last executing test programs:

1m50.754465703s ago: executing program 0:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00'})
sendmsg$nl_route_sched(r0, 0x0, 0x0)

1m50.503296267s ago: executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000140)={@mcast2, @empty, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, r1})

1m50.41513611s ago: executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001200)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

1m20.393876528s ago: executing program 0:
pipe(0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x900, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0xffffffffffffffb2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000080)={0x0, 0x0, 0x1}, 0xc)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001ac0)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4040081}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x8, 0xffffffff, 0x8000, 0x1228, r1, 0xe3, '\x00', r6, r0, 0x0, 0x5, 0x5}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="85100000fbffffff1850000000075a400007000000180100002022732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000060000008500000006000000"], &(0x7f0000000300)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000500)={0x3, 0xd}, 0x10}, 0x90)
pipe(&(0x7f0000000580)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r10, r11, 0x2, 0x2}, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@cgroup=r8, r9, 0x15, 0x2002, 0x0, @prog_fd=r3}, 0x20)

50.879527245s ago: executing program 0:
pipe(0x0)
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x900, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0xffffffffffffffb2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r3, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r4 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000080)={0x0, 0x0, 0x1}, 0xc)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001ac0)=ANY=[], 0x64}, 0x1, 0x0, 0x0, 0x4040081}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x8, 0xffffffff, 0x8000, 0x1228, r1, 0xe3, '\x00', r6, r0, 0x0, 0x5, 0x5}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="85100000fbffffff1850000000075a400007000000180100002022732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000060000008500000006000000"], &(0x7f0000000300)='syzkaller\x00', 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', r6, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000004c0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000000500)={0x3, 0xd}, 0x10}, 0x90)
pipe(&(0x7f0000000580)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_emit_ethernet(0xd0, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
r10 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r10, r11, 0x2, 0x2}, 0x10)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@cgroup=r8, r9, 0x15, 0x2002, 0x0, @prog_fd=r3}, 0x20)

50.684408147s ago: executing program 0:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x0, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)='vlan0\x00'})
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x14, 0x4, 0x4, 0xfffffff8}, 0x48)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=@newlink={0x34, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x9801}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @gre={{0x8}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x34}}, 0x0)
sendto$packet(r1, &(0x7f0000000000)='1', 0x26, 0x0, &(0x7f0000000200)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @local}, 0x14)
ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000100)={<r5=>r0, 0x1, 0x640b977e, 0x100000001})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000140)=0x100a0, 0x4)
setsockopt$netrom_NETROM_T4(r3, 0x103, 0x6, &(0x7f00000000c0)=0x8, 0x4)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x84, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x20, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @dev}, @CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}]}]}, 0x84}}, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000380)={0x20, 0x1405, 0x1, 0x0, 0x0, "", [{{0x8}, {0x8, 0x3, 0x1}}]}, 0x20}}, 0x0)

40.367275018s ago: executing program 4:
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000740)="e2c23e62592faf9e2da14d71c36fe9c80f165620434dc317545fa71c0ed555b51107f2c438f67d6be34a173b340a2fc151c0739d2f9f607c9b2a21d9d21c4506c1b684a866d3964b76f00b030020314abafa1db249e1c5771b73e6f6e5750a7d5369f08fd6afc548352807b1a7102f84de39ff4ced8d0d19117c65de71f53f7e5beab2bcab53fd835602178871250cc6ab43fd59bf71e9d7bac115a2a51a957bb7caca4896bf98731b115f132b9644ed71b31734de5c10e5721c70b7a6ce4b49936f22e49b36d0debeb5df9ae2dd1d65e284eb307e33b62c781779073c130f3508c588c8dd79650cc1c14fe5a2730d1d", 0xf0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f0000000000)=@nat={'nat\x00', 0x670, 0x5, 0x350, 0xa8, 0x0, 0xfbffffff, 0x0, 0xa8, 0x2b8, 0x2b8, 0xffffffff, 0x2b8, 0x2b8, 0x5, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, 'geneve1\x00', 'geneve0\x00'}, 0x0, 0x70, 0xa8}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @empty, @local, @port, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0x98, 0x0, {0x0, 0x7}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x2b8}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x0, @local, @local, @gre_key, @gre_key}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @multicast}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3b0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000100)=@o_path={&(0x7f00000000c0)='./file0\x00'}, 0x18)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000a0000000e00080003000006040000001a000000c057613f0c000000030000000f00000001040000003061615f5f61615f00"], 0x0, 0x46, 0x0, 0x0, 0x7}, 0x20)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
bind$llc(r2, &(0x7f0000000040)={0x1a, 0x0, 0x0, 0x54}, 0x10)

40.259774554s ago: executing program 4:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.events\x00', 0x100002, 0x0)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="540000001400b5950e000000000000000a000000", @ANYRES32=r2, @ANYBLOB="14000200fe8000000000000000000000000000aa140006000000000001f0ffff0000000000000000140001"], 0x54}}, 0x0)

40.123106018s ago: executing program 4:
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
listen(r0, 0x20000005)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
write$binfmt_script(r2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_GET(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={0x0}}, 0x0)

39.921786014s ago: executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r1, &(0x7f0000000000)={0x1f, @fixed}, 0x8)

39.711252519s ago: executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_BSS(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5}]}, 0x24}}, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0x10, &(0x7f0000000000)=@framed={{}, [@snprintf={{}, {}, {}, {}, {0x5, 0x1, 0xb, 0x1, 0x2}, {}, {}, {0x4}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, 0x0, 0x0, 0xff7, &(0x7f0000001e00)=""/4087}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x20, &(0x7f0000000100)=@framed={{}, [@jmp={0x5, 0x1, 0x0, 0xa, 0x0, 0xffffffffffffffff, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xff}, @ldst={0x3, 0x2, 0x4, 0xa, 0x7, 0xffffffffffffffe0, 0x1}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @jmp={0x5, 0x0, 0x3, 0x0, 0x5, 0x30, 0x10}, @map_fd={0x18, 0xb, 0x1, 0x0, r3}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65}, 0x90)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0xa8, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x94, 0x1, [@m_mirred={0x60, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x13, 0xa, "140b00008f344efb88592c7b4072dd"}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0x8}}}]}]}, 0xa8}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000612073582c137153e37080c18800bac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)

39.516324174s ago: executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x198, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x174, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0x6, 0x2, [0x0]}}, {{0x1c, 0x1, {0x0, 0x3, 0x0, 0x0, 0x0, 0xfff, 0x3ff, 0x5}}, {0xe, 0x2, [0x9, 0x2, 0x0, 0x0, 0x3]}}, {{0x1c, 0x1, {0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0xdc, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x7, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x6}}, {0x10, 0x2, [0x200, 0x0, 0x5ca7, 0x0, 0x0, 0x0]}}, {{0x1c, 0x1, {0x80, 0x1, 0xfff, 0x80000001, 0x1, 0x459f, 0x3, 0x6}}, {0x10, 0x2, [0xee7, 0x3, 0x80, 0x8001, 0xfffa, 0x0]}}, {{0x1c, 0x1, {0x4, 0x80, 0xbc1e, 0x200, 0x0, 0x9, 0x8, 0x6}}, {0x10, 0x2, [0x3f, 0x100, 0x9, 0x80, 0x7fff, 0x8]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff72}}, {0x12, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}]}]}, 0x198}}, 0x0)

39.395508335s ago: executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x168, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x144, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0x6, 0x2, [0x0]}}, {{0x1c, 0x1, {0x0, 0x3, 0x0, 0x0, 0x0, 0xfff, 0x3ff, 0x5}}, {0xe, 0x2, [0x9, 0x2, 0x0, 0x0, 0x3]}}, {{0x1c, 0x1, {0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0xdc, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x7, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x6}}, {0x10, 0x2, [0x200, 0x0, 0x5ca7, 0x0, 0x0, 0x0]}}, {{0x1c, 0x1, {0x80, 0x1, 0xfff, 0x80000001, 0x1, 0x459f, 0x3, 0x6}}, {0x10, 0x2, [0xee7, 0x3, 0x80, 0x8001, 0xfffa, 0x0]}}, {{0x1c, 0x1, {0x4, 0x80, 0xbc1e, 0x200, 0x0, 0x9, 0x8, 0x6}}, {0x10, 0x2, [0x3f, 0x100, 0x9, 0x80, 0x7fff, 0x8]}}]}]}, 0x168}}, 0x0)

39.271548401s ago: executing program 1:
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000001bc0)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0xffe0}, 0x1c)

38.993574199s ago: executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/16], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001200)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

38.961792528s ago: executing program 4:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001200)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

8.96883646s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x6c}, [@ldst={0x3, 0x0, 0x3, 0x0, 0x6}], {0x95, 0x0, 0x9}}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0xfffffffd}, 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90) (async)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48)
close(r1) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x5, 0x7fe2, 0x1}, 0x48) (async)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xd, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000d000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000a80)='ext4_writepages\x00', r2}, 0x10) (async)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)=0x1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) (async)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r0) (async)
r5 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x1c}}, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
getsockname$packet(r5, &(0x7f0000000500)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000440)=0x14) (async)
r6 = socket$netlink(0x10, 0x3, 0x0) (async)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x825, 0x0, 0x0, {0x53, 0x0, 0x0, r7}, [@IFLA_PROTO_DOWN={0x8, 0xa, 0xf}]}, 0x28}}, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x34, r4, 0x800, 0x70bd2a, 0x25dfdbfb, {}, [@BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5, 0x37, 0x1}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0xffffffff}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8004}, 0x40010) (async)
write$cgroup_type(r3, &(0x7f0000000000), 0x9)

8.930661722s ago: executing program 4:
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_AUTORATE={0x8}, @TCA_CAKE_FWMARK={0x8}]}}]}, 0x44}}, 0x0)
socket$inet6_sctp(0xa, 0x0, 0x84)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="0203000236000000000000000000000005000600000000000a000000000000000000000000000000000000000000000000000000000000000200010000000000000007000000000005000500000000000a00000000000000ff010000000000000000000000000001000400000000000028000800b009"], 0x1b0}}, 0x0)
socket$packet(0x11, 0xa, 0x300)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00'}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0x0, 0xffffff25, 0x0, 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xff}, 0x50)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0x2e, &(0x7f0000000440)={@local, @empty, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x84, 0x0, @local, @multicast2}, "9e89c1d7ae98e01c61ea4265"}}}}, 0x0)
sendmsg$NL80211_CMD_CHANNEL_SWITCH(0xffffffffffffffff, 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r4=>0x0})
setsockopt$ARPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x61, &(0x7f0000000040)={'filter\x00', 0x4}, 0x68)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="580000001000010400000000ffdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="0000000080100000280012800c0001006d6163766c616e001800028008000700010000800a000900aaaaaaaaaa23000008000500", @ANYRES32=r4], 0x58}}, 0x0)

3.693139098s ago: executing program 2:
socket$alg(0x26, 0x5, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0xc6eb836ebda65e8c}, 0x10)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x2, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00'], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x90)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
setsockopt$TIPC_SRC_DROPPABLE(r1, 0x10f, 0x80, 0x0, 0x0)
r2 = socket(0xf, 0x1, 0x7)
r3 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f0000000040)=@req={0x3fc, 0x0, 0x0, 0x1}, 0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r4}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000000)={0x18, 0x0, {0x2, @remote, 'team_slave_1\x00'}}, 0x1e)
socket$pppoe(0x18, 0x1, 0x0)
r6 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r6, 0x114, 0x8, &(0x7f00000008c0), 0x4)
close(r6)
setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000180)=@req={0x4, 0x64, 0x20, 0x58}, 0x10)
sendmmsg(r2, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)
recvmmsg(r3, &(0x7f0000002940)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000100)=""/110, 0x6e}], 0x1}}, {{0x0, 0x0, &(0x7f0000002680)=[{&(0x7f0000002480)=""/176, 0xb0}], 0x1}}], 0x2, 0x0, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000340), 0x0, 0x2, 0x0)
sendmmsg$inet(r1, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
accept4$tipc(r1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000003c0)='virtio_transport_alloc_pkt\x00', r0}, 0x10)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r6, 0x28, 0x1, &(0x7f0000000100), 0x8)
socket$nl_netfilter(0x10, 0x3, 0xc)

2.668682345s ago: executing program 2:
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x70, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x44, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'lo\x00'}, {0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'nicvf0\x00'}]}]}]}], {0x14, 0x10}}, 0xf8}}, 0x0)

2.567615869s ago: executing program 2:
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r0}, 0x10)
r1 = socket$kcm(0x10, 0x5, 0x10)
sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003b000b05d25a806c8c6f94f90224fc600e0005000a000200053582c137153e3704000880fc0809000300", 0x33fe0}], 0x1}, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
recvmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000006300)=[{&(0x7f0000000580)=""/246, 0xf6}], 0x1}, 0x0)
socket$inet6(0xa, 0x200000000003, 0x87)
syz_emit_ethernet(0xaa, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x74, 0x2b, 0x0, @private2, @local, {[@hopopts={0x87}, @srh={0x0, 0x0, 0x3}], {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "82f63de64f6ce2ee11028289aefdb3449391a823213e6336516748a7949bb108", "402fa83b1d661c18462075368a186092", {"9ddeb8f71aa23d391b8fa99e9816af2d", "040876a663a86d97f46b9665cc18492b"}}}}}}}}, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x2, 0x80805, 0x0)
r3 = socket$kcm(0x2, 0x3, 0x84)
sendmsg$inet(r3, &(0x7f00000009c0)={&(0x7f0000000240)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="3c000000000000000000000007000000441454010000000000000000ac1414bb00000000004414000100000000000000000000000000000000000000000000001c000000000000000000000008000000", @ANYRESDEC=0x0], 0x60}, 0x0)
r4 = socket$nl_audit(0x10, 0x3, 0x9)
setsockopt$netlink_NETLINK_DROP_MEMBERSHIP(r4, 0x10e, 0x2, &(0x7f00000018c0)=0xd, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.throttle.io_service_bytes\x00', 0x7a05, 0x1700)
write$cgroup_int(r5, &(0x7f0000000200)=0x7, 0x12)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000040)={r5, &(0x7f00000000c0)="00e0aaf186249cfa587d4eec7f181af945a1031193bad2482c1aeb4d291b243333f23bdc6ff7229da42e2390403972b5759c3775ed26664e26a66d8284a5b7b74b9239dbee279ce834afb76fedbd9999e97402f8eb6a93b4b9064748756aa328a7e73ef9b38f17a54194c2cc950134a5771a8a92cefb34300583db2068a1bc9f91ce8cf4cd338deb27f8b09d07632443710bc9f1087e5e045778e71cc3d38ca3b9aa4e07a47f63cac9ad4a0c4eb4ac57ffeccf9963534408cc4857fb502472e9db62c6a227802af48be46a5a974da69eb9049d", 0x0}, 0x20)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000300), r6)
sendmsg$NLBL_MGMT_C_ADDDEF(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000002000000000400000018000200050013ff0f0000000000005514ea345cb1080007000000000008000800ac1e82010500010000000083993ae47bbc3e4d6ccb8e6e62eb2f3b5ff008bb89e44f439cb919a60b247e52cdacdc4e086766c2f4edaeb3872a7846"], 0x34}}, 0x0)
r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00'}, 0x10)
r10 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r10, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
sendmmsg$inet(r10, &(0x7f00000029c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000001980)="d5", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002280)=[{&(0x7f0000002080)="83", 0x1}], 0x1}}], 0x2, 0x4008095)
getsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x43, &(0x7f00000003c0), &(0x7f0000000400)=0x10)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r9, 0x0)

2.242157715s ago: executing program 2:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$rds(0x15, 0x5, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={0xffffffffffffffff, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_BSS_SHORT_SLOT_TIME={0x5}]}, 0x24}}, 0x0)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x0, 0x10, &(0x7f0000000000)=@framed={{}, [@snprintf={{}, {}, {}, {}, {0x5, 0x1, 0xb, 0x1, 0x2}, {}, {}, {0x4}, {}, {0x18, 0x3, 0x2, 0x0, r4}}]}, 0x0, 0x0, 0xff7, &(0x7f0000001e00)=""/4087}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x20, &(0x7f0000000100)=@framed={{}, [@jmp={0x5, 0x1, 0x0, 0xa, 0x0, 0xffffffffffffffff, 0x1}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}}, @map_idx_val={0x18, 0xa, 0x6, 0x0, 0xd, 0x0, 0x0, 0x0, 0xff}, @ldst={0x3, 0x2, 0x4, 0xa, 0x7, 0xffffffffffffffe0, 0x1}, @printk={@x, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @jmp={0x5, 0x0, 0x3, 0x0, 0x5, 0x30, 0x10}, @map_fd={0x18, 0xb, 0x1, 0x0, r4}, @func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffffd}]}, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65}, 0x90)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newtaction={0xa8, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x94, 0x1, [@m_mirred={0x60, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20}]}, {0x13, 0xa, "140b00008f344efb88592c7b4072dd"}, {0xc}, {0xc}}}, @m_mpls={0x30, 0x2, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0x8}}}]}]}, 0xa8}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000612073582c137153e37080c18800bac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)

2.087084633s ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x13c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@TCA_STAB={0x118, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, {0x6, 0x2, [0x0]}}, {{0x1c, 0x1, {0x0, 0x3, 0x0, 0x0, 0x0, 0xfff, 0x3ff, 0x5}}, {0xe, 0x2, [0x9, 0x2, 0x0, 0x0, 0x3]}}, {{0x1c, 0x1, {0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0xdc, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x2, [0x0, 0x0]}}, {{0x1c, 0x1, {0x0, 0x7, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x6}}, {0x10, 0x2, [0x200, 0x0, 0x5ca7, 0x0, 0x0, 0x0]}}, {{0x1c, 0x1, {0x80, 0x0, 0x0, 0x0, 0x0, 0x459f, 0x3, 0x6}}, {0x10, 0x2, [0xee7, 0x3, 0x80, 0x8001, 0xfffa, 0x0]}}]}]}, 0x13c}}, 0x0)

1.970931283s ago: executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$sock_bt_hci(r0, 0x400448cb, 0x0)

1.075397374s ago: executing program 3:
r0 = socket(0x11, 0x800000002, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0xfdfd, @loopback}})

713.055648ms ago: executing program 3:
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x0, 0x10001}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x70, 0x18, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x44, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x40, 0x3, 0x0, 0x1, [{0x14, 0x1, 'lo\x00'}, {0x14, 0x1, 'bond0\x00'}, {0x14, 0x1, 'nicvf0\x00'}]}]}]}], {0x14, 0x10}}, 0xf8}}, 0x0)

584.337789ms ago: executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80}, 0xc, 0x0}, 0x20000000) (async)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
setsockopt$SO_J1939_SEND_PRIO(r1, 0x6b, 0x3, &(0x7f0000000140)=0x3, 0x4) (async)
sendmsg$NFT_BATCH(r0, 0x0, 0x40488c0) (async)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="060000000000000000000000000000009500000000000000f8a021d9000f98120fc01a90a66500e96fa20a"], &(0x7f0000000000)='syzkaller\x00'}, 0x92)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00', r3}, 0x10) (async)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="6c00000010003b1500"/20, @ANYBLOB="0000000000000000140012800b0001006c6f7770616e00000400028008002e000000008108002e000300000008002500040000000500110009000000080004000004000008000f00ff01000008001c"], 0x6c}}, 0x0) (async)
r4 = socket$inet(0xa, 0x1, 0x2084)
connect$inet(r4, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
r5 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000002000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014020400b7030000000003808500000083000000bc0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000000000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x9, 0x1003, &(0x7f0000001e40)=""/4099}, 0x90) (async)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_ro(r7, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
unshare(0x2c060000) (async)
unshare(0x24020400) (async)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffffff52, &(0x7f0000000240)='cgroup\x00\x02\x12.\x92a\xf8\x1e\xef}\x19\xe7\\\xb1=\x00\xed^i@`\xef\xc0s[\x06{\n\x89*i\x8b\x87\x04\xc6}?r\xc8V\x93UBk\xf6\xfazl\x15\xeb1wTn\xad\xeeB\aU?(\x18~\"\xb9\xe6a%;!O\x7f\x02\x04\x13\xe2\xed'}, 0x30)
write$binfmt_script(r9, &(0x7f0000000100), 0xfecc) (async)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x12, r9, 0x0) (async)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) (async)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
preadv(r8, &(0x7f00000013c0)=[{&(0x7f0000000040)=""/20, 0x14}], 0x1, 0x0, 0x0) (async)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000200)={<r10=>0x0, 0x4}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_CONTEXT(r8, 0x84, 0x11, &(0x7f00000002c0)={r10, 0x6}, 0x8) (async)
listen(0xffffffffffffffff, 0x8)
socket(0x11, 0x800000002, 0x0)

393.547352ms ago: executing program 3:
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x2, 0xe, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @sadb_address={0x3, 0x6}, @sadb_lifetime={0x4, 0x4}, @sadb_x_policy={0x8, 0x12, 0x0, 0x2, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@mcast2, @in=@empty}}, @sadb_lifetime={0x4, 0x3}]}, 0xc0}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x21}, [@ldst={0x6, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc9, &(0x7f0000000080)=""/201, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0xa0, 0xfffffffffffffff0}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$packet(0x11, 0x2, 0x300)
socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)={0x1c, r4, 0x5, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44854}, 0x4000)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x28, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_COOKIE={0xc}]}, 0x28}}, 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000b40)={@map, 0xffffffffffffffff, 0x33, 0x20, 0xffffffffffffffff, @prog_fd}, 0x20)
bpf$ITER_CREATE(0x21, &(0x7f0000001600), 0x8)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r6}, 0x4)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffff963}, [@call={0x85, 0x0, 0x0, 0x41}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r6}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_IBSS(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)={0x8c, r9, 0x101, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_CONTROL_PORT_OVER_NL80211={0x4}, @NL80211_ATTR_BEACON_INTERVAL={0x8, 0xc, @random=0xffff}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x400, 0x2, 0x0, 0x0, {0xfffffffffffffff8, 0x16b8, 0x0, 0x4, 0x0, 0x1, 0x1}, 0x800, 0x1, 0x40}}, @NL80211_ATTR_MESH_CONFIG={0x1c, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_MAX_RETRIES={0x5, 0x5, 0xd}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5}, @NL80211_MESHCONF_MAX_PEER_LINKS={0x6, 0x4, 0x3e}]}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x6}, @NL80211_ATTR_SSID={0x1f, 0x34, @random="dfa2a878738439dc0ad78921b1479b3149a643920e87121a81498f"}]}, 0x8c}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)=ANY=[@ANYBLOB="2c0000001400000000000000000000000a000000", @ANYRES32=0x0, @ANYBLOB="14000000000000e9ff1fd1de0000000000000000"], 0x2c}}, 0x0)
socket(0x10, 0x803, 0x0)
socket(0x10, 0x803, 0x0)
r10 = socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r10, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)

156.866752ms ago: executing program 3:
socket$inet_sctp(0x2, 0x1, 0x84) (async)
close(0xffffffffffffffff) (async)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@private0, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x2}, {{@in=@private, 0x0, 0x32}, 0x2, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe4b5}}, 0xe8) (async)
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23, 0x1ff}, 0x1c) (async)
listen(r1, 0x3)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa10000000000000701f0fff7ffffffb702000008000000b7030000000000838500b83a7377d34c26b9000000000000"], &(0x7f00000009c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x0, 0x1, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000540)="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", 0x5, r4}, 0x38) (async)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000380)={{0xffffffffffffffff, <r5=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000340)='%ps    \x00'}, 0x20)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000001c0000000000000000000018150000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000450000009500000000000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) (async)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff}) (async)
sendmsg$inet(r3, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x24008084)
sendmsg$tipc(r9, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000040)='b', 0x1}], 0x1}, 0x0) (async)
recvfrom(r8, &(0x7f0000001880)=""/63, 0x3f, 0x0, 0x0, 0x0)
write$binfmt_script(r7, &(0x7f0000020240), 0x10010) (async)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r7, 0x0) (async)
ioctl$FS_IOC_GETFSMAP(r7, 0x40305839, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000002"]) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0x6, 0x10, &(0x7f0000000a80)=ANY=[@ANYBLOB="180000000800db00000000008395c1c6f3bfc5dc5899090000181100001fcfcf9eb91125ded8ad609eadf635a912c2d27e33739e2078453c8aa70d86765cc8f3781ce07affe660d9d9c312e5e0d1c09007395fa16defd014637f3490497c8d359bcafa9992fbbad0fa4d771c534dbfdde9b3997a997273d1fc8744ec2918fb3991b2ecd894e5a332663b7961ce973b092f2c20d8cadb8ace5673c194b6651c3f4bcd23c66cc7", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095000000000000008520000001000000bf91000000000000b7020000020000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000200)='syzkaller\x00', 0xffffffff, 0x55, &(0x7f0000000240)=""/85, 0x41100, 0x7f4df164df0e87ed, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x5, 0x9, 0x3}, 0x10, 0x0, 0x0, 0x1, &(0x7f00000003c0)=[r5, r6, 0x1, r7], &(0x7f0000000400)=[{0x5, 0x4, 0xf, 0x2}], 0x10, 0x7}, 0x90)
r10 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_DONE(r10, 0x0, 0x21, 0x0, 0x0) (async)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @multicast1}, @timestamp}}}}, 0x0) (async)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, 0x0, 0x0) (async)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)

0s ago: executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000001295"], &(0x7f00000003c0)='GPL\x00'}, 0x90)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
setsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r2, 0x84, 0x7, &(0x7f0000000280)={0x6}, 0x4)
ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f0000000100)=0x3)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c)
connect$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, 0x1c)
shutdown(r4, 0x1)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x85, &(0x7f0000000180)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x8}, 0x90)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000300)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x1, 0x34}, 0x9c)
r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$PPPIOCATTACH(r5, 0x4004743d, &(0x7f0000000040)=0x3)
ioctl$PPPIOCGNPMODE(r5, 0xc008744c, &(0x7f0000000000)={0x281})
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000140)='cpuset.cpus\x00', 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
getsockopt$sock_timeval(r8, 0x1, 0x43, &(0x7f0000000040), &(0x7f0000000080)=0x46)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r8, 0x8982, &(0x7f00000000c0)={0x0, 'tunl0\x00', {0x3}, 0x9})
write$cgroup_subtree(r7, &(0x7f0000000340)=ANY=[], 0x6a)

kernel console output (not intermixed with test programs):

fnetlink_rcv+0x297/0x2a80
[ 2158.150209][T25719]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2158.156589][T25719]  ? __local_bh_enable_ip+0x168/0x200
[ 2158.162008][T25719]  ? lockdep_hardirqs_on+0x99/0x150
[ 2158.167255][T25719]  ? __local_bh_enable_ip+0x168/0x200
[ 2158.172661][T25719]  ? dev_hard_start_xmit+0x773/0x7e0
[ 2158.177987][T25719]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2158.183133][T25719]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2158.188904][T25719]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2158.194055][T25719]  ? __dev_queue_xmit+0x16c9/0x3d30
[ 2158.199292][T25719]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 2158.204464][T25719]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2158.209627][T25719]  ? ref_tracker_free+0x643/0x7e0
[ 2158.214692][T25719]  ? __asan_memcpy+0x40/0x70
[ 2158.219320][T25719]  ? __pfx_ref_tracker_free+0x10/0x10
[ 2158.224753][T25719]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2158.229993][T25719]  ? skb_clone+0x240/0x390
[ 2158.234450][T25719]  ? __pfx_lock_release+0x10/0x10
[ 2158.239518][T25719]  ? __netlink_deliver_tap+0x77e/0x7c0
[ 2158.245032][T25719]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2158.250278][T25719]  netlink_unicast+0x7ea/0x980
[ 2158.255095][T25719]  ? __pfx_netlink_unicast+0x10/0x10
[ 2158.260417][T25719]  ? __virt_addr_valid+0x183/0x520
[ 2158.265583][T25719]  ? __check_object_size+0x49c/0x900
[ 2158.270907][T25719]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2158.276067][T25719]  netlink_sendmsg+0x8db/0xcb0
[ 2158.280891][T25719]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2158.286224][T25719]  ? __import_iovec+0x536/0x820
[ 2158.291117][T25719]  ? aa_sock_msg_perm+0x91/0x160
[ 2158.296096][T25719]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2158.301425][T25719]  ? security_socket_sendmsg+0x87/0xb0
[ 2158.306931][T25719]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2158.312260][T25719]  __sock_sendmsg+0x221/0x270
[ 2158.316987][T25719]  ____sys_sendmsg+0x525/0x7d0
[ 2158.321796][T25719]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2158.327134][T25719]  __sys_sendmsg+0x2b0/0x3a0
[ 2158.331763][T25719]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2158.336954][T25719]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2158.343318][T25719]  ? do_syscall_64+0x100/0x230
[ 2158.348119][T25719]  ? do_syscall_64+0xb6/0x230
[ 2158.352834][T25719]  do_syscall_64+0xf3/0x230
[ 2158.357378][T25719]  ? clear_bhb_loop+0x35/0x90
[ 2158.362104][T25719]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2158.368035][T25719] RIP: 0033:0x7fa30fe7cf29
[ 2158.372495][T25719] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2158.392138][T25719] RSP: 002b:00007fa310bae0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2158.400597][T25719] RAX: ffffffffffffffda RBX: 00007fa30ffb3f80 RCX: 00007fa30fe7cf29
[ 2158.408608][T25719] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[ 2158.416617][T25719] RBP: 00007fa30feec074 R08: 0000000000000000 R09: 0000000000000000
[ 2158.424628][T25719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2158.432635][T25719] R13: 000000000000000b R14: 00007fa30ffb3f80 R15: 00007ffd85b36f08
[ 2158.440672][T25719]  </TASK>
[ 2158.451502][T25719] Mem-Info:
[ 2158.454685][T25719] active_anon:14754 inactive_anon:0 isolated_anon:0
[ 2158.454685][T25719]  active_file:0 inactive_file:46738 isolated_file:0
[ 2158.454685][T25719]  unevictable:768 dirty:122 writeback:0
[ 2158.454685][T25719]  slab_reclaimable:12352 slab_unreclaimable:105380
[ 2158.454685][T25719]  mapped:19170 shmem:1799 pagetables:650
[ 2158.454685][T25719]  sec_pagetables:0 bounce:0
[ 2158.454685][T25719]  kernel_misc_reclaimable:0
[ 2158.454685][T25719]  free:1342234 free_pcp:1072 free_cma:0
[ 2158.525572][T25719] Node 0 active_anon:59016kB inactive_anon:0kB active_file:0kB inactive_file:186876kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:76680kB dirty:484kB writeback:0kB shmem:5660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9844kB pagetables:2600kB sec_pagetables:0kB all_unreclaimable? no
[ 2158.613349][T25719] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2158.670993][T25719] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2158.699825][T25719] lowmem_reserve[]: 0 2571 2571 0 0
[ 2158.720023][T25719] Node 0 DMA32 free:1407212kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:58976kB inactive_anon:0kB active_file:0kB inactive_file:186556kB unevictable:1536kB writepending:484kB present:3129332kB managed:2659872kB mlocked:0kB bounce:0kB free_pcp:1956kB local_pcp:852kB free_cma:0kB
[ 2158.755455][T25719] lowmem_reserve[]: 0 0 0 0 0
[ 2158.760433][T25719] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:320kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2158.800635][T25719] lowmem_reserve[]: 0 0 0 0 0
[ 2158.830741][T25719] Node 1 Normal free:3947160kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:2704kB local_pcp:2204kB free_cma:0kB
[ 2158.880169][T25719] lowmem_reserve[]: 0 0 0 0 0
[ 2158.901148][T25719] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2158.968980][T25719] Node 0 DMA32: 932*4kB (ME) 700*8kB (ME) 575*16kB (UME) 183*32kB (UME) 77*64kB (UME) 40*128kB (ME) 28*256kB (ME) 10*512kB (ME) 7*1024kB (ME) 3*2048kB (UME) 329*4096kB (M) = 1407616kB
[ 2158.993526][T25719] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2159.035694][T25719] Node 1 Normal: 2*4kB (U) 2*8kB (U) 2*16kB (U) 1*32kB (U) 5*64kB (UM) 0*128kB 1*256kB (M) 6*512kB (UM) 3*1024kB (U) 2*2048kB (UM) 961*4096kB (M) = 3947160kB
[ 2159.065469][T25719] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2159.107750][T25719] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2159.150258][T25719] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2159.168410][T25719] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2159.186496][T25719] 48516 total pagecache pages
[ 2159.200050][T25719] 0 pages in swap cache
[ 2159.215246][T25719] Free swap  = 124996kB
[ 2159.219588][T25719] Total swap = 124996kB
[ 2159.240346][T25719] 2097051 pages RAM
[ 2159.249257][T25719] 0 pages HighMem/MovableOnly
[ 2159.257031][T25719] 400873 pages reserved
[ 2159.271277][T25719] 0 pages cma reserved
[ 2160.785762][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[ 2163.648044][T25794] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[ 2163.674888][T25794] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[ 2163.726223][T25800] netlink: 'syz-executor.3': attribute type 29 has an invalid length.
[ 2163.735662][T25799] netlink: 'syz-executor.1': attribute type 9 has an invalid length.
[ 2163.790362][T25799] netlink: 209836 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2163.936780][T25806] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2164.396022][T25789] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2164.662949][T25835] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2164.742795][T25837] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 2165.253105][T25855] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2165.301432][T25855] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2165.943876][T25853] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2167.418219][T25925] pim6reg1: entered promiscuous mode
[ 2167.458495][T25925] pim6reg1: entered allmulticast mode
[ 2167.518362][T25904] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2167.786524][T25935] pim6reg1: entered promiscuous mode
[ 2167.840003][T25935] pim6reg1: entered allmulticast mode
[ 2168.635518][T25968] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2169.142010][ T2800] Ignoring NSS change in VHT Operating Mode Notification from 08:02:11:00:00:00 with invalid nss 2
[ 2169.208796][T25960] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2169.655422][T25797] warn_alloc: 5 callbacks suppressed
[ 2169.655445][T25797] syz-executor.4: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0-1
[ 2169.719971][T25797] CPU: 0 PID: 25797 Comm: syz-executor.4 Not tainted 6.10.0-rc2-syzkaller-00761-g3ec8d7572a69 #0
[ 2169.730546][T25797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 2169.740630][T25797] Call Trace:
[ 2169.743936][T25797]  <TASK>
[ 2169.746887][T25797]  dump_stack_lvl+0x241/0x360
[ 2169.751602][T25797]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2169.756838][T25797]  ? __pfx__printk+0x10/0x10
[ 2169.761489][T25797]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 2169.767953][T25797]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[ 2169.774508][T25797]  warn_alloc+0x278/0x410
[ 2169.778896][T25797]  ? __pfx_warn_alloc+0x10/0x10
[ 2169.783800][T25797]  ? hash_netiface_create+0x356/0x1040
[ 2169.789308][T25797]  ? __get_vm_area_node+0x23d/0x270
[ 2169.794555][T25797]  __vmalloc_node_range_noprof+0x69f/0x1460
[ 2169.800529][T25797]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2169.806881][T25797]  ? hash_netiface_create+0x356/0x1040
[ 2169.812342][T25797]  ? __get_vm_area_node+0x23d/0x270
[ 2169.817537][T25797]  __vmalloc_node_range_noprof+0x5bf/0x1460
[ 2169.823428][T25797]  ? hash_netiface_create+0x356/0x1040
[ 2169.828902][T25797]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2169.835224][T25797]  ? rcu_is_watching+0x15/0xb0
[ 2169.839986][T25797]  ? trace_kmalloc+0x1f/0xd0
[ 2169.844565][T25797]  ? __kmalloc_node_noprof+0x247/0x440
[ 2169.850012][T25797]  ? kvmalloc_node_noprof+0x72/0x190
[ 2169.855296][T25797]  kvmalloc_node_noprof+0x142/0x190
[ 2169.860494][T25797]  ? hash_netiface_create+0x356/0x1040
[ 2169.865948][T25797]  hash_netiface_create+0x356/0x1040
[ 2169.871237][T25797]  ? __pfx_hash_netiface_create+0x10/0x10
[ 2169.876954][T25797]  ip_set_create+0xa5c/0x17d0
[ 2169.881628][T25797]  ? ip_set_create+0x45e/0x17d0
[ 2169.886479][T25797]  ? __pfx_ip_set_create+0x10/0x10
[ 2169.891583][T25797]  ? trace_contention_end+0x3c/0x120
[ 2169.896885][T25797]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2169.902083][T25797]  nfnetlink_rcv_msg+0xbec/0x1180
[ 2169.907104][T25797]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2169.912316][T25797]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2169.917791][T25797]  ? kasan_save_track+0x51/0x80
[ 2169.922635][T25797]  ? kasan_save_track+0x3f/0x80
[ 2169.927477][T25797]  ? kasan_save_free_info+0x40/0x50
[ 2169.932670][T25797]  ? __dev_queue_xmit+0x1b0e/0x3d30
[ 2169.937860][T25797]  ? __netlink_deliver_tap+0x54d/0x7c0
[ 2169.943312][T25797]  ? netlink_deliver_tap+0x19d/0x1b0
[ 2169.948589][T25797]  ? netlink_unicast+0x7b8/0x980
[ 2169.953520][T25797]  ? netlink_sendmsg+0x8db/0xcb0
[ 2169.958455][T25797]  ? ____sys_sendmsg+0x525/0x7d0
[ 2169.963395][T25797]  netlink_rcv_skb+0x1e3/0x430
[ 2169.968183][T25797]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2169.973666][T25797]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2169.978993][T25797]  ? apparmor_capable+0x138/0x1b0
[ 2169.984029][T25797]  ? bpf_lsm_capable+0x9/0x10
[ 2169.988703][T25797]  ? security_capable+0x90/0xb0
[ 2169.993575][T25797]  nfnetlink_rcv+0x297/0x2a80
[ 2169.998304][T25797]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2170.004643][T25797]  ? __local_bh_enable_ip+0x168/0x200
[ 2170.010012][T25797]  ? lockdep_hardirqs_on+0x99/0x150
[ 2170.015214][T25797]  ? __local_bh_enable_ip+0x168/0x200
[ 2170.020582][T25797]  ? dev_hard_start_xmit+0x773/0x7e0
[ 2170.025864][T25797]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2170.030968][T25797]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2170.036682][T25797]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2170.041788][T25797]  ? __dev_queue_xmit+0x16c9/0x3d30
[ 2170.046998][T25797]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 2170.052140][T25797]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2170.057297][T25797]  ? ref_tracker_free+0x643/0x7e0
[ 2170.062354][T25797]  ? __asan_memcpy+0x40/0x70
[ 2170.066952][T25797]  ? __pfx_ref_tracker_free+0x10/0x10
[ 2170.072337][T25797]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2170.077533][T25797]  ? skb_clone+0x240/0x390
[ 2170.081943][T25797]  ? __pfx_lock_release+0x10/0x10
[ 2170.086960][T25797]  ? __netlink_deliver_tap+0x77e/0x7c0
[ 2170.092424][T25797]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2170.097620][T25797]  netlink_unicast+0x7ea/0x980
[ 2170.102388][T25797]  ? __pfx_netlink_unicast+0x10/0x10
[ 2170.107663][T25797]  ? __virt_addr_valid+0x183/0x520
[ 2170.112774][T25797]  ? __check_object_size+0x49c/0x900
[ 2170.118054][T25797]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2170.123164][T25797]  netlink_sendmsg+0x8db/0xcb0
[ 2170.127940][T25797]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2170.133228][T25797]  ? __import_iovec+0x536/0x820
[ 2170.138074][T25797]  ? aa_sock_msg_perm+0x91/0x160
[ 2170.143011][T25797]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2170.148287][T25797]  ? security_socket_sendmsg+0x87/0xb0
[ 2170.153749][T25797]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2170.159039][T25797]  __sock_sendmsg+0x221/0x270
[ 2170.163736][T25797]  ____sys_sendmsg+0x525/0x7d0
[ 2170.168506][T25797]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2170.173800][T25797]  __sys_sendmsg+0x2b0/0x3a0
[ 2170.178389][T25797]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2170.183521][T25797]  ? __rseq_handle_notify_resume+0x353/0x14e0
[ 2170.189594][T25797]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2170.195918][T25797]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2170.202251][T25797]  ? do_syscall_64+0xb6/0x230
[ 2170.206925][T25797]  do_syscall_64+0xf3/0x230
[ 2170.211427][T25797]  ? clear_bhb_loop+0x35/0x90
[ 2170.216102][T25797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2170.221991][T25797] RIP: 0033:0x7f102d67cf29
[ 2170.226408][T25797] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2170.246026][T25797] RSP: 002b:00007f102e48a0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2170.254445][T25797] RAX: ffffffffffffffda RBX: 00007f102d7b3f80 RCX: 00007f102d67cf29
[ 2170.262502][T25797] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[ 2170.270470][T25797] RBP: 00007f102d6ec074 R08: 0000000000000000 R09: 0000000000000000
[ 2170.278439][T25797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2170.286410][T25797] R13: 000000000000000b R14: 00007f102d7b3f80 R15: 00007ffd4ffd2f58
[ 2170.294392][T25797]  </TASK>
[ 2170.331868][T25797] Mem-Info:
[ 2170.335043][T25797] active_anon:14754 inactive_anon:0 isolated_anon:0
[ 2170.335043][T25797]  active_file:0 inactive_file:47702 isolated_file:0
[ 2170.335043][T25797]  unevictable:768 dirty:1105 writeback:0
[ 2170.335043][T25797]  slab_reclaimable:12345 slab_unreclaimable:103107
[ 2170.335043][T25797]  mapped:18759 shmem:1799 pagetables:643
[ 2170.335043][T25797]  sec_pagetables:0 bounce:0
[ 2170.335043][T25797]  kernel_misc_reclaimable:0
[ 2170.335043][T25797]  free:1342353 free_pcp:2348 free_cma:0
[ 2170.435225][T26003] hsr0: entered promiscuous mode
[ 2170.439961][T25797] Node 0 active_anon:59416kB inactive_anon:0kB active_file:0kB inactive_file:190732kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:75036kB dirty:4416kB writeback:0kB shmem:5660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9852kB pagetables:2472kB sec_pagetables:0kB all_unreclaimable? no
[ 2170.505786][T25797] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2170.551524][T26003] hsr_slave_0: left promiscuous mode
[ 2170.561707][T25797] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2170.596328][T25797] lowmem_reserve[]: 0 2571 2571 0 0
[ 2170.602063][T26003] hsr_slave_1: left promiscuous mode
[ 2170.609508][T25797] Node 0 DMA32 free:1406896kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:60676kB inactive_anon:0kB active_file:0kB inactive_file:187012kB unevictable:1536kB writepending:1016kB present:3129332kB managed:2659872kB mlocked:0kB bounce:0kB free_pcp:8964kB local_pcp:7196kB free_cma:0kB
[ 2170.678746][T26003] hsr0 (unregistering): left promiscuous mode
[ 2170.731221][T25797] lowmem_reserve[]: 0 0 0 0 0
[ 2170.737794][T25797] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:320kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2170.823679][T25797] lowmem_reserve[]: 0 0 0 0 0
[ 2170.828485][T25797] Node 1 Normal free:3948668kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:1196kB local_pcp:0kB free_cma:0kB
[ 2170.934830][T25797] lowmem_reserve[]: 0 0 0 0 0
[ 2170.939637][T25797] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2170.968101][T25797] Node 0 DMA32: 181*4kB (UME) 223*8kB (UE) 461*16kB (UME) 175*32kB (UME) 163*64kB (UME) 44*128kB (UME) 29*256kB (UME) 10*512kB (ME) 22*1024kB (UME) 3*2048kB (UME) 325*4096kB (M) = 1403964kB
[ 2171.055253][T25797] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2171.082830][T25797] Node 1 Normal: 3*4kB (U) 4*8kB (U) 11*16kB (U) 9*32kB (U) 6*64kB (UM) 0*128kB 3*256kB (UM) 7*512kB (UM) 3*1024kB (U) 2*2048kB (UM) 961*4096kB (M) = 3948668kB
[ 2171.125328][T25797] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2171.135727][T25797] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2171.161412][T25797] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2171.175593][T25797] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2171.200845][T25797] 48648 total pagecache pages
[ 2171.205590][T25797] 0 pages in swap cache
[ 2171.209770][T25797] Free swap  = 124996kB
[ 2171.219047][T25797] Total swap = 124996kB
[ 2171.239989][T25797] 2097051 pages RAM
[ 2171.243866][T25797] 0 pages HighMem/MovableOnly
[ 2171.248564][T25797] 400873 pages reserved
[ 2171.265582][T25797] 0 pages cma reserved
[ 2171.433504][T26007] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2171.722748][T26031] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2172.894303][T26050] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2172.940304][T17882] Bluetooth: hci2: command 0x0405 tx timeout
[ 2173.239308][T26078] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2174.732454][T26115] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2177.822478][T26182] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2178.290763][T26216] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 2180.145762][T26086] warn_alloc: 3 callbacks suppressed
[ 2180.145782][T26086] syz-executor.2: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1
[ 2180.208764][T26086] CPU: 0 PID: 26086 Comm: syz-executor.2 Not tainted 6.10.0-rc2-syzkaller-00761-g3ec8d7572a69 #0
[ 2180.219336][T26086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 2180.229424][T26086] Call Trace:
[ 2180.232724][T26086]  <TASK>
[ 2180.235677][T26086]  dump_stack_lvl+0x241/0x360
[ 2180.240391][T26086]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2180.245619][T26086]  ? __pfx__printk+0x10/0x10
[ 2180.250254][T26086]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 2180.256712][T26086]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[ 2180.263261][T26086]  warn_alloc+0x278/0x410
[ 2180.267650][T26086]  ? __pfx_warn_alloc+0x10/0x10
[ 2180.272550][T26086]  ? hash_netiface_create+0x356/0x1040
[ 2180.278047][T26086]  ? __get_vm_area_node+0x23d/0x270
[ 2180.283278][T26086]  __vmalloc_node_range_noprof+0x69f/0x1460
[ 2180.289243][T26086]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2180.295611][T26086]  ? hash_netiface_create+0x356/0x1040
[ 2180.301113][T26086]  ? __get_vm_area_node+0x23d/0x270
[ 2180.306360][T26086]  __vmalloc_node_range_noprof+0x5bf/0x1460
[ 2180.312297][T26086]  ? hash_netiface_create+0x356/0x1040
[ 2180.317805][T26086]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2180.324170][T26086]  ? rcu_is_watching+0x15/0xb0
[ 2180.328982][T26086]  ? trace_kmalloc+0x1f/0xd0
[ 2180.333605][T26086]  ? __kmalloc_node_noprof+0x247/0x440
[ 2180.339101][T26086]  ? kvmalloc_node_noprof+0x72/0x190
[ 2180.344418][T26086]  kvmalloc_node_noprof+0x142/0x190
[ 2180.349660][T26086]  ? hash_netiface_create+0x356/0x1040
[ 2180.355159][T26086]  hash_netiface_create+0x356/0x1040
[ 2180.360507][T26086]  ? __pfx_hash_netiface_create+0x10/0x10
[ 2180.366267][T26086]  ip_set_create+0xa5c/0x17d0
[ 2180.370982][T26086]  ? ip_set_create+0x45e/0x17d0
[ 2180.375875][T26086]  ? __pfx_ip_set_create+0x10/0x10
[ 2180.381020][T26086]  ? trace_contention_end+0x3c/0x120
[ 2180.386381][T26086]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2180.391619][T26086]  nfnetlink_rcv_msg+0xbec/0x1180
[ 2180.396682][T26086]  ? 0xffffffffa00038c0
[ 2180.400864][T26086]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2180.406128][T26086]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2180.411673][T26086]  ? kasan_save_track+0x51/0x80
[ 2180.416653][T26086]  ? kasan_save_track+0x3f/0x80
[ 2180.421544][T26086]  ? kasan_save_free_info+0x40/0x50
[ 2180.426784][T26086]  ? __dev_queue_xmit+0x1b0e/0x3d30
[ 2180.432029][T26086]  ? __netlink_deliver_tap+0x54d/0x7c0
[ 2180.437530][T26086]  ? netlink_deliver_tap+0x19d/0x1b0
[ 2180.442855][T26086]  ? netlink_unicast+0x7b8/0x980
[ 2180.447832][T26086]  ? netlink_sendmsg+0x8db/0xcb0
[ 2180.452814][T26086]  ? ____sys_sendmsg+0x525/0x7d0
[ 2180.457798][T26086]  netlink_rcv_skb+0x1e3/0x430
[ 2180.462605][T26086]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2180.468103][T26086]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2180.473455][T26086]  ? apparmor_capable+0x138/0x1b0
[ 2180.478526][T26086]  ? bpf_lsm_capable+0x9/0x10
[ 2180.483239][T26086]  ? security_capable+0x90/0xb0
[ 2180.488134][T26086]  nfnetlink_rcv+0x297/0x2a80
[ 2180.492853][T26086]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2180.499220][T26086]  ? __local_bh_enable_ip+0x168/0x200
[ 2180.504626][T26086]  ? lockdep_hardirqs_on+0x99/0x150
[ 2180.509865][T26086]  ? __local_bh_enable_ip+0x168/0x200
[ 2180.515269][T26086]  ? dev_hard_start_xmit+0x773/0x7e0
[ 2180.520591][T26086]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2180.525742][T26086]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2180.531501][T26086]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2180.536643][T26086]  ? __dev_queue_xmit+0x16c9/0x3d30
[ 2180.541872][T26086]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 2180.547033][T26086]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2180.552194][T26086]  ? ref_tracker_free+0x643/0x7e0
[ 2180.557262][T26086]  ? __asan_memcpy+0x40/0x70
[ 2180.561889][T26086]  ? __pfx_ref_tracker_free+0x10/0x10
[ 2180.567316][T26086]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2180.572555][T26086]  ? skb_clone+0x240/0x390
[ 2180.577007][T26086]  ? __pfx_lock_release+0x10/0x10
[ 2180.582069][T26086]  ? __netlink_deliver_tap+0x77e/0x7c0
[ 2180.587579][T26086]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2180.592820][T26086]  netlink_unicast+0x7ea/0x980
[ 2180.597636][T26086]  ? __pfx_netlink_unicast+0x10/0x10
[ 2180.602963][T26086]  ? __virt_addr_valid+0x183/0x520
[ 2180.608128][T26086]  ? __check_object_size+0x49c/0x900
[ 2180.613448][T26086]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2180.618612][T26086]  netlink_sendmsg+0x8db/0xcb0
[ 2180.623440][T26086]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2180.628775][T26086]  ? __import_iovec+0x536/0x820
[ 2180.633661][T26086]  ? aa_sock_msg_perm+0x91/0x160
[ 2180.638637][T26086]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2180.643958][T26086]  ? security_socket_sendmsg+0x87/0xb0
[ 2180.649468][T26086]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2180.654801][T26086]  __sock_sendmsg+0x221/0x270
[ 2180.659526][T26086]  ____sys_sendmsg+0x525/0x7d0
[ 2180.664340][T26086]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2180.669672][T26086]  __sys_sendmsg+0x2b0/0x3a0
[ 2180.674293][T26086]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2180.679489][T26086]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2180.685859][T26086]  ? do_syscall_64+0x100/0x230
[ 2180.690668][T26086]  ? do_syscall_64+0xb6/0x230
[ 2180.695381][T26086]  do_syscall_64+0xf3/0x230
[ 2180.699910][T26086]  ? clear_bhb_loop+0x35/0x90
[ 2180.704617][T26086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2180.710545][T26086] RIP: 0033:0x7fa30fe7cf29
[ 2180.714988][T26086] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2180.734624][T26086] RSP: 002b:00007fa310bae0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2180.743074][T26086] RAX: ffffffffffffffda RBX: 00007fa30ffb3f80 RCX: 00007fa30fe7cf29
[ 2180.751077][T26086] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[ 2180.759076][T26086] RBP: 00007fa30feec074 R08: 0000000000000000 R09: 0000000000000000
[ 2180.767075][T26086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2180.775072][T26086] R13: 000000000000000b R14: 00007fa30ffb3f80 R15: 00007ffd85b36f08
[ 2180.783095][T26086]  </TASK>
[ 2180.850185][T26086] Mem-Info:
[ 2180.861023][T26086] active_anon:14704 inactive_anon:0 isolated_anon:0
[ 2180.861023][T26086]  active_file:0 inactive_file:46802 isolated_file:0
[ 2180.861023][T26086]  unevictable:768 dirty:138 writeback:0
[ 2180.861023][T26086]  slab_reclaimable:12275 slab_unreclaimable:102265
[ 2180.861023][T26086]  mapped:19219 shmem:1799 pagetables:630
[ 2180.861023][T26086]  sec_pagetables:0 bounce:0
[ 2180.861023][T26086]  kernel_misc_reclaimable:0
[ 2180.861023][T26086]  free:1344450 free_pcp:2105 free_cma:0
[ 2180.922046][T26086] Node 0 active_anon:58916kB inactive_anon:0kB active_file:0kB inactive_file:187132kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:76876kB dirty:548kB writeback:0kB shmem:5660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9756kB pagetables:2420kB sec_pagetables:0kB all_unreclaimable? no
[ 2181.014547][T26086] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2181.088637][T26086] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2181.142119][T26086] lowmem_reserve[]: 0 2571 2571 0 0
[ 2181.155143][T26086] Node 0 DMA32 free:1416960kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:58976kB inactive_anon:0kB active_file:0kB inactive_file:186812kB unevictable:1536kB writepending:548kB present:3129332kB managed:2659872kB mlocked:0kB bounce:0kB free_pcp:4264kB local_pcp:3488kB free_cma:0kB
[ 2181.220473][T26086] lowmem_reserve[]: 0 0 0 0 0
[ 2181.238948][T26086] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:320kB unevictable:0kB writepending:0kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2181.383288][T26086] lowmem_reserve[]: 0 0 0 0 0
[ 2181.388101][T26086] Node 1 Normal free:3949704kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:160kB local_pcp:0kB free_cma:0kB
[ 2181.426844][T26086] lowmem_reserve[]: 0 0 0 0 0
[ 2181.434487][T26086] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2181.468049][T26086] Node 0 DMA32: 958*4kB (ME) 859*8kB (UME) 579*16kB (UME) 160*32kB (UME) 67*64kB (UME) 117*128kB (UME) 33*256kB (UME) 12*512kB (UME) 22*1024kB (UME) 3*2048kB (UME) 325*4096kB (M) = 1418816kB
[ 2181.502428][T26086] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2181.517785][T26086] Node 1 Normal: 2*4kB (U) 4*8kB (U) 12*16kB (U) 9*32kB (U) 6*64kB (UM) 4*128kB (U) 5*256kB (UM) 7*512kB (UM) 3*1024kB (U) 2*2048kB (UM) 961*4096kB (M) = 3949704kB
[ 2181.546321][T26086] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2181.556301][T26086] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2181.572183][T26086] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2181.586095][T26086] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2181.598128][T26086] 48580 total pagecache pages
[ 2181.667383][T26086] 0 pages in swap cache
[ 2181.679566][T26086] Free swap  = 124996kB
[ 2181.736118][T26086] Total swap = 124996kB
[ 2181.756285][T26086] 2097051 pages RAM
[ 2181.775421][T26086] 0 pages HighMem/MovableOnly
[ 2181.790115][T26086] 400873 pages reserved
[ 2181.794322][T26086] 0 pages cma reserved
[ 2182.134549][T26305] syzkaller0: entered promiscuous mode
[ 2182.160159][T26305] syzkaller0: entered allmulticast mode
[ 2187.009478][T26387] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 2187.765777][T26416] macvtap0: entered promiscuous mode
[ 2187.790512][T26416] macvtap0: entered allmulticast mode
[ 2187.795955][T26416] veth0_macvtap: entered allmulticast mode
[ 2188.100870][    T8] IPVS: starting estimator thread 0...
[ 2188.227839][T26426] IPVS: using max 17 ests per chain, 40800 per kthread
[ 2188.475222][T17882] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2188.489559][T17882] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2188.502931][T17882] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2188.517361][T17882] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2188.536495][T17882] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 2188.546589][T17882] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2188.934976][T26459] netlink: 72 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2189.164004][T26438] chnl_net:caif_netlink_parms(): no params data found
[ 2189.292001][T26466] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2189.523576][T26438] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2189.548117][T26438] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2189.570832][T26438] bridge_slave_0: entered allmulticast mode
[ 2189.602000][T26438] bridge_slave_0: entered promiscuous mode
[ 2189.641623][T26438] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2189.648746][T26438] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2189.681236][T26438] bridge_slave_1: entered allmulticast mode
[ 2189.698872][T26438] bridge_slave_1: entered promiscuous mode
[ 2189.756496][T26438] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2189.805974][T26438] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2189.946339][T26438] team0: Port device team_slave_0 added
[ 2189.975102][T26438] team0: Port device team_slave_1 added
[ 2190.174301][T26438] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2190.233609][T26438] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2190.330066][T26438] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2190.548075][T26438] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2190.571130][T26438] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2190.620198][ T5121] Bluetooth: hci1: command tx timeout
[ 2190.691230][T26438] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2191.005682][T26438] hsr_slave_0: entered promiscuous mode
[ 2191.031297][T26438] hsr_slave_1: entered promiscuous mode
[ 2191.763784][T26438] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2191.822522][T26438] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2192.075109][T26438] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2192.098052][T26438] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2192.338607][T26438] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2192.390378][T26438] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2192.656141][T26438] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 2192.669132][T26370] warn_alloc: 3 callbacks suppressed
[ 2192.669153][T26370] syz-executor.1: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null)
[ 2192.700099][ T5121] Bluetooth: hci1: command 0x041b tx timeout
[ 2192.723635][T26370] ,cpuset=syz1,mems_allowed=0-1
[ 2192.741028][T26438] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2192.754195][T26370] CPU: 1 PID: 26370 Comm: syz-executor.1 Not tainted 6.10.0-rc2-syzkaller-00761-g3ec8d7572a69 #0
[ 2192.764755][T26370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 2192.774853][T26370] Call Trace:
[ 2192.778166][T26370]  <TASK>
[ 2192.781137][T26370]  dump_stack_lvl+0x241/0x360
[ 2192.785868][T26370]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2192.791114][T26370]  ? __pfx__printk+0x10/0x10
[ 2192.795754][T26370]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[ 2192.802220][T26370]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[ 2192.808775][T26370]  warn_alloc+0x278/0x410
[ 2192.813161][T26370]  ? __pfx_warn_alloc+0x10/0x10
[ 2192.818072][T26370]  ? hash_netiface_create+0x356/0x1040
[ 2192.823582][T26370]  ? __get_vm_area_node+0x23d/0x270
[ 2192.828829][T26370]  __vmalloc_node_range_noprof+0x69f/0x1460
[ 2192.834796][T26370]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2192.841169][T26370]  ? hash_netiface_create+0x356/0x1040
[ 2192.846672][T26370]  ? __get_vm_area_node+0x23d/0x270
[ 2192.851920][T26370]  __vmalloc_node_range_noprof+0x5bf/0x1460
[ 2192.857858][T26370]  ? hash_netiface_create+0x356/0x1040
[ 2192.863394][T26370]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 2192.869768][T26370]  ? rcu_is_watching+0x15/0xb0
[ 2192.874577][T26370]  ? trace_kmalloc+0x1f/0xd0
[ 2192.879213][T26370]  ? __kmalloc_node_noprof+0x247/0x440
[ 2192.884731][T26370]  ? kvmalloc_node_noprof+0x72/0x190
[ 2192.890064][T26370]  kvmalloc_node_noprof+0x142/0x190
[ 2192.895309][T26370]  ? hash_netiface_create+0x356/0x1040
[ 2192.900823][T26370]  hash_netiface_create+0x356/0x1040
[ 2192.906164][T26370]  ? __pfx_hash_netiface_create+0x10/0x10
[ 2192.911938][T26370]  ip_set_create+0xa5c/0x17d0
[ 2192.916663][T26370]  ? ip_set_create+0x45e/0x17d0
[ 2192.921568][T26370]  ? __pfx_ip_set_create+0x10/0x10
[ 2192.926723][T26370]  ? trace_contention_end+0x3c/0x120
[ 2192.932089][T26370]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2192.937430][T26370]  nfnetlink_rcv_msg+0xbec/0x1180
[ 2192.942506][T26370]  ? 0xffffffffa00038c0
[ 2192.946698][T26370]  ? nfnetlink_rcv_msg+0x225/0x1180
[ 2192.951970][T26370]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2192.957507][T26370]  ? kasan_save_track+0x51/0x80
[ 2192.962407][T26370]  ? kasan_save_track+0x3f/0x80
[ 2192.967300][T26370]  ? kasan_save_free_info+0x40/0x50
[ 2192.972544][T26370]  ? __dev_queue_xmit+0x1b0e/0x3d30
[ 2192.977782][T26370]  ? __netlink_deliver_tap+0x54d/0x7c0
[ 2192.983289][T26370]  ? netlink_deliver_tap+0x19d/0x1b0
[ 2192.988620][T26370]  ? netlink_unicast+0x7b8/0x980
[ 2192.993607][T26370]  ? netlink_sendmsg+0x8db/0xcb0
[ 2192.998605][T26370]  ? ____sys_sendmsg+0x525/0x7d0
[ 2193.003592][T26370]  netlink_rcv_skb+0x1e3/0x430
[ 2193.008404][T26370]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 2193.013924][T26370]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 2193.019273][T26370]  ? apparmor_capable+0x138/0x1b0
[ 2193.024344][T26370]  ? bpf_lsm_capable+0x9/0x10
[ 2193.029067][T26370]  ? security_capable+0x90/0xb0
[ 2193.033969][T26370]  nfnetlink_rcv+0x297/0x2a80
[ 2193.038689][T26370]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2193.045095][T26370]  ? __local_bh_enable_ip+0x168/0x200
[ 2193.050507][T26370]  ? lockdep_hardirqs_on+0x99/0x150
[ 2193.055740][T26370]  ? __local_bh_enable_ip+0x168/0x200
[ 2193.061146][T26370]  ? dev_hard_start_xmit+0x773/0x7e0
[ 2193.066470][T26370]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2193.071622][T26370]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2193.077390][T26370]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2193.082545][T26370]  ? __dev_queue_xmit+0x16c9/0x3d30
[ 2193.087791][T26370]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 2193.092964][T26370]  ? __dev_queue_xmit+0x2d2/0x3d30
[ 2193.098127][T26370]  ? ref_tracker_free+0x643/0x7e0
[ 2193.103193][T26370]  ? __asan_memcpy+0x40/0x70
[ 2193.107844][T26370]  ? __pfx_ref_tracker_free+0x10/0x10
[ 2193.113284][T26370]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2193.118527][T26370]  ? skb_clone+0x240/0x390
[ 2193.122985][T26370]  ? __pfx_lock_release+0x10/0x10
[ 2193.128053][T26370]  ? __netlink_deliver_tap+0x77e/0x7c0
[ 2193.133567][T26370]  ? netlink_deliver_tap+0x2e/0x1b0
[ 2193.138839][T26370]  netlink_unicast+0x7ea/0x980
[ 2193.143664][T26370]  ? __pfx_netlink_unicast+0x10/0x10
[ 2193.148988][T26370]  ? __virt_addr_valid+0x183/0x520
[ 2193.154145][T26370]  ? __check_object_size+0x49c/0x900
[ 2193.159464][T26370]  ? bpf_lsm_netlink_send+0x9/0x10
[ 2193.164634][T26370]  netlink_sendmsg+0x8db/0xcb0
[ 2193.169454][T26370]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2193.174782][T26370]  ? __import_iovec+0x536/0x820
[ 2193.179675][T26370]  ? aa_sock_msg_perm+0x91/0x160
[ 2193.184658][T26370]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 2193.189981][T26370]  ? security_socket_sendmsg+0x87/0xb0
[ 2193.195493][T26370]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 2193.200822][T26370]  __sock_sendmsg+0x221/0x270
[ 2193.205546][T26370]  ____sys_sendmsg+0x525/0x7d0
[ 2193.210370][T26370]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 2193.215697][T26370]  __sys_sendmsg+0x2b0/0x3a0
[ 2193.220318][T26370]  ? __pfx___sys_sendmsg+0x10/0x10
[ 2193.225518][T26370]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 2193.231911][T26370]  ? do_syscall_64+0x100/0x230
[ 2193.236810][T26370]  ? do_syscall_64+0xb6/0x230
[ 2193.241534][T26370]  do_syscall_64+0xf3/0x230
[ 2193.246079][T26370]  ? clear_bhb_loop+0x35/0x90
[ 2193.250799][T26370]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2193.256735][T26370] RIP: 0033:0x7fa17da7cf29
[ 2193.261179][T26370] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2193.280819][T26370] RSP: 002b:00007fa17e8db0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2193.289278][T26370] RAX: ffffffffffffffda RBX: 00007fa17dbb3f80 RCX: 00007fa17da7cf29
[ 2193.297284][T26370] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000003
[ 2193.305287][T26370] RBP: 00007fa17daec074 R08: 0000000000000000 R09: 0000000000000000
[ 2193.313289][T26370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2193.321291][T26370] R13: 000000000000000b R14: 00007fa17dbb3f80 R15: 00007ffe93e71668
[ 2193.329315][T26370]  </TASK>
[ 2193.450107][T26370] Mem-Info:
[ 2193.470509][T26370] active_anon:14638 inactive_anon:0 isolated_anon:0
[ 2193.470509][T26370]  active_file:0 inactive_file:46759 isolated_file:0
[ 2193.470509][T26370]  unevictable:768 dirty:98 writeback:0
[ 2193.470509][T26370]  slab_reclaimable:12327 slab_unreclaimable:104104
[ 2193.470509][T26370]  mapped:18146 shmem:1799 pagetables:512
[ 2193.470509][T26370]  sec_pagetables:0 bounce:0
[ 2193.470509][T26370]  kernel_misc_reclaimable:0
[ 2193.470509][T26370]  free:1345210 free_pcp:789 free_cma:0
[ 2193.544673][ T5121] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2193.560306][ T5121] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2193.582720][ T5121] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2193.655318][T26370] Node 0 active_anon:58552kB inactive_anon:0kB active_file:0kB inactive_file:186960kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:74584kB dirty:388kB writeback:0kB shmem:5660kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9968kB pagetables:2248kB sec_pagetables:0kB all_unreclaimable? no
[ 2193.696361][T26370] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 2193.727830][ T5121] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2193.754465][ T5121] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2193.771152][ T5121] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2193.781630][T26370] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2193.864027][T26438] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2193.880500][T26370] lowmem_reserve[]: 0 2571 2571 0 0
[ 2193.885812][T26370] Node 0 DMA32 free:1401296kB boost:0kB min:35108kB low:43884kB high:52660kB reserved_highatomic:0KB active_anon:58612kB inactive_anon:0kB active_file:0kB inactive_file:186640kB unevictable:1536kB writepending:384kB present:3129332kB managed:2659872kB mlocked:0kB bounce:0kB free_pcp:10980kB local_pcp:1884kB free_cma:0kB
[ 2194.016833][T26370] lowmem_reserve[]: 0 0 0 0 0
[ 2194.019665][T26438] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2194.022930][T26370] Node 0 Normal free:0kB boost:0kB min:4kB low:4kB high:4kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:320kB unevictable:0kB writepending:4kB present:1048576kB managed:360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2194.056878][T26370] lowmem_reserve[]: 0 0 0 0 0
[ 2194.081702][T26370] Node 1 Normal free:3949864kB boost:0kB min:54788kB low:68484kB high:82180kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 2194.117557][T26370] lowmem_reserve[]: 0 0 0 0 0
[ 2194.143289][T26370] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 2194.195889][T26449] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2194.206563][T26370] Node 0 DMA32: 826*4kB (UME) 837*8kB (UME) 602*16kB (ME) 160*32kB (ME) 58*64kB (UME) 29*128kB (ME) 30*256kB (UME) 11*512kB (ME) 18*1024kB (UME) 3*2048kB (UME) 325*4096kB (UM) = 1401264kB
[ 2194.235063][T26370] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[ 2194.246755][T26370] Node 1 Normal: 2*4kB (U) 4*8kB (U) 12*16kB (U) 10*32kB (U) 8*64kB (UM) 4*128kB (U) 5*256kB (UM) 7*512kB (UM) 3*1024kB (U) 2*2048kB (UM) 961*4096kB (M) = 3949864kB
[ 2194.266199][T26438] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2194.283810][T26438] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2194.335194][T26370] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2194.349340][T26370] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2194.390118][T26370] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 2194.408293][T26449] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2194.430903][T26370] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 2194.442957][T26370] 48540 total pagecache pages
[ 2194.458432][T26370] 0 pages in swap cache
[ 2194.472075][T26370] Free swap  = 124996kB
[ 2194.483168][T26370] Total swap = 124996kB
[ 2194.492473][T26370] 2097051 pages RAM
[ 2194.496503][T26370] 0 pages HighMem/MovableOnly
[ 2194.511781][T26370] 400873 pages reserved
[ 2194.516197][T26370] 0 pages cma reserved
[ 2194.592266][T26449] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2194.772645][T26449] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2194.791177][T17882] Bluetooth: hci1: command 0x041b tx timeout
[ 2195.198309][T26438] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2195.207111][T26449] bridge_slave_1: left allmulticast mode
[ 2195.223825][T26449] bridge_slave_1: left promiscuous mode
[ 2195.241192][T26449] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2195.272001][T26449] bridge_slave_0: left allmulticast mode
[ 2195.277707][T26449] bridge_slave_0: left promiscuous mode
[ 2195.295072][T26449] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2195.516303][T26563] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2196.687401][T26449] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2196.723428][T26449] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2196.742859][T26449] bond0 (unregistering): Released all slaves
[ 2196.768857][T26449] bond1 (unregistering): Released all slaves
[ 2196.809654][T26449] bond2 (unregistering): Released all slaves
[ 2196.860730][T17882] Bluetooth: hci1: command 0x041b tx timeout
[ 2196.863710][T26542] chnl_net:caif_netlink_parms(): no params data found
[ 2197.037561][T26438] 8021q: adding VLAN 0 to HW filter on device team0
[ 2197.217529][T26600] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2197.323357][T23239] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2197.330582][T23239] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2197.346779][T23239] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2197.354017][T23239] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2197.537417][T26542] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2197.571178][T26542] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2197.578522][T26542] bridge_slave_0: entered allmulticast mode
[ 2197.623167][T26542] bridge_slave_0: entered promiscuous mode
[ 2197.754611][T26542] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2197.775198][T26542] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2197.810544][T26542] bridge_slave_1: entered allmulticast mode
[ 2197.841582][T26542] bridge_slave_1: entered promiscuous mode
[ 2197.946406][T26542] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2198.018683][T26449] hsr_slave_0: left promiscuous mode
[ 2198.036992][T26449] hsr_slave_1: left promiscuous mode
[ 2198.063693][T26449] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2198.081517][T26449] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2198.101061][T26449] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2198.129653][T26449] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2198.188909][T26449] veth1_macvtap: left promiscuous mode
[ 2198.200210][T26449] veth0_macvtap: left promiscuous mode
[ 2198.212698][T26449] veth1_vlan: left promiscuous mode
[ 2198.233020][T26449] veth0_vlan: left promiscuous mode
[ 2198.942402][T17882] Bluetooth: hci1: command 0x041b tx timeout
[ 2199.708378][T26449] team0 (unregistering): Port device team_slave_1 removed
[ 2199.846186][T26449] team0 (unregistering): Port device team_slave_0 removed
[ 2201.345959][T26542] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2201.617369][T26542] team0: Port device team_slave_0 added
[ 2201.665280][T26542] team0: Port device team_slave_1 added
[ 2201.845186][T26542] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2201.861582][T26542] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2201.916160][T26542] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2201.973351][T26542] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2201.993177][T26542] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2202.041072][T26542] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2202.286014][T26542] hsr_slave_0: entered promiscuous mode
[ 2202.310438][T26634] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2202.370473][T26542] hsr_slave_1: entered promiscuous mode
[ 2202.421451][T26542] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2202.429075][T26542] Cannot create hsr debugfs directory
[ 2202.895832][T26438] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2203.222338][T26438] veth0_vlan: entered promiscuous mode
[ 2203.505557][T26438] veth1_vlan: entered promiscuous mode
[ 2203.707594][T26438] veth0_macvtap: entered promiscuous mode
[ 2203.755566][T26438] veth1_macvtap: entered promiscuous mode
[ 2203.871839][T26676] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2203.989856][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2204.034319][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.047380][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2204.059033][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.097451][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2204.109850][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.131954][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2204.154430][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.195584][T26438] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2204.249193][T26542] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2204.296761][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2204.341758][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.381231][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2204.404828][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.435840][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2204.466095][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.495085][T26438] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2204.505815][T26438] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2204.527953][T26438] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2204.544395][T26542] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2204.593211][T26438] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2204.630070][T26438] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2204.639106][T26438] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2204.675332][T26438] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2204.702055][T26542] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2204.740715][T26542] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2204.767189][T26717] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2204.850232][T26717] bond0: entered promiscuous mode
[ 2205.218603][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2205.243427][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2205.339842][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2205.361280][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2205.449534][T26542] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2205.526177][T26713] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2205.537103][T26542] 8021q: adding VLAN 0 to HW filter on device team0
[ 2205.601371][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2205.608549][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2205.702647][ T5159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2205.709840][ T5159] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2206.397086][T26542] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2207.060972][T26773] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2207.167908][T26542] veth0_vlan: entered promiscuous mode
[ 2207.222801][T26542] veth1_vlan: entered promiscuous mode
[ 2207.347235][T26542] veth0_macvtap: entered promiscuous mode
[ 2207.400682][T26542] veth1_macvtap: entered promiscuous mode
[ 2207.485675][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2207.524477][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.548391][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2207.573597][T26804] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2207.590333][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.619218][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2207.649356][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.665694][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2207.690018][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.720012][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2207.739047][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.773884][T26542] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2207.821957][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2207.859729][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.897074][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2207.935067][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2207.968581][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2207.998175][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2208.018851][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2208.029777][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2208.040444][T26542] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2208.075861][T26542] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2208.098823][T26542] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2208.181650][T26542] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2208.220343][T26542] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2208.249678][T26542] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2208.282610][T26542] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2208.458788][T26838] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2208.512949][ T2800] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2208.525805][ T2800] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2208.642369][T26437] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2208.676585][T26437] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2209.148504][T26865] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2210.615037][ T5116] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2210.626018][ T5116] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2210.638541][ T5116] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2210.649614][ T5116] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2210.658480][ T5116] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 2210.666101][ T5116] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2211.025208][T26941] chnl_net:caif_netlink_parms(): no params data found
[ 2211.187545][T26941] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2211.201588][T26941] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2211.209111][T26941] bridge_slave_0: entered allmulticast mode
[ 2211.222960][T26941] bridge_slave_0: entered promiscuous mode
[ 2211.233270][T26941] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2211.241830][T26941] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2211.249216][T26941] bridge_slave_1: entered allmulticast mode
[ 2211.257091][T26941] bridge_slave_1: entered promiscuous mode
[ 2211.313408][T26941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2211.337824][T26941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2211.419405][T26941] team0: Port device team_slave_0 added
[ 2211.451968][T26941] team0: Port device team_slave_1 added
[ 2211.545471][T26941] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2211.563087][T26941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2211.634145][T26941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2211.670101][T26941] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2211.687392][T26941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2211.716114][T26941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2211.840810][T26941] hsr_slave_0: entered promiscuous mode
[ 2211.862838][T26941] hsr_slave_1: entered promiscuous mode
[ 2211.880210][T26941] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2211.896762][T26941] Cannot create hsr debugfs directory
[ 2212.336092][T26941] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2212.505215][T26941] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2212.620969][T20934] Bluetooth: hci1: command 0x041b tx timeout
[ 2212.693019][T26941] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2212.707273][ T5121] Bluetooth: hci5: command tx timeout
[ 2212.823107][T26941] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2213.067997][T26941] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2213.083030][T26941] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2213.096314][T26941] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2213.116508][T26941] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2213.263048][T26941] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2213.304870][T26941] 8021q: adding VLAN 0 to HW filter on device team0
[ 2213.344583][  T784] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2213.351837][  T784] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2213.384474][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2213.391685][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2213.893925][T26941] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2214.388743][T26941] veth0_vlan: entered promiscuous mode
[ 2214.417051][T26941] veth1_vlan: entered promiscuous mode
[ 2214.487247][T26941] veth0_macvtap: entered promiscuous mode
[ 2214.522996][T26941] veth1_macvtap: entered promiscuous mode
[ 2214.566039][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.605670][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.632439][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.646602][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.661947][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.674352][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.684562][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.695473][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.707079][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.722707][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.760024][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2214.780347][ T5121] Bluetooth: hci5: command 0x041b tx timeout
[ 2214.781192][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2214.852063][T26941] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2214.943269][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2214.985463][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.018013][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2215.040223][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.070097][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2215.090105][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.110130][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2215.135971][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.163841][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2215.210004][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.241942][T26941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2215.252814][T26941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2215.265002][T26941] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2215.284423][T26941] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2215.308903][T26941] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2215.324700][T26941] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2215.333833][T26941] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2215.657497][T26437] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2215.691331][T26437] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2215.713374][T26435] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2215.747131][T26435] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2216.362504][T27066] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 2216.379490][T27066] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 2216.395769][T27066] netlink: 'syz-executor.1': attribute type 11 has an invalid length.
[ 2216.860207][ T5121] Bluetooth: hci5: command 0x041b tx timeout
[ 2217.002613][   T29] audit: type=1804 audit(1718741521.844:332): pid=27088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir536021807/syzkaller.F3aaWy/2/cgroup.controllers" dev="sda1" ino=1967 res=1 errno=0
[ 2217.040325][T27088] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2217.648054][T27117] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2217.689618][T27117] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2218.205252][T27143] netlink: 16402 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2218.218315][T27140] netlink: 16402 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2218.940702][ T5121] Bluetooth: hci5: command 0x041b tx timeout
[ 2220.597434][T27235] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2220.629821][T27235] IPVS: set_ctl: invalid protocol: 0 10.1.1.0:20003
[ 2221.020906][ T5116] Bluetooth: hci5: command 0x041b tx timeout
[ 2222.255532][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[ 2222.824674][T27303] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2223.778164][T26449] tipc: Subscription rejected, illegal request
[ 2225.906257][T27400] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2226.290723][T27413] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2226.321937][T27413] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2226.340725][T27413] bridge_slave_1: left allmulticast mode
[ 2226.348646][T27413] bridge_slave_1: left promiscuous mode
[ 2226.356971][T27413] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2226.368941][T27413] bridge_slave_0: left allmulticast mode
[ 2226.376147][T27413] bridge_slave_0: left promiscuous mode
[ 2226.400238][T27413] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2227.978020][T27453] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2228.024374][T27453] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2228.047086][T27453] bridge_slave_0: left allmulticast mode
[ 2228.063390][T27453] bridge_slave_0: left promiscuous mode
[ 2228.076014][T27453] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2228.552068][T27466] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 2230.014908][T27501] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2230.102795][T27501] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2232.193822][T27554] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2232.287395][T27554] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2232.780330][ T5121] Bluetooth: hci5: command 0x041b tx timeout
[ 2232.838704][T27589] netlink: 'syz-executor.2': attribute type 7 has an invalid length.
[ 2234.249770][T27632] xt_l2tp: invalid flags combination: 0
[ 2234.631916][T27651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2234.702872][T27651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2234.775668][T27651] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2234.801360][T27657] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 2235.247903][T27674] xt_l2tp: invalid flags combination: 0
[ 2235.584779][T27686] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2235.606306][T27686] 0·: renamed from hsr0 (while UP)
[ 2235.616138][T27686] 0·: entered allmulticast mode
[ 2235.629373][T27686] hsr_slave_0: entered allmulticast mode
[ 2235.636690][T27686] hsr_slave_1: entered allmulticast mode
[ 2235.658423][T27686] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[ 2236.778418][T27722] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2237.000157][T27728] xt_l2tp: invalid flags combination: 0
[ 2237.245417][T27741] ip6gretap0: entered promiscuous mode
[ 2237.794673][T27758] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2237.943733][T27766] xt_l2tp: invalid flags combination: 0
[ 2238.808944][T27797] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2239.650577][ T5116] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 2239.670744][ T5116] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 2239.682195][ T5116] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 2239.692804][ T5116] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 2239.710533][ T5116] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 2239.718088][ T5116] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 2240.126830][T27840] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2240.259941][T27840] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 42663 - 0
[ 2240.300213][T27840] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 42663 - 0
[ 2240.333612][T27840] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 42663 - 0
[ 2240.360169][T27840] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 42663 - 0
[ 2240.398006][T27840] netdevsim netdevsim1 netdevsim0: set [1, 2] type 2 family 0 port 55608 - 0
[ 2240.418214][T27840] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 55608 - 0
[ 2240.470046][T27840] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 55608 - 0
[ 2240.478898][T27840] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 55608 - 0
[ 2240.528671][T27840] geneve2: entered promiscuous mode
[ 2240.551395][T27840] geneve2: entered allmulticast mode
[ 2240.897392][T27827] chnl_net:caif_netlink_parms(): no params data found
[ 2240.925524][ T5116] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 2240.940428][ T5116] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 2240.960459][ T5116] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 2240.985307][ T5116] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 2241.000346][ T5116] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 2241.010113][ T5116] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 2241.328717][T27827] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2241.337201][T27827] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2241.356821][T27827] bridge_slave_0: entered allmulticast mode
[ 2241.378681][T27827] bridge_slave_0: entered promiscuous mode
[ 2241.414834][T27827] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2241.435617][T27827] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2241.451039][T27827] bridge_slave_1: entered allmulticast mode
[ 2241.467943][T27827] bridge_slave_1: entered promiscuous mode
[ 2241.612412][T27827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2241.652820][T27827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2241.750155][ T5121] Bluetooth: hci6: command tx timeout
[ 2241.798907][T27827] team0: Port device team_slave_0 added
[ 2241.875756][T27827] team0: Port device team_slave_1 added
[ 2242.029014][T27827] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2242.057205][T27827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2242.113921][T27827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2242.172239][T27827] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2242.230366][T27827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2242.297661][T27827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2242.356937][T27859] chnl_net:caif_netlink_parms(): no params data found
[ 2242.627593][T27827] hsr_slave_0: entered promiscuous mode
[ 2242.647691][T27827] hsr_slave_1: entered promiscuous mode
[ 2242.664026][T27827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2242.672470][T27827] Cannot create hsr debugfs directory
[ 2243.018454][T27859] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2243.065651][T27859] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2243.090627][T27859] bridge_slave_0: entered allmulticast mode
[ 2243.098627][T27859] bridge_slave_0: entered promiscuous mode
[ 2243.100349][ T5121] Bluetooth: hci7: command tx timeout
[ 2243.116512][T27859] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2243.137000][T27859] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2243.165050][T27859] bridge_slave_1: entered allmulticast mode
[ 2243.186198][T27859] bridge_slave_1: entered promiscuous mode
[ 2243.307923][T27937] netlink: 36 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 2243.330148][T27937] batadv_slave_1: entered allmulticast mode
[ 2243.444706][T27859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2243.624308][T27827] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2243.712988][T27859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2243.821833][ T5121] Bluetooth: hci6: command tx timeout
[ 2243.837196][T27827] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2244.033165][T27859] team0: Port device team_slave_0 added
[ 2244.142534][T27827] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2244.235003][T27859] team0: Port device team_slave_1 added
[ 2244.471197][T27827] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2244.521867][T27859] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2244.528913][T27859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2244.566354][T27859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2244.619475][T27859] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2244.641207][T27859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2244.684153][T27859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2244.875341][T27859] hsr_slave_0: entered promiscuous mode
[ 2244.906386][T27859] hsr_slave_1: entered promiscuous mode
[ 2244.919493][T27859] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2244.956404][T27859] Cannot create hsr debugfs directory
[ 2245.180183][ T5121] Bluetooth: hci7: command 0x041b tx timeout
[ 2245.421535][T27827] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2245.457142][T27827] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2245.562808][T27827] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2245.796905][T27859] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2245.900922][ T5116] Bluetooth: hci6: command tx timeout
[ 2245.904401][T27827] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2246.089687][T27859] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2246.318236][T27859] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2246.614569][T27859] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2247.034785][ T5121] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2247.049325][ T5121] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2247.064476][ T5121] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2247.076280][ T5121] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2247.091530][ T5121] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2247.099094][ T5121] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2247.113766][T27827] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2247.254625][T21808] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2247.269497][ T5116] Bluetooth: hci7: command 0x041b tx timeout
[ 2247.417359][T27859] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 2247.466681][T27827] 8021q: adding VLAN 0 to HW filter on device team0
[ 2247.561943][T21808] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2247.607953][T27859] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 2247.772135][T21808] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2247.802906][T27859] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 2247.851568][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2247.858754][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2247.908788][T27859] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 2247.980621][ T5121] Bluetooth: hci6: command tx timeout
[ 2248.016252][T21808] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2248.063131][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2248.070401][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2248.257000][T27827] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2249.193087][ T5121] Bluetooth: hci3: command tx timeout
[ 2249.340030][ T5121] Bluetooth: hci7: command 0x041b tx timeout
[ 2249.763455][T26893] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2249.769682][T26928] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2249.922445][T21808] bond0 (unregistering): Released all slaves
[ 2250.040962][T28040] chnl_net:caif_netlink_parms(): no params data found
[ 2250.901969][T27827] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2251.195628][T28040] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2251.219115][T28040] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2251.241148][T28040] bridge_slave_0: entered allmulticast mode
[ 2251.257404][T28040] bridge_slave_0: entered promiscuous mode
[ 2251.270688][T17882] Bluetooth: hci3: command 0x041b tx timeout
[ 2251.395650][T27859] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2251.420476][ T5116] Bluetooth: hci7: command 0x041b tx timeout
[ 2251.463009][T28040] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2251.500994][T28040] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2251.508315][T28040] bridge_slave_1: entered allmulticast mode
[ 2251.526884][T28040] bridge_slave_1: entered promiscuous mode
[ 2251.607610][T28040] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2251.656216][T28040] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2251.712605][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2251.730820][T21808] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2251.751661][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2251.759169][T21808] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2251.799684][T21808] veth1_macvtap: left promiscuous mode
[ 2251.807029][T21808] veth0_macvtap: left allmulticast mode
[ 2251.820665][T21808] veth0_macvtap: left promiscuous mode
[ 2251.826308][T21808] veth1_vlan: left promiscuous mode
[ 2251.840832][T21808] veth0_vlan: left promiscuous mode
[ 2253.221353][T21808] team0 (unregistering): Port device team_slave_1 removed
[ 2253.340340][ T5116] Bluetooth: hci3: command 0x041b tx timeout
[ 2253.351956][T21808] team0 (unregistering): Port device team_slave_0 removed
[ 2254.593577][T28040] team0: Port device team_slave_0 added
[ 2254.625270][T28040] team0: Port device team_slave_1 added
[ 2254.688756][T27859] 8021q: adding VLAN 0 to HW filter on device team0
[ 2254.812239][T23239] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2254.819431][T23239] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2254.892136][T28040] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2254.899144][T28040] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2254.949402][T28040] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2254.976519][T28040] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2255.007518][T28040] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2255.072472][T28040] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2255.145310][T27827] veth0_vlan: entered promiscuous mode
[ 2255.162622][ T1699] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2255.169797][ T1699] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2255.325739][T28040] hsr_slave_0: entered promiscuous mode
[ 2255.355202][T28040] hsr_slave_1: entered promiscuous mode
[ 2255.400259][T28040] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2255.409697][T28040] Cannot create hsr debugfs directory
[ 2255.420454][T17882] Bluetooth: hci3: command 0x041b tx timeout
[ 2255.608207][T27827] veth1_vlan: entered promiscuous mode
[ 2255.817417][T27859] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2255.865166][T21808] bridge_slave_1: left allmulticast mode
[ 2255.875518][T21808] bridge_slave_1: left promiscuous mode
[ 2255.900464][T21808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2255.911382][T21808] bridge_slave_0: left allmulticast mode
[ 2255.917084][T21808] bridge_slave_0: left promiscuous mode
[ 2255.945405][T21808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2255.972275][T21808] bridge_slave_1: left allmulticast mode
[ 2255.977996][T21808] bridge_slave_1: left promiscuous mode
[ 2256.022535][T21808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2256.061458][T21808] bridge_slave_0: left allmulticast mode
[ 2256.067167][T21808] bridge_slave_0: left promiscuous mode
[ 2256.110401][T21808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2256.123591][T21808] bridge_slave_1: left allmulticast mode
[ 2256.136540][T21808] bridge_slave_1: left promiscuous mode
[ 2256.142800][T21808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2256.153967][T21808] bridge_slave_0: left allmulticast mode
[ 2256.162801][T21808] bridge_slave_0: left promiscuous mode
[ 2256.173259][T21808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2257.510859][T17882] Bluetooth: hci3: command 0x041b tx timeout
[ 2258.098470][T21808] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2258.113017][T21808] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2258.125819][T21808] bond0 (unregistering): Released all slaves
[ 2258.142407][T21808] bond1 (unregistering): Released all slaves
[ 2258.385170][T21808] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2258.413631][T21808] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2258.432826][T21808] bond0 (unregistering): Released all slaves
[ 2258.690432][T21808] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2258.709342][T21808] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2258.723763][T21808] bond0 (unregistering): Released all slaves
[ 2259.077488][T27827] veth0_macvtap: entered promiscuous mode
[ 2259.269698][T27827] veth1_macvtap: entered promiscuous mode
[ 2259.353655][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.389954][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.439982][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.460355][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.493615][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.520211][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.540643][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.551560][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.567979][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.579003][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.599236][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2259.609867][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.662235][T27827] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2259.754768][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.787043][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.815974][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.830292][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.840357][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.851572][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.863962][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.874676][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.884918][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.897209][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.907721][T27827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2259.918834][T27827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2259.944341][T27827] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2260.052388][T27827] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2260.077907][T27827] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2260.100452][T27827] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2260.109205][T27827] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2260.296481][T28209] netlink: 100 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 2260.335012][T27859] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2260.348958][T28210] unsupported nlmsg_type 40
[ 2260.997673][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2261.017442][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2261.109076][T27859] veth0_vlan: entered promiscuous mode
[ 2261.317525][T21808] hsr_slave_0: left promiscuous mode
[ 2261.340945][T21808] hsr_slave_1: left promiscuous mode
[ 2261.362241][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2261.369736][T21808] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2261.388608][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2261.407590][T21808] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2261.435911][T21808] hsr_slave_0: left promiscuous mode
[ 2261.449157][T21808] hsr_slave_1: left promiscuous mode
[ 2261.459305][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2261.482372][T21808] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2261.499057][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2261.520322][T21808] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2261.544898][T21808] hsr_slave_0: left promiscuous mode
[ 2261.563388][T21808] hsr_slave_1: left promiscuous mode
[ 2261.571421][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2261.578864][T21808] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2261.596159][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2261.608919][T21808] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2261.725597][T21808] veth1_macvtap: left promiscuous mode
[ 2261.736566][T21808] veth0_macvtap: left promiscuous mode
[ 2261.745338][T21808] veth1_vlan: left promiscuous mode
[ 2261.761924][T21808] veth0_vlan: left promiscuous mode
[ 2261.777751][T21808] veth1_macvtap: left promiscuous mode
[ 2261.791121][T21808] veth0_macvtap: left promiscuous mode
[ 2261.796832][T21808] veth1_vlan: left promiscuous mode
[ 2261.810801][T21808] veth0_vlan: left promiscuous mode
[ 2261.832277][T21808] veth1_macvtap: left promiscuous mode
[ 2261.837876][T21808] veth0_macvtap: left promiscuous mode
[ 2261.848070][T21808] veth1_vlan: left promiscuous mode
[ 2261.853737][T21808] veth0_vlan: left promiscuous mode
[ 2263.295056][T21808] team0 (unregistering): Port device team_slave_1 removed
[ 2263.369637][T21808] team0 (unregistering): Port device team_slave_0 removed
[ 2264.999636][T21808] team0 (unregistering): Port device team_slave_1 removed
[ 2265.079729][T21808] team0 (unregistering): Port device team_slave_0 removed
[ 2267.214771][T21808] team0 (unregistering): Port device team_slave_1 removed
[ 2267.311915][T21808] team0 (unregistering): Port device team_slave_0 removed
[ 2268.157410][T27859] veth1_vlan: entered promiscuous mode
[ 2268.166132][T28040] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 2268.202746][T28040] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 2268.317112][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2268.342458][T27859] veth0_macvtap: entered promiscuous mode
[ 2268.356364][T28040] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 2268.364799][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2268.425000][T27859] veth1_macvtap: entered promiscuous mode
[ 2268.455280][T28040] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 2268.649008][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2268.701819][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2268.723026][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2268.760113][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2268.779198][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2268.800014][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2268.810865][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2268.821716][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2268.836416][T27859] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2269.005494][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2269.018724][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2269.029076][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2269.043792][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2269.054470][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2269.084385][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2269.099487][T27859] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2269.130430][T27859] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2269.151959][T27859] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2269.175934][T27859] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2269.231525][T27859] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2269.240404][T27859] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2269.249125][T27859] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2269.704655][ T2800] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2269.750399][ T2800] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2269.852733][   T29] audit: type=1804 audit(1718741574.704:333): pid=28266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir536021807/syzkaller.F3aaWy/177/cgroup.controllers" dev="sda1" ino=1946 res=1 errno=0
[ 2269.892351][T28040] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2269.995954][T26439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2270.015266][T28040] 8021q: adding VLAN 0 to HW filter on device team0
[ 2270.050859][T26439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2270.067687][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2270.074916][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2270.170585][ T5159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2270.177756][ T5159] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2270.397793][T28274] syz-executor.4[28274] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2270.397936][T28274] syz-executor.4[28274] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2270.572413][T17882] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 2270.598528][T17882] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 2270.614854][T17882] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 2270.632917][T17882] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 2270.644619][T17882] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 2270.652853][T17882] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 2270.685753][T21808] IPVS: stop unused estimator thread 0...
[ 2271.154536][T28299] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2271.166765][T28040] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2271.422675][T21808] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2271.736940][T21808] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2271.784955][T28040] veth0_vlan: entered promiscuous mode
[ 2271.852152][T28278] chnl_net:caif_netlink_parms(): no params data found
[ 2271.971066][T21808] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2272.056959][T28040] veth1_vlan: entered promiscuous mode
[ 2272.148009][T21808] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2272.422666][T28278] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2272.429841][T28278] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2272.463097][T28278] bridge_slave_0: entered allmulticast mode
[ 2272.491384][T28278] bridge_slave_0: entered promiscuous mode
[ 2272.513558][T28278] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2272.546261][T28278] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2272.561525][T28278] bridge_slave_1: entered allmulticast mode
[ 2272.569371][T28278] bridge_slave_1: entered promiscuous mode
[ 2272.586189][T28040] veth0_macvtap: entered promiscuous mode
[ 2272.700749][T17882] Bluetooth: hci0: command tx timeout
[ 2272.718521][T28278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2272.751622][T28040] veth1_macvtap: entered promiscuous mode
[ 2272.847281][T28278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2272.937978][T21808] bridge_slave_1: left allmulticast mode
[ 2272.947048][T21808] bridge_slave_1: left promiscuous mode
[ 2272.954310][T21808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2272.970044][T28355] rdma_op ffff88805f4ff1f0 conn xmit_rdma 0000000000000000
[ 2272.993004][T21808] bridge_slave_0: left allmulticast mode
[ 2273.002132][T21808] bridge_slave_0: left promiscuous mode
[ 2273.050478][T21808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2273.867195][T21808] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2273.892682][T21808] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2273.917030][T21808] bond0 (unregistering): Released all slaves
[ 2273.962052][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2273.979185][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.011212][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2274.047115][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.081265][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2274.091918][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.103425][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2274.113996][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.123904][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2274.134506][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.158766][T28040] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2274.223051][T28278] team0: Port device team_slave_0 added
[ 2274.239695][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2274.256553][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.267486][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2274.278035][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.298856][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2274.326543][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.349961][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2274.391035][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.416213][T28040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2274.439958][T28040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2274.456575][T28040] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2274.489770][T28278] team0: Port device team_slave_1 added
[ 2274.554771][T28390] rdma_op ffff88804e10a9f0 conn xmit_rdma 0000000000000000
[ 2274.590339][T28040] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2274.599088][T28040] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2274.632605][T28040] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2274.641868][T28040] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2274.732561][T28278] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2274.746890][T28278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2274.789482][T17882] Bluetooth: hci0: command 0x041b tx timeout
[ 2274.821434][T28278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2274.910625][T28278] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2274.935178][T28278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2274.979604][T28278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2275.060951][T28397] syzkaller0: entered allmulticast mode
[ 2275.419535][T28278] hsr_slave_0: entered promiscuous mode
[ 2275.437848][T28278] hsr_slave_1: entered promiscuous mode
[ 2275.590756][T21808] hsr_slave_0: left promiscuous mode
[ 2275.611485][T21808] hsr_slave_1: left promiscuous mode
[ 2275.622663][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2275.645396][T21808] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2275.666723][T21808] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2275.693619][T21808] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2275.745995][T21808] veth1_macvtap: left promiscuous mode
[ 2275.752175][T21808] veth0_macvtap: left promiscuous mode
[ 2275.757920][T21808] veth1_vlan: left promiscuous mode
[ 2275.763450][T21808] veth0_vlan: left promiscuous mode
[ 2276.304532][T28428] rdma_op ffff8880220cd1f0 conn xmit_rdma 0000000000000000
[ 2276.870153][ T5116] Bluetooth: hci0: command 0x041b tx timeout
[ 2276.907401][T21808] team0 (unregistering): Port device team_slave_1 removed
[ 2276.966660][T28440] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2277.034081][T21808] team0 (unregistering): Port device team_slave_0 removed
[ 2278.390445][T28086] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2278.429602][T28086] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2278.593768][T26435] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2278.613866][T26435] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2278.704693][T28461] rdma_op ffff888067d621f0 conn xmit_rdma 0000000000000000
[ 2279.139223][T28278] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 2279.188726][T28278] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 2279.222838][T28278] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 2279.243493][T28278] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 2279.471804][T28278] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2279.502801][T28488] netlink: 224 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2279.559582][T28278] 8021q: adding VLAN 0 to HW filter on device team0
[ 2279.606251][T23239] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2279.613467][T23239] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2279.618283][T28464] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 2279.693972][T23239] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2279.701199][T23239] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2280.157372][T28518] netlink: 48 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2280.207941][T28278] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2280.358937][T28278] veth0_vlan: entered promiscuous mode
[ 2280.429397][T28278] veth1_vlan: entered promiscuous mode
[ 2280.515268][T28278] veth0_macvtap: entered promiscuous mode
[ 2280.569468][T28278] veth1_macvtap: entered promiscuous mode
[ 2280.627211][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2280.664223][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.676368][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2280.689979][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.699839][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2280.717770][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.727720][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2280.750210][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.779959][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2280.806103][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.818024][T28278] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2280.855633][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2280.889931][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.899807][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2280.923293][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.960728][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2280.977397][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2280.987794][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2281.005191][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2281.021592][T28278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2281.050143][T28278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2281.081275][T28278] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2281.129537][T28278] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2281.165685][T28278] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2281.185763][T28278] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2281.204888][T28278] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2281.406306][T21808] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2281.425668][T21808] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2281.484806][T26439] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2281.506635][T26439] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2282.555188][T28574] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2283.203609][T28605] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2283.673179][ T1249] ieee802154 phy1 wpan1: encryption failed: -22
[ 2283.876494][T28626] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[ 2285.077485][T28674] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2285.089745][T28674] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2285.868226][T28687] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2286.065946][T28691] syzkaller0: entered promiscuous mode
[ 2286.071672][T28691] syzkaller0: entered allmulticast mode
[ 2290.697729][T28723] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[ 2291.607733][T28750] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2292.278100][T28783] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[ 2292.790885][T28796] openvswitch: netlink: Missing key (keys=20040, expected=80)
[ 2293.281695][T28806] netlink: 116 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2293.291466][T28806] bridge_slave_1: left allmulticast mode
[ 2293.297150][T28806] bridge_slave_1: left promiscuous mode
[ 2293.303345][T28806] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2293.326711][T28806] bridge_slave_0: left allmulticast mode
[ 2293.335769][T28806] bridge_slave_0: left promiscuous mode
[ 2293.348449][T28806] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2294.285164][T28834] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[ 2295.100359][T28840] openvswitch: netlink: Missing key (keys=20040, expected=80)
[ 2295.949262][T28866] sctp: [Deprecated]: syz-executor.3 (pid 28866) Use of int in max_burst socket option deprecated.
[ 2295.949262][T28866] Use struct sctp_assoc_value instead
[ 2296.180501][T28872] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[ 2297.642380][T28893] openvswitch: netlink: Missing key (keys=20040, expected=80)
[ 2298.451825][T28895] xt_TCPMSS: Only works on TCP SYN packets
[ 2299.559171][T28905] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[ 2300.507622][T28927] openvswitch: netlink: Missing key (keys=20040, expected=80)
[ 2301.692276][T28944] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2302.547466][T28962] netlink: 256 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2302.600336][T28962] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2302.940477][   T29] audit: type=1800 audit(1718741607.774:334): pid=28972 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name=A3 dev="sda1" ino=1949 res=0 errno=0
[ 2304.418285][T29005] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[ 2304.513603][T29009] bond1: (slave vcan2): The slave device specified does not support setting the MAC address
[ 2304.550555][T29009] bond1: (slave vcan2): Setting fail_over_mac to active for active-backup mode
[ 2304.594009][T29009] bond1: (slave vcan2): making interface the new active one
[ 2304.622344][T29009] bond1: (slave vcan2): Enslaving as an active interface with an up link
[ 2305.216216][T29031] syz-executor.3 (29031) used greatest stack depth: 17424 bytes left
[ 2305.683950][T29048] netlink: 312 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2306.182639][T29062] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2306.528351][T29073] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2306.542279][T29073] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[ 2306.568203][T29073] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2307.389966][T29075] dccp_invalid_packet: P.Data Offset(63) too large
[ 2308.715690][T29136] netlink: 209844 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2309.956846][T29186] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2310.127614][T29189] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2310.139382][T29189] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2310.158067][T29189] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2311.052106][T29214] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2311.100173][T29214] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2311.132623][T29220] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2311.288151][ T5121] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 2311.301599][ T5121] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 2311.312382][ T5121] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 2311.322311][T20836] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 2311.322974][ T5121] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 2311.339086][T29227] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 2311.348167][T29227] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 2311.356921][T29227] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 2311.364422][T29227] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 2311.367169][ T5121] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 2311.382118][ T5121] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 2311.407139][ T5121] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 2311.454308][T29228] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2312.016486][T29244] netlink: 9 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2312.030744][T29244] 0·: renamed from hsr0 (while UP)
[ 2312.052657][T29244] 0·: entered allmulticast mode
[ 2312.057578][T29244] hsr_slave_0: entered allmulticast mode
[ 2312.080153][T29244] hsr_slave_1: entered allmulticast mode
[ 2312.101525][T29244] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[ 2312.324701][T29222] chnl_net:caif_netlink_parms(): no params data found
[ 2312.638103][T29224] chnl_net:caif_netlink_parms(): no params data found
[ 2312.986217][T29222] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2312.996615][T29222] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2313.015612][T29222] bridge_slave_0: entered allmulticast mode
[ 2313.030383][T29222] bridge_slave_0: entered promiscuous mode
[ 2313.051412][T29282] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2313.067516][T29282] batadv_slave_1: entered promiscuous mode
[ 2313.196707][T29222] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2313.215249][T29222] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2313.243929][T29222] bridge_slave_1: entered allmulticast mode
[ 2313.266985][T29222] bridge_slave_1: entered promiscuous mode
[ 2313.414790][T29224] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2313.425774][T20934] Bluetooth: hci1: command tx timeout
[ 2313.450749][T29224] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2313.490239][T29224] bridge_slave_0: entered allmulticast mode
[ 2313.510531][T20934] Bluetooth: hci2: command tx timeout
[ 2313.511489][T29224] bridge_slave_0: entered promiscuous mode
[ 2313.555730][T29222] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2313.583457][T29222] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2313.611218][T29224] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2313.618330][T29224] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2313.640017][T29224] bridge_slave_1: entered allmulticast mode
[ 2313.647608][T29224] bridge_slave_1: entered promiscuous mode
[ 2313.855560][T29224] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2313.898035][T29222] team0: Port device team_slave_0 added
[ 2313.917729][T29224] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2313.961398][T29222] team0: Port device team_slave_1 added
[ 2314.104670][T29224] team0: Port device team_slave_0 added
[ 2314.127992][T29222] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2314.160495][T29222] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2314.219006][T29222] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2314.267859][T29224] team0: Port device team_slave_1 added
[ 2314.330981][T29222] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2314.359176][T29222] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2314.442846][T29222] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2314.516292][T29224] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2314.540563][T29224] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2314.571655][T29224] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2314.577610][T29322] __nla_validate_parse: 3 callbacks suppressed
[ 2314.577629][T29322] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2314.584679][T29224] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2314.606420][T29224] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 2314.634730][T29322] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2314.647806][T29224] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2314.686778][T29323] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2314.867603][T29222] hsr_slave_0: entered promiscuous mode
[ 2314.910829][T29222] hsr_slave_1: entered promiscuous mode
[ 2314.936872][T29222] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2314.970952][T29222] Cannot create hsr debugfs directory
[ 2314.981359][T29224] hsr_slave_0: entered promiscuous mode
[ 2314.997742][T29224] hsr_slave_1: entered promiscuous mode
[ 2315.008444][T29224] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 2315.028437][T29224] Cannot create hsr debugfs directory
[ 2315.500478][T20934] Bluetooth: hci1: command tx timeout
[ 2315.580318][T20934] Bluetooth: hci2: command 0x041b tx timeout
[ 2315.838195][T29224] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2315.877932][T29224] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 42663 - 0
[ 2315.893332][T29224] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 2] type 2 family 0 port 55608 - 0
[ 2316.055156][T29224] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2316.073264][T29359] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2316.092851][T29224] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 42663 - 0
[ 2316.094437][T29359] netlink: 1760 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2316.104208][T29224] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 2] type 2 family 0 port 55608 - 0
[ 2316.160120][T29360] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2316.287534][T29224] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2316.312511][T29224] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 42663 - 0
[ 2316.329628][T29224] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 2] type 2 family 0 port 55608 - 0
[ 2316.466263][T29224] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2316.488081][T29224] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 42663 - 0
[ 2316.512183][T29224] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 2] type 2 family 0 port 55608 - 0
[ 2316.692940][T29222] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2316.883836][T29222] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2317.025803][T29222] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2317.040604][T29374] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[ 2317.059253][T29374] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[ 2317.202427][T29222] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2317.512137][T29222] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 2317.562722][T29222] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 2317.581608][ T5121] Bluetooth: hci1: command tx timeout
[ 2317.594859][T29222] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 2317.628699][T29222] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 2317.670287][ T5121] Bluetooth: hci2: command 0x041b tx timeout
[ 2317.882489][T29224] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2317.943827][T29224] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2317.968949][T29224] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2317.999456][T29224] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2318.222213][T29222] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2318.313983][T29222] 8021q: adding VLAN 0 to HW filter on device team0
[ 2318.341945][T20934] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 2318.353095][T20934] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 2318.370956][T20934] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 2318.382818][T20934] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 2318.392290][T20934] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 2318.401284][T20934] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 2318.502160][T26435] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2318.534491][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2318.541640][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2318.579497][ T5159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2318.586745][ T5159] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2318.727991][T26435] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2318.885988][T26435] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2318.918427][T29397] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 2319.038149][T26435] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2319.213298][T29224] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2319.295613][T29224] 8021q: adding VLAN 0 to HW filter on device team0
[ 2319.660503][T20934] Bluetooth: hci1: command tx timeout
[ 2319.750694][T20934] Bluetooth: hci2: command 0x041b tx timeout
[ 2320.061772][T26435] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2320.100630][T26435] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2320.136024][T26435] bond0 (unregistering): Released all slaves
[ 2320.177469][T26435] bond1 (unregistering): (slave vcan2): Releasing backup interface
[ 2320.186000][T28526] ==================================================================
[ 2320.194094][T28526] BUG: KASAN: slab-use-after-free in skb_queue_purge_reason+0xb9/0x500
[ 2320.202366][T28526] Read of size 8 at addr ffff88802de68858 by task syz-executor.1/28526
[ 2320.210629][T28526] 
[ 2320.212968][T28526] CPU: 1 PID: 28526 Comm: syz-executor.1 Not tainted 6.10.0-rc2-syzkaller-00761-g3ec8d7572a69 #0
[ 2320.223499][T28526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 2320.233575][T28526] Call Trace:
[ 2320.236877][T28526]  <TASK>
[ 2320.239830][T28526]  dump_stack_lvl+0x241/0x360
[ 2320.244541][T28526]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2320.249772][T28526]  ? __pfx__printk+0x10/0x10
[ 2320.254394][T28526]  ? _printk+0xd5/0x120
[ 2320.258551][T28526]  ? __virt_addr_valid+0x183/0x520
[ 2320.263659][T28526]  ? __virt_addr_valid+0x183/0x520
[ 2320.268764][T28526]  print_report+0x169/0x550
[ 2320.273261][T28526]  ? __virt_addr_valid+0x183/0x520
[ 2320.278364][T28526]  ? __virt_addr_valid+0x183/0x520
[ 2320.283473][T28526]  ? __virt_addr_valid+0x44e/0x520
[ 2320.288577][T28526]  ? __phys_addr+0xba/0x170
[ 2320.293072][T28526]  ? skb_queue_purge_reason+0xb9/0x500
[ 2320.298521][T28526]  kasan_report+0x143/0x180
[ 2320.303016][T28526]  ? skb_queue_purge_reason+0xb9/0x500
[ 2320.308467][T28526]  skb_queue_purge_reason+0xb9/0x500
[ 2320.313744][T28526]  ? trace_contention_end+0x3c/0x120
[ 2320.319020][T28526]  ? __mutex_lock+0x2ef/0xd70
[ 2320.323691][T28526]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[ 2320.329578][T28526]  ? drain_workqueue+0x2d3/0x3a0
[ 2320.334508][T28526]  ? hci_conn_hash_flush+0x1da/0x240
[ 2320.339786][T28526]  vhci_flush+0x44/0x50
[ 2320.343933][T28526]  ? __pfx_vhci_flush+0x10/0x10
[ 2320.348768][T28526]  hci_dev_reset+0x42a/0x5d0
[ 2320.353349][T28526]  sock_do_ioctl+0x158/0x460
[ 2320.357931][T28526]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 2320.363040][T28526]  sock_ioctl+0x629/0x8e0
[ 2320.367358][T28526]  ? __pfx_sock_ioctl+0x10/0x10
[ 2320.372196][T28526]  ? __fget_files+0x29/0x470
[ 2320.376775][T28526]  ? __fget_files+0x3f6/0x470
[ 2320.381442][T28526]  ? __fget_files+0x29/0x470
[ 2320.386024][T28526]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 2320.390954][T28526]  ? security_file_ioctl+0x87/0xb0
[ 2320.396058][T28526]  ? __pfx_sock_ioctl+0x10/0x10
[ 2320.400900][T28526]  __se_sys_ioctl+0xfc/0x170
[ 2320.405483][T28526]  do_syscall_64+0xf3/0x230
[ 2320.409974][T28526]  ? clear_bhb_loop+0x35/0x90
[ 2320.414639][T28526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2320.420521][T28526] RIP: 0033:0x7fa17da7cf29
[ 2320.424922][T28526] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2320.444534][T28526] RSP: 002b:00007fa17e8db0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2320.452946][T28526] RAX: ffffffffffffffda RBX: 00007fa17dbb3f80 RCX: 00007fa17da7cf29
[ 2320.460913][T28526] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000004
[ 2320.468872][T28526] RBP: 00007fa17daec074 R08: 0000000000000000 R09: 0000000000000000
[ 2320.476829][T28526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2320.484795][T28526] R13: 000000000000000b R14: 00007fa17dbb3f80 R15: 00007ffe93e71668
[ 2320.492769][T28526]  </TASK>
[ 2320.495777][T28526] 
[ 2320.498082][T28526] Allocated by task 28278:
[ 2320.502476][T28526]  kasan_save_track+0x3f/0x80
[ 2320.507145][T28526]  __kasan_kmalloc+0x98/0xb0
[ 2320.511722][T28526]  kmalloc_trace_noprof+0x19c/0x2c0
[ 2320.516904][T28526]  vhci_open+0x57/0x370
[ 2320.521043][T28526]  misc_open+0x313/0x390
[ 2320.525274][T28526]  chrdev_open+0x5b0/0x630
[ 2320.529678][T28526]  do_dentry_open+0x95a/0x1720
[ 2320.534431][T28526]  path_openat+0x289f/0x3280
[ 2320.539008][T28526]  do_filp_open+0x235/0x490
[ 2320.543494][T28526]  do_sys_openat2+0x13e/0x1d0
[ 2320.548154][T28526]  __x64_sys_openat+0x247/0x2a0
[ 2320.552989][T28526]  do_syscall_64+0xf3/0x230
[ 2320.557494][T28526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2320.563402][T28526] 
[ 2320.565717][T28526] Freed by task 28278:
[ 2320.569767][T28526]  kasan_save_track+0x3f/0x80
[ 2320.574440][T28526]  kasan_save_free_info+0x40/0x50
[ 2320.579450][T28526]  poison_slab_object+0xe0/0x150
[ 2320.584380][T28526]  __kasan_slab_free+0x37/0x60
[ 2320.589145][T28526]  kfree+0x149/0x360
[ 2320.593038][T28526]  vhci_release+0xbf/0xd0
[ 2320.597354][T28526]  __fput+0x406/0x8b0
[ 2320.601322][T28526]  task_work_run+0x24f/0x310
[ 2320.605924][T28526]  do_exit+0xa27/0x27e0
[ 2320.610083][T28526]  do_group_exit+0x207/0x2c0
[ 2320.614674][T28526]  __x64_sys_exit_group+0x3f/0x40
[ 2320.619697][T28526]  do_syscall_64+0xf3/0x230
[ 2320.624190][T28526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2320.630070][T28526] 
[ 2320.632377][T28526] The buggy address belongs to the object at ffff88802de68800
[ 2320.632377][T28526]  which belongs to the cache kmalloc-1k of size 1024
[ 2320.646414][T28526] The buggy address is located 88 bytes inside of
[ 2320.646414][T28526]  freed 1024-byte region [ffff88802de68800, ffff88802de68c00)
[ 2320.660192][T28526] 
[ 2320.662501][T28526] The buggy address belongs to the physical page:
[ 2320.668906][T28526] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2de68
[ 2320.677653][T28526] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2320.686152][T28526] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2320.693700][T28526] page_type: 0xffffefff(slab)
[ 2320.698373][T28526] raw: 00fff00000000040 ffff888015041dc0 ffffea000176b200 dead000000000002
[ 2320.706949][T28526] raw: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[ 2320.715516][T28526] head: 00fff00000000040 ffff888015041dc0 ffffea000176b200 dead000000000002
[ 2320.724171][T28526] head: 0000000000000000 0000000000100010 00000001ffffefff 0000000000000000
[ 2320.732830][T28526] head: 00fff00000000003 ffffea0000b79a01 ffffffffffffffff 0000000000000000
[ 2320.741484][T28526] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 2320.750133][T28526] page dumped because: kasan: bad access detected
[ 2320.756535][T28526] page_owner tracks the page as allocated
[ 2320.762231][T28526] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5159, tgid 5159 (kworker/1:5), ts 60423423233, free_ts 60399215805
[ 2320.781424][T28526]  post_alloc_hook+0x1f3/0x230
[ 2320.786189][T28526]  get_page_from_freelist+0x2e2d/0x2ee0
[ 2320.791722][T28526]  __alloc_pages_noprof+0x256/0x6c0
[ 2320.796909][T28526]  alloc_slab_page+0x5f/0x120
[ 2320.801590][T28526]  allocate_slab+0x5a/0x2e0
[ 2320.806093][T28526]  ___slab_alloc+0xcd1/0x14b0
[ 2320.810767][T28526]  __slab_alloc+0x58/0xa0
[ 2320.815090][T28526]  __kmalloc_noprof+0x257/0x400
[ 2320.819932][T28526]  ___neigh_create+0x691/0x2470
[ 2320.824771][T28526]  ip6_finish_output2+0x1629/0x1670
[ 2320.829961][T28526]  ip6_finish_output+0x41e/0x810
[ 2320.834895][T28526]  NF_HOOK+0x9e/0x430
[ 2320.838861][T28526]  mld_sendpack+0x838/0xda0
[ 2320.843351][T28526]  mld_ifc_work+0x7d6/0xd90
[ 2320.847842][T28526]  process_scheduled_works+0xa2c/0x1830
[ 2320.853378][T28526]  worker_thread+0x86d/0xd70
[ 2320.857951][T28526] page last free pid 5109 tgid 5109 stack trace:
[ 2320.864258][T28526]  free_unref_page+0xd22/0xea0
[ 2320.869012][T28526]  __put_partials+0xeb/0x130
[ 2320.873586][T28526]  put_cpu_partial+0x17c/0x250
[ 2320.878337][T28526]  __slab_free+0x2ea/0x3d0
[ 2320.882738][T28526]  qlist_free_all+0x9e/0x140
[ 2320.887314][T28526]  kasan_quarantine_reduce+0x14f/0x170
[ 2320.892763][T28526]  __kasan_slab_alloc+0x23/0x80
[ 2320.897602][T28526]  kmem_cache_alloc_node_noprof+0x16b/0x320
[ 2320.903488][T28526]  __alloc_skb+0x1c3/0x440
[ 2320.907892][T28526]  netlink_sendmsg+0x631/0xcb0
[ 2320.912644][T28526]  __sock_sendmsg+0x221/0x270
[ 2320.917308][T28526]  __sys_sendto+0x3a4/0x4f0
[ 2320.921794][T28526]  __x64_sys_sendto+0xde/0x100
[ 2320.926542][T28526]  do_syscall_64+0xf3/0x230
[ 2320.931031][T28526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2320.936913][T28526] 
[ 2320.939220][T28526] Memory state around the buggy address:
[ 2320.944831][T28526]  ffff88802de68700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2320.952881][T28526]  ffff88802de68780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2320.960924][T28526] >ffff88802de68800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2320.968963][T28526]                                                     ^
2024/06/18 20:13:45 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[ 2320.975883][T28526]  ffff88802de68880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2320.983926][T28526]  ffff88802de68900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2320.991982][T28526] ==================================================================
[ 2321.018478][T17882] Bluetooth: hci3: command tx timeout
[ 2321.269118][T28526] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 2321.276364][T28526] CPU: 0 PID: 28526 Comm: syz-executor.1 Not tainted 6.10.0-rc2-syzkaller-00761-g3ec8d7572a69 #0
[ 2321.286884][T28526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[ 2321.296962][T28526] Call Trace:
[ 2321.300264][T28526]  <TASK>
[ 2321.303212][T28526]  dump_stack_lvl+0x241/0x360
[ 2321.307908][T28526]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2321.313131][T28526]  ? __pfx__printk+0x10/0x10
[ 2321.317757][T28526]  ? preempt_schedule+0xe1/0xf0
[ 2321.322642][T28526]  ? vscnprintf+0x5d/0x90
[ 2321.326997][T28526]  panic+0x349/0x860
[ 2321.330931][T28526]  ? check_panic_on_warn+0x21/0xb0
[ 2321.336088][T28526]  ? __pfx_panic+0x10/0x10
[ 2321.340550][T28526]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 2321.346564][T28526]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2321.352930][T28526]  ? print_report+0x502/0x550
[ 2321.357619][T28526]  check_panic_on_warn+0x86/0xb0
[ 2321.362553][T28526]  ? skb_queue_purge_reason+0xb9/0x500
[ 2321.368009][T28526]  end_report+0x77/0x160
[ 2321.372246][T28526]  kasan_report+0x154/0x180
[ 2321.376740][T28526]  ? skb_queue_purge_reason+0xb9/0x500
[ 2321.382196][T28526]  skb_queue_purge_reason+0xb9/0x500
[ 2321.387474][T28526]  ? trace_contention_end+0x3c/0x120
[ 2321.392753][T28526]  ? __mutex_lock+0x2ef/0xd70
[ 2321.397424][T28526]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[ 2321.403401][T28526]  ? drain_workqueue+0x2d3/0x3a0
[ 2321.408334][T28526]  ? hci_conn_hash_flush+0x1da/0x240
[ 2321.413619][T28526]  vhci_flush+0x44/0x50
[ 2321.417770][T28526]  ? __pfx_vhci_flush+0x10/0x10
[ 2321.422610][T28526]  hci_dev_reset+0x42a/0x5d0
[ 2321.427197][T28526]  sock_do_ioctl+0x158/0x460
[ 2321.431789][T28526]  ? __pfx_sock_do_ioctl+0x10/0x10
[ 2321.436909][T28526]  sock_ioctl+0x629/0x8e0
[ 2321.441665][T28526]  ? __pfx_sock_ioctl+0x10/0x10
[ 2321.446507][T28526]  ? __fget_files+0x29/0x470
[ 2321.451092][T28526]  ? __fget_files+0x3f6/0x470
[ 2321.455765][T28526]  ? __fget_files+0x29/0x470
[ 2321.460348][T28526]  ? bpf_lsm_file_ioctl+0x9/0x10
[ 2321.465276][T28526]  ? security_file_ioctl+0x87/0xb0
[ 2321.470373][T28526]  ? __pfx_sock_ioctl+0x10/0x10
[ 2321.475215][T28526]  __se_sys_ioctl+0xfc/0x170
[ 2321.479796][T28526]  do_syscall_64+0xf3/0x230
[ 2321.484294][T28526]  ? clear_bhb_loop+0x35/0x90
[ 2321.488960][T28526]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2321.494842][T28526] RIP: 0033:0x7fa17da7cf29
[ 2321.499247][T28526] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 2321.518853][T28526] RSP: 002b:00007fa17e8db0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2321.527265][T28526] RAX: ffffffffffffffda RBX: 00007fa17dbb3f80 RCX: 00007fa17da7cf29
[ 2321.535230][T28526] RDX: 0000000000000000 RSI: 00000000400448cb RDI: 0000000000000004
[ 2321.543192][T28526] RBP: 00007fa17daec074 R08: 0000000000000000 R09: 0000000000000000
[ 2321.551154][T28526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 2321.559114][T28526] R13: 000000000000000b R14: 00007fa17dbb3f80 R15: 00007ffe93e71668
[ 2321.567080][T28526]  </TASK>
[ 2321.570334][T28526] Kernel Offset: disabled
[ 2321.574653][T28526] Rebooting in 86400 seconds..