732355][ T5810] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1286.971930][T17543] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1287.002482][T17543] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1287.009753][T17543] bridge_slave_0: entered allmulticast mode
[ 1287.031530][T17653] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1287.044432][T17543] bridge_slave_0: entered promiscuous mode
[ 1287.061057][T17653] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1287.083746][T17543] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1287.090948][T17543] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1287.142727][T17543] bridge_slave_1: entered allmulticast mode
[ 1287.154553][T17543] bridge_slave_1: entered promiscuous mode
[ 1287.181102][T17673] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2960'.
[ 1287.346880][T17543] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1287.393824][T17543] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1287.416129][ T5810] usb 2-1: usb_control_msg returned -71
[ 1287.429202][ T5810] usbtmc 2-1:16.0: can't read capabilities
[ 1287.599316][ T5810] usb 2-1: USB disconnect, device number 57
[ 1287.670717][T17543] team0: Port device team_slave_0 added
[ 1287.718025][T17543] team0: Port device team_slave_1 added
[ 1287.889673][T17543] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1287.932805][T17543] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1288.457911][T17543] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1288.674866][T17543] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1288.681999][T17543] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1289.128455][   T30] audit: type=1326 audit(1748106146.002:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1289.150225][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1289.526041][   T30] audit: type=1326 audit(1748106146.002:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1289.620590][T17543] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1290.447997][T17543] hsr_slave_0: entered promiscuous mode
[ 1290.504374][T17543] hsr_slave_1: entered promiscuous mode
[ 1290.510784][T17543] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1290.528756][ T9855] usb 4-1: new high-speed USB device number 49 using dummy_hcd
[ 1290.556334][   T30] audit: type=1326 audit(1748106146.002:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1290.602417][T17543] Cannot create hsr debugfs directory
[ 1290.648507][   T30] audit: type=1326 audit(1748106146.012:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1290.736244][   T30] audit: type=1326 audit(1748106146.012:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1290.897530][ T9855] usb 4-1: Using ep0 maxpacket: 32
[ 1290.903622][T17704] netlink: 'syz.1.2975': attribute type 4 has an invalid length.
[ 1290.934181][ T9855] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1290.942911][ T9855] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1291.041583][   T30] audit: type=1326 audit(1748106146.012:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1291.470126][ T9855] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1291.488453][   T30] audit: type=1326 audit(1748106146.012:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1291.514705][ T9855] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1291.707228][   T30] audit: type=1326 audit(1748106146.012:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1291.732517][ T9855] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1291.757516][ T9855] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1291.767015][ T9855] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1291.798638][T17717] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2978'.
[ 1291.802426][ T9855] usb 4-1: Product: syz
[ 1291.811729][ T9855] usb 4-1: Manufacturer: syz
[ 1291.819172][   T30] audit: type=1326 audit(1748106146.012:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1291.847111][ T9855] usb 4-1: SerialNumber: syz
[ 1291.873496][ T9855] usb 4-1: config 0 descriptor??
[ 1291.891777][ T9855] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1291.934313][ T9855] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1292.062595][   T30] audit: type=1326 audit(1748106146.012:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17688 comm="syz.1.2970" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff9b5f8e969 code=0x7ffc0000
[ 1292.102125][ T9855] usb 4-1: USB disconnect, device number 49
[ 1292.144701][ T9855] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[ 1292.187186][ T5921] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 1292.397192][T17729] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2981'.
[ 1293.032433][ T5921] usb 2-1: Using ep0 maxpacket: 32
[ 1293.063590][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1293.093824][ T5921] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1293.118694][ T5921] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1293.138262][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1293.193305][ T5921] usb 2-1: config 0 descriptor??
[ 1293.209781][ T5921] hub 2-1:0.0: USB hub found
[ 1294.052113][T17716] can0: slcan on ttyS3.
[ 1294.323474][T17742] can0 (unregistered): slcan off ttyS3.
[ 1294.464038][ T5921] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1294.490529][ T5921] usbhid 2-1:0.0: can't add hid device: -71
[ 1294.502459][ T5921] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1294.719239][T17753] FAULT_INJECTION: forcing a failure.
[ 1294.719239][T17753] name failslab, interval 1, probability 0, space 0, times 0
[ 1294.732801][T17753] CPU: 0 UID: 0 PID: 17753 Comm: syz.3.2987 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1294.732829][T17753] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1294.732842][T17753] Call Trace:
[ 1294.732850][T17753]  <TASK>
[ 1294.732859][T17753]  dump_stack_lvl+0x189/0x250
[ 1294.732894][T17753]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1294.732920][T17753]  ? __pfx__printk+0x10/0x10
[ 1294.732958][T17753]  ? __pfx___might_resched+0x10/0x10
[ 1294.732993][T17753]  should_fail_ex+0x414/0x560
[ 1294.733019][T17753]  ? seq_read_iter+0x1fd/0xe10
[ 1294.733043][T17753]  should_failslab+0xa8/0x100
[ 1294.733064][T17753]  __kvmalloc_node_noprof+0x168/0x5e0
[ 1294.733084][T17753]  ? seq_read_iter+0x1fd/0xe10
[ 1294.733115][T17753]  seq_read_iter+0x1fd/0xe10
[ 1294.733158][T17753]  ? __asan_memset+0x22/0x50
[ 1294.733190][T17753]  seq_read+0x2e2/0x3d0
[ 1294.733225][T17753]  ? __pfx_seq_read+0x10/0x10
[ 1294.733265][T17753]  ? rw_verify_area+0x258/0x650
[ 1294.733291][T17753]  ? __pfx_seq_read+0x10/0x10
[ 1294.733318][T17753]  vfs_read+0x200/0x980
[ 1294.733369][T17753]  ? __pfx___mutex_lock+0x10/0x10
[ 1294.733396][T17753]  ? __pfx_vfs_read+0x10/0x10
[ 1294.733426][T17753]  ? __fget_files+0x2a/0x420
[ 1294.733450][T17753]  ? __fget_files+0x3a0/0x420
[ 1294.733468][T17753]  ? __fget_files+0x2a/0x420
[ 1294.733497][T17753]  ksys_read+0x145/0x250
[ 1294.733523][T17753]  ? rcu_is_watching+0x15/0xb0
[ 1294.733555][T17753]  ? __pfx_ksys_read+0x10/0x10
[ 1294.733588][T17753]  ? do_syscall_64+0xba/0x210
[ 1294.733619][T17753]  do_syscall_64+0xf6/0x210
[ 1294.733646][T17753]  ? clear_bhb_loop+0x60/0xb0
[ 1294.733671][T17753]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1294.733691][T17753] RIP: 0033:0x7f6a68b8e969
[ 1294.733709][T17753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1294.733727][T17753] RSP: 002b:00007f6a69a18038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1294.733747][T17753] RAX: ffffffffffffffda RBX: 00007f6a68db6160 RCX: 00007f6a68b8e969
[ 1294.733762][T17753] RDX: 0000000000002020 RSI: 0000200000005b40 RDI: 0000000000000008
[ 1294.733775][T17753] RBP: 00007f6a69a18090 R08: 0000000000000000 R09: 0000000000000000
[ 1294.733787][T17753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1294.733799][T17753] R13: 0000000000000000 R14: 00007f6a68db6160 R15: 00007ffe55369898
[ 1294.733833][T17753]  </TASK>
[ 1295.694075][ T5921] usb 2-1: USB disconnect, device number 58
[ 1295.906283][   T30] kauditd_printk_skb: 37 callbacks suppressed
[ 1295.906303][   T30] audit: type=1400 audit(1748106152.842:325): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17758 comm="syz.3.2990" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1296.039429][T17543] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1296.062867][   T30] audit: type=1400 audit(1748106152.882:326): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17758 comm="syz.3.2990" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1296.124113][T17543] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1296.151242][   T30] audit: type=1400 audit(1748106152.882:327): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=17758 comm="syz.3.2990" saddr=100.1.1.1 src=20004 daddr=172.20.20.170 dest=20002
[ 1296.208553][T17543] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1296.241328][T17543] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1296.358679][   T30] audit: type=1326 audit(1748106153.302:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17771 comm="syz.3.2995" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6a68b8e969 code=0x0
[ 1296.722135][T17776] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1297.449433][T17543] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1298.003218][T17543] 8021q: adding VLAN 0 to HW filter on device team0
[ 1298.072274][ T6276] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1298.079760][ T6276] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1298.167492][ T6276] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1298.174646][ T6276] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1298.222607][    C1] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1300.544693][T17543] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1300.552422][T17818] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1301.053930][T17825] sctp: [Deprecated]: syz.2.3010 (pid 17825) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1301.053930][T17825] Use struct sctp_sack_info instead
[ 1301.077486][T17825] sctp: [Deprecated]: syz.2.3010 (pid 17825) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1301.077486][T17825] Use struct sctp_sack_info instead
[ 1301.995867][   T24] usb 4-1: new high-speed USB device number 50 using dummy_hcd
[ 1302.182886][   T24] usb 4-1: Using ep0 maxpacket: 32
[ 1302.192895][   T24] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1302.208314][   T24] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1302.241834][   T24] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1302.286140][   T24] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1302.315860][   T24] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1302.339369][   T24] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1302.359304][   T24] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1302.386424][   T24] usb 4-1: Product: syz
[ 1302.400935][   T24] usb 4-1: Manufacturer: syz
[ 1302.417948][   T24] usb 4-1: SerialNumber: syz
[ 1302.442230][   T24] usb 4-1: config 0 descriptor??
[ 1302.463740][   T24] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1302.484255][   T24] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1302.567621][T17543] veth0_vlan: entered promiscuous mode
[ 1302.603607][T17543] veth1_vlan: entered promiscuous mode
[ 1302.673321][T17826] loop9: detected capacity change from 0 to 7
[ 1302.706770][T17826] Dev loop9: unable to read RDB block 7
[ 1302.726834][T17826]  loop9: AHDI p1
[ 1302.733842][T17543] veth0_macvtap: entered promiscuous mode
[ 1302.747599][T17826] loop9: partition table partially beyond EOD, truncated
[ 1302.776093][T17543] veth1_macvtap: entered promiscuous mode
[ 1302.777283][ T5872] usb 4-1: USB disconnect, device number 50
[ 1302.832055][ T5872] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[ 1302.851535][T17543] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1302.895093][T17543] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1302.928815][T17543] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.950891][T17543] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.973301][T17543] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.995047][T17543] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1303.905588][T15998] Process accounting resumed
[ 1304.291363][T17868] net_ratelimit: 11 callbacks suppressed
[ 1304.291387][T17868] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1304.776540][T17874] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1305.524088][ T6276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1305.532112][ T6276] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1305.733408][ T4452] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1305.758755][ T4452] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1308.599072][ T1140] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.891282][ T1140] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.134217][ T1140] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.341169][ T1140] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1309.564635][ T1140] bridge_slave_1: left allmulticast mode
[ 1309.570331][ T1140] bridge_slave_1: left promiscuous mode
[ 1309.595914][ T1140] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1309.623478][ T1140] bridge_slave_0: left allmulticast mode
[ 1309.642344][ T1140] bridge_slave_0: left promiscuous mode
[ 1309.648121][ T1140] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1312.019014][T17949] netlink: 52 bytes leftover after parsing attributes in process `syz.5.3036'.
[ 1312.973724][T16509] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1312.984377][T16509] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1312.993549][T16509] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1313.001610][T16509] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1313.010154][T16509] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1313.258509][ T1140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1313.296306][ T1140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1313.327530][ T1140] bond0 (unregistering): Released all slaves
[ 1313.364656][T17928] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1313.524417][T17948] netlink: 60 bytes leftover after parsing attributes in process `syz.5.3036'.
[ 1314.229822][T17970] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1314.350000][T17973] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1314.568900][T17954] lo speed is unknown, defaulting to 1000
[ 1314.920325][ T1140] hsr_slave_0: left promiscuous mode
[ 1314.940756][ T1140] hsr_slave_1: left promiscuous mode
[ 1314.971304][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1314.991274][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1315.015881][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1315.037833][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1315.103959][T16509] Bluetooth: hci4: command tx timeout
[ 1315.137465][ T1140] veth1_macvtap: left promiscuous mode
[ 1315.154815][ T1140] veth0_macvtap: left promiscuous mode
[ 1315.206603][ T1140] veth1_vlan: left promiscuous mode
[ 1315.217750][ T1140] veth0_vlan: left promiscuous mode
[ 1315.321653][ T5872] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[ 1315.349842][ T5872] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1315.716515][T17994] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3048'.
[ 1316.945080][T17978] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1317.211607][T16509] Bluetooth: hci4: command tx timeout
[ 1318.215004][ T1140] team0 (unregistering): Port device team_slave_1 removed
[ 1318.320211][ T1140] team0 (unregistering): Port device team_slave_0 removed
[ 1319.278330][T16509] Bluetooth: hci4: command tx timeout
[ 1319.760922][T18026] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1319.848207][T18028] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1320.468937][  T883] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 1321.016143][  T883] usb 4-1: no configurations
[ 1321.040764][T18040] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[ 1321.071171][  T883] usb 4-1: can't read configurations, error -22
[ 1321.071206][T18040] overlayfs: missing 'lowerdir'
[ 1321.243001][  T883] usb 4-1: new high-speed USB device number 52 using dummy_hcd
[ 1321.338566][T18047] usb usb8: usbfs: process 18047 (syz.1.3060) did not claim interface 0 before use
[ 1321.348507][T16509] Bluetooth: hci4: command tx timeout
[ 1321.383520][T17954] chnl_net:caif_netlink_parms(): no params data found
[ 1321.392681][T18049] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3061'.
[ 1321.432373][  T883] usb 4-1: no configurations
[ 1321.437028][  T883] usb 4-1: can't read configurations, error -22
[ 1321.472621][  T883] usb usb4-port1: attempt power cycle
[ 1322.057278][  T883] usb 4-1: new high-speed USB device number 53 using dummy_hcd
[ 1322.670414][  T883] usb 4-1: no configurations
[ 1322.812479][  T883] usb 4-1: can't read configurations, error -22
[ 1322.972616][  T883] usb 4-1: new high-speed USB device number 54 using dummy_hcd
[ 1322.999215][T18063] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1323.142523][T17954] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1323.150015][T17954] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1323.200279][T17954] bridge_slave_0: entered allmulticast mode
[ 1323.212018][  T883] usb 4-1: device descriptor read/8, error -71
[ 1323.227862][T17954] bridge_slave_0: entered promiscuous mode
[ 1323.275592][T17954] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1323.293158][T17954] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1323.335508][T17954] bridge_slave_1: entered allmulticast mode
[ 1323.342897][  T883] usb usb4-port1: unable to enumerate USB device
[ 1323.370386][T17954] bridge_slave_1: entered promiscuous mode
[ 1323.445130][T18077] 9pnet_fd: Insufficient options for proto=fd
[ 1323.490312][T18077] netlink: 'syz.5.3068': attribute type 10 has an invalid length.
[ 1323.498274][T18077] netlink: 40 bytes leftover after parsing attributes in process `syz.5.3068'.
[ 1323.543181][T17954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1323.593921][T17954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1323.771416][T17954] team0: Port device team_slave_0 added
[ 1323.790633][T17954] team0: Port device team_slave_1 added
[ 1323.929148][T17954] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1323.955186][T17954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1323.981139][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1324.024018][T17954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1324.053940][T17954] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1324.070005][T17954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1324.096147][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1324.173841][T17954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1324.600660][T18088] 9pnet_fd: Insufficient options for proto=fd
[ 1325.011189][T17954] hsr_slave_0: entered promiscuous mode
[ 1325.036065][T17954] hsr_slave_1: entered promiscuous mode
[ 1325.064612][T17954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1325.099410][T17954] Cannot create hsr debugfs directory
[ 1326.859120][T18109] tipc: Started in network mode
[ 1326.864377][T18109] tipc: Node identity ac14140f, cluster identity 4711
[ 1326.871345][T18109] tipc: New replicast peer: 255.255.255.255
[ 1326.877815][T18109] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1327.377168][T18119] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3080'.
[ 1327.405202][T18119] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3080'.
[ 1327.711295][T18130] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1327.994317][T15998] tipc: Node number set to 2886997007
[ 1328.610637][T18143] netlink: 140 bytes leftover after parsing attributes in process `syz.1.3087'.
[ 1328.638026][T18143] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3087'.
[ 1328.663880][T18143] netlink: 'syz.1.3087': attribute type 6 has an invalid length.
[ 1328.720912][T18143] netlink: 'syz.1.3087': attribute type 5 has an invalid length.
[ 1328.730750][T17954] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1328.757694][T18143] netlink: 'syz.1.3087': attribute type 4 has an invalid length.
[ 1328.829979][T17954] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1329.046454][T17954] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1329.152380][T17954] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1329.811914][T18159] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1332.137439][T17954] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1332.144402][    C1] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[ 1332.229656][ T5872] Process accounting resumed
[ 1332.337403][T17954] 8021q: adding VLAN 0 to HW filter on device team0
[ 1332.425058][T10623] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1332.432244][T10623] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1332.685343][T10623] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1332.692669][T10623] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1333.764163][T18195] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1333.813995][T18197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3100'.
[ 1335.942888][T18216] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1336.198427][T18224] overlayfs: failed to resolve './file0': -2
[ 1336.352508][ T5810] usb 2-1: new high-speed USB device number 59 using dummy_hcd
[ 1336.650944][T15998] Process accounting resumed
[ 1337.122416][ T5810] usb 2-1: Using ep0 maxpacket: 32
[ 1337.244883][T17954] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1337.290630][ T5810] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[ 1337.302385][ T5810] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1337.332445][ T5810] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1337.352411][ T5810] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1337.383204][ T5810] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1337.426758][ T5810] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1337.465904][ T5810] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1337.502460][ T5810] usb 2-1: Product: syz
[ 1337.512889][ T5810] usb 2-1: Manufacturer: syz
[ 1337.517544][ T5810] usb 2-1: SerialNumber: syz
[ 1337.544154][ T5810] usb 2-1: config 0 descriptor??
[ 1337.585727][ T5810] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1337.618153][ T5810] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1337.803223][T18220] loop9: detected capacity change from 0 to 7
[ 1337.811822][T18254] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1338.098226][T18220] Dev loop9: unable to read RDB block 7
[ 1338.113169][T18220]  loop9: AHDI p1
[ 1338.117503][T18220] loop9: partition table partially beyond EOD, truncated
[ 1338.173252][ T5921] usb 2-1: USB disconnect, device number 59
[ 1338.191520][ T5921] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1339.065522][T17954] veth0_vlan: entered promiscuous mode
[ 1339.128705][T17954] veth1_vlan: entered promiscuous mode
[ 1339.988386][T18277] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[ 1340.072851][T17954] veth0_macvtap: entered promiscuous mode
[ 1340.225339][T17954] veth1_macvtap: entered promiscuous mode
[ 1340.291410][T17954] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1340.294993][T18283] overlayfs: failed to resolve './file0': -2
[ 1340.317677][T17954] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1340.411565][T17954] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1340.454183][T17954] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1340.482332][T17954] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1340.491094][T17954] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1340.802477][T12882] usb 2-1: new high-speed USB device number 60 using dummy_hcd
[ 1340.875034][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1340.902353][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1340.982474][T10623] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1340.992710][T12882] usb 2-1: Using ep0 maxpacket: 32
[ 1341.011513][T12882] usb 2-1: config index 0 descriptor too short (expected 156, got 27)
[ 1341.026399][T10623] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1341.031091][T12882] usb 2-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1341.085759][T12882] usb 2-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1341.132942][T12882] usb 2-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1341.182416][T12882] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1341.206175][T12882] usb 2-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1341.215650][T12882] usb 2-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1341.248557][T12882] usb 2-1: Product: syz
[ 1341.260452][T18290] netlink: 'syz.5.3119': attribute type 21 has an invalid length.
[ 1341.268899][T12882] usb 2-1: Manufacturer: syz
[ 1341.268921][T12882] usb 2-1: SerialNumber: syz
[ 1341.287922][T12882] usb 2-1: config 0 descriptor??
[ 1341.500800][T12882] ldusb 2-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1341.552610][T12882] ldusb 2-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1341.742599][ T5810] usb 2-1: USB disconnect, device number 60
[ 1341.762970][ T5810] ldusb 2-1:0.0: LD USB Device #0 now disconnected
[ 1341.945891][T10623] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.134375][T10623] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.398853][T10623] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.527169][T10623] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1342.757946][T10623] bridge_slave_1: left allmulticast mode
[ 1342.772524][T10623] bridge_slave_1: left promiscuous mode
[ 1342.778286][T10623] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1342.805096][T10623] bridge_slave_0: left allmulticast mode
[ 1342.811807][T10623] bridge_slave_0: left promiscuous mode
[ 1342.822516][T10623] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1343.572442][   T30] audit: type=1400 audit(1748106200.512:329): lsm=SMACK fn=smack_socket_sock_rcv_skb action=denied subject="?" object="_" requested=w pid=18304 comm="syz.1.3123" saddr=100.1.1.1 daddr=172.20.20.170 dest=20002
[ 1343.615939][T18307] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1344.155867][T10623] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1344.212149][T10623] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1344.275767][T10623] bond0 (unregistering): Released all slaves
[ 1344.450644][T18314] openvswitch: netlink: Key 22 has unexpected len 2 expected 4
[ 1344.711483][T18322] overlayfs: failed to resolve './file0': -2
[ 1344.774033][ T5821] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1344.793636][ T5821] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1344.862575][ T5821] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1344.880062][ T5821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1344.887374][T12882] usb 4-1: new high-speed USB device number 55 using dummy_hcd
[ 1344.895742][ T5821] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1345.015637][T18325] lo speed is unknown, defaulting to 1000
[ 1345.102622][T12882] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1345.136735][T12882] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1345.180868][T12882] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1345.200711][T12882] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1345.220945][T12882] usb 4-1: SerialNumber: syz
[ 1345.257456][T18332] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1345.419517][T10623] hsr_slave_0: left promiscuous mode
[ 1345.443898][T10623] hsr_slave_1: left promiscuous mode
[ 1345.451451][T12882] usb 4-1: 0:2 : does not exist
[ 1345.473091][T10623] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1345.480535][T10623] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1345.482571][T12882] usb 4-1: unit 255 not found!
[ 1345.535557][T10623] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1345.562610][T10623] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1345.584761][T12882] usb 4-1: USB disconnect, device number 55
[ 1345.668799][T10623] veth1_macvtap: left promiscuous mode
[ 1345.692371][T10623] veth0_macvtap: left promiscuous mode
[ 1345.708312][T10623] veth1_vlan: left promiscuous mode
[ 1345.738644][T10623] veth0_vlan: left promiscuous mode
[ 1346.070203][   T30] audit: type=1326 audit(1748106203.002:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.172388][   T30] audit: type=1326 audit(1748106203.002:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.275941][   T30] audit: type=1326 audit(1748106203.002:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.379087][   T30] audit: type=1326 audit(1748106203.002:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.507990][   T30] audit: type=1326 audit(1748106203.002:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.609278][   T30] audit: type=1326 audit(1748106203.042:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.727470][   T30] audit: type=1326 audit(1748106203.042:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.807031][   T30] audit: type=1326 audit(1748106203.042:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.870476][   T30] audit: type=1326 audit(1748106203.052:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18338 comm="syz.2.3135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffa3f38e969 code=0x7ffc0000
[ 1346.943644][T16509] Bluetooth: hci4: command tx timeout
[ 1347.232945][T18359] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3140'.
[ 1347.525589][T18362] overlayfs: failed to clone upperpath
[ 1349.058855][T16509] Bluetooth: hci4: command tx timeout
[ 1350.238654][T18393] FAULT_INJECTION: forcing a failure.
[ 1350.238654][T18393] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1350.301887][T18393] CPU: 1 UID: 0 PID: 18393 Comm: syz.1.3148 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1350.301918][T18393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1350.301932][T18393] Call Trace:
[ 1350.301941][T18393]  <TASK>
[ 1350.301951][T18393]  dump_stack_lvl+0x189/0x250
[ 1350.301988][T18393]  ? __lock_acquire+0xaac/0xd20
[ 1350.302019][T18393]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1350.302046][T18393]  ? __pfx__printk+0x10/0x10
[ 1350.302077][T18393]  ? __might_fault+0xb0/0x130
[ 1350.302120][T18393]  should_fail_ex+0x414/0x560
[ 1350.302147][T18393]  _copy_from_user+0x2d/0xb0
[ 1350.302187][T18393]  ___sys_sendmsg+0x158/0x2a0
[ 1350.302216][T18393]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1350.302280][T18393]  ? __fget_files+0x2a/0x420
[ 1350.302298][T18393]  ? __fget_files+0x3a0/0x420
[ 1350.302326][T18393]  __x64_sys_sendmsg+0x19b/0x260
[ 1350.302354][T18393]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1350.302397][T18393]  ? do_syscall_64+0xba/0x210
[ 1350.302425][T18393]  do_syscall_64+0xf6/0x210
[ 1350.302450][T18393]  ? clear_bhb_loop+0x60/0xb0
[ 1350.302473][T18393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1350.302505][T18393] RIP: 0033:0x7ff9b5f8e969
[ 1350.302522][T18393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1350.302539][T18393] RSP: 002b:00007ff9b6e0a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1350.302560][T18393] RAX: ffffffffffffffda RBX: 00007ff9b61b5fa0 RCX: 00007ff9b5f8e969
[ 1350.302574][T18393] RDX: 0000000000000000 RSI: 00002000000037c0 RDI: 0000000000000003
[ 1350.302586][T18393] RBP: 00007ff9b6e0a090 R08: 0000000000000000 R09: 0000000000000000
[ 1350.302598][T18393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1350.302609][T18393] R13: 0000000000000000 R14: 00007ff9b61b5fa0 R15: 00007ffc539dc6d8
[ 1350.302639][T18393]  </TASK>
[ 1351.042681][T10623] team0 (unregistering): Port device team_slave_1 removed
[ 1351.102375][T16509] Bluetooth: hci4: command tx timeout
[ 1351.176910][T10623] team0 (unregistering): Port device team_slave_0 removed
[ 1351.207168][T18399] FAULT_INJECTION: forcing a failure.
[ 1351.207168][T18399] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1351.259401][T18399] CPU: 0 UID: 0 PID: 18399 Comm: syz.1.3150 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1351.259431][T18399] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1351.259444][T18399] Call Trace:
[ 1351.259452][T18399]  <TASK>
[ 1351.259461][T18399]  dump_stack_lvl+0x189/0x250
[ 1351.259489][T18399]  ? __lock_acquire+0xaac/0xd20
[ 1351.259518][T18399]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1351.259543][T18399]  ? __pfx__printk+0x10/0x10
[ 1351.259572][T18399]  ? __might_fault+0xb0/0x130
[ 1351.259612][T18399]  should_fail_ex+0x414/0x560
[ 1351.259637][T18399]  _copy_from_iter+0x1db/0x15a0
[ 1351.259671][T18399]  ? policy_nodemask+0x27c/0x720
[ 1351.259699][T18399]  ? __pfx__copy_from_iter+0x10/0x10
[ 1351.259729][T18399]  ? set_page_refcounted+0xa0/0x1e0
[ 1351.259760][T18399]  ? page_copy_sane+0x4e/0x280
[ 1351.259785][T18399]  copy_page_from_iter+0x7b/0x100
[ 1351.259812][T18399]  tun_get_user+0x1b13/0x3c20
[ 1351.259844][T18399]  ? tun_get_user+0x687/0x3c20
[ 1351.259885][T18399]  ? __pfx_tun_get_user+0x10/0x10
[ 1351.259921][T18399]  ? __lock_acquire+0xaac/0xd20
[ 1351.259961][T18399]  ? ref_tracker_alloc+0x318/0x460
[ 1351.259985][T18399]  ? __pfx_ref_tracker_alloc+0x10/0x10
[ 1351.260012][T18399]  ? tun_get+0x1c/0x2f0
[ 1351.260044][T18399]  ? tun_get+0x1c/0x2f0
[ 1351.260069][T18399]  ? tun_get+0x1c/0x2f0
[ 1351.260100][T18399]  tun_chr_write_iter+0x113/0x200
[ 1351.260140][T18399]  vfs_write+0x54b/0xa90
[ 1351.260169][T18399]  ? __pfx_tun_chr_write_iter+0x10/0x10
[ 1351.260195][T18399]  ? __pfx_vfs_write+0x10/0x10
[ 1351.260230][T18399]  ? __fget_files+0x2a/0x420
[ 1351.260255][T18399]  ksys_write+0x145/0x250
[ 1351.260278][T18399]  ? rcu_is_watching+0x15/0xb0
[ 1351.260306][T18399]  ? __pfx_ksys_write+0x10/0x10
[ 1351.260334][T18399]  ? do_syscall_64+0xba/0x210
[ 1351.260360][T18399]  do_syscall_64+0xf6/0x210
[ 1351.260383][T18399]  ? clear_bhb_loop+0x60/0xb0
[ 1351.260405][T18399]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1351.260423][T18399] RIP: 0033:0x7ff9b5f8d41f
[ 1351.260442][T18399] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[ 1351.260458][T18399] RSP: 002b:00007ff9b6e0a000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1351.260477][T18399] RAX: ffffffffffffffda RBX: 00007ff9b61b5fa0 RCX: 00007ff9b5f8d41f
[ 1351.260491][T18399] RDX: 000000000000004e RSI: 0000200000000040 RDI: 00000000000000c8
[ 1351.260502][T18399] RBP: 00007ff9b6e0a090 R08: 0000000000000000 R09: 0000000000000000
[ 1351.260513][T18399] R10: 000000000000004e R11: 0000000000000293 R12: 0000000000000001
[ 1351.260524][T18399] R13: 0000000000000000 R14: 00007ff9b61b5fa0 R15: 00007ffc539dc6d8
[ 1351.260552][T18399]  </TASK>
[ 1352.706323][T18406] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1353.461211][T16509] Bluetooth: hci4: command tx timeout
[ 1354.565758][T18420] 9pnet_fd: Insufficient options for proto=fd
[ 1354.594146][T18420] netlink: 'syz.2.3157': attribute type 10 has an invalid length.
[ 1354.601973][T18420] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3157'.
[ 1355.608895][T18325] chnl_net:caif_netlink_parms(): no params data found
[ 1357.355557][T15998] usb 4-1: new high-speed USB device number 56 using dummy_hcd
[ 1357.942337][T15998] usb 4-1: Using ep0 maxpacket: 32
[ 1357.949810][T15998] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1357.984751][T15998] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1358.072895][T15998] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1358.096930][T15998] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1358.122331][T15998] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1358.144059][T15998] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1358.162374][T15998] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1358.171158][T15998] usb 4-1: Product: syz
[ 1358.182307][T15998] usb 4-1: Manufacturer: syz
[ 1358.196187][T15998] usb 4-1: SerialNumber: syz
[ 1358.215243][T15998] usb 4-1: config 0 descriptor??
[ 1358.230720][T15998] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1358.273921][T15998] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1358.323664][T18463] overlayfs: failed to clone upperpath
[ 1358.339604][T18325] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1358.355390][T18325] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1358.384933][T18325] bridge_slave_0: entered allmulticast mode
[ 1358.412992][T18325] bridge_slave_0: entered promiscuous mode
[ 1358.443961][T13122] usb 4-1: USB disconnect, device number 56
[ 1358.461054][T18325] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1358.490010][T13122] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[ 1358.496937][T18325] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1358.526075][T18325] bridge_slave_1: entered allmulticast mode
[ 1358.528669][T18465] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3166'.
[ 1358.544325][T18325] bridge_slave_1: entered promiscuous mode
[ 1358.815865][T18325] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1358.849107][T18325] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1359.660765][T18325] team0: Port device team_slave_0 added
[ 1359.705411][T18325] team0: Port device team_slave_1 added
[ 1359.748565][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.756356][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.764036][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.771321][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.778717][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.786145][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.793593][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.802145][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.809692][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1359.817309][    C1] IPv4: Oversized IP packet from 172.20.20.170
[ 1360.026404][T18325] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1360.052402][T18325] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1360.107885][T18325] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1360.170823][T18325] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1360.193013][T18325] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1360.252561][T18325] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1360.912528][T18325] hsr_slave_0: entered promiscuous mode
[ 1361.123081][T18325] hsr_slave_1: entered promiscuous mode
[ 1361.165522][T18325] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1361.186887][T18325] Cannot create hsr debugfs directory
[ 1361.545082][T18496] overlayfs: failed to clone upperpath
[ 1363.409163][T18521] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3182'.
[ 1363.459210][T18521] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3182'.
[ 1363.558357][T18521] erspan0: entered promiscuous mode
[ 1363.615730][T18521] batadv_slave_1: entered promiscuous mode
[ 1365.113877][T18546] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3187'.
[ 1365.325221][T18325] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1365.442089][T18325] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1365.459085][T18549] overlayfs: failed to clone upperpath
[ 1365.516932][T18325] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1365.666305][T18325] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1365.864651][T13122] usb 2-1: new high-speed USB device number 61 using dummy_hcd
[ 1366.594825][T13122] usb 2-1: Using ep0 maxpacket: 8
[ 1366.611136][T13122] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1366.676340][T13122] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1366.722502][T13122] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1366.771643][T13122] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1366.822519][T13122] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1366.912336][T13122] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1366.921430][T13122] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1367.057990][T18325] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1367.139911][T18325] 8021q: adding VLAN 0 to HW filter on device team0
[ 1367.196973][T18552] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1367.236100][   T72] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1367.243328][   T72] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1367.251675][T18552] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1367.284259][   T72] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1367.291552][   T72] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1367.407405][T18575] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3189'.
[ 1368.139593][   T30] kauditd_printk_skb: 17 callbacks suppressed
[ 1368.139611][   T30] audit: type=1800 audit(1748106225.082:356): pid=18580 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.3196" name="file1" dev="tmpfs" ino=3965 res=0 errno=0
[ 1368.205406][T13122] usb 2-1: usb_control_msg returned -71
[ 1368.211035][T13122] usbtmc 2-1:16.0: can't read capabilities
[ 1368.275276][T13122] usb 2-1: USB disconnect, device number 61
[ 1368.675161][T18597] input: syz1 as /devices/virtual/input/input88
[ 1369.262765][T18596] netlink: 'syz.2.3199': attribute type 8 has an invalid length.
[ 1369.465843][T18607] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1370.593455][T18325] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1371.320120][T18620] lo speed is unknown, defaulting to 1000
[ 1372.655851][ T5810] usb 4-1: new high-speed USB device number 57 using dummy_hcd
[ 1372.722499][T12882] usb 2-1: new high-speed USB device number 62 using dummy_hcd
[ 1372.852452][ T5810] usb 4-1: Using ep0 maxpacket: 32
[ 1373.154710][T12882] usb 2-1: config 220 has an invalid interface number: 76 but max is 2
[ 1373.173861][T12882] usb 2-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1373.174014][ T5810] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1373.195859][T12882] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1373.218412][T12882] usb 2-1: config 220 has no interface number 2
[ 1373.236811][ T5810] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1373.252568][T12882] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1373.288268][ T5810] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1373.331462][T12882] usb 2-1: config 220 interface 0 has no altsetting 0
[ 1373.353285][ T5810] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1373.366753][T12882] usb 2-1: config 220 interface 76 has no altsetting 0
[ 1373.387031][T12882] usb 2-1: config 220 interface 1 has no altsetting 0
[ 1373.402915][ T5810] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1373.425531][ T5810] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1373.447539][ T5810] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1373.485097][ T5810] usb 4-1: Product: syz
[ 1373.494468][ T5810] usb 4-1: Manufacturer: syz
[ 1373.499144][ T5810] usb 4-1: SerialNumber: syz
[ 1373.517587][T12882] usb 2-1: string descriptor 0 read error: -71
[ 1373.533134][T12882] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1373.545508][ T5810] usb 4-1: config 0 descriptor??
[ 1373.564571][ T5810] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1373.574114][T12882] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1373.600652][ T5810] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1373.611015][T12882] usb 2-1: can't set config #220, error -71
[ 1373.632166][T12882] usb 2-1: USB disconnect, device number 62
[ 1374.495488][ T5810] usb 4-1: USB disconnect, device number 57
[ 1374.514235][T18325] veth0_vlan: entered promiscuous mode
[ 1374.524294][ T5810] ldusb 4-1:0.0: LD USB Device #0 now disconnected
[ 1374.563072][T18325] veth1_vlan: entered promiscuous mode
[ 1374.692772][T18325] veth0_macvtap: entered promiscuous mode
[ 1374.761093][T18325] veth1_macvtap: entered promiscuous mode
[ 1374.829728][T18325] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1374.877958][T18325] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1374.900465][T18662] net_ratelimit: 22 callbacks suppressed
[ 1374.900486][T18662] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1375.045680][T18325] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1375.071317][T18325] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1375.119106][T18325] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1375.500565][T18325] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1375.908575][T18674] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1376.018859][ T6276] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1376.029309][T18676] vimc link validate: Sensor B:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 1:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1376.064146][ T6276] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1376.180679][   T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1376.220015][   T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1379.371192][T13122] Process accounting resumed
[ 1379.591154][T10623] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1380.046983][T10623] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1380.325748][T10623] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1380.514440][T10623] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1380.532981][ T5821] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1380.541627][ T5821] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1380.549472][ T5821] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1380.559025][ T5821] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1380.566639][ T5821] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1380.671161][T18697] lo speed is unknown, defaulting to 1000
[ 1380.907281][T10623] bridge_slave_1: left allmulticast mode
[ 1380.922515][T10623] bridge_slave_1: left promiscuous mode
[ 1380.928322][T10623] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1380.946568][T10623] bridge_slave_0: left allmulticast mode
[ 1380.962502][T10623] bridge_slave_0: left promiscuous mode
[ 1380.968322][T10623] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1381.083562][T10623] 
[ 1381.086654][T10623] =============================
[ 1381.091525][T10623] WARNING: suspicious RCU usage
[ 1381.096429][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1381.103582][T10623] -----------------------------
[ 1381.108443][T10623] net/ipv6/ip6_fib.c:2024 suspicious rcu_dereference_protected() usage!
[ 1381.116815][T10623] 
[ 1381.116815][T10623] other info that might help us debug this:
[ 1381.116815][T10623] 
[ 1381.127098][T10623] 
[ 1381.127098][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1381.135211][T10623] 6 locks held by kworker/u8:0/10623:
[ 1381.140611][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1381.151582][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1381.162260][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1381.171715][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1381.180783][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1381.190358][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1381.200291][T10623] 
[ 1381.200291][T10623] stack backtrace:
[ 1381.206227][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1381.206255][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1381.206269][T10623] Workqueue: netns cleanup_net
[ 1381.206296][T10623] Call Trace:
[ 1381.206305][T10623]  <TASK>
[ 1381.206334][T10623]  dump_stack_lvl+0x189/0x250
[ 1381.206368][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1381.206397][T10623]  ? __pfx__printk+0x10/0x10
[ 1381.206434][T10623]  ? print_lock_name+0xde/0x100
[ 1381.206479][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1381.206516][T10623]  fib6_del+0x1516/0x1550
[ 1381.206568][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1381.206588][T10623]  ? schedule+0x165/0x360
[ 1381.206635][T10623]  fib6_clean_node+0x29f/0x590
[ 1381.206664][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1381.206699][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1381.206737][T10623]  fib6_walk_continue+0x67b/0x910
[ 1381.206779][T10623]  fib6_walk+0x149/0x290
[ 1381.206807][T10623]  __fib6_clean_all+0x234/0x380
[ 1381.206829][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1381.206854][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1381.206881][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1381.206909][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1381.206934][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1381.206960][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1381.207001][T10623]  rt6_disable_ip+0x120/0x720
[ 1381.207036][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1381.207066][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1381.207106][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1381.207129][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1381.207160][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1381.207188][T10623]  ? tls_dev_event+0x717/0xec0
[ 1381.207218][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1381.207259][T10623]  addrconf_notify+0x1bc/0x1010
[ 1381.207292][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1381.207324][T10623]  dev_close_many+0x29c/0x410
[ 1381.207355][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1381.207380][T10623]  ? call_rcu+0x6dd/0x990
[ 1381.207419][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1381.207461][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1381.207499][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1381.207539][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1381.207574][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1381.207604][T10623]  ? net_generic+0x1e/0x240
[ 1381.207624][T10623]  ? net_generic+0x1e/0x240
[ 1381.207653][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1381.207685][T10623]  cleanup_net+0x6a3/0xbd0
[ 1381.207715][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1381.207748][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1381.207770][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1381.207801][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1381.207835][T10623]  process_scheduled_works+0xade/0x17a0
[ 1381.207902][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1381.207956][T10623]  worker_thread+0x8a0/0xda0
[ 1381.207980][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1381.208014][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1381.208047][T10623]  kthread+0x711/0x8a0
[ 1381.208076][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1381.208094][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.208120][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.208155][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1381.208175][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1381.208218][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.208241][T10623]  ret_from_fork+0x4b/0x80
[ 1381.208260][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.208284][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1381.208335][T10623]  </TASK>
[ 1381.208345][T10623] 
[ 1381.555937][T10623] =============================
[ 1381.560809][T10623] WARNING: suspicious RCU usage
[ 1381.565702][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1381.572850][T10623] -----------------------------
[ 1381.577712][T10623] net/ipv6/ip6_fib.c:2036 suspicious rcu_dereference_protected() usage!
[ 1381.586097][T10623] 
[ 1381.586097][T10623] other info that might help us debug this:
[ 1381.586097][T10623] 
[ 1381.596384][T10623] 
[ 1381.596384][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1381.604511][T10623] 6 locks held by kworker/u8:0/10623:
[ 1381.609901][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1381.620885][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1381.631530][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1381.641034][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1381.650116][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1381.659707][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1381.669389][T10623] 
[ 1381.669389][T10623] stack backtrace:
[ 1381.675335][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1381.675363][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1381.675377][T10623] Workqueue: netns cleanup_net
[ 1381.675416][T10623] Call Trace:
[ 1381.675424][T10623]  <TASK>
[ 1381.675441][T10623]  dump_stack_lvl+0x189/0x250
[ 1381.675473][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1381.675499][T10623]  ? __pfx__printk+0x10/0x10
[ 1381.675532][T10623]  ? print_lock_name+0xde/0x100
[ 1381.675567][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1381.675601][T10623]  fib6_del+0x595/0x1550
[ 1381.675647][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1381.675666][T10623]  ? schedule+0x165/0x360
[ 1381.675709][T10623]  fib6_clean_node+0x29f/0x590
[ 1381.675736][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1381.675767][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1381.675802][T10623]  fib6_walk_continue+0x67b/0x910
[ 1381.675840][T10623]  fib6_walk+0x149/0x290
[ 1381.675865][T10623]  __fib6_clean_all+0x234/0x380
[ 1381.675886][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1381.675908][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1381.675932][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1381.675958][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1381.675980][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1381.676004][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1381.676041][T10623]  rt6_disable_ip+0x120/0x720
[ 1381.676073][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1381.676100][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1381.676136][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1381.676157][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1381.676184][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1381.676209][T10623]  ? tls_dev_event+0x717/0xec0
[ 1381.676236][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1381.676272][T10623]  addrconf_notify+0x1bc/0x1010
[ 1381.676303][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1381.676330][T10623]  dev_close_many+0x29c/0x410
[ 1381.676359][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1381.676381][T10623]  ? call_rcu+0x6dd/0x990
[ 1381.676416][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1381.676460][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1381.676490][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1381.676526][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1381.676557][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1381.676584][T10623]  ? net_generic+0x1e/0x240
[ 1381.676603][T10623]  ? net_generic+0x1e/0x240
[ 1381.676649][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1381.676680][T10623]  cleanup_net+0x6a3/0xbd0
[ 1381.676710][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1381.676743][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1381.676764][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1381.676794][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1381.676828][T10623]  process_scheduled_works+0xade/0x17a0
[ 1381.676896][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1381.676948][T10623]  worker_thread+0x8a0/0xda0
[ 1381.676971][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1381.677004][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1381.677036][T10623]  kthread+0x711/0x8a0
[ 1381.677063][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1381.677081][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.677105][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.677127][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1381.677148][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1381.677173][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.677196][T10623]  ret_from_fork+0x4b/0x80
[ 1381.677215][T10623]  ? __pfx_kthread+0x10/0x10
[ 1381.677238][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1381.677289][T10623]  </TASK>
[ 1381.677299][T10623] 
[ 1382.025289][T10623] =============================
[ 1382.030164][T10623] WARNING: suspicious RCU usage
[ 1382.035070][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1382.042203][T10623] -----------------------------
[ 1382.047114][T10623] net/ipv6/ip6_fib.c:1922 suspicious rcu_dereference_protected() usage!
[ 1382.055509][T10623] 
[ 1382.055509][T10623] other info that might help us debug this:
[ 1382.055509][T10623] 
[ 1382.065807][T10623] 
[ 1382.065807][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1382.073932][T10623] 6 locks held by kworker/u8:0/10623:
[ 1382.079334][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1382.090327][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1382.100983][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1382.110491][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1382.119481][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1382.129077][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1382.138795][T10623] 
[ 1382.138795][T10623] stack backtrace:
[ 1382.144741][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1382.144770][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1382.144784][T10623] Workqueue: netns cleanup_net
[ 1382.144813][T10623] Call Trace:
[ 1382.144822][T10623]  <TASK>
[ 1382.144832][T10623]  dump_stack_lvl+0x189/0x250
[ 1382.144867][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1382.144896][T10623]  ? __pfx__printk+0x10/0x10
[ 1382.144933][T10623]  ? print_lock_name+0xde/0x100
[ 1382.144971][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1382.145008][T10623]  fib6_del+0x651/0x1550
[ 1382.145060][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1382.145080][T10623]  ? schedule+0x165/0x360
[ 1382.145126][T10623]  fib6_clean_node+0x29f/0x590
[ 1382.145154][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1382.145188][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1382.145237][T10623]  fib6_walk_continue+0x67b/0x910
[ 1382.145277][T10623]  fib6_walk+0x149/0x290
[ 1382.145304][T10623]  __fib6_clean_all+0x234/0x380
[ 1382.145325][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1382.145348][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1382.145374][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1382.145402][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1382.145424][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1382.145456][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1382.145494][T10623]  rt6_disable_ip+0x120/0x720
[ 1382.145528][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1382.145557][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1382.145595][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1382.145616][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1382.145645][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1382.145672][T10623]  ? tls_dev_event+0x717/0xec0
[ 1382.145702][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1382.145740][T10623]  addrconf_notify+0x1bc/0x1010
[ 1382.145773][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1382.145803][T10623]  dev_close_many+0x29c/0x410
[ 1382.145834][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1382.145858][T10623]  ? call_rcu+0x6dd/0x990
[ 1382.145895][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1382.145936][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1382.145968][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1382.146007][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1382.146040][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1382.146069][T10623]  ? net_generic+0x1e/0x240
[ 1382.146089][T10623]  ? net_generic+0x1e/0x240
[ 1382.146117][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1382.146148][T10623]  cleanup_net+0x6a3/0xbd0
[ 1382.146176][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1382.146209][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1382.146230][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1382.146259][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1382.146291][T10623]  process_scheduled_works+0xade/0x17a0
[ 1382.146357][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1382.146409][T10623]  worker_thread+0x8a0/0xda0
[ 1382.146431][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1382.146470][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1382.146502][T10623]  kthread+0x711/0x8a0
[ 1382.146530][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1382.146548][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.146573][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.146594][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1382.146616][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1382.146657][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.146680][T10623]  ret_from_fork+0x4b/0x80
[ 1382.146699][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.146723][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1382.146774][T10623]  </TASK>
[ 1382.146783][T10623] 
[ 1382.340581][ T5821] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1382.343431][T10623] =============================
[ 1382.343493][T10623] WARNING: suspicious RCU usage
[ 1382.343505][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1382.343519][T10623] -----------------------------
[ 1382.343528][T10623] net/ipv6/ip6_fib.c:1931 suspicious rcu_dereference_protected() usage!
[ 1382.343544][T10623] 
[ 1382.343544][T10623] other info that might help us debug this:
[ 1382.343544][T10623] 
[ 1382.343553][T10623] 
[ 1382.343553][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1382.343568][T10623] 6 locks held by kworker/u8:0/10623:
[ 1382.343581][T10623]  #0: 
[ 1382.355870][ T5821] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1382.362178][T10623] ffff88801aef3948
[ 1382.372662][ T5821] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1382.374419][T10623]  (
[ 1382.380064][ T5821] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1382.383409][T10623] (wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1382.383463][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1382.383523][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1382.383579][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1382.383652][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1382.383710][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1382.383768][T10623] 
[ 1382.383768][T10623] stack backtrace:
[ 1382.383780][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1382.383813][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1382.383827][T10623] Workqueue: netns cleanup_net
[ 1382.383849][T10623] Call Trace:
[ 1382.383857][T10623]  <TASK>
[ 1382.383866][T10623]  dump_stack_lvl+0x189/0x250
[ 1382.383897][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1382.383924][T10623]  ? __pfx__printk+0x10/0x10
[ 1382.383959][T10623]  ? print_lock_name+0xde/0x100
[ 1382.383996][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1382.384035][T10623]  fib6_del+0x67a/0x1550
[ 1382.384089][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1382.384110][T10623]  ? schedule+0x165/0x360
[ 1382.384167][T10623]  fib6_clean_node+0x29f/0x590
[ 1382.384197][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1382.384233][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1382.384271][T10623]  fib6_walk_continue+0x67b/0x910
[ 1382.384315][T10623]  fib6_walk+0x149/0x290
[ 1382.384342][T10623]  __fib6_clean_all+0x234/0x380
[ 1382.384366][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1382.384390][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1382.384417][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1382.384447][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1382.384490][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1382.384519][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1382.384562][T10623]  rt6_disable_ip+0x120/0x720
[ 1382.384598][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1382.384631][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1382.384672][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1382.384697][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1382.384730][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1382.384772][T10623]  ? tls_dev_event+0x717/0xec0
[ 1382.384804][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1382.384845][T10623]  addrconf_notify+0x1bc/0x1010
[ 1382.384879][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1382.384911][T10623]  dev_close_many+0x29c/0x410
[ 1382.384942][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1382.384967][T10623]  ? call_rcu+0x6dd/0x990
[ 1382.385007][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1382.385049][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1382.385083][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1382.385130][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1382.385166][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1382.385196][T10623]  ? net_generic+0x1e/0x240
[ 1382.385217][T10623]  ? net_generic+0x1e/0x240
[ 1382.385247][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1382.385280][T10623]  cleanup_net+0x6a3/0xbd0
[ 1382.385310][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1382.385343][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1382.385365][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1382.385395][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1382.385430][T10623]  process_scheduled_works+0xade/0x17a0
[ 1382.385503][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1382.385556][T10623]  worker_thread+0x8a0/0xda0
[ 1382.385580][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1382.385615][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1382.385649][T10623]  kthread+0x711/0x8a0
[ 1382.385677][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1382.385696][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.385723][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.385746][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1382.385768][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1382.385793][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.385816][T10623]  ret_from_fork+0x4b/0x80
[ 1382.385836][T10623]  ? __pfx_kthread+0x10/0x10
[ 1382.385859][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1382.385911][T10623]  </TASK>
[ 1382.385922][T10623] 
[ 1382.392050][ T5821] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1382.394831][T10623] =============================
[ 1382.394842][T10623] WARNING: suspicious RCU usage
[ 1382.394853][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1382.394867][T10623] -----------------------------
[ 1382.394876][T10623] net/ipv6/ip6_fib.c:1976 suspicious rcu_dereference_protected() usage!
[ 1382.394891][T10623] 
[ 1382.394891][T10623] other info that might help us debug this:
[ 1382.394891][T10623] 
[ 1382.394900][T10623] 
[ 1382.394900][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1382.394914][T10623] 7 locks held by kworker/u8:0/10623:
[ 1382.632428][ T5821] Bluetooth: hci1: command tx timeout
[ 1382.634594][T10623]  #0: ffff88801aef3948
[ 1382.791992][T18704] netlink: 'syz.2.3226': attribute type 10 has an invalid length.
[ 1382.796850][T10623]  ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1382.796918][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1382.796989][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1382.797057][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1382.797119][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1382.797179][T10623]  #5: ffff88805a2c7c30 (
[ 1383.049520][T18713] netlink: 'syz.5.3224': attribute type 10 has an invalid length.
[ 1383.053938][T10623] &tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1383.053990][T10623]  #6: ffff888021352d38 (&net->ipv6.fib6_walker_lock){++.-}-{3:3}, at: fib6_del+0xb3f/0x1550
[ 1383.054050][T10623] 
[ 1383.054050][T10623] stack backtrace:
[ 1383.054063][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1383.054087][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1383.054101][T10623] Workqueue: netns cleanup_net
[ 1383.054125][T10623] Call Trace:
[ 1383.054134][T10623]  <TASK>
[ 1383.054142][T10623]  dump_stack_lvl+0x189/0x250
[ 1383.054177][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1383.054208][T10623]  ? __pfx__printk+0x10/0x10
[ 1383.054239][T10623]  ? fib6_del+0xb3f/0x1550
[ 1383.054267][T10623]  ? print_lock_name+0xde/0x100
[ 1383.054314][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1383.054353][T10623]  fib6_del+0xd5c/0x1550
[ 1383.054380][T10623]  ? fib6_del+0x5d1/0x1550
[ 1383.054424][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1383.054446][T10623]  ? schedule+0x165/0x360
[ 1383.054493][T10623]  fib6_clean_node+0x29f/0x590
[ 1383.054523][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1383.054559][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1383.054597][T10623]  fib6_walk_continue+0x67b/0x910
[ 1383.054641][T10623]  fib6_walk+0x149/0x290
[ 1383.054669][T10623]  __fib6_clean_all+0x234/0x380
[ 1383.054692][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1383.054716][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1383.054744][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1383.054773][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1383.054798][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1383.054825][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1383.054866][T10623]  rt6_disable_ip+0x120/0x720
[ 1383.054912][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1383.054941][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1383.054979][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1383.055000][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1383.055030][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1383.055056][T10623]  ? tls_dev_event+0x717/0xec0
[ 1383.055104][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1383.055144][T10623]  addrconf_notify+0x1bc/0x1010
[ 1383.055179][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1383.055211][T10623]  dev_close_many+0x29c/0x410
[ 1383.055243][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1383.055268][T10623]  ? call_rcu+0x6dd/0x990
[ 1383.055313][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1383.055356][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1383.055389][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1383.055430][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1383.055465][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1383.055496][T10623]  ? net_generic+0x1e/0x240
[ 1383.055516][T10623]  ? net_generic+0x1e/0x240
[ 1383.055545][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1383.055578][T10623]  cleanup_net+0x6a3/0xbd0
[ 1383.055609][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1383.055643][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1383.055666][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1383.055697][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1383.055732][T10623]  process_scheduled_works+0xade/0x17a0
[ 1383.055801][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1383.055856][T10623]  worker_thread+0x8a0/0xda0
[ 1383.055880][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1383.055915][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1383.055948][T10623]  kthread+0x711/0x8a0
[ 1383.055978][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1383.055998][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.056023][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.056046][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1383.056069][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1383.056094][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.056116][T10623]  ret_from_fork+0x4b/0x80
[ 1383.056137][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.056161][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1383.056213][T10623]  </TASK>
[ 1383.056224][T10623] 
[ 1383.516834][T10623] =============================
[ 1383.521700][T10623] WARNING: suspicious RCU usage
[ 1383.526591][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1383.533751][T10623] -----------------------------
[ 1383.538709][T10623] net/ipv6/ip6_fib.c:1806 suspicious rcu_dereference_protected() usage!
[ 1383.547092][T10623] 
[ 1383.547092][T10623] other info that might help us debug this:
[ 1383.547092][T10623] 
[ 1383.557379][T10623] 
[ 1383.557379][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1383.565502][T10623] 6 locks held by kworker/u8:0/10623:
[ 1383.570894][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1383.581888][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1383.592535][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1383.602017][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1383.609648][T18727] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3227'.
[ 1383.611009][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1383.629599][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1383.639292][T10623] 
[ 1383.639292][T10623] stack backtrace:
[ 1383.645238][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1383.645271][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1383.645286][T10623] Workqueue: netns cleanup_net
[ 1383.645314][T10623] Call Trace:
[ 1383.645323][T10623]  <TASK>
[ 1383.645334][T10623]  dump_stack_lvl+0x189/0x250
[ 1383.645368][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1383.645395][T10623]  ? __pfx__printk+0x10/0x10
[ 1383.645433][T10623]  ? print_lock_name+0xde/0x100
[ 1383.645471][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1383.645507][T10623]  fib6_repair_tree+0xdad/0x11c0
[ 1383.645555][T10623]  fib6_del+0xed2/0x1550
[ 1383.645581][T10623]  ? fib6_del+0x5d1/0x1550
[ 1383.645623][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1383.645643][T10623]  ? schedule+0x165/0x360
[ 1383.645688][T10623]  fib6_clean_node+0x29f/0x590
[ 1383.645717][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1383.645750][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1383.645787][T10623]  fib6_walk_continue+0x67b/0x910
[ 1383.645828][T10623]  fib6_walk+0x149/0x290
[ 1383.645855][T10623]  __fib6_clean_all+0x234/0x380
[ 1383.645876][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1383.645900][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1383.645925][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1383.645953][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1383.645976][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1383.646002][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1383.646041][T10623]  rt6_disable_ip+0x120/0x720
[ 1383.646075][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1383.646104][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1383.646142][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1383.646164][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1383.646194][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1383.646221][T10623]  ? tls_dev_event+0x717/0xec0
[ 1383.646257][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1383.646295][T10623]  addrconf_notify+0x1bc/0x1010
[ 1383.646328][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1383.646365][T10623]  dev_close_many+0x29c/0x410
[ 1383.646395][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1383.646419][T10623]  ? call_rcu+0x6dd/0x990
[ 1383.646456][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1383.646497][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1383.646529][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1383.646572][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1383.646624][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1383.646654][T10623]  ? net_generic+0x1e/0x240
[ 1383.646674][T10623]  ? net_generic+0x1e/0x240
[ 1383.646704][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1383.646736][T10623]  cleanup_net+0x6a3/0xbd0
[ 1383.646765][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1383.646798][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1383.646820][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1383.646851][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1383.646884][T10623]  process_scheduled_works+0xade/0x17a0
[ 1383.646953][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1383.647006][T10623]  worker_thread+0x8a0/0xda0
[ 1383.647030][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1383.647064][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1383.647097][T10623]  kthread+0x711/0x8a0
[ 1383.647126][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1383.647145][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.647171][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.647194][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1383.647215][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1383.647241][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.647271][T10623]  ret_from_fork+0x4b/0x80
[ 1383.647290][T10623]  ? __pfx_kthread+0x10/0x10
[ 1383.647314][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1383.647364][T10623]  </TASK>
[ 1383.647374][T10623] 
[ 1384.004954][T10623] =============================
[ 1384.009822][T10623] WARNING: suspicious RCU usage
[ 1384.014765][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1384.021896][T10623] -----------------------------
[ 1384.026793][T10623] net/ipv6/ip6_fib.c:1808 suspicious rcu_dereference_protected() usage!
[ 1384.035169][T10623] 
[ 1384.035169][T10623] other info that might help us debug this:
[ 1384.035169][T10623] 
[ 1384.045450][T10623] 
[ 1384.045450][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1384.053573][T10623] 6 locks held by kworker/u8:0/10623:
[ 1384.058978][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1384.069968][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1384.080612][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1384.090135][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1384.099144][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1384.108753][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1384.118440][T10623] 
[ 1384.118440][T10623] stack backtrace:
[ 1384.124389][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1384.124417][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1384.124431][T10623] Workqueue: netns cleanup_net
[ 1384.124459][T10623] Call Trace:
[ 1384.124468][T10623]  <TASK>
[ 1384.124478][T10623]  dump_stack_lvl+0x189/0x250
[ 1384.124512][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1384.124540][T10623]  ? __pfx__printk+0x10/0x10
[ 1384.124579][T10623]  ? print_lock_name+0xde/0x100
[ 1384.124617][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1384.124653][T10623]  fib6_repair_tree+0xdd6/0x11c0
[ 1384.124704][T10623]  fib6_del+0xed2/0x1550
[ 1384.124730][T10623]  ? fib6_del+0x5d1/0x1550
[ 1384.124772][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1384.124794][T10623]  ? schedule+0x165/0x360
[ 1384.124841][T10623]  fib6_clean_node+0x29f/0x590
[ 1384.124870][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1384.124905][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1384.124943][T10623]  fib6_walk_continue+0x67b/0x910
[ 1384.124985][T10623]  fib6_walk+0x149/0x290
[ 1384.125012][T10623]  __fib6_clean_all+0x234/0x380
[ 1384.125035][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1384.125059][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1384.125085][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1384.125115][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1384.125139][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1384.125166][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1384.125206][T10623]  rt6_disable_ip+0x120/0x720
[ 1384.125249][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1384.125279][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1384.125318][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1384.125341][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1384.125372][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1384.125399][T10623]  ? tls_dev_event+0x717/0xec0
[ 1384.125430][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1384.125470][T10623]  addrconf_notify+0x1bc/0x1010
[ 1384.125504][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1384.125535][T10623]  dev_close_many+0x29c/0x410
[ 1384.125567][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1384.125591][T10623]  ? call_rcu+0x6dd/0x990
[ 1384.125630][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1384.125671][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1384.125703][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1384.125742][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1384.125777][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1384.125807][T10623]  ? net_generic+0x1e/0x240
[ 1384.125826][T10623]  ? net_generic+0x1e/0x240
[ 1384.125856][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1384.125887][T10623]  cleanup_net+0x6a3/0xbd0
[ 1384.125917][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1384.125950][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1384.125971][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1384.126002][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1384.126036][T10623]  process_scheduled_works+0xade/0x17a0
[ 1384.126104][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1384.126157][T10623]  worker_thread+0x8a0/0xda0
[ 1384.126181][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1384.126221][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1384.126254][T10623]  kthread+0x711/0x8a0
[ 1384.126283][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1384.126302][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.126328][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.126350][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1384.126372][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1384.126397][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.126420][T10623]  ret_from_fork+0x4b/0x80
[ 1384.126439][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.126462][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1384.126514][T10623]  </TASK>
[ 1384.126523][T10623] 
[ 1384.463072][ T5821] Bluetooth: hci4: command tx timeout
[ 1384.464039][T10623] =============================
[ 1384.493965][T10623] WARNING: suspicious RCU usage
[ 1384.498828][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1384.505984][T10623] -----------------------------
[ 1384.510850][T10623] net/ipv6/ip6_fib.c:1810 suspicious rcu_dereference_protected() usage!
[ 1384.519226][T10623] 
[ 1384.519226][T10623] other info that might help us debug this:
[ 1384.519226][T10623] 
[ 1384.529593][T10623] 
[ 1384.529593][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1384.537716][T10623] 6 locks held by kworker/u8:0/10623:
[ 1384.543138][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1384.554120][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1384.564760][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1384.574241][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1384.583197][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1384.592773][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1384.602434][T10623] 
[ 1384.602434][T10623] stack backtrace:
[ 1384.608367][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1384.608395][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1384.608410][T10623] Workqueue: netns cleanup_net
[ 1384.608438][T10623] Call Trace:
[ 1384.608447][T10623]  <TASK>
[ 1384.608457][T10623]  dump_stack_lvl+0x189/0x250
[ 1384.608493][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1384.608531][T10623]  ? __pfx__printk+0x10/0x10
[ 1384.608570][T10623]  ? print_lock_name+0xde/0x100
[ 1384.608608][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1384.608644][T10623]  fib6_repair_tree+0xdff/0x11c0
[ 1384.608696][T10623]  fib6_del+0xed2/0x1550
[ 1384.608723][T10623]  ? fib6_del+0x5d1/0x1550
[ 1384.608771][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1384.608792][T10623]  ? schedule+0x165/0x360
[ 1384.608838][T10623]  fib6_clean_node+0x29f/0x590
[ 1384.608868][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1384.608902][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1384.608947][T10623]  fib6_walk_continue+0x67b/0x910
[ 1384.608989][T10623]  fib6_walk+0x149/0x290
[ 1384.609017][T10623]  __fib6_clean_all+0x234/0x380
[ 1384.609046][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1384.609071][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1384.609097][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1384.609137][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1384.609161][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1384.609194][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1384.609235][T10623]  rt6_disable_ip+0x120/0x720
[ 1384.609270][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1384.609302][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1384.609341][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1384.609365][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1384.609396][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1384.609424][T10623]  ? tls_dev_event+0x717/0xec0
[ 1384.609455][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1384.609495][T10623]  addrconf_notify+0x1bc/0x1010
[ 1384.609529][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1384.609560][T10623]  dev_close_many+0x29c/0x410
[ 1384.609592][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1384.609617][T10623]  ? call_rcu+0x6dd/0x990
[ 1384.609657][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1384.609699][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1384.609732][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1384.609772][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1384.609824][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1384.609854][T10623]  ? net_generic+0x1e/0x240
[ 1384.609874][T10623]  ? net_generic+0x1e/0x240
[ 1384.609903][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1384.609935][T10623]  cleanup_net+0x6a3/0xbd0
[ 1384.609965][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1384.609998][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1384.610020][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1384.610051][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1384.610084][T10623]  process_scheduled_works+0xade/0x17a0
[ 1384.610152][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1384.610212][T10623]  worker_thread+0x8a0/0xda0
[ 1384.610246][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1384.610286][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1384.610319][T10623]  kthread+0x711/0x8a0
[ 1384.610348][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1384.610366][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.610393][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.610416][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1384.610438][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1384.610471][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.610493][T10623]  ret_from_fork+0x4b/0x80
[ 1384.610513][T10623]  ? __pfx_kthread+0x10/0x10
[ 1384.610537][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1384.610588][T10623]  </TASK>
[ 1384.610598][T10623] 
[ 1384.703006][ T5821] Bluetooth: hci1: command tx timeout
[ 1384.706936][T10623] =============================
[ 1384.977821][T10623] WARNING: suspicious RCU usage
[ 1384.982710][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1384.989844][T10623] -----------------------------
[ 1384.994743][T10623] net/ipv6/ip6_fib.c:1812 suspicious rcu_dereference_protected() usage!
[ 1385.003108][T10623] 
[ 1385.003108][T10623] other info that might help us debug this:
[ 1385.003108][T10623] 
[ 1385.013398][T10623] 
[ 1385.013398][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1385.021475][T10623] 6 locks held by kworker/u8:0/10623:
[ 1385.026892][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1385.037881][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1385.048513][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1385.057996][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1385.066961][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1385.076533][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1385.086235][T10623] 
[ 1385.086235][T10623] stack backtrace:
[ 1385.092152][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1385.092179][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1385.092193][T10623] Workqueue: netns cleanup_net
[ 1385.092220][T10623] Call Trace:
[ 1385.092228][T10623]  <TASK>
[ 1385.092245][T10623]  dump_stack_lvl+0x189/0x250
[ 1385.092278][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1385.092317][T10623]  ? __pfx__printk+0x10/0x10
[ 1385.092370][T10623]  ? print_lock_name+0xde/0x100
[ 1385.092407][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1385.092443][T10623]  fib6_repair_tree+0xe28/0x11c0
[ 1385.092493][T10623]  fib6_del+0xed2/0x1550
[ 1385.092519][T10623]  ? fib6_del+0x5d1/0x1550
[ 1385.092560][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1385.092580][T10623]  ? schedule+0x165/0x360
[ 1385.092625][T10623]  fib6_clean_node+0x29f/0x590
[ 1385.092654][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1385.092687][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1385.092723][T10623]  fib6_walk_continue+0x67b/0x910
[ 1385.092764][T10623]  fib6_walk+0x149/0x290
[ 1385.092791][T10623]  __fib6_clean_all+0x234/0x380
[ 1385.092813][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1385.092836][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1385.092861][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1385.092889][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1385.092913][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1385.092939][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1385.092977][T10623]  rt6_disable_ip+0x120/0x720
[ 1385.093011][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1385.093040][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1385.093078][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1385.093101][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1385.093139][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1385.093165][T10623]  ? tls_dev_event+0x717/0xec0
[ 1385.093194][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1385.093233][T10623]  addrconf_notify+0x1bc/0x1010
[ 1385.093265][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1385.093295][T10623]  dev_close_many+0x29c/0x410
[ 1385.093326][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1385.093349][T10623]  ? call_rcu+0x6dd/0x990
[ 1385.093387][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1385.093429][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1385.093461][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1385.093500][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1385.093534][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1385.093562][T10623]  ? net_generic+0x1e/0x240
[ 1385.093582][T10623]  ? net_generic+0x1e/0x240
[ 1385.093621][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1385.093649][T10623]  cleanup_net+0x6a3/0xbd0
[ 1385.093675][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1385.093705][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1385.093725][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1385.093753][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1385.093783][T10623]  process_scheduled_works+0xade/0x17a0
[ 1385.093844][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1385.093892][T10623]  worker_thread+0x8a0/0xda0
[ 1385.093914][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1385.093945][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1385.093974][T10623]  kthread+0x711/0x8a0
[ 1385.094000][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1385.094017][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.094040][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.094060][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1385.094080][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1385.094102][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.094128][T10623]  ret_from_fork+0x4b/0x80
[ 1385.094147][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.094168][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1385.094214][T10623]  </TASK>
[ 1385.447647][T10623] 
[ 1385.450001][T10623] =============================
[ 1385.454899][T10623] WARNING: suspicious RCU usage
[ 1385.459759][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1385.466917][T10623] -----------------------------
[ 1385.471787][T10623] net/ipv6/ip6_fib.c:1814 suspicious rcu_dereference_protected() usage!
[ 1385.480246][T10623] 
[ 1385.480246][T10623] other info that might help us debug this:
[ 1385.480246][T10623] 
[ 1385.490525][T10623] 
[ 1385.490525][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1385.498653][T10623] 6 locks held by kworker/u8:0/10623:
[ 1385.504063][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1385.515035][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1385.525756][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1385.535268][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1385.544246][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1385.553894][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1385.563558][T10623] 
[ 1385.563558][T10623] stack backtrace:
[ 1385.569479][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1385.569507][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1385.569522][T10623] Workqueue: netns cleanup_net
[ 1385.569549][T10623] Call Trace:
[ 1385.569558][T10623]  <TASK>
[ 1385.569569][T10623]  dump_stack_lvl+0x189/0x250
[ 1385.569605][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1385.569633][T10623]  ? __pfx__printk+0x10/0x10
[ 1385.569672][T10623]  ? print_lock_name+0xde/0x100
[ 1385.569729][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1385.569766][T10623]  fib6_repair_tree+0xe51/0x11c0
[ 1385.569818][T10623]  fib6_del+0xed2/0x1550
[ 1385.569851][T10623]  ? fib6_del+0x5d1/0x1550
[ 1385.569895][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1385.569915][T10623]  ? schedule+0x165/0x360
[ 1385.569961][T10623]  fib6_clean_node+0x29f/0x590
[ 1385.569991][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1385.570025][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1385.570063][T10623]  fib6_walk_continue+0x67b/0x910
[ 1385.570104][T10623]  fib6_walk+0x149/0x290
[ 1385.570132][T10623]  __fib6_clean_all+0x234/0x380
[ 1385.570155][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1385.570180][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1385.570206][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1385.570235][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1385.570259][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1385.570286][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1385.570326][T10623]  rt6_disable_ip+0x120/0x720
[ 1385.570361][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1385.570391][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1385.570430][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1385.570453][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1385.570483][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1385.570511][T10623]  ? tls_dev_event+0x717/0xec0
[ 1385.570541][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1385.570581][T10623]  addrconf_notify+0x1bc/0x1010
[ 1385.570614][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1385.570646][T10623]  dev_close_many+0x29c/0x410
[ 1385.570677][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1385.570702][T10623]  ? call_rcu+0x6dd/0x990
[ 1385.570740][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1385.570782][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1385.570815][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1385.570862][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1385.570908][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1385.570937][T10623]  ? net_generic+0x1e/0x240
[ 1385.570957][T10623]  ? net_generic+0x1e/0x240
[ 1385.570985][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1385.571015][T10623]  cleanup_net+0x6a3/0xbd0
[ 1385.571043][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1385.571075][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1385.571096][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1385.571125][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1385.571158][T10623]  process_scheduled_works+0xade/0x17a0
[ 1385.571223][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1385.571276][T10623]  worker_thread+0x8a0/0xda0
[ 1385.571309][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1385.571340][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1385.571370][T10623]  kthread+0x711/0x8a0
[ 1385.571413][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1385.571432][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.571457][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.571478][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1385.571500][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1385.571524][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.571546][T10623]  ret_from_fork+0x4b/0x80
[ 1385.571565][T10623]  ? __pfx_kthread+0x10/0x10
[ 1385.571588][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1385.571637][T10623]  </TASK>
[ 1385.571647][T10623] 
[ 1385.928235][T10623] =============================
[ 1385.933126][T10623] WARNING: suspicious RCU usage
[ 1385.937989][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1385.945154][T10623] -----------------------------
[ 1385.950022][T10623] net/ipv6/ip6_fib.c:1816 suspicious rcu_dereference_protected() usage!
[ 1385.958401][T10623] 
[ 1385.958401][T10623] other info that might help us debug this:
[ 1385.958401][T10623] 
[ 1385.968691][T10623] 
[ 1385.968691][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1385.976810][T10623] 6 locks held by kworker/u8:0/10623:
[ 1385.982200][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1385.993200][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1386.003824][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1386.013323][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1386.022281][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1386.031815][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1386.041490][T10623] 
[ 1386.041490][T10623] stack backtrace:
[ 1386.047432][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1386.047460][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1386.047475][T10623] Workqueue: netns cleanup_net
[ 1386.047502][T10623] Call Trace:
[ 1386.047511][T10623]  <TASK>
[ 1386.047522][T10623]  dump_stack_lvl+0x189/0x250
[ 1386.047557][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1386.047585][T10623]  ? __pfx__printk+0x10/0x10
[ 1386.047624][T10623]  ? print_lock_name+0xde/0x100
[ 1386.047663][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1386.047700][T10623]  fib6_repair_tree+0xe7a/0x11c0
[ 1386.047751][T10623]  fib6_del+0xed2/0x1550
[ 1386.047777][T10623]  ? fib6_del+0x5d1/0x1550
[ 1386.047832][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1386.047852][T10623]  ? schedule+0x165/0x360
[ 1386.047897][T10623]  fib6_clean_node+0x29f/0x590
[ 1386.047925][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1386.047959][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1386.047995][T10623]  fib6_walk_continue+0x67b/0x910
[ 1386.048036][T10623]  fib6_walk+0x149/0x290
[ 1386.048068][T10623]  __fib6_clean_all+0x234/0x380
[ 1386.048090][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1386.048113][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1386.048138][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1386.048166][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1386.048190][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1386.048215][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1386.048254][T10623]  rt6_disable_ip+0x120/0x720
[ 1386.048288][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1386.048318][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1386.048357][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1386.048378][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1386.048408][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1386.048435][T10623]  ? tls_dev_event+0x717/0xec0
[ 1386.048464][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1386.048502][T10623]  addrconf_notify+0x1bc/0x1010
[ 1386.048534][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1386.048564][T10623]  dev_close_many+0x29c/0x410
[ 1386.048594][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1386.048618][T10623]  ? call_rcu+0x6dd/0x990
[ 1386.048655][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1386.048695][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1386.048728][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1386.048766][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1386.048800][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1386.048848][T10623]  ? net_generic+0x1e/0x240
[ 1386.048868][T10623]  ? net_generic+0x1e/0x240
[ 1386.048909][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1386.048940][T10623]  cleanup_net+0x6a3/0xbd0
[ 1386.048968][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1386.049000][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1386.049021][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1386.049050][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1386.049088][T10623]  process_scheduled_works+0xade/0x17a0
[ 1386.049154][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1386.049206][T10623]  worker_thread+0x8a0/0xda0
[ 1386.049229][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1386.049262][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1386.049295][T10623]  kthread+0x711/0x8a0
[ 1386.049322][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1386.049340][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.049365][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.049387][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1386.049408][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1386.049433][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.049455][T10623]  ret_from_fork+0x4b/0x80
[ 1386.049473][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.049496][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1386.049563][T10623]  </TASK>
[ 1386.049573][T10623] 
[ 1386.406637][T10623] =============================
[ 1386.411506][T10623] WARNING: suspicious RCU usage
[ 1386.416401][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1386.423554][T10623] -----------------------------
[ 1386.428430][T10623] net/ipv6/ip6_fib.c:1818 suspicious rcu_dereference_protected() usage!
[ 1386.436812][T10623] 
[ 1386.436812][T10623] other info that might help us debug this:
[ 1386.436812][T10623] 
[ 1386.447099][T10623] 
[ 1386.447099][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1386.455227][T10623] 6 locks held by kworker/u8:0/10623:
[ 1386.460618][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1386.471602][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1386.482258][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1386.491710][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1386.500693][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1386.510299][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1386.519979][T10623] 
[ 1386.519979][T10623] stack backtrace:
[ 1386.525913][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1386.525939][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1386.525954][T10623] Workqueue: netns cleanup_net
[ 1386.525980][T10623] Call Trace:
[ 1386.525990][T10623]  <TASK>
[ 1386.526000][T10623]  dump_stack_lvl+0x189/0x250
[ 1386.526033][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1386.526061][T10623]  ? __pfx__printk+0x10/0x10
[ 1386.526098][T10623]  ? print_lock_name+0xde/0x100
[ 1386.526136][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1386.526189][T10623]  fib6_repair_tree+0xea3/0x11c0
[ 1386.526241][T10623]  fib6_del+0xed2/0x1550
[ 1386.526268][T10623]  ? fib6_del+0x5d1/0x1550
[ 1386.526311][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1386.526331][T10623]  ? schedule+0x165/0x360
[ 1386.526378][T10623]  fib6_clean_node+0x29f/0x590
[ 1386.526407][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1386.526443][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1386.526481][T10623]  fib6_walk_continue+0x67b/0x910
[ 1386.526524][T10623]  fib6_walk+0x149/0x290
[ 1386.526552][T10623]  __fib6_clean_all+0x234/0x380
[ 1386.526580][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1386.526604][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1386.526631][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1386.526660][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1386.526685][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1386.526711][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1386.526752][T10623]  rt6_disable_ip+0x120/0x720
[ 1386.526787][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1386.526823][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1386.526862][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1386.526886][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1386.526916][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1386.526944][T10623]  ? tls_dev_event+0x717/0xec0
[ 1386.526975][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1386.527015][T10623]  addrconf_notify+0x1bc/0x1010
[ 1386.527047][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1386.527080][T10623]  dev_close_many+0x29c/0x410
[ 1386.527111][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1386.527136][T10623]  ? call_rcu+0x6dd/0x990
[ 1386.527175][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1386.527217][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1386.527250][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1386.527290][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1386.527325][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1386.527355][T10623]  ? net_generic+0x1e/0x240
[ 1386.527374][T10623]  ? net_generic+0x1e/0x240
[ 1386.527403][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1386.527434][T10623]  cleanup_net+0x6a3/0xbd0
[ 1386.527463][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1386.527496][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1386.527518][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1386.527550][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1386.527583][T10623]  process_scheduled_works+0xade/0x17a0
[ 1386.527651][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1386.527704][T10623]  worker_thread+0x8a0/0xda0
[ 1386.527728][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1386.527762][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1386.527801][T10623]  kthread+0x711/0x8a0
[ 1386.527839][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1386.527857][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.527882][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.527904][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1386.527925][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1386.527949][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.527971][T10623]  ret_from_fork+0x4b/0x80
[ 1386.527989][T10623]  ? __pfx_kthread+0x10/0x10
[ 1386.528011][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1386.528070][T10623]  </TASK>
[ 1386.528127][T10623] 
[ 1386.545437][ T5821] Bluetooth: hci4: command tx timeout
[ 1386.550477][T10623] =============================
[ 1386.782680][ T5821] Bluetooth: hci1: command tx timeout
[ 1386.783066][T10623] WARNING: suspicious RCU usage
[ 1386.905375][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1386.912534][T10623] -----------------------------
[ 1386.917400][T10623] net/ipv6/ip6_fib.c:1767 suspicious rcu_dereference_protected() usage!
[ 1386.925782][T10623] 
[ 1386.925782][T10623] other info that might help us debug this:
[ 1386.925782][T10623] 
[ 1386.936055][T10623] 
[ 1386.936055][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1386.944169][T10623] 6 locks held by kworker/u8:0/10623:
[ 1386.949564][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1386.960571][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1386.971211][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1386.980695][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1386.989674][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1386.999251][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1387.008917][T10623] 
[ 1387.008917][T10623] stack backtrace:
[ 1387.014851][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1387.014877][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1387.014891][T10623] Workqueue: netns cleanup_net
[ 1387.014919][T10623] Call Trace:
[ 1387.014928][T10623]  <TASK>
[ 1387.014938][T10623]  dump_stack_lvl+0x189/0x250
[ 1387.014970][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1387.014998][T10623]  ? __pfx__printk+0x10/0x10
[ 1387.015033][T10623]  ? print_lock_name+0xde/0x100
[ 1387.015069][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1387.015104][T10623]  fib6_find_prefix+0x1e8/0x3f0
[ 1387.015130][T10623]  fib6_repair_tree+0x10bd/0x11c0
[ 1387.015178][T10623]  fib6_del+0xed2/0x1550
[ 1387.015203][T10623]  ? fib6_del+0x5d1/0x1550
[ 1387.015244][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1387.015264][T10623]  ? schedule+0x165/0x360
[ 1387.015308][T10623]  fib6_clean_node+0x29f/0x590
[ 1387.015336][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.015369][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1387.015406][T10623]  fib6_walk_continue+0x67b/0x910
[ 1387.015445][T10623]  fib6_walk+0x149/0x290
[ 1387.015471][T10623]  __fib6_clean_all+0x234/0x380
[ 1387.015493][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1387.015516][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.015541][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1387.015569][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.015593][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.015618][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.015657][T10623]  rt6_disable_ip+0x120/0x720
[ 1387.015691][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1387.015737][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1387.015776][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1387.015798][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1387.015828][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1387.015855][T10623]  ? tls_dev_event+0x717/0xec0
[ 1387.015884][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1387.015922][T10623]  addrconf_notify+0x1bc/0x1010
[ 1387.015954][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1387.015985][T10623]  dev_close_many+0x29c/0x410
[ 1387.016016][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1387.016039][T10623]  ? call_rcu+0x6dd/0x990
[ 1387.016077][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1387.016117][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.016149][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1387.016188][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1387.016221][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1387.016250][T10623]  ? net_generic+0x1e/0x240
[ 1387.016269][T10623]  ? net_generic+0x1e/0x240
[ 1387.016297][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1387.016328][T10623]  cleanup_net+0x6a3/0xbd0
[ 1387.016356][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1387.016388][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.016409][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.016438][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.016470][T10623]  process_scheduled_works+0xade/0x17a0
[ 1387.016536][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1387.016592][T10623]  worker_thread+0x8a0/0xda0
[ 1387.016615][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1387.016666][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1387.016700][T10623]  kthread+0x711/0x8a0
[ 1387.016733][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1387.016752][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.016778][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.016801][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.016822][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1387.016848][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.016870][T10623]  ret_from_fork+0x4b/0x80
[ 1387.016889][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.016913][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1387.016963][T10623]  </TASK>
[ 1387.016974][T10623] 
[ 1387.378761][T10623] =============================
[ 1387.383647][T10623] WARNING: suspicious RCU usage
[ 1387.388511][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1387.395662][T10623] -----------------------------
[ 1387.400522][T10623] net/ipv6/ip6_fib.c:1769 suspicious rcu_dereference_protected() usage!
[ 1387.408900][T10623] 
[ 1387.408900][T10623] other info that might help us debug this:
[ 1387.408900][T10623] 
[ 1387.419174][T10623] 
[ 1387.419174][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1387.427308][T10623] 6 locks held by kworker/u8:0/10623:
[ 1387.432722][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1387.443678][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1387.454290][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1387.463768][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1387.472732][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1387.482298][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1387.491917][T10623] 
[ 1387.491917][T10623] stack backtrace:
[ 1387.497891][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1387.497935][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1387.497948][T10623] Workqueue: netns cleanup_net
[ 1387.497973][T10623] Call Trace:
[ 1387.497981][T10623]  <TASK>
[ 1387.497991][T10623]  dump_stack_lvl+0x189/0x250
[ 1387.498024][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1387.498049][T10623]  ? __pfx__printk+0x10/0x10
[ 1387.498082][T10623]  ? print_lock_name+0xde/0x100
[ 1387.498116][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1387.498150][T10623]  fib6_find_prefix+0x211/0x3f0
[ 1387.498175][T10623]  fib6_repair_tree+0x10bd/0x11c0
[ 1387.498221][T10623]  fib6_del+0xed2/0x1550
[ 1387.498245][T10623]  ? fib6_del+0x5d1/0x1550
[ 1387.498283][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1387.498302][T10623]  ? schedule+0x165/0x360
[ 1387.498344][T10623]  fib6_clean_node+0x29f/0x590
[ 1387.498371][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.498402][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1387.498436][T10623]  fib6_walk_continue+0x67b/0x910
[ 1387.498474][T10623]  fib6_walk+0x149/0x290
[ 1387.498499][T10623]  __fib6_clean_all+0x234/0x380
[ 1387.498519][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1387.498541][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.498564][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1387.498591][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.498612][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.498637][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.498673][T10623]  rt6_disable_ip+0x120/0x720
[ 1387.498705][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1387.498732][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1387.498768][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1387.498788][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1387.498816][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1387.498841][T10623]  ? tls_dev_event+0x717/0xec0
[ 1387.498868][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1387.498904][T10623]  addrconf_notify+0x1bc/0x1010
[ 1387.498940][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1387.498968][T10623]  dev_close_many+0x29c/0x410
[ 1387.498996][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1387.499019][T10623]  ? call_rcu+0x6dd/0x990
[ 1387.499054][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1387.499092][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.499122][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1387.499158][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1387.499189][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1387.499216][T10623]  ? net_generic+0x1e/0x240
[ 1387.499234][T10623]  ? net_generic+0x1e/0x240
[ 1387.499261][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1387.499289][T10623]  cleanup_net+0x6a3/0xbd0
[ 1387.499316][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1387.499345][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.499365][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.499392][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.499423][T10623]  process_scheduled_works+0xade/0x17a0
[ 1387.499484][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1387.499532][T10623]  worker_thread+0x8a0/0xda0
[ 1387.499553][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1387.499584][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1387.499613][T10623]  kthread+0x711/0x8a0
[ 1387.499639][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1387.499656][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.499698][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.499720][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.499741][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1387.499765][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.499787][T10623]  ret_from_fork+0x4b/0x80
[ 1387.499805][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.499827][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1387.499876][T10623]  </TASK>
[ 1387.499885][T10623] 
[ 1387.862101][T10623] =============================
[ 1387.867005][T10623] WARNING: suspicious RCU usage
[ 1387.871875][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1387.879042][T10623] -----------------------------
[ 1387.883938][T10623] net/ipv6/ip6_fib.c:1772 suspicious rcu_dereference_protected() usage!
[ 1387.892305][T10623] 
[ 1387.892305][T10623] other info that might help us debug this:
[ 1387.892305][T10623] 
[ 1387.902576][T10623] 
[ 1387.902576][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1387.910661][T10623] 6 locks held by kworker/u8:0/10623:
[ 1387.916106][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1387.927091][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1387.937974][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1387.947592][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1387.956574][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1387.966172][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1387.975861][T10623] 
[ 1387.975861][T10623] stack backtrace:
[ 1387.981777][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1387.981803][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1387.981818][T10623] Workqueue: netns cleanup_net
[ 1387.981845][T10623] Call Trace:
[ 1387.981854][T10623]  <TASK>
[ 1387.981865][T10623]  dump_stack_lvl+0x189/0x250
[ 1387.981899][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1387.981926][T10623]  ? __pfx__printk+0x10/0x10
[ 1387.981960][T10623]  ? print_lock_name+0xde/0x100
[ 1387.981997][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1387.982033][T10623]  fib6_find_prefix+0x399/0x3f0
[ 1387.982061][T10623]  fib6_repair_tree+0x10bd/0x11c0
[ 1387.982109][T10623]  fib6_del+0xed2/0x1550
[ 1387.982135][T10623]  ? fib6_del+0x5d1/0x1550
[ 1387.982176][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1387.982197][T10623]  ? schedule+0x165/0x360
[ 1387.982244][T10623]  fib6_clean_node+0x29f/0x590
[ 1387.982272][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.982303][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1387.982338][T10623]  fib6_walk_continue+0x67b/0x910
[ 1387.982377][T10623]  fib6_walk+0x149/0x290
[ 1387.982403][T10623]  __fib6_clean_all+0x234/0x380
[ 1387.982425][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1387.982448][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.982473][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1387.982502][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1387.982525][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1387.982552][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.982591][T10623]  rt6_disable_ip+0x120/0x720
[ 1387.982625][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1387.982654][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1387.982700][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1387.982721][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1387.982751][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1387.982779][T10623]  ? tls_dev_event+0x717/0xec0
[ 1387.982808][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1387.982846][T10623]  addrconf_notify+0x1bc/0x1010
[ 1387.982889][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1387.982917][T10623]  dev_close_many+0x29c/0x410
[ 1387.982945][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1387.982968][T10623]  ? call_rcu+0x6dd/0x990
[ 1387.983003][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1387.983041][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1387.983072][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1387.983107][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1387.983138][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1387.983165][T10623]  ? net_generic+0x1e/0x240
[ 1387.983183][T10623]  ? net_generic+0x1e/0x240
[ 1387.983209][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1387.983237][T10623]  cleanup_net+0x6a3/0xbd0
[ 1387.983263][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1387.983293][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.983313][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.983340][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1387.983371][T10623]  process_scheduled_works+0xade/0x17a0
[ 1387.983432][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1387.983480][T10623]  worker_thread+0x8a0/0xda0
[ 1387.983501][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1387.983532][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1387.983561][T10623]  kthread+0x711/0x8a0
[ 1387.983606][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1387.983624][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.983649][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.983679][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1387.983700][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1387.983725][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.983746][T10623]  ret_from_fork+0x4b/0x80
[ 1387.983765][T10623]  ? __pfx_kthread+0x10/0x10
[ 1387.983788][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1387.983837][T10623]  </TASK>
[ 1388.341928][T10623] 
[ 1388.344302][T10623] =============================
[ 1388.349168][T10623] WARNING: suspicious RCU usage
[ 1388.354060][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1388.361180][T10623] -----------------------------
[ 1388.366067][T10623] net/ipv6/ip6_fib.c:1049 suspicious rcu_dereference_protected() usage!
[ 1388.374436][T10623] 
[ 1388.374436][T10623] other info that might help us debug this:
[ 1388.374436][T10623] 
[ 1388.384709][T10623] 
[ 1388.384709][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1388.392813][T10623] 6 locks held by kworker/u8:0/10623:
[ 1388.398198][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1388.409178][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1388.419779][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1388.429267][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1388.438208][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1388.447766][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1388.457426][T10623] 
[ 1388.457426][T10623] stack backtrace:
[ 1388.463361][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1388.463386][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1388.463400][T10623] Workqueue: netns cleanup_net
[ 1388.463426][T10623] Call Trace:
[ 1388.463435][T10623]  <TASK>
[ 1388.463445][T10623]  dump_stack_lvl+0x189/0x250
[ 1388.463478][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1388.463505][T10623]  ? __pfx__printk+0x10/0x10
[ 1388.463540][T10623]  ? print_lock_name+0xde/0x100
[ 1388.463588][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1388.463629][T10623]  fib6_purge_rt+0x5db/0x830
[ 1388.463650][T10623]  ? fib6_repair_tree+0x113e/0x11c0
[ 1388.463680][T10623]  ? __pfx_fib6_purge_rt+0x10/0x10
[ 1388.463714][T10623]  fib6_del+0xee1/0x1550
[ 1388.463738][T10623]  ? fib6_del+0x5d1/0x1550
[ 1388.463776][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1388.463794][T10623]  ? schedule+0x165/0x360
[ 1388.463836][T10623]  fib6_clean_node+0x29f/0x590
[ 1388.463862][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1388.463893][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1388.463927][T10623]  fib6_walk_continue+0x67b/0x910
[ 1388.463965][T10623]  fib6_walk+0x149/0x290
[ 1388.463990][T10623]  __fib6_clean_all+0x234/0x380
[ 1388.464010][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1388.464031][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1388.464054][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1388.464080][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1388.464102][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1388.464125][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1388.464161][T10623]  rt6_disable_ip+0x120/0x720
[ 1388.464193][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1388.464220][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1388.464255][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1388.464275][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1388.464303][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1388.464328][T10623]  ? tls_dev_event+0x717/0xec0
[ 1388.464355][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1388.464391][T10623]  addrconf_notify+0x1bc/0x1010
[ 1388.464421][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1388.464449][T10623]  dev_close_many+0x29c/0x410
[ 1388.464477][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1388.464499][T10623]  ? call_rcu+0x6dd/0x990
[ 1388.464534][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1388.464572][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1388.464601][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1388.464643][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1388.464674][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1388.464701][T10623]  ? net_generic+0x1e/0x240
[ 1388.464718][T10623]  ? net_generic+0x1e/0x240
[ 1388.464744][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1388.464772][T10623]  cleanup_net+0x6a3/0xbd0
[ 1388.464798][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1388.464828][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1388.464847][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1388.464874][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1388.464905][T10623]  process_scheduled_works+0xade/0x17a0
[ 1388.464966][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1388.465014][T10623]  worker_thread+0x8a0/0xda0
[ 1388.465035][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1388.465065][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1388.465095][T10623]  kthread+0x711/0x8a0
[ 1388.465120][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1388.465137][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.465160][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.465180][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1388.465199][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1388.465222][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.465242][T10623]  ret_from_fork+0x4b/0x80
[ 1388.465259][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.465281][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1388.465327][T10623]  </TASK>
[ 1388.465335][T10623] 
[ 1388.625986][ T5821] Bluetooth: hci4: command tx timeout
[ 1388.630734][T10623] =============================
[ 1388.630746][T10623] WARNING: suspicious RCU usage
[ 1388.630756][T10623] 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 Not tainted
[ 1388.630769][T10623] -----------------------------
[ 1388.630776][T10623] net/ipv6/ip6_fib.c:1059 suspicious rcu_dereference_protected() usage!
[ 1388.630791][T10623] 
[ 1388.630791][T10623] other info that might help us debug this:
[ 1388.630791][T10623] 
[ 1388.630807][T10623] 
[ 1388.630807][T10623] rcu_scheduler_active = 2, debug_locks = 1
[ 1388.630822][T10623] 6 locks held by kworker/u8:0/10623:
[ 1388.630834][T10623]  #0: ffff88801aef3948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[ 1388.862774][ T5821] Bluetooth: hci1: command tx timeout
[ 1388.867711][T10623]  #1: ffffc900038afc60 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[ 1388.918522][T10623]  #2: ffffffff8f2dbd50 (pernet_ops_rwsem){++++}-{4:4}, at: cleanup_net+0x145/0xbd0
[ 1388.928017][T10623]  #3: ffffffff8f2e8888 (rtnl_mutex){+.+.}-{4:4}, at: cleanup_net+0x611/0xbd0
[ 1388.936984][T10623]  #4: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: __fib6_clean_all+0x9b/0x380
[ 1388.946572][T10623]  #5: ffff88805a2c7c30 (&tb->tb6_lock){+.-.}-{3:3}, at: __fib6_clean_all+0x1ce/0x380
[ 1388.956253][T10623] 
[ 1388.956253][T10623] stack backtrace:
[ 1388.962157][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1388.962182][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1388.962196][T10623] Workqueue: netns cleanup_net
[ 1388.962220][T10623] Call Trace:
[ 1388.962228][T10623]  <TASK>
[ 1388.962244][T10623]  dump_stack_lvl+0x189/0x250
[ 1388.962275][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1388.962300][T10623]  ? __pfx__printk+0x10/0x10
[ 1388.962333][T10623]  ? print_lock_name+0xde/0x100
[ 1388.962367][T10623]  lockdep_rcu_suspicious+0x140/0x1d0
[ 1388.962401][T10623]  fib6_purge_rt+0x604/0x830
[ 1388.962424][T10623]  ? fib6_repair_tree+0x113e/0x11c0
[ 1388.962454][T10623]  ? __pfx_fib6_purge_rt+0x10/0x10
[ 1388.962488][T10623]  fib6_del+0xee1/0x1550
[ 1388.962511][T10623]  ? fib6_del+0x5d1/0x1550
[ 1388.962561][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1388.962579][T10623]  ? schedule+0x165/0x360
[ 1388.962622][T10623]  fib6_clean_node+0x29f/0x590
[ 1388.962648][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1388.962680][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1388.962714][T10623]  fib6_walk_continue+0x67b/0x910
[ 1388.962752][T10623]  fib6_walk+0x149/0x290
[ 1388.962777][T10623]  __fib6_clean_all+0x234/0x380
[ 1388.962797][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1388.962819][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1388.962843][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1388.962869][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1388.962891][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1388.962915][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1388.962952][T10623]  rt6_disable_ip+0x120/0x720
[ 1388.962984][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1388.963012][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1388.963047][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1388.963069][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1388.963097][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1388.963122][T10623]  ? tls_dev_event+0x717/0xec0
[ 1388.963149][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1388.963185][T10623]  addrconf_notify+0x1bc/0x1010
[ 1388.963215][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1388.963243][T10623]  dev_close_many+0x29c/0x410
[ 1388.963272][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1388.963294][T10623]  ? call_rcu+0x6dd/0x990
[ 1388.963330][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1388.963367][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1388.963398][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1388.963434][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1388.963465][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1388.963492][T10623]  ? net_generic+0x1e/0x240
[ 1388.963510][T10623]  ? net_generic+0x1e/0x240
[ 1388.963537][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1388.963573][T10623]  cleanup_net+0x6a3/0xbd0
[ 1388.963599][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1388.963629][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1388.963648][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1388.963675][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1388.963705][T10623]  process_scheduled_works+0xade/0x17a0
[ 1388.963766][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1388.963814][T10623]  worker_thread+0x8a0/0xda0
[ 1388.963836][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1388.963866][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1388.963896][T10623]  kthread+0x711/0x8a0
[ 1388.963922][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1388.963938][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.963962][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.963982][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1388.964002][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1388.964025][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.964045][T10623]  ret_from_fork+0x4b/0x80
[ 1388.964062][T10623]  ? __pfx_kthread+0x10/0x10
[ 1388.964084][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1388.964129][T10623]  </TASK>
[ 1389.327861][T10623] ==================================================================
[ 1389.335945][T10623] BUG: KASAN: slab-use-after-free in fib6_del+0x13af/0x1550
[ 1389.343251][T10623] Read of size 4 at addr ffff88807c01452c by task kworker/u8:0/10623
[ 1389.351340][T10623] 
[ 1389.353692][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1389.353721][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1389.353736][T10623] Workqueue: netns cleanup_net
[ 1389.353775][T10623] Call Trace:
[ 1389.353784][T10623]  <TASK>
[ 1389.353793][T10623]  dump_stack_lvl+0x189/0x250
[ 1389.353822][T10623]  ? __virt_addr_valid+0x18c/0x540
[ 1389.353847][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1389.353875][T10623]  ? __kasan_check_byte+0x12/0x40
[ 1389.353907][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1389.353933][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1389.353962][T10623]  ? lock_release+0x4b/0x3e0
[ 1389.353992][T10623]  ? __virt_addr_valid+0x18c/0x540
[ 1389.354016][T10623]  ? __virt_addr_valid+0x469/0x540
[ 1389.354043][T10623]  print_report+0xb4/0x290
[ 1389.354066][T10623]  ? fib6_del+0x13af/0x1550
[ 1389.354088][T10623]  kasan_report+0x118/0x150
[ 1389.354120][T10623]  ? fib6_del+0x13af/0x1550
[ 1389.354146][T10623]  fib6_del+0x13af/0x1550
[ 1389.354169][T10623]  ? fib6_del+0x5d1/0x1550
[ 1389.354199][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1389.354219][T10623]  ? schedule+0x165/0x360
[ 1389.354251][T10623]  fib6_clean_node+0x29f/0x590
[ 1389.354277][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1389.354305][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1389.354338][T10623]  fib6_walk_continue+0x67b/0x910
[ 1389.354369][T10623]  fib6_walk+0x149/0x290
[ 1389.354394][T10623]  __fib6_clean_all+0x234/0x380
[ 1389.354416][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1389.354439][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1389.354463][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1389.354488][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1389.354511][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1389.354536][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1389.354568][T10623]  rt6_disable_ip+0x120/0x720
[ 1389.354597][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1389.354625][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1389.354656][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1389.354676][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1389.354704][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1389.354730][T10623]  ? tls_dev_event+0x717/0xec0
[ 1389.354766][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1389.354794][T10623]  addrconf_notify+0x1bc/0x1010
[ 1389.354822][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1389.354846][T10623]  dev_close_many+0x29c/0x410
[ 1389.354872][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1389.354895][T10623]  ? call_rcu+0x6dd/0x990
[ 1389.354928][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1389.354965][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1389.354994][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1389.355030][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1389.355062][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1389.355105][T10623]  ? net_generic+0x1e/0x240
[ 1389.355123][T10623]  ? net_generic+0x1e/0x240
[ 1389.355145][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1389.355172][T10623]  cleanup_net+0x6a3/0xbd0
[ 1389.355197][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1389.355223][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1389.355244][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1389.355272][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1389.355303][T10623]  process_scheduled_works+0xade/0x17a0
[ 1389.355347][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1389.355386][T10623]  worker_thread+0x8a0/0xda0
[ 1389.355405][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1389.355431][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1389.355456][T10623]  kthread+0x711/0x8a0
[ 1389.355479][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1389.355496][T10623]  ? __pfx_kthread+0x10/0x10
[ 1389.355519][T10623]  ? __pfx_kthread+0x10/0x10
[ 1389.355540][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1389.355560][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1389.355584][T10623]  ? __pfx_kthread+0x10/0x10
[ 1389.355604][T10623]  ret_from_fork+0x4b/0x80
[ 1389.355623][T10623]  ? __pfx_kthread+0x10/0x10
[ 1389.355644][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1389.355681][T10623]  </TASK>
[ 1389.355688][T10623] 
[ 1389.743818][T10623] Allocated by task 5820:
[ 1389.748167][T10623]  kasan_save_track+0x3e/0x80
[ 1389.752875][T10623]  __kasan_kmalloc+0x93/0xb0
[ 1389.757499][T10623]  __kmalloc_cache_noprof+0x230/0x3d0
[ 1389.762983][T10623]  binderfs_binder_device_create+0x17f/0xaf0
[ 1389.768976][T10623]  binderfs_fill_super+0xa0e/0xe90
[ 1389.774111][T10623]  get_tree_nodev+0xbb/0x150
[ 1389.778729][T10623]  vfs_get_tree+0x92/0x2b0
[ 1389.783163][T10623]  do_new_mount+0x24a/0xa40
[ 1389.787686][T10623]  __se_sys_mount+0x317/0x410
[ 1389.792380][T10623]  do_syscall_64+0xf6/0x210
[ 1389.796903][T10623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1389.802813][T10623] 
[ 1389.805146][T10623] Freed by task 24:
[ 1389.808956][T10623]  kasan_save_track+0x3e/0x80
[ 1389.813654][T10623]  kasan_save_free_info+0x46/0x50
[ 1389.818787][T10623]  __kasan_slab_free+0x62/0x70
[ 1389.823590][T10623]  kfree+0x193/0x440
[ 1389.827509][T10623]  binder_proc_dec_tmpref+0x228/0x4f0
[ 1389.832901][T10623]  binder_deferred_func+0x13a5/0x1520
[ 1389.838279][T10623]  process_scheduled_works+0xade/0x17a0
[ 1389.843858][T10623]  worker_thread+0x8a0/0xda0
[ 1389.848476][T10623]  kthread+0x711/0x8a0
[ 1389.852572][T10623]  ret_from_fork+0x4b/0x80
[ 1389.857018][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1389.861813][T10623] 
[ 1389.864150][T10623] The buggy address belongs to the object at ffff88807c014400
[ 1389.864150][T10623]  which belongs to the cache kmalloc-512 of size 512
[ 1389.878228][T10623] The buggy address is located 300 bytes inside of
[ 1389.878228][T10623]  freed 512-byte region [ffff88807c014400, ffff88807c014600)
[ 1389.892052][T10623] 
[ 1389.894406][T10623] The buggy address belongs to the physical page:
[ 1389.900852][T10623] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7c014
[ 1389.909641][T10623] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1389.918174][T10623] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1389.926183][T10623] page_type: f5(slab)
[ 1389.930182][T10623] raw: 00fff00000000040 ffff88801a041c80 0000000000000000 dead000000000001
[ 1389.938793][T10623] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1389.947404][T10623] head: 00fff00000000040 ffff88801a041c80 0000000000000000 dead000000000001
[ 1389.956115][T10623] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 1389.964802][T10623] head: 00fff00000000002 ffffea0001f00501 00000000ffffffff 00000000ffffffff
[ 1389.973491][T10623] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[ 1389.982176][T10623] page dumped because: kasan: bad access detected
[ 1389.988613][T10623] page_owner tracks the page as allocated
[ 1389.994364][T10623] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5820, tgid 5820 (syz-executor), ts 96299653284, free_ts 96118075967
[ 1390.015758][T10623]  post_alloc_hook+0x1d8/0x230
[ 1390.020546][T10623]  get_page_from_freelist+0x21c7/0x22a0
[ 1390.026109][T10623]  __alloc_frozen_pages_noprof+0x181/0x370
[ 1390.031932][T10623]  alloc_pages_mpol+0x232/0x4a0
[ 1390.036821][T10623]  allocate_slab+0x8a/0x3b0
[ 1390.041346][T10623]  ___slab_alloc+0xbfc/0x1480
[ 1390.046044][T10623]  __kmalloc_cache_noprof+0x296/0x3d0
[ 1390.051439][T10623]  binderfs_fill_super+0x59f/0xe90
[ 1390.056573][T10623]  get_tree_nodev+0xbb/0x150
[ 1390.061195][T10623]  vfs_get_tree+0x92/0x2b0
[ 1390.065645][T10623]  do_new_mount+0x24a/0xa40
[ 1390.070190][T10623]  __se_sys_mount+0x317/0x410
[ 1390.074886][T10623]  do_syscall_64+0xf6/0x210
[ 1390.079407][T10623]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1390.085313][T10623] page last free pid 5189 tgid 5189 stack trace:
[ 1390.091646][T10623]  __free_frozen_pages+0xb05/0xcd0
[ 1390.096776][T10623]  __put_partials+0x161/0x1c0
[ 1390.101474][T10623]  put_cpu_partial+0x17c/0x250
[ 1390.106291][T10623]  __slab_free+0x2f7/0x400
[ 1390.110736][T10623]  qlist_free_all+0x9a/0x140
[ 1390.115347][T10623]  kasan_quarantine_reduce+0x148/0x160
[ 1390.120828][T10623]  __kasan_slab_alloc+0x22/0x80
[ 1390.125709][T10623]  __kmalloc_noprof+0x224/0x4f0
[ 1390.130575][T10623]  tomoyo_encode+0x28b/0x550
[ 1390.135184][T10623]  tomoyo_realpath_from_path+0x58d/0x5d0
[ 1390.140840][T10623]  tomoyo_check_open_permission+0x1c1/0x3b0
[ 1390.146754][T10623]  security_file_open+0xb1/0x270
[ 1390.151730][T10623]  do_dentry_open+0x35e/0x1970
[ 1390.156510][T10623]  vfs_open+0x3b/0x340
[ 1390.160597][T10623]  path_openat+0x2ee5/0x3830
[ 1390.165203][T10623]  do_filp_open+0x1fa/0x410
[ 1390.169728][T10623] 
[ 1390.172058][T10623] Memory state around the buggy address:
[ 1390.177706][T10623]  ffff88807c014400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1390.185872][T10623]  ffff88807c014480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1390.193949][T10623] >ffff88807c014500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1390.202014][T10623]                                   ^
[ 1390.207394][T10623]  ffff88807c014580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1390.215465][T10623]  ffff88807c014600: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1390.223540][T10623] ==================================================================
[ 1390.231689][T10623] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1390.238912][T10623] CPU: 0 UID: 0 PID: 10623 Comm: kworker/u8:0 Not tainted 6.15.0-rc7-syzkaller-00142-g4856ebd99715 #0 PREEMPT(full) 
[ 1390.251167][T10623] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1390.261242][T10623] Workqueue: netns cleanup_net
[ 1390.266042][T10623] Call Trace:
[ 1390.269420][T10623]  <TASK>
[ 1390.272368][T10623]  dump_stack_lvl+0x99/0x250
[ 1390.276990][T10623]  ? __asan_memcpy+0x40/0x70
[ 1390.281606][T10623]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1390.286843][T10623]  ? __pfx__printk+0x10/0x10
[ 1390.291473][T10623]  panic+0x2db/0x790
[ 1390.295390][T10623]  ? __pfx_panic+0x10/0x10
[ 1390.299827][T10623]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 1390.305737][T10623]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 1390.311648][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1390.318017][T10623]  ? print_memory_metadata+0x314/0x400
[ 1390.323505][T10623]  ? fib6_del+0x13af/0x1550
[ 1390.328026][T10623]  check_panic_on_warn+0x89/0xb0
[ 1390.332981][T10623]  ? fib6_del+0x13af/0x1550
[ 1390.337498][T10623]  end_report+0x78/0x160
[ 1390.341765][T10623]  kasan_report+0x129/0x150
[ 1390.346305][T10623]  ? fib6_del+0x13af/0x1550
[ 1390.350827][T10623]  fib6_del+0x13af/0x1550
[ 1390.355181][T10623]  ? fib6_del+0x5d1/0x1550
[ 1390.359645][T10623]  ? __pfx_fib6_del+0x10/0x10
[ 1390.364350][T10623]  ? schedule+0x165/0x360
[ 1390.368703][T10623]  fib6_clean_node+0x29f/0x590
[ 1390.373496][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1390.378803][T10623]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 1390.384205][T10623]  fib6_walk_continue+0x67b/0x910
[ 1390.389256][T10623]  fib6_walk+0x149/0x290
[ 1390.393535][T10623]  __fib6_clean_all+0x234/0x380
[ 1390.398400][T10623]  ? __fib6_clean_all+0x9b/0x380
[ 1390.403386][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1390.408346][T10623]  ? __pfx___fib6_clean_all+0x10/0x10
[ 1390.413733][T10623]  ? __pfx_fib6_clean_node+0x10/0x10
[ 1390.419032][T10623]  ? __pfx_fib6_ifdown+0x10/0x10
[ 1390.423998][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1390.428875][T10623]  rt6_disable_ip+0x120/0x720
[ 1390.433577][T10623]  ? rcu_is_watching+0x15/0xb0
[ 1390.438362][T10623]  ? __pfx_rt6_disable_ip+0x10/0x10
[ 1390.443583][T10623]  addrconf_ifdown+0x15d/0x1880
[ 1390.448458][T10623]  ? __mutex_unlock_slowpath+0x1cd/0x700
[ 1390.454112][T10623]  ? __pfx___mutex_lock+0x10/0x10
[ 1390.459161][T10623]  ? tls_dev_event+0x717/0xec0
[ 1390.463956][T10623]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1390.469271][T10623]  addrconf_notify+0x1bc/0x1010
[ 1390.474144][T10623]  notifier_call_chain+0x1b3/0x3e0
[ 1390.479263][T10623]  dev_close_many+0x29c/0x410
[ 1390.483974][T10623]  ? __pfx_dev_close_many+0x10/0x10
[ 1390.489202][T10623]  ? call_rcu+0x6dd/0x990
[ 1390.493699][T10623]  unregister_netdevice_many_notify+0x834/0x2330
[ 1390.500073][T10623]  ? __lock_acquire+0xaac/0xd20
[ 1390.504951][T10623]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1390.511748][T10623]  ? unregister_netdevice_queue+0x1b3/0x380
[ 1390.517670][T10623]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1390.523943][T10623]  ? net_generic+0x1e/0x240
[ 1390.528471][T10623]  ? net_generic+0x1e/0x240
[ 1390.533010][T10623]  ? nexthop_net_exit_batch_rtnl+0x100/0x150
[ 1390.539015][T10623]  cleanup_net+0x6a3/0xbd0
[ 1390.543478][T10623]  ? __pfx_cleanup_net+0x10/0x10
[ 1390.548453][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1390.553698][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1390.559437][T10623]  ? process_scheduled_works+0x9ec/0x17a0
[ 1390.565181][T10623]  process_scheduled_works+0xade/0x17a0
[ 1390.570762][T10623]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1390.576779][T10623]  worker_thread+0x8a0/0xda0
[ 1390.581385][T10623]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1390.587739][T10623]  ? __kthread_parkme+0x7b/0x200
[ 1390.592702][T10623]  kthread+0x711/0x8a0
[ 1390.596810][T10623]  ? __pfx_worker_thread+0x10/0x10
[ 1390.601936][T10623]  ? __pfx_kthread+0x10/0x10
[ 1390.606562][T10623]  ? __pfx_kthread+0x10/0x10
[ 1390.611187][T10623]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1390.616413][T10623]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1390.621649][T10623]  ? __pfx_kthread+0x10/0x10
[ 1390.626257][T10623]  ret_from_fork+0x4b/0x80
[ 1390.630685][T10623]  ? __pfx_kthread+0x10/0x10
[ 1390.635288][T10623]  ret_from_fork_asm+0x1a/0x30
[ 1390.640164][T10623]  </TASK>
[ 1390.643605][T10623] Kernel Offset: disabled
[ 1390.647934][T10623] Rebooting in 86400 seconds..